AuthenticationTokenFilter |
processes diferent types of tokens like Username,X509,IssuedToken...
|
DumpFilter |
Dump a SOAP message for debugging.
|
EncryptionFilter |
Performs encryption or decryption
Message ANNOTATION is performed as follows:
if (complete policy resolution should happen)
make DynamicPolicyCallback
else
// assumes feature binding component is statically specified -
// including targets and canonicalization algorithm
if (X509CertificateBinding)
resolve certificate - make EncryptionKeyCallback
else
if (SymmetricKeyBinding)
resolve symmetrick key - make SymmetricKeyCallback
else
throw Exception
call EncryptionProcessor
Message (decryption) VALIDATION is performed as follows:
if (ADHOC processing mode)
if (complete policy resolution should happen)
make DynamicPolicyCallback
call DecryptionProcessor
else
if (POSTHOC or DEFAULT mode)
call DecryptionProcessor
|
ExportSamlAssertionFilter |
|
ImportSamlAssertionFilter |
|
SignatureConfirmationFilter |
Process SignatureConfirmation: Add SignatureConfirmation or verify
received SignatureConfirmation
|
SignatureFilter |
Performs signature or verifies signature
Message ANNOTATION is performed as follows:
if (complete policy resolution should happen)
make DynamicPolicyCallback
else
// assumes feature binding component is statically specified -
// including targets and canonicalization algorithm
if (X509CertificateBinding)
resolve certificate - make SignatureKeyCallback
if (X509CertificateBinding has associated SymmetricKeyBinding)
resolve symmetric key - make SymmetricKeyCallback
else
if (X509CertificateBinding has no associated bindings ||
X509CertificateBinding has associated PrivateKeyBinding)
create PrivateKeyBinding if req'd with private key associated with the certificate
else
throw Exception
else
throw Exception
call SignatureProcessor
Message (signature verification) VALIDATION is performed as follows:
if (ADHOC processing mode)
if (complete policy resolution should happen)
make DynamicPolicyCallback
call VerificationProcessor
else
if (POSTHOC or DEFAULT mode)
call VerificationProcessor
|
TeeFilter |
Copies the SOAP message into an OutputStream using an optional stylesheet
to format the message.
|
TimestampFilter |
Processes export and import of wsu:Timestamp
Message ANNOTATION is performed as follows:
if (policy resolution should happen)
// make-DPC flag turned on
resolve TimestampPolicy
write wsu:Timestamp to header
Message VALIDATION is performed as follows:
if (ADHOC processing mode)
if (policy resolution should happen)
// make-DPC flag turned on
resolve TimestampPolicy
locate wsu:Timestamp element in the header
throw Exception if more than one found
validate wsu:Timestamp (delegate to SecurityEnvironment Implementation)
else
import wsu:Timestamp element
if (POSTHOC processing mode)
construct Timestamp policy and set it on FPC
else
if (DEFAULT processing mode)
validate wsu:Timestamp
|
UsernameTokenDataResolver |
|