001/** 002 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER. 003 * 004 * Copyright (c) 2006 Sun Microsystems Inc. All Rights Reserved 005 * 006 * The contents of this file are subject to the terms 007 * of the Common Development and Distribution License 008 * (the License). You may not use this file except in 009 * compliance with the License. 010 * 011 * You can obtain a copy of the License at 012 * https://opensso.dev.java.net/public/CDDLv1.0.html or 013 * opensso/legal/CDDLv1.0.txt 014 * See the License for the specific language governing 015 * permission and limitations under the License. 016 * 017 * When distributing Covered Code, include this CDDL 018 * Header Notice in each file and include the License file 019 * at opensso/legal/CDDLv1.0.txt. 020 * If applicable, add the following below the CDDL Header, 021 * with the fields enclosed by brackets [] replaced by 022 * your own identifying information: 023 * "Portions Copyrighted [year] [name of copyright owner]" 024 * 025 * $Id: IFSConstants.java,v 1.12 2008/08/29 04:57:15 exu Exp $ 026 * 027 */ 028 029 030package com.sun.identity.federation.common; 031 032import com.sun.identity.cot.COTConstants; 033/** 034 * This interface represents a collection of common constants used by 035 * the classes in Federation Service. 036 * @supported.all.api 037 */ 038public interface IFSConstants { 039 /** 040 * HTTPS URL prefix 041 */ 042 public static final String HTTPS_URL_PREFIX = "https://"; 043 /** 044 * Dot character 045 */ 046 public static final char DOT = '.'; 047 /** 048 * Federation error 049 */ 050 public static final String FEDERROR ="federror"; 051 /** 052 * Federation remark 053 */ 054 public static final String FEDREMARK ="fedremark"; 055 /** 056 * Provider or entity status 057 */ 058 public static final String ACTIVE = "active"; 059 /** 060 * Provider or entity status 061 */ 062 public static final String INACTIVE = "inactive"; 063 /** 064 * IDFF 1.1 meta version 065 */ 066 public static final String ENUM_ZERO = "urn:liberty:iff:2002-12"; 067 /** 068 * IDFF 1.2 meta version 069 */ 070 public static final String ENUM_ONE = "urn:liberty:iff:2003-08"; 071 /** 072 * Affiliation descriptor 073 */ 074 public static final String AFFILIATE_TYPE = "urn:liberty:iff:affiliate"; 075 /** 076 * Provider descriptor 077 */ 078 public static final String CONTAINER_TYPE = "urn:liberty:iff:provider"; 079 /** 080 * SOAP binding 081 */ 082 public static final String SOAP = "SOAP"; 083 /** 084 * HTTP redirect 085 */ 086 public static final String HTTP_REDIRECT = "HTTP Redirect"; 087 /** 088 * HTTP redirect 089 */ 090 public static final String HTTP_GET = "HTTP Get"; 091 /** 092 * PASSIVE mode 093 */ 094 public static final String PASSIVE = "passive"; 095 /** 096 * Local login page 097 */ 098 public static final String LOCAL_LOGIN = "locallogin"; 099 /** 100 * Common login page 101 */ 102 public static final String COMMON_LOGIN = "commonlogin"; 103 /** 104 * Provider acts SP and IDP role 105 */ 106 public static final String SP_IDP = "SP/IDP"; 107 /** 108 * Supported protocol type 109 */ 110 public static final String ALLOWED_PROTOCOL_KEY = 111 "com.sun.identity.federation.allowedProtocol"; 112 /** 113 * Specify keystore location in config file 114 */ 115 public static final String KEY_STORE = 116 "com.sun.identity.saml.xmlsig.keystore"; 117 /** 118 * Specify keystore password file in config file 119 */ 120 public static final String STORE_PASS = 121 "com.sun.identity.saml.xmlsig.storepass"; 122 /** 123 * Specify private key password in config file 124 */ 125 public static final String KEY_PASS = 126 "com.sun.identity.saml.xmlsig.keypass"; 127 128 /** 129 * Specify login URL IDP will redirect to when there is no valid session 130 */ 131 public static final String IDP_LOGIN_URL = 132 "com.sun.identity.federation.services.idpLoginURL"; 133 134 /** 135 * Internal error 136 */ 137 public static final String INTERNAL_ERROR = "internalError"; 138 139 public static final int LOCAL_NAME_IDENTIFIER = 0; 140 public static final int REMOTE_NAME_IDENTIFIER = 1; 141 142 // ********************************** 143 // these are keys whose values store in "libIDFF.properties" file. 144 // ********************************** 145 /** 146 * Account management: hosted descriptor config is null. 147 */ 148 public static final String NULL_HOSTED_CONFIG = 149 "actmgmt-hosted-config-is-null"; 150 /** 151 * Account management: hosted entity id is null. 152 */ 153 public static final String NULL_PROVIDER_ID = 154 "actmgmt-provider-id-is-null"; 155 /** 156 * Account management: meta alias is null. 157 */ 158 public static final String NULL_META_ALIAS = 159 "actmgmt-meta-alias-is-null"; 160 /** 161 * Account management: User DN is null. 162 */ 163 public static final String NULL_USER_DN = 164 "actmgmt-user-dn-is-null"; 165 /** 166 * Account management: Opaque handle is null. 167 */ 168 public static final String NULL_NAME = 169 "actmgmt-name-is-null"; 170 /** 171 * Account management: Namespace is null. 172 */ 173 public static final String NULL_NAME_SPACE = 174 "actmgmt-name-space-is-null"; 175 /** 176 * Account management: Name identifier is null. 177 */ 178 public static final String NULL_NAME_IDENTIFIER = 179 "actmgmt-name-identifier-is-null"; 180 /** 181 * Account management: FedInfo is null. 182 */ 183 public static final String NULL_FED_INFO_OBJECT = 184 "actmgmt-account-fed-info-object-is-null"; 185 /** 186 * Account management: FedInfo key is null. 187 */ 188 public static final String NULL_FED_INFO_KEY_OBJECT = 189 "actmgmt-account-fed-info-key-object-is-null"; 190 /** 191 * Account management: Account federation info is 192 * modified in the directory. 