All Classes and Interfaces
Class
Description
This interface is designed for
Action element in SAML core assertion.This class is designed for
Action element in SAML core assertion.This class is designed for
Action element in SAML core assertion.Java class for ActionType complex type.
Java class for ActionType complex type.
The
Advice element contains additional information that the issuer wishes to
provide.The
Advice element contains additional information that the issuer wishes to
provide.The
Advice element contains additional information that the issuer wishes to
provide.Java class for AdviceType complex type.
Java class for AdviceType complex type.
Java class for AgreementMethodType complex type.
Represents the AlgorithmSuite assertion.
AlgorithmSuiteValue identifies the algorithm to be used to protect the message.
Used with a Keystore Assertion to select an Alias to be used for locating the Private Key
at runtime.
This indicates that returned tokens should allow requests for postdated
tokens.
This indicates that returned tokens should allow requests for postdated
tokens.
Java class for AllowPostdatingType complex type.
Java class for AllowPostdatingType complex type.
Java content class for anyType complex type.
Canoncializer for an Application Media Type.
Represents an XWS-Security configuration object, corresponding to the
<xwss:JAXRPCSecurity> element (as defined in XWS-Security,
configuration schema, xwssconfig.xsd).This interface stands for
Assertion element.This object stands for
Assertion element.This object stands for
Assertion element.AssertionIDRef element makes reference to a SAML
assertion.AssertionIDReference element makes reference to a SAML
assertion.Java class for AssertionType complex type.
Java class for AssertionType complex type.
Represents Asymmetric Token information to be used for Signature and Encryption
by the client and the service.
An implementation of Data type containing a JAX-WS attachment
Wrapper class to be used with XWSS attachment transform
provider implementation.
The
Attribute element specifies an attribute of the assertion subject.The
Attribute element specifies an attribute of the assertion subject.The
Attribute element specifies an attribute of the assertion subject.The
AttributeDesignator element identifies an attribute
name within an attribute namespace.The
AttributeDesignator element identifies an attribute
name within an attribute namespace.Java class for AttributeDesignatorType complex type.
Java class for AttributedURI complex type.
The
AttributeStatement element supplies a statement by the issuer that the
specified subject is associated with the specified attributes.The
AttributeStatement element supplies a statement by the issuer that the
specified subject is associated with the specified attributes.The
AttributeStatement element supplies a statement by the issuer that the
specified subject is associated with the specified attributes.Java class for AttributeStatementType complex type.
Java class for AttributeStatementType complex type.
Java class for AttributeType complex type.
Java class for AttributeType complex type.
This is an implementation of the abstract
Condition class, which
specifes that the assertion this AuthenticationCondition is part of, is
addressed to one or more specific audience.This is an implementation of the abstract
Condition class, which
specifes that the assertion this AuthenticationCondition is part of, is
addressed to one or more specific audience.This is an implementation of the abstract
Condition class, which
specifes that the assertion this AuthenticationCondition is part of, is
addressed to one or more specific audience.This is an implementation of the abstract
Condition class, which
specifes that the assertion this AuthenticationCondition is part of, is
addressed to one or more specific audience.Java class for AudienceRestrictionConditionType complex type.
Java class for AudienceRestrictionType complex type.
The
AuthenticationStatement element supplies a
statement by the issuer that its subject was authenticated by a
particular means at a particular time.The
AuthenticationStatement element supplies a
statement by the issuer that its subject was authenticated by a
particular means at a particular time.Java class for AuthenticationStatementType complex type.
processes diferent types of tokens like Username,X509,IssuedToken...
Objects of this class represent a concrete WSS Authentication
token as FeatureBinding.
A policy representing Kerberos Token.
A policy representing a RSAKeyPair.
A policy representing a SAML Assertion.
A policy representing a WSS UsernameToken.
A policy representing a WSS X509Certificate.
Provides verification (authentication) of a computed hash.
Provides verification (authentication) of a computed hash.
Java class for AuthenticatorType complex type.
Java class for AuthenticatorType complex type.
The
AuthnContext element may be used to indicate
to a replying party receiving an AuthenticationStatement that
a SAML authority may be available to provide additional information about
the subject of the statement.Java class for AuthnContextType complex type.
The
AuthorizationDecisionStatement element supplies a statement
by the issuer that the request for access by the specified subject to the
specified resource has resulted in the specified decision on the basis of
some optionally specified evidence.The
AuthnStatement element supplies a
statement by the issuer that its subject was authenticated by a
particular means at a particular time.The
AuthenticationStatement element supplies a
statement by the issuer that its subject was authenticated by a
particular means at a particular time.Java class for AuthnStatementType complex type.
The
AuthorityBinding element may be used to indicate
to a replying party receiving an AuthenticationStatement that
a SAML authority may be available to provide additional information about
the subject of the statement.The
AuthorityBinding element may be used to indicate
to a replying party receiving an AuthenticationStatement that
a SAML authority may be available to provide additional information about
the subject of the statement.Java class for AuthorityBindingType complex type.
The
AuthorizationDecisionStatement element supplies a statement
by the issuer that the request for access by the specified subject to the
specified resource has resulted in the specified decision on the basis of
some optionally specified evidence.The
AuthorizationDecisionStatement element supplies a statement
by the issuer that the request for access by the specified subject to the
specified resource has resulted in the specified decision on the basis of
some optionally specified evidence.Java class for AuthorizationDecisionStatementType complex type.
An authentication parameter used to encapsulate a
request and response objects.
The
AuthzDecisionStatement element supplies a statement
by the issuer that the request for access by the specified subject to the
specified resource has resulted in the specified decision on the basis of
some optionally specified evidence.Java class for AuthzDecisionStatementType complex type.
Implementation of MIME's Base64 encoding and decoding conversions.
Java class for BaseIDAbstractType complex type.
The Base class of an STS implementation.
Java class for BinaryExchangeType complex type.
Java class for BinaryExchangeType complex type.
Java class for BinarySecretType complex type.
Java class for BinarySecretType complex type.
Represents binary-formatted security tokens
A wsse:BinarySecurityToken.
Base Interface for Security Policy Binding assertions, identifies Algorithms that are supported,describes the layout of
the security header.
Java class for Body complex type.
Java class for Body complex type.
Class to store results from TokenBuilder.
Defines Binding for requesting security tokens to be cancelled.
Defines Binding for requesting security tokens to be cancelled.
Java class for CancelTargetType complex type.
Java class for CancelTargetType complex type.
Java class for CanonicalizationMethodType complex type.
Interface for defining MIME Content Canonicalizer.
Implements " Exclusive XML
Canonicalization, Version 1.0 "
Credits: During restructuring of the Canonicalizer framework, Ren?? Kollmorgen from Software AG submitted an implementation of ExclC14n which fitted into the old architecture and which based heavily on my old (and slow) implementation of "Canonical XML".
Credits: During restructuring of the Canonicalizer framework, Ren?? Kollmorgen from Software AG submitted an implementation of ExclC14n which fitted into the old architecture and which based heavily on my old (and slow) implementation of "Canonical XML".
This Callback is intended for X.509 certificate validation
A validator that implements the CertificateValidator interface
should be set on the callback by the callback handler.
Java class for CipherDataType complex type.
Java class for CipherReferenceType complex type.
Implementation class for Claims.
Implementation class for Claims.
Java class for ClaimsType complex type.
Java class for ClaimsType complex type.
This is used by WSClientContainer to return proper 196 security pipe
to the StandAlonePipeAssembler and TangoPipeAssembler
This pipe is used to do client side security for app server
TubeConfiguration for client.This is an abstract class which servers as an extension point for new
conditions.
This is an abstract class which servers as an extension point for new
conditions.
<element ref="{urn:oasis:names:tc:SAML:1.0:assertion}Condition"/>.
Java class for ConditionAbstractType complex type.
Java class for ConditionAbstractType complex type.
The validity of an
Assertion MAY be subject to a set of
Conditions.The validity of an
Assertion MAY be subject to a set of
Conditions.The validity of an
Assertion MAY be subject to a set of
Conditions.Java class for ConditionsType complex type.
Java class for ConditionsType complex type.
This is based Helper class for 196 Configuration.
Convert lines into the canonical format, that is, terminate lines with the
CRLF sequence.
Wrapper class for JSR 105 Data objects.Caches SignatureTarget
object and data resolved using this signature target.Reduces
the burden of instanceof checks.
This class provides utility to perform date conversion.
Java class for DecisionType.
Java class for DecisionType.
Represents an XWS-Security configuration object, corresponding to the
xwss:SecurityConfiguration element (as defined in XWS-Security,
configuration schema, xwssconfig.xsd).CallBack implementation for decryption key.
Given an alias get the
javax.crypto.SecretKeyCallBackHandler handling this request should set the private key to be
used for decryption on the request.
A Callback initialized with this request should be handled if the
private key to be used for decryption is to be retrieved given the PublicKey
Request for a symmetric key to be used for decryption.
Request for a private key when the X.509 Thumb print
value for a corresponding X.509 Certificate is given.
Request for a private key when a corresponding X.509 Certificate
is given.
Request for a private key when the Issuer Name and Serial Number
values for a corresponding X.509 Certificate are given.
Request for a private key when the X.509 Subject Key Identifier
value for a corresponding X.509 Certificate is given.
