Package org.apache.cxf.rt.security.saml.interceptor

Class WSS4JBasicAuthValidator

java.lang.Object
org.apache.cxf.rt.security.saml.interceptor.WSS4JBasicAuthValidator
public abstract class WSS4JBasicAuthValidator extends Object
An abstract class containing some functionality to validate a username + password received via HTTP Basic Authentication via a WSS4J Validator (and hence JAAS, the STS, etc.). It can be subclassed and used as a CXF interceptor or else via a JAX-RS ContainerRequestFilter.

  • Constructor Details

    • WSS4JBasicAuthValidator

      public WSS4JBasicAuthValidator()

  • Method Details

    • validate

      protected void validate(org.apache.cxf.message.Message message) throws org.apache.wss4j.common.ext.WSSecurityException
      Throws:
      org.apache.wss4j.common.ext.WSSecurityException

    • convertPolicyToToken

      protected org.apache.wss4j.dom.message.token.UsernameToken convertPolicyToToken(org.apache.cxf.configuration.security.AuthorizationPolicy policy)

    • createSecurityContext

      protected org.apache.cxf.security.SecurityContext createSecurityContext(Principal p)

    • createSecurityContext

      protected org.apache.cxf.security.SecurityContext createSecurityContext(org.apache.cxf.message.Message msg, org.apache.wss4j.dom.validate.Credential credential)

    • getValidator

      public org.apache.wss4j.dom.validate.Validator getValidator()

    • setValidator

      public void setValidator(org.apache.wss4j.dom.validate.Validator validator)

    • getCallbackHandler

      public CallbackHandler getCallbackHandler()

    • setCallbackHandler

      public void setCallbackHandler(CallbackHandler callbackHandler)