All Classes and Interfaces
Class
Description
Class SamlAction represents the raw data required by the
SamlAssertionWrapper when
creating the Action element of the SAML Authorization Decision Statement.Represents a SAML Advice Element.
This class holds the permitted values for encryption/signature/etc.
Validate signature/encryption/etc.
Class SamlAttribute represents an instance of a SAML attribute.
Class SamlAttributeStatement represents a SAML attribute statement
Class AudienceRestrictionBean represents a SAML AudienceRestriction object
Class SamlDecision represents the raw data to be used by the
SamlAssertionWrapper when
creating SAML Authorization Decision Statements.enum representing the possible decision types as specified in the SAML spec
Class AuthenticationStatementBean represents the raw data required to create
a SAML v1.1 or v2.0 authentication statement.
Binary Security Token.
An class that enforces Basic Security Profile Rules
A Basic Security Profile rule.
A Crypto implementation based on a simple array of X509Certificate(s).
Convert a RFC 2253 String using \ to escape unicode characters into one that is compatible
with Microsoft's WFC and Java.
Class ConditionsBean represents a SAML Conditions object (can be used to create
both SAML v1.1 and v2.0 statements)
This class defines Configuration Constants that are shared between the DOM + StAX code.
Class ConversationConstants
This Abstract Base Class implements the accessor and keystore-independent methods and
functionality of the Crypto interface.
CryptoFactory.
This class represents a way of passing information to the Crypto.getX509Certificates() method.
TYPE.ISSUER_SERIAL - A certificate (chain) is located by the issuer name and serial number
TYPE.THUMBPRINT_SHA1 - A certificate (chain) is located by the SHA1 of the (root) cert
TYPE.SKI_BYTES - A certificate (chain) is located by the SKI bytes of the (root) cert
TYPE.SUBJECT_DN - A certificate (chain) is located by the Subject DN of the (root) cert
TYPE.ALIAS - A certificate (chain) is located by an alias.
This class represents a PrivilegedAction implementation to obtain a (SPNEGO) service ticket from a
Kerberos Key Distribution Center.
This class represents a PrivilegedAction implementation to validate a received (SPNEGO) ticket
to a KDC.
Class DelegateBean represents a SAML 2.0 Delegate object.
Provides the means to navigate through a DER-encoded byte array, to help
in decoding the contents.
This class is a utility to serialize a DOM node as XML.
An X509Data token.
An X.509 Issuer Serial token.
A custom Expiry implementation for EhCache.
An in-memory EHCache implementation of the ReplayCache interface, that overflows to disk.
A cache value for EHCache.
This class encapsulates configuration for Encryption Actions.
A collection of utilities relating to InetAddresses.
An implementation of PasswordEncryptor that relies on Jasypt's StandardPBEStringEncryptor to
encrypt and decrypt passwords.
This class represents a PrivilegedExceptionAction implementation to obtain a service ticket from a Kerberos
Key Distribution Center.
Encapsulates Kerberos token (service ticket) and secret key returned by
KerberosClientExceptionAction.This interface defines a pluggable way to obtain a session key given an AP-REQ Kerberos token and a
Subject.
Class KeyInfoBean represents a KeyInfo structure that will be embedded in a SAML Subject.
Load resources (or images) from various sources.
A simple in-memory HashSet based cache to prevent against replay attacks.
A Crypto implementation based on two Java KeyStore objects, one being the keystore, and one
being the truststore.
A Crypto implementation based on two Java KeyStore objects, one being the keystore, and one
being the truststore.
A Crypto implementation based on two Java KeyStore objects, one being the keystore, and one
being the truststore.
Class NameIDBean represents a SAML NameID (can be used to create both SAML v1.1 and v2.0 statements)
The abstraction this class provides is a push down stack of variable
length frames of prefix to namespace mappings.
This class intializes the Opensaml library.
Class OpenSAMLUtil provides static helper methods for the OpenSaml library
This interface describes a way to encrypt and decrypt passwords.
PKIPath Security Token.
Class ProxyRestrictionBean represents a SAML 2.0 ProxyRestrictionBean object
This class encapsulates a principal defined by a Public Key.
Reference.
A cache to store (String) identifiers to avoid replay attacks.
Class SAML1ComponentBuilder provides builder methods that can be used
to construct SAML v1.1 statements using the OpenSaml library.
Class SAML1Constants provides static constant definitions associated with
the SAML v1.x specification.
Class SAML2ComponentBuilder provides builder methods that can be used
to construct SAML v2.0 statements using the OpenSaml library.
Class SAML2Constants provides static constant definitions associated with
the SAML v2.x specification.
Class SamlAssertionWrapper can generate, sign, and validate both SAML v1.1
and SAML v2.0 assertions.
Class SAMLCallback will be called by the
SamlAssertionWrapper during the creation
of SAML statements (authentication, attribute, and authz decision).This holds key/cert information extracted from a SAML assertion
This interface allows the user to plug in custom ways of processing a SAML KeyInfo.
A principal that represents a SAML Token.
Utility methods for SAML stuff
This interface encapsulates configuration for Actions.
Security Token Reference.
This class encapsulates configuration for Signature Actions.
This abstract class encapsulates configuration for Signature + Encryption Actions.
This interface represents a PrivilegedAction implementation to obtain a (SPNEGO) service ticket
from a Kerberos Key Distribution Center.
This interface represents a PrivilegedAction implementation to validate a received (SPNEGO)
ticket to a KDC.
This class wraps a GSSContext and provides some functionality to obtain and validate spnego tokens.
Class SubjectBean represents a SAML subject (can be used to create
both SAML v1.1 and v2.0 statements)
Class SubjectConfirmationDataBean represents a SAML (2) SubjectConfirmationData.
This class represents a SubjectLocality.
This class is a callback to obtain a DOM Element representing a security token.
The SAML Version
This class implements the
Principal interface and
represents a DerivedKeyToken.Simple class to provide a password callback mechanism.
Configure Crypto providers.
Some functionality to detect if EhCache is available or not.
ResourceBundle for WSS4J
Override the OpenSAML BASE-64 unmarshaller for X.509 Certificates, to fix a test failure in CXF due to the fact
that an X.509 Certificate is only partially unmarshalled.
Exception class for WS-Security.
This interface allows the Time Source used to set dates and times to be
overridden by the application.
This class implements the
Principal interface and
represents a UsernameToken user.X509 Security Token.
Represents the X.509 SubjectPublicKeyInfo for a public key, as specified
in RFC3280/5280: