SecurityConstants (Apache CXF Bundle Jar 2.5.2 API)

Overview

Package

Class

Use

Tree

Deprecated

Index

Help

Apache CXF API

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

org.apache.cxf.ws.security
Class SecurityConstants

java.lang.Object
  org.apache.cxf.ws.security.SecurityConstants

public final class SecurityConstants
extends Object
extends Object

Field Summary
`static Set<String>`	`ALL_PROPERTIES`
`static String`	`ALWAYS_ENCRYPT_UT`
`static String`	`BST_TOKEN_VALIDATOR`
`static String`	`CACHE_ISSUED_TOKEN_IN_ENDPOINT` Set this to "false" to not cache a SecurityToken per proxy object in the IssuedTokenInterceptorProvider.
`static String`	`CALLBACK_HANDLER`
`static String`	`CRYPTO_CACHE`
`static String`	`ENCRYPT_CRYPTO`
`static String`	`ENCRYPT_PROPERTIES`
`static String`	`ENCRYPT_USERNAME`
`static String`	`IS_BSP_COMPLIANT` Whether to ensure compliance with the Basic Security Profile (BSP) 1.1 or not.
`static String`	`KERBEROS_CLIENT`
`static String`	`KERBEROS_JAAS_CONTEXT_NAME` The JAAS Context name to use for Kerberos.
`static String`	`KERBEROS_SPN` The Kerberos Service Provider Name (spn) to use.
`static String`	`PASSWORD`
`static String`	`SAML_CALLBACK_HANDLER`
`static String`	`SAML1_TOKEN_VALIDATOR`
`static String`	`SAML2_TOKEN_VALIDATOR`
`static String`	`SCT_TOKEN_VALIDATOR`
`static String`	`SELF_SIGN_SAML_ASSERTION` This configuration tag specifies whether to self-sign a SAML Assertion or not.
`static String`	`SIGNATURE_CRYPTO`
`static String`	`SIGNATURE_PROPERTIES`
`static String`	`SIGNATURE_TOKEN_VALIDATOR`
`static String`	`SIGNATURE_USERNAME`
`static String`	`STS_APPLIES_TO`
`static String`	`STS_CLIENT`
`static String`	`STS_TOKEN_ACT_AS`
`static String`	`STS_TOKEN_CRYPTO` WCF's trust server sometimes will encrypt the token in the response IN ADDITION TO the full security on the message.
`static String`	`STS_TOKEN_DO_CANCEL`
`static String`	`STS_TOKEN_ON_BEHALF_OF`
`static String`	`STS_TOKEN_PROPERTIES`
`static String`	`STS_TOKEN_USE_CERT_FOR_KEYINFO`
`static String`	`STS_TOKEN_USERNAME`
`static String`	`TIMESTAMP_FUTURE_TTL` This configuration tag specifies the time in seconds in the future within which the Created time of an incoming Timestamp is valid.
`static String`	`TIMESTAMP_TOKEN_VALIDATOR`
`static String`	`TIMESTAMP_TTL`
`static String`	`TOKEN`
`static String`	`TOKEN_ID`
`static String`	`USERNAME`
`static String`	`USERNAME_TOKEN_VALIDATOR`
`static String`	`VALIDATE_TOKEN`

Method Summary

Methods inherited from class java.lang.Object
`clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait`

