org.springframework.ws.soap.security.wss4j.callback
Class AbstractWsPasswordCallbackHandler

java.lang.Object
  org.springframework.ws.soap.security.callback.AbstractCallbackHandler
      org.springframework.ws.soap.security.wss4j.callback.AbstractWsPasswordCallbackHandler

All Implemented Interfaces:

javax.security.auth.callback.CallbackHandler

Direct Known Subclasses:

KeyStoreCallbackHandler, SimplePasswordValidationCallbackHandler, SpringDigestPasswordValidationCallbackHandler, SpringPlainTextPasswordValidationCallbackHandler

public abstract class AbstractWsPasswordCallbackHandler
extends AbstractCallbackHandler

Abstract base class for CallbackHandler implementations that handle WSPasswordCallback callbacks.

Since:

1.5.0

Author:

Arjen Poutsma

Field Summary

Fields inherited from class org.springframework.ws.soap.security.callback.AbstractCallbackHandler

logger

Constructor Summary

AbstractWsPasswordCallbackHandler()

Method Summary

protected void	handleCleanup(CleanupCallback callback) Invoked when a CleanupCallback is passed to AbstractCallbackHandler.handle(Callback[]).
protected void	handleCustomToken(org.apache.ws.security.WSPasswordCallback callback) Invoked when the callback has a WSPasswordCallback.CUSTOM_TOKEN usage.
protected void	handleDecrypt(org.apache.ws.security.WSPasswordCallback callback) Invoked when the callback has a WSPasswordCallback.DECRYPT usage.
protected void	handleEncryptedKeyToken(javax.security.auth.callback.Callback callback) Invoked when the callback has a WSPasswordCallback.ENCRYPTED_KEY_TOKEN usage.
protected void	handleInternal(javax.security.auth.callback.Callback callback) Handles WSPasswordCallback callbacks.
protected void	handleKeyName(org.apache.ws.security.WSPasswordCallback callback) Invoked when the callback has a WSPasswordCallback.KEY_NAME usage.
protected void	handleSecurityContextToken(org.apache.ws.security.WSPasswordCallback callback) Invoked when the callback has a WSPasswordCallback.SECURITY_CONTEXT_TOKEN usage.
protected void	handleSignature(org.apache.ws.security.WSPasswordCallback callback) Invoked when the callback has a WSPasswordCallback.SIGNATURE usage.
protected void	handleUsernameToken(org.apache.ws.security.WSPasswordCallback callback) Invoked when the callback has a WSPasswordCallback.USERNAME_TOKEN usage.
protected void	handleUsernameTokenPrincipal(UsernameTokenPrincipalCallback callback) Invoked when a UsernameTokenPrincipalCallback is passed to AbstractCallbackHandler.handle(Callback[]).
protected void	handleUsernameTokenUnknown(org.apache.ws.security.WSPasswordCallback callback) Invoked when the callback has a WSPasswordCallback.USERNAME_TOKEN_UNKNOWN usage.

Methods inherited from class org.springframework.ws.soap.security.callback.AbstractCallbackHandler

handle

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

AbstractWsPasswordCallbackHandler

public AbstractWsPasswordCallbackHandler()

Method Detail

handleInternal

protected final void handleInternal(javax.security.auth.callback.Callback callback)
                             throws java.io.IOException,
                                    javax.security.auth.callback.UnsupportedCallbackException

Handles WSPasswordCallback callbacks. Inspects the callback usage code, and calls the various handle* template methods.

Specified by:

handleInternal in class AbstractCallbackHandler

Parameters:

callback - the callback

Throws:

java.io.IOException - in case of I/O errors

javax.security.auth.callback.UnsupportedCallbackException - when the callback is not supported

handleDecrypt

protected void handleDecrypt(org.apache.ws.security.WSPasswordCallback callback)
                      throws java.io.IOException,
                             javax.security.auth.callback.UnsupportedCallbackException

Invoked when the callback has a WSPasswordCallback.DECRYPT usage.

This method is invoked when WSS4J needs a password to get the private key of the identifier (username) from the keystore. WSS4J uses this private key to decrypt the session (symmetric) key. Because the encryption method uses the public key to encrypt the session key it needs no password (a public key is usually not protected by a password).

Default implementation throws an UnsupportedCallbackException.

Throws:

java.io.IOException

javax.security.auth.callback.UnsupportedCallbackException

handleUsernameToken

protected void handleUsernameToken(org.apache.ws.security.WSPasswordCallback callback)
                            throws java.io.IOException,
                                   javax.security.auth.callback.UnsupportedCallbackException

Invoked when the callback has a WSPasswordCallback.USERNAME_TOKEN usage.

