Package | Description |
---|---|
org.apache.ws.security | |
org.apache.ws.security.action | |
org.apache.ws.security.components.crypto | |
org.apache.ws.security.handler | |
org.apache.ws.security.message |
The package provides classes to create messages that are compliant to the
OASIS Web Service Security specifications.
|
org.apache.ws.security.message.token | |
org.apache.ws.security.processor | |
org.apache.ws.security.transform | |
org.apache.ws.security.util |
Modifier and Type | Method and Description |
---|---|
Action |
WSSConfig.getAction(int action)
Lookup action
|
Processor |
WSSConfig.getProcessor(javax.xml.namespace.QName el) |
Vector |
WSSecurityEngine.processSecurityHeader(org.w3c.dom.Document doc,
String actor,
javax.security.auth.callback.CallbackHandler cb,
Crypto crypto)
Process the security header given the soap envelope as W3C document.
|
Vector |
WSSecurityEngine.processSecurityHeader(org.w3c.dom.Document doc,
String actor,
javax.security.auth.callback.CallbackHandler cb,
Crypto sigCrypto,
Crypto decCrypto)
Process the security header given the soap envelope as W3C document.
|
protected Vector |
WSSecurityEngine.processSecurityHeader(org.w3c.dom.Element securityHeader,
javax.security.auth.callback.CallbackHandler cb,
Crypto sigCrypto,
Crypto decCrypto)
Process the security header given the
wsse:Security DOM
Element. |
boolean |
PublicKeyCallback.verifyTrust(KeyStore keyStore)
Evaluate whether a given public key should be trusted.
|
Modifier and Type | Method and Description |
---|---|
void |
EncryptionAction.execute(WSHandler handler,
int actionToDo,
org.w3c.dom.Document doc,
RequestData reqData) |
void |
UsernameTokenSignedAction.execute(WSHandler handler,
int actionToDo,
org.w3c.dom.Document doc,
RequestData reqData) |
void |
SignatureConfirmationAction.execute(WSHandler handler,
int actionToDo,
org.w3c.dom.Document doc,
RequestData reqData) |
void |
TimestampAction.execute(WSHandler handler,
int actionToDo,
org.w3c.dom.Document doc,
RequestData reqData) |
void |
UsernameTokenAction.execute(WSHandler handler,
int actionToDo,
org.w3c.dom.Document doc,
RequestData reqData) |
void |
SignatureAction.execute(WSHandler handler,
int actionToDo,
org.w3c.dom.Document doc,
RequestData reqData) |
void |
Action.execute(WSHandler handler,
int actionToDo,
org.w3c.dom.Document doc,
RequestData reqData) |
Modifier and Type | Method and Description |
---|---|
void |
DERDecoder.expect(byte val)
Confirm that the byte at the current position matches the given value.
|
void |
DERDecoder.expect(int val)
Confirm that the byte at the current position matches the given value.
|
String[] |
CryptoBase.getAliasesForDN(String subjectDN)
Lookup X509 Certificates in the keystore according to a given DN of the subject of the certificate
The search gets all alias names of the keystore and gets the certificate (chain)
for each alias.
|
String[] |
Crypto.getAliasesForDN(String subjectDN)
Lookup X509 Certificates in the keystore according to a given DN of the subject of the certificate
|
String |
CryptoBase.getAliasForX509Cert(byte[] skiBytes)
Lookup a X509 Certificate in the keystore according to a given
SubjectKeyIdentifier.
|
String |
Crypto.getAliasForX509Cert(byte[] skiBytes)
Lookup a X509 Certificate in the keystore according to a given
SubjectKeyIdentifier.
|
String |
CryptoBase.getAliasForX509Cert(Certificate cert)
Return a X509 Certificate alias in the keystore according to a given Certificate
|
String |
Crypto.getAliasForX509Cert(Certificate cert)
Return a X509 Certificate alias in the keystore according to a given Certificate
|
String |
CryptoBase.getAliasForX509Cert(String issuer)
Lookup a X509 Certificate in the keystore according to a given
the issuer of a Certificate.
