Package org.apache.cxf.ws.security.wss4j

Class UsernameTokenInterceptor

java.lang.Object
org.apache.cxf.phase.AbstractPhaseInterceptor<org.apache.cxf.binding.soap.SoapMessage>
org.apache.cxf.binding.soap.interceptor.AbstractSoapInterceptor
org.apache.cxf.ws.security.wss4j.AbstractTokenInterceptor
org.apache.cxf.ws.security.wss4j.UsernameTokenInterceptor
All Implemented Interfaces:
org.apache.cxf.binding.soap.interceptor.SoapInterceptor, Interceptor<org.apache.cxf.binding.soap.SoapMessage>, PhaseInterceptor<org.apache.cxf.binding.soap.SoapMessage>
public class UsernameTokenInterceptor extends AbstractTokenInterceptor

  • Constructor Details

    • UsernameTokenInterceptor

      public UsernameTokenInterceptor()

  • Method Details

    • processToken

      protected void processToken(org.apache.cxf.binding.soap.SoapMessage message)
      Specified by:
      processToken in class AbstractTokenInterceptor

    • validateToken

      protected WSSecurityEngineResult validateToken(Element tokenElement, org.apache.cxf.binding.soap.SoapMessage message) throws WSSecurityException, org.apache.xml.security.exceptions.Base64DecodingException
      Throws:
      WSSecurityException
      org.apache.xml.security.exceptions.Base64DecodingException

    • parseTokenAndCreatePrincipal

      protected UsernameTokenPrincipal parseTokenAndCreatePrincipal(Element tokenElement, boolean bspCompliant, boolean allowNamespaceQualifiedPWDTypes) throws WSSecurityException, org.apache.xml.security.exceptions.Base64DecodingException
      Throws:
      WSSecurityException
      org.apache.xml.security.exceptions.Base64DecodingException

    • isWsiBSPCompliant

      protected boolean isWsiBSPCompliant(org.apache.cxf.binding.soap.SoapMessage message)

    • createSecurityContext

      protected SecurityContext createSecurityContext(Principal p, Subject subject)

    • createSubject

      protected Subject createSubject(String name, String password, boolean isDigest, String nonce, String created) throws SecurityException
      Create a Subject representing a current user and its roles. This Subject is expected to contain at least one Principal representing a user and optionally followed by one or more principal Groups this user is a member of.
      Parameters:
      name - username
      password - password
      isDigest - true if a password digest is used
      nonce - optional nonce
      created - optional timestamp
      Returns:
      subject
      Throws:
      SecurityException

    • assertTokens

      protected UsernameToken assertTokens(org.apache.cxf.binding.soap.SoapMessage message)
      Specified by:
      assertTokens in class AbstractTokenInterceptor

    • addToken

      protected void addToken(org.apache.cxf.binding.soap.SoapMessage message)
      Specified by:
      addToken in class AbstractTokenInterceptor

    • addUsernameToken

      protected WSSecUsernameToken addUsernameToken(org.apache.cxf.binding.soap.SoapMessage message, Document doc, UsernameToken token)