();
18 | this.data = data;
19 | }
20 |
21 | public int getCallbackType(){
22 | return SAMLCallback.ATTR_CALLBACK;
23 | }
24 |
25 | /**
26 | * Overloaded method to support SAML2
27 | * @param attribute SAML2 attribute.
28 | */
29 | public void addAttributes(org.opensaml.saml.saml2.core.Attribute attribute){
30 | attributes.add(attribute);
31 | }
32 |
33 | /**
34 | * Get the array of SAML2 attributes.
35 | * @return SAML2 attribute list.
36 | */
37 | public org.opensaml.saml.saml2.core.Attribute[] getSAML2Attributes(){
38 | return (org.opensaml.saml.saml2.core.Attribute[])attributes.toArray
39 | (new org.opensaml.saml.saml2.core.Attribute[attributes.size()]);
40 | }
41 |
42 | public RahasData getData() {
43 | return data;
44 | }
45 | }
46 |
--------------------------------------------------------------------------------
/modules/rampart-integration/src/main/java/org/apache/rampart/Service.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart;
18 | import org.apache.axiom.om.OMElement;
19 |
20 | public class Service {
21 |
22 | public OMElement echo(OMElement elem) {
23 | elem.build();
24 | elem.detach();
25 | return elem;
26 | }
27 |
28 | /**
29 | * New service method for testing negative scenario where service throws an exception
30 | * @param element
31 | * @return
32 | * @throws Exception
33 | */
34 | public OMElement returnError(OMElement element) throws Exception {
35 | throw new Exception("Testing negative scenarios with Apache Rampart. Intentional Exception");
36 | }
37 |
38 | }
39 |
--------------------------------------------------------------------------------
/modules/rampart-core/src/main/java/org/apache/rampart/handler/config/DefaultResolver.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright (c) 2025, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 | package org.apache.rampart.handler.config;
17 |
18 | /**
19 | * Default Resolver is the class used in general case where any resolver is not used
20 | */
21 | public class DefaultResolver implements Resolver {
22 |
23 | private String input;
24 |
25 | /**
26 | * Return the variable passed
27 | * @return input
28 | */
29 | @Override
30 | public String resolve() {
31 |
32 | return input;
33 | }
34 |
35 | /**
36 | * sets the input value
37 | */
38 | @Override
39 | public void setVariable(String input) {
40 | this.input = input;
41 | }
42 | }
43 |
--------------------------------------------------------------------------------
/modules/rampart-integration/src/test/resources/security/s6.service.xml:
--------------------------------------------------------------------------------
1 |
2 | org.apache.axis2.oasis.ping.PingPortSkeleton
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 | Encrypt Signature Timestamp
11 | org.apache.axis2.security.PWCallback
12 | interop.properties
13 |
14 |
15 |
16 |
17 |
18 | Encrypt Signature Timestamp
19 | bob
20 | org.apache.axis2.security.PWCallback
21 | DirectReference
22 | http://www.w3.org/2001/04/xmlenc#tripledes-cbc
23 | alice
24 | SKIKeyIdentifier
25 | interop.properties
26 |
27 |
28 |
29 |
30 |
--------------------------------------------------------------------------------
/modules/rampart-integration/src/test/resources/security/secMtom.service.xml:
--------------------------------------------------------------------------------
1 |
2 | org.apache.axis2.oasis.ping.PingPortSkeleton
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 | Signature Encrypt Timestamp
12 | org.apache.axis2.security.PWCallback
13 | interop.properties
14 |
15 |
16 |
17 |
18 |
19 | Signature Encrypt Timestamp
20 | bob
21 | org.apache.axis2.security.PWCallback
22 | interop.properties
23 | DirectReference
24 | SKIKeyIdentifier
25 | alice
26 |
27 | //xenc:EncryptedData/xenc:CipherData/xenc:CipherValue
28 |
29 |
30 |
31 |
32 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample02/services.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 | org.apache.rampart.samples.sample02.SimpleService
24 |
25 |
26 |
27 |
28 |
29 | UsernameToken Timestamp
30 | org.apache.rampart.samples.sample02.PWCBHandler
31 |
32 |
33 |
34 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample03/services.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 | org.apache.rampart.samples.sample03.SimpleService
24 |
25 |
26 |
27 |
28 |
29 | UsernameToken
30 | org.apache.rampart.samples.sample03.PWCBHandler
31 |
32 |
33 |
34 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample03/src/org/apache/rampart/samples/sample03/SimpleService.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2003-2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | *
16 | */
17 | package org.apache.rampart.samples.sample03;
18 |
19 | import org.apache.axis2.AxisFault;
20 | import org.apache.axis2.context.MessageContext;
21 | import org.apache.axis2.context.OperationContext;
22 | import org.apache.axis2.wsdl.WSDLConstants;
23 | import org.apache.ws.security.WSConstants;
24 | import org.apache.ws.security.WSSecurityEngineResult;
25 | import org.apache.ws.security.WSUsernameTokenPrincipal;
26 | import org.apache.ws.security.handler.WSHandlerConstants;
27 | import org.apache.ws.security.handler.WSHandlerResult;
28 |
29 | import java.util.Vector;
30 |
31 | public class SimpleService {
32 |
33 | public String echo(String arg) {
34 | return arg;
35 | }
36 | }
37 |
--------------------------------------------------------------------------------
/modules/rampart-core/src/main/java/org/apache/rampart/RampartConfigCallbackHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 | package org.apache.rampart;
17 |
18 | import org.apache.rampart.policy.model.RampartConfig;
19 |
20 | /**
21 | * Callback handler interface to update Rampart Configuration dynamically. Updater class should
22 | * implement this interface and should be registered using the Rampart Configuration as below.
23 | *
24 | * Example:
25 | *
26 | *
27 | * o.a.r.ConfigUpdater
28 | * ...
