com.ibm.wsspi.wssecurity.saml.config
Interface SamlConstants
- public interface SamlConstants
Generic Constants used by the WS-Security SAMLToken Profile support.
Field Summary
Modifier and Type | Field and Description |
---|---|
|
BEARER_KEYTYPE_ALIAS
This value is the alias for the Bearer keytype.
|
|
CACHE_CUSHION
The key is used to specify cushion in milliseconds that a cached token should not be reused, and a new token should be issued.
|
|
CACHE_TOKEN
The key is used to specify if SAMLToken could be cached for reuse.
|
|
CLIENT_LABEL
The key is used to specify client label for the requested SAMLToken to be used with Derived Keys when using WSSAPI.
|
|
CLOCK_SKEW
The key is used to specify allowable clock skew.
|
|
CONFIRMATION_METHOD
This is the key used to specify SAMLToken subject ConfirmationMethod.
|
|
CRLPATH
The key is revoked certificate list file path name whose name.
|
|
CRLPATH_PREFIX
The key is revoked certificate list file path name whose name is
CRLPATH_n where n is an integer.
|
|
DEFAULT_SAML_EXPIRES_IN_MILLISECONDS
The value specify the default SAMLToken lifetime in milliseconds for a self-issued SAMLToken.
|
|
DEFAULT_TRUST_CLIENT_COLLECTION_REQUEST
This value is to indicate RequestsecurityTokenCollection is not used in WS-Trust request.
|
|
DEFAULT_TRUST_CLIENT_WSTRUST_NAMESPACE
This value is WS-Trust 1.3 namespace.
|
|
DKT_KEY_LENGTH
The key is used to specify derived key length in bytes for the requested SAMLToken to be used with Derived Keys when using WSSAPI.
|
|
DKT_NONCE_LENGTH
The key is used to specify derived nonce length in bytes for the requested SAMLToken to be used with Derived Keys when using WSSAPI.
|
|
FAILOVER_TO_TOKEN_REQUEST
The key is used to indicate if ws-security runtime should use attached policyset to issue a new SAMLToken if the input SAMLToken
in RequestContext is invalid.
|
|
includeCredentialToken
The key is used to set the flag to assert the CredentialToken from WebSphere security subject as a SAML Attribute in a self generated SAML token.
|
|
includeExpiration
The key is used to set the flag to assert the Expiration time from WebSphere security subject as a SAML Attribute in a self generated SAML token.
|
|
includeGroupIds
The key is used to set the flag to assert the GroupIds from WebSphere security subject as a SAML Attribute in a self generated SAML token.
|
|
includeHostName
The key is used to set the flag to assert the HostName from WebSphere security subject as a SAML Attribute in a self generated SAML token.
|
|
includeOID
The key is used to set the flag to assert the OID from WebSphere security subject as a SAML Attribute in a self generated SAML token.
|
|
includePrimaryGroupId
The key is used to set the flag to assert the PrimaryGroupId from WebSphere security subject as a SAML Attribute in a self generated SAML token.
|
|
includeRealmName
The key is used to set the flag to assert WebSphere security domain's realm as a SAML Attribute in a self generated SAML token.
|
|
includeSecurityName
The key is used to set the flag to assert the SecurityName from WebSphere security subject as a SAML Attribute in a self generated SAML token.
|
|
includeUniqueSecurityName
The key is used to set the flag to assert the UniqueSecurityName from WebSphere security subject as a SAML Attribute in a self generated SAML token.
|
|
ISSUER_URI_PROP
The key is used to specify issuer URL in the custom properties.
|
|
KEY_ALIAS
This is the optional key used to specify the key alias for SAMLToken consuming
|
|
KEY_ALIAS_PROP
The key is used to specify alias of the key in the custom properties.
|
|
KEY_NAME
This is the optional key used to specify the key name for SAMLToken consuming
|
|
KEY_NAME_PROP
The key is used to specify name of the key in the custom properties.
|
|
KEY_PASSWORD
This is the optional key used to specify the key password for SAMLToken consuming
|
|
KEY_PW_PROP
The key is used to specify password of the key in the custom properties.
|
|
KEY_SIZE
This is the key used to specify KeySize when requesting a SecretKey from STS.
