Package weblogic.wsee.security.saml

Class SAMLTrustCredentialProvider

java.lang.Object

weblogic.wsee.security.saml.AbstractSAMLCredentialProvider

weblogic.wsee.security.saml.SAMLTrustCredentialProvider

All Implemented Interfaces:

CredentialProvider

public class SAMLTrustCredentialProvider
extends AbstractSAMLCredentialProvider

Field Summary

Fields

Modifier and Type	Field	Description
protected static ContextHandler	EMPTY_CONTEXT
private static java.util.logging.Logger	LOGGER
private static java.lang.String[]	predEntities
protected static java.lang.String[]	SAML_VALUE_TYPES
private SAMLCredential	samlCredential
private static java.lang.String[]	specialChars

Constructor Summary

Constructors

Constructor	Description
SAMLTrustCredentialProvider()

Method Summary

Modifier and Type	Method	Description
static SAMLCredential	createCredential(weblogic.wsee.security.wst.framework.TrustSoapClient soapClient, weblogic.wsee.security.wst.framework.WSTContext wstCtx, SecurityTokenHandler tokh, java.lang.String tokenType)
private static java.lang.String	decodeSamlXml(java.lang.String s)
private static weblogic.wsee.security.wst.binding.BinarySecret	getBinarySecret(weblogic.wsee.security.wst.binding.RequestSecurityTokenResponse rstr)
java.lang.Object	getCredential(java.lang.String tokenType, java.lang.String issuerName, ContextHandler ctxHandler, Purpose p)	if CredentialManager is not configured, just return the credential object otherwise retrieve the saml credential from the CredentialManager
private static SAMLCredential	getCredentialFromRSTR(weblogic.wsee.security.wst.framework.WSTContext wstCtx, weblogic.wsee.security.wst.binding.RequestSecurityTokenResponse rstr, java.lang.String tokenType)
private java.lang.Object	getCredentialLocalCSS(java.lang.String tokenType, java.lang.String issuerName, ContextHandler ctxHandler, Purpose p)
private SAMLCredential	getCredentialSTSCSS(java.lang.String tokenType, ContextHandler ctxHandler)
(package private) static SAMLCredential	getFromContext(javax.xml.rpc.handler.MessageContext msgCtx)
private java.lang.String	getIssueAction(java.lang.String trustVersion)
protected static javax.xml.rpc.handler.MessageContext	getMessageContext(SecurityTokenContextHandler securityCtxHandler)
private SecurityToken	getSamlSecurityToken(java.lang.String samlString)
protected static SecurityTokenContextHandler	getSecurityCtxHandler(ContextHandler ctxHandler)
private static java.security.Key	getSymmetricKeyFromRstr(weblogic.wsee.security.wst.binding.RequestSecurityTokenResponse rstr, weblogic.wsee.security.wst.framework.WSTContext wstCtx)
java.lang.String[]	getValueTypes()	Return token types supported by cred providers extending this class.
private void	initPolicy(SecurityTokenContextHandler securityCtxHandler, weblogic.wsee.security.wst.framework.WSTContext wstCtx, javax.xml.rpc.handler.MessageContext msgCtx)
private void	intWSTContext(java.lang.String tokenType, weblogic.wsee.security.wst.framework.WSTContext wstCtx, javax.xml.rpc.handler.MessageContext msgCtx, SecurityTokenContextHandler securityCtxHandler)
private void	intWSTContext(java.lang.String tokenType, weblogic.wsee.security.wst.framework.WSTContext wstCtx, javax.xml.rpc.handler.MessageContext msgCtx, SecurityTokenContextHandler securityCtxHandler, org.w3c.dom.Element issuedTokenElement)
private static boolean	isSamlTokenString(java.lang.String inString)
private static boolean	isSamlValueType(java.lang.String type)
private java.lang.Object	setActAsLocalSAMLToken(java.lang.String tokenType, java.lang.String issuerName, ContextHandler ctxHandler, Purpose p)	Set Local SAML Token into the new ActAs element in WS-Trust 1.4
private java.lang.Object	setActAsToken(weblogic.wsee.security.wst.framework.WSTContext wstCtx, javax.xml.rpc.handler.MessageContext msgCtx)	Set SAML Token into the new ActAs element in WS-Trust 1.4
private void	setOnBehalfOfLocalSAMLToken(java.lang.String tokenType, java.lang.String issuerName, ContextHandler ctxHandler, Purpose p)
private void	setOnBehalfOfToken(weblogic.wsee.security.wst.framework.WSTContext wstCtx, javax.xml.rpc.handler.MessageContext msgCtx)
(package private) static void	setToContext(javax.xml.rpc.handler.MessageContext msgCtx, SAMLCredential sc)

Methods inherited from class weblogic.wsee.security.saml.AbstractSAMLCredentialProvider

getKeyInfoCredential, getKeyInfoCredential, getSAMLAttributeData

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

LOGGER

private static final java.util.logging.Logger LOGGER

EMPTY_CONTEXT

protected static final ContextHandler EMPTY_CONTEXT

samlCredential

private SAMLCredential samlCredential

SAML_VALUE_TYPES

protected static final java.lang.String[] SAML_VALUE_TYPES

specialChars

private static java.lang.String[] specialChars

predEntities

private static java.lang.String[] predEntities

Constructor Detail

SAMLTrustCredentialProvider

public SAMLTrustCredentialProvider()

Method Detail

getCredential

public java.lang.Object getCredential(java.lang.String tokenType,
                                      java.lang.String issuerName,
                                      ContextHandler ctxHandler,
                                      Purpose p)

Description copied from class: AbstractSAMLCredentialProvider

if CredentialManager is not configured, just return the credential object otherwise retrieve the saml credential from the CredentialManager

Specified by:

getCredential in interface CredentialProvider

Overrides:

getCredential in class AbstractSAMLCredentialProvider

Parameters:

tokenType - saml token type

issuerName - issuer name is not used

ctxHandler - context handler to create the new saml credential

p - purpose of saml token

getCredentialLocalCSS

private java.lang.Object getCredentialLocalCSS(java.lang.String tokenType,
                                               java.lang.String issuerName,
                                               ContextHandler ctxHandler,
                                               Purpose p)

getCredentialSTSCSS

private SAMLCredential getCredentialSTSCSS(java.lang.String tokenType,
                                           ContextHandler ctxHandler)

intWSTContext

private void intWSTContext(java.lang.String tokenType,
                           weblogic.wsee.security.wst.framework.WSTContext wstCtx,
                           javax.xml.rpc.handler.MessageContext msgCtx,
                           SecurityTokenContextHandler securityCtxHandler)
                    throws PolicyException,
                           WSSecurityException

Throws:

PolicyException

WSSecurityException

setOnBehalfOfLocalSAMLToken

private void setOnBehalfOfLocalSAMLToken(java.lang.String tokenType,
                                         java.lang.String issuerName,
                                         ContextHandler ctxHandler,
                                         Purpose p)

setActAsLocalSAMLToken

private java.lang.Object setActAsLocalSAMLToken(java.lang.String tokenType,
                                                java.lang.String issuerName,
                                                ContextHandler ctxHandler,
                                                Purpose p)

Set Local SAML Token into the new ActAs element in WS-Trust 1.4

Parameters:

tokenType -

issuerName -

ctxHandler -

p -

Returns:

setActAsToken

private java.lang.Object setActAsToken(weblogic.wsee.security.wst.framework.WSTContext wstCtx,
                                       javax.xml.rpc.handler.MessageContext msgCtx)
                                throws PolicyException,
                                       WSSecurityException

Set SAML Token into the new ActAs element in WS-Trust 1.4

Parameters:

wstCtx -

msgCtx -

Throws:

