All Classes and Interfaces
Class
Description
Provides abstract sequence implementation common to both - inbound and outbound
sequence
Java class for AcceptType complex type.
Assertion which replaces acknowledgement interval attribute of WS-RMP v1.0 RMAssertion.
Java class for AckRequestedType complex type.
<metro:AckRequestInterval Milliseconds="..." />
<sunc:AckRequestInterval Milliseconds="..." />
This interface is designed for
Action element in SAML core assertion.This class is designed for
Action element in SAML core assertion.This class is designed for
Action element in SAML core assertion.Java class for ActionType complex type.
Java class for ActionType complex type.
Java class for anonymous complex type.
If WS-Addressing is enabled, this type determines if an endpoint
requires the use of only anonymous responses, or only non-anonymous
responses, or all.
This specifies the WS-Addressing requirements for a JAX-WS web service.
The
Advice element contains additional information that the issuer wishes to
provide.The
Advice element contains additional information that the issuer wishes to
provide.The
Advice element contains additional information that the issuer wishes to
provide.Java class for AdviceType complex type.
Java class for AdviceType complex type.
Java class for AgreementMethodType complex type.
Represents the AlgorithmSuite assertion.
AlgorithmSuiteValue identifies the algorithm to be used to protect the message.
Used with a Keystore Assertion to select an Alias to be used for locating the Private Key
at runtime.
<sunc:AllowDuplicates />
TODO: Interop Issue with WS-Trust Spec since it does not
specify the contents for AllowPostDating
<xs:element name="AllowPostdating" type="wst:AllowPostdatingType"/>
<xs:complexType name="AllowPostdatingType"/>
This indicates that returned tokens should allow requests for postdated
tokens.
This indicates that returned tokens should allow requests for postdated
tokens.
This indicates that returned tokens should allow requests for postdated
tokens.
Java class for AllowPostdatingType complex type.
Java class for AllowPostdatingType complex type.
Java content class for anyType complex type.
Canoncializer for an Application Media Type.
A protocol independent abstraction of an application message that is used as part of RM processing.
Represents an XWS-Security configuration object, corresponding to the
<xwss:JAXRPCSecurity> element (as defined in XWS-Security,
configuration schema, xwssconfig.xsd).Java class for AppliesTo element declaration.
This interface stands for
Assertion element.This object stands for
Assertion element.This object stands for
Assertion element.AssertionIDRef element makes reference to a SAML
assertion.AssertionIDReference element makes reference to a SAML
assertion.Java class for AssertionType complex type.
Java class for AssertionType complex type.
Represents Asymmetric Token information to be used for Signature and Encryption
by the client and the service.
Java class for anonymous complex type.
Java class for anonymous complex type.
Java class for anonymous complex type.
From CMT EJB methods generate wsdl:binding/wsdl:operations with semantically equivalent WS-AT Policy Assertion(s).
An implementation of Data type containing a JAX-WS attachment
Wrapper class to be used with XWSS attachment transform
provider implementation.
The
Attribute element specifies an attribute of the assertion subject.The
Attribute element specifies an attribute of the assertion subject.The
Attribute element specifies an attribute of the assertion subject.This type is for elements whose [children] is a psuedo-dateTime and can have arbitrary attributes.
The
AttributeDesignator element identifies an attribute
name within an attribute namespace.The
AttributeDesignator element identifies an attribute
name within an attribute namespace.Java class for AttributeDesignatorType complex type.
This type represents an element with arbitrary attributes.
Java class for AttributedURI complex type.
This type is for elements whose [children] is an anyURI and can have arbitrary attributes.
The
AttributeStatement element supplies a statement by the issuer that the
specified subject is associated with the specified attributes.The
AttributeStatement element supplies a statement by the issuer that the
specified subject is associated with the specified attributes.The
AttributeStatement element supplies a statement by the issuer that the
specified subject is associated with the specified attributes.Java class for AttributeStatementType complex type.
Java class for AttributeStatementType complex type.
Java class for AttributeType complex type.
Java class for AttributeType complex type.
This is an implementation of the abstract
Condition class, which
specifes that the assertion this AuthenticationCondition is part of, is
addressed to one or more specific audience.This is an implementation of the abstract
Condition class, which
specifes that the assertion this AuthenticationCondition is part of, is
addressed to one or more specific audience.This is an implementation of the abstract
Condition class, which
specifes that the assertion this AuthenticationCondition is part of, is
addressed to one or more specific audience.This is an implementation of the abstract
Condition class, which
specifes that the assertion this AuthenticationCondition is part of, is
addressed to one or more specific audience.Java class for AudienceRestrictionConditionType complex type.
Java class for AudienceRestrictionType complex type.
The
AuthenticationStatement element supplies a
statement by the issuer that its subject was authenticated by a
particular means at a particular time.The
AuthenticationStatement element supplies a
statement by the issuer that its subject was authenticated by a
particular means at a particular time.Java class for AuthenticationStatementType complex type.
processes diferent types of tokens like Username,X509,IssuedToken...
Objects of this class represent a concrete WSS Authentication
token as FeatureBinding.
A policy representing Kerberos Token.
A policy representing a RSAKeyPair.
A policy representing a SAML Assertion.
A policy representing a WSS UsernameToken.
A policy representing a WSS X509Certificate.
Provides verification (authentication) of a computed hash.
Provides verification (authentication) of a computed hash.
Provides verification (authentication) of a computed hash.
Java class for AuthenticatorType complex type.
Java class for AuthenticatorType complex type.
The
AuthnContext element may be used to indicate
to a replying party receiving an AuthenticationStatement that
a SAML authority may be available to provide additional information about
the subject of the statement.Java class for AuthnContextType complex type.
The
AuthorizationDecisionStatement element supplies a statement
by the issuer that the request for access by the specified subject to the
specified resource has resulted in the specified decision on the basis of
some optionally specified evidence.The
AuthnStatement element supplies a
statement by the issuer that its subject was authenticated by a
particular means at a particular time.The
AuthenticationStatement element supplies a
statement by the issuer that its subject was authenticated by a
particular means at a particular time.Java class for AuthnStatementType complex type.
The
AuthorityBinding element may be used to indicate
to a replying party receiving an AuthenticationStatement that
a SAML authority may be available to provide additional information about
the subject of the statement.The
AuthorityBinding element may be used to indicate
to a replying party receiving an AuthenticationStatement that
a SAML authority may be available to provide additional information about
the subject of the statement.Java class for AuthorityBindingType complex type.
The
AuthorizationDecisionStatement element supplies a statement
by the issuer that the request for access by the specified subject to the
specified resource has resulted in the specified decision on the basis of
some optionally specified evidence.The
AuthorizationDecisionStatement element supplies a statement
by the issuer that the request for access by the specified subject to the
specified resource has resulted in the specified decision on the basis of
some optionally specified evidence.Java class for AuthorizationDecisionStatementType complex type.
An authentication parameter used to encapsulate a
request and response objects.
The
AuthzDecisionStatement element supplies a statement
by the issuer that the request for access by the specified subject to the
specified resource has resulted in the specified decision on the basis of
some optionally specified evidence.Java class for AuthzDecisionStatementType complex type.
Implementation of MIME's Base64 encoding and decoding conversions.
Java class for anonymous complex type.
Java class for BaseIDAbstractType complex type.
Java class for anonymous complex type.
This is the base class for building client proxy for participant and coordinator.
Java class for RegisterResponseType complex type.
Java class for RegisterType complex type.
The Base class of an STS implementation.
Java class for BinaryExchangeType complex type.
Java class for BinaryExchangeType complex type.
Java class for BinarySecretType complex type.
Java class for BinarySecretType complex type.
Represents binary-formatted security tokens
A wsse:BinarySecurityToken.
A security token that is encoded in binary
Base Interface for Security Policy Binding assertions, identifies Algorithms that are supported,describes the layout of
the security header.
Java class for Body complex type.
Java class for Body complex type.
