Module java.security.sasl
Package javax.security.sasl

Class AuthorizeCallback

  • All Implemented Interfaces:
    Serializable, Callback
    public class AuthorizeCallback
extends Object
implements Callback, Serializable
    This callback is used by SaslServer to determine whether one entity (identified by an authenticated authentication id) can act on behalf of another entity (identified by an authorization id).
    Since:
    1.5
    See Also:
    Serialized Form

    • Constructor Detail

      • AuthorizeCallback

        public AuthorizeCallback​(String authnID,
                         String authzID)
        Constructs an instance of AuthorizeCallback.
        Parameters:
        authnID - The (authenticated) authentication id.
        authzID - The authorization id.

    • Method Detail

      • getAuthenticationID

        public String getAuthenticationID()
        Returns the authentication id to check.
        Returns:
        The authentication id to check.

      • getAuthorizationID

        public String getAuthorizationID()
        Returns the authorization id to check.
        Returns:
        The authentication id to check.

      • isAuthorized

        public boolean isAuthorized()
        Determines whether the authentication id is allowed to act on behalf of the authorization id.
        Returns:
        true if authorization is allowed; false otherwise
        See Also:
        setAuthorized(boolean), getAuthorizedID()

      • setAuthorizedID

        public void setAuthorizedID​(String id)
        Sets the id of the authorized entity. Called by handler only when the id is different from getAuthorizationID(). For example, the id might need to be canonicalized for the environment in which it will be used.
        Parameters:
        id - The id of the authorized user.
        See Also:
        setAuthorized(boolean), getAuthorizedID()