PublicKeyAuthenticationProvider (Maverick Legacy

All Superinterfaces:

Authenticator

All Known Subinterfaces:

PublicKeyWithVerifyAuthenticationProvider

All Known Implementing Classes:

AbstractPublicKeyAuthenticationProvider, AbstractPublicKeyWithVerifyAuthenticationProvider, AuthorizedKeysPublicKeyAuthenticationProvider, DefaultPublicKeyAuthenticationProvider, InMemoryPublicKeyProvider, OpenSshCertificateAuthenticationProvider, UniversalAuthenticationProvider
```
public interface PublicKeyAuthenticationProvider
extends Authenticator
```
This interface allows you to define a custom public key store for the publickey authentication mechanism. The actual key verification is performed by the mechanism itself and your only requirement is to return a value which indicates whether the key has been authorized by the user for public key access.

The implementation may optionally support addition, removal and listing of keys. When supported, PublicKeySubsystem may be used. If not required the methods should thrown UnsupportedOperationException.

Author:

Lee David Painter

Method Summary

All Methods Instance Methods Abstract Methods
Modifier and Type	Method and Description
`void`	`add(SshPublicKey key, String comment, Connection con)`
`Iterator<SshPublicKeyFile>`	`getKeys(Connection con)`
`boolean`	`isAuthorizedKey(SshPublicKey key, Connection con)` Check the supplied public key against the users authorized keys.
`void`	`remove(SshPublicKey key, Connection con)`

Method Detail

isAuthorizedKey
```
boolean isAuthorizedKey(SshPublicKey key,
                        Connection con)
                 throws IOException
```
Check the supplied public key against the users authorized keys. The actual verification of the key is performed by the server, you only need to return a value to indicate whether the key is authorized or not. You can obtain the username, home directory, group or remote socket address from the com.sshtools.server.PasswordAuthenticationProvider instance.

If your authorized key database is kept on the native file system you can obtain and initialize an instance as follows:
```
 NativeFileSystemProvider nfs = (NativeFileSystemProvider) authenticationProvider
                .getContext().getFileSystemProvider().newInstance();
 
 nfs.init(sessionid, null, authenticationProvider.getContext());
 
```
Don't forget to close any file handles and the file system once you've done accessing files.
Parameters:

key - SshPublicKey

con - connection

authenticationProvider - AuthenticationProvider

Returns:

boolean true if the key is an authorized key, otherwise false

Throws:

IOException

getKeys

Iterator<SshPublicKeyFile> getKeys(Connection con)
                            throws PermissionDeniedException,
                                   IOException

Throws:: PermissionDeniedException; IOException

remove

void remove(SshPublicKey key,
            Connection con)
     throws IOException,
            PermissionDeniedException,
            SshException

Throws:: IOException; PermissionDeniedException; SshException

add

void add(SshPublicKey key,
         String comment,
         Connection con)
  throws IOException,
         PermissionDeniedException,
         SshException

Throws:: IOException; PermissionDeniedException; SshException

Interface PublicKeyAuthenticationProvider

Method Summary

Method Detail

isAuthorizedKey

getKeys

remove

add