29 | *
30 | *
31 | */
32 |
33 | public interface RampartConfigCallbackHandler {
34 |
35 | public void update(RampartConfig rampartConfig);
36 |
37 | }
--------------------------------------------------------------------------------
/modules/rampart-integration/src/test/resources/security/s4.service.xml:
--------------------------------------------------------------------------------
1 |
2 | org.apache.axis2.oasis.ping.PingPortSkeleton
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 | Signature Encrypt Timestamp
11 | org.apache.axis2.security.PWCallback
12 | interop.properties
13 |
14 |
15 |
16 |
17 |
18 | Signature Encrypt Timestamp
19 | bob
20 | org.apache.axis2.security.PWCallback
21 | SKIKeyIdentifier
22 | EmbeddedKeyName
23 | http://www.w3.org/2001/04/xmlenc#tripledes-cbc
24 | interop.properties
25 | org.apache.axis2.security.PWCallback
26 | SessionKey
27 |
28 |
29 |
30 |
31 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample08/services.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 | org.apache.rampart.samples.sample08.SimpleService
24 |
25 |
26 |
27 |
28 |
29 | Timestamp Signature Signature
30 | org.apache.rampart.samples.sample08.PWCBHandler
31 | service.properties
32 |
33 |
34 |
35 |
36 |
--------------------------------------------------------------------------------
/modules/rampart-tests/test-resources/commons-logging.properties:
--------------------------------------------------------------------------------
1 | #
2 | # Licensed to the Apache Software Foundation (ASF) under one
3 | # or more contributor license agreements. See the NOTICE file
4 | # distributed with this work for additional information
5 | # regarding copyright ownership. The ASF licenses this file
6 | # to you under the Apache License, Version 2.0 (the
7 | # "License"); you may not use this file except in compliance
8 | # with the License. You may obtain a copy of the License at
9 | #
10 | # http://www.apache.org/licenses/LICENSE-2.0
11 | #
12 | # Unless required by applicable law or agreed to in writing,
13 | # software distributed under the License is distributed on an
14 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 | # KIND, either express or implied. See the License for the
16 | # specific language governing permissions and limitations
17 | # under the License.
18 | #
19 |
20 | # This is the logging properties that goes to the war, there are two logging conf kept at the
21 | # svn, one for developement (one at src/test-resources) and other for producation
22 |
23 | # Uncomment the next line to disable all logging.
24 | #org.apache.commons.logging.Log=org.apache.commons.logging.impl.NoOpLog
25 |
26 | # Uncomment the next line to enable the simple log based logging
27 | #org.apache.commons.logging.Log=org.apache.commons.logging.impl.SimpleLog
28 |
29 | # Uncomment the next line to enable log4j based logging
30 | org.apache.commons.logging.Log=org.apache.commons.logging.impl.Log4JLogger
31 |
--------------------------------------------------------------------------------
/modules/rampart-integration/src/test/java/commons-logging.properties:
--------------------------------------------------------------------------------
1 | #
2 | # Licensed to the Apache Software Foundation (ASF) under one
3 | # or more contributor license agreements. See the NOTICE file
4 | # distributed with this work for additional information
5 | # regarding copyright ownership. The ASF licenses this file
6 | # to you under the Apache License, Version 2.0 (the
7 | # "License"); you may not use this file except in compliance
8 | # with the License. You may obtain a copy of the License at
9 | #
10 | # http://www.apache.org/licenses/LICENSE-2.0
11 | #
12 | # Unless required by applicable law or agreed to in writing,
13 | # software distributed under the License is distributed on an
14 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 | # KIND, either express or implied. See the License for the
16 | # specific language governing permissions and limitations
17 | # under the License.
18 | #
19 |
20 | # This is the logging properties that goes to the war, there are two logging conf kept at the
21 | # svn, one for developement (one at src/test-resources) and other for producation
22 |
23 | # Uncomment the next line to disable all logging.
24 | #org.apache.commons.logging.Log=org.apache.commons.logging.impl.NoOpLog
25 |
26 | # Uncomment the next line to enable the simple log based logging
27 | #org.apache.commons.logging.Log=org.apache.commons.logging.impl.SimpleLog
28 |
29 | # Uncomment the next line to enable log4j based logging
30 | org.apache.commons.logging.Log=org.apache.commons.logging.impl.Log4JLogger
31 |
--------------------------------------------------------------------------------
/modules/rampart-integration/src/test/resources/commons-logging.properties:
--------------------------------------------------------------------------------
1 | #
2 | # Licensed to the Apache Software Foundation (ASF) under one
3 | # or more contributor license agreements. See the NOTICE file
4 | # distributed with this work for additional information
5 | # regarding copyright ownership. The ASF licenses this file
6 | # to you under the Apache License, Version 2.0 (the
7 | # "License"); you may not use this file except in compliance
8 | # with the License. You may obtain a copy of the License at
9 | #
10 | # http://www.apache.org/licenses/LICENSE-2.0
11 | #
12 | # Unless required by applicable law or agreed to in writing,
13 | # software distributed under the License is distributed on an
14 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 | # KIND, either express or implied. See the License for the
16 | # specific language governing permissions and limitations
17 | # under the License.
18 | #
19 |
20 | # This is the logging properties that goes to the war, there are two logging conf kept at the
21 | # svn, one for developement (one at src/test-resources) and other for producation
22 |
23 | # Uncomment the next line to disable all logging.
24 | #org.apache.commons.logging.Log=org.apache.commons.logging.impl.NoOpLog
25 |
26 | # Uncomment the next line to enable the simple log based logging
27 | org.apache.commons.logging.Log=org.apache.commons.logging.impl.SimpleLog
28 |
29 | # Uncomment the next line to enable log4j based logging
30 | #org.apache.commons.logging.Log=org.apache.commons.logging.impl.Log4JLogger
31 |
--------------------------------------------------------------------------------
/modules/rampart-integration/src/test/resources/security/s7.service.xml:
--------------------------------------------------------------------------------
1 |
2 | org.apache.axis2.oasis.ping.PingPortSkeleton
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 | Signature Encrypt Timestamp
11 | org.apache.axis2.security.PWCallback
12 | interop.properties
13 | interop.properties
14 |
15 |
16 |
17 |
18 |
19 | Signature Encrypt Timestamp
20 | bob
21 | org.apache.axis2.security.PWCallback
22 | DirectReference
23 | http://www.w3.org/2001/04/xmlenc#tripledes-cbc
24 | alice
25 | SKIKeyIdentifier
26 | interop.properties
27 | interop.properties
28 |
29 |
30 |
31 |
32 |
--------------------------------------------------------------------------------
/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/Header.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.ws.secpolicy.model;
18 |
19 | public class Header {
20 |
21 | private String name;
22 | private String namespace;
23 |
24 | /**
25 | * @return Returns the name.
26 | */
27 | public String getName() {
28 | return name;
29 | }
30 | /**
31 | * @param name The name to set.