A sample implementation of a CallbackHandler.
Java class for DelegateToType complex type.
Java class for DelegateToType complex type.
Java class for DerivedKeyTokenType complex type.
Java class for DerivedKeyTokenType complex type.
Java class for detail complex type.
Java class for detail complex type.
This class has been modified slightly to use java.security.MessageDigest
objects as input, rather than
org.apache.xml.security.algorithms.MessageDigestAlgorithm objects.
Java class for DigestMethodType complex type.
Interface for DirectReference reference type inside a STR
Class for DirectReference reference type inside a STR
This is a subtype of NodeSetData that represents a dereferenced
same-document URI as the root of a subdocument.
$author: JAXWS Development Team
This is an implementation of the abstract
Condition class, which
specifes that the assertion this DoNotCacheCondition is part of,
is the new element in SAML 1.1, that allows an assertion party to express that
an assertion should not be cached by the relying party for future use.This is an implementation of the abstract
Condition class, which
specifes that the assertion this DoNotCacheCondition is part of,
is the new element in SAML 1.1, that allows an assertion party to express that
an assertion should not be cached by the relying party for future use.Java class for DoNotCacheConditionType complex type.
Java class for DSAKeyValueType complex type.
Implementation of JSR 105 URIDereferencer interface for optimized path
Implementation of JSR 105 URIDereference interface.
Dump a SOAP message for debugging.
Represents a concrete SecurityPolicy identifier context resolved at runtime,
An XWS-Security
DynamicPolicyCallback is passed an instance of
a DynamicApplicationContext.Callback implementation for dynamic policy resolution.
Represents a SecurityPolicy identifier context resolved at runtime
Represents a dynamically generable SecurityPolicy
Represents a dynamically generable SecurityPolicy.
Corresponds to Schema definition for EncryptedData.
Simple EncryptedData for Sign and Encrypt Usecase.
Java class for EncryptedDataType complex type.
Indentifies target elements in the SOAPMessage that need to be confidentiality protected.
Java class for EncryptedElementType complex type.
Corresponds to Schema definition for EncryptedData.
Java class for EncryptedHeaderType complex type.
The schema definition of EncryptedKey element is as follows:
Java class for EncryptedKeyType complex type.
Identifies targets that if present in the message should be confidentiality protected.
Encrypted supporting tokens are supporting tokens that are included in
the security header and MUST be encrypted when they appear in the security header.
Java class for EncryptedType complex type.
Schema definition for an EncryptedType is as follows:
Performs encryption or decryption
Message ANNOTATION is performed as follows:
if (complete policy resolution should happen)
make DynamicPolicyCallback
else
// assumes feature binding component is statically specified -
// including targets and canonicalization algorithm
if (X509CertificateBinding)
resolve certificate - make EncryptionKeyCallback
else
if (SymmetricKeyBinding)
resolve symmetrick key - make SymmetricKeyCallback
else
throw Exception
call EncryptionProcessor
Message (decryption) VALIDATION is performed as follows:
if (ADHOC processing mode)
if (complete policy resolution should happen)
make DynamicPolicyCallback
call DecryptionProcessor
else
if (POSTHOC or DEFAULT mode)
call DecryptionProcessor
CallBack implementation for encryption key.
A CallbackHandler handling an instance of this request should make
sure that a symmetric key alias must be set on the request.
A Callback initialized with this request should be handled if the
X.509 certificate to be used for encryption is mapped to some alias.
A Callback initialized with this request should be handled if there's
some default X.509 certificate to be used for encryption.
A CallbackHandler handling an instance of this request should make
sure that a symmetric key must be set on the request.
A CallbackHandler handling an instance of this request should make
sure that an X.509 certificate must be set on the request.
Java class for EncryptionMethodType complex type.
Objects of this class represent a policy for Encrypting parts of a SOAP Message.
A class representing FeatureBindings for an EncryptionPolicy
The FeatureBinding would contain information about the MessageParts
to be Encrypted, The data encryption algorithm to be used.
Java class for EncryptionPropertiesType complex type.
Java class for EncryptionPropertyType complex type.
Objects of this class represent an Encryption Target that can be part of
the FeatureBinding for an EncryptionPolicy (refer EncryptionPolicy.FeatureBinding).
This class represents a Transform that can appear on an EcncryptionTarget,
Instances of this class are added as CipherReference Transforms on an EcncryptionTarget
Java class for EncryptionType complex type.
Java class for EncryptionType complex type.
Endorsing, encrypted supporting tokens are Endorsing supporting tokens that
are also encrypted when they appear in the wsse:SecurityHeader.
Endorsing tokens sign the message signature, that is they sign the entire
Signature element produced from the message signature and may optionally
include additional message parts to sign and/or encrypt
Implementation of Entropy Interface.
