| Package | Description |
|---|---|
| org.apache.rahas | |
| org.apache.rahas.client | |
| org.apache.rahas.impl | |
| org.apache.rahas.impl.util | |
| org.apache.rampart.saml | |
| org.apache.rampart.util |
| Modifier and Type | Method and Description |
|---|---|
void |
TokenStorage.add(Token token)
Add the given token to the list.
|
void |
SimpleTokenStore.add(Token token) |
org.apache.axiom.soap.SOAPEnvelope |
TokenCanceler.cancel(RahasData data)
Cancel the token specified in the request.
|
static org.apache.axiom.om.OMElement |
TrustUtil.createBinarySecretElement(int version,
org.apache.axiom.om.OMElement parent,
String type) |
static org.apache.axiom.om.OMElement |
TrustUtil.createCancelRequest(String tokenId,
int version) |
static org.apache.axiom.om.OMElement |
TrustUtil.createCancelTargetElement(int version,
org.apache.axiom.om.OMElement parent) |
static org.apache.axiom.om.OMElement |
TrustUtil.createClaims(int version,
org.apache.axiom.om.OMElement parent,
String dialect) |
static org.apache.axiom.om.OMElement |
TrustUtil.createComputedKeyAlgorithm(int version,
org.apache.axiom.om.OMElement parent,
String algoId) |
static org.apache.axiom.om.OMElement |
TrustUtil.createComputedKeyElement(int version,
org.apache.axiom.om.OMElement parent) |
static org.apache.axiom.om.OMElement |
TrustUtil.createEntropyElement(int version,
org.apache.axiom.om.OMElement parent) |
static org.apache.axiom.om.OMElement |
TrustUtil.createKeySizeElement(int version,
org.apache.axiom.om.OMElement parent,
int size) |
static org.apache.axiom.om.OMElement |
TrustUtil.createKeyTypeElement(int version,
org.apache.axiom.om.OMElement parent,
String type) |
static org.apache.axiom.om.OMElement |
TrustUtil.createLifetimeElement(int version,
org.apache.axiom.om.OMElement parent,
long ttl) |
static org.apache.axiom.om.OMElement |
TrustUtil.createLifetimeElement(int version,
org.apache.axiom.om.OMElement parent,
String created,
String expires) |
static org.apache.axiom.om.OMElement |
TrustUtil.createRenewTargetElement(int version,
org.apache.axiom.om.OMElement parent,
org.apache.axiom.om.OMElement str) |
static org.apache.axiom.om.OMElement |
TrustUtil.createRequestedAttachedRef(int version,
org.apache.axiom.om.OMElement parent,
String refUri,
String refValueType) |
static void |
TrustUtil.createRequestedAttachedRef(org.apache.axiom.om.OMElement rstrElem,
String id,
int version)
Create and add wst:AttachedReference element
|
static org.apache.axiom.om.OMElement |
TrustUtil.createRequestedProofTokenElement(int version,
org.apache.axiom.om.OMElement parent) |
static org.apache.axiom.om.OMElement |
TrustUtil.createRequestedSecurityTokenElement(int version,
org.apache.axiom.om.OMElement parent) |
static org.apache.axiom.om.OMElement |
TrustUtil.createRequestedTokenCanceledElement(int version,
org.apache.axiom.om.OMElement parent) |
static org.apache.axiom.om.OMElement |
TrustUtil.createRequestedUnattachedRef(int version,
org.apache.axiom.om.OMElement parent,
String refUri,
String refValueType) |
static void |
TrustUtil.createRequestedUnattachedRef(org.apache.axiom.om.OMElement rstrElem,
String id,
int version)
Create and add wst:UnattachedReference element
|
static org.apache.axiom.om.OMElement |
TrustUtil.createRequestSecurityTokenElement(int version) |
static org.apache.axiom.om.OMElement |
TrustUtil.createRequestSecurityTokenResponseCollectionElement(int version,
org.apache.axiom.om.OMElement parent) |
static org.apache.axiom.om.OMElement |
TrustUtil.createRequestSecurityTokenResponseElement(int version,
org.apache.axiom.om.OMElement parent) |
static org.apache.axiom.om.OMElement |
TrustUtil.createRequestTypeElement(int version,
org.apache.axiom.om.OMElement parent,
String value) |
static org.apache.axiom.om.OMElement |
TrustUtil.createTokenTypeElement(int version,
org.apache.axiom.om.OMElement parent) |
static org.apache.axiom.om.OMElement |
TrustUtil.createValidateTargetElement(int version,
