Control the secure authentication cache. More...
#import <BlackBerryDynamics/GD/GDNET.h>
Use this class to control the secure authentication cache of the GDURLLoadingSystem and the deprecated GDHttpRequest class. (Currently, there are only two controls.) The secure authentication cache is used as follows.
DHttpRequest (deprecated) Class Methods | |
(void) | + clearCredentialsForMethod: |
Clear cached authentication credentials. More... | |
(void) | + kerberosAllowDelegation: |
Allow or disallow Kerberos delegation. More... | |
+ (void) clearCredentialsForMethod: | (nullable NSString *) | method |
Call this function to clear the cached credentials for a particular authentication method, or to clear for all methods. Calling this function clears the session cache, and the permanent cache if present. (Currently, the BlackBerry Dynamics runtime only has a permanent cache for Kerberos authentication tickets.)
method | One of the following constants, specifying which cache or caches are to be cleared:NSURLAuthenticationMethodHTTPBasic clears Basic Authentication credentials,NSURLAuthenticationMethodDefault also clears Basic Authentication credentials,NSURLAuthenticationMethodHTTPDigest clears Digest Authentication credentials,NSURLAuthenticationMethodNTLM clears NTLM Authentication credentials,NSURLAuthenticationMethodNegotiate clears Kerberos Authentication credentials and tickets,nil clears all of the above. |
+ (void) kerberosAllowDelegation: | (BOOL) | allow |
Call this function to allow or disallow Kerberos delegation within BlackBerry Dynamics secure communications. By default, Kerberos delegation is disallowed.
If Kerberos delegation is allowed, the BlackBerry Dynamics runtime behaves as follows.
If Kerberos delegation isn't allowed, the BlackBerry Dynamics runtime behaves as follows.
After this function has been called, delegation will remain allowed or disallowed until this function is called again with a different setting.
Note: User and service configuration in the Kerberos Key Distribution Center (KDC), typically a Microsoft Active Directory server, is required in order for delegation to be successful. On its own, calling this function won't make Kerberos delegation work in the whole end-to-end application.
When this function is called, the Kerberos ticket and credentials caches will be cleared. I.e. there is an effective call to the clearCredentialsForMethod: function with an NSURLAuthenticationMethodNegotiate
parameter.
allow | YES to allow delegation, NO to disallow. |