|
String |
Crypto.getAliasForX509Cert(String issuer)
Lookup a X509 Certificate in the keystore according to a given
the issuer of a Certificate.
|
String |
CryptoBase.getAliasForX509Cert(String issuer,
BigInteger serialNumber)
Lookup a X509 Certificate in the keystore according to a given serial number and
the issuer of a Certificate.
|
String |
Crypto.getAliasForX509Cert(String issuer,
BigInteger serialNumber)
Search a X509 Certificate in the keystore according to a given serial number and
the issuer of a Certificate.
|
String |
CryptoBase.getAliasForX509CertThumb(byte[] thumb)
Lookup a X509 Certificate in the keystore according to a given
Thumbprint.
|
String |
Crypto.getAliasForX509CertThumb(byte[] thumb)
Lookup a X509 Certificate in the keystore according to a given
Thumbprint.
|
byte[] |
DERDecoder.getBytes(int length)
Return an array of bytes from the current position.
|
byte[] |
CryptoBase.getCertificateData(boolean reverse,
X509Certificate[] certs)
get a byte array given an array of X509 certificates.
|
byte[] |
Crypto.getCertificateData(boolean reverse,
X509Certificate[] certs)
get a byte array given an array of X509 certificates.
|
byte[] |
Merlin.getCertificateData(boolean reverse,
X509Certificate[] certs)
get a byte array given an array of X509 certificates.
|
byte[] |
BouncyCastle.getCertificateData(boolean reverse,
X509Certificate[] certs)
get a byte array given an array of X509 certificates.
|
CertificateFactory |
CryptoBase.getCertificateFactory()
Singleton certificate factory for this Crypto instance.
|
CertificateFactory |
Crypto.getCertificateFactory()
Gets the CertificateFactory instantiated by the underlying implementation
|
X509Certificate[] |
CryptoBase.getCertificates(String alias)
Gets the list of certificates for a given alias.
|
X509Certificate[] |
Crypto.getCertificates(String alias)
get the list of certificates for a given alias.
|
int |
DERDecoder.getLength()
Get the DER length at the current position.
|
byte[] |
CryptoBase.getSKIBytesFromCert(X509Certificate cert)
Reads the SubjectKeyIdentifier information from the certificate.
|
byte[] |
Crypto.getSKIBytesFromCert(X509Certificate cert)
Reads the SubjectKeyIdentifier information from the certificate.
|
byte[] |
X509SubjectPublicKeyInfo.getSubjectPublicKey()
Get the subjectPublicKey element of the SubjectPublicKeyInfo.
|
X509Certificate[] |
CryptoBase.getX509Certificates(byte[] data,
boolean reverse)
Construct an array of X509Certificate's from the byte array.
|
X509Certificate[] |
Crypto.getX509Certificates(byte[] data,
boolean reverse)
Construct an array of X509Certificate's from the byte array.
|
X509Certificate[] |
Merlin.getX509Certificates(byte[] data,
boolean reverse)
Construct an array of X509Certificate's from the byte array.
|
X509Certificate[] |
BouncyCastle.getX509Certificates(byte[] data,
boolean reverse)
Construct an array of X509Certificate's from the byte array.
|
X509Certificate |
CryptoBase.loadCertificate(InputStream in)
load a X509Certificate from the input stream.
|
X509Certificate |
Crypto.loadCertificate(InputStream in)
load a X509Certificate from the input stream.
|
void |
DERDecoder.skip(int length)
Advance the current position by the given number of bytes.
|
boolean |
DERDecoder.test(byte val)
Test if the byte at the current position matches the given value.
|
boolean |
CryptoBase.validateCertPath(X509Certificate[] certs)
Overridden because there's a bug in the base class where they don't use
the provider variant for the certificate validator.