org.apache.axiom.om.OMElement parent,
org.apache.axiom.om.OMElement str) |
protected byte[] |
TrustUtil.generateEphemeralKey(byte[] reqEnt,
byte[] respEnt,
String algo,
int keySize)
Create an ephemeral key
|
protected byte[] |
TrustUtil.generateEphemeralKey(int keySize)
Create an ephemeral key
|
static String |
TrustUtil.getActionValue(int version,
String action) |
Token[] |
TokenStorage.getCancelledTokens()
Return the list of CANCELLED tokens
|
Token[] |
SimpleTokenStore.getCancelledTokens() |
TokenCanceler |
TokenRequestDispatcherConfig.getDefaultCancelerInstance() |
TokenIssuer |
TokenRequestDispatcherConfig.getDefaultIssuerInstace() |
TokenRenewer |
TokenRequestDispatcherConfig.getDefaultRenewerInstance() |
TokenValidator |
TokenRequestDispatcherConfig.getDefaultValidatorInstance() |
Token[] |
TokenStorage.getExpiredTokens()
Return the list of
EXPIRED tokens. |
Token[] |
SimpleTokenStore.getExpiredTokens() |
TokenIssuer |
TokenRequestDispatcherConfig.getIssuer(String tokenType) |
Token[] |
TokenStorage.getRenewedTokens()
Return the list of RENEWED tokens.
|
Token[] |
SimpleTokenStore.getRenewedTokens() |
TokenRenewer |
TokenRequestDispatcherConfig.getRenewer(String tokenType) |
String |
TokenIssuer.getResponseAction(RahasData data)
Returns the
wsa:Action of the response. |
String |
TokenCanceler.getResponseAction(RahasData data)
Returns the
wsa:Action of the response. |
Token |
TokenStorage.getToken(String id)
Returns the
Token of the given id |
Token |
SimpleTokenStore.getToken(String id) |
String[] |
TokenStorage.getTokenIdentifiers()
Return the list of all token identifiers.
|
String[] |
SimpleTokenStore.getTokenIdentifiers() |
TokenValidator |
TokenRequestDispatcherConfig.getValidator(String tokenType) |
Token[] |
TokenStorage.getValidTokens()
Return the list of ISSUED and RENEWED tokens.
|
Token[] |
SimpleTokenStore.getValidTokens() |
static String |
TrustUtil.getWSTNamespace(int version) |
static int |
TrustUtil.getWSTVersion(String ns) |
org.apache.axiom.soap.SOAPEnvelope |
TokenRequestDispatcher.handle(org.apache.axis2.context.MessageContext inMsgCtx,
org.apache.axis2.context.MessageContext outMsgCtx)
Processes the incoming request and returns a SOAPEnvelope
|
org.apache.axiom.soap.SOAPEnvelope |
TokenIssuer.issue(RahasData data)
Create the response
soap:Envelope for the given issue
request. |
static TokenRequestDispatcherConfig |
TokenRequestDispatcherConfig.load(org.apache.axiom.om.OMElement configElem) |
static TokenRequestDispatcherConfig |
TokenRequestDispatcherConfig.load(String configFilePath) |
protected void |
SimpleTokenStore.processTokenExpiry() |
org.apache.axiom.soap.SOAPEnvelope |
TokenRenewer.renew(RahasData data)
Renew the token specified in the given request.
|
void |
TokenStorage.update(Token token)
Update an existing token.
|
void |
SimpleTokenStore.update(Token token) |
org.apache.axiom.soap.SOAPEnvelope |
TokenValidator.validate(RahasData data)
Validate the token specified in the given request.
|
| Constructor and Description |
|---|
EncryptedKeyToken(String id,
org.apache.axiom.om.OMElement tokenElem,
Date created,
Date expires) |
RahasData(org.apache.axis2.context.MessageContext inMessageContext)
Create a new RahasData instance and populate it with the information from
the request.
|
Token(String id,
org.apache.axiom.om.OMElement tokenElem,
Date created,
Date expires) |
Token(String id,
org.apache.axiom.om.OMElement tokenElem,
org.apache.axiom.om.OMElement lifetimeElem) |
TokenRequestDispatcher(org.apache.axiom.om.OMElement config) |
TokenRequestDispatcher(String configFilePath) |
TokenRequestDispatcher(TokenRequestDispatcherConfig config) |
| Modifier and Type | Method and Description |
|---|---|
boolean |
STSClient.cancelToken(String issuerAddress,
String tokenId,
String action)
Cancel a particular security token
|
protected org.apache.axiom.om.OMElement |
STSClient.createIssueRequest(String appliesTo)
This creates a request security token (RST) message.