32 | */
33 | public void setName(String name) {
34 | this.name = name;
35 | }
36 | /**
37 | * @return Returns the namespace.
38 | */
39 | public String getNamespace() {
40 | return namespace;
41 | }
42 | /**
43 | * @param namespace The namespace to set.
44 | */
45 | public void setNamespace(String namespace) {
46 | this.namespace = namespace;
47 | }
48 |
49 | }
50 |
--------------------------------------------------------------------------------
/modules/rampart-integration/src/test/resources/security/complete.service.xml:
--------------------------------------------------------------------------------
1 |
2 | org.apache.axis2.oasis.ping.PingPortSkeleton
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 | Timestamp Signature Encrypt
11 | org.apache.axis2.security.PWCallback
12 | interop.properties
13 |
14 |
15 |
16 |
17 |
18 | Timestamp Signature Encrypt
19 | bob
20 | org.apache.axis2.security.PWCallback
21 | interop.properties
22 | SKIKeyIdentifier
23 | SKIKeyIdentifier
24 | alice
25 | {Element}{http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd}Timestamp
26 |
27 | //xenc:EncryptedData/xenc:CipherData/xenc:CipherValue
28 |
29 |
30 |
31 |
32 |
--------------------------------------------------------------------------------
/modules/rampart-integration/src/test/resources/security/s3.service.xml:
--------------------------------------------------------------------------------
1 |
2 | org.apache.axis2.oasis.ping.PingPortSkeleton
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 | Signature Encrypt Timestamp
11 | org.apache.axis2.security.PWCallback
12 | interop.properties
13 | false
14 |
15 |
16 |
17 |
18 |
19 | Signature Encrypt Timestamp
20 | bob
21 | org.apache.axis2.security.PWCallback
22 | interop.properties
23 | DirectReference
24 | SKIKeyIdentifier
25 | http://www.w3.org/2001/04/xmlenc#tripledes-cbc
26 | alice
27 | false
28 |
29 |
30 |
31 |
32 |
--------------------------------------------------------------------------------
/modules/documentation/src/site/resources/samples/msgs/req01.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 | 2008-06-23T13:17:13.841Z
6 | 2008-06-23T13:22:13.841Z
7 |
8 |
9 | alice
10 | bobPW
11 |
12 |
13 | http://localhost:8081/axis2/services/sample01
14 | urn:uuid:AEDBA74A8D1FC94B631214227032877
15 | urn:echo
16 |
17 |
18 |
19 | Hello world
20 |
21 |
22 |
--------------------------------------------------------------------------------
/modules/rampart-tests/test-resources/policy/SecurityPolicyBindingsSymm.xml:
--------------------------------------------------------------------------------
1 |
2 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample02/src/org/apache/rampart/samples/sample02/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.sample02;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 | String id = pwcb.getIdentifer();
34 | if("bob".equals(id)) {
35 | pwcb.setPassword("bobPW");
36 | }
37 | }
38 | }
39 |
40 | }
41 |
--------------------------------------------------------------------------------
/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/AbstractConfigurableSecurityAssertion.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2001-2004 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 | package org.apache.ws.secpolicy.model;
17 |
18 | import java.util.ArrayList;
19 | import java.util.List;
20 |
21 | import org.apache.neethi.Assertion;
22 |
23 | public abstract class AbstractConfigurableSecurityAssertion extends AbstractSecurityAssertion {
24 |
25 | protected ArrayList configurations = null;
26 |
27 | public void addConfiguration(Assertion assertion) {
28 | if (configurations == null) {
29 | configurations = new ArrayList();
30 | }
31 | configurations.add(assertion);
32 | }
33 |
34 | public List getConfigurations() {
35 | return configurations;
36 | }
37 |
38 | public Assertion getDefaultAssertion() {
39 | if (configurations != null) {
40 | return (Assertion) configurations.get(0);
41 | }
42 | return null;
43 | }
44 |
45 | }
46 |
--------------------------------------------------------------------------------
/modules/rampart-tests/test-resources/policy-transport-binding.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample02/src/org/apache/rampart/samples/policy/sample02/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.policy.sample02;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 | String id = pwcb.getIdentifer();
34 | if("client".equals(id)) {
35 | pwcb.setPassword("apache");
36 | } else if("service".equals(id)) {
37 | pwcb.setPassword("apache");
38 | }
39 | }
40 | }
41 |
42 | }
43 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample03/src/org/apache/rampart/samples/policy/sample03/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.policy.sample03;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 | String id = pwcb.getIdentifer();
34 | if("client".equals(id)) {
35 | pwcb.setPassword("apache");
36 | } else if("service".equals(id)) {
37 | pwcb.setPassword("apache");
38 | }
39 | }
40 | }
41 |
42 | }
43 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample04/src/org/apache/rampart/samples/policy/sample04/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.policy.sample04;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 | String id = pwcb.getIdentifer();
34 | if("client".equals(id)) {
35 | pwcb.setPassword("apache");
36 | } else if("service".equals(id)) {
37 | pwcb.setPassword("apache");
38 | }
39 | }
40 | }
41 |
42 | }
43 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample05/src/org/apache/rampart/samples/policy/sample05/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.policy.sample05;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 | String id = pwcb.getIdentifer();
34 | if("client".equals(id)) {
35 | pwcb.setPassword("apache");
36 | } else if("service".equals(id)) {
37 | pwcb.setPassword("apache");
38 | }
39 | }
40 | }
41 |
42 | }
43 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample08/src/org/apache/rampart/samples/policy/sample08/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.policy.sample08;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 | String id = pwcb.getIdentifer();
34 | if("client".equals(id)) {
35 | pwcb.setPassword("apache");
36 | } else if("service".equals(id)) {
37 | pwcb.setPassword("apache");
38 | }
39 | }
40 | }
41 |
42 | }
43 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample04/src/org/apache/rampart/samples/sample04/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.sample04;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 |
34 | String id = pwcb.getIdentifer();
35 | if("client".equals(id)) {
36 | pwcb.setPassword("apache");
37 | } else if("service".equals(id)) {
38 | pwcb.setPassword("apache");
39 | }
40 | }
41 | }
42 |
43 | }
44 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample05/src/org/apache/rampart/samples/sample05/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.sample05;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 |
34 | String id = pwcb.getIdentifer();
35 | if("client".equals(id)) {
36 | pwcb.setPassword("apache");
37 | } else if("service".equals(id)) {
38 | pwcb.setPassword("apache");
39 | }
40 | }
41 | }
42 |
43 | }
44 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample06/src/org/apache/rampart/samples/sample06/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.sample06;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 |
34 | String id = pwcb.getIdentifer();
35 | if("client".equals(id)) {
36 | pwcb.setPassword("apache");
37 | } else if("service".equals(id)) {
38 | pwcb.setPassword("apache");
39 | }
40 | }
41 | }
42 |
43 | }
44 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample07/src/org/apache/rampart/samples/sample07/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.sample07;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 |
34 | String id = pwcb.getIdentifer();
35 | if("client".equals(id)) {
36 | pwcb.setPassword("apache");
37 | } else if("service".equals(id)) {
38 | pwcb.setPassword("apache");
39 | }
40 | }
41 | }
42 |
43 | }
44 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample08/src/org/apache/rampart/samples/sample08/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.sample08;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 |
34 | String id = pwcb.getIdentifer();
35 | if("client".equals(id)) {
36 | pwcb.setPassword("apache");
37 | } else if("service".equals(id)) {
38 | pwcb.setPassword("apache");
39 | }
40 | }
41 | }
42 |
43 | }
44 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample10/src/org/apache/rampart/samples/sample10/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.sample10;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 |
34 | String id = pwcb.getIdentifer();
35 | if("client".equals(id)) {
36 | pwcb.setPassword("apache");
37 | } else if("service".equals(id)) {
38 | pwcb.setPassword("apache");
39 | }
40 | }
41 | }
42 |
43 | }
44 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample11/src/org/apache/rampart/samples/sample11/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.sample11;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 |
34 | String id = pwcb.getIdentifer();
35 | if("client".equals(id)) {
36 | pwcb.setPassword("apache");
37 | } else if("service".equals(id)) {
38 | pwcb.setPassword("apache");
39 | }
40 | }
41 | }
42 |
43 | }
44 |
--------------------------------------------------------------------------------
/orbit/pom.xml:
--------------------------------------------------------------------------------
1 |
18 |
19 |
20 |
21 | org.apache.rampart
22 | rampart-project
23 | 1.7.0-wso2v8-SNAPSHOT
24 | ../pom.xml
25 |
26 |
27 | 4.0.0
28 | org.apache.rampart.wso2
29 | rampart-orbit
30 | pom
31 | Rampart-Orbit
32 | org.apache.rampart
33 | http://www.wso2.com
34 | 1.7.0-wso2v8-SNAPSHOT
35 |
36 |
37 | rampart-core
38 | rampart-trust
39 | rampart-policy
40 |
41 |
42 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample-tomcat/policy.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 | alice
33 | org.apache.rampart.tomcat.sample.PWCBHandler
34 |
35 | build/client.jks
36 | apache
37 |
38 |
39 |
40 |
41 |
42 |
43 |
--------------------------------------------------------------------------------
/modules/rampart-tests/test-resources/policy-asymm-binding.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
--------------------------------------------------------------------------------
/release-docs/build.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 |
49 |
50 |
51 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample05/services.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 | org.apache.rampart.samples.sample05.SimpleService
24 |
25 |
26 |
27 |
28 |
29 | Encrypt
30 | org.apache.rampart.samples.sample05.PWCBHandler
31 | service.properties
32 |
33 |
34 |
35 |
36 |
37 | Encrypt
38 | client
39 | service.properties
40 |
41 |
42 |
43 |
44 |
45 |
46 |
--------------------------------------------------------------------------------
/modules/rampart-samples/build.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 |
49 |
50 |
--------------------------------------------------------------------------------
/modules/rampart-core/src/main/java/org/apache/rampart/handler/config/SystemResolver.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright (c) 2025, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 | package org.apache.rampart.handler.config;
17 |
18 | /**
19 | * System resolver can be used to resolve environment variables in the synapse config.
20 | */
21 | public class SystemResolver implements Resolver {
22 |
23 | private String input;
24 |
25 | /**
26 | * set environment variable which needs to resolved
27 | **/
28 | @Override
29 | public void setVariable(String input) {
30 | this.input = input;
31 | }
32 |
33 | /**
34 | * environment variable is resolved in this function
35 | * @return resolved value for the environment variable
36 | */
37 | @Override
38 | public String resolve() {
39 | String envValue = System.getenv(input);
40 | if (envValue == null) {
41 | throw new IllegalArgumentException("Environment variable could not be found for " + input + ". " +
42 | "Please ensure that the environment variable is set before using it in the configuration.");
43 | }
44 | return envValue;
45 | }
46 | }
47 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample06/src/org/apache/rampart/samples/policy/sample06/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.policy.sample06;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 | String id = pwcb.getIdentifer();
34 | if("client".equals(id)) {
35 | pwcb.setPassword("apache");
36 | } else if("service".equals(id)) {
37 | pwcb.setPassword("apache");
38 | } else if("sts".equals(id)) {
39 | pwcb.setPassword("apache");
40 | }
41 | }
42 | }
43 |
44 | }
45 |
--------------------------------------------------------------------------------
/modules/rampart-tests/test-resources/policy/SecurityPolicyBindings.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 |
49 |
50 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample07/src/org/apache/rampart/samples/policy/sample07/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.policy.sample07;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
33 | String id = pwcb.getIdentifer();
34 | if("client".equals(id)) {
35 | pwcb.setPassword("apache");
36 | } else if("service".equals(id)) {
37 | pwcb.setPassword("apache");
38 | }else if("client2".equals(id)) {
39 | pwcb.setPassword("apache");
40 | }
41 | }
42 | }
43 |
44 | }
45 |
--------------------------------------------------------------------------------
/modules/rampart-core/src/main/java/org/apache/rampart/PolicyValidatorCallbackHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 | package org.apache.rampart;
17 |
18 | import java.util.Vector;
19 |
20 | /**
21 | * Callback handler interface to allow different implementations of policy based results validation.
22 | * Default implementation is org.apache.rampart.PolicyBasedResultsValidator.
23 | * Custom implementations could be provided in rampart config as shown in below example.
24 | *
25 | * Example:
26 | *
27 | *
28 | * xx.yy.CustomPolicyValidator
29 | * ...
30 | *
31 | *
32 | */
33 |
34 | public interface PolicyValidatorCallbackHandler {
35 | /**
36 | * Validate policy based results.
