All Classes Interface Summary Class Summary Enum Summary Exception Summary Error Summary Annotation Types Summary
| Class |
Description |
| AbstractAuditProvider |
Abstract class of Audit Providers.
|
| AbstractAuthorizationModule |
Abstraction of Authorization Module
|
| AbstractCallbackHandler |
Base class for data store driven CallbackHandler
|
| AbstractEJBAuthorizationHelper |
EJB Authorization Helper
|
| AbstractIdentityTrustModule |
Abstract IdentityTrustModule that pulls in common stuff
|
| AbstractJACCModuleDelegate |
Common methods for the JACC layer
|
| AbstractJavaEEHelper |
Abstract Java EE Security Helper
that does both programmatic as well as
regular security
|
| AbstractPasswordCredentialLoginModule |
A base login module that handles PasswordCredentials
|
| AbstractPrincipalMappingProvider |
Abstract class for Principal mapping providers
Group Principal (java.security.acl.Group) is not supported.
|
| AbstractRolesMappingProvider |
Abstract class for Role mapping providers
|
| AbstractServerAuthModule |
Superclass of all ServerAuthModules
Can be a container for common functionality and custom methods
|
| AbstractServerLoginModule |
This class implements the common functionality required for a JAAS
server side LoginModule and implements the JBossSX standard Subject usage
pattern of storing identities and roles.
|
| AbstractWebAuthorizationHelper |
Abstract Web Authorization Helper
|
| ACL |
This interface represents an Access Control List (ACL), a data structure used to protect access to resources.
|
| AclConfigParser |
Stax based Parser to parse the acl configuration
|
| ACLEntry |
This interface represents an entry in the Access Control List.
|
| ACLEntryImpl |
This class represents an entry in the Access Control List (ACL), and associates a permission to an identity.
|
| ACLImpl |
Simple ACL implementation that keeps the entries in a Map whose keys are the identities of the entries, to provide
fast access.
|
| ACLInfo |
Holder for ACL configuration
|
| ACLPermission |
A Permission represents privileges held by an Identity, and is used to
grant or deny access to a Resource.
|
| ACLPersistenceStrategy |
This interface defines the methods that must be implemented by classes that manage the persistence of
ACLs.
|
| ACLProvider |
An ACLProvider is responsible for the management of the ACLs associated to the
resources being protected.
|
| ACLProviderEntry |
Configuration Entry for ACL Providers
|
| ACLProviderImpl |
This class is the standard ACLProvider implementation.
|
| ACLRegistration |
Interface to register ACLs.
|
| ACLResourceFactory |
This interface provides a factory for Resources.
|
| AllDenyAuthorizationModule |
Authorization Module that always denies an Authorization request
|
| AllFailureServerAuthModule |
Server Auth Module that sends a AuthStatus.FAILURE
|
| AllPermitAuthorizationModule |
Noop Authorization Module that lets all authenticated users
|
| AllSuccessServerAuthModule |
ServerAuthModule that returns AuthStatus.SUCCESS
|
| AltClientLoginModule |
A simple implementation of LoginModule for use by JBoss clients for
the establishment of the caller identity and credentials.
|
| AlwaysDenyTrustModule |
Trust Module that always returns DENY
|
| AlwaysNotApplicableTrustModule |
Trust Module that always returns NotApplicable
|
| AlwaysPermitTrustModule |
Trust Module that always does a PERMIT
|
| AnonLoginModule |
A simple login module that simply allows for the specification of the
identity of unauthenticated users via the unauthenticatedIdentity property.
|
| AnybodyPrincipal |
An implementation of Principal and Comparable that represents any role.
|
| AnyCertVerifier |
A X509CertificateVerifier that accepts any cert.
|
| AppCallbackHandler |
JBAS-3109:AppCallbackHandler as the default CallbackHandler in the
security module
An implementation of the JAAS CallbackHandler interface that
handles NameCallbacks, PasswordCallback, TextInputCallback
and the JBoss ByteArrayCallback.
|
| ApplicationPolicy |
Application Policy Information Holder - Authentication - Authorization - Audit - Mapping
|
| ApplicationPolicyParser |
Stax based Application Policy Parser
|
| ApplicationPolicyRegistration |
Registration of Application Policies
|
| AppPolicy |
A combination of keystore, authentication and authorization entries.
