org.apache.ws.security.handler
Class WSHandlerConstants

java.lang.Object
  extended by org.apache.ws.security.handler.WSHandlerConstants

public class WSHandlerConstants
extends Object

This class defines the names, actions, and other string for the deployment data of the WS handler.

Author:
Werner Dittmann (werner@apache.org)

Field Summary
static String ACTION
          The action parameter.
static String ACTOR
          The actor or role name of the wsse:Security header.
static String ADD_UT_ELEMENTS
          Parameter to generate additional elements (nonce and created) in a UsernameToken.
static String ALLOW_NAMESPACE_QUALIFIED_PASSWORD_TYPES
          This variable controls whether (wsse) namespace qualified password types are accepted when processing UsernameTokens.
static String DEC_PROP_FILE
          The path of the crypto property file to use for Decryption.
static String DEC_PROP_REF_ID
          The key that hold the reference of the java.util.Properties object holding complete information about the decryption Crypto implementation.
static String DERIVED_KEY_ITERATIONS
          This parameter sets the number of iterations to use when deriving a key from a Username Token.
static String ENABLE_REVOCATION
          This variable controls whether to enable Certificate Revocation List (CRL) checking or not when verifying trust in a certificate.
static String ENABLE_SIGNATURE_CONFIRMATION
          Whether to enable signatureConfirmation or not.
static String ENC_CALLBACK_CLASS
          This tag refers to the CallbackHandler implementation class used to get the key associated with a key name.
static String ENC_CALLBACK_REF
          This tag refers to the CallbackHandler implementation object used to get the key associated with a key name.
static String ENC_KEY_ID
          Defines which key identifier type to use for encryption.
static String ENC_KEY_NAME
          Text of the embedded key name to be sent in the KeyInfo for encryption.
static String ENC_KEY_TRANSPORT
          Defines which algorithm to use to encrypt the generated symmetric key.
static String ENC_PROP_FILE
          The path of the crypto property file to use for Encryption.
static String ENC_PROP_REF_ID
          The key that hold the reference of the java.util.Properties object holding complete information about the encryption Crypto implementation.
static String ENC_SYM_ALGO
          Defines which symmetric encryption algorithm to use.
static String ENC_SYM_ENC_KEY
          Defines whether to encrypt the symmetric encryption key or not.
static String ENCRYPT
          Perform an Encryption action.
static String ENCRYPTION_PARTS
          Parameter to define which parts of the request shall be encrypted.
static String ENCRYPTION_USER
          The user's name for encryption.
static String HANDLE_CUSTOM_PASSWORD_TYPES
          This variable controls whether types other than PasswordDigest or PasswordText are allowed when processing UsernameTokens.
static String IS_BSP_COMPLIANT
          Whether to ensure compliance with the Basic Security Profile (BSP) 1.1 or not.
static String MUST_UNDERSTAND
          Whether to set the mustUnderstand flag on an outbound message or not.
static String NO_SECURITY
          Perform no action.
static String PASSWORD_TYPE
          Specific parameter for UsernameToken action to define the encoding of the password.
static String PASSWORD_TYPE_STRICT
          Set the value of this parameter to true to enable strict Username Token password type handling.
static String PW_CALLBACK_CLASS
          This tag refers to the CallbackHandler implementation class used to obtain passwords.
static String PW_CALLBACK_REF
          This tag refers to the CallbackHandler implementation object used to obtain passwords.
static String RECV_RESULTS
          The WSHandler stores a result List in this property.
static String SAML_CALLBACK_CLASS
          This tag refers to the SAML CallbackHandler implementation class used to construct SAML Assertions.
static String SAML_CALLBACK_REF
          This tag refers to the SAML CallbackHandler implementation object used to construct SAML Assertions.
static String SAML_PROP_FILE
          The name of the SAML Issuer factory property file.
static String SAML_TOKEN_SIGNED
          Perform a signed SAML Token action.
static String SAML_TOKEN_UNSIGNED
          Perform an unsigned SAML Token action.
static String SEND_SIGV
          internally used property names to store values inside the message context that must have the same lifetime as a message (request/response model).
static String SIG_ALGO
          Defines which signature algorithm to use.
static String SIG_CONF_DONE
           