37 | *
38 | * @param data validator data
39 | * @param results policy based ws-security results
40 | * @throws RampartException Rampart exception
41 | */
42 | public abstract void validate(ValidatorData data, Vector results) throws RampartException;
43 |
44 | }
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample04/services.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 | org.apache.rampart.samples.sample04.SimpleService
24 |
25 |
26 |
27 |
28 |
29 | Timestamp Signature
30 | service.properties
31 |
32 |
33 |
34 |
35 |
36 | Timestamp Signature
37 | service
38 | org.apache.rampart.samples.sample04.PWCBHandler
39 | service.properties
40 | DirectReference
41 |
42 |
43 |
44 |
45 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample06/mex_policy.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 |
49 |
50 |
--------------------------------------------------------------------------------
/modules/rampart-tests/test-resources/policy/soapmessage-no-wss-header.xml:
--------------------------------------------------------------------------------
1 |
18 |
19 |
24 |
25 |
26 |
27 |
28 |
30 |
31 |
32 |
35 | 1001
36 |
37 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample09/src/org/apache/rampart/samples/sample09/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.sample09;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | private static final byte[] key = {
30 |
31 | (byte) 0x31, (byte) 0xfd, (byte) 0xcb, (byte) 0xda, (byte) 0xfb,
32 |
33 | (byte) 0xcd, (byte) 0x6b, (byte) 0xa8, (byte) 0xe6, (byte) 0x19,
34 |
35 | (byte) 0xa7, (byte) 0xbf, (byte) 0x51, (byte) 0xf7, (byte) 0xc7,
36 |
37 | (byte) 0x3e };
38 |
39 | public void handle(Callback[] callbacks) throws IOException,
40 | UnsupportedCallbackException {
41 | for (int i = 0; i < callbacks.length; i++) {
42 | WSPasswordCallback pwcb = (WSPasswordCallback) callbacks[i];
43 |
44 | if (pwcb.getUsage() == WSPasswordCallback.KEY_NAME) {
45 | pwcb.setKey(key);
46 | }
47 | }
48 | }
49 |
50 | }
51 |
--------------------------------------------------------------------------------
/modules/documentation/src/site/resources/samples/policy/sample02.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 |
49 |
50 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/README.txt:
--------------------------------------------------------------------------------
1 | ********************************************************************************
2 | **************************** Apache Rampart Samples ****************************
3 | ********************************************************************************
4 |
5 | This is a set of Apache Rampart samples which uses configuraiton parameters
6 | to configure rampart.
7 |
8 | Each "sampleX" directory contains :
9 |
10 | - client.axis2.xml - Client configuration
11 | - services.xml - Service configuration
12 | - src - Source of the sample
13 | - README.txt - you have to read this :-)
14 |
15 | We use two parameters named "InflowSecurity" and "OutflowSecurity" within
16 | these files to configure rampart.
17 |
18 | 01.) Rampart Engaged and no configuration
19 | 02.) UsernameToken authentication
20 | 03.) UsernameToken authentication with a plain text password
21 | 04.) Message integrity and non-repudiation with signature
22 | 05.) Encryption
23 | 06.) Sign and encrypt a messages
24 | 07.) Encrypt and sign messages
25 | 08.) Signing twice
26 | 09.) Encryption with a key known to both parties
27 | 10.) MTOM Optimizing base64 content in the secured message
28 | 11.) Dynamic configuration : Get rid of the config files ... let's use code!
29 |
30 | You can use the ant build script provided here to run these samples.
31 |
32 | Exmaple: Running sample - 01
33 | - Start two shell instnaces and change to the directory where this file is
34 | - To start the service:
35 | $ ant service.01
36 | - To run client:
37 | $ ant client.01
38 |
39 | --------------------------------------------------------------------------------
40 | NOTE: To view the messages exchanged
41 | - Change the "client.port" property in the "build.xml" to an available port
42 | E.g. :
43 | - Setup tcpmon (http://ws.apache.org/commons/tcpmon/) to listen on the above
44 | port and to point to port 8080 (value of the service.port property)
--------------------------------------------------------------------------------
/modules/rampart-core/src/main/java/org/apache/rampart/policy/SupportingPolicyData.java:
--------------------------------------------------------------------------------
1 | package org.apache.rampart.policy;
2 |
3 | import java.util.Iterator;
4 |
5 | import org.apache.ws.secpolicy.model.Header;
6 | import org.apache.ws.secpolicy.model.SupportingToken;
7 |
8 | public class SupportingPolicyData extends RampartPolicyData {
9 |
10 | public void build(SupportingToken token) {
11 |
12 | if (token.getSignedParts() != null && !token.getSignedParts().isOptional()) {
13 | Iterator it = token.getSignedParts().getHeaders().iterator();
14 | this.setSignBody(token.getSignedParts().isBody());
15 | while (it.hasNext()) {
16 | Header header = (Header) it.next();
17 | this.addSignedPart(header.getNamespace(), header.getName());
18 | }
19 | }
20 |
21 | if (token.getEncryptedParts() != null && !token.getEncryptedParts().isOptional()) {
22 | Iterator it = token.getEncryptedParts().getHeaders().iterator();
23 | this.setEncryptBody(token.getEncryptedParts().isBody());
24 | while (it.hasNext()) {
25 | Header header = (Header) it.next();
26 | this.setEncryptedParts(header.getNamespace(), header.getName(),
27 | "Header");
28 | }
29 | }
30 |
31 | if (token.getSignedElements() != null && !token.getSignedElements().isOptional()) {
32 | Iterator it = token.getSignedElements().getXPathExpressions()
33 | .iterator();
34 | while (it.hasNext()) {
35 | this.setSignedElements((String) it.next());
36 | }
37 | this.addDeclaredNamespaces(token.getSignedElements()
38 | .getDeclaredNamespaces());
39 | }
40 |
41 | if (token.getEncryptedElements() != null && !token.getEncryptedElements().isOptional()) {
42 | Iterator it = token.getEncryptedElements().getXPathExpressions()
43 | .iterator();
44 | while (it.hasNext()) {
45 | this.setEncryptedElements((String) it.next());
46 | }
47 | if (token.getSignedElements() == null) {
48 | this.addDeclaredNamespaces(token.getEncryptedElements()
49 | .getDeclaredNamespaces());
50 | }
51 | }
52 | }
53 | }
54 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample-tomcat/README:
--------------------------------------------------------------------------------
1 | ********************************************************************************
2 | **************************** Apache Rampart Tomcat Samples *********************
3 | ********************************************************************************
4 |
5 | It is strongly recommended to run other samples before trying this. Because it will create the directory structure to expected by the build file.
6 |
7 | UsernameToken Authentication over HTTPS.
8 |
9 | Step1: Install Axis2 in Tomcat by reading the Axis2 installation guide available in http://ws.apache.org/axis2/. Then test axis2 in Tomcat.
10 |
11 | Step2: Copy keystores into Tomcat by giving the following command in this directory.
12 | $ant copy.keys
13 |
14 | Step3: Copy rampart jars and mars into Tomcat by giving the following command in this directory.
15 | $ant copy.rampart.to.tomcat
16 |
17 | Step4: Enable HTTPS on Tomcat. For Tomcat5 uncomment the "SSL HTTP/1.1 Connector". The default HTTPS port for Tomcat is 8443. For more information "http://tomcat.apache.org/tomcat-5.0-doc/ssl-howto.html"
18 |
19 | Step5: Add the key store information by adding the following into the Connector element in server.xml.
20 |
21 | truststoreFile="rampart-sample-keys.jks"
22 | truststorePass="apache"
23 | truststoreType="JKS"
24 | keystoreFile="rampart-sample-keys.jks"
25 | keystorePass="apache"
26 |
27 | Start tomcat and check the service by typing "https://127.0.0.1:8443/axis2/services/listServices" in the browser. If you have changed the SSL port then type the correct port number and please change the build.xml's ssl.port accordingly.
28 |
29 | Step6: The following command will copy the ut-over-https.aar into the ${CATALINA_HOME}/webapps/axis2/WEB-INF/services/ut-over-https.aar
30 | $ant create.and.copy.service
31 |
32 | Step7: Start tomcat. View https://127.0.0.1:8443/axis2/services/listServices to see wether the service is available.
33 |
34 | Step8: The following command will create and run the client.
35 | $ant create.and.run.client
36 |
37 |
38 |
--------------------------------------------------------------------------------
/modules/rampart-extensions/jpam-callback-handler/src/main/java/org/apache/rampart/extensions/jpam/JPAMCallbackHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | import org.apache.ws.security.WSPasswordCallback;
18 |
19 | import javax.security.auth.callback.Callback;
20 | import javax.security.auth.callback.CallbackHandler;
21 | import javax.security.auth.callback.UnsupportedCallbackException;
22 |
23 | import java.io.IOException;
24 |
25 | import net.sf.jpam.Pam;
26 | import net.sf.jpam.PamReturnValue;
27 |
28 | public class JPAMCallbackHandler implements CallbackHandler {
29 |
30 | public void handle(Callback[] callbacks) throws IOException,
31 | UnsupportedCallbackException {
32 | for (int i = 0; i < callbacks.length; i++) {
33 | // When the server side need to authenticate the user
34 | WSPasswordCallback pwcb = (WSPasswordCallback) callbacks[i];
35 | if (pwcb.getUsage() == WSPasswordCallback.USERNAME_TOKEN_UNKNOWN) {
36 | Pam pam = new Pam();
37 | PamReturnValue ret = pam.authenticate(pwcb.getIdentifer(), pwcb
38 | .getPassword());
39 | if (ret.equals(PamReturnValue.PAM_SUCCESS)) {
40 | return;
41 | } else {
42 | throw new IOException("check failed");
43 | }
44 |
45 | }
46 | }
47 | }
48 |
49 | }
50 |
--------------------------------------------------------------------------------
/modules/documentation/src/site/resources/samples/policy/sample03.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 |
49 |
50 |
51 |
52 |
53 |
54 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample09/services.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 | org.apache.rampart.samples.sample09.SimpleService
24 |
25 |
26 |
27 |
28 |
29 | Encrypt
30 | org.apache.rampart.samples.sample09.PWCBHandler
31 | service.properties
32 |
33 |
34 |
35 |
36 |
37 | Encrypt
38 | service
39 | EmbeddedKeyName
40 | service.properties
41 | org.apache.rampart.samples.sample09.PWCBHandler
42 | SessionKey
43 |
44 |
45 |
46 |
47 |
--------------------------------------------------------------------------------
/modules/rampart-integration/src/test/resources/rampart/services-13.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 | org.apache.rampart.Service
7 |
8 |
9 |
10 | urn:echo
11 |
12 |
13 |
14 |
15 | urn:returnError
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 | org.apache.rampart.PWCallback
49 |
50 |
51 |
52 |
53 |
54 |
55 |
56 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample-tomcat/src/org/apache/rampart/tomcat/sample/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.tomcat.sample;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 |
33 | //When the server side need to authenticate the user
34 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
35 | if (pwcb.getUsage() == WSPasswordCallback.USERNAME_TOKEN_UNKNOWN) {
36 | if(pwcb.getIdentifer().equals("alice") && pwcb.getPassword().equals("bobPW")) {
37 | return;
38 | } else {
39 | throw new UnsupportedCallbackException(callbacks[i], "check failed");
40 | }
41 | }
42 |
43 | //When the client requests for the password to be added in to the
44 | //UT element
45 | pwcb.setPassword("bobPW");
46 | }
47 | }
48 |
49 | }
50 |
--------------------------------------------------------------------------------
/modules/rampart-mar/module.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 | This module provides the WS-Security and WS-SecureConversation
4 | functionalities for Axis2, based on Apache WSS4J, Apache XML-Security
5 | and Apache Rahas implementations.
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
--------------------------------------------------------------------------------
/modules/rampart-samples/policy/sample01/src/org/apache/rampart/samples/policy/sample01/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.policy.sample01;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 | for (int i = 0; i < callbacks.length; i++) {
32 |
33 | //When the server side need to authenticate the user
34 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
35 | if (pwcb.getUsage() == WSPasswordCallback.USERNAME_TOKEN_UNKNOWN) {
36 | if(pwcb.getIdentifer().equals("alice") && pwcb.getPassword().equals("bobPW")) {
37 | return;
38 | } else {
39 | throw new UnsupportedCallbackException(callbacks[i], "check failed");
40 | }
41 | }
42 |
43 | //When the client requests for the password to be added in to the
44 | //UT element
45 | pwcb.setPassword("bobPW");
46 | }
47 | }
48 |
49 | }
50 |
--------------------------------------------------------------------------------
/modules/rampart-trust/src/main/java/org/apache/rahas/impl/util/AxiomParserPool.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Licensed to the Apache Software Foundation (ASF) under one
3 | * or more contributor license agreements. See the NOTICE file
4 | * distributed with this work for additional information
5 | * regarding copyright ownership. The ASF licenses this file
6 | * to you under the Apache License, Version 2.0 (the
7 | * "License"); you may not use this file except in compliance
8 | * with the License. You may obtain a copy of the License at
9 | *
10 | * http://www.apache.org/licenses/LICENSE-2.0
11 | *
12 | * Unless required by applicable law or agreed to in writing,
13 | * software distributed under the License is distributed on an
14 | * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 | * KIND, either express or implied. See the License for the
16 | * specific language governing permissions and limitations
17 | * under the License.
