Package org.apache.ws.security
Class WSConstants
java.lang.Object
org.apache.ws.security.WSConstants
Constants in WS-Security spec.
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic final String
Sets theencryption
method to use AES with 128 bit key as the symmetric algorithm to encrypt data.static final String
Sets theencryption
method to use AES with 192 bit key as the symmetric algorithm to encrypt data.static final String
Sets theencryption
method to use AES with 256 bit key as the symmetric algorithm to encrypt data.static final String
static final String
static final String
static final String
static final String
static final int
Sets thesigning
method to send the signing certificate as aBinarySecurityToken
.static final String
static final String
static final String
static final String
static final String
static final String
Sets thesignature
method to use DSA with SHA1 (DSS) to sign data.static final String
static final String
static final String
static final int
Embeds a keyinfo/wsse:SecurityTokenReference into EncryptedData element.static final int
Embeds a keyinfo/key name into the EncryptedData element.static final String
static final String
static final String
static final int
static final String
static final int
Sets thesigning
or theencryption
method to send the issuer name and the serial number of a certificate to the receiver.static final String
static final String
Sets theencryption
method to encrypt the symmetric data encryption key with the RSA algoritm.static final String
Sets theencryption
method to encrypt the symmetric data encryption key with the RSA algoritm.static final String
static final int
static final int
static final String
static final String
static final String
static final String
static final String
static final String
static final String
Sets theUserNameToken
method to use a password digest to send the password informationstatic final String
Sets theUserNameToken
method to send the password in clearstatic final String
static final String
Sets thesignature
method to use RSA with SHA to sign data.static final String
static final String
static final String
static final String
static final String
static final int
static final int
static final int
static final String
static final String
static final String
static final int
static final String
static final int
Sets thesigning
method to send aSubjectKeyIdentifier
to identify the signing certificate.static final String
static final String
static final int
static final int
static final String
static final int
THUMPRINT_IDENTIFIER
is used to set the specific key identifier ThumbprintSHA1.static final String
static final String
Sets theencryption
method to use triple DES as the symmetric algorithm to encrypt data.static final int
static final String
static final String
static final String
static final String
static final String
static final String
static final String[]
static final String
static final String
static final String
static final int
static final int
static final int
UT_SIGNING
is used interally only to set a specific Signature behaviour.static final int
Length of UsernameToken derived key used by .NET WSE to sign a message.static final String
static final String
static final String
static final String
static final String
static final String
static final String
static final String
static final String
static final int
Sets theencryption
method to send the certificate used to encrypt the symmetric key.static final String
static final String
static final String
-
Constructor Summary
Constructors -
Method Summary
-
Field Details
-
WSSE_NS
- See Also:
-
WSSE11_NS
- See Also:
-
WSU_NS
- See Also:
-
SOAPMESSAGE_NS
- See Also:
-
SOAPMESSAGE_NS11
- See Also:
-
USERNAMETOKEN_NS
- See Also:
-
X509TOKEN_NS
- See Also:
-
SAMLTOKEN_NS
- See Also:
-
WSSE_LN
