com.ibm.websphere.security.auth
Interface WSSecurityContext
Deprecated. This class is being deprecated in favor of using JAAS.
- public interface WSSecurityContext
WSSecurityContext is used by SAS to be authentication mechanism agnostic by providing an interface for creating the authentication mechanism specific tokens. This should only be used in special cases.
- Version:
- 1.0
Method Summary WSSecurityContextResult acceptSecContext(byte[] token)
Deprecated. This method is called during the server receive_request in the portable interceptor.void completeSecContext(byte[] final_token)
Deprecated. This method is called during the client receive_reply in the portable interceptor.void dispose()
Deprecated. This method is called on the client after completeSecContext, and on the server after acceptSecContext.byte[] initSecContext(javax.security.auth.Subject subject, java.lang.String targetServerName, java.lang.String realm)
Deprecated. This method is called during the client send_request in the portable interceptor.byte[] initSecContext(WSCredential cred, java.lang.String targetServerName, java.lang.String realm)
Deprecated. Use WSSecurityContext.initSecContext(Subject subject, String targetServerName, String realm);
Method Detail initSecContext
public byte[] initSecContext(WSCredential cred, java.lang.String targetServerName, java.lang.String realm) throws WSSecurityContextException
- Deprecated. Use WSSecurityContext.initSecContext(Subject subject, String targetServerName, String realm);
This method is called during the client send_request in the portable interceptor. The purpose of this method is to create a security token for use by acceptSecContext to authenticate the user's security information.
- Parameters:
- cred - com.ibm.websphere.security.cred.WSCredential
- targetServerName - String
- realm - String
- Returns:
- byte[]
- WSSecurityContextException
initSecContext
public byte[] initSecContext(javax.security.auth.Subject subject, java.lang.String targetServerName, java.lang.String realm) throws WSSecurityContextException
- Deprecated.
This method is called during the client send_request in the portable interceptor. The purpose of this method is to create a security token for use by acceptSecContext to authenticate the user's security information.
- Parameters:
- subject - javax.security.auth.Subject
- targetServerName - String
- realm - String
- Returns:
- byte[]
- WSSecurityContextException
acceptSecContext
public WSSecurityContextResult acceptSecContext(byte[] token) throws WSSecurityContextException
- Deprecated.
This method is called during the server receive_request in the portable interceptor. It is responsible for processing the security token sent from the client and creating a credential and possibly a final_context_token. The final_context_token is optional, the credential is required.
- Parameters:
- token - byte[]
- Returns:
- com.ibm.websphere.security.auth.WSSecurityContextResult
- WSSecurityContextException
completeSecContext
public void completeSecContext(byte[] final_token) throws WSSecurityContextException
- Deprecated.
This method is called during the client receive_reply in the portable interceptor. It is used to process the final_context_token sent back to the client after the acceptSecContext.
- Parameters:
- final_token - byte[]
- WSSecurityContextException
dispose
public void dispose() throws WSSecurityContextException
- Deprecated.
This method is called on the client after completeSecContext, and on the server after acceptSecContext. The purpose of the method is to cleanup information on the client side and server side. The instance of WSSecurityContextImpl used to call initSecContext() will be the same for completeSecContext().
- WSSecurityContextException
WebSphere is a trademark of the IBM Corporation in the United States, other countries, or both.
IBM is a trademark of the IBM Corporation in the United States, other countries, or both.