import org.lastaflute.web.login.credential.LoginCredential;

/**
 * SPNEGO authentication credential implementation.
 *
 * This class represents login credentials obtained through SPNEGO (Security Provider
 * Negotiation Protocol) authentication. It contains the username extracted from the
 * SPNEGO authentication process, typically from a Kerberos ticket.
 */

 */

package jcifs.dcerpc.msrpc;

/**
 * MSRPC implementation for connecting to the SAM service (version 4).
 * This class provides functionality to establish a connection to the
 * Security Account Manager (SAM) database using the SAMR RPC interface version 4.
 */
public class MsrpcSamrConnect4 extends samr.SamrConnect4 {

    /**
     * Creates a new request to connect to the SAM service.
     *

 */

package jcifs.smb1.dcerpc.msrpc;

/**
 * MSRPC implementation for connecting to the SAM service.
 * This class provides functionality to establish a connection to the
 * Security Account Manager (SAM) database using the SAMR RPC interface.
 */
public class MsrpcSamrConnect2 extends samr.SamrConnect2 {

    /**
     * Creates a new request to connect to the SAM service.
     *

   reported vulnerability and how it might be exploited. Alternatively,
   a well-established vulnerability identifier, e.g. CVE number, can be
   used instead.

Based on the description mentioned above, a MinIO engineer or security team
member investigates:

- Whether the reported vulnerability exists.
- The conditions that are required such that the vulnerability can be exploited.
- The steps required to fix the vulnerability.

    public String username;

    /** The password. */
    @NotBlank
    public String password;

    /** The confirm password. */
    public String confirmPassword;

    /**
     * Clears the security info.
     */
    public void clearSecurityInfo() {
        password = null;
        confirmPassword = null;
    }

    /** The new password. */
    @NotBlank
    public String newPassword;

    /** The confirm new password. */
    @NotBlank
    public String confirmNewPassword;

    /**
     * Clears security information.
     */
    public void clearSecurityInfo() {
        oldPassword = null;
        newPassword = null;
        confirmNewPassword = null;
    }

            return batchLimits[8];
        }
        return 0;
    }

    @Override
    int writeParameterWordsWireFormat(final byte[] dst, int dstIndex) {

        if (session.transport.server.security == SECURITY_SHARE && (session.auth.hashesExternal || session.auth.password.length() > 0)) {

            if (session.transport.server.encryptedPasswords) {
                // encrypted

 */
package jcifs.pac;

import java.io.ByteArrayInputStream;
import java.io.DataInputStream;
import java.io.IOException;
import java.security.MessageDigest;
import java.util.Map;

import javax.security.auth.kerberos.KerberosKey;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import jcifs.util.Hexdump;

/**

        this.session = session;
        this.cred = cred;

        sessionKey = session.transport.sessionKey;
        capabilities = session.transport.capabilities;

        if (session.transport.server.security == SECURITY_USER) {
            if (cred instanceof final NtlmPasswordAuthentication auth) {
                if (auth == NtlmPasswordAuthentication.ANONYMOUS) {
                    lmHash = new byte[0];

```

////

/// tip

We are using an invented header to simplify this example.

But in real cases you will get better results using the integrated [Security utilities](security/index.md){.internal-link target=_blank}.

///

## Another module with `APIRouter` { #another-module-with-apirouter }