Apache CXF API

org.apache.cxf.ws.security
Class SecurityConstants

java.lang.Object
  extended by org.apache.cxf.ws.security.SecurityConstants

public final class SecurityConstants
extends Object


Field Summary
static Set<String> ALL_PROPERTIES
           
static String ALWAYS_ENCRYPT_UT
           
static String BST_TOKEN_VALIDATOR
           
static String CACHE_ISSUED_TOKEN_IN_ENDPOINT
          Set this to "false" to not cache a SecurityToken per proxy object in the IssuedTokenInterceptorProvider.
static String CALLBACK_HANDLER
           
static String ENCRYPT_CRYPTO
           
static String ENCRYPT_PROPERTIES
           
static String ENCRYPT_USERNAME
           
static String IS_BSP_COMPLIANT
          Whether to ensure compliance with the Basic Security Profile (BSP) 1.1 or not.
static String KERBEROS_CLIENT
           
static String PASSWORD
           
static String SAML_CALLBACK_HANDLER
           
static String SAML1_TOKEN_VALIDATOR
           
static String SAML2_TOKEN_VALIDATOR
           
static String SCT_TOKEN_VALIDATOR
           
static String SELF_SIGN_SAML_ASSERTION
          This configuration tag specifies whether to self-sign a SAML Assertion or not.
static String SIGNATURE_CRYPTO
           
static String SIGNATURE_PROPERTIES
           
static String SIGNATURE_TOKEN_VALIDATOR
           
static String SIGNATURE_USERNAME
           
static String STS_APPLIES_TO
           
static String STS_CLIENT
           
static String STS_TOKEN_ACT_AS
           
static String STS_TOKEN_CRYPTO
          WCF's trust server sometimes will encrypt the token in the response IN ADDITION TO the full security on the message.
static String STS_TOKEN_DO_CANCEL
           
static String STS_TOKEN_ON_BEHALF_OF
           
static String STS_TOKEN_PROPERTIES
           
static String STS_TOKEN_USE_CERT_FOR_KEYINFO
           
static String STS_TOKEN_USERNAME
           
static String TIMESTAMP_FUTURE_TTL
          This configuration tag specifies the time in seconds in the future within which the Created time of an incoming Timestamp is valid.
static String TIMESTAMP_TOKEN_VALIDATOR
           
static String TIMESTAMP_TTL
           
static String TOKEN
           
static String TOKEN_ID
           
static String USERNAME
           
static String USERNAME_TOKEN_VALIDATOR
           
static String VALIDATE_TOKEN
           
 
Method Summary
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

USERNAME

public static final String USERNAME
See Also:
Constant Field Values

PASSWORD

public static final String PASSWORD
See Also:
Constant Field Values

VALIDATE_TOKEN

public static final String VALIDATE_TOKEN
See Also:
Constant Field Values

USERNAME_TOKEN_VALIDATOR

public static final String USERNAME_TOKEN_VALIDATOR
See Also:
Constant Field Values

SAML1_TOKEN_VALIDATOR

public static final String SAML1_TOKEN_VALIDATOR
See Also:
Constant Field Values

SAML2_TOKEN_VALIDATOR

public static final String SAML2_TOKEN_VALIDATOR
See Also:
Constant Field Values

TIMESTAMP_TOKEN_VALIDATOR

public static final String TIMESTAMP_TOKEN_VALIDATOR
See Also:
Constant Field Values

SIGNATURE_TOKEN_VALIDATOR

public static final String SIGNATURE_TOKEN_VALIDATOR
See Also:
Constant Field Values

