Security
The following attributes define Security Token service security attributes:
Security Mechanism
Defines the type of security credential that is used to secure the STS request. You can choose one of the following security credential types:
-
Anonymous — The anonymous security mechanism contains no security credentials.
-
KerberosToken — Uses Kerberos security tokens.
-
LibertyDiscoverySecurity — Uses Liberty-based security tokens.
-
SAML-HolderOfKey — Uses the SAML 1.1 assertion type Holder-Of-Key.
-
SAML-SenderVouches — Uses the SAML 1.1 assertion type Sender Vouches.
-
SAML2–HolderOfKey — Uses the SAML 2.0 assertion token type Holder-Of-Key.
-
SAML2–SenderVouches — Uses the SAML 2.0 assertion token type Sender Vouches.
-
STSSecurity — Uses the security token generated from the Security Token service for a given web service provider.
-
UserNameToken — Uses User Name Token with digest password.
-
UserNameToken-Plain — Uses a user name token with a clear text password for securing web service requests.
-
X509Token — Uses the X509 certificate.
STS Configuration
This attribute is enabled when the Security Token service agent uses Security Token service (STS) as the Security Mechanism. This configuration describes a list of STS agent profiles that are used to communicate with and secure the requests to the STS service.
Preserve Security Headers in Message
When enabled, this attribute defines that the SOAP security headers are preserved by the Security Token service agent for further processing.
Credential for User Token
The attribute represents the username/password shared secrets that are used by the Security Token service agent to generate a Username security token.
- © 2010, Oracle Corporation and/or its affiliates