This method is invoked when WSS4J needs the password to fill in or to verify a UsernameToken.

Default implementation throws an UnsupportedCallbackException.

Throws:

java.io.IOException

javax.security.auth.callback.UnsupportedCallbackException

handleSignature

protected void handleSignature(org.apache.ws.security.WSPasswordCallback callback)
                        throws java.io.IOException,
                               javax.security.auth.callback.UnsupportedCallbackException

Invoked when the callback has a WSPasswordCallback.SIGNATURE usage.

This method is invoked when WSS4J needs the password to get the private key of the identifier (username) from the keystore. WSS4J uses this private key to produce a signature. The signature verfication uses the public key to verfiy the signature.

Default implementation throws an UnsupportedCallbackException.

Throws:

java.io.IOException

javax.security.auth.callback.UnsupportedCallbackException

handleKeyName

protected void handleKeyName(org.apache.ws.security.WSPasswordCallback callback)
                      throws java.io.IOException,
                             javax.security.auth.callback.UnsupportedCallbackException

Invoked when the callback has a WSPasswordCallback.KEY_NAME usage.

This method is invoked when WSS4J needs the key associated with the identifier. WSS4J uses this key to encrypt or decrypt parts of the SOAP request. Note, the key must match the symmetric encryption/decryption algorithm specified (refer to WSHandlerConstants.ENC_SYM_ALGO).

Default implementation throws an UnsupportedCallbackException.

Throws:

java.io.IOException

javax.security.auth.callback.UnsupportedCallbackException

handleUsernameTokenUnknown

protected void handleUsernameTokenUnknown(org.apache.ws.security.WSPasswordCallback callback)
                                   throws java.io.IOException,
                                          javax.security.auth.callback.UnsupportedCallbackException

Invoked when the callback has a WSPasswordCallback.USERNAME_TOKEN_UNKNOWN usage.

This method is invoked for a not specified password type or a plain text password type. Only the password is set. The callback class now may check if the username and password match. If they don't match, the subclass should throw an exception.

Default implementation throws an UnsupportedCallbackException.

Throws:

java.io.IOException

javax.security.auth.callback.UnsupportedCallbackException

handleSecurityContextToken

protected void handleSecurityContextToken(org.apache.ws.security.WSPasswordCallback callback)
                                   throws java.io.IOException,
                                          javax.security.auth.callback.UnsupportedCallbackException

Invoked when the callback has a WSPasswordCallback.SECURITY_CONTEXT_TOKEN usage.

This method is invoked when WSS4J needs the key to to be associated with a SecurityContextToken.

Default implementation throws an UnsupportedCallbackException.

Throws:

java.io.IOException

javax.security.auth.callback.UnsupportedCallbackException

handleCustomToken

protected void handleCustomToken(org.apache.ws.security.WSPasswordCallback callback)
                          throws java.io.IOException,
                                 javax.security.auth.callback.UnsupportedCallbackException

Invoked when the callback has a WSPasswordCallback.CUSTOM_TOKEN usage.

Default implementation throws an UnsupportedCallbackException.

Throws:

java.io.IOException

javax.security.auth.callback.UnsupportedCallbackException

handleEncryptedKeyToken

protected void handleEncryptedKeyToken(javax.security.auth.callback.Callback callback)
                                throws java.io.IOException,
                                       javax.security.auth.callback.UnsupportedCallbackException

Invoked when the callback has a WSPasswordCallback.ENCRYPTED_KEY_TOKEN usage.

Default implementation throws an UnsupportedCallbackException.

Throws:

java.io.IOException

javax.security.auth.callback.UnsupportedCallbackException

handleCleanup

protected void handleCleanup(CleanupCallback callback)
                      throws java.io.IOException,
                             javax.security.auth.callback.UnsupportedCallbackException

Invoked when a CleanupCallback is passed to AbstractCallbackHandler.handle(Callback[]).

Default implementation throws an UnsupportedCallbackException.

Throws:

java.io.IOException

javax.security.auth.callback.UnsupportedCallbackException

handleUsernameTokenPrincipal

protected void handleUsernameTokenPrincipal(UsernameTokenPrincipalCallback callback)
                                     throws java.io.IOException,
                                            javax.security.auth.callback.UnsupportedCallbackException

Invoked when a UsernameTokenPrincipalCallback is passed to AbstractCallbackHandler.handle(Callback[]).

Default implementation throws an UnsupportedCallbackException.

Throws:

java.io.IOException

javax.security.auth.callback.UnsupportedCallbackException