Examples of Credential

• br.com.objectos.way.base.sql.Credential
  @author marcio.endo@objectos.com.br (Marcio Endo)
• co.cask.cdap.security.authentication.client.Credential
  Represents a credential required for authentication.
• com.cloudbees.api.cr.Credential
  Provides credential for outbound requests to {@link CloudResource}s. @author Kohsuke Kawaguchi
• com.dianping.cat.system.page.login.service.Credential
• com.dyuproject.demos.todolist.model.Credential
  @author David Yu @created Feb 25, 2009
• com.example.GWTOAuthLoginDemo.client.model.Credential
• com.github.ebnew.ki4so.core.authentication.Credential
  用户凭据，代表了一个用户的身份，这是一个抽象概念， 这种凭据可以是一个用户名和密码对，也可以是一个加密后的信息， 也可以是一个任何可以识别用户身份的信息。 @author burgess yang
• com.google.api.client.auth.oauth2.Credential
  r.example.com/token")) .setClientAuthentication(new BasicAuthentication("s6BhdRkqt3", "7Fjfp0ZBr1KtDRbnfVdmIw")) .build() .setFromTokenResponse(tokenResponse); }

  If you need to persist the access token in a data store, use {@link CredentialStore} and{@link Builder#addRefreshListener(CredentialRefreshListener)}.

  If you have a custom request initializer, request execute interceptor, or unsuccessful response handler, take a look at the sample usage for {@link HttpExecuteInterceptor} and{@link HttpUnsuccessfulResponseHandler}, which are interfaces that this class also implements.

  @since 1.7 @author Yaniv Inbar
• com.google.api.client.extensions.auth.helpers.Credential
  Implementations of this class will have all of the information necessary to create and install the necessary handlers on an {@link HttpTransport} object to allow for a streamlined authexperience. Implementations of this interface should use the {@link PersistenceCapable} annotation to allowcredentials to be managed on behalf of the application.

  Warning: starting with version 1.7, usage of this for OAuth 2.0 is deprecated. Instead use {@link com.google.api.client.auth.oauth2.Credential}.

  @author moshenko@google.com (Jacob Moshenko) @since 1.4
• com.google.appengine.repackaged.com.google.api.client.auth.oauth2.Credential
  Generic credential description. Provides default accessors for concrete implementations.
• com.google.gsa.Credential
• com.sequenceiq.cloudbreak.domain.Credential
• com.shopify.api.common.Credential
• com.twilio.sdk.resource.instance.sip.Credential
• com.twitterapime.rest.Credential
• hudson.scm.SubversionSCM.DescriptorImpl.Credential
• io.fathom.cloud.identity.api.os.model.Credential
• io.undertow.security.idm.Credential
  Representation of a users Credential. @author Darran Lofthouse
• net.jxta.credential.Credential
• net.solosky.maplefetion.bean.Credential
  凭证，可能和单点登录有关 @author solosky
• org.apache.airavata.credential.store.credential.Credential
  This class represents the actual credential. The credential can be a certificate, user name password or a SSH key. As per now we only have certificate implementation.
• org.apache.falcon.oozie.workflow.CREDENTIAL
• org.apache.jetspeed.security.Credential
• org.apache.lenya.ac.Credential
  A credential assigns a {@link Role} to an {@link Accreditable}.
• org.apache.lenya.ac.impl.Credential
  A credential assigns a set of {@link Role}s to an {@link Accreditable}.
• org.apache.mesos.Protos.Credential
• org.apache.ws.security.validate.Credential
  This class stores various Credential types that can be validated and/or returned by a Validator implementation. It also stores an optional Principal object which can provide context information to the validators.
• org.apache.wss4j.dom.validate.Credential
  This class stores various Credential types that can be validated and/or returned by a Validator implementation. It also stores an optional Principal object which can provide context information to the validators.
• org.archive.modules.credential.Credential
  Credential type. Let this be also a credential in the JAAS sense to in that this is what gets added to a subject on successful authentication since it contains data needed to authenticate (realm, login, password, etc.).

  Settings system assumes that subclasses implement a constructor that takes a name only. @author stack @version $Revision$, $Date$

• org.browsermob.proxy.jetty.util.Credential
  Credentials. The Credential class represents an abstract mechanism for checking authentication credentials. A credential instance either represents a secret, or some data that could only be derived from knowing the secret.

  Often a Credential is related to a Password via a one way algorithm, so while a Password itself is a Credential, a UnixCrypt or MD5 digest of a a password is only a credential that can be checked against the password.

  This class includes an implementation for unix Crypt an MD5 digest. @see Password @version $Id: Credential.java,v 1.7 2005/08/13 00:01:28 gregwilkins Exp $ @author Greg Wilkins (gregw)

• org.eclipse.jetty.util.security.Credential
  Credentials. The Credential class represents an abstract mechanism for checking authentication credentials. A credential instance either represents a secret, or some data that could only be derived from knowing the secret.

  Often a Credential is related to a Password via a one way algorithm, so while a Password itself is a Credential, a UnixCrypt or MD5 digest of a a password is only a credential that can be checked against the password.

  This class includes an implementation for unix Crypt an MD5 digest. @see Password

• org.jasig.cas.authentication.Credential
• org.jboss.as.domain.management.plugin.Credential
  The credential to use to authenticate the remote user. @author Darran Lofthouse
• org.jboss.jca.common.api.metadata.common.Credential
  A Security. @author Stefano Maestri
• org.mortbay.jetty.security.Credential
  Credentials. The Credential class represents an abstract mechanism for checking authentication credentials. A credential instance either represents a secret, or some data that could only be derived from knowing the secret.

  Often a Credential is related to a Password via a one way algorithm, so while a Password itself is a Credential, a UnixCrypt or MD5 digest of a a password is only a credential that can be checked against the password.

  This class includes an implementation for unix Crypt an MD5 digest. @see Password @author Greg Wilkins (gregw)

• org.nasutekds.server.protocols.jmx.Credential
  Represents a Ldap credential used for JMX connection authentication.

  In JMX Connection, one and only one instance of this class is expected to be found in each of the publicCredentials and privateCredentials sets of {@link javax.security.auth.Subject}. Those are the Jmx Client connection that will handle incoming requests.

• org.openengsb.domain.userprojects.model.Credential
• org.openqa.jetty.util.Credential
  Credentials. The Credential class represents an abstract mechanism for checking authentication credentials. A credential instance either represents a secret, or some data that could only be derived from knowing the secret.

  Often a Credential is related to a Password via a one way algorithm, so while a Password itself is a Credential, a UnixCrypt or MD5 digest of a a password is only a credential that can be checked against the password.

  This class includes an implementation for unix Crypt an MD5 digest. @see Password @version $Id: Credential.java,v 1.7 2005/08/13 00:01:28 gregwilkins Exp $ @author Greg Wilkins (gregw)

• org.opensaml.xml.security.credential.Credential
  A credential for an entity. A particular credential may contain either asymmetric key information (a public key and optionally the corresponding private key), or a symmetric (secret) key, but never both. With asymmetric key-based credentials, local entity credentials will usually contain both a public and private key while peer credentails will normally contain only a public key.
• org.picketlink.idm.api.Credential
• org.switchyard.security.credential.Credential
  Credential. @author David Ward <dward@jboss.org> © 2012 Red Hat Inc.
• org.uberfire.security.auth.Credential
• org.zeroexchange.model.user.Credential
  @author black
• railo.runtime.security.Credential
  Credential interface

Examples of org.apache.ws.security.validate.Credential

        //
        // Validate the token
        //
        try {
            Credential credential = new Credential();
            credential.setBinarySecurityToken(binarySecurity);
            if (sigCrypto != null) {
                X509Certificate cert = ((X509Security)binarySecurity).getX509Certificate(sigCrypto);
                credential.setCertificates(new X509Certificate[]{cert});
            }

            Credential returnedCredential = validator.validate(credential, requestData);
            response.setPrincipal(returnedCredential.getCertificates()[0].getSubjectX500Principal());
            validateTarget.setState(STATE.VALID);
        } catch (WSSecurityException ex) {
            LOG.log(Level.WARNING, "", ex);
        }
        return response;

Examples of org.apache.ws.security.validate.Credential

 */
public class OnBehalfOfValidator extends SamlAssertionValidator {

    @Override
    public Credential validate(Credential credential, RequestData data) throws WSSecurityException {
        Credential validatedCredential = super.validate(credential, data);
        AssertionWrapper assertion = validatedCredential.getAssertion();

        Assertion saml2Assertion = assertion.getSaml2();
        if (saml2Assertion == null) {
            throw new WSSecurityException(WSSecurityException.FAILURE, "invalidSAMLsecurity");
        }

Examples of org.apache.ws.security.validate.Credential

            if (secToken == null) {
                // Validate the assertion against schemas/profiles
                validateAssertion(assertion);

                // Now verify trust on the signature
                Credential trustCredential = new Credential();
                SAMLKeyInfo samlKeyInfo = assertion.getSignatureKeyInfo();
                trustCredential.setPublicKey(samlKeyInfo.getPublicKey());
                trustCredential.setCertificates(samlKeyInfo.getCerts());

                trustCredential = validator.validate(trustCredential, requestData);

                // Finally check that subject DN of the signing certificate matches a known constraint
                X509Certificate cert = null;
                if (trustCredential.getCertificates() != null) {
                    cert = trustCredential.getCertificates()[0];
                }

                if (!certConstraints.matches(cert)) {
                    return response;
                }

Examples of org.apache.ws.security.validate.Credential

 * "worker".
 */
public class CustomUTValidator extends UsernameTokenValidator {

    public Credential validate(Credential credential, RequestData data) throws WSSecurityException {
        Credential cred = super.validate(credential, data);

        UsernameToken ut = credential.getUsernametoken();
        WSUsernameTokenPrincipal principal =
            new WSUsernameTokenPrincipal(ut.getName(), ut.isHashed());
        principal.setCreatedTime(ut.getCreated());
        principal.setNonce(principal.getNonce());
        principal.setPassword(ut.getPassword());
        principal.setPasswordType(ut.getPasswordType());

        Subject subject = new Subject();
        subject.getPrincipals().add(principal);
        if ("Alice".equals(ut.getName())) {
            subject.getPrincipals().add(new SimpleGroup("manager", ut.getName()));
        }
        subject.getPrincipals().add(new SimpleGroup("worker", ut.getName()));
        cred.setSubject(subject);

        return cred;
    }

Examples of org.apache.ws.security.validate.Credential

                assertion.parseHOKSubject(data, null);
            } else if (getTLSCertificates(message) == null) {
                throwFault("Assertion must be signed", null);
            }
            if (samlValidator != null) {
                Credential credential = new Credential();
                credential.setAssertion(assertion);
                samlValidator.validate(credential, data);
            }


            checkSubjectConfirmationData(message, assertion);

Examples of org.apache.ws.security.validate.Credential

                    secToken = null;
                }
            }

            if (secToken == null) {
                Credential credential = new Credential();
                credential.setUsernametoken(ut);
                validator.validate(credential, requestData);
            }

            Principal principal =
                createPrincipal(

Examples of org.apache.ws.security.validate.Credential

            }

            if (strElements.isEmpty()) {
                publicKey = parseKeyValue(keyInfoElement);
                if (validator != null) {
                    Credential credential = new Credential();
                    credential.setPublicKey(publicKey);
                    principal = new PublicKeyPrincipal(publicKey);
                    credential.setPrincipal(principal);
                    validator.validate(credential, data);
                }
            } else {
                STRParser strParser = new SignatureSTRParser();
                Map<String, Object> parameters = new HashMap<String, Object>();
                parameters.put(SignatureSTRParser.SIGNATURE_METHOD, signatureMethod);
                parameters.put(
                    SignatureSTRParser.SECRET_KEY_LENGTH, Integer.valueOf(data.getWssConfig().getSecretKeyLength())
                );
                strParser.parseSecurityTokenReference(
                    strElements.get(0), data, wsDocInfo, parameters
                );
                principal = strParser.getPrincipal();
                certs = strParser.getCertificates();
                publicKey = strParser.getPublicKey();
                secretKey = strParser.getSecretKey();
                referenceType = strParser.getCertificatesReferenceType();

                boolean trusted = strParser.isTrustedCredential();
                if (trusted && LOG.isDebugEnabled()) {
                    LOG.debug("Direct Trust for SAML/BST credential");
                }
                if (!trusted && (publicKey != null || certs != null) && (validator != null)) {
                    Credential credential = new Credential();
                    credential.setPublicKey(publicKey);
                    credential.setCertificates(certs);
                    credential.setPrincipal(principal);
                    validator.validate(credential, data);
                }
            }
        }

