Package org.apache.cxf.ws.security.wss4j

Class StaxCryptoCoverageChecker

java.lang.Object

org.apache.cxf.phase.AbstractPhaseInterceptor<org.apache.cxf.binding.soap.SoapMessage>

org.apache.cxf.ws.security.wss4j.StaxCryptoCoverageChecker

All Implemented Interfaces:

org.apache.cxf.interceptor.Interceptor<org.apache.cxf.binding.soap.SoapMessage>, org.apache.cxf.phase.PhaseInterceptor<org.apache.cxf.binding.soap.SoapMessage>

public class StaxCryptoCoverageChecker
extends org.apache.cxf.phase.AbstractPhaseInterceptor<org.apache.cxf.binding.soap.SoapMessage>

This interceptor handles parsing the StaX WS-Security results (events) + checks that the specified crypto coverage events actually occurred. The default functionality is to enforce that the SOAP Body, Timestamp, and WS-Addressing ReplyTo and FaultTo headers must be signed, and the UsernameToken must be encrypted (if they exist in the message payload). Note that this interceptor must be explicitly added to the InInterceptor chain.

Field Summary

Fields

Modifier and Type	Field	Description
static final String	SOAP_NS
static final String	SOAP12_NS
static final String	WSA_NS
static final String	WSSE_NS
static final String	WSU_NS

Constructor Summary

Constructors

Constructor	Description
StaxCryptoCoverageChecker()

Method Summary

Modifier and Type	Method	Description
void	handleMessage(org.apache.cxf.binding.soap.SoapMessage soapMessage)
boolean	isEncryptBody()
boolean	isEncryptUsernameToken()
boolean	isSignAddressingHeaders()
boolean	isSignBody()
boolean	isSignTimestamp()
boolean	isSignUsernameToken()
final void	setEncryptBody(boolean encryptBody)
final void	setEncryptUsernameToken(boolean encryptUsernameToken)
final void	setSignAddressingHeaders(boolean signAddressingHeaders)
final void	setSignBody(boolean signBody)
final void	setSignTimestamp(boolean signTimestamp)
void	setSignUsernameToken(boolean signUsernameToken)

Methods inherited from class org.apache.cxf.phase.AbstractPhaseInterceptor

addAfter, addAfter, addBefore, addBefore, getAdditionalInterceptors, getAfter, getBefore, getId, getPhase, handleFault, isGET, isRequestor, setAfter, setBefore

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

SOAP_NS

public static final String SOAP_NS

See Also:

• Constant Field Values

SOAP12_NS

public static final String SOAP12_NS

See Also:

• Constant Field Values

WSU_NS

public static final String WSU_NS

See Also:

• Constant Field Values

WSSE_NS

public static final String WSSE_NS

See Also:

• Constant Field Values

WSA_NS

public static final String WSA_NS

See Also:

• Constant Field Values

Constructor Details

StaxCryptoCoverageChecker

public StaxCryptoCoverageChecker()

Method Details

handleMessage

public void handleMessage(org.apache.cxf.binding.soap.SoapMessage soapMessage)
                   throws org.apache.cxf.interceptor.Fault

Throws:

org.apache.cxf.interceptor.Fault

isSignBody

public boolean isSignBody()

setSignBody

public final void setSignBody(boolean signBody)

isSignTimestamp

public boolean isSignTimestamp()

setSignTimestamp

public final void setSignTimestamp(boolean signTimestamp)

isEncryptBody

public boolean isEncryptBody()

setEncryptBody

public final void setEncryptBody(boolean encryptBody)

isSignAddressingHeaders

public boolean isSignAddressingHeaders()

setSignAddressingHeaders

public final void setSignAddressingHeaders(boolean signAddressingHeaders)

isSignUsernameToken

public boolean isSignUsernameToken()

setSignUsernameToken

public void setSignUsernameToken(boolean signUsernameToken)

isEncryptUsernameToken

public boolean isEncryptUsernameToken()

setEncryptUsernameToken

public final void setEncryptUsernameToken(boolean encryptUsernameToken)