Package org.apache.cxf.rt.security.rs

Class RSSecurityConstants

java.lang.Object
org.apache.cxf.rt.security.rs.RSSecurityConstants
public class RSSecurityConstants extends Object
Some common security constants that can be used RS-Security (for now they are used in the JOSE + HTTP Signature modules).

  • Field Details

    • RSSEC_KEY_STORE_TYPE

      public static final String RSSEC_KEY_STORE_TYPE
      The keystore type. It defaults to "JKS" for HTTP Signature, and "JWK" for JOSE.
      See Also:

    • RSSEC_KEY_STORE_PSWD

      public static final String RSSEC_KEY_STORE_PSWD
      The password required to access the keystore.
      See Also:

    • RSSEC_KEY_PSWD

      public static final String RSSEC_KEY_PSWD
      The password required to access the private key (in the keystore).
      See Also:

    • RSSEC_KEY_STORE_ALIAS

      public static final String RSSEC_KEY_STORE_ALIAS
      The keystore alias corresponding to the key to use. You can append one of the following to this tag to get the alias for more specific operations for JOSE: - jwe.out - jwe.in - jws.out - jws.in
      See Also:

    • RSSEC_KEY_STORE_FILE

      public static final String RSSEC_KEY_STORE_FILE
      The path to the keystore file.
      See Also:

    • RSSEC_KEY_STORE

      public static final String RSSEC_KEY_STORE
      The KeyStore Object.
      See Also:

    • RSSEC_KEY_PSWD_PROVIDER

      public static final String RSSEC_KEY_PSWD_PROVIDER
      A reference to a PrivateKeyPasswordProvider instance used to retrieve passwords to access keys. If this is not specified for JOSE, it falls back to use the RSSEC_KEY_PSWD_PROVIDER in JoseConstants.
      See Also:

    • RSSEC_SIGNATURE_ALGORITHM

      public static final String RSSEC_SIGNATURE_ALGORITHM
      The signature algorithm to use. The default algorithm if not specified is "rsa-sha256" for HTTP Signature, and "RS256" for JOSE.
      See Also:

    • RSSEC_SIGNATURE_OUT_PROPS

      public static final String RSSEC_SIGNATURE_OUT_PROPS
      The signature properties file for signature creation. If not specified then it falls back to RSSEC_SIGNATURE_PROPS.
      See Also:

    • RSSEC_SIGNATURE_IN_PROPS

      public static final String RSSEC_SIGNATURE_IN_PROPS
      The signature properties file for signature verification. If not specified then it falls back to RSSEC_SIGNATURE_PROPS.
      See Also:

    • RSSEC_SIGNATURE_PROPS

      public static final String RSSEC_SIGNATURE_PROPS
      The signature properties file for signature creation/verification.
      See Also:

    • RSSEC_ENABLE_REVOCATION

      public static final String RSSEC_ENABLE_REVOCATION
      Whether to enable revocation or not. The default is "false".
      See Also:

  • Constructor Details

    • RSSecurityConstants

      protected RSSecurityConstants()