|
| Attribute |
Enum for the security domain configuration attributes
|
| Attribute<T> |
Represents an attribute of the identity
|
| Attribute.TYPE |
|
| AttributeFactory |
Creates Attributes
|
| AttributeMappingInfo |
Mapping Info for Attributes
|
| AuditConfigParser |
Stax based audit configuration Parser
|
| AuditContext |
Context for Audit Purposes that manages a set of providers
|
| AuditEvent |
Holder of audit information
|
| AuditInfo |
Information on Audit Configuration in the ApplicationPolicy
|
| AuditLevel |
Define the Audit Levels of Severity
|
| AuditManager |
An interface that defines the Security Audit Service
|
| AuditProvider |
Audit Provider that can log audit events to an external
sink
|
| AuditProviderEntry |
An entry representing an Audit Provider in the configuration
|
| Authentication |
Annotation to provide configuration for authentication
|
| AuthenticationConfigParser |
Stax based JAAS authentication configuration Parser
|
| AuthenticationInfo |
The login module configuration information.
|
| AuthenticationInfo |
The login module configuration information.
|
| AuthenticationJASPIConfigParser |
Stax based JASPI configuration Parser
|
| AuthenticationManager |
The AuthenticationManager is responsible for validating credentials
associated with principals.
|
| AuthModuleEntry |
Represents a configuration for a single auth module
along the lines of AppConfigurationEntry for a JAAS LoginModule
|
| Authorization |
Annotation indicating Authorization is required
|
| AuthorizationConfigParser |
Stax based authorization configuration Parser
|
| AuthorizationContext |
JBAS-3374: Authorization Framework for Policy Decision Modules
For information on the behavior of the Authorization Modules,
For Authorization Modules behavior(Required, Requisite, Sufficient and Optional)
please refer to the javadoc for @see javax.security.auth.login.Configuration
The AuthorizationContext derives the AuthorizationInfo(configuration for the modules)
in the following way:
a) If there has been an injection of ApplicationPolicy, then it will be used.
|
| AuthorizationException |
Exception for the Authorization Framework
|
| AuthorizationInfo |
|
| AuthorizationInfo |
Holder for Authorization configuration
|
| AuthorizationManager |
Generalized Authorization Manager Interface.
|
| AuthorizationManagerFactory |
Factory to create instances of AuthorizationManager
|
| AuthorizationModule |
Represents a Policy Decision Module that is used by the
Authorization Context
|
| AuthorizationModuleDelegate |
Delegate for Authorization Module
|
| AuthorizationModuleEntry |
Represents configuration for a single Policy Decision Module
|
| Base64Encoder |
BASE64 encoder implementation.
|
| Base64Utils |
Base64 encoding/decoding utilities.
|
| BaseAuthenticationInfo |
Base for AuthenticationInfo(JAAS) and JASPIAuthenticationInfo(JSR-196)
|
| BaseCertLoginModule |
Base Login Module that uses X509Certificates as credentials for
authentication.
|
| BaseSecurityInfo<T> |
Base Class of the security info
|
| BaseSecurityManager |
Interface that defines common behavior among
the various Security Managers
|
| BasicACLPermission |
This enum defines the basic ACL permissions.
|
| BitMaskPermission |
This interface defines the methods that must be implemented by bitmask-based permissions.
|
| ByteArrayCallback |
An implementation of Callback that obtains a binary parameter as a byte[].
|
| CacheableManager<T,K> |
An interface for managers that allow cached values.
|
| CallbackHandlerPolicyContextHandler |
A PolicyContextHandler implementation that allows a dynamic CallbackHandler to
be associated with the current context for use with authentication.
|
| CallerIdentityLoginModule |
A simple login module that simply associates the principal making the
connection request with the actual EIS connection requirements.
|
| CertificateIdentity |
Represents an Identity using X509 certificates
|
| CertificateIdentityFactory |
Factory to create Certificate Identities
|
| CertificatePrincipal |
An interface for converting an X509 cert to a Principal
|
| CertRolesLoginModule |
Certificate Login Module that uses a properties file to store role information.
|
| ClassLoaderLocator |
An interface to locate a ClassLoader
The primary use of this interface is in the JBoss Application Server,
which needs to inject a module class loader for custom login modules etc
|
| ClassLoaderLocatorFactory |
Simple factory for ClassLoaderLocator
|
| ClientLoginModule |
A simple implementation of LoginModule for use by JBoss clients for
the establishment of the caller identity and credentials.
|
| CompositeACLPermission |
This class represents a composite permission - a permission that contains one or more basic permissions.
|
| ConfigurationFileNullException |
Exception indicating that the configuration file passed is null
|
| ConfigurationParsingException |
Indicates parsing exception during configuration parsing
|
| ConfigurationStreamNullException |
Exception indicating the Configuration java.io.InputStream is null
|
| ConfiguredIdentityLoginModule |
A simple login module that simply associates the principal specified
in the module options with any subject authenticated against the module.