|
boolean |
Crypto.validateCertPath(X509Certificate[] certs)
Uses the CertPath API to validate a given certificate chain
|
boolean |
Merlin.validateCertPath(X509Certificate[] certs) |
boolean |
BouncyCastle.validateCertPath(X509Certificate[] certs)
Uses the CertPath API to validate a given certificate chain
|
Constructor and Description |
---|
DERDecoder(byte[] derEncoded)
Construct a DERDecoder for the given byte array.
|
X509SubjectPublicKeyInfo(byte[] x509EncodedPublicKey)
Construct a SubjectPublicKeyInfo for the given X.509-encoded public key.
|
X509SubjectPublicKeyInfo(PublicKey key)
Construct a SubjectPublicKeyInfo for the given public key.
|
Modifier and Type | Method and Description |
---|---|
protected void |
WSHandler.checkSignatureConfirmation(RequestData reqData,
Vector wsResult) |
protected boolean |
WSHandler.decodeCustomPasswordTypes(RequestData reqData) |
protected void |
WSHandler.decodeDecryptionParameter(RequestData reqData) |
protected boolean |
WSHandler.decodeEnableSignatureConfirmation(RequestData reqData) |
protected void |
WSHandler.decodeEncryptionParameter(RequestData reqData) |
protected boolean |
WSHandler.decodeMustUnderstand(RequestData reqData) |
protected boolean |
WSHandler.decodeNamespaceQualifiedPasswordTypes(RequestData reqData) |
protected void |
WSHandler.decodeSignatureParameter(RequestData reqData) |
protected void |
WSHandler.decodeSignatureParameter2(RequestData reqData) |
protected boolean |
WSHandler.decodeTimestampPrecision(RequestData reqData) |
protected boolean |
WSHandler.decodeTimestampStrict(RequestData reqData) |
protected boolean |
WSHandler.decodeUseEncodedPasswords(RequestData reqData) |
protected boolean |
WSHandler.decodeUseSingleCertificate(RequestData reqData) |
protected void |
WSHandler.decodeUTParameter(RequestData reqData) |
boolean |
WSS4JHandler.doReceiver(javax.xml.rpc.handler.MessageContext mc,
RequestData reqData,
boolean isRequest)
handle responses
|
protected void |
WSHandler.doReceiverAction(int doAction,
RequestData reqData) |
boolean |
WSS4JHandler.doSender(javax.xml.rpc.handler.MessageContext mc,
RequestData reqData,
boolean isRequest)
Handles incoming web service requests and outgoing responses
|
protected void |
WSHandler.doSenderAction(int doAction,
org.w3c.dom.Document doc,
RequestData reqData,
Vector actions,
boolean isRequest)
Performs all defined security actions to set-up the SOAP request.
|
WSPasswordCallback |
WSHandler.getPassword(String username,
int doAction,
String clsProp,
String refProp,
RequestData reqData)
Get a password to construct a UsernameToken or sign a message.
|
protected javax.security.auth.callback.CallbackHandler |
WSHandler.getPasswordCB(RequestData reqData)
Get the password callback class and get an instance
|
protected Crypto |
WSHandler.loadDecryptionCrypto(RequestData reqData)
Hook to allow subclasses to load their Decryption Crypto however they
see fit.
|
protected Crypto |
WSHandler.loadEncryptionCrypto(RequestData reqData)
Hook to allow subclasses to load their Encryption Crypto however they
see fit.
|
Crypto |
WSHandler.loadSignatureCrypto(RequestData reqData)
Hook to allow subclasses to load their Signature Crypto however they see
fit.
|
boolean |
WSS4JHandler.processMessage(javax.xml.rpc.handler.MessageContext mc,
boolean isRequestMessage)
Switch for transferring control to doReceiver and doSender
|
protected boolean |
WSHandler.verifyTimestamp(Timestamp timestamp,
int timeToLive)
Evaluate whether a timestamp is considered valid on the receivers' side.
|
protected boolean |
WSHandler.verifyTimestamp(Timestamp timestamp,
int timeToLive,
int futureTimeToLive)
Evaluate whether a timestamp is considered valid on the receivers' side.