BST_TOKEN_VALIDATOR

public static final String BST_TOKEN_VALIDATOR
See Also:
Constant Field Values

SCT_TOKEN_VALIDATOR

public static final String SCT_TOKEN_VALIDATOR
See Also:
Constant Field Values

CALLBACK_HANDLER

public static final String CALLBACK_HANDLER
See Also:
Constant Field Values

SAML_CALLBACK_HANDLER

public static final String SAML_CALLBACK_HANDLER
See Also:
Constant Field Values

SIGNATURE_USERNAME

public static final String SIGNATURE_USERNAME
See Also:
Constant Field Values

SIGNATURE_PROPERTIES

public static final String SIGNATURE_PROPERTIES
See Also:
Constant Field Values

ENCRYPT_USERNAME

public static final String ENCRYPT_USERNAME
See Also:
Constant Field Values

ENCRYPT_PROPERTIES

public static final String ENCRYPT_PROPERTIES
See Also:
Constant Field Values

SIGNATURE_CRYPTO

public static final String SIGNATURE_CRYPTO
See Also:
Constant Field Values

ENCRYPT_CRYPTO

public static final String ENCRYPT_CRYPTO
See Also:
Constant Field Values

TOKEN

public static final String TOKEN
See Also:
Constant Field Values

TOKEN_ID

public static final String TOKEN_ID
See Also:
Constant Field Values

STS_CLIENT

public static final String STS_CLIENT
See Also:
Constant Field Values

STS_APPLIES_TO

public static final String STS_APPLIES_TO
See Also:
Constant Field Values

TIMESTAMP_TTL

public static final String TIMESTAMP_TTL
See Also:
Constant Field Values

ALWAYS_ENCRYPT_UT

public static final String ALWAYS_ENCRYPT_UT
See Also:
Constant Field Values

IS_BSP_COMPLIANT

public static final String IS_BSP_COMPLIANT
Whether to ensure compliance with the Basic Security Profile (BSP) 1.1 or not. The default value is "true".

See Also:
Constant Field Values

TIMESTAMP_FUTURE_TTL

public static final String TIMESTAMP_FUTURE_TTL
This configuration tag specifies the time in seconds in the future within which the Created time of an incoming Timestamp is valid. WSS4J rejects by default any timestamp which is "Created" in the future, and so there could potentially be problems in a scenario where a client's clock is slightly askew. The default value for this parameter is "0", meaning that no future-created Timestamps are allowed.

See Also:
Constant Field Values

SELF_SIGN_SAML_ASSERTION

public static final String SELF_SIGN_SAML_ASSERTION
This configuration tag specifies whether to self-sign a SAML Assertion or not. If this is set to true, then an enveloped signature will be generated when the SAML Assertion is constructed. The default is false.

See Also:
Constant Field Values

STS_TOKEN_CRYPTO

public static final String STS_TOKEN_CRYPTO
WCF's trust server sometimes will encrypt the token in the response IN ADDITION TO the full security on the message. These properties control the way the STS client will decrypt the EncryptedData elements in the response These are also used by the STSClient to send/process any RSA/DSAKeyValue tokens used if the KeyType is "PublicKey"

See Also:
Constant Field Values

STS_TOKEN_PROPERTIES

public static final String STS_TOKEN_PROPERTIES
See Also:
Constant Field Values

STS_TOKEN_USERNAME

public static final String STS_TOKEN_USERNAME
See Also:
Constant Field Values

STS_TOKEN_USE_CERT_FOR_KEYINFO

public static final String STS_TOKEN_USE_CERT_FOR_KEYINFO
See Also:
Constant Field Values

STS_TOKEN_DO_CANCEL

public static final String STS_TOKEN_DO_CANCEL
See Also:
Constant Field Values

STS_TOKEN_ACT_AS

public static final String STS_TOKEN_ACT_AS
See Also:
Constant Field Values

STS_TOKEN_ON_BEHALF_OF

public static final String STS_TOKEN_ON_BEHALF_OF
See Also:
Constant Field Values

KERBEROS_CLIENT

public static final String KERBEROS_CLIENT
See Also:
Constant Field Values

CACHE_ISSUED_TOKEN_IN_ENDPOINT

public static final String CACHE_ISSUED_TOKEN_IN_ENDPOINT
Set this to "false" to not cache a SecurityToken per proxy object in the IssuedTokenInterceptorProvider. This should be done if a token is being retrieved from an STS in an intermediary. The default value is "true".

See Also:
Constant Field Values

ALL_PROPERTIES

public static final Set<String> ALL_PROPERTIES

Apache CXF API

Apache CXF