static String SIG_DIGEST_ALGO
          Defines which signature digest algorithm to use.
static String SIG_KEY_ID
          Defines which key identifier type to use for signature.
static String SIG_PROP_FILE
          The path of the crypto property file to use for Signature.
static String SIG_PROP_REF_ID
          The key that holds the reference of the java.util.Properties object holding complete information about the signature Crypto implementation.
static String SIGN_WITH_UT_KEY
          Use this to use a specific signature mechanism for .Net.
static String SIGNATURE
          Perform a Signature action.
static String SIGNATURE_PARTS
          Parameter to define which parts of the request shall be signed.
static String SIGNATURE_USER
          The user's name for signature.
static String TIMESTAMP
          Add a timestamp to the security header.
static String TIMESTAMP_PRECISION
          Set whether Timestamps have precision in milliseconds.
static String TIMESTAMP_STRICT
          Set the value of this parameter to true to enable strict timestamp handling.
static String TTL_FUTURE_TIMESTAMP
          This configuration tag specifies the time in seconds in the future within which the Created time of an incoming Timestamp is valid.
static String TTL_TIMESTAMP
          Time-To-Live is the time difference between creation and expiry time in seconds in the WSS Timestamp.
static String USE_DERIVED_KEY
          This parameter sets whether to use UsernameToken Key Derivation, as defined in the UsernameTokenProfile 1.1 specification.
static String USE_DERIVED_KEY_FOR_MAC
          This parameter sets whether to use the Username Token derived key for a MAC or not.
static String USE_ENCODED_PASSWORDS
          Set the value of this parameter to true to treat passwords as binary values for Username Tokens.
static String USE_REQ_SIG_CERT
          Specifying this name as ENCRYPTION_USER triggers a special action to get the public key to use for encryption.
static String USE_SINGLE_CERTIFICATE
          This parameter sets whether to use a single certificate or a whole certificate chain when constructing a BinarySecurityToken used for direct reference in signature.
static String USER
          The user's name.
static String USERNAME_TOKEN
          Perform a UsernameToken action.
static String USERNAME_TOKEN_NO_PASSWORD
          Perform a UsernameToken action with no password.
static String WSE_SECRET_KEY_LENGTH
          This parameter sets the length of the secret (derived) key to use for the WSE UT_SIGN functionality.
 
Constructor Summary
WSHandlerConstants()
           
 
Method Summary
static Integer getKeyIdentifier(String parameter)
          Get the key identifier type corresponding to the parameter
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

ACTION

public static final String ACTION
The action parameter. The handlers use the value of this parameter to determine how to process the SOAP Envelope. It is a blank separated list of actions to perform.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.ACTION, WSHandlerConstants.USERNAME_TOKEN);
 

See Also:
Constant Field Values

NO_SECURITY

public static final String NO_SECURITY
Perform no action.

See Also:
Constant Field Values

USERNAME_TOKEN

public static final String USERNAME_TOKEN
Perform a UsernameToken action.

See Also:
Constant Field Values

USERNAME_TOKEN_NO_PASSWORD

public static final String USERNAME_TOKEN_NO_PASSWORD
Perform a UsernameToken action with no password.

See Also:
Constant Field Values

SAML_TOKEN_UNSIGNED

public static final String SAML_TOKEN_UNSIGNED
Perform an unsigned SAML Token action.

See Also:
Constant Field Values

SAML_TOKEN_SIGNED

public static final String SAML_TOKEN_SIGNED
Perform a signed SAML Token action.

See Also:
Constant Field Values

SIGNATURE

public static final String SIGNATURE
Perform a Signature action. The signature specific parameters define how to sign, which keys to use, and so on.

See Also:
Constant Field Values

ENCRYPT

public static final String ENCRYPT
Perform an Encryption action. The encryption specific parameters define how to encrypt, which keys to use, and so on.

See Also:
Constant Field Values

TIMESTAMP

public static final String TIMESTAMP
Add a timestamp to the security header.

See Also:
Constant Field Values

SIGN_WITH_UT_KEY

public static final String SIGN_WITH_UT_KEY
Use this to use a specific signature mechanism for .Net. This signature mechanism uses data from the username token and a well defined constant string and constructs a signature key. Please note that this action is NOT spec-compliant.

See Also:
Constant Field Values

ACTOR

public static final String ACTOR
The actor or role name of the wsse:Security header. If this parameter is omitted, the actor name is not set.

The value of the actor or role has to match the receiver's setting or may contain standard values.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.ACTOR, "ActorName");
 

See Also:
Constant Field Values

USER

public static final String USER
The user's name. It is used differently by each of the WS-Security functions.

See Also:
Constant Field Values

ENCRYPTION_USER

public static final String ENCRYPTION_USER
The user's name for encryption. The encryption functions use the public key of this user's certificate to encrypt the generated symmetric key.

If this parameter is not set, then the encryption function falls back to the USER parameter to get the certificate.

If only encryption of the SOAP body data is requested, it is recommended to use this parameter to define the username.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.ENCRYPTION_USER, "encryptionUser");
 

See Also:
Constant Field Values

SIGNATURE_USER

public static final String SIGNATURE_USER
The user's name for signature. This name is used as the alias name in the keystore to get user's certificate and private key to perform signing.

If this parameter is not set, then the signature function falls back to the USER parameter.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.SIGNATURE_USER, "signatureUser");
 

See Also:
Constant Field Values

USE_REQ_SIG_CERT

public static final String USE_REQ_SIG_CERT
Specifying this name as ENCRYPTION_USER triggers a special action to get the public key to use for encryption.

The handler uses the public key of the sender's certificate. Using this way to define an encryption key simplifies certificate management to a large extend.

See Also:
Constant Field Values

PW_CALLBACK_CLASS

public static final String PW_CALLBACK_CLASS
This tag refers to the CallbackHandler implementation class used to obtain passwords. The value of this tag must be the class name of a CallbackHandler instance.

The callback function CallbackHandler.handle( javax.security.auth.callback.Callback[]) gets an array of WSPasswordCallback objects. Only the first entry of the array is used. This object contains the username/keyname as identifier. The callback handler must set the password or key associated with this identifier before it returns.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.PW_CALLBACK_CLASS, "PWCallbackClass");
 

See Also:
Constant Field Values

PW_CALLBACK_REF

public static final String PW_CALLBACK_REF
This tag refers to the CallbackHandler implementation object used to obtain passwords. The value of this tag must be a CallbackHandler instance.

Refer to PW_CALLBACK_CLASS for further information about password callback handling.

See Also:
Constant Field Values

SAML_CALLBACK_CLASS

public static final String SAML_CALLBACK_CLASS
This tag refers to the SAML CallbackHandler implementation class used to construct SAML Assertions. The value of this tag must be the class name of a CallbackHandler instance.

See Also:
Constant Field Values

SAML_CALLBACK_REF

public static final String SAML_CALLBACK_REF
This tag refers to the SAML CallbackHandler implementation object used to construct SAML Assertions. The value of this tag must be a CallbackHandler instance.

See Also:
Constant Field Values

ENC_CALLBACK_CLASS

public static final String ENC_CALLBACK_CLASS
This tag refers to the CallbackHandler implementation class used to get the key associated with a key name. The value of this tag must be the class name of a CallbackHandler instance.

See Also:
Constant Field Values

ENC_CALLBACK_REF

public static final String ENC_CALLBACK_REF
This tag refers to the CallbackHandler implementation object used to get the key associated with a key name. The value of this tag must be a CallbackHandler instance.

See Also:
Constant Field Values

SIG_PROP_FILE

public static final String SIG_PROP_FILE
The path of the crypto property file to use for Signature. The classloader loads this file. Therefore it must be accessible via the classpath.

To locate the implementation of the Crypto interface implementation the property file must contain the property org.apache.ws.security.crypto.provider. The value of this property is the classname of the implementation class.

The following line defines the standard implementation:

 org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
 
The other contents of the property file depend on the implementation of the Crypto interface. Please see the WSS4J website for more information on the Merlin property tags and values.

The application may set this parameter using the following method:
 call.setProperty(WSHandlerConstants.SIG_PROP_FILE, "myCrypto.properties");
 

See Also:
Constant Field Values

SIG_PROP_REF_ID

public static final String SIG_PROP_REF_ID
The key that holds the reference of the java.util.Properties object holding complete information about the signature Crypto implementation. This should contain all information that would contain in an equivalent properties file which includes the Crypto implementation class name. Refer to documentation of SIG_PROP_FILE.

See Also:
Constant Field Values

DEC_PROP_FILE

public static final String DEC_PROP_FILE
The path of the crypto property file to use for Decryption. The classloader loads this file. Therefore it must be accessible via the classpath. Refer to documentation of SIG_PROP_FILE for more information about the contents of the Properties file.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.DEC_PROP_FILE, "myCrypto.properties");
 

See Also:
Constant Field Values

DEC_PROP_REF_ID

public static final String DEC_PROP_REF_ID
The key that hold the reference of the java.util.Properties object holding complete information about the decryption Crypto implementation. This should contain all information that would contain in an equivalent properties file which includes the Crypto implementation class name. Refer to documentation of DEC_PROP_FILE.

See Also:
Constant Field Values

ENC_PROP_FILE

public static final String ENC_PROP_FILE
The path of the crypto property file to use for Encryption. The classloader loads this file. Therefore it must be accessible via the classpath. Refer to documentation of SIG_PROP_FILE for more information about the contents of the Properties file.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.ENC_PROP_FILE, "myCrypto.properties");
 

See Also:
Constant Field Values

ENC_PROP_REF_ID

public static final String ENC_PROP_REF_ID
The key that hold the reference of the java.util.Properties object holding complete information about the encryption Crypto implementation. This should contain all information that would contain in an equivalent properties file which includes the Crypto implementation class name. Refer to documentation of ENC_PROP_FILE.

See Also:
Constant Field Values

SAML_PROP_FILE

public static final String SAML_PROP_FILE
The name of the SAML Issuer factory property file. The classloader loads this file. Therefore it must be accessible via the classpath.

See Also:
Constant Field Values

ENABLE_SIGNATURE_CONFIRMATION

public static final String ENABLE_SIGNATURE_CONFIRMATION
Whether to enable signatureConfirmation or not. The default value is "false".

See Also:
Constant Field Values

MUST_UNDERSTAND

public static final String MUST_UNDERSTAND
Whether to set the mustUnderstand flag on an outbound message or not. The default setting is "true".

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.MUST_UNDERSTAND, "false");
 

See Also:
Constant Field Values

IS_BSP_COMPLIANT

public static final String IS_BSP_COMPLIANT
Whether to ensure compliance with the Basic Security Profile (BSP) 1.1 or not. The default value is "true".

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.IS_BSP_COMPLIANT, "false");
 

See Also:
Constant Field Values

HANDLE_CUSTOM_PASSWORD_TYPES

public static final String HANDLE_CUSTOM_PASSWORD_TYPES
This variable controls whether types other than PasswordDigest or PasswordText are allowed when processing UsernameTokens. The default value is "false".

See Also:
Constant Field Values

PASSWORD_TYPE_STRICT

public static final String PASSWORD_TYPE_STRICT
Set the value of this parameter to true to enable strict Username Token password type handling. The default value is "false". If this parameter is set to true, it throws an exception if the password type of the Username Token does not match that of the configured PASSWORD_TYPE parameter.

See Also:
Constant Field Values

ALLOW_NAMESPACE_QUALIFIED_PASSWORD_TYPES

public static final String ALLOW_NAMESPACE_QUALIFIED_PASSWORD_TYPES
This variable controls whether (wsse) namespace qualified password types are accepted when processing UsernameTokens. The default value is "false".

See Also:
Constant Field Values

ENABLE_REVOCATION

public static final String ENABLE_REVOCATION
This variable controls whether to enable Certificate Revocation List (CRL) checking or not when verifying trust in a certificate. The default value is "false".

See Also:
Constant Field Values

USE_ENCODED_PASSWORDS

public static final String USE_ENCODED_PASSWORDS
Set the value of this parameter to true to treat passwords as binary values for Username Tokens. The default value is "false". This is needed to properly handle password equivalence for UsernameToken passwords. Binary passwords are Base64 encoded so they can be treated as strings in most places, but when the password digest is calculated or a key is derived from the password, the password will be Base64 decoded before being used. This is most useful for hashed passwords as password equivalents.

See Also:
Constant Field Values

USE_SINGLE_CERTIFICATE

public static final String USE_SINGLE_CERTIFICATE
This parameter sets whether to use a single certificate or a whole certificate chain when constructing a BinarySecurityToken used for direct reference in signature. The default is "true", meaning that only a single certificate is used.

See Also:
Constant Field Values

USE_DERIVED_KEY

public static final String USE_DERIVED_KEY
This parameter sets whether to use UsernameToken Key Derivation, as defined in the UsernameTokenProfile 1.1 specification. The default is "true". If false, then it falls back to the old behaviour of WSE derived key functionality.

