Package org.apache.cxf.rt.security.saml.interceptor

Class WSS4JBasicAuthValidator

  • public abstract class WSS4JBasicAuthValidator
extends Object
    An abstract class containing some functionality to validate a username + password received via HTTP Basic Authentication via a WSS4J Validator (and hence JAAS, the STS, etc.). It can be subclassed and used as a CXF interceptor or else via a JAX-RS ContainerRequestFilter.

    • Constructor Detail

      • WSS4JBasicAuthValidator

        public WSS4JBasicAuthValidator()

    • Method Detail

      • validate

        protected void validate​(org.apache.cxf.message.Message message)
                 throws org.apache.wss4j.common.ext.WSSecurityException
        Throws:
        org.apache.wss4j.common.ext.WSSecurityException

      • convertPolicyToToken

        protected org.apache.wss4j.dom.message.token.UsernameToken convertPolicyToToken​(org.apache.cxf.configuration.security.AuthorizationPolicy policy)

      • createSecurityContext

        protected org.apache.cxf.security.SecurityContext createSecurityContext​(Principal p)

      • createSecurityContext

        protected org.apache.cxf.security.SecurityContext createSecurityContext​(org.apache.cxf.message.Message msg,
                                                                        org.apache.wss4j.dom.validate.Credential credential)

      • getValidator

        public org.apache.wss4j.dom.validate.Validator getValidator()

      • setValidator

        public void setValidator​(org.apache.wss4j.dom.validate.Validator validator)

      • setCallbackHandler

        public void setCallbackHandler​(CallbackHandler callbackHandler)