Encapsulates remote WS-AT participants as a branch for this superior
transaction.
Xid implementation used for persisting branch state.
Class to store results from TokenBuilder.
Class was copied from GlassFish Grizzly sources to be available
also for client side and don't require GlassFish to be installed
Factory class used to create views of a
ByteBuffer.Stream wrapper around a
ByteBufferWebServiceFeature that controls CallbackHandler used during security related processing
of Metro.Defines Binding for requesting security tokens to be cancelled.
Defines Binding for requesting security tokens to be cancelled.
Defines Binding for requesting security tokens to be cancelled.
Java class for CancelTargetType complex type.
Java class for CancelTargetType complex type.
Java class for CanonicalizationMethodType complex type.
Interface for defining MIME Content Canonicalizer.
Implements " Exclusive XML
Canonicalization, Version 1.0 "
Credits: During restructuring of the Canonicalizer framework, Ren?? Kollmorgen from Software AG submitted an implementation of ExclC14n which fitted into the old architecture and which based heavily on my old (and slow) implementation of "Canonical XML".
Credits: During restructuring of the Canonicalizer framework, Ren?? Kollmorgen from Software AG submitted an implementation of ExclC14n which fitted into the old architecture and which based heavily on my old (and slow) implementation of "Canonical XML".
This Callback is intended for X.509 certificate validation
A validator that implements the CertificateValidator interface
should be set on the callback by the callback handler.
Java class for CipherDataType complex type.
Java class for CipherReferenceType complex type.
Implementation class for Claims.
Implementation class for Claims.
Java class for ClaimsType complex type.
Java class for ClaimsType complex type.
This is used by WSClientContainer to return proper 196 security pipe
to the StandAlonePipeAssembler and TangoPipeAssembler
This pipe is used to do client side security for app server
TubeConfiguration for client.Java class for closeChannel complex type.
Java class for closeChannelResponse complex type.
Java class for CloseSequenceElement complex type.
Subclass of
RMException thrown from errors resulting
when a response to close sequence request cannot be satisfiedJava class for CloseSequenceResponseType complex type.
<metro:CloseSequenceTimeout Milliseconds="..." />
<sunc:CloseTimeout Milliseconds="..." />
Transmits standalone protocol messages over the wire.
A class that provides a very simply unbounded queue.
A Handle provides the capability to delete an element of a ConcurrentQueue
very quickly.
A factory class for creating instances of ConcurrentQueue.
This is an abstract class which servers as an extension point for new
conditions.
This is an abstract class which servers as an extension point for new
conditions.
<element ref="{urn:oasis:names:tc:SAML:1.0:assertion}Condition"/>.
Java class for ConditionAbstractType complex type.
Java class for ConditionAbstractType complex type.
The validity of an
Assertion MAY be subject to a set of
Conditions.The validity of an
Assertion MAY be subject to a set of
Conditions.The validity of an
Assertion MAY be subject to a set of
Conditions.Java class for ConditionsType complex type.
Java class for ConditionsType complex type.
This is based Helper class for 196 Configuration.
A Connection represents some kind of channel to a (possibly different) process.
A connection cache manages a group of connections which may be re-used
for sending and receiving messages.
A factory class for creating connections caches.
An instance of a ConnectionFinder may be supplied to the
OutboundConnectionCache.get method.
SOAP/TCP connection cache settings
SOAP/TCP connection cache settings holder.
The ContactInfo represents the information needed to establish a connection
to a (possibly different) process.
Java class for anonymous complex type.
Java class for anonymous complex type.
Java class for anonymous complex type.
Java class for CoordinationContextType complex type.
Java class for CoordinationContextType complex type.
Java class for anonymous complex type.
Java class for anonymous complex type.
Java class for CoordinationContextType complex type.
This is the common implementation for wsat10 and wsat11 Coordinators endpoints.
This is the common interface implemented by wsat10 and wsat 11 Coordinators endpoints and client proxy
This is the base class for building client proxy for invoking coordinator services..
This is the base class for building client proxy for invoking WSAT10 coordinator services..
This is the base class for building client proxy for invoking WSAT11 coordinator services..
Java class for CreateCoordinationContextResponseType complex type.
Java class for CreateCoordinationContextResponseType complex type.
Java class for CreateCoordinationContextResponseType complex type.
Java class for CreateCoordinationContextType complex type.
Java class for CreateCoordinationContextType complex type.
Java class for CreateCoordinationContextType complex type.
Java class for anonymous complex type.
Java class for anonymous complex type.
Java class for anonymous complex type.
Java class for CreateSequenceType complex type.
Java class for CreateSequenceElement complex type.
Properties:
[Code] Sender or Receiver
[Subcode] wsrm:CreateSequenceRefused
[Reason] The Create Sequence request has been refused by the RM Destination.
Java class for CreateSequenceResponseType complex type.
Java class for CreateSequenceResponseElement complex type.
Convert lines into the canonical format, that is, terminate lines with the
CRLF sequence.
Configuration of a DataSource.
Wrapper class for JSR 105 Data objects.Caches SignatureTarget
object and data resolved using this signature target.Reduces
the burden of instanceof checks.
This class provides utility to perform date conversion.
Java class for DecisionType.
Java class for DecisionType.
Represents an XWS-Security configuration object, corresponding to the
xwss:SecurityConfiguration element (as defined in XWS-Security,
configuration schema, xwssconfig.xsd).CallBack implementation for decryption key.
Given an alias get the
javax.crypto.SecretKeyCallBackHandler handling this request should set the private key to be
used for decryption on the request.
A Callback initialized with this request should be handled if the
private key to be used for decryption is to be retrieved given the PublicKey
Request for a symmetric key to be used for decryption.
Request for a private key when the X.509 Thumb print
value for a corresponding X.509 Certificate is given.
Request for a private key when a corresponding X.509 Certificate
is given.
Request for a private key when the Issuer Name and Serial Number
values for a corresponding X.509 Certificate are given.
Request for a private key when the X.509 Subject Key Identifier
value for a corresponding X.509 Certificate is given.
A sample implementation of a CallbackHandler.
A generic immutable reference holder that implements
Delayed interface
and thus is suitable for use in a DelayQueue
instances.Indicates that the requested or issued token be delegated to another
identity.
Java class for DelegateToType complex type.
Java class for DelegateToType complex type.
<wsrmp:DeliveryAssurance>
<wsp:Policy>
[ <wsrmp:ExactlyOnce/> |
<wsrmp:AtLeastOnce/> |
<wsrmp:AtMostOnce/> ]
<wsrmp:InOrder/> ?
</wsp:Policy>
</wsrmp:DeliveryAssurance>
DerivedKeyToken Interface
TODO: This defintion is incomplete.
Java class for DerivedKeyTokenType complex type.
Java class for DerivedKeyTokenType complex type.
The description type is used by a description element to
provide text describing the parent element.
Java class for detail complex type.
Java class for detail complex type.
Java class for DetailType complex type.
This class has been modified slightly to use java.security.MessageDigest
objects as input, rather than
org.apache.xml.security.algorithms.MessageDigestAlgorithm objects.
Java class for DigestMethodType complex type.
Interface for DirectReference reference type inside a STR
Class for DirectReference reference type inside a STR
Reference Interface
Reference Interface
[
The display-name type contains a short name that is intended
to be displayed by tools.
DocumentParser factory to be used in SOAP/TCP codec
DocumentSerializer factory to be used in SOAP/TCP codec
This is a subtype of NodeSetData that represents a dereferenced
same-document URI as the root of a subdocument.
$author: JAXWS Development Team
This is an implementation of the abstract
Condition class, which
specifes that the assertion this DoNotCacheCondition is part of,
is the new element in SAML 1.1, that allows an assertion party to express that
an assertion should not be cached by the relying party for future use.This is an implementation of the abstract
Condition class, which
specifes that the assertion this DoNotCacheCondition is part of,
is the new element in SAML 1.1, that allows an assertion party to express that
an assertion should not be cached by the relying party for future use.Java class for DoNotCacheConditionType complex type.
Java class for DSAKeyValueType complex type.
Implementation of JSR 105 URIDereferencer interface for optimized path
Implementation of JSR 105 URIDereference interface.
Dump a SOAP message for debugging.
Exception used by sequence implementation to notify RM runtime infrastructure of
a detected attempt to register a duplicate message number on a given sequence.
Inicates that the sequence with given sequence identifier already exists in a given environment.
Represents a concrete SecurityPolicy identifier context resolved at runtime,
An XWS-Security
DynamicPolicyCallback is passed an instance of
a DynamicApplicationContext.Callback implementation for dynamic policy resolution.
Represents a SecurityPolicy identifier context resolved at runtime
Represents a dynamically generable SecurityPolicy
Represents a dynamically generable SecurityPolicy.
[
The ejb-linkType is used by ejb-link
elements in the ejb-ref or ejb-local-ref elements to specify
that an EJB reference is linked to enterprise bean.
The ejb-local-refType is used by ejb-local-ref elements for
the declaration of a reference to an enterprise bean's local
home or to the local business interface of a 3.0 bean.
[
The ejb-ref-name element contains the name of an EJB
reference.
The ejb-refType is used by ejb-ref elements for the
declaration of a reference to an enterprise bean's home or
to the remote business interface of a 3.0 bean.
The ejb-ref-typeType contains the expected type of the
referenced enterprise bean.
This type represents a reference to an embedded security token.
This type is used to designate an empty
element when used.
This type is used for elements containing stringified binary data.
Corresponds to Schema definition for EncryptedData.
Simple EncryptedData for Sign and Encrypt Usecase.
Java class for EncryptedDataType complex type.
Indentifies target elements in the SOAPMessage that need to be confidentiality protected.
Java class for EncryptedElementType complex type.
Corresponds to Schema definition for EncryptedData.
Java class for EncryptedHeaderType complex type.
The schema definition of EncryptedKey element is as follows:
Java class for EncryptedKeyType complex type.
Identifies targets that if present in the message should be confidentiality protected.
Encrypted supporting tokens are supporting tokens that are included in
the security header and MUST be encrypted when they appear in the security header.
Java class for EncryptedType complex type.
Schema definition for an EncryptedType is as follows:
Performs encryption or decryption
Message ANNOTATION is performed as follows:
if (complete policy resolution should happen)
make DynamicPolicyCallback
else
// assumes feature binding component is statically specified -
// including targets and canonicalization algorithm
if (X509CertificateBinding)
resolve certificate - make EncryptionKeyCallback
else
if (SymmetricKeyBinding)
resolve symmetrick key - make SymmetricKeyCallback
else
throw Exception
call EncryptionProcessor
Message (decryption) VALIDATION is performed as follows:
if (ADHOC processing mode)
if (complete policy resolution should happen)
make DynamicPolicyCallback
call DecryptionProcessor
else
if (POSTHOC or DEFAULT mode)
call DecryptionProcessor
CallBack implementation for encryption key.
A CallbackHandler handling an instance of this request should make
sure that a symmetric key alias must be set on the request.
A Callback initialized with this request should be handled if the
X.509 certificate to be used for encryption is mapped to some alias.
A Callback initialized with this request should be handled if there's
some default X.509 certificate to be used for encryption.
A CallbackHandler handling an instance of this request should make
sure that a symmetric key must be set on the request.
A CallbackHandler handling an instance of this request should make
sure that an X.509 certificate must be set on the request.
Java class for EncryptionMethodType complex type.
Objects of this class represent a policy for Encrypting parts of a SOAP Message.
A class representing FeatureBindings for an EncryptionPolicy
The FeatureBinding would contain information about the MessageParts
to be Encrypted, The data encryption algorithm to be used.
Java class for EncryptionPropertiesType complex type.
Java class for EncryptionPropertyType complex type.
Objects of this class represent an Encryption Target that can be part of
the FeatureBinding for an EncryptionPolicy (refer EncryptionPolicy.FeatureBinding).
This class represents a Transform that can appear on an EcncryptionTarget,
Instances of this class are added as CipherReference Transforms on an EcncryptionTarget
Java class for EncryptionType complex type.
Java class for EncryptionType complex type.
Endorsing, encrypted supporting tokens are Endorsing supporting tokens that
are also encrypted when they appear in the wsse:SecurityHeader.
Endorsing tokens sign the message signature, that is they sign the entire
Signature element produced from the message signature and may optionally
include additional message parts to sign and/or encrypt
Create a ManagedEndpoint if the policy of the endpoint requires it.
EndpointReferenceBuilder<T extends jakarta.xml.ws.EndpointReference>
The class provides an implementation of an
InvocationHandler interface
that handles requests of XMLStreamWriter proxy instances.Implementation of Entropy Interface.
Implementation of Entropy Interface.
Java class for EntropyType complex type.
Java class for EntropyType complex type.
Java class for Envelope complex type.
Java class for Envelope complex type.
The env-entryType is used to declare an application's
environment entry.
[
This type contains the fully-qualified Java type of the
environment entry value that is expected by the
application's code.
The
Evidence element specifies an assertion either by
reference or by value.The
Evidence element specifies an assertion either by
reference or by value.The
Evidence element specifies an assertion either by
reference or by value.Java class for EvidenceType complex type.
Java class for EvidenceType complex type.
Java class for anonymous complex type.
Java class for anonymous complex type.
Java class for anonymous complex type.
This type is used for MakeConnection child elements that require extensible
anyURI type (the element of this type may contain arbitrary attributes).
Fault reporting structure
Fault reporting structure
Java class for faultcode complex type.
Java class for faultreason complex type.
TODO javadoc
WARNING: This class is a private utility class used by WS-RX implementation.
Context that is persisted as part of tx log and used for bottom-up queries either during runtime or recovery.
Stream wrapper around a
ByteBufferThe elements that use this type designate the name of a
Java class or interface.
This type defines four different values which can designate
boolean values.
Java class for GetMetadata element declaration.
The handler-chains element defines the handlerchains associated with this
service or service endpoint.
The handler-chain element defines the handlerchain.
Declares the handler for a port-component, service-ref.
Header represents any Header element that has its contents signed.
Java class for Header complex type.
Elements replacing the wildcard MUST be namespace qualified, but can be in the targetNamespace
An implementation of the HMAC-SHA1 (RFC 2104)
[
The homeType defines the fully-qualified name of
an enterprise bean's home interface.
Class that handles making the HTTP POST request
to a service.
The icon type contains small-icon and large-icon elements
that specify the file names for small and large GIF, JPEG,
or PNG icon images used to represent the parent element in a
GUI tool.
This type is for elements whose [children] is an anyURI and can have arbitrary attributes.
Java class for IdentityType complex type.
Section 4.2 on Image Media types in RFC 2046
http://www.rfc-editor.org/rfc/rfc2046.txt
does not specify any rules for image canonicalization.
Assertion which replaces inactivity timeout attribute of WS-RMP v1.0 RMAssertion.
A concurrent connection cache for passively created connections (e.g.
Manage connections that are initiated from another VM.
Inbound sequence implementation
Java class for IncompleteSequenceBehaviorType.
Java class for initiateSession complex type.
Java class for initiateSessionResponse complex type.
An injection target specifies a class and a name within
that class into which a resource should be injected.
An example of when this fault is generated is when a message is Received by
the RM Source containing a SequenceAcknowledgement covering messages that have
not been sent.
Indicates the sequence specified is in state of CLOSING, CLOSED, or TERMINTAING,
not appropriate to be used for sending additional application messages.
The class represents a wrapper around
XMLStreamWriter invocations.Invocation processor implements processing of
XMLStreamWriter method invocations.The interface provides API contract for
InvocationProcessor factory
implementations.Java class for isolation-levelType.
This element represents a requirement for an issued token, that is one issued by some token
issuer using the mechanisms defined in WS-Trust.
