org.jboss.net.axis.security.handler
Class WSSRequestHandler
java.lang.Object
WSDoAllReceiver
org.jboss.net.axis.security.handler.WSSRequestHandler
- public class WSSRequestHandler
- extends WSDoAllReceiver
- Title:
- Web Service Security Request Handler
- Description:
- This handler processes the security header of incoming SOAP messages.
- See Also:
- Serialized Form
|
Field Summary |
protected Logger |
log
|
| Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
log
protected Logger log
WSSRequestHandler
public WSSRequestHandler()
canHandleBlock
public boolean canHandleBlock(QName (src) arg0)
getUnderstoodHeaders
public java.util.List getUnderstoodHeaders()
invoke
public void invoke(MessageContext mc)
throws AxisFault
- Throws:
AxisFault
authenticate
protected void authenticate(MessageContext mc,
java.lang.String actor)
throws AxisFault
- Hook to authenticate any principals found via JBossSX.
Currently we just use the key alias as the user, and the certificate as the password.
I am sure this scheme has some flaws, so I would love to have some input on a better method.
- Parameters:
mc -
- Throws:
AxisFault
loadSignatureCrypto
protected Crypto loadSignatureCrypto()
throws AxisFault
- Throws:
AxisFault
loadDecryptionCrypto
protected Crypto loadDecryptionCrypto()
throws AxisFault
- Throws:
AxisFault