All Classes
-
All Classes Interface Summary Class Summary Class Description AbstractChainingCredentialResolver<ResolverType extends CredentialResolver> An abstract implementation ofCredentialResolverwhich chains together one or more underlying credential resolver implementations.AbstractCredentialResolver Abstract base class forCredentialResolverimplementations.AbstractCriteriaFilteringCredentialResolver An abstract implementation ofCredentialResolverthat filters the returned Credentials based on the instances ofPredicatewhich are present in the set of criteria as instances ofEvaluableCredentialCriterion, or which are obtained via lookup in theEvaluableCredentialCriteriaRegistry.BaseClientCertAuthSecurityHandler Policy rule that checks if the client cert used to authenticate the request is valid and trusted.BaseTrustEngineSecurityHandler<TokenType> Base rule which uses a trust engine to evaluate a token extracted from the request or message.BasicClientTLSValidationConfiguration Basic implementation ofClientTLSValidationConfiguration.BasicClientTLSValidationParametersResolver Basic implementation ofClientTLSValidationParametersResolver.BasicHttpClientSecurityConfiguration Basic implementation ofHttpClientSecurityConfiguration.BasicHttpClientSecurityParametersResolver Basic implementation ofHttpClientSecurityParametersResolver.BasicPKIXValidationInformation Basic implementation ofPKIXValidationInformation.BasicX509CredentialNameEvaluator A basic implementaion ofX509CredentialNameEvaluatorwhich evaluates various identifiers extracted from anX509Credential's entity certificate against a set of trusted names.CertPathPKIXTrustEvaluator An implementation ofPKIXTrustEvaluatorthat is based on the Java CertPath API.CertPathPKIXValidationOptions Specialization ofPKIXValidationOptionswhich specifies options specific to aPKIXTrustEvaluatorbased on the Java CertPath API.ChainingCredentialResolver A concrete implementation ofAbstractChainingCredentialResolverwhich is scoped to the simpleCredentialResolvertype.ChainingTrustEngine<TokenType> Evaluate a token in sequence using a chain of subordinate trust engines.ClientTLSValidationConfiguratonInitializer An initializer which initializes the global configuration instance ofClientTLSValidationConfiguration.CollectionCredentialResolver An implementation ofCredentialResolverthat uses aCollectionas the underlying credential source.EvaluableCredentialCriteriaRegistry A registry which manages mappings from types ofCriterionto the class type which can evaluate that criteria's data against a Credential target.EvaluableCredentialCriterion Marker interface for evaluable credential resolver criteria.EvaluableEntityIDCredentialCriterion Instance of evaluable credential criteria for evaluating a credential's entityID.EvaluableKeyAlgorithmCredentialCriterion Instance of evaluable credential criteria for evaluating the credential key algorithm.EvaluableKeyLengthCredentialCriterion Instance of evaluable credential criteria for evaluating the credential key length.EvaluableKeyNameCredentialCriterion Instance of evaluable credential criteria for evaluating credential key names.EvaluablePublicKeyCredentialCriterion Instance of evaluable credential criteria for evaluating whether a credential contains a particular public key.EvaluableUsageCredentialCriterion Instance of evaluable credential criteria for evaluating whether a credential contains a particular usage specifier.EvaluableX509CertSelectorCredentialCriterion Instance of evaluable credential criteria for evaluating whether a credential's certificate meets the criteria specified by an instance ofX509CertSelector.EvaluableX509DigestCredentialCriterion An implementation ofCriterionwhich specifies criteria based on the digest of an X.509 certificate.EvaluableX509IssuerSerialCredentialCriterion Instance of evaluable credential criteria for evaluating whether a credential's certificate contains a particular issuer name and serial number.EvaluableX509SubjectKeyIdentifierCredentialCriterion Instance of evaluable credential criteria for evaluating whether a credential's certificate contains a particular subject key identifier.EvaluableX509SubjectNameCredentialCriterion Instance of evaluable credential criteria for evaluating whether a credential's certificate contains a particular subject name.ExplicitKeyTrustEngine Trust engine that evaluates a credential's key against key(s) expressed within a set of trusted credentials obtained from a trusted credential resolver.ExplicitKeyTrustEvaluator Auxillary trust evaluator for evaluating an untrusted key or credential against a trusted key or credential.ExplicitX509CertificateTrustEngine Trust engine that evaluates a credential's X.509 certificate against certificates expressed within a set of trusted credentials obtained from a credential resolver.ExplicitX509CertificateTrustEvaluator Auxillary trust evaluator for evaluating an untrusted X509 certificate or credential against a trusted certificate or credential.FilesystemCredentialResolver NOTE: this class is not yet implemented ACredentialResolverthat pulls credential information from the file system.HttpClientSecurityConfigurationInitalizer An initializer which initializes the globalHttpClientSecurityConfiguration.KeyStoreCredentialResolver ACredentialResolverthat extractsCredential's from a key store.KeyStoreX509CredentialAdapter A wrapper that changes aKeyStorein to aX509Credential.PKIXX509CredentialTrustEngine Trust engine implementation which evaluates anX509Credentialtoken based on PKIX validation processing using validation information from a trusted source.PopulateHttpClientSecurityParametersHandler Handler that resolves and populatesHttpClientSecurityParameterson aHttpClientSecurityContextcreated/accessed via a lookup function, by default as an immediate child context of the targetMessageContext.SecurityEnhancedHttpClientSupport Support class for working with security-enhanced components related to use ofHttpClient.SecurityEnhancedTLSSocketFactory An security-enhanced implementation of HttpClient's TLS-capableLayeredConnectionSocketFactory.StaticCredentialResolver Simple implementation ofCredentialResolverwhich just stores and returns a static set of credentials.StaticPKIXValidationInformationResolver An implementation ofPKIXValidationInformationResolverwhich always returns a static, fixed set of information.StaticX509CredentialKeyManager An implementation ofX509KeyManagerbased on a single statically configured private key and certificate chain, supplied either directly or via an instance ofX509Credential.ThreadLocalClientTLSCredentialHandler An implementation ofHttpClientContextHandlerwhich clears the thread local client TLS credential held byThreadLocalX509CredentialContext.ThreadLocalServerTLSHandler An implementation ofHttpClientContextHandlerwhich handles cleanup and transfer of data used for server TLS held byThreadLocalX509TrustEngineContext.ThreadLocalX509CredentialContext Class which holds and makes available an instance ofX509Credentialvia ThreadLocal storage, typically used for client TLS authentication viaThreadLocalX509CredentialKeyManager.ThreadLocalX509CredentialKeyManager An implementation ofX509KeyManagerwhich returns data based on the thread-local credential instance obtained viaThreadLocalX509CredentialContext.ThreadLocalX509TrustEngineContext Class which holds and makes available instances ofTrustEngine<? superX509Credential>andCriteriaSetvia ThreadLocal storage, typically used for server TLS authentication viaThreadLocalX509TrustManager.ThreadLocalX509TrustEngineContext.Data ThreadLocalX509TrustManager An implementation ofX509TrustManagerwhich performs its evaluation using trust engine and criteria instances available fromThreadLocalX509TrustEngineContext.TrustEngineX509TrustManager X509TrustManagerimplementation that relies on aTrustEngine.X509CredentialNameEvaluator Interface for classes which evaluate anX509Credentialagainst a supplied set of trusted names.X509KeyManagerX509CredentialAdapter A class that wraps aX509KeyManagerand exposes it as anX509Credential.