Examples of org.apache.ws.security.validate.Credential

                );
            }
        }

        Validator validator = data.getValidator(WSSecurityEngine.USERNAME_TOKEN);
        Credential credential = handleUsernameToken(elem, validator, data);
        UsernameToken token = credential.getUsernametoken();

        int action = WSConstants.UT;
        byte[] secretKey = null;
        if (token.getPassword() == null) {
            action = WSConstants.UT_NOPASSWORD;
            if (token.isDerivedKey()) {
                token.setRawPassword(data);
                secretKey = token.getDerivedKey();
            }
        }
        WSSecurityEngineResult result = new WSSecurityEngineResult(action, token);
        result.put(WSSecurityEngineResult.TAG_ID, token.getID());
        result.put(WSSecurityEngineResult.TAG_SECRET, secretKey);

        if (validator != null) {
            result.put(WSSecurityEngineResult.TAG_VALIDATED_TOKEN, Boolean.TRUE);
            if (credential.getTransformedToken() != null) {
                result.put(
                    WSSecurityEngineResult.TAG_TRANSFORMED_TOKEN, credential.getTransformedToken()
                );
                SAMLTokenPrincipal samlPrincipal =
                    new SAMLTokenPrincipal(credential.getTransformedToken());
                result.put(WSSecurityEngineResult.TAG_PRINCIPAL, samlPrincipal);
            } else {
                WSUsernameTokenPrincipal principal =
                    new WSUsernameTokenPrincipal(token.getName(), token.isHashed());
                principal.setNonce(token.getNonce());
                principal.setPassword(token.getPassword());
                principal.setCreatedTime(token.getCreated());
                principal.setPasswordType(token.getPasswordType());
                result.put(WSSecurityEngineResult.TAG_PRINCIPAL, principal);
            }
            result.put(WSSecurityEngineResult.TAG_SUBJECT, credential.getSubject());
        }

        wsDocInfo.addTokenElement(elem);
        wsDocInfo.addResult(result);
        return java.util.Collections.singletonList(result);

Examples of org.apache.ws.security.validate.Credential

        // Validate whether the security semantics have expired
        if (!ut.verifyCreated(utTTL, futureTimeToLive)) {
            throw new WSSecurityException(WSSecurityException.MESSAGE_EXPIRED);
        }

        Credential credential = new Credential();
        credential.setUsernametoken(ut);
        if (validator != null) {
            return validator.validate(credential, data);
        }
        return credential;
    }

Examples of org.apache.ws.security.validate.Credential

            log.debug("Found SAML Assertion element");
        }

        Validator validator =
            data.getValidator(new QName(elem.getNamespaceURI(), elem.getLocalName()));
        Credential credential = handleSAMLToken(elem, data, validator, wsDocInfo);
        AssertionWrapper assertion = credential.getAssertion();
        if (log.isDebugEnabled()) {
            log.debug("SAML Assertion issuer " + assertion.getIssuerString());
            log.debug(DOM2Writer.nodeToString(elem));
        }

        // See if the token has been previously processed
        String id = assertion.getId();
        Element foundElement = wsDocInfo.getTokenElement(id);
        if (elem.equals(foundElement)) {
            WSSecurityEngineResult result = wsDocInfo.getResult(id);
            return java.util.Collections.singletonList(result);
        } else if (foundElement != null) {
            throw new WSSecurityException(
                WSSecurityException.INVALID_SECURITY_TOKEN, "duplicateError"
            );
        }

        wsDocInfo.addTokenElement(elem);
        WSSecurityEngineResult result = null;
        if (assertion.isSigned()) {
            result = new WSSecurityEngineResult(WSConstants.ST_SIGNED, assertion);
        } else {
            result = new WSSecurityEngineResult(WSConstants.ST_UNSIGNED, assertion);
        }

        result.put(WSSecurityEngineResult.TAG_ID, assertion.getId());

        if (validator != null) {
            result.put(WSSecurityEngineResult.TAG_VALIDATED_TOKEN, Boolean.TRUE);
            if (credential.getTransformedToken() != null) {
                result.put(
                    WSSecurityEngineResult.TAG_TRANSFORMED_TOKEN, credential.getTransformedToken()
                );
                SAMLTokenPrincipal samlPrincipal =
                    new SAMLTokenPrincipal(credential.getTransformedToken());
                result.put(WSSecurityEngineResult.TAG_PRINCIPAL, samlPrincipal);
            } else if (credential.getPrincipal() != null) {
                result.put(WSSecurityEngineResult.TAG_PRINCIPAL, credential.getPrincipal());
            } else {
                result.put(WSSecurityEngineResult.TAG_PRINCIPAL, new SAMLTokenPrincipal(assertion));
            }
        }
        wsDocInfo.addResult(result);