|
protected boolean |
WSHandler.verifyTrust(X509Certificate[] certificates,
RequestData reqData)
Evaluate whether the given certificate chain should be trusted.
|
protected boolean |
WSHandler.verifyTrust(X509Certificate cert,
RequestData reqData)
Evaluate whether a given certificate should be trusted.
|
Modifier and Type | Method and Description |
---|---|
void |
WSSecSignature.addReferencesToSign(Vector references,
WSSecHeader secHeader)
This method adds references to the Signature.
|
void |
WSSecDKSign.addReferencesToSign(Vector references,
WSSecHeader secHeader)
This method adds references to the Signature.
|
org.w3c.dom.Document |
WSSignEnvelope.build(org.w3c.dom.Document doc,
Crypto crypto)
Deprecated.
|
org.w3c.dom.Document |
WSEncryptBody.build(org.w3c.dom.Document doc,
Crypto crypto)
Deprecated.
|
org.w3c.dom.Document |
WSSecSignature.build(org.w3c.dom.Document doc,
Crypto cr,
WSSecHeader secHeader)
Builds a signed soap envelope.
|
org.w3c.dom.Document |
WSSecEncrypt.build(org.w3c.dom.Document doc,
Crypto crypto,
WSSecHeader secHeader)
Builds the SOAP envelope with encrypted Body and adds encrypted key.
|
org.w3c.dom.Document |
WSSecDKSign.build(org.w3c.dom.Document doc,
WSSecHeader secHeader) |
org.w3c.dom.Document |
WSSecDKEncrypt.build(org.w3c.dom.Document doc,
WSSecHeader secHeader) |
void |
WSSecSignature.computeSignature()
Compute the Signature over the references.
|
void |
WSSecDKSign.computeSignature()
Compute the Signature over the references.
|
org.w3c.dom.Element |
WSSecEncrypt.encryptForExternalRef(org.w3c.dom.Element dataRef,
Vector references)
Encrypt one or more parts or elements of the message (external).
|
org.w3c.dom.Element |
WSSecDKEncrypt.encryptForExternalRef(org.w3c.dom.Element dataRef,
Vector references)
Encrypt one or more parts or elements of the message (external).
|
org.w3c.dom.Element |
WSSecEncrypt.encryptForInternalRef(org.w3c.dom.Element dataRef,
Vector references)
Encrypt one or more parts or elements of the message (internal).
|
protected byte[] |
WSSecEncryptedKey.generateEphemeralKey()
Create an ephemeral key
|
byte[] |
WSSecUsernameToken.getDerivedKey()
Get the derived key.
|
protected abstract int |
WSSecDerivedKeyBase.getDerivedKeyLength()
The derived key will change depending on the sig/encr algorithm.
|
protected int |
WSSecDKSign.getDerivedKeyLength() |
protected int |
WSSecDKEncrypt.getDerivedKeyLength() |
byte[] |
WSSecUsernameToken.getSecretKey()
Get the derived secret key.
|
void |
WSSecDerivedKeyBase.prepare(org.w3c.dom.Document doc)
Initialize a WSSec Derived key.
|
void |
WSSecSecurityContextToken.prepare(org.w3c.dom.Document doc,
Crypto crypto) |
void |
WSSecEncryptedKey.prepare(org.w3c.dom.Document doc,
Crypto crypto)
Prepare the ephemeralKey and the tokens required to be added to the
security header
|
void |
WSSecEncrypt.prepare(org.w3c.dom.Document doc,
Crypto crypto)
Initialize a WSSec Encrypt.
|
void |
WSSecSignature.prepare(org.w3c.dom.Document doc,
Crypto cr,
WSSecHeader secHeader)
Initialize a WSSec Signature.
|
void |
WSSecDKSign.prepare(org.w3c.dom.Document doc,
WSSecHeader secHeader) |
protected void |
WSSecEncryptedKey.prepareInternal(byte[] keyBytes,
X509Certificate remoteCert,
Crypto crypto)
Encrypt the symmetric key data and prepare the EncryptedKey element
This method does the most work for to prepare the EncryptedKey element.
