ServerEndpointthat use Kerberos as the underlying network security protocol to support security related invocation constraints for remote requests. The
ServerEndpointabstraction is implemented by the
KerberosServerEndpoint, while the client side
Endpointabstraction is implemented by the
This class uses the Jini extensible remote invocation (Jini ERI) multiplexing protocol to map outgoing requests to the underlying secure connection streams.
The secure connection streams in this provider are implemented using the Kerberos Version 5 GSS-API Mechanism, defined in RFC 1964, over socket connections between client and server endpoints.
Note that, because Kerberos inherently requires client authentication,
this transport provider does not support distributed garbage collection
(DGC); if DGC is enabled using
all DGC remote calls through this provider will silently fail.
The endpoint classes in this package support at least the following
ConnectionRelativeTime, trivially on the server side, since this only takes effect on the client side
ClientMaxPrincipal, when it contains at least one
ClientMaxPrincipalType, when it contains the
ClientMinPrincipal, when it contains exactly one
ClientMinPrincipalType, when it contains only the
ServerMinPrincipal, when it contains exactly one
ConstraintAlternatives, if the elements all have the same actual class and at least one element is supported