1/*
2 * Copyright (c) 2005, Oracle and/or its affiliates. All rights reserved.
3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4 *
5 * This code is free software; you can redistribute it and/or modify it
6 * under the terms of the GNU General Public License version 2 only, as
7 * published by the Free Software Foundation.  Oracle designates this
8 * particular file as subject to the "Classpath" exception as provided
9 * by Oracle in the LICENSE file that accompanied this code.
10 *
11 * This code is distributed in the hope that it will be useful, but WITHOUT
12 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
13 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
14 * version 2 for more details (a copy is included in the LICENSE file that
15 * accompanied this code).
16 *
17 * You should have received a copy of the GNU General Public License version
18 * 2 along with this work; if not, write to the Free Software Foundation,
19 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
20 *
21 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
22 * or visit www.oracle.com if you need additional information or have any
23 * questions.
24 */
25package sun.security.jgss.wrapper;
26
27import org.ietf.jgss.*;
28import javax.security.auth.kerberos.ServicePermission;
29
30/**
31 * This class is an utility class for Kerberos related stuff.
32 * @author Valerie Peng
33 * @since 1.6
34 */
35class Krb5Util {
36
37    // Return the Kerberos TGS principal name using the domain
38    // of the specified <code>name</code>
39    static String getTGSName(GSSNameElement name)
40        throws GSSException {
41        String krbPrinc = name.getKrbName();
42        int atIndex = krbPrinc.indexOf('@');
43        String realm = krbPrinc.substring(atIndex + 1);
44        StringBuilder sb = new StringBuilder("krbtgt/");
45        sb.append(realm).append('@').append(realm);
46        return sb.toString();
47    }
48
49    // Perform the Service Permission check using the specified
50    // <code>target</code> and <code>action</code>
51    static void checkServicePermission(String target, String action) {
52        SecurityManager sm = System.getSecurityManager();
53        if (sm != null) {
54            SunNativeProvider.debug("Checking ServicePermission(" +
55                                    target + ", " + action + ")");
56            ServicePermission perm =
57                new ServicePermission(target, action);
58            sm.checkPermission(perm);
59        }
60    }
61}
62