Modifier and Type | Method and Description |
---|---|
protected boolean |
STSTokenValidator.isValidatedLocally(Credential credential,
RequestData data) |
Credential |
STSTokenValidator.validate(Credential credential,
RequestData data) |
Credential |
STSSamlAssertionValidator.validate(Credential credential,
RequestData data)
Validate the credential argument.
|
protected Credential |
STSSamlAssertionValidator.verifySignedAssertion(SamlAssertionWrapper assertion,
RequestData data)
Try to verify trust on the assertion.
|
Modifier and Type | Class and Description |
---|---|
class |
CXFRequestData |
Modifier and Type | Method and Description |
---|---|
protected void |
WSS4JInInterceptor.computeAction(org.apache.cxf.binding.soap.SoapMessage msg,
RequestData reqData)
Do whatever is necessary to determine the action for the incoming message and
do whatever other setup work is necessary.
|
protected void |
PolicyBasedWSS4JInInterceptor.computeAction(org.apache.cxf.binding.soap.SoapMessage message,
RequestData data) |
protected void |
WSS4JInInterceptor.configureReplayCaches(RequestData reqData,
List<Integer> actions,
org.apache.cxf.binding.soap.SoapMessage msg) |
protected CallbackHandler |
WSS4JInInterceptor.getCallback(RequestData reqData) |
protected CallbackHandler |
WSS4JInInterceptor.getCallback(RequestData reqData,
boolean utWithCallbacks) |
protected Crypto |
AbstractWSS4JInterceptor.loadCryptoFromPropertiesFile(String propFilename,
RequestData reqData) |
protected void |
WSS4JInInterceptor.setAlgorithmSuites(org.apache.cxf.binding.soap.SoapMessage message,
RequestData data)
Set a WSS4J AlgorithmSuite object on the RequestData context, to restrict the
algorithms that are allowed for encryption, signature, etc.
|
protected void |
PolicyBasedWSS4JInInterceptor.setAlgorithmSuites(org.apache.cxf.binding.soap.SoapMessage message,
RequestData data)
Set a WSS4J AlgorithmSuite object on the RequestData context, to restrict the
algorithms that are allowed for encryption, signature, etc.
|
void |
AlgorithmSuiteTranslater.translateAlgorithmSuites(org.apache.cxf.ws.policy.AssertionInfoMap aim,
RequestData data) |
protected void |
AbstractUsernameTokenAuthenticatingInterceptor.CustomValidator.verifyCustomPassword(UsernameToken usernameToken,
RequestData data) |
protected void |
AbstractUsernameTokenAuthenticatingInterceptor.CustomValidator.verifyDigestPassword(UsernameToken usernameToken,
RequestData data) |
protected void |
AbstractUsernameTokenAuthenticatingInterceptor.CustomValidator.verifyPlaintextPassword(UsernameToken usernameToken,
RequestData data) |
protected void |
AbstractUsernameTokenAuthenticatingInterceptor.CustomValidator.verifyUnknownPassword(UsernameToken usernameToken,
RequestData data) |
Modifier and Type | Method and Description |
---|---|
void |
UsernameTokenSignedAction.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
void |
UsernameTokenAction.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
void |
TimestampAction.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
void |
SignatureDerivedAction.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
void |
SignatureConfirmationAction.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
void |
SignatureAction.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
void |
SAMLTokenUnsignedAction.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
void |
SAMLTokenSignedAction.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
void |
EncryptionDerivedAction.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
void |
EncryptionAction.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
void |
CustomTokenAction.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
void |
Action.execute(WSHandler handler,
SecurityActionToken actionToken,
Document doc,
RequestData reqData) |
protected Node |
AbstractDerivedAction.findEncryptedKeySibling(RequestData reqData) |
protected Node |
AbstractDerivedAction.findSCTSibling(RequestData reqData) |
Modifier and Type | Method and Description |
---|---|
WSHandlerResult |
WSSecurityEngine.processSecurityHeader(Document doc,
RequestData requestData)
Process the security header given the soap envelope as W3C document.
|
WSHandlerResult |
WSSecurityEngine.processSecurityHeader(Element securityHeader,
RequestData requestData)
Process the security header given the
wsse:Security DOM
Element. |
Modifier and Type | Method and Description |
---|---|
protected void |
WSHandler.checkSignatureConfirmation(RequestData reqData,
WSHandlerResult handlerResults) |
protected void |
WSHandler.decodeAlgorithmSuite(RequestData reqData) |
protected void |
WSHandler.decodeDecryptionParameter(RequestData reqData) |
protected void |
WSHandler.decodeEncryptionParameter(RequestData reqData) |
protected int |
WSHandler.decodeFutureTimeToLive(RequestData reqData,
boolean timestamp)
Decode the FutureTimeToLive parameter for either a Timestamp or a UsernameToken Created
element, depending on the boolean argument
|
protected String |
WSHandler.decodePasswordType(RequestData reqData) |
protected void |
WSHandler.decodeSignatureParameter(RequestData reqData) |
protected void |
WSHandler.decodeSignatureParameter2(RequestData reqData) |
int |
WSHandler.decodeTimeToLive(RequestData reqData,
boolean timestamp)
Decode the TimeToLive parameter for either a Timestamp or a UsernameToken Created element,
depending on the boolean argument
|
protected void |
WSHandler.decodeUTParameter(RequestData reqData) |
protected void |
WSHandler.doReceiverAction(List<Integer> actions,
RequestData reqData) |
protected void |
WSHandler.doSenderAction(Document doc,
RequestData reqData,
List<HandlerAction> actions,
boolean isRequest)
Performs all defined security actions to set-up the SOAP request.
