com.sun.xml.wss.jaxws.impl

Class SecurityTubeBase

java.lang.Object

com.sun.xml.ws.api.pipe.helper.AbstractTubeImpl

com.sun.xml.ws.api.pipe.helper.AbstractFilterTubeImpl

com.sun.xml.wss.jaxws.impl.SecurityTubeBase

All Implemented Interfaces:

com.sun.xml.ws.api.pipe.Pipe, com.sun.xml.ws.api.pipe.Tube

Direct Known Subclasses:

SecurityClientTube, SecurityServerTube

public abstract class SecurityTubeBase
extends com.sun.xml.ws.api.pipe.helper.AbstractFilterTubeImpl

Author:

Vbkumar.Jayanti@Sun.COM, shyam.rao@sun.com

Field Summary

Fields

Modifier and Type	Field and Description
protected boolean	allowMissingTimestamp
protected AlgorithmSuite	bindingLevelAlgSuite
protected com.sun.xml.ws.policy.Policy	bpMSP
protected boolean	bsp10
protected com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation	cachedOperation Constants for RM Security Processing
protected static boolean	debug
protected boolean	disableIncPrefix
protected boolean	disablePayloadBuffer
protected static List<com.sun.xml.ws.policy.PolicyAssertion>	EMPTY_LIST
protected boolean	encHeaderContent
protected boolean	encRMLifecycleMsg
protected boolean	isCertValid
protected boolean	isCertValidityVerified
protected boolean	isEPREnabled
protected boolean	isSOAP12
protected Hashtable<String,IssuedTokenContext>	issuedTokenContextMap
protected int	iterationsForPDK
protected static JAXBContext	jaxbContext
protected static Logger	log
protected Marshaller	marshaller
protected McProtocolVersion	mcVer
protected boolean	optimized
protected List<PolicyAlternativeHolder>	policyAlternatives
protected RmProtocolVersion	rmVer
protected SecurityEnvironment	secEnv
protected boolean	securityMUValue
protected static ArrayList<String>	securityPolicyNamespaces
protected X509Certificate	serverCert
protected SOAPFactory	soapFactory
protected com.sun.xml.ws.api.SOAPVersion	soapVersion
protected SecurityPolicyVersion	spVersion
protected long	timestampTimeOut
protected boolean	transportOptimization
protected TubeConfiguration	tubeConfig
protected Unmarshaller	unmarshaller
protected static String	WSDLPORT
protected static String	WSENDPOINT
protected com.sun.xml.ws.policy.Policy	wsitConfig
protected com.sun.xml.ws.policy.PolicyMap	wsPolicyMap
protected WSSCVersion	wsscVer
protected WSTrustVersion	wsTrustVer

Fields inherited from class com.sun.xml.ws.api.pipe.helper.AbstractFilterTubeImpl

next

Constructor Summary

Constructors

Modifier	Constructor and Description
protected	SecurityTubeBase(SecurityTubeBase that, com.sun.xml.ws.api.pipe.TubeCloner cloner)
	SecurityTubeBase(TubeConfiguration config, com.sun.xml.ws.api.pipe.Tube nextTube)