|
|
KEY_STORE_PASSWORD
This is the key used to specify keystore password for SAMLToken consuming
|
|
KEY_STORE_PATH
This is the key used to specify keystore file path for SAMLToken consuming
|
|
KEY_STORE_REF
This is the key used to specify keystore reference for SAMLToken consuming
|
|
KEY_STORE_TYPE
This is the key used to specify keystore type name for SAMLToken consuming
|
|
KEY_TYPE
This is the key used to specify KeyType when making WS-Trust request to STS.
|
|
KS_PATH_PROP
The key is used to specify location of the keystore file in the
custom properties.
|
|
KS_PW_PROP
The key is used to specify password of the keystore file in the
custom properties.
|
|
KS_REF_PROP
The key is used to specify reference to centrally managed keystore in the
custom properties.
|
|
KS_TYPE_PROP
The key is used to specify type of the keystore file in the
custom properties.
|
|
PUBLICKEY_KEYTYPE_ALIAS
This value is the alias for the PublicKey keytype.
|
|
REQUIRE_DKT
The key is used to specify an option for the requested SAMLToken to be used with Derived Keys when using WSSAPI.
|
|
SAML_APPLIES_TO
The key is used to specify the AppliesTo for the requested SAMLToken when using WSSAPI.
|
|
SAML_ATTRIBUTES
The key is used to specify an ArrayList of SAML Attributes for the requested SAMLToken when using WSSAPI.
|
|
SAML_NAME_IDENTIFIER
The key specifies the SAML token subject name identifier when generating a self-issued SAML token.
|
|
SAML_SELF_ISSUER_CONFIG
The key specifies the required configuration data when generating a self-issued SAML token.
|
|
SAML_TOKEN
The key is used to access the
SAMLToken object in SAMLGenerateLoginModule shared state.
|
|
SAMLTOKEN_CLIENT_CACHE_ENTRIES
The key is used to indicate how many cache entries could be maintained.
|
|
SAMLTOKEN_CLIENT_CACHE_TIMEOUT
The key is used to indicate how many minutes a SAML token could be maintained in client cache.
|
|
SAMLTOKEN_IN_MESSAGECONTEXT
The key is used to set SAMLToken to RequestContext
|
|
SAMLTOKEN_OUT_MESSAGECONTEXT
The key is used to get SAMLToken from ResponseContext
|
|
SAMLTOKEN_SELF_ISSUER
The key is the default SAML self-issuer name
|
|
SERVICE_ALIAS
The key is used to specify Certificate's alias of target service.
|
|
SERVICE_LABEL
The key is used to specify service label for the requested SAMLToken to be used with Derived Keys when using WSSAPI.
|
|
SIGN_SAMLTOKEN_WITH_STRT
This is the key used to specify if a SAMLToken should be signed with application message.
|
|
SIGNATURE_CACHE_ENTRIES
The key is used to indicate how many signature cache entries could be maintained.
|
|
SIGNATURE_CACHE_TIMEOUT
The key is used to indicate how many minutes a SAML token would be cached to to avoid repeating signature validation.
|
|
SIGNATURE_REQUIRED
This is the key used to specify if signature on SAML assertion is required.
|
|
SSL_CONFIG_ALIAS
The key is used to specify the alias to an SSL configuration used by WS-Trust client to request
SAMLToken .
|
|
STS_ADDRESS
This is the key used to specify the SecurityTokenService address.
|
|
SYMMETRICKEY_KEYTYPE_ALIAS
This value is the alias for the SymmetricKey keytype.
|
|
Token_REQUEST
This is the key used to specify SAMLToken request method.
|
|
TOKEN_TYPE
The key specifies the requires token type to
SAMLGenerateCallback .
|
|
TRUST_ANY_STS_SIGNER
This is the key used to specify if recipient trust any certificate that signs SAML assertion.
|
|
TRUST_CLIENT_BINDING
This is the key used to specify WS-trust client's binding name.
|
|
TRUST_CLIENT_BINDING_SCOPE
This is the key used to specify binding scope for the policyset attached to WS-Trust client.
|
|
TRUST_CLIENT_COLLECTION_REQUEST
This is the key used to specify if RequestSecurityTokenCollection is required in WS-Trust request.
|
|
TRUST_CLIENT_POLICY
This is the key used to specify WS-Trust client's policyset name
|
|
TRUST_CLIENT_SOAP_VERSION
This is the key used to specify the SOAP version in WS-Trust request.