|
| ConfigUtil |
Utility methods for parsing the XMlLoginConfig elements into
AuthenticationInfo instances.
|
| ConsoleInputHandler |
An implementation of CallbackHandler that obtains the values for
NameCallback and PasswordCallback from the console.
|
| ConsolePassword |
Read a password from the System.in stream.
|
| ContextPolicy |
The permissions for a JACC context id.
|
| ControlFlag |
Control Flag for module entries
|
| CredentialIdentity<T> |
An identity with credential
|
| CredentialIdentityFactory |
Factory to create Credential Identity
|
| CryptoUtil |
Various security related utilities like MessageDigest
factories, SecureRandom access, password hashing.
|
| DatabaseCallbackHandler |
A CallbackHandler that uses a DB.
|
| DatabaseCertLoginModule |
A Certificate Login Module that gets its role information from a database.
|
| DatabaseRolesMappingProvider |
A MappingProvider that reads roles from a database.
|
| DatabaseServerLoginModule |
A JDBC based login module that supports authentication and role mapping.
|
| DefaultAttributeMappingProvider |
Generates an attribute array from the passed options
|
| DefaultLoginConfig |
Deprecated. |
| DefaultSecurityManagement |
The Default Security Management class that instantiates the standard
Security Managers (Authentication, Authorization, Audit, Mapping,IdentityTrust etc)
|
| DelegatingAuthorizationModule |
Default Authorization Module that delegates the decision making to
the configured delegates (configurable via a module option)
|
| DelegatingPolicy |
A JAAC Policy provider implementation that delegates any non-JACC permissions
to the java.security.Policy either passed in to the ctor, or the pre existing
Policy.getPolicy value.
|
| DelegatingServerAuthModule |
Server Auth Module that delegates work to a login context
|
| DeploymentRolesMappingProvider |
A Role Mapping Module that takes into consideration a principal
to roles mapping that can be done in the assembly descriptor of
jboss.xml, jboss-web.xml and jboss-app.xml
|
| DeploymentRoleToRolesMappingProvider |
A Role to Roles Mapping Module that takes into consideration a principal
to roles mapping that can be done in the assembly descriptor of
jboss.xml, jboss-web.xml and jboss-app.xml.
|
| DigestCallback |
An interface that can be used to augment the behavior of a digest hash.
|
| DigestCallbackHandler |
A CallbackHandler that is used to pass the RFC2617 parameters to the login module DigestCallback.
|
| DisabledLoginModule |
A login module that always fails authentication.
|
| DOMUtils |
DOM2 utilites
|
| EJBAuthenticationHelper |
Helper Class for EJB Authentication
|
| EJBAuthorizationHelper |
Default implementation of the EJBAuthorizationHelper
|
| EJBJACCPolicyModuleDelegate |
Authorization Module delegate that deals with the authorization decisions
for the EJB Layer
|
| EJBPolicyModuleDelegate |
Authorization Module delegate that deals with the authorization decisions
for the EJB Layer (Default Behavior)
|
| EJBResource |
Represents an EJB Resource
|
| EJBXACMLPolicyModuleDelegate |
Authorization Module Delegate that deals with the authorization decisions
for the EJB Layer
|
| EJBXACMLUtil |
Utility class for the XACML Integration for the EJB Layer
|
| Element |
Enum for the elements of a security domain configuration
|
| EncryptionUtil |
Encryption/Decryption utility
|
| EntitlementEntry |
This class represents a standard entry in the collection returned by the ACLProvider.getEntitlements method.
|
| EntitlementHolder<T> |
Interface representing holder of objects
that are entitled as part of an authorization
process in instance based security
|
| ExternalPasswordCache |
External command password cache.
|
| FilePassword |
Read a password in opaque form to a file for use with the FilePassword
accessor in conjunction with the JaasSecurityDomain
{CLASS}org.jboss.security.plugins.FilePassword:password-file
format of the KeyStorePass attribute.
|
| FilePersistenceStrategy |
An implementation of PersistenceStrategy that serializes the
Identity to a file.
|
| GeneralizedAuthenticationManager |
Marker interface that combines the legacy AuthenticationManager
and the new JASPI (JSR-196) ServerAuthContext interfaces
|
| GenericMessageInfo |
Generic MessageInfo
|
| HandlerContract |
|
| HostThreadLocal |
Supports the RemoteHostTrustLoginModule and RemoteHostValve, holds the remote host in a thread local.