Method Summary

Modifier and Type	Method and Description
protected abstract void	addIncomingFaultPolicy(com.sun.xml.ws.policy.Policy effectivePolicy, SecurityPolicyHolder sph, com.sun.xml.ws.api.model.wsdl.WSDLFault fault)
protected abstract SecurityPolicyHolder	addIncomingMP(com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation operation, com.sun.xml.ws.policy.Policy policy, PolicyAlternativeHolder ph)
protected abstract void	addIncomingProtocolPolicy(com.sun.xml.ws.policy.Policy effectivePolicy, String protocol, PolicyAlternativeHolder ph)
protected abstract void	addOutgoingFaultPolicy(com.sun.xml.ws.policy.Policy effectivePolicy, SecurityPolicyHolder sph, com.sun.xml.ws.api.model.wsdl.WSDLFault fault)
protected abstract SecurityPolicyHolder	addOutgoingMP(com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation operation, com.sun.xml.ws.policy.Policy policy, PolicyAlternativeHolder ph)
protected abstract void	addOutgoingProtocolPolicy(com.sun.xml.ws.policy.Policy effectivePolicy, String protocol, PolicyAlternativeHolder ph)
protected boolean	bindingHasIssuedTokenPolicy()
protected boolean	bindingHasRMPolicy()
protected boolean	bindingHasSecureConversationPolicy()
protected void	buildProtocolPolicy(com.sun.xml.ws.policy.Policy endpointPolicy, PolicyAlternativeHolder ph)
protected void	cacheMessage(com.sun.xml.ws.api.message.Packet packet)
protected void	cacheOperation(com.sun.xml.ws.api.message.Message msg)
protected void	collectPolicies(List<PolicyAlternativeHolder> alternatives) Summary from Section 4.2, WS-Security Policy spec( version 1.1 July 2005 ).
protected SecurityPolicyHolder	constructPolicyHolder(com.sun.xml.ws.policy.Policy effectivePolicy, boolean isServer, boolean isIncoming)
protected SecurityPolicyHolder	constructPolicyHolder(com.sun.xml.ws.policy.Policy effectivePolicy, boolean isServer, boolean isIncoming, boolean ignoreST)
protected RuntimeException	generateInternalError(com.sun.xml.ws.policy.PolicyException ex)
protected String	getAction(com.sun.xml.ws.api.message.Packet packet)
protected abstract String	getAction(com.sun.xml.ws.api.model.wsdl.WSDLOperation operation, boolean isIncomming)
protected AlgorithmSuite	getAlgoSuite(AlgorithmSuite suite)
protected AlgorithmSuite	getBindingAlgorithmSuite(com.sun.xml.ws.api.message.Packet packet)
protected com.sun.xml.ws.policy.Policy	getEffectiveBootstrapPolicy(com.sun.xml.ws.policy.NestedPolicy bp)
protected List<com.sun.xml.ws.policy.PolicyAssertion>	getInBoundSCP(com.sun.xml.ws.api.message.Message message)
protected MessagePolicy	getInboundXWSBootstrapPolicy(Token scAssertion)
protected List<com.sun.xml.ws.policy.PolicyAssertion>	getIssuedTokenPoliciesFromBootstrapPolicy(Token scAssertion)
protected List<com.sun.xml.ws.policy.PolicyAssertion>	getKerberosTokenPoliciesFromBootstrapPolicy(Token scAssertion)
protected com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation	getOperation(com.sun.xml.ws.api.message.Message message)
protected com.sun.xml.ws.policy.PolicyMapKey	getOperationKey(com.sun.xml.ws.api.message.Message message)
protected List<com.sun.xml.ws.policy.PolicyAssertion>	getOutBoundKTP(com.sun.xml.ws.api.message.Packet packet, boolean isSCMessage)
protected List<com.sun.xml.ws.policy.PolicyAssertion>	getOutBoundSCP(com.sun.xml.ws.api.message.Message message)
protected MessagePolicy	getOutgoingXWSBootstrapPolicy(Token scAssertion)
protected MessagePolicy	getOutgoingXWSSecurityPolicy(com.sun.xml.ws.api.message.Packet packet, boolean isSCMessage)
protected List<com.sun.xml.ws.policy.PolicyAssertion>	getSecureConversationPolicies(com.sun.xml.ws.api.message.Message message, String scope)
protected SOAPFault	getSOAPFault(WssSoapFaultException sfe)
protected SOAPFaultException	getSOAPFaultException(WssSoapFaultException sfe)
protected SOAPFaultException	getSOAPFaultException(XWSSecurityException xwse)
protected ArrayList<com.sun.xml.ws.policy.PolicyAssertion>	getTokens(com.sun.xml.ws.policy.Policy policy)
protected com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation	getWSDLOpFromAction(com.sun.xml.ws.api.message.Packet packet, boolean isIncomming)
protected com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation	getWSDLOpFromAction(com.sun.xml.ws.api.message.Packet packet, boolean isIncomming, boolean isFault)
protected WSSAssertion	getWssAssertion(WSSAssertion asser)
protected boolean	hasKerberosTokenPolicy()
protected ProcessingContext	initializeInboundProcessingContext(com.sun.xml.ws.api.message.Packet packet)
protected ProcessingContext	initializeOutgoingProcessingContext(com.sun.xml.ws.api.message.Packet packet, boolean isSCMessage)
protected boolean	isAddressingEnabled()
protected boolean	isMakeConnectionMessage(com.sun.xml.ws.api.message.Packet packet)
protected boolean	isRMMessage(com.sun.xml.ws.api.message.Packet packet)
protected boolean	isSCCancel(com.sun.xml.ws.api.message.Packet packet)
protected boolean	isSCMessage(com.sun.xml.ws.api.message.Packet packet)
protected boolean	isSCRenew(com.sun.xml.ws.api.message.Packet packet)
protected boolean	isTrustMessage(com.sun.xml.ws.api.message.Packet packet)
protected Class	loadClass(String classname)
protected String	populateConfigProperties(Set<com.sun.xml.ws.policy.PolicyAssertion> configAssertions, Properties props)
protected void	resetCachedOperation()
protected PolicyAlternativeHolder	resolveAlternative(com.sun.xml.ws.api.message.Packet packet, boolean isSCMessage)
protected com.sun.xml.ws.api.message.Message	secureOutboundMessage(com.sun.xml.ws.api.message.Message message, ProcessingContext ctx)
protected SOAPMessage	secureOutboundMessage(SOAPMessage message, ProcessingContext ctx)
protected com.sun.xml.ws.policy.sourcemodel.PolicySourceModel	unmarshalPolicy(String resource)
protected com.sun.xml.ws.api.message.Message	verifyInboundMessage(com.sun.xml.ws.api.message.Message message, ProcessingContext ctx)
protected SOAPMessage	verifyInboundMessage(SOAPMessage message, ProcessingContext ctx)

