Class WSConstants
java.lang.Object
org.apache.ws.security.WSConstants
Constants in WS-Security spec.
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic final StringSets theencryptionmethod to use AES with 128 bit key as the symmetric algorithm to encrypt data.static final StringSets theencryptionmethod to use AES with 192 bit key as the symmetric algorithm to encrypt data.static final StringSets theencryptionmethod to use AES with 256 bit key as the symmetric algorithm to encrypt data.static final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final intSets thesigningmethod to send the signing certificate as aBinarySecurityToken.static final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final StringSets thesignaturemethod to use DSA with SHA1 (DSS) to sign data.static final Stringstatic final Stringstatic final Stringstatic final intEmbeds a keyinfo/wsse:SecurityTokenReference into EncryptedData element.static final intEmbeds a keyinfo/key name into the EncryptedData element.static final Stringstatic final Stringstatic final Stringstatic final intstatic final Stringstatic final intSets thesigningor theencryptionmethod to send the issuer name and the serial number of a certificate to the receiver.static final Stringstatic final StringSets theencryptionmethod to encrypt the symmetric data encryption key with the RSA algoritm.static final StringSets theencryptionmethod to encrypt the symmetric data encryption key with the RSA algoritm.static final Stringstatic final intstatic final intstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final StringSets theUserNameTokenmethod to use a password digest to send the password informationstatic final StringSets theUserNameTokenmethod to send the password in clearstatic final Stringstatic final StringSets thesignaturemethod to use RSA with SHA to sign data.static final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final intstatic final intstatic final intstatic final Stringstatic final Stringstatic final Stringstatic final intstatic final Stringstatic final intSets thesigningmethod to send aSubjectKeyIdentifierto identify the signing certificate.static final Stringstatic final Stringstatic final intstatic final intstatic final Stringstatic final intTHUMPRINT_IDENTIFIERis used to set the specific key identifier ThumbprintSHA1.static final Stringstatic final StringSets theencryptionmethod to use triple DES as the symmetric algorithm to encrypt data.static final intstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final String[]static final Stringstatic final Stringstatic final Stringstatic final intstatic final intstatic final intUT_SIGNINGis used interally only to set a specific Signature behaviour.static final intLength of UsernameToken derived key used by .NET WSE to sign a message.static final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final intSets theencryptionmethod to send the certificate used to encrypt the symmetric key.static final Stringstatic final Stringstatic final String -
Constructor Summary
Constructors -
Method Summary
-
Field Details
-
WSSE_NS
- See Also:
-
WSSE11_NS
- See Also:
-
WSU_NS
- See Also:
-
SOAPMESSAGE_NS
- See Also:
-
SOAPMESSAGE_NS11
- See Also:
-
USERNAMETOKEN_NS
- See Also:
-
X509TOKEN_NS
- See Also:
-
SAMLTOKEN_NS
- See Also:
-
WSSE_LN
- See Also:
-
THUMBPRINT
- See Also:
-
SAML_ASSERTION_ID
- See Also:
-
WSSE_PREFIX
- See Also:
-
WSSE11_PREFIX
- See Also:
-
WSU_PREFIX
- See Also:
-
SIG_NS
- See Also:
-
SIG_PREFIX
- See Also:
-
SIG_LN
- See Also:
-
ENC_NS
- See Also:
-
ENC_PREFIX
- See Also:
-
ENC_KEY_LN
- See Also:
-
REF_LIST_LN
- See Also:
-
XMLNS_NS
- See Also:
-
XML_NS
- See Also:
-
USERNAME_TOKEN_LN
- See Also:
-
BINARY_TOKEN_LN
- See Also:
-
TIMESTAMP_TOKEN_LN
- See Also:
-
USERNAME_LN
- See Also:
-
PASSWORD_LN
- See Also:
-
PASSWORD_TYPE_ATTR
- See Also:
-
NONCE_LN
- See Also:
-
CREATED_LN
- See Also:
-
EXPIRES_LN
- See Also:
-
SIGNATURE_CONFIRMATION_LN
- See Also:
-
SALT_LN
- See Also:
-
ITERATION_LN
- See Also:
-
SAML_NS
- See Also:
-
SAMLP_NS
- See Also:
-
ASSERTION_LN
- See Also:
-
WSS_SAML_NS
- See Also:
-
WSS_SAML_ASSERTION
- See Also:
-
URI_SOAP11_ENV
- See Also:
-
URI_SOAP12_ENV
- See Also:
-
URIS_SOAP_ENV
-
URI_SOAP11_NEXT_ACTOR
- See Also:
-
URI_SOAP12_NEXT_ROLE
- See Also:
-
URI_SOAP12_NONE_ROLE
- See Also:
-
URI_SOAP12_ULTIMATE_ROLE
- See Also:
-
ELEM_ENVELOPE
- See Also:
-
ELEM_HEADER
- See Also:
-
ELEM_BODY
- See Also:
-
ATTR_MUST_UNDERSTAND
- See Also:
-
ATTR_ACTOR
- See Also:
-
ATTR_ROLE
- See Also:
-
NULL_NS
- See Also:
-
PW_DIGEST
Sets theUserNameTokenmethod to use a password digest to send the password information This is a required method as defined by WS Specification, Username token profile.- See Also:
-
PASSWORD_DIGEST
- See Also:
-
PW_TEXT
Sets theUserNameTokenmethod to send the password in clear This is a required method as defined by WS Specification, Username token profile.- See Also:
-
PASSWORD_TEXT
- See Also:
-
KEYTRANSPORT_RSA15
Sets theencryptionmethod to encrypt the symmetric data encryption key with the RSA algoritm. This is a required method as defined by XML encryption.- See Also:
-
KEYTRANSPORT_RSAOEP
Sets theencryptionmethod to encrypt the symmetric data encryption key with the RSA algoritm. This is a required method as defined by XML encryption. NOTE: This algorithm is not yet supported by WSS4J- See Also:
-
TRIPLE_DES
Sets theencryptionmethod to use triple DES as the symmetric algorithm to encrypt data. This is a required method as defined by XML encryption. The String to use in WSDD file (in accordance to w3c specifications:
http://www.w3.org/2001/04/xmlenc#tripledes-cbc- See Also:
-
AES_128
Sets theencryptionmethod to use AES with 128 bit key as the symmetric algorithm to encrypt data. This is a required method as defined by XML encryption. The String to use in WSDD file (in accordance to w3c specifications:
http://www.w3.org/2001/04/xmlenc#aes128-cbc- See Also:
-
AES_256
Sets theencryptionmethod to use AES with 256 bit key as the symmetric algorithm to encrypt data. This is a required method as defined by XML encryption. The String to use in WSDD file (in accordance to w3c specifications:
http://www.w3.org/2001/04/xmlenc#aes256-cbc- See Also:
-
AES_192
Sets theencryptionmethod to use AES with 192 bit key as the symmetric algorithm to encrypt data. This is a optional method as defined by XML encryption. The String to use in WSDD file (in accordance to w3c specifications:
http://www.w3.org/2001/04/xmlenc#aes192-cbc- See Also:
-
DSA
-
RSA
-
C14N_OMIT_COMMENTS
- See Also:
-
C14N_WITH_COMMENTS
- See Also:
-
C14N_EXCL_OMIT_COMMENTS
- See Also:
-
C14N_EXCL_WITH_COMMENTS
- See Also:
-
BST_DIRECT_REFERENCE
public static final int BST_DIRECT_REFERENCESets thesigningmethod to send the signing certificate as aBinarySecurityToken. The signing method takes the signing certificate, converts it to aBinarySecurityToken, puts it in the security header, and inserts aReferenceto the binary security token into thewsse:SecurityReferenceToken. Thus the whole signing certificate is transfered to the receiver. The X509 profile recommends to useISSUER_SERIALinstead of sending the whole certificate. Please refer to WS Security specification X509 profile, chapter 3.3.2 and to WS Security specification, chapter 7.2 Note: only local refernces to BinarySecurityToken are supported- See Also:
-
ISSUER_SERIAL
public static final int ISSUER_SERIALSets thesigningor theencryptionmethod to send the issuer name and the serial number of a certificate to the receiver. In contrast toBST_DIRECT_REFERENCEonly the issuer name and the serial number of the signiung certificate are sent to the receiver. This reduces the amount of data being sent. The ecnryption method uses the public key associated with this certificate to encrypt the symmetric key used to encrypt data. Please refer to WS Security specification X509 profile, chapter 3.3.3- See Also:
-
X509_KEY_IDENTIFIER
public static final int X509_KEY_IDENTIFIERSets theencryptionmethod to send the certificate used to encrypt the symmetric key. The encryption method uses the public key associated with this certificate to encrypr the symmetric key used to encrypt data. The certificate is converted into aKeyIdentfiertoken and sent to the receiver. Thus the complete certificate data is transfered to receiver. The X509 profile recommends to useISSUER_SERIALinstead of sending the whole certificate. Please refer to WS Security specification X509 profile, chapter 7.3- See Also:
-
SKI_KEY_IDENTIFIER
public static final int SKI_KEY_IDENTIFIERSets thesigningmethod to send aSubjectKeyIdentifierto identify the signing certificate. Refer to WS Security specification X509 profile, chapter 3.3.1 This identification token is not yet fully tested by WSS4J. The WsDoAllSender does not include the X.509 certificate asBinarySecurityTokenin the request message.- See Also:
-
EMBEDDED_KEYNAME
public static final int EMBEDDED_KEYNAMEEmbeds a keyinfo/key name into the EncryptedData element. Refer to WS Security specification X509 profile- See Also:
-
EMBED_SECURITY_TOKEN_REF
public static final int EMBED_SECURITY_TOKEN_REFEmbeds a keyinfo/wsse:SecurityTokenReference into EncryptedData element.- See Also:
-
UT_SIGNING
public static final int UT_SIGNINGUT_SIGNINGis used interally only to set a specific Signature behaviour. The signing token is constructed from values in the UsernameToken according to WS-Trust specification.- See Also:
-
THUMBPRINT_IDENTIFIER
public static final int THUMBPRINT_IDENTIFIERTHUMPRINT_IDENTIFIERis used to set the specific key identifier ThumbprintSHA1. This identifier uses the SHA-1 digest of a security token to identify the security token. Please refer to chapter 7.2 of the OASIS WSS 1.1 specification.- See Also:
-
NO_SECURITY
public static final int NO_SECURITY- See Also:
-
UT
public static final int UT- See Also:
-
SIGN
public static final int SIGN- See Also:
-
ENCR
public static final int ENCR- See Also:
-
ST_UNSIGNED
public static final int ST_UNSIGNED- See Also:
-
ST_SIGNED
public static final int ST_SIGNED- See Also:
-
TS
public static final int TS- See Also:
-
UT_SIGN
public static final int UT_SIGN- See Also:
-
SC
public static final int SC- See Also:
-
NO_SERIALIZE
public static final int NO_SERIALIZE- See Also:
-
SERIALIZE
public static final int SERIALIZE- See Also:
-
SCT
public static final int SCT- See Also:
-
WSE_DERIVED_KEY_LEN
public static final int WSE_DERIVED_KEY_LENLength of UsernameToken derived key used by .NET WSE to sign a message.- See Also:
-
LABEL_FOR_DERIVED_KEY
- See Also:
-
-
Constructor Details
-
WSConstants
public WSConstants()
-