|
void |
WSSecSecurityContextToken.prependSCTElementToHeader(org.w3c.dom.Document doc,
WSSecHeader secHeader) |
void |
WSSecEncryptedKey.setKeySize(int keySize) |
Modifier and Type | Method and Description |
---|---|
static byte[] |
UsernameToken.generateDerivedKey(byte[] password,
byte[] salt,
int iteration)
This static method generates a derived key as defined in WSS Username
Token Profile.
|
static byte[] |
UsernameToken.generateDerivedKey(String password,
byte[] salt,
int iteration)
This static method generates a derived key as defined in WSS Username
Token Profile.
|
byte[] |
UsernameToken.getDerivedKey()
This method gets a derived key as defined in WSS Username Token Profile.
|
X509Certificate[] |
SecurityTokenReference.getKeyIdentifier(Crypto crypto)
Gets the KeyIdentifier.
|
org.w3c.dom.Element |
SecurityTokenReference.getKeyIdentifierTokenElement(org.w3c.dom.Document doc,
WSDocInfo docInfo,
javax.security.auth.callback.CallbackHandler cb)
Gets the signing token element, which may be a
BinarySecurityToken
or a SAML token. |
Reference |
SecurityTokenReference.getReference()
Gets the Reference.
|
byte[] |
UsernameToken.getSalt()
Get the Salt value of this UsernameToken.
|
SecurityTokenReference |
DerivedKeyToken.getSecuityTokenReference()
Deprecated.
use getSecurityTokenReference() instead
|
SecurityTokenReference |
DerivedKeyToken.getSecurityTokenReference()
Returns the SecurityTokenReference of the derived key token
|
org.w3c.dom.Element |
SecurityTokenReference.getTokenElement(org.w3c.dom.Document doc,
WSDocInfo docInfo,
javax.security.auth.callback.CallbackHandler cb)
Gets the signing token element, which maybe a
BinarySecurityToken
or a SAML token. |
X509Certificate |
X509Security.getX509Certificate(Crypto crypto)
Gets the X509Certificate certificate.
|
X509Certificate[] |
PKIPathSecurity.getX509Certificates(boolean reverse,
Crypto crypto)
get the X509Certificate array.
|
X509Certificate[] |
SecurityTokenReference.getX509IssuerSerial(Crypto crypto)
Gets the certificate identified with X509 issuerSerial data.
|
String |
SecurityTokenReference.getX509IssuerSerialAlias(Crypto crypto)
Gets the alias name of the certificate identified with X509 issuerSerial data.
|
String |
SecurityTokenReference.getX509SKIAlias(Crypto crypto) |
boolean |
UsernameToken.isDerivedKey()
Return whether the UsernameToken represented by this class is to be used
for key derivation as per the UsernameToken Profile 1.1.
|
void |
SecurityTokenReference.setKeyIdentifier(String valueType,
String keyIdVal) |
void |
SecurityTokenReference.setKeyIdentifier(X509Certificate cert)
Sets the KeyIdentifier Element as a X509 certificate.
|
void |
SecurityTokenReference.setKeyIdentifierEncKeySHA1(String value) |
void |
SecurityTokenReference.setKeyIdentifierSKI(X509Certificate cert,
Crypto crypto)
Sets the KeyIdentifier Element as a X509 Subject-Key-Identifier (SKI).
|
void |
SecurityTokenReference.setKeyIdentifierThumb(X509Certificate cert)
Sets the KeyIdentifier Element as a Thumbprint.
|
void |
SecurityTokenReference.setSAMLKeyIdentifier(String keyIdVal) |
void |
X509Security.setX509Certificate(X509Certificate cert)
Sets the X509Certificate.
|
void |
PKIPathSecurity.setX509Certificates(X509Certificate[] certs,
boolean reverse,
Crypto crypto)
set the X509Certificate array.
