Examples of SecurityPolicy

com.getperka.flatpack.security.SecurityPolicy
Determines the permissions that are required to access security targets.
com.sun.xml.wss.impl.policy.SecurityPolicy
Tagging interface for the following Security Policy types (or any custom defined security policy type)
- MLSPolicy
- SecurityPolicyContainer
- DynamicSecurityPolicy
org.cometd.bayeux.server.SecurityPolicy

A {@link SecurityPolicy} defines the broad authorization constraints that must beenforced by a {@link BayeuxServer}.

The usage of {@link SecurityPolicy} has been mostly replaced by the usage of themore flexible {@link Authorizer} for creation of channels, subscription to channelsand publish to channels. {@link SecurityPolicy} is still the central authorization component for handshakes.
A {@link BayeuxServer} may deny the handshake from clients that do not haveproper authentication credentials, or may deny clients to publish on reserved channels and so on; all these activities are controlled by the {@link SecurityPolicy}implementation installed on the {@link BayeuxServer} via{@link BayeuxServer#setSecurityPolicy(SecurityPolicy)}.
@see ServerChannel#addAuthorizer(Authorizer)
org.opensaml.ws.security.SecurityPolicy
A security policy is a collection of {@link SecurityPolicyRule}, evaluated against a {@link MessageContext}, that is meant to determine if a message is well-formed, valid, and otherwise okay to process. Security policies MUST be thread safe and stateless.

Examples of com.sun.xml.wss.impl.policy.SecurityPolicy

     * @return SecurityTokenReference
     */
    @SuppressWarnings("unchecked")
    protected SecurityTokenReference buildSTR(String strId, Reference ref) {
        SecurityTokenReference str = elementFactory.createSecurityTokenReference(ref);
        SecurityPolicy sp = context.getSecurityPolicy();
        if (sp instanceof SignaturePolicy || sp instanceof AuthenticationTokenPolicy ) {
            ((SecurityElement) str).setId(strId);
        }
        if (context.getWSSAssertion() != null) {
            if ((ref instanceof DirectReference) && context.getWSSAssertion().getType().equals("1.1")) {

View Full Code Here

Examples of com.sun.xml.wss.impl.policy.SecurityPolicy

        }


        if (isSCCancel()) {
            return getProtocolPolicy("SC-CANCEL");
        }
        SecurityPolicy mp = null;
        isSCMessage = isSCMessage();
        if (isSCMessage) {
            Token scToken = (Token) getInBoundSCP();
            return getInboundXWSBootstrapPolicy(scToken);
        }

View Full Code Here

Examples of com.sun.xml.wss.impl.policy.SecurityPolicy

        return null;
    }


    //TODO:POLALT modify this to return a PolicyAlternatives object when applicable
    private SecurityPolicy getInboundXWSSecurityPolicy(Message msg) {
        SecurityPolicy mp = null;


        //Review : Will this return operation name in all cases , doclit,rpclit, wrap / non wrap ?
        WSDLBoundOperation operation = null;
        if (cachedOperation != null) {
            operation = cachedOperation;

View Full Code Here

Examples of org.cometd.bayeux.server.SecurityPolicy

        };


    }


    private SecurityPolicy createTestSecurityPolicy() {
        return new SecurityPolicy() {


            @Override
            public boolean canSubscribe(BayeuxServer server, ServerSession session, ServerChannel channel,
                                        ServerMessage message) {
                session.setAttribute("Subscribed", true);

View Full Code Here

Examples of org.cometd.bayeux.server.SecurityPolicy

        Oort oort = seti.getOort();
        assertNotNull(oort);
        BayeuxServer bayeux = oort.getBayeuxServer();
        assertNotNull(bayeux);


        SecurityPolicy policy = bayeux.getSecurityPolicy();
        assertNotNull(policy);
        assertTrue(policy instanceof OortSecurityPolicy);


        server.stop();
    }

View Full Code Here

Examples of org.cometd.bayeux.server.SecurityPolicy


    @Test
    public void testHandshakeDenied() throws Exception
    {
        BayeuxClient client = newBayeuxClient();
        SecurityPolicy oldPolicy = bayeux.getSecurityPolicy();
        bayeux.setSecurityPolicy(new DefaultSecurityPolicy()
        {
            @Override
            public boolean canHandshake(BayeuxServer server, ServerSession session, ServerMessage message)
            {

View Full Code Here

Examples of org.cometd.bayeux.server.SecurityPolicy

                sessionId.set(null);
            }
        }
        A authenticator = new A();


        SecurityPolicy oldPolicy = bayeux.getSecurityPolicy();
        bayeux.setSecurityPolicy(authenticator);
        try
        {
            BayeuxClient client = newBayeuxClient();

View Full Code Here

Examples of org.opensaml.ws.security.SecurityPolicy

        SecurityPolicyResolver policyResolver = messageContext.getSecurityPolicyResolver();
        if (policyResolver == null) {
            return;
        }


        SecurityPolicy policy = null;
        try {
            policy = policyResolver.resolveSingle(messageContext);
            if (policy == null) {
                return;
            }
        } catch (SecurityException e) {
            throw new SOAPClientException("Unable to resolve security policy for inbound SOAP response", e);
        }


        try {
            log.debug("Evaluating security policy for inbound SOAP response");
            policy.evaluate(messageContext);
        } catch (SecurityException e) {
            throw new SOAPClientException("Inbound SOAP response does not meet security policy", e);
        }
    }

View Full Code Here

Examples of org.opensaml.ws.security.SecurityPolicy

        SecurityPolicyResolver policyResolver = messageContext.getSecurityPolicyResolver();
        if (policyResolver == null) {
            return;
        }


        SecurityPolicy policy = null;
        try {
            policy = policyResolver.resolveSingle(messageContext);
            if (policy == null) {
                return;
            }
        } catch (SecurityException e) {
            throw new SOAPClientException("Unable to resolve security policy for inbound SOAP response", e);
        }


        try {
            log.debug("Evaluating security policy for inbound SOAP response");
            policy.evaluate(messageContext);
        } catch (SecurityException e) {
            throw new SOAPClientException("Inbound SOAP response does not meet security policy", e);
        }
    }

View Full Code Here

Examples of org.opensaml.ws.security.SecurityPolicy

    public void receiveMessage(final SAMLMessageContext context, final SignatureTrustEngine engine) {


        context.setPeerEntityRole(IDPSSODescriptor.DEFAULT_ELEMENT_NAME);
        context.setInboundSAMLProtocol(SAMLConstants.SAML20P_NS);


        SecurityPolicy policy = new BasicSecurityPolicy();
        policy.getPolicyRules().add(new SAML2HTTPPostSimpleSignRule(engine, parserPool, engine.getKeyInfoResolver()));
        policy.getPolicyRules().add(new SAMLProtocolMessageXMLSignatureSecurityPolicyRule(engine));
        StaticSecurityPolicyResolver resolver = new StaticSecurityPolicyResolver(policy);
        context.setSecurityPolicyResolver(resolver);


        try {
            decoder.decode(context);

View Full Code Here

0 1 2 3 4 5

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.