|
|
TRUST_CLIENT_WSTRUST_NAMESPACE
This is the key used to specify the WS-Trust namespace in WS-Trust request
|
|
TRUST_CLIENT_WSTRUST_NAMESPACE_12
This value is the alias for WS-Trust 1.2 namespace.
|
|
TRUST_CLIENT_WSTRUST_NAMESPACE_13
This value is the alias for WS-Trust 1.3 namespace.
|
|
TRUST_SERVICE_CACHE_ENTRIES
The key is used to indicate how many sts service instance cache entries could be maintained.
|
|
TRUST_SERVICE_CACHE_TIMEOUT
The key is used to indicate how many minutes sts service instance can be kept in client side cache.
|
|
TRUST_STORE_PASSWORD
This is the key used to specify truststore password for SAMLToken consuming
|
|
TRUST_STORE_PATH
This is the key used to specify truststore file path for SAMLToken consuming
|
|
TRUST_STORE_REF
This is the key used to specify truststore reference for SAMLToken consuming
|
|
TRUST_STORE_TYPE
This is the key used to specify truststore type name for SAMLToken consuming
|
|
TRUSTED_ISSUER_
The key is trusted issuer name whose name is
trustedIssuer_n where n is an integer.
|
|
TRUSTED_ISSUER_SUBJECTDN
The key is trusted issuer X509Certificate's SubjectDN name whose name is
trustedSubjectDN_n where n is an integer.
|
|
TRUSTED_STS_ALIAS
This is the optional key used to specify the trusted STS certificate's alias for SAMLToken consuming
|
|
TS_PATH_PROP
The key is used to specify location of the truststore file in the
custom properties.
|
|
TS_PW_PROP
The key is used to specify password of the truststore file in the
custom properties.
|
|
TS_REF_PROP
The key is used to specify reference to centrally managed truststore in the
custom properties.
|
|
TS_TYPE_PROP
The key is used to specify type of the truststore file in the
custom properties.
|
|
TTL_PROP
The key is used to specify amount of time before token expires in the custom properties.
|
|
USE_IMPLIED_DKT
The key is used to specify an option for the requested SAMLToken to be used with Implied Derived Keys when using WSSAPI.
|
|
USE_KEY_TYPE
This is the optional key used to specify the Usekey type, which tells client
to generate desired type of KeyInfo.
|
|
useUniqueSecurityName
The key is used to set the flag to assert the UniqueSecurityName from WebSphere security subject as SAML NameID or NameIdentifier in a self generated SAML token.
|
|
VALIDATE_AUDIENCE
The key is used to set the flag to validate AudienceRestriction assertion
The default behavior is not to require AudienceRestriction validation.
|
|
VALIDATE_ONETIMEUSE
The key is used to set the flag to validate OneTimeUse assertion in SAML 2.0, or DoNotCacheCondition in SAML 1.1
The default behavior is to require OneTimeUse assertion validation.
|
|
WSS_CONSUMING_CONTEXT
The key is used to specify the
WSSConsumingContext object used by WS-Trust client to request SAMLToken .
|
|
WSS_GENERATION_CONTEXT
The key is used to specify the
WSSGenerationContext object used by WS-Trust client to request SAMLToken .
|
|
X509PATH
The key is intermediate X509Certificate file path name file path name,.
|
|
X509PATH_PREFIX
The key is intermediate X509Certificate file path name file path name whose name is
X509PATH_n where n is an integer.
|
Field Detail
STS_ADDRESS
- static final java.lang.String STS_ADDRESS
KEY_TYPE
- static final java.lang.String KEY_TYPE
This is the key used to specify KeyType when making WS-Trust request to STS. The following keyTypes for WS-Trust 1.2 may be specified:WSSConstants.WST12.KEYTYPE_PUBLICKEY
WSSConstants.WST12.KEYTYPE_SYMMETRICKEY
The following keyTypes for WS-Trust 1.3 may be specified:WSSConstants.WST13.KEYTYPE_PUBLICKEY
WSSConstants.WST13.KEYTYPE_SYMMETRICKEY
WSSConstants.WST13.KEYTYPE_BEARER
KEY_SIZE
- static final java.lang.String KEY_SIZE
This is the key used to specify KeySize when requesting a SecretKey from STS.