|
Constructor and Description |
---|
BinarySecurity(org.w3c.dom.Element elem)
Constructor.
|
DerivedKeyToken(org.w3c.dom.Element elem)
This will create a DerivedKeyToken object with the given DerivedKeyToken element
|
PKIPathSecurity(org.w3c.dom.Element elem)
Constructor.
|
Reference(org.w3c.dom.Element elem)
Constructor.
|
SecurityContextToken(org.w3c.dom.Element elem)
This is used to create a SecurityContextToken using a DOM Element
|
SecurityTokenReference(org.w3c.dom.Element elem)
Constructor.
|
SignatureConfirmation(org.w3c.dom.Element elem)
Constructs a
SignatureConfirmation object and parses the
wsse11:SignatureCOnfirmation element to initialize it. |
Timestamp(org.w3c.dom.Element element)
Constructs a
Timestamp object and parses the
wsu:Timestamp element to initialize it. |
UsernameToken(org.w3c.dom.Element elem)
Constructs a
UsernameToken object and parses the
wsse:UsernameToken element to initialize it. |
UsernameToken(org.w3c.dom.Element elem,
boolean allowNamespaceQualifiedPasswordTypes)
Constructs a
UsernameToken object and parses the
wsse:UsernameToken element to initialize it. |
X509Security(org.w3c.dom.Element elem)
This constructor creates a new X509 certificate object and initializes
it from the data contained in the element.
|
Modifier and Type | Method and Description |
---|---|
static WSDataRef |
ReferenceListProcessor.decryptEncryptedData(org.w3c.dom.Document doc,
String dataRefURI,
org.w3c.dom.Element encData,
javax.crypto.SecretKey symmetricKey,
String symEncAlgo)
Decrypt the EncryptedData argument using a SecretKey.
|
static org.w3c.dom.Element |
ReferenceListProcessor.findEncryptedDataElement(org.w3c.dom.Document doc,
String dataRefURI)
Look up the encrypted data.
|
X509Certificate[] |
SignatureProcessor.getCertificatesTokenReference(org.w3c.dom.Element elem,
Crypto crypto)
Extracts the certificate(s) from the Binary Security token reference.
|
static byte[] |
EncryptedKeyProcessor.getDecodedBase64EncodedData(org.w3c.dom.Element element)
Method getDecodedBase64EncodedData
|
byte[] |
UsernameTokenProcessor.getDerivedKey(javax.security.auth.callback.CallbackHandler cb) |
static String |
X509Util.getEncAlgo(org.w3c.dom.Node encBodyData) |
byte[] |
DerivedKeyTokenProcessor.getKeyBytes(int len)
Get the derived key bytes for a given length
|
protected static javax.crypto.SecretKey |
X509Util.getSharedKey(org.w3c.dom.Element keyInfoElem,
String algorithm,
javax.security.auth.callback.CallbackHandler cb) |
ArrayList |
EncryptedKeyProcessor.handleEncryptedKey(org.w3c.dom.Element xencEncryptedKey,
javax.security.auth.callback.CallbackHandler cb,
Crypto crypto) |
ArrayList |
EncryptedKeyProcessor.handleEncryptedKey(org.w3c.dom.Element xencEncryptedKey,
javax.security.auth.callback.CallbackHandler cb,
Crypto crypto,
PrivateKey privateKey) |
ArrayList |
EncryptedKeyProcessor.handleEncryptedKey(org.w3c.dom.Element xencEncryptedKey,
PrivateKey privatekey) |
void |
TimestampProcessor.handleTimestamp(Timestamp timestamp) |
void |
ReferenceListProcessor.handleToken(org.w3c.dom.Element elem,
Crypto crypto,
Crypto decCrypto,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wdi,
Vector returnResults,
WSSConfig wsc) |
void |
EncryptedKeyProcessor.handleToken(org.w3c.dom.Element elem,
Crypto crypto,
Crypto decCrypto,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wsDocInfo,
Vector returnResults,
WSSConfig wsc) |
void |
TimestampProcessor.handleToken(org.w3c.dom.Element elem,
Crypto crypto,
Crypto decCrypto,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wsDocInfo,
