Package javax.security.auth

package javax.security.auth

This package provides a framework for authentication and authorization. The framework allows authentication to be performed in pluggable fashion. Different authentication modules can be plugged under an application without requiring modifications to the application itself. The authorization component allows specification of access controls based on code location, code signers and code executors (Subjects).

Since:

1.4

Related Packages

Module	Package	Description
java.base	javax.security.auth.callback	This package provides the classes necessary for services to interact with applications in order to retrieve information (authentication data including usernames or passwords, for example) or to display information (error and warning messages, for example).
java.security.jgss	javax.security.auth.kerberos	This package contains utility classes related to the Kerberos network authentication protocol.
java.base	javax.security.auth.login	This package provides a pluggable authentication framework.
java.base	javax.security.auth.spi	This package provides the interface to be used for implementing pluggable authentication modules.
java.base	javax.security.auth.x500	This package contains the classes that should be used to store X500 Principal and X500 Private Credentials in a Subject.

Class	Description
AuthPermission	Deprecated, for removal: This API element is subject to removal in a future version. This permission cannot be used for controlling access to resources as the Security Manager is no longer supported.
Destroyable	Objects such as credentials may optionally implement this interface to provide the capability to destroy its contents.
DestroyFailedException	Signals that a destroy operation failed.
PrivateCredentialPermission	Deprecated, for removal: This API element is subject to removal in a future version. This permission cannot be used for controlling access to resources as the Security Manager is no longer supported.
Refreshable	Objects such as credentials may optionally implement this interface to provide the capability to refresh itself.
RefreshFailedException	Signals that a refresh operation failed.
Subject	A Subject represents a grouping of related information for a single entity, such as a person.
SubjectDomainCombiner	Deprecated, for removal: This API element is subject to removal in a future version. This class was only useful in conjunction with the Security Manager, which is no longer supported.