PolicyException

WSSecurityException

isSamlTokenString

private static boolean isSamlTokenString(java.lang.String inString)

decodeSamlXml

private static java.lang.String decodeSamlXml(java.lang.String s)

getSamlSecurityToken

private SecurityToken getSamlSecurityToken(java.lang.String samlString)

isSamlValueType

private static boolean isSamlValueType(java.lang.String type)

setOnBehalfOfToken

private void setOnBehalfOfToken(weblogic.wsee.security.wst.framework.WSTContext wstCtx,
                                javax.xml.rpc.handler.MessageContext msgCtx)
                         throws PolicyException,
                                WSSecurityException

Throws:

PolicyException

WSSecurityException

intWSTContext

private void intWSTContext(java.lang.String tokenType,
                           weblogic.wsee.security.wst.framework.WSTContext wstCtx,
                           javax.xml.rpc.handler.MessageContext msgCtx,
                           SecurityTokenContextHandler securityCtxHandler,
                           org.w3c.dom.Element issuedTokenElement)
                    throws PolicyException,
                           WSSecurityException

Throws:

PolicyException

WSSecurityException

initPolicy

private void initPolicy(SecurityTokenContextHandler securityCtxHandler,
                        weblogic.wsee.security.wst.framework.WSTContext wstCtx,
                        javax.xml.rpc.handler.MessageContext msgCtx)
                 throws PolicyException

Throws:

PolicyException

createCredential

public static SAMLCredential createCredential(weblogic.wsee.security.wst.framework.TrustSoapClient soapClient,
                                              weblogic.wsee.security.wst.framework.WSTContext wstCtx,
                                              SecurityTokenHandler tokh,
                                              java.lang.String tokenType)
                                       throws WSTFaultException

Throws:

WSTFaultException

getSecurityCtxHandler

protected static SecurityTokenContextHandler getSecurityCtxHandler(ContextHandler ctxHandler)

getMessageContext

protected static javax.xml.rpc.handler.MessageContext getMessageContext(SecurityTokenContextHandler securityCtxHandler)

getIssueAction

private java.lang.String getIssueAction(java.lang.String trustVersion)

getFromContext

static SAMLCredential getFromContext(javax.xml.rpc.handler.MessageContext msgCtx)

setToContext

static void setToContext(javax.xml.rpc.handler.MessageContext msgCtx,
                         SAMLCredential sc)

getCredentialFromRSTR

private static SAMLCredential getCredentialFromRSTR(weblogic.wsee.security.wst.framework.WSTContext wstCtx,
                                                    weblogic.wsee.security.wst.binding.RequestSecurityTokenResponse rstr,
                                                    java.lang.String tokenType)
                                             throws WSTFaultException

Throws:

WSTFaultException

getSymmetricKeyFromRstr

private static java.security.Key getSymmetricKeyFromRstr(weblogic.wsee.security.wst.binding.RequestSecurityTokenResponse rstr,
                                                         weblogic.wsee.security.wst.framework.WSTContext wstCtx)
                                                  throws weblogic.wsee.security.wst.faults.RequestFailedException,
                                                         weblogic.wsee.security.wst.faults.InvalidScopeException

Throws:

weblogic.wsee.security.wst.faults.RequestFailedException

weblogic.wsee.security.wst.faults.InvalidScopeException

getBinarySecret

private static weblogic.wsee.security.wst.binding.BinarySecret getBinarySecret(weblogic.wsee.security.wst.binding.RequestSecurityTokenResponse rstr)
                                                                        throws weblogic.wsee.security.wst.faults.RequestFailedException

Throws:

weblogic.wsee.security.wst.faults.RequestFailedException

getValueTypes

public java.lang.String[] getValueTypes()

Description copied from class: AbstractSAMLCredentialProvider

Return token types supported by cred providers extending this class.

Specified by:

getValueTypes in interface CredentialProvider

Specified by:

getValueTypes in class AbstractSAMLCredentialProvider

Returns:

Array of token types (WSS token type URIs)