18 | */
19 | package org.apache.rahas.impl.util;
20 |
21 | import net.shibboleth.utilities.java.support.xml.BasicParserPool;
22 | import javax.xml.parsers.DocumentBuilderFactory;
23 | import java.lang.reflect.Field;
24 |
25 | /**
26 | * Custom OpenSAML 1.x {@link ParserPool} implementation that uses a DOM aware Axiom implementation
27 | * instead of requesting a {@link DocumentBuilderFactory} using JAXP.
28 | */
29 | public class AxiomParserPool extends BasicParserPool {
30 | public AxiomParserPool() {
31 | DocumentBuilderFactory dbf = new DOOMDocumentBuilderFactory();
32 |
33 | // Unfortunately, ParserPool doesn't allow to set the DocumentBuilderFactory, so that we
34 | // have to use reflection here.
35 | try {
36 | Field dbfField = BasicParserPool.class.getDeclaredField("builderFactory");
37 | dbfField.setAccessible(true);
38 | dbfField.set(this, dbf);
39 | } catch (IllegalAccessException ex) {
40 | throw new IllegalAccessError(ex.getMessage());
41 | } catch (NoSuchFieldException ex) {
42 | throw new NoSuchFieldError(ex.getMessage());
43 | }
44 | }
45 | }
--------------------------------------------------------------------------------
/modules/rampart-tests/src/test/java/org/apache/rampart/SecurityTokenReferenceTest.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2015 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart;
18 |
19 | import junit.framework.Assert;
20 | import junit.framework.TestCase;
21 | import org.apache.rahas.TrustUtil;
22 | import org.w3c.dom.Document;
23 | import org.w3c.dom.Element;
24 |
25 | import javax.xml.parsers.DocumentBuilderFactory;
26 | import javax.xml.parsers.ParserConfigurationException;
27 | import java.util.UUID;
28 |
29 | public class SecurityTokenReferenceTest extends TestCase {
30 |
31 | public void testSecurityTokenReference() {
32 |
33 | try {
34 | Document doc = DocumentBuilderFactory.newInstance().newDocumentBuilder().newDocument();
35 | Element strElem = TrustUtil.createSecurityTokenReferenceWithTokenType(doc, UUID.randomUUID().toString(),
36 | "http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLID", "http://docs.oasis-open" +
37 | ".org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0");
38 | System.out.println(strElem.getAttribute("wsse11:TokenType"));
39 | Assert.assertEquals("http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0", strElem
40 | .getAttribute("wsse11:TokenType"));
41 | } catch (ParserConfigurationException e) {
42 | e.printStackTrace();
43 | fail(e.getMessage());
44 | }
45 | }
46 | }
47 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample07/services.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 | org.apache.rampart.samples.sample07.SimpleService
24 |
25 |
26 |
27 |
28 |
29 | Timestamp Encrypt Signature
30 | org.apache.rampart.samples.sample07.PWCBHandler
31 | service.properties
32 |
33 |
34 |
35 |
36 |
37 | Timestamp Encrypt Signature
38 | service
39 | org.apache.rampart.samples.sample07.PWCBHandler
40 | service.properties
41 | DirectReference
42 | SKIKeyIdentifier
43 | useReqSigCert
44 |
45 |
46 |
47 |
--------------------------------------------------------------------------------
/modules/rampart-integration/src/test/resources/rampart/services-1.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 | org.apache.rampart.Service
7 |
8 |
9 |
10 | urn:echo
11 |
12 |
13 |
14 |
15 | urn:returnError
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 | org.apache.rampart.PWCallback
49 |
50 |
51 |
52 |
53 |
54 |
55 |
56 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample11/services.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 | org.apache.rampart.samples.sample11.SimpleService
24 |
25 |
26 |
27 |
28 |
29 | Timestamp Signature Encrypt
30 | org.apache.rampart.samples.sample11.PWCBHandler
31 | service.properties
32 |
33 |
34 |
35 |
36 |
37 | Timestamp Signature Encrypt
38 | service
39 | org.apache.rampart.samples.sample11.PWCBHandler
40 | service.properties
41 | DirectReference
42 | SKIKeyIdentifier
43 | useReqSigCert
44 |
45 |
46 |
47 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample10/services.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 | org.apache.rampart.samples.sample10.SimpleService
24 |
25 |
26 |
27 |
28 |
29 | Timestamp Signature Encrypt
30 | org.apache.rampart.samples.sample10.PWCBHandler
31 | service.properties
32 |
33 |
34 |
35 |
36 |
37 | Timestamp Signature Encrypt
38 | service
39 | org.apache.rampart.samples.sample10.PWCBHandler
40 | service.properties
41 | DirectReference
42 | SKIKeyIdentifier
43 | useReqSigCert
44 |
45 |
46 |
47 |
48 |
--------------------------------------------------------------------------------
/modules/rampart-tests/test-resources/policy-symm-binding.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 |
49 |
50 |
51 |
52 |
53 |
54 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample03/src/org/apache/rampart/samples/sample03/PWCBHandler.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rampart.samples.sample03;
18 |
19 | import org.apache.ws.security.WSPasswordCallback;
20 |
21 | import javax.security.auth.callback.Callback;
22 | import javax.security.auth.callback.CallbackHandler;
23 | import javax.security.auth.callback.UnsupportedCallbackException;
24 |
25 | import java.io.IOException;
26 |
27 | public class PWCBHandler implements CallbackHandler {
28 |
29 | public void handle(Callback[] callbacks) throws IOException,
30 | UnsupportedCallbackException {
31 |
32 | for (int i = 0; i < callbacks.length; i++) {
33 |
34 | //When the server side need to authenticate the user
35 | WSPasswordCallback pwcb = (WSPasswordCallback)callbacks[i];
36 | if (pwcb.getUsage() == WSPasswordCallback.USERNAME_TOKEN_UNKNOWN) {
37 | if(pwcb.getIdentifer().equals("bob") && pwcb.getPassword().equals("bobPW")) {
38 | //If authentication successful, simply return
39 | return;
40 | } else {
41 | throw new UnsupportedCallbackException(callbacks[i], "check failed");
42 | }
43 | }
44 |
45 | //When the client requests for the password to be added in to the
46 | //UT element
47 | pwcb.setPassword("bobPW");
48 | }
49 | }
50 |
51 | }
52 |
--------------------------------------------------------------------------------
/modules/rampart-integration/src/test/java/org/apache/axis2/security/Scenario1Test.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.axis2.security;
18 |
19 | import org.apache.rampart.handler.config.InflowConfiguration;
20 | import org.apache.rampart.handler.config.OutflowConfiguration;
21 |
22 | import java.util.Hashtable;
23 |
24 |
25 | /**
26 | * WS-Security interop scenario 1
27 | */
28 | public class Scenario1Test extends InteropTestBase {
29 |
30 |
31 | protected OutflowConfiguration getOutflowConfiguration() {
32 | OutflowConfiguration ofc = new OutflowConfiguration();
33 | ofc.setActionItems("UsernameToken");
34 | ofc.setUser("Chris");
35 | ofc.setPasswordCallbackClass("org.apache.axis2.security.PWCallback");
36 | ofc.setPasswordType("PasswordText");
37 | return ofc;
38 | }
39 |
40 | protected InflowConfiguration getInflowConfiguration() {
41 | return null;
42 | }
43 |
44 | protected String getClientRepo() {
45 | return SCENARIO1_CLIENT_REPOSITORY;
46 | }
47 |
48 | protected String getServiceRepo() {
49 | return SCENARIO1_SERVICE_REPOSITORY;
50 | }
51 |
52 | protected boolean isUseSOAP12InStaticConfigTest() {
53 | return true;
54 | }
55 |
56 | protected OutflowConfiguration getOutflowConfigurationWithRefs() {
57 | return null;
58 | }
59 |
60 | protected InflowConfiguration getInflowConfigurationWithRefs() {
61 | return null;
62 | }
63 |
64 | protected Hashtable getPropertyRefs() {
65 | return null;
66 | }
67 |
68 | }
69 |
--------------------------------------------------------------------------------
/modules/rampart-samples/basic/sample06/services.xml:
--------------------------------------------------------------------------------
1 |
2 |
18 |
19 |
20 |
21 |
22 |
23 | org.apache.rampart.samples.sample06.SimpleService
24 |
25 |
26 |
27 |
28 |
29 | Timestamp Signature Encrypt
30 | org.apache.rampart.samples.sample06.PWCBHandler
31 | service.properties
32 |
33 |
34 |
35 |
36 |
37 | Timestamp Signature Encrypt
38 | service
39 | org.apache.rampart.samples.sample06.PWCBHandler
40 | service.properties
41 | DirectReference
42 | SKIKeyIdentifier
43 | useReqSigCert
44 |
45 |
46 |
47 |
48 |
--------------------------------------------------------------------------------
/modules/rampart-trust/sts-aar-resources/saml-issuer-config.xml:
--------------------------------------------------------------------------------
1 |
2 | Test_STS
3 |
4 |
5 | ip
6 |
7 |
8 | password
9 |
10 |
11 |
12 | JKS
13 | META-INF/rahas-sts.jks
14 | password
15 |
16 |
17 |
18 | 300000
19 |
20 | 256
21 |
22 |
23 |
24 |
25 |
31 | 2
32 |
33 |
39 | BinarySecret
40 |
41 |
42 |
43 | http://localhost:8080/axis2/services/STS
44 |
45 |
51 |
55 |
56 |
--------------------------------------------------------------------------------
/modules/rampart-tests/src/test/java/org/apache/rahas/TempIssuer.java:
--------------------------------------------------------------------------------
1 | /*
2 | * Copyright 2004,2005 The Apache Software Foundation.
3 | *
4 | * Licensed under the Apache License, Version 2.0 (the "License");
5 | * you may not use this file except in compliance with the License.
6 | * You may obtain a copy of the License at
7 | *
8 | * http://www.apache.org/licenses/LICENSE-2.0
9 | *
10 | * Unless required by applicable law or agreed to in writing, software
11 | * distributed under the License is distributed on an "AS IS" BASIS,
12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | * See the License for the specific language governing permissions and
14 | * limitations under the License.
15 | */
16 |
17 | package org.apache.rahas;
18 |
19 | import org.apache.axiom.om.OMElement;
20 | import org.apache.axiom.soap.SOAPEnvelope;
21 |
22 | public class TempIssuer implements TokenIssuer {
23 |
24 | /* (non-Javadoc)
25 | * @see org.apache.rahas.TokenIssuer#setConfigurationFile(java.lang.String)
26 | */
27 | public void setConfigurationFile(String configFile) {
28 | }
29 |
30 | /* (non-Javadoc)
31 | * @see org.apache.rahas.TokenIssuer#setConfigurationElement(org.apache.axiom.om.OMElement)
32 | */
33 | public void setConfigurationElement(OMElement configElement) {
34 | }
35 |
36 | /* (non-Javadoc)
37 | * @see org.apache.rahas.TokenIssuer#setConfigurationParamName(java.lang.String)
38 | */
39 | public void setConfigurationParamName(String configParamName) {
40 | }
41 |
42 | /* (non-Javadoc)
43 | * @see org.apache.rahas.TokenIssuer#issue(org.apache.rahas.RahasData)
44 | */
45 | public SOAPEnvelope issue(RahasData data) throws TrustException {
46 | // TODO TODO
47 | throw new UnsupportedOperationException("TODO");
48 | }
49 |
50 | /* (non-Javadoc)
51 | * @see org.apache.rahas.TokenIssuer#getResponseAction(org.apache.rahas.RahasData)
52 | */
53 | public String getResponseAction(RahasData data) throws TrustException {
54 | // TODO TODO
55 | throw new UnsupportedOperationException("TODO");
56 | }
57 |
58 | }
59 |
--------------------------------------------------------------------------------