This interface is the SPI defined by WS-Security to enable WS-Trust/SecureConversation
specific security interactions.
When Tokens are issued as part of Protocol other than RST/RSTR
In such cases the Tokens are passed in a SOAP Header called <wst:IssuedTokens>
Specifies the issuer of the security token that is presented
in the message.
Specifies the issuer of the security token that is presented
in the message.
Implementation of wst:Issuer.
Implementation of wst:Issuer.
The java-identifierType defines a Java identifier.
This is a generic type that designates a Java primitive
type or a fully qualified name of a Java interface/type,
or an array of such types.
TODO javadoc
WARNING: This class is a private utility class used by WS-RX implementation.
Contains common context information for XML signature operation
Contains common context information for XML signature verification operation
JAX-WS specific application message
JAX-WS specific application message
represents security processing context in JAXWS integration path.
DROP TABLE RM_LOCALIDS;
CREATE TABLE RM_LOCALIDS (
LOCAL_ID VARCHAR(512) NOT NULL,
SEQ_ID VARCHAR(256) NOT NULL,
MSG_NUMBER BIGINT NOT NULL,
CREATE_TIME BIGINT,
SEQ_TERMINATE_TIME BIGINT,
PRIMARY KEY (LOCAL_ID)
);
[
The jdbc-urlType contains the url pattern of the mapping.
This class implements methods in the abstract class AuthConfigFactory.
The jndi-nameType type designates a JNDI name in the
Deployment Component's environment and is relative to the
java:comp/env context.
Represents binary-formatted kerberos security tokens
This interface represents Kerberos Token
Base class for all KeyBindings
TODO: Not clear how this gets used
Java class for KeyExchangeTokenType complex type.
Java class for KeyExchangeTokenType complex type.
Interface for KeyIdentifier reference type inside a STR
KeyIdentifier Interface
KeyIdentifier implementation
A security token key identifier
Java class for KeyInfoConfirmationDataType complex type.
Corresponds to the schema representation for a KeyInfo.
The interface for different KeyInfo Schemes
Java class for KeyInfoType complex type.
Implementation of JSR 105 KeySelector interface.
Callback class for obtaining the keystore
Used only for Metro(WSIT) Security Scenarios
It assumes that load method on the returned KeyStore was called
by the user to initialized the KeyStore.
Java class for KeyValueType complex type.
Indicates that a Binding should have its uid re-read when the actual signature is created
because the id is not known at startup time, for example because the binding
refers to a token which must be generated externally.
The lifecycle-callback type specifies a method on a
class to be called when a lifecycle event occurs.
Java class for LifetimeType complex type.
Java class for LifetimeType complex type.
The listenerType indicates the deployment properties for a web
application listener bean.
The local-homeType defines the fully-qualified
name of an enterprise bean's local home interface.
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
A local string manager.
Implementation of a local string manager.
Defines string formatting method for each constant in the resource file
The localType defines the fully-qualified name of an
enterprise bean's local interface.
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Derived from Apache sources and changed to use HmacSHA1 objects
objects instead of org.apache.xml.security.algorithms.SignatureAlgorithm
objects.
<metro:MaintenanceTaskPeriod Milliseconds="..." />
The MakeConnection element is sent in the body of a one-way message that
establishes a contextualized back-channel for the transmission of messages
according to matching criteria (defined below).
<wsmc:MCSupported ...>...</wsmc:MCSupported>
Remove all existing policies and policy references from the given XML document
and insert the new effective policies.
Represents mandatory header elements that need to present in the message.
Java class for ManifestType complex type.
<metro:MaxConcurrentSessions>...</metro:MaxConcurrentSessions>
Class contains constants for policy namespaces used by this RM
implementation.
This factory class is responsible for instantiating RX tubes based on
the actual configuration of RX-related web services features.
WSS xmlns and prefix constants used in wss code throughout.
The message-destination-linkType is used to link a message
destination reference or message-driven bean to a message
destination.
[
The message-destination-ref element contains a declaration
of Deployment Component's reference to a message destination
associated with a resource in Deployment Component's
environment.
[
The message-destinationType specifies a message
destination.
[
The message-destination-typeType specifies the type of
the destination.
The message-destination-usageType specifies the use of the
message destination indicated by the reference.
Represents Security Header layout.
If the condition listed below is reached, the RM Destination MUST generate this fault.
When MakeConnection is used, and a message is returned on the
transport-specific back-channel, the MessagePending header
SHOULD be included on the returned message as an indicator
whether there are additional messages waiting to be retrieved
using the same selection criteria that was specified in the
MakeConnection element.
Represents an ordered collection of Security Policies
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Java class for Metadata element declaration.
Class used for retrieving metadata at runtime.
Java class for MetadataReference element declaration.
Factory class for metadata resolver.
Plugin to wsimport for mex/ws-transfer requests.
Java class for MetadataSection element declaration.
This pipe handles any mex requests that come through.
Class for making mex Get requests (which are the same
as ws-transfer Get requests).
WSIT Tubeline assembler factory
Represents a base class for Message Level Security (MLS) Policies.
The NameID element specifies a
Subject by a combination
of a name and a security domain governing the name of the Subject.The NameIdentifier element specifies a
Subject by a combination
of a name and a security domain governing the name of the Subject.The NameIdentifier element specifies a
Subject by a combination
of a name and a security domain governing the name of the Subject.The NameIdentifier element specifies a
Subject by a combination
of a name and a security domain governing the name of the Subject.Java class for NameIdentifierType complex type.
Java class for NameIDType complex type.
Implements NamespaceContext .
Maintains map of all inscope namespaces
A stack based Symble Table.
This class exports a static Security Service for Verifying/Validating Security in an Inbound SOAPMessage.
This abstract class defines an SPI that Metro Application developers can implement, to handle custom
validation of Nonces used in conjunction with Password-Digest Authentication.
Exception to be thrown when an Error in processing received nonces occurs.
Java class for Notification complex type.
Java class for Notification complex type.
This is the base class for building Notifications.
This is the class for building WSAT10 Notifications.
This is the class for building WSAT11 Notifications.
Java class for NotUnderstoodType complex type.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.security.core.ai package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.wss.dsig.impl package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.security.core.xenc package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.config.metro.parser.jsr109 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.mex.client.schema package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.policy.impl.bindings package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.rx.mc.protocol.wsmc200702 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.secconv.impl.bindings package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.secconv.impl.bindings package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.secext10 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.secext11 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.soap11 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.soap12 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.trust.impl.bindings package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.trust.impl.wssx.bindings package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.wsu10 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.transport.tcp.servicechannel.stubs package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.tx.at.v10.types package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.tx.at.v11.types package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.tx.coord.v10.types package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.tx.coord.v11.types package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.wss.saml.internal.saml11.jaxb20 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.wss.saml.internal.saml20.jaxb20 package.
Java class for ObjectType complex type.
<xs:complexType name="OfferType">
<xs:sequence>
<xs:element ref="wsrm:Identifier"/>
<xs:element ref="wsrm:Expires" minOccurs="0"/>
<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
</xs:sequence>
<xs:anyAttribute namespace="##other" processContents="lax"/>
</xs:complexType>
Java class for OfferType complex type.
Java class for OnBehalfOfType complex type.
Java class for OnBehalfOfType complex type.
This is an implementation of the abstract
Condition class, which
specifes that the assertion this OneTimeUse is part of,
is the new element in SAML 1.1, that allows an assertion party to express that
an assertion should not be cached by the relying party for future use.This is an implementation of the abstract
Condition class, which
specifes that the assertion this DoNotCacheCondition is part of,
is the new element in SAML 1.1, that allows an assertion party to express that
an assertion should not be cached by the relying party for future use.Java class for OneTimeUseType complex type.
Java class for openChannel complex type.
Java class for openChannelResponse complex type.
Java class for OperatorContentType complex type.
PolicyFeatureConfigurator, which will transform SOAP/TCP policy
assertions to features on corresponding ports.
<sunc:Ordered />
A concurrent mostly non-blocking connection cache.
Outbound sequence implementation
Java class for Outcome.
Exception used by sequence implementation to reject out of order
message number for a given sequence when InOrder QoS is configured.
NIO utility to flush
ByteBufferThis type is a general type that can be used to declare
parameter/value lists.
ParserVocabulary factory to be used in SOAP/TCP codec
Specifies a participant that plays a role in the use of
the token or who are allowed to use the token.
The common implementation for wsat10 and wsat11 Participants endpoints.
This is the common interface implemented by wsat10 and wsat 11 participants endpoints and client proxy
Specifies a participant that plays a role in the use of
the token or who are allowed to use the token.
Specifies a participant that plays a role in the use of
the token or who are allowed to use the token.
This is the base class for building client proxy for invoking Participant services..
This is the base class for building client proxy for invoking WSAT10 Participant services..
This is the base class for building client proxy for invoking WSAT11 Participant services..
Contains information about which parties are authorized in the
use of the token.
Contains information about which parties are authorized in the
use of the token.
Contains information about which parties are authorized in the
use of the token.
Java class for ParticipantsType complex type.
Java class for ParticipantsType complex type.
Java class for ParticipantType complex type.
Java class for ParticipantType complex type.
This Callback should be handled if the password for the username token
needs to be supplied at run-time.
This type is used for password elements per Section 4.1.
This Callback is intended for Username-Password validation.
Represents a validation request when the password in the username token
is in digested form.
Implements WSS digest Password Validation.
Interface for validating password.
Represents a validation request when the password in the username token
is in plain text.
The elements that use this type designate either a relative
path or an absolute path starting with a "/".
[
The persistence-context-ref element contains a declaration
of Deployment Component's reference to a persistence context
associated within a Deployment Component's
environment.
The persistence-context-typeType specifies the transactional
nature of a persistence context reference.
[
The persistence-unit-ref element contains a declaration
of Deployment Component's reference to a persistence unit
associated within a Deployment Component's
environment.
Java class for PGPDataType complex type.
This pipe is used to do client side security for app server
Java class for Policy element declaration.
Holds all the Translated info for one PolicyAlternative
Java class for PolicyAttachment element declaration.
This interface is implemeted by all SecurityHeaderElement's that are capable of building
XWSS policy from the incoming message.
Reads a policy configuration file and returns the WSDL model generated from it.
SOAP/TCP connection cache settings holder.
Thrown by the classes implementing the Policy framework
Java class for PolicyReference element declaration.
A collection of utility methods to load resources from the classpath.
This is an internal interface not exposed to developer.
Exception indicating a Policy Violation typically encountered when processing
an Inbound Message.
SOAP/TCP invocation transformer, which is responsible to insert SOAP/TCP 'port'
attribute in a published WSDL
The port-component-ref element declares a client dependency
on the container for resolving a Service Endpoint Interface
to a WSDL port.
The port-component element associates a WSDL port with a web service
interface and implementation.
Class to hold information about a port, such as
the port name, address, and name of the containing service.
Deprecated.
: since XWS 2.0 EA
Java class for anonymous complex type.
Objects of this class act as KeyBindings for AuthenticationTokens such
as AuthenticationTokenPolicy.X509CertificateBinding and
AuthenticationTokenPolicy.SAMLAssertionBinding.
Callback class for obtaining the private key from KeyStore
Used only for Metro(WSIT) Security Scenarios
This class represents a Context that is used by the XWS-Security Runtime to
apply/verify Security Policies on an Outgoing/Incoming SOAP Message.
Java class for ProofEncryptionType complex type.
Java class for ProofEncryptionType complex type.
Java class for PropertiesType complex type.
Java class for PropertiesType complex type.
Deprecated.
This callback is no longer supported by the XWS-Security runtime, use the XWS-Security configuration
file to set the above property values instead.
Specifies a name/value pair.
Java class for ProxyRestrictionType complex type.
This abstract class defines an SPI that Metro Application developers can implement, to handle custom
username/password and username/Password-Digest authentication.
Java class for reasontext complex type.
Create a new WSEndpoint instance and use it to replace the existing WSEndpoint
instance in a ManagedEndpoint.
Parent interface for different reference mechanisms inside a STR
Java class for ReferenceList element declaration.
A ReferenceList element is defined as follows:
Java class for ReferenceType complex type.
Java class for ReferenceType complex type.
This type represents a reference to an external security token.
Java class for RegisterResponseType complex type.
Java class for RegisterResponseType complex type.
Java class for RegisterType complex type.
Java class for RegisterType complex type.
Used by GFServerConfigProvider to parse the configuration file.
[
The remote element contains the fully-qualified name
of the enterprise bean's remote interface.
Used to specify renew semantics for types that support this operation.
Used to specify renew semantics for types that support this operation.
Used to specify renew semantics for types that support this operation.
Java class for RenewingType complex type.
Java class for RenewingType complex type.
Target specifying the Security token to be renewed.
Target specifying the Security token to be renewed.
Target specifying the Security token to be renewed.
Java class for RenewTargetType complex type.
Java class for RenewTargetType complex type.
Java class for anonymous complex type.
TODO: The trust spec talks about RequestedAttachedReference,
RequestedUnAttachedReference (in section 6.2) and it talks
about <wst:RequestedTokenReference> in section 6.2.7.
Implementation for RequestedAttachedReference.
Implementation for RequestedAttachedReference.
Java class for RequestedProofTokenType complex type.
Java class for RequestedProofTokenType complex type.
The trust spec talks about RequestedAttachedReference,
RequestedUnAttachedReference (in section 6.2)
Base class for these two above.
Java class for RequestedReferenceType complex type.
Java class for RequestedReferenceType complex type.
Implementation for the RequestedSecurityToken.
Implementation for the RequestedSecurityToken.
Java class for RequestedSecurityTokenType complex type.
Java class for RequestedSecurityTokenType complex type.
The response payload for a successful cancellation of a Token
Java class for RequestedTokenCancelledType complex type.
Java class for RequestedTokenCancelledType complex type.
Implementation for RequestedUnattachedReference.
Implementation for RequestedUnattachedReference.
TODO: Not clear how this gets used
Java class for RequestKETType complex type.
Java class for RequestKETType complex type.
The RequestSecurityTokenCollection (RSTC) element is used to provide multiple RST requests.
Implementation of the RequestSecurityToken interface.
Implementation of the RequestSecurityToken interface.
Used to specify multiple RSTR responses, each of which has separate
key information.
Java class for RequestSecurityTokenResponseCollectionType complex type.
The <wst:RequestSecurityTokenResponseCollection> element (RSTRC) MUST be used to return a security token or
response to a security token request on the final response.
Implementation of a RequestSecurityTokenResponse.
Implementation of a RequestSecurityTokenResponse.
Actual content model is non-deterministic, hence wildcard.
Actual content model is non-deterministic, hence wildcard.
Contains information to be sent in message to the token issuer when requesting for IssuedTokens
Actual content model is non-deterministic, hence wildcard.
Actual content model is non-deterministic, hence wildcard.
Used to specify the header elements that the message MUST contain.
Specifies list of SOAP Headers that must be present in the SOAP Messages.
The res-authType specifies whether the Deployment Component
code signs on programmatically to the resource manager, or
whether the Container will sign on to the resource manager
on behalf of the Deployment Component.
<sunc:ResendInterval Milliseconds="..." />
This resolver is used for resolving same-document URIs for eg.
[
The resource-env-refType is used to define
resource-env-ref elements.
[
The resource-refType contains a declaration of a
Deployment Component's reference to an external resource.
Corresponds to the jakarta.xml.ws.RespectBinding annotation
or its corresponding jakarta.xml.ws.RespectBindingFeature web
service feature.
The res-sharing-scope type specifies whether connections
obtained through the given resource manager connection
factory reference can be shared.
Java class for RetrievalMethodType complex type.