Token_REQUEST
- static final java.lang.String Token_REQUEST
This is the key used to specify SAMLToken request method. Valid values include "issue", "propagation", and "issueByWSPrincipal". The default value is "issue".
CONFIRMATION_METHOD
- static final java.lang.String CONFIRMATION_METHOD
This is the key used to specify SAMLToken subject ConfirmationMethod. Valid values include "bearer", "holder-of-key", and "sender-vouches".
TRUST_CLIENT_POLICY
- static final java.lang.String TRUST_CLIENT_POLICY
This is the key used to specify WS-Trust client's policyset name
TRUST_CLIENT_BINDING
- static final java.lang.String TRUST_CLIENT_BINDING
This is the key used to specify WS-trust client's binding name.
TRUST_STORE_REF
- static final java.lang.String TRUST_STORE_REF
This is the key used to specify truststore reference for SAMLToken consuming
TRUST_STORE_PATH
- static final java.lang.String TRUST_STORE_PATH
This is the key used to specify truststore file path for SAMLToken consuming
TRUST_STORE_TYPE
- static final java.lang.String TRUST_STORE_TYPE
This is the key used to specify truststore type name for SAMLToken consuming
TRUST_STORE_PASSWORD
- static final java.lang.String TRUST_STORE_PASSWORD
This is the key used to specify truststore password for SAMLToken consuming
TRUSTED_STS_ALIAS
- static final java.lang.String TRUSTED_STS_ALIAS
This is the optional key used to specify the trusted STS certificate's alias for SAMLToken consuming
TRUST_ANY_STS_SIGNER
- static final java.lang.String TRUST_ANY_STS_SIGNER
This is the key used to specify if recipient trust any certificate that signs SAML assertion.
SIGNATURE_REQUIRED
- static final java.lang.String SIGNATURE_REQUIRED
This is the key used to specify if signature on SAML assertion is required. Valid values are "true" or "false".
TRUST_CLIENT_SOAP_VERSION
- static final java.lang.String TRUST_CLIENT_SOAP_VERSION
This is the key used to specify the SOAP version in WS-Trust request. Valid values are "1.1" or "1.2". The default value is the same SOAP version used by application client.
TRUST_CLIENT_BINDING_SCOPE
- static final java.lang.String TRUST_CLIENT_BINDING_SCOPE
This is the key used to specify binding scope for the policyset attached to WS-Trust client.
SIGN_SAMLTOKEN_WITH_STRT
- static final java.lang.String SIGN_SAMLTOKEN_WITH_STRT
This is the key used to specify if a SAMLToken should be signed with application message.
DEFAULT_SAML_EXPIRES_IN_MILLISECONDS
- static final long DEFAULT_SAML_EXPIRES_IN_MILLISECONDS
The value specify the default SAMLToken lifetime in milliseconds for a self-issued SAMLToken.
TRUST_CLIENT_WSTRUST_NAMESPACE
- static final java.lang.String TRUST_CLIENT_WSTRUST_NAMESPACE
This is the key used to specify the WS-Trust namespace in WS-Trust request
TRUST_CLIENT_WSTRUST_NAMESPACE_12
- static final java.lang.String TRUST_CLIENT_WSTRUST_NAMESPACE_12
This value is the alias for WS-Trust 1.2 namespace.
TRUST_CLIENT_WSTRUST_NAMESPACE_13
- static final java.lang.String TRUST_CLIENT_WSTRUST_NAMESPACE_13
This value is the alias for WS-Trust 1.3 namespace.
DEFAULT_TRUST_CLIENT_WSTRUST_NAMESPACE
- static final java.lang.String DEFAULT_TRUST_CLIENT_WSTRUST_NAMESPACE
This value is WS-Trust 1.3 namespace.
TRUST_CLIENT_COLLECTION_REQUEST
- static final java.lang.String TRUST_CLIENT_COLLECTION_REQUEST
This is the key used to specify if RequestSecurityTokenCollection is required in WS-Trust request. The default behavior is to use RequestSecurityToken instead of RequestSecurityTokenCollection.
DEFAULT_TRUST_CLIENT_COLLECTION_REQUEST
- static final boolean DEFAULT_TRUST_CLIENT_COLLECTION_REQUEST
This value is to indicate RequestsecurityTokenCollection is not used in WS-Trust request.
