org.forgerock.openam.sts.soap.token.validator.wss

Class OpenAMWSSUsernameTokenValidator

java.lang.Object

org.apache.wss4j.dom.validate.UsernameTokenValidator

org.forgerock.openam.sts.soap.token.validator.wss.OpenAMWSSUsernameTokenValidator

All Implemented Interfaces:

org.apache.wss4j.dom.validate.Validator

public class OpenAMWSSUsernameTokenValidator
extends org.apache.wss4j.dom.validate.UsernameTokenValidator

The org.apache.cxf.sts.token.validator.UsernameTokenValidator class ultimately calls a org.apache.ws.security.validate.Validator instance (set via a setter) to perform the actual token validation. This class implements the ws.security.validate.Validator interface and will be set in the cxf.sts.token.validator.UsernameTokenValidator class. It will perform the actual UsernameToken validation by calling the OpenAM REST interface via bound TokenAuthenticationRequestDispacher

Constructor Summary

Constructors

Constructor and Description
OpenAMWSSUsernameTokenValidator(AuthenticationHandler<org.apache.wss4j.dom.message.token.UsernameToken> authenticationHandler, ThreadLocalAMTokenCache threadLocalAMTokenCache, ValidationInvocationContext validationInvocationContext, boolean invalidateOpenAMSession, org.slf4j.Logger logger)

Method Summary

Modifier and Type	Method and Description
protected void	printConfig(org.apache.wss4j.dom.handler.RequestData data)
protected void	verifyCustomPassword(org.apache.wss4j.dom.message.token.UsernameToken usernameToken, org.apache.wss4j.dom.handler.RequestData data)
protected void	verifyDigestPassword(org.apache.wss4j.dom.message.token.UsernameToken usernameToken, org.apache.wss4j.dom.handler.RequestData data)
protected void	verifyPlaintextPassword(org.apache.wss4j.dom.message.token.UsernameToken usernameToken, org.apache.wss4j.dom.handler.RequestData data)

Methods inherited from class org.apache.wss4j.dom.validate.UsernameTokenValidator

validate, verifyUnknownPassword

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

OpenAMWSSUsernameTokenValidator

public OpenAMWSSUsernameTokenValidator(AuthenticationHandler<org.apache.wss4j.dom.message.token.UsernameToken> authenticationHandler,
                                       ThreadLocalAMTokenCache threadLocalAMTokenCache,
                                       ValidationInvocationContext validationInvocationContext,
                                       boolean invalidateOpenAMSession,
                                       org.slf4j.Logger logger)

Method Detail

verifyPlaintextPassword

protected void verifyPlaintextPassword(org.apache.wss4j.dom.message.token.UsernameToken usernameToken,
                                       org.apache.wss4j.dom.handler.RequestData data)
                                throws org.apache.wss4j.common.ext.WSSecurityException

Overrides:

verifyPlaintextPassword in class org.apache.wss4j.dom.validate.UsernameTokenValidator

Throws:

org.apache.wss4j.common.ext.WSSecurityException

verifyDigestPassword

protected void verifyDigestPassword(org.apache.wss4j.dom.message.token.UsernameToken usernameToken,
                                    org.apache.wss4j.dom.handler.RequestData data)
                             throws org.apache.wss4j.common.ext.WSSecurityException

Overrides:

verifyDigestPassword in class org.apache.wss4j.dom.validate.UsernameTokenValidator

Throws:

org.apache.wss4j.common.ext.WSSecurityException

verifyCustomPassword

protected void verifyCustomPassword(org.apache.wss4j.dom.message.token.UsernameToken usernameToken,
                                    org.apache.wss4j.dom.handler.RequestData data)
                             throws org.apache.wss4j.common.ext.WSSecurityException

Overrides:

verifyCustomPassword in class org.apache.wss4j.dom.validate.UsernameTokenValidator

Throws:

org.apache.wss4j.common.ext.WSSecurityException

printConfig

protected void printConfig(org.apache.wss4j.dom.handler.RequestData data)