Field Detail

USERNAME

public static final String USERNAME

See Also:: Constant Field Values

PASSWORD

public static final String PASSWORD

See Also:: Constant Field Values

VALIDATE_TOKEN

public static final String VALIDATE_TOKEN

See Also:: Constant Field Values

USERNAME_TOKEN_VALIDATOR

public static final String USERNAME_TOKEN_VALIDATOR

See Also:: Constant Field Values

SAML1_TOKEN_VALIDATOR

public static final String SAML1_TOKEN_VALIDATOR

See Also:: Constant Field Values

SAML2_TOKEN_VALIDATOR

public static final String SAML2_TOKEN_VALIDATOR

See Also:: Constant Field Values

TIMESTAMP_TOKEN_VALIDATOR

public static final String TIMESTAMP_TOKEN_VALIDATOR

See Also:: Constant Field Values

SIGNATURE_TOKEN_VALIDATOR

public static final String SIGNATURE_TOKEN_VALIDATOR

See Also:: Constant Field Values

BST_TOKEN_VALIDATOR

public static final String BST_TOKEN_VALIDATOR

See Also:: Constant Field Values

SCT_TOKEN_VALIDATOR

public static final String SCT_TOKEN_VALIDATOR

See Also:: Constant Field Values

CALLBACK_HANDLER

public static final String CALLBACK_HANDLER

See Also:: Constant Field Values

SAML_CALLBACK_HANDLER

public static final String SAML_CALLBACK_HANDLER

See Also:: Constant Field Values

SIGNATURE_USERNAME

public static final String SIGNATURE_USERNAME

See Also:: Constant Field Values

SIGNATURE_PROPERTIES

public static final String SIGNATURE_PROPERTIES

See Also:: Constant Field Values

ENCRYPT_USERNAME

public static final String ENCRYPT_USERNAME

See Also:: Constant Field Values

ENCRYPT_PROPERTIES

public static final String ENCRYPT_PROPERTIES

See Also:: Constant Field Values

SIGNATURE_CRYPTO

public static final String SIGNATURE_CRYPTO

See Also:: Constant Field Values

ENCRYPT_CRYPTO

public static final String ENCRYPT_CRYPTO

See Also:: Constant Field Values

CRYPTO_CACHE

public static final String CRYPTO_CACHE

See Also:: Constant Field Values

TOKEN

public static final String TOKEN

See Also:: Constant Field Values

TOKEN_ID

public static final String TOKEN_ID

See Also:: Constant Field Values

STS_CLIENT

public static final String STS_CLIENT

See Also:: Constant Field Values

STS_APPLIES_TO

public static final String STS_APPLIES_TO

See Also:: Constant Field Values

TIMESTAMP_TTL

public static final String TIMESTAMP_TTL

See Also:: Constant Field Values

ALWAYS_ENCRYPT_UT

public static final String ALWAYS_ENCRYPT_UT

See Also:: Constant Field Values

IS_BSP_COMPLIANT

public static final String IS_BSP_COMPLIANT

Whether to ensure compliance with the Basic Security Profile (BSP) 1.1 or not. The default value is "true".

See Also:: Constant Field Values

TIMESTAMP_FUTURE_TTL

public static final String TIMESTAMP_FUTURE_TTL

This configuration tag specifies the time in seconds in the future within which the Created time of an incoming Timestamp is valid. WSS4J rejects by default any timestamp which is "Created" in the future, and so there could potentially be problems in a scenario where a client's clock is slightly askew. The default value for this parameter is "0", meaning that no future-created Timestamps are allowed.

See Also:: Constant Field Values

SELF_SIGN_SAML_ASSERTION

public static final String SELF_SIGN_SAML_ASSERTION

This configuration tag specifies whether to self-sign a SAML Assertion or not. If this is set to true, then an enveloped signature will be generated when the SAML Assertion is constructed. The default is false.

See Also:: Constant Field Values

STS_TOKEN_CRYPTO

public static final String STS_TOKEN_CRYPTO

WCF's trust server sometimes will encrypt the token in the response IN ADDITION TO the full security on the message. These properties control the way the STS client will decrypt the EncryptedData elements in the response These are also used by the STSClient to send/process any RSA/DSAKeyValue tokens used if the KeyType is "PublicKey"

See Also:: Constant Field Values

STS_TOKEN_PROPERTIES

public static final String STS_TOKEN_PROPERTIES

See Also:: Constant Field Values

STS_TOKEN_USERNAME

public static final String STS_TOKEN_USERNAME

See Also:: Constant Field Values

STS_TOKEN_USE_CERT_FOR_KEYINFO

public static final String STS_TOKEN_USE_CERT_FOR_KEYINFO

See Also:: Constant Field Values

STS_TOKEN_DO_CANCEL

public static final String STS_TOKEN_DO_CANCEL

See Also:: Constant Field Values

STS_TOKEN_ACT_AS

public static final String STS_TOKEN_ACT_AS

See Also:: Constant Field Values

STS_TOKEN_ON_BEHALF_OF

public static final String STS_TOKEN_ON_BEHALF_OF

See Also:: Constant Field Values

KERBEROS_CLIENT

public static final String KERBEROS_CLIENT

See Also:: Constant Field Values

KERBEROS_JAAS_CONTEXT_NAME

public static final String KERBEROS_JAAS_CONTEXT_NAME

The JAAS Context name to use for Kerberos. This is currently only supported for SPNEGO.

See Also:: Constant Field Values

KERBEROS_SPN

public static final String KERBEROS_SPN

The Kerberos Service Provider Name (spn) to use. This is currently only supported for SPNEGO.

See Also:: Constant Field Values

CACHE_ISSUED_TOKEN_IN_ENDPOINT

public static final String CACHE_ISSUED_TOKEN_IN_ENDPOINT

Set this to "false" to not cache a SecurityToken per proxy object in the IssuedTokenInterceptorProvider. This should be done if a token is being retrieved from an STS in an intermediary. The default value is "true".

See Also:: Constant Field Values

ALL_PROPERTIES

public static final Set<String> ALL_PROPERTIES