|
| HOTP |
Based on IETF RFC 4226 (http://tools.ietf.org/html/rfc4226)
Code is derived from OATH HOTP algorithm
|
| HOTPUtil |
Utility class for HOTP
|
| HttpServletServerAuthModule |
Server Auth Module capable of handling Http Servlet Authentication
|
| IAppPolicyStore |
An interface describing an AppPolicy security store.
|
| Identity |
Identity of an entity (user, process etc)
|
| IdentityFactory |
IdentityFactory to create Identities
|
| IdentityFactory |
Factory to create customized principal and group
instances
|
| IdentityLoginModule |
A simple login module that simply associates the principal specified
in the module options with any subject authenticated against the module.
|
| IdentityTrustConfigParser |
Stax based identity trust configuration Parser
|
| IdentityTrustContext |
Identity Trust Context that encloses multiple
IdentityTrustModules making trust decisions
|
| IdentityTrustException |
Identity Trust Exception
|
| IdentityTrustInfo |
Identity Trust Info
|
| IdentityTrustManager |
Interface representing the trust manager
for determining Identity
|
| IdentityTrustManager.TrustDecision |
|
| IdentityTrustModule |
IdentityTrustModule that is capable of making trust decisions
|
| IdentityTrustModuleEntry |
An entry representing an Identity Trust Module in the configuration
|
| IdentityType |
Identity Type
|
| IllegalTransitionException |
An exception thrown when an invalid transition is attempted from a state.
|
| InputValidationException |
The InputValidationException is thrown by the InputValidators to indicate that information supplied
by clients (e.g.
|
| InputValidator |
Interface that must be implemented by login module input validators.
|
| ISecurityManagement |
Interface to obtain the various managers for security
like authentication, authorization, audit, identitytrust etc
|
| JaasSecurityDomainIdentityLoginModule |
Deprecated.
|
| JaasSecurityManagerBase |
The JaasSecurityManager is responsible both for authenticating credentials
associated with principals and for role mapping.
|
| JACCAuthorizationModule |
Authorization Module that enforces JACC semantics
|
| JASPIAuthenticationInfo |
AuthenticationInfo based on JSR-196
|
| JASPICallbackHandler |
CallbackHandler with the JASPI callbacks
|
| JASPIServerAuthenticationManager |
|
| JavaEEResource |
Represents a Java EE Resource
|
| JavaEETrustModule |
Trust Module that deals with JavaEE RunAsIdentity
We always trust the JavaEE RunAS to bypass authentication
and will be governed by the authorization rules
|
| JavaPropertiesConfigParser |
Able to read in Java properties into module options
|
| JBossAuditContext |
Default implementation of the audit context
|
| JBossAuditManager |
Manages a set of AuditContext
|
| JBossAuthConfigFactory |
Default Authentication Configuration Factory
|
| JBossAuthConfigProvider |
Default Auth Config Provider
|
| JBossAuthenticationCache |
Authentication Cache keyed in by Principal
|
| JBossAuthenticationManager |
Default Implementation of the AuthenticationManager Interface
|
| JBossAuthorizationContext |
JBAS-3374: Authorization Framework for Policy Decision Modules
For information on the behavior of the Authorization Modules,
For Authorization Modules behavior(Required, Requisite, Sufficient and Optional)
please refer to the javadoc for @see javax.security.auth.login.Configuration
The AuthorizationContext derives the AuthorizationInfo(configuration for the modules)
in the following way:
a) If there has been an injection of ApplicationPolicy, then it will be used.
|
| JBossAuthorizationManager |
Authorization Manager implementation
|
| JBossCachedAuthenticationManager |
|
| JBossCachedAuthenticationManager.DomainInfo |
A cache value.
|
| JBossCallbackHandler |
Serializable Callback Handler
|
| JBossClientAuthConfig |
Default Client Authentication Configuration
|
| JBossClientAuthContext |
Default Client Authentication Context
|
| JBossEntityResolver |
Local entity resolver to handle standard J2EE DTDs and Schemas as well as JBoss
specific DTDs.
|
| JBossIdentityTrustContext |
Implementation of the Identity Trust Context
|
| JBossIdentityTrustManager |
Identity Trust Manager default implementation
|
| JBossJSSESecurityDomain |
A security domain used to configure SSL.
|
| JBossMappingManager |
JBoss implementation of Mapping Manager
|
| JBossPolicyConfiguration |
The JACC PolicyConfiguration implementation.