|
protected Token |
STSClient.processIssueResponse(int version,
org.apache.axiom.om.OMElement result,
String issuerAddress)
Processes the response from Token issuer.
|
boolean |
STSClient.renewToken(String tokenId,
String issuerAddress,
org.apache.neethi.Policy issuerPolicy) |
boolean |
STSClient.renewToken(String tokenId,
String issuerAddress,
org.apache.neethi.Policy issuerPolicy,
TokenStorage store)
Renews the token referenced by the token id, updates the token store
|
Token |
STSClient.requestSecurityToken(org.apache.neethi.Policy servicePolicy,
String issuerAddress,
org.apache.neethi.Policy issuerPolicy,
String appliesTo) |
boolean |
STSClient.validateToken(String tokenId,
String issuerAddress,
org.apache.neethi.Policy issuerPolicy) |
| Constructor and Description |
|---|
STSClient(org.apache.axis2.context.ConfigurationContext configCtx) |
| Modifier and Type | Method and Description |
|---|---|
protected org.opensaml.saml2.core.Assertion |
SAML2TokenIssuer.buildAssertion(Document doc,
org.apache.ws.security.components.crypto.Crypto crypto,
RahasData data)
This methods builds the SAML2 assertion.
|
org.apache.axiom.soap.SOAPEnvelope |
TokenCancelerImpl.cancel(RahasData data)
Cancel the token specified in the request.
|
protected org.opensaml.saml2.core.AttributeStatement |
SAML2TokenIssuer.createAttributeStatement(RahasData data)
This method creates an AttributeStatement.
|
protected org.opensaml.saml2.core.AuthnStatement |
SAML2TokenIssuer.createAuthenticationStatement(RahasData data)
This method creates an authentication statement.
|
protected org.opensaml.xml.signature.KeyInfo |
SAML2TokenIssuer.createKeyInfo(Document doc,
org.apache.ws.security.components.crypto.Crypto crypto,
RahasData data)
This method creates the KeyInfo relevant for the assertion.
|
protected org.apache.axiom.soap.SOAPEnvelope |
SAML2TokenIssuer.createRequestSecurityTokenResponse(RahasData rahasData,
org.opensaml.saml2.core.Assertion assertion,
org.apache.axiom.soap.SOAPEnvelope soapEnvelope)
This method prepares the final response.
|
protected org.opensaml.saml2.core.Subject |
SAML2TokenIssuer.createSubjectWithBearerSubjectConfirmation(RahasData data)
This method creates a subject element with the bearer subject confirmation method.
|
protected org.opensaml.saml2.core.Subject |
SAML2TokenIssuer.createSubjectWithHolderOfKeySubjectConfirmation(Document doc,
org.apache.ws.security.components.crypto.Crypto crypto,
org.joda.time.DateTime creationTime,
org.joda.time.DateTime expirationTime,
RahasData data)
This method will create a SAML 2 subject based on Holder of Key confirmation method.
|
protected byte[] |
SAMLTokenIssuer.generateEphemeralKey(int keySize)
Create an ephemeral key
|
org.apache.ws.security.components.crypto.Crypto |
SAMLTokenIssuerConfig.getIssuerCrypto(ClassLoader classLoader)
This method will create a Crypto object based on property values defined in cryptoElement or
cryptoPropertiesFile.
|
String |
TokenCancelerImpl.getResponseAction(RahasData data)
Returns the
wsa:Action of the response. |
String |
SCTIssuer.getResponseAction(RahasData data) |
String |
SAMLTokenIssuer.getResponseAction(RahasData data)
Returns the
wsa:Action of the response. |
String |
SAML2TokenIssuer.getResponseAction(RahasData data) |
X509Certificate |
SAMLTokenIssuerConfig.getServiceCert(org.apache.ws.security.components.crypto.Crypto crypto,
String serviceAddress)
Uses the
wst:AppliesTo to figure out the certificate to
encrypt the secret in the SAML token |
static byte[] |
TokenIssuerUtil.getSharedSecret(RahasData data,
int keyComputation,
int keySize) |
static void |
TokenIssuerUtil.handleRequestedProofToken(RahasData data,
int wstVersion,
AbstractIssuerConfig config,
org.apache.axiom.om.OMElement rstrElem,
Token token,
Document doc) |
org.apache.axiom.soap.SOAPEnvelope |
SCTIssuer.issue(RahasData data)
Issue a
SecurityContextToken based on the wsse:Signature or
wsse:UsernameToken
This will support returning the SecurityContextToken with the following
types of wst:RequestedProof tokens:
xenc:EncryptedKey
wst:ComputedKey
wst:BinarySecret (for secure transport)
|
org.apache.axiom.soap.SOAPEnvelope |
SAMLTokenIssuer.issue(RahasData data) |
org.apache.axiom.soap.SOAPEnvelope |
SAML2TokenIssuer.issue(RahasData data)
This is the main method which issues SAML2 assertions as security token responses.
|
static TokenCancelerConfig |
TokenCancelerConfig.load(org.apache.axiom.om.OMElement elem) |
static SCTIssuerConfig |
SCTIssuerConfig.load(org.apache.axiom.om.OMElement elem) |
static TokenCancelerConfig |
TokenCancelerConfig.load(String configFilePath) |
static SCTIssuerConfig |
SCTIssuerConfig.load(String configFilePath) |
org.apache.axiom.soap.SOAPEnvelope |
SAMLTokenRenewer.renew(RahasData data) |
protected static void |
SAML2TokenIssuer.setSubjectNamedIdentifierData(org.opensaml.saml2.core.Subject subject,
String subjectNameId,
String format)
This method will set the subject principal details to the given subject.
|
protected org.opensaml.saml2.core.Assertion |
SAML2TokenIssuer.signAssertion(Document document,
org.opensaml.saml2.core.Assertion assertion,
org.apache.ws.security.components.crypto.Crypto crypto)
This method signs the given assertion with issuer's private key.
|
org.apache.axiom.soap.SOAPEnvelope |
SAMLTokenValidator.validate(RahasData data)
Returns a SOAPEnvelope with the result of the validation.
|
| Constructor and Description |
|---|
SAMLTokenIssuerConfig(org.apache.axiom.om.OMElement elem)
Create a SAMLTokenIssuer configuration using the give config element
|
SAMLTokenIssuerConfig(String configFilePath)
Create a SAMLTokenIssuer configuration with a config file picked from the
given location.
|
| Modifier and Type | Method and Description |
|---|---|
static org.opensaml.xml.XMLObject |
CommonUtil.buildXMLObject(QName objectQName)
Builds the requested XMLObject.
|
static org.opensaml.saml2.core.Assertion |
SAML2Utils.createAssertion() |
static org.opensaml.saml1.core.Assertion |
SAMLUtils.createAssertion(String issuerName,
org.joda.time.DateTime notBefore,
org.joda.time.DateTime notOnOrAfter,
List<org.opensaml.saml1.core.Statement> statements)
This method creates the final SAML assertion.
|
static org.opensaml.saml1.core.Attribute |
SAMLUtils.createAttribute(String name,
String namespace,
String value)
Creates a SAML attribute similar to following,
<saml:Attribute
AttributeName="MemberLevel"
AttributeNamespace="http://www.oasis.open.org/Catalyst2002/attributes">
<saml:AttributeValue>gold</saml:AttributeValue>
</saml:Attribute>
|
static org.opensaml.saml1.core.AttributeStatement |
SAMLUtils.createAttributeStatement(org.opensaml.saml1.core.Subject subject,
List<org.opensaml.saml1.core.Attribute> attributeList)
Creates an attribute statement.
|
static org.opensaml.saml1.core.AuthenticationStatement |
SAMLUtils.createAuthenticationStatement(org.opensaml.saml1.core.Subject subject,
String authenticationMethod,
org.joda.time.DateTime authenticationInstant)
Creates an AuthenticationStatement.
|
static org.opensaml.saml1.core.Conditions |
SAMLUtils.createConditions(org.joda.time.DateTime notBefore,
org.joda.time.DateTime notOnOrAfter)
Creates Conditions object.
|
static org.opensaml.saml2.core.Conditions |
SAML2Utils.createConditions(org.joda.time.DateTime creationTime,
org.joda.time.DateTime expirationTime) |
static org.opensaml.saml2.core.Issuer |
SAML2Utils.createIssuer(String issuerName) |
static org.opensaml.xml.signature.KeyInfo |
SAMLUtils.createKeyInfo()
Creates a KeyInfo object
|
static org.opensaml.xml.signature.KeyInfo |
SAMLUtils.createKeyInfo(org.opensaml.xml.encryption.EncryptedKey encryptedKey)
Creates a KeyInfo element given EncryptedKey.