Implementation of Entropy Interface.
Java class for EntropyType complex type.
Java class for EntropyType complex type.
Java class for Envelope complex type.
Java class for Envelope complex type.
The
Evidence element specifies an assertion either by
reference or by value.The
Evidence element specifies an assertion either by
reference or by value.The
Evidence element specifies an assertion either by
reference or by value.Java class for EvidenceType complex type.
Java class for EvidenceType complex type.
Fault reporting structure
Fault reporting structure
Java class for faultcode complex type.
Java class for faultreason complex type.
Header represents any Header element that has its contents signed.
Java class for Header complex type.
Elements replacing the wildcard MUST be namespace qualified, but can be in the targetNamespace
An implementation of the HMAC-SHA1 (RFC 2104)
Java class for IdentityType complex type.
Section 4.2 on Image Media types in RFC 2046
http://www.rfc-editor.org/rfc/rfc2046.txt
does not specify any rules for image canonicalization.
This element represents a requirement for an issued token, that is one issued by some token
issuer using the mechanisms defined in WS-Trust.
Specifies the issuer of the security token that is presented
in the message.
Implementation of wst:Issuer.
Implementation of wst:Issuer.
Contains common context information for XML signature operation
Contains common context information for XML signature verification operation
represents security processing context in JAXWS integration path.
This class implements methods in the abstract class AuthConfigFactory.
Represents binary-formatted kerberos security tokens
This interface represents Kerberos Token
Java class for KeyExchangeTokenType complex type.
Java class for KeyExchangeTokenType complex type.
Interface for KeyIdentifier reference type inside a STR
Java class for KeyInfoConfirmationDataType complex type.
Corresponds to the schema representation for a KeyInfo.
The interface for different KeyInfo Schemes
Java class for KeyInfoType complex type.
Implementation of JSR 105 KeySelector interface.
Callback class for obtaining the keystore
Used only for Metro(WSIT) Security Scenarios
It assumes that load method on the returned KeyStore was called
by the user to initialized the KeyStore.
Java class for KeyValueType complex type.
Indicates that a Binding should have its uid re-read when the actual signature is created
because the id is not known at startup time, for example because the binding
refers to a token which must be generated externally.
Java class for LifetimeType complex type.
Java class for LifetimeType complex type.
Defines string formatting method for each constant in the resource file
A local string manager.
Implementation of a local string manager.
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Defines string formatting method for each constant in the resource file
Derived from Apache sources and changed to use HmacSHA1 objects
objects instead of org.apache.xml.security.algorithms.SignatureAlgorithm
objects.
Represents mandatory header elements that need to present in the message.
Java class for ManifestType complex type.
WSS xmlns and prefix constants used in wss code throughout.
Represents Security Header layout.
Represents an ordered collection of Security Policies
Represents a base class for Message Level Security (MLS) Policies.
The NameID element specifies a
Subject by a combination
of a name and a security domain governing the name of the Subject.The NameIdentifier element specifies a
Subject by a combination
of a name and a security domain governing the name of the Subject.The NameIdentifier element specifies a
Subject by a combination
of a name and a security domain governing the name of the Subject.The NameIdentifier element specifies a
Subject by a combination
of a name and a security domain governing the name of the Subject.Java class for NameIdentifierType complex type.
Java class for NameIDType complex type.
Implements NamespaceContext .
Maintains map of all inscope namespaces
A stack based Symble Table.
This class exports a static Security Service for Verifying/Validating Security in an Inbound SOAPMessage.
This abstract class defines an SPI that Metro Application developers can implement, to handle custom
validation of Nonces used in conjunction with Password-Digest Authentication.
Exception to be thrown when an Error in processing received nonces occurs.
Java class for NotUnderstoodType complex type.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.security.core.ai package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.wss.dsig.impl package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.security.core.xenc package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.secconv.impl.bindings package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.secconv.impl.bindings package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.secext11 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.soap11 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.soap12 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.trust.impl.bindings package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.ws.security.trust.impl.wssx.bindings package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.wss.saml.internal.saml11.jaxb20 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the com.sun.xml.wss.saml.internal.saml20.jaxb20 package.
Java class for ObjectType complex type.
Java class for OnBehalfOfType complex type.
Java class for OnBehalfOfType complex type.
This is an implementation of the abstract
Condition class, which
specifes that the assertion this OneTimeUse is part of,
is the new element in SAML 1.1, that allows an assertion party to express that
an assertion should not be cached by the relying party for future use.This is an implementation of the abstract
Condition class, which
specifes that the assertion this DoNotCacheCondition is part of,
is the new element in SAML 1.1, that allows an assertion party to express that
an assertion should not be cached by the relying party for future use.Java class for OneTimeUseType complex type.
