The com.sun.identity.liberty.ws.security package includes the SecurityTokenProvider interface for managing Web Service Security (WSS) type tokens. The following table describes the classes used to manage Liberty-based security mechanisms.
Table 10–4 com.sun.identity.liberty.ws.security Classes
Class |
Description |
---|---|
ProxySubject |
Represents the identity of a proxy, the confirmation key, and confirmation obligation the proxy must possess and demonstrate for authentication purposes. |
ResourceAccessStatement |
Conveys information regarding the accessing entities and the resource for which access is being attempted. |
SecurityAssertion |
Provides an extension to the Assertion class to support ID-WSF ResourceAccessStatement and SessionContextStatement. |
SecurityTokenManager |
An entry class for the security package com.sun.identity.liberty.ws.security. You can call its methods to generate X.509 and SAML tokens for message authentication or authorization. It is designed as a provider model, so different implementations can be plugged in if the default implementation does not meet your requirements. |
SecurityUtils |
Defines methods that are used to get certificates and sign messages. |
SessionContext |
Represents the session status of an entity to another system entity. |
SessionContextStatement |
Conveys the session status of an entity to another system entity within the body of an <saml:assertion> element. |
SessionSubject |
Represents a Liberty subject with its associated session status. |
For more information, including methods and their syntax and parameters, see the Java API Reference in /AccessManager-base/SUNWam/docs or on docs.sun.com.