|
static org.opensaml.xml.signature.KeyInfo |
SAMLUtils.createKeyInfo(org.opensaml.xml.signature.X509Data x509Data)
Creates a KeyInfo element given EncryptedKey.
|
static org.opensaml.saml1.core.NameIdentifier |
SAMLUtils.createNamedIdentifier(String principalName,
String format)
Create named identifier.
|
static org.opensaml.saml2.core.NameID |
SAML2Utils.createNamedIdentifier(String principalName,
String format)
Create named identifier.
|
static org.opensaml.saml1.core.Subject |
SAMLUtils.createSubject(org.opensaml.saml1.core.NameIdentifier nameIdentifier,
String confirmationMethod,
org.opensaml.xml.signature.KeyInfo keyInfoContent)
Creates an opensaml Subject representation.
|
static org.opensaml.saml1.core.SubjectConfirmation |
SAMLUtils.createSubjectConfirmation(String confirmationMethod,
org.opensaml.xml.signature.KeyInfo keyInfoContent)
Creates opensaml SubjectConfirmation representation.
|
static org.opensaml.saml1.core.ConfirmationMethod |
SAMLUtils.createSubjectConfirmationMethod(String confirmationMethod)
Creates the subject confirmation method.
|
protected static SAMLTokenIssuerConfig |
CommonUtil.createTokenIssuerConfiguration(org.apache.axiom.om.OMElement configElement) |
protected static SAMLTokenIssuerConfig |
CommonUtil.createTokenIssuerConfiguration(org.apache.axis2.description.Parameter messageContextParameter) |
protected static SAMLTokenIssuerConfig |
CommonUtil.createTokenIssuerConfiguration(String configFile) |
static org.opensaml.xml.signature.KeyInfo |
CommonUtil.getCertificateBasedKeyInfo(X509Certificate certificate)
Creates the certificate based KeyInfo object.
|
static X509Certificate |
CommonUtil.getCertificateByAlias(org.apache.ws.security.components.crypto.Crypto crypto,
String alias)
Gets the certificates chain by alias.
|
static X509Certificate[] |
CommonUtil.getCertificatesByAlias(org.apache.ws.security.components.crypto.Crypto crypto,
String alias)
Gets the certificates chain by alias.
|
static org.apache.ws.security.components.crypto.Crypto |
CommonUtil.getCrypto(Properties properties,
ClassLoader classLoader)
Constructs crypto configuration based on the given properties.
|
static org.apache.ws.security.components.crypto.Crypto |
CommonUtil.getCrypto(String propertiesFile,
ClassLoader classLoader)
Constructs crypto configuration based on the given properties.
|
static Element |
SAML2Utils.getElementFromAssertion(org.opensaml.xml.XMLObject xmlObj) |
static Document |
CommonUtil.getOMDOMDocument()
This method creates a DOM compatible Axiom document.
|
static SAMLCallbackHandler |
CommonUtil.getSAMLCallbackHandler(SAMLTokenIssuerConfig tokenIssuerConfiguration,
RahasData data)
Gets the SAML callback handler.
|
static org.opensaml.xml.signature.KeyInfo |
CommonUtil.getSymmetricKeyBasedKeyInfo(Document doc,
RahasData data,
X509Certificate serviceCert,
int keySize,
org.apache.ws.security.components.crypto.Crypto crypto,
int keyComputation)
This method creates KeyInfo element of an assertion.
|
static SAMLTokenIssuerConfig |
CommonUtil.getTokenIssuerConfiguration(org.apache.axiom.om.OMElement configElement,
String configFile,
org.apache.axis2.description.Parameter messageContextParameter)
Creates the token issuer configuration.
|
static void |
SAMLUtils.signAssertion(org.opensaml.saml1.core.Assertion assertion,
org.apache.ws.security.components.crypto.Crypto crypto,
String issuerKeyAlias,
String issuerKeyPassword)
Signs the SAML assertion.
|
| Modifier and Type | Method and Description |
|---|---|
abstract org.apache.axiom.om.OMElement |
SAMLAssertionHandler.getAssertionElement()
Gets the assertion element as an Axiom OMElement.
|
org.apache.axiom.om.OMElement |
SAML2AssertionHandler.getAssertionElement() |
org.apache.axiom.om.OMElement |
SAML1AssertionHandler.getAssertionElement() |
| Modifier and Type | Method and Description |
|---|---|
static String |
RampartUtil.getSecConvToken(RampartMessageData rmd,
SecureConversationToken secConvTok)
Obtain a security context token.
|
Copyright © Apache Software Foundation. All Rights Reserved.