Specifies a participant that plays a role in the use of
the token or who are allowed to use the token.
Specifies a participant that plays a role in the use of
the token or who are allowed to use the token.
Contains information about which parties are authorized in the
use of the token.
Contains information about which parties are authorized in the
use of the token.
Java class for ParticipantsType complex type.
Java class for ParticipantsType complex type.
Java class for ParticipantType complex type.
Java class for ParticipantType complex type.
This Callback should be handled if the password for the username token
needs to be supplied at run-time.
This Callback is intended for Username-Password validation.
Represents a validation request when the password in the username token
is in digested form.
Implements WSS digest Password Validation.
Interface for validating password.
Represents a validation request when the password in the username token
is in plain text.
Java class for PGPDataType complex type.
This pipe is used to do client side security for app server
Holds all the Translated info for one PolicyAlternative
This interface is implemeted by all SecurityHeaderElement's that are capable of building
XWSS policy from the incoming message.
Thrown by the classes implementing the Policy framework
This is an internal interface not exposed to developer.
Exception indicating a Policy Violation typically encountered when processing
an Inbound Message.
Deprecated.
: since XWS 2.0 EA
Objects of this class act as KeyBindings for AuthenticationTokens such
as AuthenticationTokenPolicy.X509CertificateBinding and
AuthenticationTokenPolicy.SAMLAssertionBinding.
Callback class for obtaining the private key from KeyStore
Used only for Metro(WSIT) Security Scenarios
This class represents a Context that is used by the XWS-Security Runtime to
apply/verify Security Policies on an Outgoing/Incoming SOAP Message.
Java class for ProofEncryptionType complex type.
Java class for ProofEncryptionType complex type.
Java class for PropertiesType complex type.
Java class for PropertiesType complex type.
Deprecated.
This callback is no longer supported by the XWS-Security runtime, use the XWS-Security configuration
file to set the above property values instead.
Java class for ProxyRestrictionType complex type.
This abstract class defines an SPI that Metro Application developers can implement, to handle custom
username/password and username/Password-Digest authentication.
Java class for reasontext complex type.
Parent interface for different reference mechanisms inside a STR
Java class for ReferenceList element declaration.
A ReferenceList element is defined as follows:
Java class for ReferenceType complex type.
Java class for ReferenceType complex type.
Reflection utilities wrapper
Used by GFServerConfigProvider to parse the configuration file.
Used to specify renew semantics for types that support this operation.
Used to specify renew semantics for types that support this operation.
Java class for RenewingType complex type.
Java class for RenewingType complex type.
Target specifying the Security token to be renewed.
Target specifying the Security token to be renewed.
Java class for RenewTargetType complex type.
Java class for RenewTargetType complex type.
Implementation for RequestedAttachedReference.
Implementation for RequestedAttachedReference.
Java class for RequestedProofTokenType complex type.
Java class for RequestedProofTokenType complex type.
Java class for RequestedReferenceType complex type.
Java class for RequestedReferenceType complex type.
Implementation for the RequestedSecurityToken.
Implementation for the RequestedSecurityToken.
Java class for RequestedSecurityTokenType complex type.
Java class for RequestedSecurityTokenType complex type.
Java class for RequestedTokenCancelledType complex type.
Java class for RequestedTokenCancelledType complex type.
Implementation for RequestedUnattachedReference.
Implementation for RequestedUnattachedReference.
Java class for RequestKETType complex type.
Java class for RequestKETType complex type.
The RequestSecurityTokenCollection (RSTC) element is used to provide multiple RST requests.
Implementation of the RequestSecurityToken interface.
Implementation of the RequestSecurityToken interface.
Java class for RequestSecurityTokenResponseCollectionType complex type.
The <wst:RequestSecurityTokenResponseCollection> element (RSTRC) MUST be used to return a security token or
response to a security token request on the final response.
Implementation of a RequestSecurityTokenResponse.
Implementation of a RequestSecurityTokenResponse.
Actual content model is non-deterministic, hence wildcard.
Actual content model is non-deterministic, hence wildcard.
Contains information to be sent in message to the token issuer when requesting for IssuedTokens
Actual content model is non-deterministic, hence wildcard.
Actual content model is non-deterministic, hence wildcard.
Used to specify the header elements that the message MUST contain.
Specifies list of SOAP Headers that must be present in the SOAP Messages.
This resolver is used for resolving same-document URIs for eg.
Java class for RetrievalMethodType complex type.
TODO: Make this configurable
Java class for RSAKeyValueType complex type.
RsaToken should be used with SecurityPolicy submission namespace (2005/07) and a namespace of
http://schemas.microsoft.com/ws/2005/07/securitypolicy.
