org.apache.wss4j.dom.message

Class WSSecDerivedKeyBase

java.lang.Object

org.apache.wss4j.dom.message.WSSecBase

org.apache.wss4j.dom.message.WSSecSignatureBase

org.apache.wss4j.dom.message.WSSecDerivedKeyBase

Direct Known Subclasses:

WSSecDKEncrypt, WSSecDKSign

public abstract class WSSecDerivedKeyBase
extends WSSecSignatureBase

Base class for DerivedKey encryption and signature

Field Summary

Fields

Modifier and Type	Field and Description
protected Document	document

Fields inherited from class org.apache.wss4j.dom.message.WSSecBase

attachmentCallbackHandler, callbackLookup, doDebug, keyIdentifierType, password, storeBytesInAttachment, user

Constructor Summary

Constructors

Constructor and Description
WSSecDerivedKeyBase()

Method Summary

Modifier and Type	Method and Description
void	appendDKElementToHeader(WSSecHeader secHeader)
protected SecretKey	getDerivedKey(String algorithm)
protected abstract int	getDerivedKeyLength() The derived key will change depending on the sig/encr algorithm.
Element	getdktElement()
String	getId() Get the id generated during prepare().
String	getTokenIdentifier()
int	getWscVersion()
void	prepare(Document doc) Initialize a WSSec Derived key.
void	prependDKElementToHeader(WSSecHeader secHeader) Prepend the DerivedKey element to the elements already in the Security header.
void	setClientLabel(String clientLabel) Set the label value of the client.
void	setCrypto(Crypto crypto)
void	setCustomValueType(String customValueType)
void	setExternalKey(byte[] ephemeralKey, Element strElem)
void	setExternalKey(byte[] ephemeralKey, String tokenIdentifier)
void	setServiceLabel(String serviceLabel) Set the label value of the service.
void	setTokenIdDirectId(boolean b)
void	setWscVersion(int wscVersion)
void	setX509Certificate(X509Certificate cer) Set the X509 Certificate to use

Methods inherited from class org.apache.wss4j.dom.message.WSSecSignatureBase

addReferencesToSign, createSTRParameter, getInclusivePrefixes, getInclusivePrefixes

Methods inherited from class org.apache.wss4j.dom.message.WSSecBase

getIdAllocator, getKeyIdentifierType, getParts, setAttachmentCallbackHandler, setBodyID, setCallbackLookup, setIdAllocator, setKeyIdentifierType, setStoreBytesInAttachment, setUserInfo, setWsuId

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

document

protected Document document

Constructor Detail

WSSecDerivedKeyBase

public WSSecDerivedKeyBase()

Method Detail

getDerivedKeyLength

protected abstract int getDerivedKeyLength()
                                    throws WSSecurityException

The derived key will change depending on the sig/encr algorithm. Therefore the child classes are expected to provide this value.

Returns:

the derived key length

Throws:

WSSecurityException

setExternalKey

public void setExternalKey(byte[] ephemeralKey,
                           String tokenIdentifier)

Parameters:

ephemeralKey - The ephemeralKey to set.

setExternalKey

public void setExternalKey(byte[] ephemeralKey,
                           Element strElem)

Parameters:

ephemeralKey - The ephemeralKey to set.

getTokenIdentifier

public String getTokenIdentifier()

Returns:

Returns the tokenIdentifier.

setX509Certificate

public void setX509Certificate(X509Certificate cer)

Set the X509 Certificate to use

Parameters:

cer - the X509 Certificate to use

getId

public String getId()

Get the id generated during prepare(). Returns the the value of wsu:Id attribute of the DerivedKeyToken element.

Returns:

Return the wsu:Id of this token or null if prepare() was not called before.

setClientLabel

public void setClientLabel(String clientLabel)

Set the label value of the client.

Parameters:

clientLabel -

setServiceLabel

public void setServiceLabel(String serviceLabel)

Set the label value of the service.

Parameters:

serviceLabel -

prepare

public void prepare(Document doc)
             throws WSSecurityException

Initialize a WSSec Derived key. The method prepares and initializes a WSSec derived key structure after the relevant information was set. This method also creates and initializes the derived token using the ephemeral key. After preparation references can be added, encrypted and signed as required. This method does not add any element to the security header. This must be done explicitly.

Parameters:

doc - The unsigned SOAP envelope as Document

Throws:

WSSecurityException

prependDKElementToHeader

public void prependDKElementToHeader(WSSecHeader secHeader)

Prepend the DerivedKey element to the elements already in the Security header. The method can be called any time after prepare(). This allows to insert the DerivedKey element at any position in the Security header.

Parameters:

secHeader - The security header that holds the Signature element.

appendDKElementToHeader

public void appendDKElementToHeader(WSSecHeader secHeader)

setWscVersion

public void setWscVersion(int wscVersion)

Parameters:

wscVersion - The wscVersion to set.

getWscVersion

public int getWscVersion()

getdktElement

public Element getdktElement()

setCustomValueType

public void setCustomValueType(String customValueType)

setTokenIdDirectId

public void setTokenIdDirectId(boolean b)

setCrypto

public void setCrypto(Crypto crypto)

getDerivedKey

protected SecretKey getDerivedKey(String algorithm)