Methods inherited from class com.sun.xml.ws.api.pipe.helper.AbstractFilterTubeImpl

preDestroy, processException, processRequest, processResponse

Methods inherited from class com.sun.xml.ws.api.pipe.helper.AbstractTubeImpl

copy, copy, doInvoke, doInvokeAndForget, doReturnWith, doSuspend, doSuspend, doSuspend, doSuspend, doThrow, doThrow, process

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

log

protected static final Logger log

optimized

protected boolean optimized

transportOptimization

protected boolean transportOptimization

issuedTokenContextMap

protected Hashtable<String,IssuedTokenContext> issuedTokenContextMap

tubeConfig

protected TubeConfiguration tubeConfig

jaxbContext

protected static JAXBContext jaxbContext

wsscVer

protected WSSCVersion wsscVer

wsTrustVer

protected WSTrustVersion wsTrustVer

rmVer

protected RmProtocolVersion rmVer

mcVer

protected McProtocolVersion mcVer

disablePayloadBuffer

protected boolean disablePayloadBuffer

bindingLevelAlgSuite

protected AlgorithmSuite bindingLevelAlgSuite

disableIncPrefix

protected boolean disableIncPrefix

encHeaderContent

protected boolean encHeaderContent

bsp10

protected boolean bsp10

allowMissingTimestamp

protected boolean allowMissingTimestamp

securityMUValue

protected boolean securityMUValue

encRMLifecycleMsg

protected boolean encRMLifecycleMsg

securityPolicyNamespaces

protected static final ArrayList<String> securityPolicyNamespaces

EMPTY_LIST

protected static final List<com.sun.xml.ws.policy.PolicyAssertion> EMPTY_LIST

secEnv

protected SecurityEnvironment secEnv

debug

protected static final boolean debug

See Also:

