Kerby is an implementation of Kerberos V5 protocol in pure Java. It provides a rich, intuitive and interoperable library, KDC and various facilities that integrate PKI, OTP and token (OAuth2) as desired in modern environments such as cloud, Hadoop and mobile. Following features are (already) supported:
Kerberos libraries:
Standalone KDC server
Support for various backends:
Embeddable KDC server allows easy integration into products for unit testing or production deployment.
FAST/Preauthentication framework, to allow popular and useful authentication mechanisms.
Token Preauth mechanism, to allow clients to request tickets using JWT tokens.
Client can request a TGT with:
Client can request a service ticket with:
Network support including UDP and TCP transport with two implementations:
Tools:
Support for JAAS, GSSAPI and SASL frameworks, allowing applications to leverage the authentication mechanisms provided by Kerby.