|
| JBossPolicyConfigurationFactory |
org.jboss.security.provider
|
| JBossPolicyRegistration |
Default implementation of Policy Registration interface
|
| JBossSecurityClient |
Implementation of the SecurityClient contract
Usage:
|
| JBossSecurityContext |
Implementation of the Security Context for the JBoss AS
|
| JBossSecurityContextUtil |
Utility class for JBossSecurityContext implementation
|
| JBossSecuritySubjectFactory |
Create a Subject given the details available
via implementation strategies such as SecurityContextAssociation
to get hold of the Principal, Credentials, etc
|
| JBossServerAuthConfig |
Provides configuration for the server side
|
| JBossServerAuthContext |
Default Server Authentication Context
|
| JBossSXProvider |
A Java2 security provider for cryptographic algorithms provided by
the JBossSX framework.
|
| JBossTimeBasedOTPLoginModule |
Login Module that can be configured to validate a Time based OTP.
|
| JBossXACMLUtil |
Utility class dealing with JBossXACML
|
| JPAPersistenceStrategy |
Implementation of ACLPersistenceStrategy that uses the Java Persistence API (JPA) to
persist the ACLs.
|
| JSSESecurityDomain |
Security domain used for configuring SSL.
|
| KerberosIdentity<T> |
Interface for a Kerberos based Identity
|
| KeyStoreUtil |
Utility to handle Java Keystore
|
| LdapAttributeMappingProvider |
Maps attributes from LDAP
The options include whatever options your LDAP JNDI provider
supports.
|
| LdapCallbackHandler |
A CallbackHandler using the LDAP to match the passed password.
|
| LdapExtLoginModule |
The org.jboss.security.auth.spi.LdapExtLoginModule, added in jboss-4.0.3, is an
alternate ldap login module implementation that uses searches for locating both
the user to bind as for authentication as well as the associated roles.
|
| LdapLoginModule |
An implementation of LoginModule that authenticates against an LDAP server
using JNDI, based on the configuration properties.
|
| LdapRolesMappingProvider |
A mapping provider that assigns roles to an user using a LDAP server to search for the roles.
|
| LdapUsersLoginModule |
A login module to authenticate users using a LDAP server.
|
| LogAuditProvider |
Audit Provider that just logs the audit event using a Logger.
|
| LoginModuleStackHolder |
Holder for the login module stack element in login-config
|
| MapCallback |
An implementation of Callback that simply allows for a map of information
to be exchanged.
|
| MappingConfigParser |
Stax based mapping configuration Parser
|
| MappingContext<T> |
Generic Context used by the Mapping Framework
|
| MappingInfo |
Mapping Info
|
| MappingManager |
Manager that is used for mapping various types
|
| MappingModuleEntry |
Represents configuration for a single Mapping Module
|
| MappingProvider<T> |
A provider with mapping functionality
|
| MappingProviderUtil |
Utility class for Mapping Providers
|
| MappingResult<T> |
Generic Mapping Process Result
|
| MappingType |
Type of mappings possible
|
| MBeanServerLocator |
A helper class to locate an MBeanServer.
|
| MemoryUsersRolesLoginModule |
A subclass of UsersRolesLoginModule that uses a singleton instance and
memory based users/roles Properties maps to manage user/password and
user/role mappings.
|
| MissingArgumentsException |
An exception indicating there are missing arguments
|
| Module |
Represents a Module
|
| ModuleOption |
Represents a Module Option
|
| ModuleOption |
A login module option name/value pair holder
|
| ModuleOption.VALUE_TYPE |
|
| ModuleOptionParser |
Parses the Module Option
|
| NestableGroup |
An implementation of Group that allows that acts as a stack of Groups
with a single Group member active at any time.
|
| NestablePrincipal |
An implementation of Group that allows that acts as a stack of Principals
with a single Principal Group member active at any time.
|
| NoAccessSecurityManager |
An implementation of SubjectSecurityManager, RealmMapping does not allow
any authentication and every check for a role fails.
|
| NobodyPrincipal |
An implementation of Principal and Comparable that represents no role.
|
| NullSecurityManager |
An implementation of SubjectSecurityManager, RealmMapping that authenticates
everyone and for which Principals have any role requested.
|
| ObjectCallback |
An implementation of Callback that simply obtains an Object to be used
as the authentication credential.
|
| OpenIdIdentity<T> |
Interface for a OpenID Identity
|
| OptionsRoleMappingProvider |
Role Mapping Provider that picks up the roles from the
options and then appends them to the passed Group
|
| ParseException |
This exception is thrown when parse errors are encountered.