- See Also:
-
THUMBPRINT
- See Also:
-
SAML_ASSERTION_ID
- See Also:
-
WSSE_PREFIX
- See Also:
-
WSSE11_PREFIX
- See Also:
-
WSU_PREFIX
- See Also:
-
SIG_NS
- See Also:
-
SIG_PREFIX
- See Also:
-
SIG_LN
- See Also:
-
ENC_NS
- See Also:
-
ENC_PREFIX
- See Also:
-
ENC_KEY_LN
- See Also:
-
REF_LIST_LN
- See Also:
-
XMLNS_NS
- See Also:
-
XML_NS
- See Also:
-
USERNAME_TOKEN_LN
- See Also:
-
BINARY_TOKEN_LN
- See Also:
-
TIMESTAMP_TOKEN_LN
- See Also:
-
USERNAME_LN
- See Also:
-
PASSWORD_LN
- See Also:
-
PASSWORD_TYPE_ATTR
- See Also:
-
NONCE_LN
- See Also:
-
CREATED_LN
- See Also:
-
EXPIRES_LN
- See Also:
-
SIGNATURE_CONFIRMATION_LN
- See Also:
-
SALT_LN
- See Also:
-
ITERATION_LN
- See Also:
-
SAML_NS
- See Also:
-
SAMLP_NS
- See Also:
-
ASSERTION_LN
- See Also:
-
WSS_SAML_NS
- See Also:
-
WSS_SAML_ASSERTION
- See Also:
-
URI_SOAP11_ENV
- See Also:
-
URI_SOAP12_ENV
- See Also:
-
URIS_SOAP_ENV
-
URI_SOAP11_NEXT_ACTOR
- See Also:
-
URI_SOAP12_NEXT_ROLE
- See Also:
-
URI_SOAP12_NONE_ROLE
- See Also:
-
URI_SOAP12_ULTIMATE_ROLE
- See Also:
-
ELEM_ENVELOPE
- See Also:
-
ELEM_HEADER
- See Also:
-
ELEM_BODY
- See Also:
-
ATTR_MUST_UNDERSTAND
- See Also:
-
ATTR_ACTOR
- See Also:
-
ATTR_ROLE
- See Also:
-
NULL_NS
- See Also:
-
PW_DIGEST
Sets theUserNameToken
method to use a password digest to send the password information This is a required method as defined by WS Specification, Username token profile.- See Also:
-
PASSWORD_DIGEST
- See Also:
-
PW_TEXT
Sets theUserNameToken
method to send the password in clear This is a required method as defined by WS Specification, Username token profile.- See Also:
-
PASSWORD_TEXT
- See Also:
-
KEYTRANSPORT_RSA15
Sets theencryption
method to encrypt the symmetric data encryption key with the RSA algoritm. This is a required method as defined by XML encryption.- See Also:
-
KEYTRANSPORT_RSAOEP
Sets theencryption
method to encrypt the symmetric data encryption key with the RSA algoritm. This is a required method as defined by XML encryption. NOTE: This algorithm is not yet supported by WSS4J- See Also:
-
TRIPLE_DES
Sets theencryption
method to use triple DES as the symmetric algorithm to encrypt data. This is a required method as defined by XML encryption. The String to use in WSDD file (in accordance to w3c specifications:
http://www.w3.org/2001/04/xmlenc#tripledes-cbc- See Also:
-
AES_128
Sets theencryption
method to use AES with 128 bit key as the symmetric algorithm to encrypt data. This is a required method as defined by XML encryption. The String to use in WSDD file (in accordance to w3c specifications:
http://www.w3.org/2001/04/xmlenc#aes128-cbc- See Also:
-
AES_256
Sets theencryption
method to use AES with 256 bit key as the symmetric algorithm to encrypt data. This is a required method as defined by XML encryption. The String to use in WSDD file (in accordance to w3c specifications:
http://www.w3.org/2001/04/xmlenc#aes256-cbc- See Also:
-
AES_192
Sets theencryption
method to use AES with 192 bit key as the symmetric algorithm to encrypt data. This is a optional method as defined by XML encryption. The String to use in WSDD file (in accordance to w3c specifications:
http://www.w3.org/2001/04/xmlenc#aes192-cbc- See Also:
-
DSA
Sets thesignature
method to use DSA with SHA1 (DSS) to sign data. This is a required method as defined by XML signature.- See Also:
-
RSA
Sets thesignature
method to use RSA with SHA to sign data. This is a recommended method as defined by XML signature.- See Also:
-
C14N_OMIT_COMMENTS
- See Also:
-
C14N_WITH_COMMENTS
- See Also:
-
C14N_EXCL_OMIT_COMMENTS
- See Also:
-
C14N_EXCL_WITH_COMMENTS
- See Also:
-
BST_DIRECT_REFERENCE
public static final int BST_DIRECT_REFERENCESets thesigning
method to send the signing certificate as aBinarySecurityToken
