4. Using KerberosRestTemplate

4. Using KerberosRestTemplate
Prev	Part II. Spring and Spring Security Kerberos	Next

If there is a need to access Kerberos protected web resources programmatically we have KerberosRestTemplate which extends RestTemplate and does necessary login actions prior to delegating to actual RestTemplate methods. You basically have few options to configure this template.

Leave keyTabLocation and userPrincipal empty if you want to use cached ticket.
Use keyTabLocation and userPrincipal if you want to use keytab file.
Use loginOptions if you want to customise Krb5LoginModule options.
Use a customised httpClient.

With ticket cache.

public void doWithTicketCache() {
    KerberosRestTemplate restTemplate =
            new KerberosRestTemplate();
    restTemplate.getForObject("http://neo.example.org:8080/hello", String.class);
}

With keytab file.

public void doWithKeytabFile() {
    KerberosRestTemplate restTemplate =
            new KerberosRestTemplate("/tmp/user2.keytab", "[email protected]");
    restTemplate.getForObject("http://neo.example.org:8080/hello", String.class);
}

Prev	Up	Next
3. Spnego Negotiate	Home	5. Authentication with LDAP Services