All Classes and Interfaces
Class
Description
Some abstract functionality for validating a security binding.
Some common functionality to be shared between the two binding handlers (DOM + StAX)
Some abstract functionality for validating SAML Assertions
Some abstract functionality for validating policies
An abstract class with some functionality to invoke on a SecurityTokenService (STS) via the
WS-Trust protocol.
A base class to use to validate various SupportingToken policies.
An abstract interceptor that can be used to form the basis of an interceptor to add and process
a specific type of security token.
Base class providing an extensibility point for populating
javax.security.auth.Subject from a current UsernameToken.
Java class for ActAsType complex type
This interface defines a way of retrieving an AlgorithmSuite object from the policy element
of an AlgorithmSuite assertion.
Validate results corresponding to the processing of a Signature, EncryptedKey or
EncryptedData structure against an AlgorithmSuite policy.
Translate any AlgorithmSuite policy that may be operative into a WSS4J AlgorithmSuite object
to enforce what algorithms are allowed in a request.
Java class for AllowPostdatingType complex type
Validate an AsymmetricBinding policy.
A CallbackHandler to be used to sign/encrypt SOAP Attachments.
This type is for elements whose [children] is a psuedo-dateTime and can have arbitrary attributes.
This type represents an element with arbitrary attributes.
This type is for elements whose [children] is an anyURI and can have arbitrary attributes.
Java class for AuthenticatorType complex type
Java class for BinaryExchangeType complex type
Java class for BinarySecretType complex type
An interceptor to add a BinarySecurityToken token to the security header of an outbound request, and to
process a BinarySecurityToken on an inbound request.
A security token that is encoded in binary
Java class for CancelTargetType complex type
Java class for CanonicalizationMethodType complex type
Java class for ChoiceChallengeResponseType complex type
Java class for ChoiceChallengeType complex type
Java class for ChoiceSelectedType complex type
Java class for ChoiceType complex type
This Callback class provides a pluggable way of sending Claims to the STS.
Validate a WS-SecurityPolicy Claims policy.
Java class for ClaimsType complex type
Validate SupportingToken policies.
Java class for ContextDataType complex type
Utility to enable the checking of WS-Security signature/encryption
coverage based on the results of the WSS4J processors.
A simple wrapper for an XPath expression and coverage type / scope
indicating how the XPath expression should be enforced as a cryptographic
coverage requirement.
Utility to enable the checking of WS-Security signature / WS-Security
encryption coverage based on the results of the WSS4J signature/encryption
processor.
Differentiates which part of an element to check for cryptographic coverage.
Differentiates which type of cryptographic coverage to check for.
This class uses a DOM-based approach to locate Elements that are referenced via an Id.
Wrap the default WSS4J EHCacheReplayCache in a BusLifeCycleListener, to make sure that
the cache is shutdown correctly.
Wrap the default JCacheReplayCache in a BusLifeCycleListener, to make sure that
the cache is shutdown correctly.
This class retrieves the default AlgorithmSuites plus the CXF specific GCM AlgorithmSuites.
Validate a WS-SecurityPolicy Claims policy for the
"http://schemas.xmlsoap.org/ws/2005/05/identity" namespace.
This utility extends the CryptoCoverageChecker to provide an easy way to check to see
if the SOAP (1.1 + 1.2) Body was signed and/or encrypted, if the Timestamp was signed,
if the WS-Addressing ReplyTo and FaultTo headers were signed, and if the UsernameToken
was encrypted.
The default implementation to create a SecurityContext from a set of WSS4J processing results.
Java class for DelegateToType complex type
This Callback class provides a pluggable way of performing delegation.
Java class for DigestMethodType complex type
Java class for DSAKeyValueType complex type
An in-memory EHCache implementation of the TokenStore interface.
A factory to return an EHCacheTokenStore instance.
This type represents a reference to an embedded security token.
This type is used for elements containing stringified binary data.
Validate an EncryptedSupportingToken policy.
Java class for EncryptionType complex type
Validate an EndorsingEncryptedSupportingToken policy.
Validate an EndorsingSupportingToken policy.
Java class for EntropyType complex type
Java class for ImageType complex type
Actual content model is non-deterministic, hence wildcard.
Actual content model is non-deterministic, hence wildcard.
Validate a WSSecurityEngineResult corresponding to the processing of a SAML Assertion
or Kerberos token against an IssuedToken policy.
An in-memory JCache implementation of the TokenStore interface.
A factory to return an JCacheTokenStore instance.
A class that obtains a ticket from a KDC and wraps it in a SecurityToken object.
An interceptor to add a Kerberos token to the security header of an outbound request, and to
process a Kerberos Token on an inbound request.
Validate a WSSecurityEngineResult corresponding to the processing of a Kerberos Token
against the appropriate policy.
Java class for KeyExchangeTokenType complex type
A security token key identifier
Java class for KeyInfoType complex type
Java class for KeyValueType complex type
Validate a Layout policy.
Java class for LifetimeType complex type
Java class for ManifestType complex type
A simple HashMap-based TokenStore.
A factory to return a MemoryTokenStore instance.
This object contains factory methods for each
Java content interface and Java element interface
generated in the org.apache.cxf.ws.security.sts.provider.model package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the org.apache.cxf.ws.security.sts.provider.model.secext package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the org.apache.cxf.ws.security.sts.provider.model.utility package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the org.apache.cxf.ws.security.sts.provider.model.wstrust14 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the org.apache.cxf.ws.security.sts.provider.model.xmldsig package.
Java class for ObjectType complex type
Java class for OnBehalfOfType complex type
Java class for ParticipantsType complex type
Java class for ParticipantType complex type
This type is used for password elements per Section 4.1.
Java class for PGPDataType complex type
Some common functionality that can be shared for working with policies
Holds various parameters to the policy validators
Java class for ProofEncryptionType complex type
This CallbackHandler implementation obtains the previously received message from a
DelegationCallback object, and obtains a received token
(SAML/UsernameToken/BinarySecurityToken) from it to be used as the delegation token.
This type represents a reference to an external security token.
Java class for ReferenceType complex type
Java class for RenewingType complex type
Java class for RenewTargetType complex type
Java class for RequestedProofTokenType complex type
Java class for RequestedReferenceType complex type
Java class for RequestedSecurityTokenType complex type
Java class for RequestedTokenCancelledType complex type
Java class for RequestKETType complex type
The RequestSecurityTokenCollection (RSTC) element is used to provide multiple RST requests.
The <wst:RequestSecurityTokenResponseCollection> element (RSTRC) MUST be used to return a security token or
response to a security token request on the final response.
Actual content model is non-deterministic, hence wildcard.
Actual content model is non-deterministic, hence wildcard.
Validate a RequiredElements policy
Validate a RequiredParts policy
Java class for RetrievalMethodType complex type
This CallbackHandler implementation creates a Claims Element for a "role" ClaimType and
stores it on the ClaimsCallback object.
Java class for RSAKeyValueType complex type
An interceptor to create and add a SAML token to the security header of an outbound
request, and to process a SAML Token on an inbound request.
Validate a SamlToken policy.
Validate either a SignedElements, EncryptedElements or ContentEncryptedElements policy
Validate either a SignedParts or EncryptedParts policy
Configuration tags used to configure the WS-SecurityPolicy layer.
Validate a SecurityContextToken policy.
This complexType defines header block to use for security-relevant data directed at a specific SOAP actor.
Validate a WS-SecurityPolicy
This type is used reference a security token.
Interceptor verifies critical policy security assertions for client side
Java class for SignatureMethodType complex type
Java class for SignaturePropertiesType complex type
Java class for SignaturePropertyType complex type
Java class for SignatureType complex type
Java class for SignatureValueType complex type
Java class for SignChallengeType complex type
Validate a SignedEncryptedSupportingToken policy.
Validate a SignedEndorsingEncryptedSupportingToken policy.
Validate a SignedEndorsingSupportingToken policy.
Java class for SignedInfoType complex type
Validate SignedSupportingToken policies.
Java class for SPKIDataType complex type
Java class for StatusType complex type
This interceptor handles parsing the StaX WS-Security results (events) + checks to see
whether the required Actions were fulfilled.
This interceptor handles parsing the StaX WS-Security results (events) + checks that the
specified crypto coverage events actually occurred.
This interceptor handles parsing the StaX WS-Security results (events) + sets up the
security context appropriately.
Converts
Strings into Nodes and visa versa using CXF's StaxUtilsAuthentication parameters to obtain SAML token from STS.
A extension of AbstractSTSClient to communicate with an STS and return a SecurityToken
to the client.
A RuntimeException that can be thrown by an STS implementation.
A JAAS LoginModule for authenticating a Username/Password to the STS.
This class validates a SAML Assertion by invoking the SamlAssertionValidator in WSS4J.
A Streaming SAML Token Validator implementation to validate a received Token to a
SecurityTokenService (STS).
This interface allows you to plug in some custom logic when storing/retrieving STS tokens in/from the cache
A Helper utility class to cache STS token and issue or renew the token from STS.
A WSS4J-based Validator to validate a received WS-Security credential by dispatching
it to a STS via WS-Trust.
Validate a SymmetricBinding policy.
Java class for TextChallengeResponseType complex type
Java class for TextChallengeType complex type
This complex type ties together the timestamp related elements into a composite type.
Java class for TitleType complex type
This interface defines a caching mechanism for security tokens.
An abstract factory to return a TokenStore instance.
Some common functionality
This complexType defines a container for elements to be specified from any namespace as properties/parameters of a DSIG transformation.
Java class for TransformsType complex type
Java class for TransformType complex type
Validate a TransportBinding policy.
Java class for UseKeyType complex type
Validate a UsernameToken policy.
This type represents a username token per Section 4.1
Java class for ValidateTargetType complex type
Configure the Validators
Validate a WSS11 policy.
Performs WS-Security inbound actions.
Assert policies in CXF that are asserted in the WSS4J policy stax module
A pluggable way to create a CXF SecurityContext Object from a set of WSS4J processing results
Some common functionality that can be shared between the WSS4JInInterceptor and the
UsernameTokenInterceptor.
This CallbackHandler implementation obtains a username via the jaxws property
"security.username", as defined in SecurityConstants, and creates a wss UsernameToken
(with no password) to be used as the delegation token.
Java class for X509DataType complex type
Java class for X509IssuerSerialType complex type
Validate an X509 Token policy.