See Also:
Constant Field Values

USE_DERIVED_KEY_FOR_MAC

public static final String USE_DERIVED_KEY_FOR_MAC
This parameter sets whether to use the Username Token derived key for a MAC or not. The default is "true".

See Also:
Constant Field Values

TIMESTAMP_PRECISION

public static final String TIMESTAMP_PRECISION
Set whether Timestamps have precision in milliseconds. This applies to the creation of Timestamps only. The default value is "true".

See Also:
Constant Field Values

TIMESTAMP_STRICT

public static final String TIMESTAMP_STRICT
Set the value of this parameter to true to enable strict timestamp handling. The default value is "true". Strict Timestamp handling: throw an exception if a Timestamp contains an Expires element and the semantics of the request are expired, i.e. the current time at the receiver is past the expires time.

See Also:
Constant Field Values

ENC_SYM_ENC_KEY

public static final String ENC_SYM_ENC_KEY
Defines whether to encrypt the symmetric encryption key or not. If true (the default), the symmetric key used for encryption is encrypted in turn, and inserted into the security header in an "EncryptedKey" structure. If set to false, no EncryptedKey structure is constructed.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.ENC_SYM_ENC_KEY, "false");
 

See Also:
Constant Field Values

ENC_KEY_NAME

public static final String ENC_KEY_NAME
Text of the embedded key name to be sent in the KeyInfo for encryption.

See Also:
Constant Field Values

PASSWORD_TYPE

public static final String PASSWORD_TYPE
Specific parameter for UsernameToken action to define the encoding of the password.

The parameter can be set to either WSConstants.PW_DIGEST or to WSConstants.PW_TEXT.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.PASSWORD_TYPE, WSConstants.PW_DIGEST);
 
The default setting is PW_DIGEST.

See Also:
Constant Field Values

ADD_UT_ELEMENTS

public static final String ADD_UT_ELEMENTS
Parameter to generate additional elements (nonce and created) in a UsernameToken.

The value of this parameter is a list of element names that are added to the UsernameToken. The names of the list a separated by spaces.

The list may contain the names nonce and created only. Use this option if the password type is passwordText and the handler shall add the Nonce and/or Created elements.

See Also:
Constant Field Values

SIG_KEY_ID

public static final String SIG_KEY_ID
Defines which key identifier type to use for signature. The WS-Security specifications recommends to use the identifier type IssuerSerial. For possible signature key identifier types refer to keyIdentifier. For signature IssuerSerial and DirectReference are valid only. The default is IssuerSerial.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.SIG_KEY_ID, "DirectReference");
 

See Also:
Constant Field Values

SIG_ALGO

public static final String SIG_ALGO
Defines which signature algorithm to use. The default is set by the data in the certificate.

The application may set this parameter using the following method:

 call.setProperty(
     WSHandlerConstants.SIG_ALGO, 
     "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"
 );
 

See Also:
Constant Field Values

SIG_DIGEST_ALGO

public static final String SIG_DIGEST_ALGO
Defines which signature digest algorithm to use. The default is SHA-1.

The application may set this parameter using the following method:

 call.setProperty(
    WSHandlerConstants.SIG_DIGEST_ALGO, "http://www.w3.org/2001/04/xmlenc#sha256"
 );
 

See Also:
Constant Field Values

SIGNATURE_PARTS

public static final String SIGNATURE_PARTS
Parameter to define which parts of the request shall be signed.

Refer to ENCRYPTION_PARTS for a detailed description of the format of the value string.

If this parameter is not specified the handler signs the SOAP Body by default, i.e.:

 <parameter name="signatureParts"
   value="{}{http://schemas.xmlsoap.org/soap/envelope/}Body;" />
 
To specify an element without a namespace use the string Null as the namespace name (this is a case sensitive string)

If there is no other element in the request with a local name of Body then the SOAP namespace identifier can be empty ({}).

See Also:
Constant Field Values

WSE_SECRET_KEY_LENGTH

public static final String WSE_SECRET_KEY_LENGTH
This parameter sets the length of the secret (derived) key to use for the WSE UT_SIGN functionality. The default value is 16 bytes.

See Also:
Constant Field Values

DERIVED_KEY_ITERATIONS

public static final String DERIVED_KEY_ITERATIONS
This parameter sets the number of iterations to use when deriving a key from a Username Token. The default is 1000.