<wsrm:RMAssertion [wsp:Optional="true"]? ... >
<wsrm:InactivityTimeout Milliseconds="xs:unsignedLong" ... /> ?
<wsrm:BaseRetransmissionInterval Milliseconds="xs:unsignedLong".../>?
<wsrm:ExponentialBackoff ... /> ?
<wsrm:AcknowledgementInterval Milliseconds="xs:unsignedLong" ... /> ?
...
</wsrm:RMAssertion>
<wsrmp:RMAssertion [wsp:Optional="true"]? ... >
<wsp:Policy>
[ <wsrmp:SequenceSTR/> |
<wsrmp:SequenceTransportSecurity/> ] ?
<wsrmp:DeliveryAssurance>
<wsp:Policy>
[ <wsrmp:ExactlyOnce/> |
<wsrmp:AtLeastOnce/> |
<wsrmp:AtMostOnce/> ]
<wsrmp:InOrder/> ?
</wsp:Policy>
</wsrmp:DeliveryAssurance> ?
</wsp:Policy>
...
</wsrmp:RMAssertion>
Reliable messaging run-time configuration factory
Filter instance of this class checks if the RM is enabled on the current WS port.
<ms:RmFlowControl>
<ms:MaxReceiveBufferSize>value</ms:MaxReceiveBufferSize>
</ms:RmFlowControl>
TODO: Make this configurable
This enumeration contains all currently supported WS-ReliableMessaging versions.
Subclass of RMException thrown when an incorrect STR is
used to secure an inbound message.
This factory class is responsible for instantiating RM tubes based on
the actual configuration of a RM web services feature.
The role-nameType designates the name of a security role.
Java class for RSAKeyValueType complex type.
RsaToken should be used with SecurityPolicy submission namespace (2005/07) and a namespace of
http://schemas.microsoft.com/ws/2005/07/securitypolicy.
RsaToken should be used with SecurityPolicy submission namespace (2005/07) and a namespace of
http://schemas.microsoft.com/ws/2005/07/securitypolicy.
The run-asType specifies the run-as identity to be
used for the execution of a component.
Common base for WS-RX technology configuration
Represents all exceptions that may possibly be recovered in the client code.
Protocol-independent abstraction over message/packet
Represents all generally unrecoverable exceptions that may occur during RX runtime
processing
Required wrapper for custom
ServerAuthModuleRequired wrapper for custom
ServerAuthModuleRequired wrapper for custom
ServerAuthModule.The schema definition for a SAML
Assertion is as follows:Deprecated.
use the new extended SAMLValidator interface
An implementation of the extended SAMLValidator interface
can throw UnsupportedOperationException for methods defined in this
base interface.
This class is an extension point for all SAML related exceptions.
This interface represents requirement for SAML Token
Implementation of the SecondaryParameters interface.
This interface represents requirement for Security Context Token defined in WS-SecureConversation 1.0
represents a SOAP/Security Header that is either signed or encrypted.
This class exports a static Security Service for Securing an Outbound SOAPMessage.
SecurityPolicy Assertion implementation classes should implement
this interface.
Digester for XWS-Security configuration.
A Factory for creating an XWSSecurityConfiguration object(s).
Represents a Parser for reading an XWS-Security configuration and creating an
appropriate XWS-Security configuration object.
Provides a way to obtain credentials from an
encompassing runtime into the Metro Pipeline runtime
Provides a Default Implementation (tailored for GlassFish)
of the SecurityContext interface
SecurityContextToken Implementation
SecurityContextToken Interface
SecurityContextToken Implementation
SecurityContextToken Implementation
SecurityContextToken Implementation
<wsc:SecurityContextToken wsu:Id="..." ...>
<wsc:Identifier>...</wsc:Identifier>
<wsc:Instance>...</wsc:Instance>
...
The
SecurityContextTokenInfo class represents security parameters
which will be saved in the Session object so that whenever the endpoint
crashes the security negotiations can be resumed from its original state and no new
negotiations need to be done.The
SecurityContextTokenInfo class represents security parameters
which will be saved in the Session object so that whenever the endpoint
crashes the security negotiations can be resumed from its original state and no new
negotiations need to be done.Actual content model is non-deterministic, hence wildcard.
Actual content model is non-deterministic, hence wildcard.
The SecurityEnvironment interface links the XWS-Security runtime with the
environment/container in which it is running.
Policy WS feature configurator implementation for the security domain
A SecurityHeaderException indicates that there is a problem with the
security header elements and subelements.
This complexType defines header block to use for security-relevant data directed at a specific SOAP actor.
Tagging interface for the following Security Policy types (or any custom defined security policy type)
MLSPolicy
SecurityPolicyContainer
DynamicSecurityPolicy
Represents a container for a static collection of SecurityPolicies.
A Factory interface for Generating Concrete Security Policies
Cache XWSS Policy i,e MessagePolicy for each message and cache all the
Issued and SecureConversation Tokens for quick lookup.
This interface represents a Context that is used by the XWS-Security 2.0 Runtime to
apply/verify Security Policies on an Outgoing/Incoming SOAP Message.
This class exports a static Security Service for Verifying/Validating Security in an Inbound SOAPMessage.
The security-role-refType contains the declaration of a
security role reference in a component's or a
Deployment Component's code.
[
The security-roleType contains the definition of a security
role.
The root class for Security Token Exceptions.
TODO: refine/define the methods in this interface
SecurityTokenReference implementation
This type is used reference a security token.
Utility class for the Encryption and Signature related methods
Class was copied from GlassFish Grizzly sources to be available
also for client side and don't require GlassFish to be installed
Factory used to dispatch/share
Selector.Abstraction of the
SequenceAcknowledgement WS-RM protocol element.Java class for anonymous complex type.
Java class for anonymous complex type.
Java class for anonymous complex type.
Java class for anonymous complex type.
This fault is generated by an RM Destination to indicate that the specified Sequence
has been closed.
SequenceElement is based on a JAXB Schema Compiler generated class that serializes
and deserialized the
SequenceType defined in the WS-RM schema.Java class for SequenceType complex type.
Java class for anonymous complex type.
Java class to handle SequenceFaults
Java class for SequenceFaultType complex type.
The Endpoint that generates this fault SHOULD make every reasonable effort to
notify the corresponding Endpoint of this decision.
SerializerVocabulary factory to be used in SOAP/TCP codec
This is used by JAXWSContainer to return proper 196 security and
app server monitoring pipes to the StandAlonePipeAssembler and
TangoPipeAssembler
This pipe is used to do 196 security
TubeConfiguration for servers.This class was generated by the JAXWS SI.
This class was generated by the JAXWS SI.
This class is used by the JAX-WS code when it needs to retrieve
metadata from an endpoint using mex.
The service-impl-bean element defines the web service implementation.
The service-ref element declares a reference to a Web
service.
As the ServletContext is not a mandatory dependency, we have to expect it is not present.
[
The servlet-link element is used in the service-impl-bean element
to specify that a Service Implementation Bean is defined as a
JAX-RPC Service Endpoint.
The
Session object is used to manage state between multiple requests
from the same client.The
SessionManager is used to obtain session information
This can be implemented using persistent storage mechanisms or using transient storage
Even if it is implemented using persistent storage the implementation should take care
of backing by a cache which will avoid the overhead of serialization and database
operationsIn memory implementation of
SessionManager
<element name="Signature" type="ds:SignatureType"/>
<complexType name="SignatureType">
<sequence>
<element ref="ds:SignedInfo"/>
<element ref="ds:SignatureValue"/>
<element ref="ds:KeyInfo" minOccurs="0"/>
<element ref="ds:Object" minOccurs="0" maxOccurs="unbounded"/>
</sequence>
<attribute name="Id" type="ID" use="optional"/>
</complexType>
Process SignatureConfirmation: Add SignatureConfirmation or verify
received SignatureConfirmation
wsse11:SignatureConfirmation
A policy representing a WSS1.1 SignatureConfirmation element.