|
| ParserNamespaceSupport |
Interface to indicate the parser
supports a particular namespace
|
| PasswordCache |
Interface to cache passwords retrieved from external commands.
|
| PBEIdentityLoginModule |
An example of how one could encrypt the database password for a jca
connection factory.
|
| PBEUtils |
Ecrypt a password using the JaasSecurityDomain password
Usage: PBEUtils salt count domain-password password
salt : the Salt attribute from the JaasSecurityDomain
count : the IterationCount attribute from the JaasSecurityDomain
domain-password : the plaintext password that maps to the KeyStorePass
attribute from the JaasSecurityDomain
password : the plaintext password that should be encrypted with the
JaasSecurityDomain password
|
| Permission |
Marker interface for permission objects.
|
| PersistenceStrategy |
Interface for an Identity persistence strategy (file, db, etc.).
|
| PicketBoxAuthorizationModule |
Simple Authorization Module that authorizes users with
the configured roles
Note:The roles need to be placed as a comma separated list of values.
|
| PicketBoxCallbackHandler |
Default Callbackhandler that primarily uses the HandlerContract
for the Principal/Credential combination
Anil Saldhana |
| PicketBoxConfiguration |
Defines the PicketBox Configuration
|
| PicketBoxLogger |
|
| PicketBoxLogger_$logger |
Warning this class consists of generated code.
|
| PicketBoxMessages |
|
| PicketBoxMessages_$bundle |
Warning this class consists of generated code.
|
| PicketBoxProcessingException |
Exception indicating a processing exception
|
| PicketBoxProcessor |
Process the security annotations on a POJO.
|
| PicketBoxSecurityManagement |
|
| PicketBoxUtil |
Utility Methods
|
| POJOResource |
A resource denoting a POJO
|
| PolicyConfig |
The root object for the login-config.xml descriptor as defined by the
security-config_5_0.xsd.
|
| PolicyConfig |
The root object for the login-config.xml descriptor as defined by the
security-config_5_0.xsd.
|
| PolicyRegistration |
Interface to register policies
|
| PropertiesRolesMappingProvider |
A MappingProvider that reads roles from a properties file in the format
|
| PropertiesUsersLoginModule |
A LoginModule that uses a properties file to store username and password for authentication.
|
| ProxyLoginModule |
A proxy LoginModule that loads a delegate LoginModule using
the current thread context class loader.
|
| RealmMapping |
The interface for Principal mapping.
|
| RemoteHostTrustLoginModule |
Trust specific hosts so that when usernames are passed in and the host that
passes them in is "trusted" it returns true regardless of any password or
credentials.
|
| Resource |
Resource that is subject to Authorization Decisions
|
| ResourceKeys |
Defines the keys for the Context Map in the Resource
|
| ResourceType |
Type of Resource for Authorization
|
| RFC2617Digest |
An implementation of the DigestCallback that support the http digest auth as
described in RFC2617 (http://www.ietf.org/rfc/rfc2617.txt).
|
| Role |
Represents a Role
|
| RoleBasedACLProviderImpl |
Implementation of ACLProvider that uses the identity roles when checking if access to a protected resource
should be granted or not.
|
| RoleFactory |
Factory to create roles
|
| RoleGroup |
Represents a group of roles
|
| RoleMappingInfo |
Holder for RoleMapping configuration
|
| RoleMappingLoginModule |
JBAS-3323: Role Mapping Login Module that maps application role to
declarative role
- You will need to provide a properties file name with the option "rolesProperties"
which has the role to be replaced as the key and a comma-separated role names
as replacements.
|
| RoleType |
Type of Role
|
| RunAs |
Represent an entity X with a proof of identity Y
|
| RunAsIdentity |
The RunAsIdentity is a Principal that associates the run-as principal
with his run-as role(s).
|
| RunAsLoginModule |
A login module that establishes a run-as role for the duration of the login
phase of authentication.
|
| SAMLIdentity<T> |
Interface for a SAML Identity
|
| SecureIdentityLoginModule |
An example of how one could encrypt the database password for a jca
connection factory.
|
| SecurityAssociationCallback |
An implementation of Callback useful on the server side for
propagating the request Principal and credentials to LoginModules.
|
| SecurityAssociationHandler |
An implementation of CallbackHandler is assigned a Principal, and
opaque Object credential as values passed to the constructor.
|
| SecurityAudit |
Annotation indicating that all security events
are to be audited
|
| SecurityCache<T> |
Generic Security Cache Interface for usage
by the security integration layers like authentication,
authorization etc.