KEY_STORE_REF
- static final java.lang.String KEY_STORE_REF
This is the key used to specify keystore reference for SAMLToken consuming
KEY_STORE_PATH
- static final java.lang.String KEY_STORE_PATH
This is the key used to specify keystore file path for SAMLToken consuming
KEY_STORE_TYPE
- static final java.lang.String KEY_STORE_TYPE
This is the key used to specify keystore type name for SAMLToken consuming
KEY_STORE_PASSWORD
- static final java.lang.String KEY_STORE_PASSWORD
This is the key used to specify keystore password for SAMLToken consuming
KEY_ALIAS
- static final java.lang.String KEY_ALIAS
This is the optional key used to specify the key alias for SAMLToken consuming
KEY_NAME
- static final java.lang.String KEY_NAME
This is the optional key used to specify the key name for SAMLToken consuming
KEY_PASSWORD
- static final java.lang.String KEY_PASSWORD
This is the optional key used to specify the key password for SAMLToken consuming
USE_KEY_TYPE
- static final java.lang.String USE_KEY_TYPE
This is the optional key used to specify the Usekey type, which tells client to generate desired type of KeyInfo. The valid values are "KeyValue", "X509Certificate", "X509IssuerSerial", "X509SubjectName", "X509SKI", and "Thumbprint".
SAMLTOKEN_IN_MESSAGECONTEXT
- static final java.lang.String SAMLTOKEN_IN_MESSAGECONTEXT
The key is used to set SAMLToken to RequestContext
SAMLTOKEN_OUT_MESSAGECONTEXT
- static final java.lang.String SAMLTOKEN_OUT_MESSAGECONTEXT
The key is used to get SAMLToken from ResponseContext
CACHE_CUSHION
- static final java.lang.String CACHE_CUSHION
The key is used to specify cushion in milliseconds that a cached token should not be reused, and a new token should be issued.
CACHE_TOKEN
- static final java.lang.String CACHE_TOKEN
The key is used to specify if SAMLToken could be cached for reuse. The default behavior is to allow SAMLToken caching for reuse.
SAMLTOKEN_CLIENT_CACHE_TIMEOUT
- static final java.lang.String SAMLTOKEN_CLIENT_CACHE_TIMEOUT
The key is used to indicate how many minutes a SAML token could be maintained in client cache.
SAMLTOKEN_CLIENT_CACHE_ENTRIES
- static final java.lang.String SAMLTOKEN_CLIENT_CACHE_ENTRIES
The key is used to indicate how many cache entries could be maintained.
SERVICE_ALIAS
- static final java.lang.String SERVICE_ALIAS
The key is used to specify Certificate's alias of target service.
CLOCK_SKEW
- static final java.lang.String CLOCK_SKEW
The key is used to specify allowable clock skew.
VALIDATE_ONETIMEUSE
- static final java.lang.String VALIDATE_ONETIMEUSE
The key is used to set the flag to validate OneTimeUse assertion in SAML 2.0, or DoNotCacheCondition in SAML 1.1 The default behavior is to require OneTimeUse assertion validation.
VALIDATE_AUDIENCE
- static final java.lang.String VALIDATE_AUDIENCE
The key is used to set the flag to validate AudienceRestriction assertion The default behavior is not to require AudienceRestriction validation.
FAILOVER_TO_TOKEN_REQUEST
- static final java.lang.String FAILOVER_TO_TOKEN_REQUEST
The key is used to indicate if ws-security runtime should use attached policyset to issue a new SAMLToken if the input SAMLToken in RequestContext is invalid. The default behavior is to always issue a new one if input token is invalid.
SAMLTOKEN_SELF_ISSUER
- static final java.lang.String SAMLTOKEN_SELF_ISSUER
The key is the default SAML self-issuer name
TRUSTED_ISSUER_
- static final java.lang.String TRUSTED_ISSUER_
The key is trusted issuer name whose name is
trustedIssuer_n
where n
is an integer.
TRUSTED_ISSUER_SUBJECTDN
- static final java.lang.String TRUSTED_ISSUER_SUBJECTDN
The key is trusted issuer X509Certificate's SubjectDN name whose name is
trustedSubjectDN_n
where n
is an integer.
TOKEN_TYPE
- static final java.lang.String TOKEN_TYPE
The key specifies the requires token type to SAMLGenerateCallback
.
SAML_SELF_ISSUER_CONFIG
- static final java.lang.String SAML_SELF_ISSUER_CONFIG
The key specifies the required configuration data when generating a self-issued SAML token.
SAML_NAME_IDENTIFIER
- static final java.lang.String SAML_NAME_IDENTIFIER
The key specifies the SAML token subject name identifier when generating a self-issued SAML token.
SAML_TOKEN
- static final java.lang.String SAML_TOKEN
The key is used to access the SAMLToken
object in SAMLGenerateLoginModule
shared state.
WSS_GENERATION_CONTEXT
- static final java.lang.String WSS_GENERATION_CONTEXT
The key is used to specify the WSSGenerationContext
object used by WS-Trust client to request SAMLToken
.
WSS_CONSUMING_CONTEXT
- static final java.lang.String WSS_CONSUMING_CONTEXT
The key is used to specify the WSSConsumingContext
object used by WS-Trust client to request SAMLToken
.
SSL_CONFIG_ALIAS
- static final java.lang.String SSL_CONFIG_ALIAS
The key is used to specify the alias to an SSL configuration used by WS-Trust client to request SAMLToken
.
This key is optional. If this key is not set, the default SSL alias defined in system's SSL Configuration is used.
SAML_APPLIES_TO
- static final java.lang.String SAML_APPLIES_TO
The key is used to specify the AppliesTo for the requested SAMLToken when using WSSAPI.
SAML_ATTRIBUTES
- static final java.lang.String SAML_ATTRIBUTES
The key is used to specify an ArrayList of SAML Attributes for the requested SAMLToken when using WSSAPI.
ISSUER_URI_PROP
- static final java.lang.String ISSUER_URI_PROP
The key is used to specify issuer URL in the custom properties.
TTL_PROP
- static final java.lang.String TTL_PROP
The key is used to specify amount of time before token expires in the custom properties.
KS_REF_PROP
- static final java.lang.String KS_REF_PROP
The key is used to specify reference to centrally managed keystore in the custom properties.
KS_PATH_PROP
- static final java.lang.String KS_PATH_PROP
The key is used to specify location of the keystore file in the custom properties.
KS_TYPE_PROP
- static final java.lang.String KS_TYPE_PROP
The key is used to specify type of the keystore file in the custom properties.
KS_PW_PROP
- static final java.lang.String KS_PW_PROP
The key is used to specify password of the keystore file in the custom properties.
KEY_ALIAS_PROP
- static final java.lang.String KEY_ALIAS_PROP
The key is used to specify alias of the key in the custom properties.
KEY_NAME_PROP
- static final java.lang.String KEY_NAME_PROP
The key is used to specify name of the key in the custom properties.
KEY_PW_PROP
- static final java.lang.String KEY_PW_PROP
The key is used to specify password of the key in the custom properties.
TS_REF_PROP
- static final java.lang.String TS_REF_PROP
The key is used to specify reference to centrally managed truststore in the custom properties.
TS_PATH_PROP
- static final java.lang.String TS_PATH_PROP
The key is used to specify location of the truststore file in the custom properties.
TS_TYPE_PROP
- static final java.lang.String TS_TYPE_PROP
The key is used to specify type of the truststore file in the custom properties.
TS_PW_PROP
- static final java.lang.String TS_PW_PROP
The key is used to specify password of the truststore file in the custom properties.
REQUIRE_DKT
- static final java.lang.String REQUIRE_DKT
The key is used to specify an option for the requested SAMLToken to be used with Derived Keys when using WSSAPI.
USE_IMPLIED_DKT
- static final java.lang.String USE_IMPLIED_DKT
The key is used to specify an option for the requested SAMLToken to be used with Implied Derived Keys when using WSSAPI.
DKT_KEY_LENGTH
- static final java.lang.String DKT_KEY_LENGTH
The key is used to specify derived key length in bytes for the requested SAMLToken to be used with Derived Keys when using WSSAPI.
DKT_NONCE_LENGTH
- static final java.lang.String DKT_NONCE_LENGTH
The key is used to specify derived nonce length in bytes for the requested SAMLToken to be used with Derived Keys when using WSSAPI.