Java class for SignatureConfirmationType complex type.
Performs signature or verifies signature
Message ANNOTATION is performed as follows:
if (complete policy resolution should happen)
make DynamicPolicyCallback
else
// assumes feature binding component is statically specified -
// including targets and canonicalization algorithm
if (X509CertificateBinding)
resolve certificate - make SignatureKeyCallback
if (X509CertificateBinding has associated SymmetricKeyBinding)
resolve symmetric key - make SymmetricKeyCallback
else
if (X509CertificateBinding has no associated bindings ||
X509CertificateBinding has associated PrivateKeyBinding)
create PrivateKeyBinding if req'd with private key associated with the certificate
else
throw Exception
else
throw Exception
call SignatureProcessor
Message (signature verification) VALIDATION is performed as follows:
if (ADHOC processing mode)
if (complete policy resolution should happen)
make DynamicPolicyCallback
call VerificationProcessor
else
if (POSTHOC or DEFAULT mode)
call VerificationProcessor
<element name="Signature" type="ds:SignatureType"/>
<complexType name="SignatureType">
<sequence>
<element ref="ds:SignedInfo"/>
<element ref="ds:SignatureValue"/>
<element ref="ds:KeyInfo" minOccurs="0"/>
<element ref="ds:Object" minOccurs="0" maxOccurs="unbounded"/>
</sequence>
<attribute name="Id" type="ID" use="optional"/>
</complexType>
CallBack implementation for signature key.
A Callback initialized with this request should be handled if the
private key to be used for signing is mapped to some alias.
A Callback initialized with this request should be handled if there's
some default private key to be used for signing.
A CallbackHandler handling an instance of this request should make
sure that a private key and a corresponding X.509 certificate must
be set on the request.
A Callback initialized with this request should be handled if the
private key to be used for signing is to be retrieved given the PublicKey
Java class for SignatureMethodType complex type.
Objects of this class represent a policy for Signing parts of a SOAP Message.
A class representing FeatureBindings for a SignaturePolicy
The FeatureBinding would contain information about the MessageParts
to be Signed, and the CanonicalizationMethod.
Java class for SignaturePropertiesType complex type.
Java class for SignaturePropertyType complex type.
Objects of this class represent a Signature Target that can be part of
the FeatureBinding for a SignaturePolicy (refer SignaturePolicy.FeatureBinding).
This class represents a Transform that can appear on a SignatureTarget.
Java class for SignatureType complex type.
Java class for SignatureValueType complex type.
CallBack implementation for signature verification key.
Request for an X.509 certificate given the Public Key
This is an optional request and need not be handled
by the handler.
Request for a private key when the X.509 Thumb print
value for a corresponding X.509 Certificate is given.
A CallbackHandler handling an instance of this request should make
sure that an X.509 certificate (to be used for signature verification)
must be set on the request.
Request for an X.509 certificate whose Issuer Name and Serial Number
values are given.
Request for an X.509 certificate whose X.509 Subject Key Identifier
value is given.
Challenge that requires the other party to sign a specified set
of information.
Challenge that requires the other party to sign a specified set
of information.
Challenge that requires the other party to sign a specified set
of information.
Response to a challenge that requires the signing of a specified
set of information.
Response to a challenge that requires the signing of a specified
set of information.
Response to a challenge that requires the signing of a specified
set of information.
Java class for SignChallengeType complex type.
Java class for SignChallengeType complex type.
Represents message part that is signed.
Identifies list of elements in the SOAP Message that need to be integrity protected.
Signed, encrypted supporting tokens are Signed supporting tokens that are also
encrypted when they appear in the wsse:SecurityHeader.
Signed, endorsing, encrypted supporting tokens are signed, endorsing supporting
tokens that are also encrypted when they appear in the wsse:SecurityHeader.
Signed endorsing tokens sign the entire ds:Signature element produced from the message signature and
are themselves signed by that message signature, that is both tokens (the token used for the message
signature and the signed endorsing token) sign each other.
<element name="SignedInfo" type="ds:SignedInfoType"/>
<complexType name="SignedInfoType">
<sequence>
<element ref="ds:CanonicalizationMethod"/>
<element ref="ds:SignatureMethod"/>
<element ref="ds:Reference" maxOccurs="unbounded"/>
</sequence>
<attribute name="Id" type="ID" use="optional"/>
</complexType>
Java class for SignedInfoType complex type.
A wrapper over a
Header or a SecurityHeaderElementThis interface identifies targets in the message that need to be integrity protected.
Signed tokens are included in the message signature as defined above and may
optionally include additional message parts to sign and/or encrypt.
Derived from Apache sources and changed to use java.security.Signature
objects as input instead of org.apache.xml.security.algorithms.SignatureAlgorithm
objects.
SOAP authentication parameter.
Java class for SPKIDataType complex type.
Representation of SOAP Body data
Java class for StatementAbstractType complex type.
Java class for StatementAbstractType complex type.
This class represents the static context associated with any Security Policy elements
defined in a
xwss:JAXRPCSecurity configuration.Represents a static policy identifying context.
Java class for StatusType complex type.
Java class for StatusType complex type.
This is a special string datatype that is defined by Java EE as
a base type for defining collapsed strings.
This interface is used by the RM server side to validate the SecurityTokenReference.
This interface is a plugin for attrinute services to a Security Token Service (STS).
This interface is a plugin for authorization services to a Security Token Service (STS).
This interface contains the attributes for configuring an STS.
This interface is used to find the
STSConfiguration.Java class for subcode complex type.
The
Subject element specifies one or more subjects.The
Subject element specifies one or more subjects.The
Subject element specifies one or more subjects.Class that can be used on the ServerSide by the SEI implementation methods, Callback Handlers
and Standalone SAAJ Applications using XWSS.
The
SubjectConfirmation element specifies a subject by specifying data that
authenticates the subject.The
SubjectConfirmation element specifies a subject by specifying data that
authenticates the subject.The
SubjectConfirmation element specifies a subject by specifying data that
authenticates the subject.The
SubjectConfirmationData element specifies a subject by specifying data that
authenticates the subject.Java class for SubjectConfirmationDataType complex type.
Java class for SubjectConfirmationType complex type.
Java class for SubjectConfirmationType complex type.
The
SubjectLocality element specifies the DNS domain name
and IP address for the system entity that performed the authentication.The
SubjectLocality element specifies the DNS domain name
and IP address for the system entity that performed the authentication.The
SubjectLocality element specifies the DNS domain name
and IP address for the system entity that performed the authentication.Java class for SubjectLocalityType complex type.
Java class for SubjectLocalityType complex type.
Java class for SubjectStatementAbstractType complex type.
Java class for SubjectType complex type.
Java class for SubjectType complex type.
Java class for SupportedEnvType complex type.
Supporting tokens are included in the security header and may optionally include
additional message parts to sign and/or encrypt.
Binding defines SignatureToken and Encryption Token used from initiator to recipient and from recipient to initiator.
A policy representing a SymmetricKey that can be used as the
KeyBinding for a SignaturePolicy or an EncryptionPolicy.
PolicyFeatureConfigurator, which will transform SOAP/TCP policy
assertions to features on corresponding ports.Copies the SOAP message into an OutputStream using an optional stylesheet
to format the message.
Java class for TerminateSequenceType complex type.
Java class for TerminateSequenceType complex type.
Subclass of
RMException thrown from errors resulting
because the endpoint has encountered an unrecoverable condition or
detected a violation of the protocol and as a result has chosen to
terminate the sequenceJava class for TerminateSequenceResponseType complex type.
Implementation of a text/plain canonicalizer as per rules
defined in RFC 2046 (http://www.rfc-editor.org/rfc/rfc2046.txt)
Section 4.1.
Representation of Timestamp SecurityHeaderElement
Representation of Timestamp SecurityHeaderElement
TODO javadoc
WARNING: This class is a private utility class used by WS-RX implementation.
