|
Oracle BPEL Process Manager Client API Reference 10g Release 2 (10.1.2) B25709-01 |
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object
com.oracle.bpel.security.util.WSSecurityUtils
Util-class that contains usefull WSSecurity utils - like basic ws-security usernametoken creation. should be changed to code-product API in a later release.
These generated tokens comply to WS-Policy and MUST be understood by the server.
History
Field Summary | |
static java.lang.String |
EXT_CREATED constant for external created date, the date (if there) will be stored with this key |
static java.lang.String |
EXT_CREDENTIAL constant for external credential, the credential (if there) will be stored with this key |
static java.lang.String |
EXT_USERNAME Constant for external user, the user will be stored with this key |
static QName |
WSSE_QN_Security QNAME for WS-Security Token (wsse:Security) in namespace http://schemas.xmlsoap.org/ws/2002/07/secext |
static QName |
WSSE_QN_Security_OASIS QNAME for WS-Security Token OASIS Namespace(wsse:Security) in namespace http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd |
Method Summary | |
static SOAPHeaderElement |
createOASISWSSecurityHeader(java.lang.String pUsername, java.lang.String pCredential, boolean pIsWSPolicyCompliant) Creates an OASIS compliant wsse Header Element <wsse:Security xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:env="http://schemas.xmlsoap.org/soap/envelope/" env:mustUnderstand="1"> <wsse:UsernameToken xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <wsse:Username>admin</wsse:Username> <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">welcome</wsse:Password> </wsse:UsernameToken> </wsse:Security> |
static SOAPHeaderElement |
createWSSecurityHeader(java.lang.String pUsername, java.lang.String pCredential) Creates a WS-Policy compliant Username token headerElement. |
static SOAPHeaderElement |
createWSSecurityHeader(java.lang.String pUsername, java.lang.String pCredential, boolean pIsWSPolicyCompliant) Creates a WSSecurity compliant token from username and password - UsernameToken!! This username token can contain just a username without credential too. Since version 1.1 a Created field (wsu:Created) is attached to the signature Since version 1.2 a Nonce field (wsse:Nonce) is created |
static java.util.Hashtable |
extractCredentialsFromWSSecurityHeader(SOAPHeader pHeader) Extracts and processes the credentials from a WS-Security element in a SOAPHeader. |
static java.util.Hashtable |
extractCredentialsFromWSSecurityHeaderElement(SOAPHeaderElement pHeaderElement) Extracts and processes the credentials from a WS-Security element. |
Methods inherited from class java.lang.Object |
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
public static final java.lang.String EXT_USERNAME
extractCredentialsFromWSSecurityHeader(SOAPHeader)
, WSSecurityUtils#extractCredentialsFromWSSecurityHeaderElement(SOAPHeaderElement)(SOAPHeader)
, Constant Field Valuespublic static final java.lang.String EXT_CREDENTIAL
extractCredentialsFromWSSecurityHeader(SOAPHeader)
, WSSecurityUtils#extractCredentialsFromWSSecurityHeaderElement(SOAPHeaderElement)(SOAPHeader)
, Constant Field Valuespublic static final java.lang.String EXT_CREATED
extractCredentialsFromWSSecurityHeader(SOAPHeader)
, WSSecurityUtils#extractCredentialsFromWSSecurityHeaderElement(SOAPHeaderElement)(SOAPHeader)
, Constant Field Valuespublic static final QName WSSE_QN_Security
public static final QName WSSE_QN_Security_OASIS
Method Detail |
public static SOAPHeaderElement createWSSecurityHeader(java.lang.String pUsername, java.lang.String pCredential, boolean pIsWSPolicyCompliant) throws SOAPException
<wsse:Security soapenv:actor="http://schemas.xmlsoap.org/soap/actor/next"
soapenv:mustUnderstand="1"
xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/07/secext"
xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
<wsse:UsernameToken>
<wsse:Username>USERNAME</wsse:Username>
<wsse:Password>PASSWORD</wsse:Password>
<wsse:Nonce>A NONCE</wsse:Nonce>
<wsu:Created xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
Mon Aug 01 11:18:40 CEST 2005
</wsu:Created>
</wsse:UsernameToken>
</wsse:Security>
pCredential
- the credentialpUsername
- the usernamepIsWSPolicyCompliant
- specifies wheter the header must be processed by the server (true/false)javax.xml.soap.SOAPException
- in case the token couldn't be generatedSOAPException
public static SOAPHeaderElement createWSSecurityHeader(java.lang.String pUsername, java.lang.String pCredential) throws SOAPException
pUsername
- the usernamepCredential
- the credentialSOAPException
- in case the token could not be generatedorg.collaxa.thirdparty.apache.axis.message.SOAPHeaderElement
, createWSSecurityHeader(String, String, boolean)
public static java.util.Hashtable extractCredentialsFromWSSecurityHeaderElement(SOAPHeaderElement pHeaderElement) throws SOAPException
pHeaderElement
- the SOAPHeaderElement containing the security header elementjavax.xml.soap.SOAPException
- in case the headerelement is incomplete or not according to the specSOAPException
public static java.util.Hashtable extractCredentialsFromWSSecurityHeader(SOAPHeader pHeader) throws SOAPException
pHeader
- the SOAPHeader containing the security header elementjavax.xml.soap.SOAPException
- in case the headerelement is incomplete or not according to the specSOAPException
public static SOAPHeaderElement createOASISWSSecurityHeader(java.lang.String pUsername, java.lang.String pCredential, boolean pIsWSPolicyCompliant) throws SOAPException
pUsername
- the usernamepCredential
- the passwordpIsWSPolicyCompliant
- if mustUnderstand is setSOAPException
- in case the element could not be created
|
Oracle BPEL Process Manager Client API Reference 10g Release 2 (10.1.2) B25709-01 |
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |