All Classes Interface Summary Class Summary Exception Summary
Class |
Description |
AbstractSecurityContext |
This base class defines the methods that Security Context should exhibit.
|
AnonCredential |
This class is part of the interface between J2EE RI and security interceptors.
|
AppCNonceCacheMap |
|
AppservAccessController |
This class provides an optimization for some methods in java.security.AccessController.
|
AssertedCredentials |
|
AuditManager |
Defines the behavior for audit manager implementations.
|
AuthenticationHandler |
This interface is used by the Authentication Service to have the Principal authenticated by the realm.
|
AuthenticationStatus |
This interface stores the status of the authentication.
|
AuthenticationStatusImpl |
This class implements an AuthenticationStatus object.
|
BadRealmException |
Exception thrown when a Realm is found to be corrupted for some reason.
|
BadUserException |
Exception thrown when a User is found to be corrupted for some reason.
|
BaseAuditManager<T extends BaseAuditModule> |
Basic implementation of audit manager.
|
BaseAuditModule |
Base class that should be extended by all classes that wish to provide their own Audit support.
|
BaseCertificateLoginModule |
Abstract base class for certificate-based login modules.
|
BasePasswordLoginModule |
Abstract base class for password-based login modules.
|
BaseProgrammaticLoginPermission |
Permission for using programmatic login.
|
BaseRealm |
Parent class for iAS Realm classes.
|
CertificateRealm |
Realm wrapper for supporting certificate authentication.
|
CertificateRealm.AppContextCallback |
A LoginModule for CertificateRealm can instantiate and pass a AppContextCallback to
handle method of the passed CallbackHandler to retrieve the application name information.
|
ChangeAdminPassword |
Change Admin Password Command
Usage: change-admin-password [--user admin_user] [--terse=false] [--echo=false] [--host localhost] [--port 4848|4849]
[--secure | -s]
|
ClientCertificateLoginModule |
This LoginModule authenticates users with X509 certificates.
|
ClientPasswordLoginModule |
This sample LoginModule authenticates users with a password.
|
ClientSecurityContext |
This class represents the security context on the client side.
|
CLIUtil |
|
CNonceCacheFactory |
|
Constants |
|
ContainerSecurityLifecycle |
|
CORBAObjectPermission |
This object represents the permission to invoke on a set of CORBA objects that are not EJBs.
|
CreateAuditModule |
Create Audit Module Command
Usage: create-audit-module --classname classnme [--terse=false] [--echo=false] [--interactive=true] [--host localhost] [--port
4848|4849] [--secure | -s] [--user admin_user] [--passwordfile file_name] [--property (name=value) [:name=value]*] [--target
target(Default server)] audit_module_name
domain.xml element example
|
CreateAuthRealm |
CLI command to create JACC Provider
Usage: create-auth-realm --classname realm_class [--terse=false] [--interactive=true] [--host localhost] [--port 4848|4849]
[--secure | -s] [--user admin_user] [--passwordfile file_name] [--property (name=value)[:name=value]*] [--echo=false]
[--target target(Default server)] auth_realm_name
domain.xml element example
Or
|
CreateFileUser |
Create File User Command Usage: create-file-user [--terse=false] [--echo=false] [--interactive=true] [--host localhost]
[--port 4848|4849] [--secure | -s] [--user admin_user] [--userpassword admin_passwd] [--passwordfile file_name] [--groups
user_groups[:user_groups]*] [--authrealmname authrealm_name] [--target target(Default server)] username
|
CreateJACCProvider |
Create Jacc Provider Command
Usage: create-jacc-provider --policyconfigfactoryclass pc_factory_class --policyproviderclass pol_provider_class [--help]
[--user admin_user] [--passwordfile file_name] [ --property (name=value)[:name=value]*] [ --target target_name]
jacc_provider_name
domain.xml element example
|
CreateMessageSecurityProvider |
Create Message Security Provider Command
Usage: create-message-security-provider [--terse=false] [--echo=false] [--interactive=true] [--host localhost] [--port
4848|4849] [--secure | -s] [--user admin_user] [--passwordfile file_name] [--target target(Default server)] [--layer
message_layer=SOAP] [--providertype provider_type] [--requestauthsource request_auth_source] [--requestauthrecipient
request_auth_recipient] [--responseauthsource response_auth_source] [--responseauthrecipient response_auth_recipient]
[--isdefaultprovider] [--property (name=value)[:name=value]*] --classname provider_class provider_name
domain.xml element example
|
CreatePasswordAlias |
Create Password Alias Command
Usage: create-password-alias [--terse=false] [--echo=false] [--interactive=true] [--host localhost] [--port 4848|4849]
[--secure | -s] [--user admin_user] [--passwordfile file_name] aliasname
Result of the command is that: //config/domain-passwords file gets appended with the entry of the
form: aliasname=
A user can use this aliased password now in setting passwords in domain.xml.
|
CustomSocketFactory |
Custom socket factory for ldaps (SSL).
|
DeleteAuditModule |
Delete Audit Module Command
Usage: delete-audit-module [--terse=false] [--echo=false] [--interactive=true] [--host localhost] [--port 4848|4849] [--secure
| -s] [--user admin_user] [--passwordfile file_name] [--target target(Default server)] auth_realm_name
|
DeleteAuthRealm |
Delete Auth Realm Command
Usage: delete-auth-realm [--terse=false] [--echo=false] [--interactive=true] [--host localhost] [--port 4848|4849] [--secure |
-s] [--user admin_user] [--passwordfile file_name] [--target target(Default server)] auth_realm_name
|
DeleteFileUser |
Delete File User Command Usage: delete-file-user [--terse=false] [--echo=false] [--interactive=true] [--host localhost]
[--port 4848|4849] [--secure | -s] [--user admin_user] [--passwordfile file_name] [--authrealmname authrealm_name] [--target
target(Default server)] username
|
DeleteJaccProvider |
Usage: delete-jacc-provider [--help] [--user admin_user] [--passwordfile file_name] [ --target target_name] jacc_provider_name
|
DeleteMessageSecurityProvider |
Delete Message Security Provider Command
Usage: delete-message-security-provider --layer message_layer [--terse=false] [--echo=false] [--interactive=true] [--host
localhost] [--port 4848|4849] [--secure | -s] [--user admin_user] [--passwordfile file_name] [--target target(Defaultserver)]
provider_name
|
DeletePasswordAlias |
Delete Password Alias Command
Usage: delete-password-alias [--terse=false] [--echo=false] [--interactive=true] [--host localhost] [--port 4848|4849]
[--secure | -s] [--user admin_user] [--passwordfile file_name] aliasname
Result of the command is that: The entry of the form: aliasname= in
//config/domain-passwords file is removed
domain.xml example entry is:
DigestAlgorithmParameter |
Interface to Digest algorithm parameters
|
|
DigestCredentials |
|
DisableSecureAdminCommand |
Adjusts the DAS configuration to turn off secure admin, as if by executing these commands:
|
DistinguishedPrincipalCredential |
|
EjbSecurityPolicyProbeProvider |
|
EmbeddedSecurity |
Utility contact to copy the security related config files from the passed non-embedded instanceDir to the embedded server
instance's config.
|
EmbeddedSecurityLifeCycle |
|
EmbeddedSecurityUtil |
Utility file to copy the security related config files from the passed non-embedded instanceDir to the embedded server
instance's config.
|
EnableSecureAdminCommand |
Records that secure admin is to be used and adjusts each admin listener configuration in the domain to use secure admin.
|
FileLoginModule |
File realm login module.
|
FileRealm |
Realm wrapper for supporting file password authentication.
|
FileRealmUser |
Represents a FileRealm user.
|
GlassfishServerSocketFactory |
|
GlassfishSSLImpl |
|
GlassfishSSLSupport |
|
GroupMapper |
|
GroupNotEmptyException |
Exception thrown when an operation is requested to remove a group that has a list of users.
|
GroupPrincipal |
A group of principals.
|
GSSUPName |
This class implements the GSSAPI exported name functionality as required by CSIV2.
|
GSSUtilsContract |
|
GUIErrorDialog |
|
GUILoginDialog |
An implementation of a LoginDialog that presents a swing based GUI for querying username and password.
|
IASRealm |
Parent class for iAS Realm classes.
|
IASRealm |
Parent class for iAS Realm classes.
|
IASSecurityException |
General exception class for iAS security failures.
|
InvalidOperationException |
Exception thrown when an operation is invoked on a realm that does not support it.
|
IRealmManager |
This is an remote interface provided to the RealmManager This allows the realms to be updated while the server is running.
|
J2EEKeyManager |
This a J2EE specific Key Manager class that is used to select user certificates for SSL client authentication.
|
Key |
Represents the Key(username+realmname+passwd) to be used in the Digest calculation.
|
LDAPLoginModule |
iAS JAAS LoginModule for an LDAP Realm.
|
LDAPRealm |
Realm wrapper for supporting LDAP authentication.
|
ListAuditModule |
List Audit Modules Command Usage: list-audit-modules [--terse=false] [--echo=false] [--interactive=true] [--host localhost]
[--port 4848|4849] [--secure | -s] [--user admin_user] [--passwordfile file_name] [target(Default server)]
|
ListAuthRealm |
List Auth Realms Command Usage: list-auth-realms [--terse=false] [--echo=false] [--interactive=true] [--host localhost]
[--port 4848|4849] [--secure | -s] [--user admin_user] [--passwordfile file_name] [target(Default server)]
|
ListFileGroup |
List File GroupsCommand Usage: list-file-groups [--terse={true|false}][ --echo={true|false} ] [ --interactive={true|false} ]
[--host host] [--port port] [--secure| -s ] [--user admin_user] [--passwordfile filename] [--help] [--name username]
[--authrealmname auth_realm_name] [ target]
|
ListFileUser |
List File Users Command Usage: list-file-users [--terse=false] [--echo=false] [--interactive=true] [--host localhost] [--port
4848|4849] [--secure | -s] [--user admin_user] [--passwordfile file_name] [--authrealmname authrealm_name] [target(Default
server)]
|
ListJaccProviders |
Usage: list-jacc-providers [--help] [--user admin_user] [--passwordfile file_name] [target(Default server)]
|
ListMessageSecurityProvider |
List Message Security Providers Command
Usage: list-message-security-providers [--terse=false] [--echo=false] [--interactive=true] [--host localhost] [--port
4848|4849] [--secure | -s] [--user admin_user] [--passwordfile file_name] [--layer message_layer] [target(Default server)]
|
ListPasswordAlias |
List Password Aliases Command
Usage: list-password-aliases [--terse=false] [--echo=false] [--interactive=true] [--host localhost] [--port 4848|4849]
[--secure | -s] [--user admin_user] [--passwordfile file_name]
Result of the command is that: //config/domain-passwords file gets appended with the entry of the
form: aliasname=
A user can use this aliased password now in setting passwords in domin.xml.
|
ListSupportedCipherSuites |
author - Nithya Subramanian
Usage: list-supported-cipher-suites [--help] [--user admin_user] [--passwordfile file_name] [target_name(default server)]
|
LoginCallbackHandler |
This is the default callback handler provided by the application client container.
|
LoginContext |
This class is kept for CTS.
|
LoginContextDriver |
This class is invoked implicitly by the server to log in the user information that was sent on the wire by the client.
|
LoginDialog |
LoginManager needs implementations of this class for accessing the username and passwords.
|
LoginException |
LoginException is thrown by the LoginContext class whenever the following happens:
If the client is unable to authenticate successfully with the
|
NestedDigestAlgoParam |
Interface representing nested DigestAlgorithm parameter values
|
NoSuchRealmException |
Exception thrown when an operation is requested on a realm which does not exist.
|
NoSuchUserException |
Exception thrown when an operation is requested on a user which does not exist.
|
Password |
represents plain text password and pre hashed(username+realmname+password) password.
|
PasswordCredential |
This class holds the user password for the shared password realm and the realm name.
|
PasswordLoginModule |
Provided for backward compatibility with SunOne 7.0 Newer implementations should extend
com.sun.appserv.security.BasePasswordLoginModule
|
PasswordLoginModule |
Deprecated. |
PolicyLoader |
Loads the Default Policy File into the system.
|
PrincipalGroupFactory |
Factory for Group and Principal instances.
|
PrincipalMapper |
Enables formatting of principal retrieved from message eg: P-Asserted-Identity values.
|
Privilege |
This remote interface enables the deployment tool to query the details of the Privilege.
|
PrivilegeImpl |
This method provides an implementation a Privilege
|
Realm |
javadoc
|
RealmConfig |
RealmConfig usable by standalone : Admin CLI for creating Realms It has a subset of functionality defined in
com.sun.enterprise.security.RealmConfig
|
RealmsManager |
|
RealmsProbeProvider |
|
RealmStatsProvider |
|
RemoteObject |
Just a Base class to make exporting remote objects a bit easier...
|
SecureAdminCommand |
Provides common behavior for the enable and disable secure admin commands.
|
SecureAdminConfigMonitor |
Tracks changes to secure admin configuration, basically so it can report restart-required.
|
SecureAdminConfigUpgrade |
Upgrades older config to current.
|
SecureAdminHelperImpl |
Various utility methods which support secure admin operations.
|
SecureAdminStartupCheck |
Starting in GlassFish 3.1.2, the DAS uses SSL to send admin requests to instances regardless of whether the user has enabled
secure admin.
|
SecureAdminUpgradeHelper |
Common logic for formal upgrade (i.e., start-domain --upgrade) and silent upgrade (starting a newer version of GlassFish using
an older version's domain.xml).
|
SecurityConfigListener |
|
SecurityConstants |
|
SecurityContext |
A subject is used a container for passing the security context information in the service context field.
|
SecurityContext |
This class that extends AbstractSecurityContext that gets stored in Thread Local Storage.
|
SecurityContextProxy |
acts as a security context proxy
|
SecurityLifecycle |
This class extends default implementation of ServerLifecycle interface.
|
SecurityLoggerInfo |
|
SecurityManager |
This interface is used by the Container to manage access to EJBs.
|
SecurityManagerFactory |
|
SecurityRoleMapperFactoryGen |
|
SecurityServicesUtil |
|
SecurityUpgradeService |
The only thing that needs to added Extra for SecurityService migration is the addition of the new JACC provider.
|
ServerLoginCallbackHandler |
This is the default callback handler provided by the application client container.
|
SolarisLoginModule |
Solaris realm login module.
|
SolarisRealm |
Realm wrapper for supporting Solaris authentication.
|
SSLUtils |
Handy class containing static functions.
|
TextLoginDialog |
This implementation of LoginDialog If these are not set, then it queries the user in the command window.
|
TimestampValidator |
validate Timestamp received in messages.
|
TrustHandler |
Enables developers to provide custom implementation to enable sip containers to determine if a network entity can be trusted.
|
UpdateFileUser |
Update File User Command
Usage: update-file-user [--terse=false] [--echo=false] [--interactive=true] [--host localhost] [--port 4848|4849] [--secure |
-s] [--user admin_user] [--passwordfile file_name] [--userpassword admin_passwd] [--groups user_groups[:user_groups]*]
[--authrealmname authrealm_name] [--target target(Default server)] username
|
UpdatePasswordAlias |
Update Password Alias Command
Usage: update-password-alias [--terse=false] [--echo=false] [--interactive=true] [--host localhost] [--port 4848|4849]
[--secure | -s] [--user admin_user] [--passwordfile file_name] aliasname
Result of the command is that: the entry of the form: aliasname= in
//config/domain-passwords file gets updated with the new alias password
domain.xml example entry is:
User |
All users are principals ...
|
|
UsernamePasswordStore |
This class is used to share information between either of the following scenarios 1.
|
Util |
|
WebSecurityDeployerProbeProvider |
|
WebSecurityDeployerStatsProvider |
|
X509CertificateCredential |
This class holds the user certificate for the certificate realm and the realm name.
|