All Known Implementing Classes:: AuthCallbackProxy

public interface DpAuthCallback

With this interface we can register a callback with ConfDs AAA subsystem, to be invoked whenever AAA has completed processing of an authentication attempt. In the case where the authentication was otherwise successful, the callback can still cause it to be rejected. This can be used to implement specific access policies, as an alternative to using PAM or "External" authentication for this purpose. The callback will only be invoked if it is registered using Dp.registerAnnotatedCallbacks() and enabled via /confdConfig/aaa/authenticationCallback/enabled in confd.conf or /ncs-config/aaa/authentication-callback/enabled in ncs.conf respectively . Note, If the callback is enabled in confd.thonf but not registered, or invocation keeps failing for some reason, all authentication attempts will fail.

See Also:

Dp.registerAnnotatedCallbacks(Object)

Method Summary

Modifier and Type

Method

Description

boolean

auth(DpAuthContext atx)

The auth() callback is invoked with an instance to an authentication context that provides information about the result of the authentication so far.

Method Details
- auth
  
  boolean auth(DpAuthContext atx) throws DpCallbackException
  
  The auth() callback is invoked with an instance to an authentication context that provides information about the result of the authentication so far. The callback must return true or false depending on the user being accepted or rejected.
  
  Parameters:
  
  atx - authentication context
  
  Returns:
  
  boolean
  
  Throws:
  
  DpCallbackException

Interface DpAuthCallback

Method Summary

Method Details

auth