. The signing method takes the signing certificate, converts it to aBinarySecurityToken
, puts it in the security header, and inserts aReference
to the binary security token into thewsse:SecurityReferenceToken
. Thus the whole signing certificate is transfered to the receiver. The X509 profile recommends to useISSUER_SERIAL
instead of sending the whole certificate. Please refer to WS Security specification X509 profile, chapter 3.3.2 and to WS Security specification, chapter 7.2 Note: only local refernces to BinarySecurityToken are supported- See Also:
-
ISSUER_SERIAL
public static final int ISSUER_SERIALSets thesigning
or theencryption
method to send the issuer name and the serial number of a certificate to the receiver. In contrast toBST_DIRECT_REFERENCE
only the issuer name and the serial number of the signiung certificate are sent to the receiver. This reduces the amount of data being sent. The ecnryption method uses the public key associated with this certificate to encrypt the symmetric key used to encrypt data. Please refer to WS Security specification X509 profile, chapter 3.3.3- See Also:
-
X509_KEY_IDENTIFIER
public static final int X509_KEY_IDENTIFIERSets theencryption
method to send the certificate used to encrypt the symmetric key. The encryption method uses the public key associated with this certificate to encrypr the symmetric key used to encrypt data. The certificate is converted into aKeyIdentfier
token and sent to the receiver. Thus the complete certificate data is transfered to receiver. The X509 profile recommends to useISSUER_SERIAL
instead of sending the whole certificate. Please refer to WS Security specification X509 profile, chapter 7.3- See Also:
-
SKI_KEY_IDENTIFIER
public static final int SKI_KEY_IDENTIFIERSets thesigning
method to send aSubjectKeyIdentifier
to identify the signing certificate. Refer to WS Security specification X509 profile, chapter 3.3.1 This identification token is not yet fully tested by WSS4J. The WsDoAllSender does not include the X.509 certificate asBinarySecurityToken
in the request message.- See Also:
-
EMBEDDED_KEYNAME
public static final int EMBEDDED_KEYNAMEEmbeds a keyinfo/key name into the EncryptedData element. Refer to WS Security specification X509 profile- See Also:
-
EMBED_SECURITY_TOKEN_REF
public static final int EMBED_SECURITY_TOKEN_REFEmbeds a keyinfo/wsse:SecurityTokenReference into EncryptedData element.- See Also:
-
UT_SIGNING
public static final int UT_SIGNINGUT_SIGNING
is used interally only to set a specific Signature behaviour. The signing token is constructed from values in the UsernameToken according to WS-Trust specification.- See Also:
-
THUMBPRINT_IDENTIFIER
public static final int THUMBPRINT_IDENTIFIERTHUMPRINT_IDENTIFIER
is used to set the specific key identifier ThumbprintSHA1. This identifier uses the SHA-1 digest of a security token to identify the security token. Please refer to chapter 7.2 of the OASIS WSS 1.1 specification.- See Also:
-
NO_SECURITY
public static final int NO_SECURITY- See Also:
-
UT
public static final int UT- See Also:
-
SIGN
public static final int SIGN- See Also:
-
ENCR
public static final int ENCR- See Also:
-
ST_UNSIGNED
public static final int ST_UNSIGNED- See Also:
-
ST_SIGNED
public static final int ST_SIGNED- See Also:
-
TS
public static final int TS- See Also:
-
UT_SIGN
public static final int UT_SIGN- See Also:
-
SC
public static final int SC- See Also:
-
NO_SERIALIZE
public static final int NO_SERIALIZE- See Also:
-
SERIALIZE
public static final int SERIALIZE- See Also:
-
SCT
public static final int SCT- See Also:
-
WSE_DERIVED_KEY_LEN
public static final int WSE_DERIVED_KEY_LENLength of UsernameToken derived key used by .NET WSE to sign a message.- See Also:
-
LABEL_FOR_DERIVED_KEY
- See Also:
-
-
Constructor Details
-
WSConstants
public WSConstants()
-