Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
Oracle Fusion Middleware
Oracle WebLogic Server API Reference
12c Release 1 (12.1.1)

Part Number E24391-02
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

weblogic.wsee.security.saml
Class CSSUtils

java.lang.Object
  extended by weblogic.wsee.security.saml.CSSUtils

public class CSSUtils
extends Object

Utility for saml User: jlee Date: Sep 30, 2004 Time: 1:12:56 PM

Field Summary
protected static String SAML_ATTRIBUTE_ONLY
           
protected static String SAML_ATTRIBUTES
           
protected static String SAML2_ATTRIBUTES
           
 
Constructor Summary
CSSUtils()
           
 
Method Summary
static AuthenticatedSubject assertIdentity(Node credential, ContextHandler ctxHandler, boolean isV2Assertion)
          Use PrincipalAuthenticator to assert the identity of saml assertion
static Subject getCurrentAuthenticatedSubject()
          This will return the current authenticated subject for getting the SAML Attributes
protected static String getEndpointPath(boolean isSaml2, String url)
           
protected static DocumentBuilder getParser()
           
static Object[] getSAMLAssertionFromCredMapper(SecurityTokenContextHandler samlCtxHandler, String assertionType)
          This will get the crednetial object array of Element assertions from CM.
static Object[] getSAMLAssertionFromCredMapper(SecurityTokenContextHandler samlCtxHandler, String assertionType, AuthenticatedSubject as)
           
static Object getSAMLCredential(boolean isSAML2, String tokenType, SecurityTokenContextHandler samlCtxHandler, Object keyInfoCredential)
          Get the saml credential from CredentialManager
static Object getSAMLCredential(boolean isSAML2, String tokenType, SecurityTokenContextHandler samlCtxHandler, Object keyInfoCredential, AuthenticatedSubject as)
           
static X509Credential getX509CredFromPKICredMapper(SecurityTokenContextHandler samlCtxHandler)
          load pki keypair
static boolean isHolderOfKey(boolean isSAML2, SecurityTokenContextHandler samlCtxHandler)
           
static boolean isHolderOfKey(String subjConfirmation)
           
protected static String mapSAML2ConfMethod(String method)
           
protected static String mapSAMLConfMethod(String method)
           
protected static void returnParser(DocumentBuilder builder)
           
static void setupSAMLAttributesContextElements(boolean isSAML2, SecurityTokenContextHandler samlCtxHandler, boolean attributesOnly, SAMLAttributeStatementData samlAttributes)
          Set up contexthandler properties for SAML Attributes
static void setupSAMLContextElements(boolean isSAML2, SecurityTokenContextHandler samlCtxHandler, ContextHandler ctxHandler)
          Set up contexthandler properties required by SAMLCredMapper
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

SAML_ATTRIBUTES

protected static final String SAML_ATTRIBUTES

SAML2_ATTRIBUTES

protected static final String SAML2_ATTRIBUTES

SAML_ATTRIBUTE_ONLY

protected static final String SAML_ATTRIBUTE_ONLY
Constructor Detail

CSSUtils

public CSSUtils()
Method Detail

setupSAMLContextElements

public static void setupSAMLContextElements(boolean isSAML2,
                                            SecurityTokenContextHandler samlCtxHandler,
                                            ContextHandler ctxHandler)
Set up contexthandler properties required by SAMLCredMapper

Parameters:
isSAML2 - true if processing for a SAML 2.0 assertion
samlCtxHandler -
ctxHandler -

setupSAMLAttributesContextElements

public static void setupSAMLAttributesContextElements(boolean isSAML2,
                                                      SecurityTokenContextHandler samlCtxHandler,
                                                      boolean attributesOnly,
                                                      SAMLAttributeStatementData samlAttributes)
Set up contexthandler properties for SAML Attributes

Parameters:
isSAML2 - true if processing for a SAML 2.0 assertion
samlCtxHandler - Context Handler to be passed to CSS
attributesOnly - true if this is a SAML Attributes only request
samlAttributes - SAMLAttributeStatementData

getSAMLCredential

public static Object getSAMLCredential(boolean isSAML2,
                                       String tokenType,
                                       SecurityTokenContextHandler samlCtxHandler,
                                       Object keyInfoCredential)
Get the saml credential from CredentialManager

Parameters:
isSAML2 - true if requesting a SAML 2.0 assertion
tokenType - tokenType of requested assertion
samlCtxHandler - the SecurityTokenContextHandler contains Claims
keyInfoCredential -
Returns:
credential

getSAMLCredential

public static Object getSAMLCredential(boolean isSAML2,
                                       String tokenType,
                                       SecurityTokenContextHandler samlCtxHandler,
                                       Object keyInfoCredential,
                                       AuthenticatedSubject as)

isHolderOfKey

public static boolean isHolderOfKey(boolean isSAML2,
                                    SecurityTokenContextHandler samlCtxHandler)

isHolderOfKey

public static boolean isHolderOfKey(String subjConfirmation)

getCurrentAuthenticatedSubject

public static Subject getCurrentAuthenticatedSubject()
This will return the current authenticated subject for getting the SAML Attributes

getX509CredFromPKICredMapper

public static X509Credential getX509CredFromPKICredMapper(SecurityTokenContextHandler samlCtxHandler)
load pki keypair

Parameters:
samlCtxHandler -
Returns:
X509Credential object

getSAMLAssertionFromCredMapper

public static Object[] getSAMLAssertionFromCredMapper(SecurityTokenContextHandler samlCtxHandler,
                                                      String assertionType)
This will get the crednetial object array of Element assertions from CM.

Parameters:
samlCtxHandler - The KeyInfo node must be insert into the SecurityTokenContextHandler before the call.
assertionType - Assert type to get
Returns:
credential objects array of Element assertions

getSAMLAssertionFromCredMapper

public static Object[] getSAMLAssertionFromCredMapper(SecurityTokenContextHandler samlCtxHandler,
                                                      String assertionType,
                                                      AuthenticatedSubject as)

assertIdentity

public static AuthenticatedSubject assertIdentity(Node credential,
                                                  ContextHandler ctxHandler,
                                                  boolean isV2Assertion)
                                           throws LoginException
Use PrincipalAuthenticator to assert the identity of saml assertion

Parameters:
credential - saml assertion
ctxHandler - context handler
Returns:
AuthenticatedSubject
Throws:
LoginException - occurs during process

getParser

protected static DocumentBuilder getParser()

returnParser

protected static void returnParser(DocumentBuilder builder)

getEndpointPath

protected static String getEndpointPath(boolean isSaml2,
                                        String url)

mapSAML2ConfMethod

protected static String mapSAML2ConfMethod(String method)

mapSAMLConfMethod

protected static String mapSAMLConfMethod(String method)
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
Copyright 1996, 2011, Oracle and/or its affiliates. All rights reserved. Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.

Oracle Fusion Middleware
Oracle WebLogic Server API Reference
12c Release 1 (12.1.1)

Part Number E24391-02
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD