com.levigo.jadice.server.ws

Class UserNamePasswordHandler

java.lang.Object

org.apache.wss4j.dom.handler.WSHandler

org.apache.cxf.ws.security.wss4j.AbstractWSS4JInterceptor

org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor

org.apache.cxf.ws.security.wss4j.AbstractUsernameTokenAuthenticatingInterceptor

com.levigo.jadice.server.ws.UserNamePasswordHandler

All Implemented Interfaces:

org.apache.cxf.binding.soap.interceptor.SoapInterceptor, org.apache.cxf.interceptor.Interceptor<org.apache.cxf.binding.soap.SoapMessage>, org.apache.cxf.phase.PhaseInterceptor<org.apache.cxf.binding.soap.SoapMessage>

public class UserNamePasswordHandler
extends org.apache.cxf.ws.security.wss4j.AbstractUsernameTokenAuthenticatingInterceptor

A class to handle username and password for a webservice request. It uses the spring security AuthenticationManager to verify the credentials. If no AuthenticationManager is present no authentication will be enforced.

See Also:

SecuredNodeWorkerFactory

Nested Class Summary

Nested classes/interfaces inherited from class org.apache.cxf.ws.security.wss4j.AbstractUsernameTokenAuthenticatingInterceptor

org.apache.cxf.ws.security.wss4j.AbstractUsernameTokenAuthenticatingInterceptor.CustomValidator

Field Summary

Fields inherited from class org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor

PROCESSOR_MAP, SAML_ROLE_ATTRIBUTENAME_DEFAULT, SECURITY_PROCESSED, VALIDATOR_MAP

Fields inherited from class org.apache.wss4j.dom.handler.WSHandler

cryptos

Constructor Summary

Constructors

Constructor and Description
UserNamePasswordHandler()

Method Summary

Methods

Modifier and Type	Method and Description
protected boolean	checkReceiverResultsAnyOrder(List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> wsResult, List<Integer> actions)
protected Subject	createSubject(String name, String password, boolean isDigest, String nonce, String created)
org.springframework.security.authentication.AuthenticationManager	getAuthenticationManager()
void	handleMessage(org.apache.cxf.binding.soap.SoapMessage msg)
void	setAuthenticationManager(org.springframework.security.authentication.AuthenticationManager authenticationManager)

Methods inherited from class org.apache.cxf.ws.security.wss4j.AbstractUsernameTokenAuthenticatingInterceptor

doCreateSecurityContext, doResults, getSecurityEngine, getSupportDigestPasswords, setSubject, setSupportDigestPasswords

Methods inherited from class org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor

advanceBody, computeAction, configureReplayCaches, createSecurityEngine, getCallback, getCallback, getProperty, getReplayCache, isGET, isNonceCacheRequired, isSamlCacheRequired, isTimestampCacheRequired, setAlgorithmSuites, setIgnoreActions

Methods inherited from class org.apache.cxf.ws.security.wss4j.AbstractWSS4JInterceptor

getAdditionalInterceptors, getAfter, getBefore, getId, getOption, getPassword, getPhase, getProperties, getRoles, getUnderstoodHeaders, handleFault, isRequestor, loadCryptoFromPropertiesFile, postHandleMessage, setId, setPassword, setPhase, setProperties, setProperty, setProperty, translateProperties

Methods inherited from class org.apache.wss4j.dom.handler.WSHandler

checkReceiverResults, checkSignatureConfirmation, decodeAlgorithmSuite, decodeBooleanConfigValue, decodeDecryptionParameter, decodeEncryptionParameter, decodeFutureTimeToLive, decodePasswordType, decodeSignatureParameter, decodeSignatureParameter2, decodeTimeToLive, decodeUTParameter, doReceiverAction, doSenderAction, getCallbackHandler, getClassLoader, getPasswordCallbackHandler, getPasswordCB, getPasswordEncryptor, getString, getStringOption, loadCrypto, loadDecryptionCrypto, loadEncryptionCrypto, loadSignatureCrypto, loadSignatureVerificationCrypto

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

UserNamePasswordHandler

public UserNamePasswordHandler()

Method Detail

handleMessage

public void handleMessage(org.apache.cxf.binding.soap.SoapMessage msg)
                   throws org.apache.cxf.interceptor.Fault

Specified by:

handleMessage in interface org.apache.cxf.interceptor.Interceptor<org.apache.cxf.binding.soap.SoapMessage>

Overrides:

handleMessage in class org.apache.cxf.ws.security.wss4j.AbstractUsernameTokenAuthenticatingInterceptor

Throws:

org.apache.cxf.interceptor.Fault

checkReceiverResultsAnyOrder

protected boolean checkReceiverResultsAnyOrder(List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> wsResult,
                                   List<Integer> actions)

Overrides:

checkReceiverResultsAnyOrder in class org.apache.wss4j.dom.handler.WSHandler

createSubject

protected Subject createSubject(String name,
                    String password,
                    boolean isDigest,
                    String nonce,
                    String created)
                         throws SecurityException

Specified by:

createSubject in class org.apache.cxf.ws.security.wss4j.AbstractUsernameTokenAuthenticatingInterceptor

Throws:

SecurityException

getAuthenticationManager

public org.springframework.security.authentication.AuthenticationManager getAuthenticationManager()

setAuthenticationManager

public void setAuthenticationManager(org.springframework.security.authentication.AuthenticationManager authenticationManager)