Constant Field Values

isSOAP12

protected boolean isSOAP12

soapVersion

protected com.sun.xml.ws.api.SOAPVersion soapVersion

soapFactory

protected SOAPFactory soapFactory

wsPolicyMap

protected com.sun.xml.ws.policy.PolicyMap wsPolicyMap

bpMSP

protected com.sun.xml.ws.policy.Policy bpMSP

timestampTimeOut

protected long timestampTimeOut

iterationsForPDK

protected int iterationsForPDK

isEPREnabled

protected boolean isEPREnabled

isCertValidityVerified

protected boolean isCertValidityVerified

policyAlternatives

protected List<PolicyAlternativeHolder> policyAlternatives

cachedOperation

protected com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation cachedOperation

Constants for RM Security Processing

wsitConfig

protected com.sun.xml.ws.policy.Policy wsitConfig

marshaller

protected Marshaller marshaller

unmarshaller

protected Unmarshaller unmarshaller

spVersion

protected SecurityPolicyVersion spVersion

WSDLPORT

protected static final String WSDLPORT

See Also:

Constant Field Values

WSENDPOINT

protected static final String WSENDPOINT

See Also:

Constant Field Values

serverCert

protected X509Certificate serverCert

isCertValid

protected boolean isCertValid

Constructor Detail

SecurityTubeBase

public SecurityTubeBase(TubeConfiguration config,
                        com.sun.xml.ws.api.pipe.Tube nextTube)

SecurityTubeBase

protected SecurityTubeBase(SecurityTubeBase that,
                           com.sun.xml.ws.api.pipe.TubeCloner cloner)

Method Detail

secureOutboundMessage

protected SOAPMessage secureOutboundMessage(SOAPMessage message,
                                            ProcessingContext ctx)

generateInternalError

protected RuntimeException generateInternalError(com.sun.xml.ws.policy.PolicyException ex)

secureOutboundMessage

protected com.sun.xml.ws.api.message.Message secureOutboundMessage(com.sun.xml.ws.api.message.Message message,
                                                                   ProcessingContext ctx)

verifyInboundMessage

protected SOAPMessage verifyInboundMessage(SOAPMessage message,
                                           ProcessingContext ctx)
                                    throws WssSoapFaultException,
                                           XWSSecurityException

Throws:

WssSoapFaultException

XWSSecurityException

verifyInboundMessage

protected com.sun.xml.ws.api.message.Message verifyInboundMessage(com.sun.xml.ws.api.message.Message message,
                                                                  ProcessingContext ctx)
                                                           throws XWSSecurityException

Throws:

XWSSecurityException

getIssuedTokenPoliciesFromBootstrapPolicy

protected List<com.sun.xml.ws.policy.PolicyAssertion> getIssuedTokenPoliciesFromBootstrapPolicy(Token scAssertion)

getKerberosTokenPoliciesFromBootstrapPolicy

protected List<com.sun.xml.ws.policy.PolicyAssertion> getKerberosTokenPoliciesFromBootstrapPolicy(Token scAssertion)

getOutgoingXWSSecurityPolicy

protected MessagePolicy getOutgoingXWSSecurityPolicy(com.sun.xml.ws.api.message.Packet packet,
                                                     boolean isSCMessage)

getOperation

protected com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation getOperation(com.sun.xml.ws.api.message.Message message)

getInboundXWSBootstrapPolicy

protected MessagePolicy getInboundXWSBootstrapPolicy(Token scAssertion)

getOutgoingXWSBootstrapPolicy

protected MessagePolicy getOutgoingXWSBootstrapPolicy(Token scAssertion)

initializeInboundProcessingContext

protected ProcessingContext initializeInboundProcessingContext(com.sun.xml.ws.api.message.Packet packet)

bindingHasIssuedTokenPolicy

protected boolean bindingHasIssuedTokenPolicy()

bindingHasSecureConversationPolicy

protected boolean bindingHasSecureConversationPolicy()

bindingHasRMPolicy

protected boolean bindingHasRMPolicy()

hasKerberosTokenPolicy

protected boolean hasKerberosTokenPolicy()

initializeOutgoingProcessingContext

protected ProcessingContext initializeOutgoingProcessingContext(com.sun.xml.ws.api.message.Packet packet,
                                                                boolean isSCMessage)

getSOAPFault

protected SOAPFault getSOAPFault(WssSoapFaultException sfe)

getSOAPFaultException

protected SOAPFaultException getSOAPFaultException(WssSoapFaultException sfe)

getSOAPFaultException

protected SOAPFaultException getSOAPFaultException(XWSSecurityException xwse)

collectPolicies

protected void collectPolicies(List<PolicyAlternativeHolder> alternatives)

Summary from Section 4.2, WS-Security Policy spec( version 1.1 July 2005 ). MessagePolicySubject : policy can be attached to 1) wsdl:binding/wsdl:operation/wsdl:input, ./wsdl:output, or ./wsdl:fault OperationPolicySubject : policy can be attached to 1)wsdl:binding/wsdl:operation EndpointPolicySubject : policy can be attached to 1)wsdl:port 2)wsdl:Binding

getInBoundSCP

protected List<com.sun.xml.ws.policy.PolicyAssertion> getInBoundSCP(com.sun.xml.ws.api.message.Message message)

getOutBoundSCP

protected List<com.sun.xml.ws.policy.PolicyAssertion> getOutBoundSCP(com.sun.xml.ws.api.message.Message message)

getOutBoundKTP

protected List<com.sun.xml.ws.policy.PolicyAssertion> getOutBoundKTP(com.sun.xml.ws.api.message.Packet packet,
                                                                     boolean isSCMessage)

getSecureConversationPolicies

protected List<com.sun.xml.ws.policy.PolicyAssertion> getSecureConversationPolicies(com.sun.xml.ws.api.message.Message message,
                                                                                    String scope)

getTokens

protected ArrayList<com.sun.xml.ws.policy.PolicyAssertion> getTokens(com.sun.xml.ws.policy.Policy policy)

getOperationKey

protected com.sun.xml.ws.policy.PolicyMapKey getOperationKey(com.sun.xml.ws.api.message.Message message)

addOutgoingMP

protected abstract SecurityPolicyHolder addOutgoingMP(com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation operation,
                                                      com.sun.xml.ws.policy.Policy policy,
                                                      PolicyAlternativeHolder ph)
                                               throws com.sun.xml.ws.policy.PolicyException

Throws:

com.sun.xml.ws.policy.PolicyException

addIncomingMP

protected abstract SecurityPolicyHolder addIncomingMP(com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation operation,
                                                      com.sun.xml.ws.policy.Policy policy,
                                                      PolicyAlternativeHolder ph)
                                               throws com.sun.xml.ws.policy.PolicyException

Throws:

com.sun.xml.ws.policy.PolicyException

getBindingAlgorithmSuite

protected AlgorithmSuite getBindingAlgorithmSuite(com.sun.xml.ws.api.message.Packet packet)

cacheMessage

protected void cacheMessage(com.sun.xml.ws.api.message.Packet packet)

getEffectiveBootstrapPolicy

protected com.sun.xml.ws.policy.Policy getEffectiveBootstrapPolicy(com.sun.xml.ws.policy.NestedPolicy bp)
                                                            throws com.sun.xml.ws.policy.PolicyException

Throws:

com.sun.xml.ws.policy.PolicyException

unmarshalPolicy

protected com.sun.xml.ws.policy.sourcemodel.PolicySourceModel unmarshalPolicy(String resource)
                                                                       throws com.sun.xml.ws.policy.PolicyException,
                                                                              IOException

Throws:

com.sun.xml.ws.policy.PolicyException

IOException

cacheOperation

protected final void cacheOperation(com.sun.xml.ws.api.message.Message msg)

resetCachedOperation

protected final void resetCachedOperation()

isSCMessage

protected boolean isSCMessage(com.sun.xml.ws.api.message.Packet packet)

isSCCancel

protected boolean isSCCancel(com.sun.xml.ws.api.message.Packet packet)

isSCRenew

protected boolean isSCRenew(com.sun.xml.ws.api.message.Packet packet)

isAddressingEnabled

protected boolean isAddressingEnabled()

isTrustMessage

protected boolean isTrustMessage(com.sun.xml.ws.api.message.Packet packet)