Vector returnResults,
WSSConfig wsc) |
void |
SignatureProcessor.handleToken(org.w3c.dom.Element elem,
Crypto crypto,
Crypto decCrypto,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wsDocInfo,
Vector returnResults,
WSSConfig wsc) |
void |
EncryptedDataProcessor.handleToken(org.w3c.dom.Element elem,
Crypto crypto,
Crypto decCrypto,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wsDocInfo,
Vector returnResults,
WSSConfig config) |
void |
SecurityContextTokenProcessor.handleToken(org.w3c.dom.Element elem,
Crypto crypto,
Crypto decCrypto,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wsDocInfo,
Vector returnResults,
WSSConfig config) |
void |
DerivedKeyTokenProcessor.handleToken(org.w3c.dom.Element elem,
Crypto crypto,
Crypto decCrypto,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wsDocInfo,
Vector returnResults,
WSSConfig config) |
void |
BinarySecurityTokenProcessor.handleToken(org.w3c.dom.Element elem,
Crypto crypto,
Crypto decCrypto,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wsDocInfo,
Vector returnResults,
WSSConfig config) |
void |
Processor.handleToken(org.w3c.dom.Element elem,
Crypto crypto,
Crypto decCrypto,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wsDocInfo,
Vector returnResults,
WSSConfig config) |
void |
SignatureConfirmationProcessor.handleToken(org.w3c.dom.Element elem,
Crypto crypto,
Crypto decCrypto,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wsDocInfo,
Vector returnResults,
WSSConfig wsc) |
void |
UsernameTokenProcessor.handleToken(org.w3c.dom.Element elem,
Crypto crypto,
Crypto decCrypto,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wsDocInfo,
Vector returnResults,
WSSConfig wsc) |
WSUsernameTokenPrincipal |
UsernameTokenProcessor.handleUsernameToken(org.w3c.dom.Element token,
javax.security.auth.callback.CallbackHandler cb)
Check the UsernameToken element.
|
protected Principal |
SignatureProcessor.verifyXMLSignature(org.w3c.dom.Element elem,
Crypto crypto,
X509Certificate[] returnCert,
Set returnElements,
List protectedElements,
byte[][] signatureValue,
javax.security.auth.callback.CallbackHandler cb,
WSDocInfo wsDocInfo)
Verify the WS-Security signature.
|
Modifier and Type | Method and Description |
---|---|
protected static org.w3c.dom.Element |
STRTransformUtil.createBSTX509(org.w3c.dom.Document doc,
X509Certificate cert,
org.w3c.dom.Element secRefE) |
static org.w3c.dom.Element |
STRTransformUtil.dereferenceSTR(org.w3c.dom.Document doc,
SecurityTokenReference secRef,
WSDocInfo wsDocInfo)
Retrieves the element representing the referenced content of a STR.
|
Modifier and Type | Method and Description |
---|---|
static byte[] |
Base64.decode(String encoded)
Decodes Base64 data into octects
|
static int |
WSSecurityUtil.decodeAction(String action,
Vector actions) |
static int |
WSSecurityUtil.decodeAction(String action,
Vector actions,
WSSConfig wssConfig)
Decode an action String.
|
static X509Certificate |
WSSecurityUtil.ensureSignedTogether(Iterator results,
org.w3c.dom.Element[] elements)
Search through a WSS4J results vector for a single signature covering all
these elements.
|
static byte[] |
WSSecurityUtil.generateNonce(int length)
Generate a nonce of the given length
|
static javax.crypto.Cipher |
WSSecurityUtil.getCipherInstance(String cipherAlgo) |
static int |
WSSecurityUtil.getKeyLength(String algorithm)
Returns the length of the key in # of bytes
|
Copyright © 2004-2012 The Apache Software Foundation. All Rights Reserved.