Processes export and import of wsu:Timestamp
Message ANNOTATION is performed as follows:
if (policy resolution should happen)
// make-DPC flag turned on
resolve TimestampPolicy
write wsu:Timestamp to header
Message VALIDATION is performed as follows:
if (ADHOC processing mode)
if (policy resolution should happen)
// make-DPC flag turned on
resolve TimestampPolicy
locate wsu:Timestamp element in the header
throw Exception if more than one found
validate wsu:Timestamp (delegate to SecurityEnvironment Implementation)
else
import wsu:Timestamp element
if (POSTHOC processing mode)
construct Timestamp policy and set it on FPC
else
if (DEFAULT processing mode)
validate wsu:Timestamp
A policy representing a WSS Timestamp element.
This complex type ties together the timestamp related elements into a composite type.
This interface can implemented by any class that is able to provide time-related
information.
Base Interface for all Tokens
Question: Can we adapt all tokens to implement this interface
Interface for processor of various token types like X509, SAML, SCT etc
Provides Meta Data about the token Policy.
TokenProcessor for Signature.
Interface is implemented by the token classes that are created from incoming messages.
Helper class for converting between Xids and WS-AT transaction Ids.
Access Transaction Inflow Contract from Java Connector 1.5 API.
Duplicates GF Transaction Manager extensions interface
TransactionImport
that support transaction inflow w/o resource adapter.Access hosting JTA 1.1 TransactionManager and TransactionSynchronizationRegistry.
Defines the interface between WS-AT and underlying transaction processing system
A
BlockingQueue in which producers may wait for consumers
to receive elements.This complexType defines a container for elements to be specified from any namespace as properties/parameters of a DSIG transformation.
Java class for TransformsType complex type.
Java class for TransformsType complex type.
Java class for TransformType complex type.
Represents TransportBinding Assertion.
TubeFactory implementation creating one of the standard JAX-WS RI tubes
This simple type designates a boolean with only two
permissible values
- true
- false
Represents WSTrust Assertion.
This interface captures metadata of a service provider.
Entry point to the various configuration information
necessary for constructing
Tubes.This is a helper class that provides some convenience methods wrapped around the
standard
Logger interface.Inicates that the sequence with given sequence identifier is not available.
RuntimeException which is thrown by security policy
assertion implementation when a Invalid PolicyAssertion is found.
The QName of the unsupported element(s) are included in the detail.
A simple Unsynced ByteArryOutputStream
Java class for UpgradeType complex type.
A class to represent a Uniform Resource Identifier (URI).
MalformedURIExceptions are thrown in the process of building a URI
or setting fields on a URI when an operation would result in an
invalid URI specification.
This resolver is used for resolving URIs.
The url-patternType contains the url pattern of the mapping.
Java class for UseKeyType complex type.
Java class for UseKeyType complex type.
This Callback should be handled if the username for the username token
needs to be supplied at run-time.
A class which can select specific alternatives of a Username or a SAMLToken appearing
as SignedSupportingTokens.
A class which can select specific alternatives of a Username or a X509 appearing
as SignedSupportingTokens.
Representation of UsernameToken SecurityHeaderElement
Representation of UsernameToken SecurityHeaderElement
Support for a WSS:Username Token Profile.
Represents UsernameToken Assertion
This type represents a username token per Section 4.1
Java class for anonymous complex type.
Java class for anonymous complex type.
Java class for UsingPolicy element declaration.
Java class for ValidateTargetType complex type.
ValidatorExtension : provides a way to set RuntimeProperties for Validators
Message implementation backed by XMLStreamReader.Java class for Vote.
The webservice-description element defines a WSDL document file
and the set of Port components associated with the WSDL ports
defined in the WSDL document.
Java class for webservicesType complex type.
This is the service client for WSAT10 endpoitns.
This is the service client for WSAT11 endpoitns.
User: paulparkinson
Date: Jan 19, 2010
Time: 12:19:26 PM
WS-AT Exception mapping of XAException
WS-C and WS-AT Fault factory.
Gateway XAResource for managing outbound WS-AT transaction branches.
Delegates to WSATGatewayRM for peer/delegate recovery.
This singleton serves not only as a helper and utility but as the core of the WS-AT resource manager and
holds the datastructures that maintain the endpoint references for durable/XAResource and volatile/Synchronization
WS-AT transaction participants.
User: paulparkinson
Date: Jan 19, 2010
Time: 12:19:39 PM
Typical inbound message:
Volatile WS-AT Participant
A class absorbs differences of WSAT versions.
This Policy extension configures the WSDLModel with AddressingFeature when
wsaw:UsingAddressing assertion is present in the PolicyMap.
Generate an wsaw:UsingAddressing policy assertion and updates the PolicyMap if AddressingFeature is enabled.
This class validates the wsaw:UsingAddressing assertion.
This supplies the prefixes for the namespaces under Addressing domain that are not covered by the default
Addressing Policy provider in JAX-WS.
The class provides an implementaion of JAX-WS
SDDocumentFilter interface.This class is used to add the endpoint's metadata to
the mex MetadataResponse element.
Load and process the WSIT configuration files.
Represents WSS Properties
Common Constants pertaining to WS-SecureConversation
A Factory for creating WS-SecureConversation contract instances.
Captures the SOAPFault that needs to be thrown by an Security Context Token Service when a
processing error occurs
A General WS-SecureConversation Implementation Exception
Represents a base class for SOAP Message Security Policies.
Provider to register STRTransform,Attachment-Complete and Attachment-ContentOnly Transforms
into XMLDSIG implementation.
This class is a Factory for generating the various Security Policy primitives
that are understood and processed by XWS-Security.
Facade for the
ServletContext class.The
WssSoapFaultException exception represents a
SOAP fault.WS startup servlet for Servlet based deployment
SOAP/TCP code configurator
WSTCPModule.
A
ProtocolFinder implementation that parse the available
SocketChannel bytes looking for the PROTOCOL_ID bytes.SOAP/TCP implementation of Tomcat ProtocolHandler, based on Grizzly 1.0
Class is used to translate WSTCPURI to String and vice versa
This is used in JAXB serialization/deserialization
The Contract to be used by the Trust-Plugin on the Client Side.
Common Constants pertaining to WS-Trust
List of STS Properties
The Contract (SPI) to be used by an STS to handle an Incoming WS-Trust request and
send the corresponding response.
A Factory for creating the WS-Trust schema elements, and marshalling/un-marshalling them
A Factory for creating the WS-Trust schema elements,
and marshalling/un-marshalling them.
A General WS-Trust Implementation Exception
A Factory for creating concrete WS-Trust contract instances
Captures the SOAPFault that needs to be thrown by an STS when a processing error occurs
Represents binary-formatted X509 security tokens
Java class for X509DataType complex type.
Java class for X509IssuerSerialType complex type.
An X509 v3 certificate BinarySecurityToken.
Represents BinarySecurityToken.
A factory to create XML and FI parsers.
This type adds an "id" attribute to xsd:anyURI.
This type adds an "id" attribute to xsd:boolean.
This type adds an "id" attribute to xsd:integer.
This type adds an "id" attribute to xsd:NMTOKEN.
This type adds an "id" attribute to xsd:nonNegativeInteger.
This type adds an "id" attribute to xsd:positiveInteger.
This type adds an "id" attribute to xsd:QName.
This type adds an "id" attribute to xsd:string.
An XWSSecurityConfiguration object is used
by a JAXWS 2.0 Client to specify the client side security configuration.
Top level exception used to describe various Errors while processing
Secure SOAP messages.
Will convert WS Security Policy to XWSS policy.
XWSSProcessor interface defines methods for
Securing an outbound SOAPMessage
Verifying the security in an inbound SOAPMessage
An XWSSProcessor can add/verify Security in a
SOAPMessage as defined by the OASIS WSS 1.0 specification.XWSSProcessorFactory is a factory for creating XWSSProcessor
Objects.Serializes
boolean as 0 or 1.