isRMMessage

protected boolean isRMMessage(com.sun.xml.ws.api.message.Packet packet)

isMakeConnectionMessage

protected boolean isMakeConnectionMessage(com.sun.xml.ws.api.message.Packet packet)

getAction

protected String getAction(com.sun.xml.ws.api.message.Packet packet)

getWSDLOpFromAction

protected com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation getWSDLOpFromAction(com.sun.xml.ws.api.message.Packet packet,
                                                                               boolean isIncomming)

getWSDLOpFromAction

protected com.sun.xml.ws.api.model.wsdl.WSDLBoundOperation getWSDLOpFromAction(com.sun.xml.ws.api.message.Packet packet,
                                                                               boolean isIncomming,
                                                                               boolean isFault)

buildProtocolPolicy

protected void buildProtocolPolicy(com.sun.xml.ws.policy.Policy endpointPolicy,
                                   PolicyAlternativeHolder ph)
                            throws com.sun.xml.ws.policy.PolicyException

Throws:

com.sun.xml.ws.policy.PolicyException

constructPolicyHolder

protected SecurityPolicyHolder constructPolicyHolder(com.sun.xml.ws.policy.Policy effectivePolicy,
                                                     boolean isServer,
                                                     boolean isIncoming)
                                              throws com.sun.xml.ws.policy.PolicyException

Throws:

com.sun.xml.ws.policy.PolicyException

constructPolicyHolder

protected SecurityPolicyHolder constructPolicyHolder(com.sun.xml.ws.policy.Policy effectivePolicy,
                                                     boolean isServer,
                                                     boolean isIncoming,
                                                     boolean ignoreST)
                                              throws com.sun.xml.ws.policy.PolicyException

Throws:

com.sun.xml.ws.policy.PolicyException

populateConfigProperties

protected String populateConfigProperties(Set<com.sun.xml.ws.policy.PolicyAssertion> configAssertions,
                                          Properties props)

loadClass

protected Class loadClass(String classname)
                   throws Exception

Throws:

Exception

getAlgoSuite

protected AlgorithmSuite getAlgoSuite(AlgorithmSuite suite)

getWssAssertion

protected WSSAssertion getWssAssertion(WSSAssertion asser)

addIncomingFaultPolicy

protected abstract void addIncomingFaultPolicy(com.sun.xml.ws.policy.Policy effectivePolicy,
                                               SecurityPolicyHolder sph,
                                               com.sun.xml.ws.api.model.wsdl.WSDLFault fault)
                                        throws com.sun.xml.ws.policy.PolicyException

Throws:

com.sun.xml.ws.policy.PolicyException

addOutgoingFaultPolicy

protected abstract void addOutgoingFaultPolicy(com.sun.xml.ws.policy.Policy effectivePolicy,
                                               SecurityPolicyHolder sph,
                                               com.sun.xml.ws.api.model.wsdl.WSDLFault fault)
                                        throws com.sun.xml.ws.policy.PolicyException

Throws:

com.sun.xml.ws.policy.PolicyException

addIncomingProtocolPolicy

protected abstract void addIncomingProtocolPolicy(com.sun.xml.ws.policy.Policy effectivePolicy,
                                                  String protocol,
                                                  PolicyAlternativeHolder ph)
                                           throws com.sun.xml.ws.policy.PolicyException

Throws:

com.sun.xml.ws.policy.PolicyException

addOutgoingProtocolPolicy

protected abstract void addOutgoingProtocolPolicy(com.sun.xml.ws.policy.Policy effectivePolicy,
                                                  String protocol,
                                                  PolicyAlternativeHolder ph)
                                           throws com.sun.xml.ws.policy.PolicyException

Throws:

com.sun.xml.ws.policy.PolicyException

getAction

protected abstract String getAction(com.sun.xml.ws.api.model.wsdl.WSDLOperation operation,
                                    boolean isIncomming)

resolveAlternative

protected PolicyAlternativeHolder resolveAlternative(com.sun.xml.ws.api.message.Packet packet,
                                                     boolean isSCMessage)