|
| SecurityCacheException |
Security Cache Exception denoting
a cache operation failure
|
| SecurityClient |
Generic Security Client class
Basic Users:
|
| SecurityClientFactory |
Factory to return SecurityClient instances
|
| SecurityConfig |
|
| SecurityConfiguration |
Class that provides the Configuration for authentication,
authorization, mapping info etc
It also holds the information like JSSE keystores, keytypes and
other crypto configuration
|
| SecurityConstants |
Defines Constants for usage in the Security Layer
|
| SecurityContext |
Encapsulation of Authentication, Authorization, Mapping and other
security aspects at the level of a security domain
|
| SecurityContextAssociation |
Security Context association in a threadlocal
|
| SecurityContextCallback |
SecurityContext Callback
|
| SecurityContextCallbackHandler |
CallbackHandler for SecurityContext
|
| SecurityContextFactory |
Factory class to create Security Context instances
|
| SecurityContextUtil |
General Utility methods for dealing with the SecurityContext
|
| SecurityDomain |
Annotation for specifying the JBoss security domain for EJBs.
|
| SecurityDomain |
The SecurityDomain interface combines the SubjectSecurityManager and
RealmMapping interfaces and adds a keyStore and trustStore as well as
JSSE KeyManagerFactory and TrustManagerFactory accessors for use with SSL/JSSE.
|
| SecurityFactory |
|
| SecurityFactorySecurityManagement |
|
| SecurityHelperFactory |
Factory to get to the helpers
|
| SecurityIdentity |
Represents an Identity of an agent interacting with the
security service.
|
| SecurityKeyManager |
X509KeyManager that allows selection of a key entry to be used.
|
| SecurityManagerLocator |
Locator for the various security managers
|
| SecurityMapping |
Annotation for the mapping functionality (Principal, Role, Attribute)
|
| SecurityRoleRef |
Represents a Security Role Ref element in the deployment descriptor
|
| SecurityRoleRef |
Represents a Security Role Ref element in the deployment descriptor
|
| SecurityRolesAssociation |
The SecurityRolesAssociation uses a ThreadLocal to associate the SecurityRoleMetaData
from the deployment with the current thread.
|
| SecurityService |
The SecurityService installs a java.security.Policy implementation that
handles the JACC permission checks.
|
| SecurityUtil |
Security Utility Class
|
| SecurityVault |
Vault for secure storage of attributes
|
| SecurityVaultData |
Security vault data store with version serialized data storage.
|
| SecurityVaultException |
General exception thrown from the vault operations
|
| SecurityVaultFactory |
|
| SecurityVaultUtil |
|
| SerialNumberIssuerDNMapping |
A CertificatePrincipal implementation that builds the principal name
based on the cert serialNumber and issuerDN
|
| ServerAuthenticationManager |
AuthenticationManager with JSR-196 Semantics
|
| SHAInterleave |
The SHA_Interleave algorithm as described in section 3.1 of RFC2945.
|
| SHAReverseInterleave |
An alternate SHA Interleave algorithm as implemented in the SRP
distribution.
|
| SimpleCharStream |
An implementation of interface CharStream, where the stream is assumed to
contain only ASCII characters (without unicode processing).
|
| SimpleClientAuthModule |
A simple implementation of an username/password based
client auth module
|
| SimpleGroup |
An implementation of Group that manages a collection of Principal
objects based on their hashCode() and equals() methods.
|
| SimpleIdentity |
Simple Identity
|
| SimplePrincipal |
A simple String based implementation of Principal.
|
| SimplePrincipalMappingProvider |
A principal mapping provider that takes in a
SimplePrincipal and converts into
a SimplePrincipal with a different principal name
|
| SimpleRole |
Simple Role
|
| SimpleRoleGroup |
Simple Role Group
|
| SimpleRolesMappingProvider |
A simple MappingProvider that reads roles from the options map.
|
| SimpleServerAuthModule |
A simple implementation of an username/password based
server auth module.
|
| SimpleServerLoginModule |
A simple server login module useful to quick setup of security for testing
purposes.
|
| SimpleUsersLoginModule |
A LoginModule that stores username and password as options.
|
| StandaloneConfiguration |
|
| State |
The respresentation of a state in a state machine.
|
| StateMachine |
The representation of a finite state machine.
|
| StateMachineParser |
Parse an xml representation of a state machine.
|
| StaxBasedConfigParser |
Configuration Parser based on Stax
|
| StaxParserUtil |
Utility for the stax based parser
|
| StringPropertyReplacer |
A utility class for replacing properties in strings.
