org.apache.cxf.rt.security.saml.interceptor

Class WSS4JBasicAuthValidator

java.lang.Object

org.apache.cxf.rt.security.saml.interceptor.WSS4JBasicAuthValidator

public abstract class WSS4JBasicAuthValidator
extends Object

An abstract class containing some functionality to validate a username + password received via HTTP Basic Authentication via a WSS4J Validator (and hence JAAS, the STS, etc.). It can be subclassed and used as a CXF interceptor or else via a JAX-RS ContainerRequestFilter.

Constructor Summary

Constructors

Constructor and Description
WSS4JBasicAuthValidator()

Method Summary

Modifier and Type	Method and Description
protected org.apache.wss4j.dom.message.token.UsernameToken	convertPolicyToToken(org.apache.cxf.configuration.security.AuthorizationPolicy policy)
protected org.apache.cxf.security.SecurityContext	createSecurityContext(org.apache.cxf.message.Message msg, org.apache.wss4j.dom.validate.Credential credential)
protected org.apache.cxf.security.SecurityContext	createSecurityContext(Principal p)
CallbackHandler	getCallbackHandler()
org.apache.wss4j.dom.validate.Validator	getValidator()
void	setCallbackHandler(CallbackHandler callbackHandler)
void	setValidator(org.apache.wss4j.dom.validate.Validator validator)
protected void	validate(org.apache.cxf.message.Message message)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

WSS4JBasicAuthValidator

public WSS4JBasicAuthValidator()

Method Detail

validate

protected void validate(org.apache.cxf.message.Message message)
                 throws org.apache.wss4j.common.ext.WSSecurityException

Throws:

org.apache.wss4j.common.ext.WSSecurityException

convertPolicyToToken

protected org.apache.wss4j.dom.message.token.UsernameToken convertPolicyToToken(org.apache.cxf.configuration.security.AuthorizationPolicy policy)

createSecurityContext

protected org.apache.cxf.security.SecurityContext createSecurityContext(Principal p)

createSecurityContext

protected org.apache.cxf.security.SecurityContext createSecurityContext(org.apache.cxf.message.Message msg,
                                                                        org.apache.wss4j.dom.validate.Credential credential)

getValidator

public org.apache.wss4j.dom.validate.Validator getValidator()

setValidator

public void setValidator(org.apache.wss4j.dom.validate.Validator validator)

getCallbackHandler

public CallbackHandler getCallbackHandler()

setCallbackHandler

public void setCallbackHandler(CallbackHandler callbackHandler)