RsaToken should be used with SecurityPolicy submission namespace (2005/07) and a namespace of
http://schemas.microsoft.com/ws/2005/07/securitypolicy.
The schema definition for a SAML
Assertion is as follows:Deprecated.
use the new extended SAMLValidator interface
An implementation of the extended SAMLValidator interface
can throw UnsupportedOperationException for methods defined in this
base interface.
This class is an extension point for all SAML related exceptions.
This interface represents requirement for SAML Token
Defines string formatting method for each constant in the resource file
Implementation of the SecondaryParameters interface.
This interface represents requirement for Security Context Token defined in WS-SecureConversation 1.0
represents a SOAP/Security Header that is either signed or encrypted.
This class exports a static Security Service for Securing an Outbound SOAPMessage.
SecurityPolicy Assertion implementation classes should implement
this interface.
Digester for XWS-Security configuration.
A Factory for creating an XWSSecurityConfiguration object(s).
Represents a Parser for reading an XWS-Security configuration and creating an
appropriate XWS-Security configuration object.
Provides a way to obtain credentials from an
encompassing runtime into the Metro Pipeline runtime
Provides a Default Implementation (tailored for GlassFish)
of the SecurityContext interface
SecurityContextToken Implementation
SecurityContextToken Implementation
SecurityContextToken Implementation
SecurityContextToken Implementation
<wsc:SecurityContextToken wsu:Id="..." ...>
<wsc:Identifier>...</wsc:Identifier>
<wsc:Instance>...</wsc:Instance>
...
The
SecurityContextTokenInfo class represents security parameters
which will be saved in the Session object so that whenever the endpoint
crashes the security negotiations can be resumed from its original state and no new
negotiations need to be done.Actual content model is non-deterministic, hence wildcard.
Actual content model is non-deterministic, hence wildcard.
The SecurityEnvironment interface links the XWS-Security runtime with the
environment/container in which it is running.
Policy WS feature configurator implementation for the security domain
A SecurityHeaderException indicates that there is a problem with the
security header elements and subelements.
Tagging interface for the following Security Policy types (or any custom defined security policy type)
MLSPolicy
SecurityPolicyContainer
DynamicSecurityPolicy
Represents a container for a static collection of SecurityPolicies.
A Factory interface for Generating Concrete Security Policies
Cache XWSS Policy i,e MessagePolicy for each message and cache all the
Issued and SecureConversation Tokens for quick lookup.
This interface represents a Context that is used by the XWS-Security 2.0 Runtime to
apply/verify Security Policies on an Outgoing/Incoming SOAP Message.
This class exports a static Security Service for Verifying/Validating Security in an Inbound SOAPMessage.
The root class for Security Token Exceptions.
Utility class for the Encryption and Signature related methods
This is used by JAXWSContainer to return proper 196 security and
app server monitoring pipes to the StandAlonePipeAssembler and
TangoPipeAssembler
This pipe is used to do 196 security
TubeConfiguration for servers.Process SignatureConfirmation: Add SignatureConfirmation or verify
received SignatureConfirmation
wsse11:SignatureConfirmation
A policy representing a WSS1.1 SignatureConfirmation element.
Java class for SignatureConfirmationType complex type.
Performs signature or verifies signature
Message ANNOTATION is performed as follows:
if (complete policy resolution should happen)
make DynamicPolicyCallback
else
// assumes feature binding component is statically specified -
// including targets and canonicalization algorithm
if (X509CertificateBinding)
resolve certificate - make SignatureKeyCallback
if (X509CertificateBinding has associated SymmetricKeyBinding)
resolve symmetric key - make SymmetricKeyCallback
else
if (X509CertificateBinding has no associated bindings ||
X509CertificateBinding has associated PrivateKeyBinding)
create PrivateKeyBinding if req'd with private key associated with the certificate
else
throw Exception
else
throw Exception
call SignatureProcessor
Message (signature verification) VALIDATION is performed as follows:
if (ADHOC processing mode)
if (complete policy resolution should happen)
make DynamicPolicyCallback
call VerificationProcessor
else
if (POSTHOC or DEFAULT mode)
call VerificationProcessor
<element name="Signature" type="ds:SignatureType"/>
<complexType name="SignatureType">
<sequence>
<element ref="ds:SignedInfo"/>
<element ref="ds:SignatureValue"/>
<element ref="ds:KeyInfo" minOccurs="0"/>
<element ref="ds:Object" minOccurs="0" maxOccurs="unbounded"/>
</sequence>
<attribute name="Id" type="ID" use="optional"/>
</complexType>
CallBack implementation for signature key.
A Callback initialized with this request should be handled if the
private key to be used for signing is mapped to some alias.