|
| StringUtil |
Utility dealing with Strings
|
| SubjectCNMapper |
A X500 Principal Mapper from a X509 Certificate that uses the client cert
SubjectDN CN='...' element as the principal.
|
| SubjectCNMapping |
A CertificatePrincipal implementation that uses the client cert
SubjectDN CN='...' element as the principal.
|
| SubjectDNMapper |
A X500 Principal Mapper from a X509 Certificate
that considers SubjectDN of the Client certificate
|
| SubjectDNMapping |
A CertificatePrincipal implementation that uses the client cert
SubjectDN as the principal.
|
| SubjectFactory |
This interface represents a factory for Subjects.
|
| SubjectInfo |
Holds information - principal, credential and subject
This class is handled by the Util class associated with the security context
|
| SubjectPolicyContextHandler |
A PolicyContextHandler for the current authenticated Subject.
|
| SubjectSecurityManager |
All functionality in this interface is now in the base AuthenticationManager
interface.
|
| SubjectX500Principal |
A CertificatePrincipal implementation that uses the client cert
SubjectX500Principal as the principal.
|
| SunConfigParser |
A JavaCC 2.1 grammar for the default JAAS configuration file provided by Sun.
|
| SunConfigParserConstants |
Token literal values and constants.
|
| SunConfigParserTokenManager |
Token Manager.
|
| TimeBasedOTP |
TOTP: Time-based One-time Password Algorithm
Based on http://tools.ietf.org/html/draft-mraihi-totp-timebased-06
|
| TimeBasedOTPUtil |
Utility class associated with the TimeBasedOTP class
|
| TmpFilePassword |
Read a password from a file specified via the ctor and then overwrite
the file contents with garbage, and then remove it.
|
| Token |
Describes the input token stream.
|
| TokenMgrError |
Token Manager Error.
|
| TransactionManagerLocator |
Locate a Transaction Manager
|
| Transition |
A representation of a transition from a state to another state.
|
| UsernamePasswordHandler |
A simple implementation of CallbackHandler that sets a username and
password in the handle(Callback[]) method to that passed in to
the constructor.
|
| UsernamePasswordLoginModule |
An abstract subclass of AbstractServerLoginModule that imposes
an identity == String username, credentials == String password view on
the login process.
|
| Users |
The XMLLoginModule users/roles object representation.
|
| Users.User |
|
| UsersConfigParser |
Parse the Users configuration embeddable within
XMLLoginModule module option
|
| UsersLoginModule |
A simple properties file based login module that consults a Java Properties
formatted text files for username to password("users.properties") mapping.
|
| UsersRolesLoginModule |
A simple Properties map based login module that consults two Java Properties
formatted text files for username to password("users.properties") and
username to roles("roles.properties") mapping.
|
| Util |
Utility class used by the ACL implementation.
|
| Util |
Common login module utility methods
|
| Util |
Utility class for this package.
|
| Util |
Util.
|
| VerifyPasswordCallback |
A Callback that indicates that the enclosing
value needs to be checked against the value stored in
the data store such as a DB or LDAP
|
| Version |
The version of PicketBox.
|
| WebAuthorizationHelper |
Web Authorization Helper Implementation
|
| WebAuthorizationModule |
Default Web Authorization Module with the default tomcat
authorization logic
|
| WebJACCPolicyModuleDelegate |
JACC based authorization module helper that deals with the web layer
authorization decisions
|
| WebPolicyModuleDelegate |
Authorization Module Delegate that deals with the default authorization
behavior (Simply returns PERMIT, because the final decision will be
made by the base class of Realm (RealmBase))
|
| WebResource |
Represents a Resource for the Web Layer
|
| WebXACMLPolicyModuleDelegate |
XACML based authorization module helper that deals with the web layer
authorization decisions
|
| WebXACMLUtil |
Utility class for creating XACML Requests
|
| WrongEEResourceException |
A security exception to indicate the wrong type of EE resource
|
| WSTrustIdentity<T> |
Interface for a WS-Trust based Identity
|
| X509CertificateVerifier |
A verifier for X509Certificate used by authentication layers.
|
| XACMLAuthorizationModule |
Authorization Module that utilizes XACML
|
| XACMLConstants |
Predefined constants for the XACML layer
|
| XMLLoginConfigImpl |
An concrete implementation of the javax.security.auth.login.Configuration class that parses an xml configuration of
the form:
starksm
|
| XMLLoginModule |
A login module that obtains its security information directly from its
login module options.
|