CLIENT_LABEL
- static final java.lang.String CLIENT_LABEL
The key is used to specify client label for the requested SAMLToken to be used with Derived Keys when using WSSAPI.
SERVICE_LABEL
- static final java.lang.String SERVICE_LABEL
The key is used to specify service label for the requested SAMLToken to be used with Derived Keys when using WSSAPI.
includeRealmName
- static final java.lang.String includeRealmName
The key is used to set the flag to assert WebSphere security domain's realm as a SAML Attribute in a self generated SAML token.
includeSecurityName
- static final java.lang.String includeSecurityName
The key is used to set the flag to assert the SecurityName from WebSphere security subject as a SAML Attribute in a self generated SAML token.
includeUniqueSecurityName
- static final java.lang.String includeUniqueSecurityName
The key is used to set the flag to assert the UniqueSecurityName from WebSphere security subject as a SAML Attribute in a self generated SAML token.
includeCredentialToken
- static final java.lang.String includeCredentialToken
The key is used to set the flag to assert the CredentialToken from WebSphere security subject as a SAML Attribute in a self generated SAML token.
includeOID
- static final java.lang.String includeOID
The key is used to set the flag to assert the OID from WebSphere security subject as a SAML Attribute in a self generated SAML token.
includeExpiration
- static final java.lang.String includeExpiration
The key is used to set the flag to assert the Expiration time from WebSphere security subject as a SAML Attribute in a self generated SAML token.
includePrimaryGroupId
- static final java.lang.String includePrimaryGroupId
The key is used to set the flag to assert the PrimaryGroupId from WebSphere security subject as a SAML Attribute in a self generated SAML token.
includeGroupIds
- static final java.lang.String includeGroupIds
The key is used to set the flag to assert the GroupIds from WebSphere security subject as a SAML Attribute in a self generated SAML token.
includeHostName
- static final java.lang.String includeHostName
The key is used to set the flag to assert the HostName from WebSphere security subject as a SAML Attribute in a self generated SAML token.
useUniqueSecurityName
- static final java.lang.String useUniqueSecurityName
The key is used to set the flag to assert the UniqueSecurityName from WebSphere security subject as SAML NameID or NameIdentifier in a self generated SAML token.
BEARER_KEYTYPE_ALIAS
- static final java.lang.String BEARER_KEYTYPE_ALIAS
This value is the alias for the Bearer keytype.
SYMMETRICKEY_KEYTYPE_ALIAS
- static final java.lang.String SYMMETRICKEY_KEYTYPE_ALIAS
This value is the alias for the SymmetricKey keytype.
PUBLICKEY_KEYTYPE_ALIAS
- static final java.lang.String PUBLICKEY_KEYTYPE_ALIAS
This value is the alias for the PublicKey keytype.
X509PATH
- static final java.lang.String X509PATH
The key is intermediate X509Certificate file path name file path name,.
CRLPATH
- static final java.lang.String CRLPATH
The key is revoked certificate list file path name whose name.
X509PATH_PREFIX
- static final java.lang.String X509PATH_PREFIX
The key is intermediate X509Certificate file path name file path name whose name is
X509PATH_n
where n
is an integer.
CRLPATH_PREFIX
- static final java.lang.String CRLPATH_PREFIX
The key is revoked certificate list file path name whose name is
CRLPATH_n
where n
is an integer.
SIGNATURE_CACHE_TIMEOUT
- static final java.lang.String SIGNATURE_CACHE_TIMEOUT
The key is used to indicate how many minutes a SAML token would be cached to to avoid repeating signature validation.
SIGNATURE_CACHE_ENTRIES
- static final java.lang.String SIGNATURE_CACHE_ENTRIES
The key is used to indicate how many signature cache entries could be maintained.
TRUST_SERVICE_CACHE_TIMEOUT
- static final java.lang.String TRUST_SERVICE_CACHE_TIMEOUT
The key is used to indicate how many minutes sts service instance can be kept in client side cache.
TRUST_SERVICE_CACHE_ENTRIES
- static final java.lang.String TRUST_SERVICE_CACHE_ENTRIES
The key is used to indicate how many sts service instance cache entries could be maintained.
This is the key used to specify the SecurityTokenService address.