Return-Path: Delivered-To: apmail-directory-commits-archive@www.apache.org Received: (qmail 5338 invoked from network); 2 Aug 2007 09:04:57 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 2 Aug 2007 09:04:57 -0000 Received: (qmail 21609 invoked by uid 500); 2 Aug 2007 09:04:57 -0000 Delivered-To: apmail-directory-commits-archive@directory.apache.org Received: (qmail 21566 invoked by uid 500); 2 Aug 2007 09:04:57 -0000 Mailing-List: contact commits-help@directory.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@directory.apache.org Delivered-To: mailing list commits@directory.apache.org Received: (qmail 21555 invoked by uid 99); 2 Aug 2007 09:04:57 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 02 Aug 2007 02:04:57 -0700 X-ASF-Spam-Status: No, hits=-100.0 required=10.0 tests=ALL_TRUSTED X-Spam-Check-By: apache.org Received: from [140.211.11.3] (HELO eris.apache.org) (140.211.11.3) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 02 Aug 2007 09:04:35 +0000 Received: by eris.apache.org (Postfix, from userid 65534) id B0BA51A981A; Thu, 2 Aug 2007 02:04:34 -0700 (PDT) Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Subject: svn commit: r562051 - /directory/apacheds/trunk/protocol-kerberos/src/main/java/org/apache/directory/server/kerberos/kdc/ticketgrant/ConfigureTicketGrantingChain.java Date: Thu, 02 Aug 2007 09:04:34 -0000 To: commits@directory.apache.org From: erodriguez@apache.org X-Mailer: svnmailer-1.1.0 Message-Id: <20070802090434.B0BA51A981A@eris.apache.org> X-Virus-Checked: Checked by ClamAV on apache.org Author: erodriguez Date: Thu Aug 2 02:04:33 2007 New Revision: 562051 URL: http://svn.apache.org/viewvc?view=rev&rev=562051 Log: Modified the TGS to set the replay cache entry expiration to the configured clockskew. Modified: directory/apacheds/trunk/protocol-kerberos/src/main/java/org/apache/directory/server/kerberos/kdc/ticketgrant/ConfigureTicketGrantingChain.java Modified: directory/apacheds/trunk/protocol-kerberos/src/main/java/org/apache/directory/server/kerberos/kdc/ticketgrant/ConfigureTicketGrantingChain.java URL: http://svn.apache.org/viewvc/directory/apacheds/trunk/protocol-kerberos/src/main/java/org/apache/directory/server/kerberos/kdc/ticketgrant/ConfigureTicketGrantingChain.java?view=diff&rev=562051&r1=562050&r2=562051 ============================================================================== --- directory/apacheds/trunk/protocol-kerberos/src/main/java/org/apache/directory/server/kerberos/kdc/ticketgrant/ConfigureTicketGrantingChain.java (original) +++ directory/apacheds/trunk/protocol-kerberos/src/main/java/org/apache/directory/server/kerberos/kdc/ticketgrant/ConfigureTicketGrantingChain.java Thu Aug 2 02:04:33 2007 @@ -20,11 +20,11 @@ package org.apache.directory.server.kerberos.kdc.ticketgrant; +import org.apache.directory.server.kerberos.kdc.KdcConfiguration; import org.apache.directory.server.kerberos.shared.crypto.encryption.CipherTextHandler; import org.apache.directory.server.kerberos.shared.exceptions.ErrorType; import org.apache.directory.server.kerberos.shared.exceptions.KerberosException; import org.apache.directory.server.kerberos.shared.replay.InMemoryReplayCache; -import org.apache.directory.server.kerberos.shared.replay.ReplayCache; import org.apache.mina.common.IoSession; import org.apache.mina.handler.chain.IoHandlerCommand; @@ -35,7 +35,7 @@ */ public class ConfigureTicketGrantingChain implements IoHandlerCommand { - private static final ReplayCache replayCache = new InMemoryReplayCache(); + private static final InMemoryReplayCache replayCache = new InMemoryReplayCache(); private static final CipherTextHandler cipherTextHandler = new CipherTextHandler(); private String contextKey = "context"; @@ -45,7 +45,11 @@ { TicketGrantingContext tgsContext = ( TicketGrantingContext ) session.getAttribute( getContextKey() ); + KdcConfiguration config = tgsContext.getConfig(); + long clockSkew = config.getAllowableClockSkew(); + replayCache.setClockSkew( clockSkew ); tgsContext.setReplayCache( replayCache ); + tgsContext.setCipherTextHandler( cipherTextHandler ); if ( tgsContext.getRequest().getProtocolVersionNumber() != 5 )