See Also:
Constant Field Values

ENC_KEY_ID

public static final String ENC_KEY_ID
Defines which key identifier type to use for encryption. The WS-Security specifications recommends to use the identifier type IssuerSerial. For possible encryption key identifier types refer to keyIdentifier. For encryption IssuerSerial, X509KeyIdentifier, DirectReference, Thumbprint, SKIKeyIdentifier, and EmbeddedKeyName are valid only.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.ENC_KEY_ID, "X509KeyIdentifier");
 

See Also:
Constant Field Values

ENC_SYM_ALGO

public static final String ENC_SYM_ALGO
Defines which symmetric encryption algorithm to use. WSS4J supports the following alorithms: WSConstants.TRIPLE_DES, WSConstants.AES_128, WSConstants.AES_256, and WSConstants.AES_192. Except for AES 192 all of these algorithms are required by the XML Encryption specification.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.ENC_SYM_ALGO, WSConstants.AES_256);
 

See Also:
Constant Field Values

ENC_KEY_TRANSPORT

public static final String ENC_KEY_TRANSPORT
Defines which algorithm to use to encrypt the generated symmetric key. Currently WSS4J supports WSConstants.KEYTRANSPORT_RSA15 only.

The application may set this parameter using the following method:

 call.setProperty(WSHandlerConstants.ENC_KEY_TRANSPORT, "RSA15");
 

See Also:
Constant Field Values

ENCRYPTION_PARTS

public static final String ENCRYPTION_PARTS
Parameter to define which parts of the request shall be encrypted.

The value of this parameter is a list of semi-colon separated element names that identify the elements to encrypt. An encryption mode specifier and a namespace identification, each inside a pair of curly brackets, may preceed each element name.

The encryption mode specifier is either {Content} or {Element}. Please refer to the W3C XML Encryption specification about the differences between Element and Content encryption. The encryption mode defaults to Content if it is omitted. Example of a list:

 <parameter name="encryptionParts"
   value="{Content}{http://example.org/paymentv2}CreditCard;
             {Element}{}UserName" />
 
The the first entry of the list identifies the element CreditCard in the namespace http://example.org/paymentv2, and will encrypt its content. Be aware that the element name, the namespace identifier, and the encryption modifier are case sensitive.

The encryption modifier and the namespace identifier can be ommited. In this case the encryption mode defaults to Content and the namespace is set to the SOAP namespace.

An empty encryption mode defaults to Content, an empty namespace identifier defaults to the SOAP namespace. The second line of the example defines Element as encryption mode for an UserName element in the SOAP namespace.

To specify an element without a namespace use the string Null as the namespace name (this is a case sensitive string)

If no list is specified, the handler encrypts the SOAP Body in Content mode by default.

See Also:
Constant Field Values

TTL_TIMESTAMP

public static final String TTL_TIMESTAMP
Time-To-Live is the time difference between creation and expiry time in seconds in the WSS Timestamp. After this time the SOAP request is invalid (at least the security data shall be treated this way).

If this parameter is not defined, contains a value less or equal zero, or an illegal format the handlers use a default TTL of 300 seconds (5 minutes).

See Also:
Constant Field Values

TTL_FUTURE_TIMESTAMP

public static final String TTL_FUTURE_TIMESTAMP
This configuration tag specifies the time in seconds in the future within which the Created time of an incoming Timestamp is valid. The default value is "60", to avoid problems where clocks are slightly askew. To reject all future-created Timestamps, set this value to "0".

See Also:
Constant Field Values

RECV_RESULTS

public static final String RECV_RESULTS
The WSHandler stores a result List in this property.

See Also:
Constant Field Values

SEND_SIGV

public static final String SEND_SIGV
internally used property names to store values inside the message context that must have the same lifetime as a message (request/response model).

See Also:
Constant Field Values

SIG_CONF_DONE

public static final String SIG_CONF_DONE
See Also:
Constant Field Values
Constructor Detail

WSHandlerConstants

public WSHandlerConstants()
Method Detail

getKeyIdentifier

public static Integer getKeyIdentifier(String parameter)
Get the key identifier type corresponding to the parameter

Parameters:
parameter -
Returns:
the key identifier type corresponding to the parameter


Copyright © 2004-2013 The Apache Software Foundation. All Rights Reserved.