A Callback initialized with this request should be handled if there's
some default private key to be used for signing.
A CallbackHandler handling an instance of this request should make
sure that a private key and a corresponding X.509 certificate must
be set on the request.
A Callback initialized with this request should be handled if the
private key to be used for signing is to be retrieved given the PublicKey
Java class for SignatureMethodType complex type.
Objects of this class represent a policy for Signing parts of a SOAP Message.
A class representing FeatureBindings for a SignaturePolicy
The FeatureBinding would contain information about the MessageParts
to be Signed, and the CanonicalizationMethod.
Java class for SignaturePropertiesType complex type.
Java class for SignaturePropertyType complex type.
Objects of this class represent a Signature Target that can be part of
the FeatureBinding for a SignaturePolicy (refer SignaturePolicy.FeatureBinding).
This class represents a Transform that can appear on a SignatureTarget.
Java class for SignatureType complex type.
Java class for SignatureValueType complex type.
CallBack implementation for signature verification key.
Request for an X.509 certificate given the Public Key
This is an optional request and need not be handled
by the handler.
Request for a private key when the X.509 Thumb print
value for a corresponding X.509 Certificate is given.
A CallbackHandler handling an instance of this request should make
sure that an X.509 certificate (to be used for signature verification)
must be set on the request.
Request for an X.509 certificate whose Issuer Name and Serial Number
values are given.
Request for an X.509 certificate whose X.509 Subject Key Identifier
value is given.
Challenge that requires the other party to sign a specified set
of information.
Challenge that requires the other party to sign a specified set
of information.
Response to a challenge that requires the signing of a specified
set of information.
Response to a challenge that requires the signing of a specified
set of information.
Java class for SignChallengeType complex type.
Java class for SignChallengeType complex type.
Represents message part that is signed.
Identifies list of elements in the SOAP Message that need to be integrity protected.
Signed, encrypted supporting tokens are Signed supporting tokens that are also
encrypted when they appear in the wsse:SecurityHeader.
Signed, endorsing, encrypted supporting tokens are signed, endorsing supporting
tokens that are also encrypted when they appear in the wsse:SecurityHeader.
Signed endorsing tokens sign the entire ds:Signature element produced from the message signature and
are themselves signed by that message signature, that is both tokens (the token used for the message
signature and the signed endorsing token) sign each other.
Java class for SignedInfoType complex type.
A wrapper over a
Header or a SecurityHeaderElementThis interface identifies targets in the message that need to be integrity protected.
Signed tokens are included in the message signature as defined above and may
optionally include additional message parts to sign and/or encrypt.
Derived from Apache sources and changed to use java.security.Signature
objects as input instead of org.apache.xml.security.algorithms.SignatureAlgorithm
objects.
SOAP authentication parameter.
Java class for SPKIDataType complex type.
Representation of SOAP Body data
Java class for StatementAbstractType complex type.
Java class for StatementAbstractType complex type.
This class represents the static context associated with any Security Policy elements
defined in a
xwss:JAXRPCSecurity configuration.Represents a static policy identifying context.
Java class for StatusType complex type.
Java class for StatusType complex type.
Java class for subcode complex type.
The
Subject element specifies one or more subjects.The
Subject element specifies one or more subjects.The
Subject element specifies one or more subjects.Class that can be used on the ServerSide by the SEI implementation methods, Callback Handlers
and Standalone SAAJ Applications using XWSS.
The
SubjectConfirmation element specifies a subject by specifying data that
authenticates the subject.The
SubjectConfirmation element specifies a subject by specifying data that
authenticates the subject.The
SubjectConfirmation element specifies a subject by specifying data that
authenticates the subject.The
SubjectConfirmationData element specifies a subject by specifying data that
authenticates the subject.Java class for SubjectConfirmationDataType complex type.
Java class for SubjectConfirmationType complex type.
Java class for SubjectConfirmationType complex type.
The
SubjectLocality element specifies the DNS domain name
and IP address for the system entity that performed the authentication.The
SubjectLocality element specifies the DNS domain name
and IP address for the system entity that performed the authentication.The
SubjectLocality element specifies the DNS domain name
and IP address for the system entity that performed the authentication.Java class for SubjectLocalityType complex type.
Java class for SubjectLocalityType complex type.
Java class for SubjectStatementAbstractType complex type.
Java class for SubjectType complex type.
Java class for SubjectType complex type.
Java class for SupportedEnvType complex type.
Supporting tokens are included in the security header and may optionally include
additional message parts to sign and/or encrypt.
Binding defines SignatureToken and Encryption Token used from initiator to recipient and from recipient to initiator.
A policy representing a SymmetricKey that can be used as the
KeyBinding for a SignaturePolicy or an EncryptionPolicy.
Copies the SOAP message into an OutputStream using an optional stylesheet
to format the message.
Implementation of a text/plain canonicalizer as per rules
defined in RFC 2046 (http://www.rfc-editor.org/rfc/rfc2046.txt)
Section 4.1.
Representation of Timestamp SecurityHeaderElement
Representation of Timestamp SecurityHeaderElement
Processes export and import of wsu:Timestamp
Message ANNOTATION is performed as follows:
if (policy resolution should happen)
// make-DPC flag turned on
resolve TimestampPolicy
write wsu:Timestamp to header
Message VALIDATION is performed as follows:
if (ADHOC processing mode)
if (policy resolution should happen)
// make-DPC flag turned on
resolve TimestampPolicy
locate wsu:Timestamp element in the header
throw Exception if more than one found
validate wsu:Timestamp (delegate to SecurityEnvironment Implementation)
else
import wsu:Timestamp element
if (POSTHOC processing mode)
construct Timestamp policy and set it on FPC
else
if (DEFAULT processing mode)
validate wsu:Timestamp
A policy representing a WSS Timestamp element.
Interface for processor of various token types like X509, SAML, SCT etc
Provides Meta Data about the token Policy.
TokenProcessor for Signature.
Interface is implemented by the token classes that are created from incoming messages.
Java class for TransformsType complex type.
Java class for TransformsType complex type.
Java class for TransformType complex type.
Represents TransportBinding Assertion.
Represents WSTrust Assertion.
Entry point to the various configuration information
necessary for constructing
Tubes.RuntimeException which is thrown by security policy
assertion implementation when a Invalid PolicyAssertion is found.
A simple Unsynced ByteArryOutputStream
Java class for UpgradeType complex type.
A class to represent a Uniform Resource Identifier (URI).
MalformedURIExceptions are thrown in the process of building a URI
or setting fields on a URI when an operation would result in an
invalid URI specification.
This resolver is used for resolving URIs.
Java class for UseKeyType complex type.
Java class for UseKeyType complex type.
This Callback should be handled if the username for the username token
needs to be supplied at run-time.
A class which can select specific alternatives of a Username or a SAMLToken appearing
as SignedSupportingTokens.
A class which can select specific alternatives of a Username or a X509 appearing
as SignedSupportingTokens.
Representation of UsernameToken SecurityHeaderElement
Representation of UsernameToken SecurityHeaderElement
Support for a WSS:Username Token Profile.
Represents UsernameToken Assertion
Java class for ValidateTargetType complex type.
ValidatorExtension : provides a way to set RuntimeProperties for Validators
Message implementation backed by XMLStreamReader.This Policy extension configures the WSDLModel with AddressingFeature when
wsaw:UsingAddressing assertion is present in the PolicyMap.
Generate an wsaw:UsingAddressing policy assertion and updates the PolicyMap if AddressingFeature is enabled.
This class validates the wsaw:UsingAddressing assertion.
This supplies the prefixes for the namespaces under Addressing domain that are not covered by the default
Addressing Policy provider in JAX-WS.
Represents WSS Properties
Common Constants pertaining to WS-SecureConversation
A Factory for creating WS-SecureConversation contract instances.
Captures the SOAPFault that needs to be thrown by an Security Context Token Service when a
processing error occurs
Represents a base class for SOAP Message Security Policies.
Provider to register STRTransform,Attachment-Complete and Attachment-ContentOnly Transforms
into XMLDSIG implementation.
This class is a Factory for generating the various Security Policy primitives
that are understood and processed by XWS-Security.
The
WssSoapFaultException exception represents a
SOAP fault.The Contract to be used by the Trust-Plugin on the Client Side.
A Factory for creating the WS-Trust schema elements,
and marshalling/un-marshalling them.
A Factory for creating concrete WS-Trust contract instances
Captures the SOAPFault that needs to be thrown by an STS when a processing error occurs
Represents binary-formatted X509 security tokens
Java class for X509DataType complex type.
Java class for X509IssuerSerialType complex type.
An X509 v3 certificate BinarySecurityToken.
Represents BinarySecurityToken.
A factory to create XML and FI parsers.
An XWSSecurityConfiguration object is used
by a JAXWS 2.0 Client to specify the client side security configuration.
Will convert WS Security Policy to XWSS policy.
XWSSProcessor interface defines methods for
Securing an outbound SOAPMessage
Verifying the security in an inbound SOAPMessage
An XWSSProcessor can add/verify Security in a
SOAPMessage as defined by the OASIS WSS 1.0 specification.XWSSProcessorFactory is a factory for creating XWSSProcessor
Objects.Serializes
boolean as 0 or 1.