|
CallbackHandler |
WSHandler.getCallbackHandler(String callbackHandlerClass,
String callbackHandlerRef,
RequestData requestData)
Get a CallbackHandler instance.
|
CallbackHandler |
WSHandler.getPasswordCallbackHandler(RequestData reqData)
Get a CallbackHandler instance to obtain passwords.
|
WSPasswordCallback |
WSHandler.getPasswordCB(String username,
int doAction,
CallbackHandler callbackHandler,
RequestData requestData)
Get a password callback (WSPasswordCallback object) from a CallbackHandler instance
|
protected PasswordEncryptor |
WSHandler.getPasswordEncryptor(RequestData requestData) |
protected Crypto |
WSHandler.loadCrypto(String cryptoPropertyFile,
String cryptoPropertyRefId,
RequestData requestData)
Load a Crypto instance.
|
protected Crypto |
WSHandler.loadCryptoFromPropertiesFile(String propFilename,
RequestData reqData)
A hook to allow subclass to load Crypto instances from property files in a different
way.
|
protected Crypto |
WSHandler.loadDecryptionCrypto(RequestData requestData)
Hook to allow subclasses to load their Decryption Crypto however they see
fit.
|
protected Crypto |
WSHandler.loadEncryptionCrypto(RequestData requestData)
Hook to allow subclasses to load their Encryption Crypto however they see
fit.
|
Crypto |
WSHandler.loadSignatureCrypto(RequestData requestData)
Hook to allow subclasses to load their Signature creation Crypto however they see
fit.
|
Crypto |
WSHandler.loadSignatureVerificationCrypto(RequestData requestData)
Hook to allow subclasses to load their Signature verification Crypto however they see
fit.
|
Constructor and Description |
---|
WSSSAMLKeyInfoProcessor(RequestData data,
WSDocInfo docInfo) |
Modifier and Type | Method and Description |
---|---|
RequestData |
STRParserParameters.getData() |
Modifier and Type | Method and Description |
---|---|
static SamlAssertionWrapper |
STRParserUtil.getAssertionFromKeyIdentifier(SecurityTokenReference secRef,
Element strElement,
RequestData request,
WSDocInfo wsDocInfo)
Get an SamlAssertionWrapper object from parsing a SecurityTokenReference that uses
a KeyIdentifier that points to a SAML Assertion.
|
static byte[] |
STRParserUtil.getSecretKeyFromToken(String id,
String type,
int identifier,
RequestData data)
Get the Secret Key from a CallbackHandler
|
void |
STRParserParameters.setData(RequestData data) |
Modifier and Type | Method and Description |
---|---|
static byte[] |
WSSecurityUtil.getBytesFromAttachment(String xopUri,
RequestData data) |
Modifier and Type | Method and Description |
---|---|
protected void |
SamlAssertionValidator.checkOneTimeUse(SamlAssertionWrapper samlAssertion,
RequestData data)
Check the "OneTimeUse" Condition of the Assertion.
|
protected Crypto |
SignatureTrustValidator.getCrypto(RequestData data) |
Credential |
Validator.validate(Credential credential,
RequestData data)
Validate the credential argument.
|
Credential |
UsernameTokenValidator.validate(Credential credential,
RequestData data)
Validate the credential argument.
|
Credential |
TimestampValidator.validate(Credential credential,
RequestData data)
Validate the credential argument.
|
Credential |
SignatureTrustValidator.validate(Credential credential,
RequestData data)
Validate the credential argument.
|
Credential |
SamlAssertionValidator.validate(Credential credential,
RequestData data)
Validate the credential argument.
|
Credential |
NoOpValidator.validate(Credential credential,
RequestData data)
Validate the credential argument.
|
Credential |
KerberosTokenValidator.validate(Credential credential,
RequestData data)
Validate the credential argument.
|
Credential |
JAASUsernameTokenValidator.validate(Credential credential,
RequestData data)
Validate the credential argument.
|
protected void |
UsernameTokenValidator.verifyCustomPassword(UsernameToken usernameToken,
RequestData data)
Verify a UsernameToken containing a password of some unknown (but specified) password
type.
|
protected void |
UsernameTokenValidator.verifyDigestPassword(UsernameToken usernameToken,
RequestData data)
Verify a UsernameToken containing a password digest.
|
protected void |
UsernameTokenValidator.verifyPlaintextPassword(UsernameToken usernameToken,
RequestData data)
Verify a UsernameToken containing a plaintext password.
|
protected Credential |
SamlAssertionValidator.verifySignedAssertion(SamlAssertionWrapper samlAssertion,
RequestData data)
Verify trust in the signature of a signed Assertion.
|
protected void |
SignatureTrustValidator.verifyTrustInCerts(X509Certificate[] certificates,
Crypto crypto,
RequestData data,
boolean enableRevocation)
Evaluate whether the given certificate chain should be trusted.
|
protected void |
UsernameTokenValidator.verifyUnknownPassword(UsernameToken usernameToken,
RequestData data)
Verify a UsernameToken containing no password.
|
Copyright © 2017 JBoss by Red Hat. All rights reserved.