193 */ 194 public static final String INVALID_ACT_FED_INFO_IN_IDS = 195 "actmgmt-fed-info-modified-in-ids"; 196 /** 197 * Account management: Invalid name identifier type. 198 */ 199 public static final String INVALID_NAME_IDENTIFIER_TYPE = 200 "actmgmt-nameIdentifierType-invalid"; 201 /** 202 * Account management: Account federation info not found. 203 */ 204 public static final String ACT_FED_INFO_NOT_FOUND = 205 "actmgmt-fed-info-not-found"; 206 /** 207 * Account management: Multiple UIDs matched. 208 */ 209 public static final String MULTIPLE_UID_MATCHED = 210 "actmgmt-multiple-uid-matched"; 211 /** 212 * Account management: UID does not match. 213 */ 214 public static final String UID_NOT_MATCHED = 215 "actmgmt-uid-not-matched"; 216 /** 217 * Account management: User does not match. 218 */ 219 public static final String USER_NOT_FOUND = 220 "actmgmt-user-not-found"; 221 /** 222 * Maximum number of Assertion 223 */ 224 public static final int ASSERTION_MAX_NUMBER_DEFAULT = 10; 225 /** 226 * Cleanup time interval 227 */ 228 public static final int CLEANUP_INTERVAL_DEFAULT = 180; 229 /** 230 * User is used in basic authentication. 231 */ 232 public static final String USER = "iplanet-am-saml-user"; 233 /** 234 * Password for the user (basic authentication). 235 */ 236 public static final String PASSWORD="iplanet-am-saml-password"; 237 /** 238 * Basic authentication 239 */ 240 public static final String BASICAUTH= "BASICAUTH"; 241 /** 242 * SSL with basic authentication 243 */ 244 public static final String SSLWITHBASICAUTH = "SSLWITHBASICAUTH"; 245 /** 246 * No authentication enforced 247 */ 248 public static final String NOAUTH = "NOAUTH"; 249 /** 250 * SSL 251 */ 252 public static final String SSL = "SSL"; 253 /** 254 * Status code for saml protocol success 255 */ 256 public static final String STATUS_CODE_SUCCESS = "samlp:Success"; 257 /** 258 * Status code for saml protocol success without prefix 259 */ 260 public static final String STATUS_CODE_SUCCESS_NO_PREFIX = ":Success"; 261 /** 262 * http protocol 263 */ 264 public static final String HTTP="http"; 265 /** 266 * https protocol 267 */ 268 public static final String HTTPS="https"; 269 /** 270 * Post AuthnResponse parameter 271 */ 272 public static final String POST_AUTHN_RESPONSE_PARAM = "LARES"; 273 /** 274 * Post AuthnRequest parameter 275 */ 276 public static final String POST_AUTHN_REQUEST_PARAM = "LAREQ"; 277 /** 278 * Authentication indicator parameter 279 */ 280 public static final String AUTHN_INDICATOR_PARAM = "Authn"; 281 /** 282 * Default value for Authentication indicator parameter 283 */ 284 public static final String AUTHN_INDICATOR_VALUE = "true"; 285 /** 286 * Attribute name in the session 287 */ 288 public static final String SESSION_COTSET_ATTR = "CotSet"; 289 /** 290 * Maximum length of URL 291 */ 292 public static final int URL_MAX_LENGTH = 1256; 293 /** 294 * Error in metadata setting. 295 */ 296 public static final String METADATA_ERROR = 297 "metadata-error-check"; 298 /** 299 * Contact system administrator to report this problem. 300 */ 301 public static final String CONTACT_ADMIN = "contact-admin"; 302 /** 303 * Federation access log file name 304 */ 305 public static final String FS_ACCESS_LOG_NAME = "Federation.access"; 306 /** 307 * Federation error log file name 308 */ 309 public static final String FS_ERROR_LOG_NAME = "Federation.error"; 310 /** 311 * Status code: <code>samlp:Success</code> 312 */ 313 public static final String SAML_SUCCESS = "samlp:Success"; 314 /** 315 * Status code: <code>samlp:Responder</code> 316 */ 317 public static final String SAML_RESPONDER = "samlp:Responder"; 318 /** 319 * Status code: <code>samlp:Requester</code> 320 */ 321 public static final String SAML_REQUESTER = "samlp:Requester"; 322 /** 323 * Status code: <code>samlp:VersionMismatch</code> 324 */ 325 public static final String SAML_VERSION_MISMATCH = "samlp:VersionMismatch"; 326 327 /** 328 * Liberty unsupported: <code>lib:Unsupported</code> 329 */ 330 public static final String SAML_UNSUPPORTED = "lib:Unsupported"; 331 /** 332 * Liberty failure: <code>lib:Failure</code> 333 */ 334 public static final String REGISTRATION_FAILURE_STATUS = "lib:Failure"; 335 /** 336 * Liberty federation does not exist: 337 * <code>lib:FederationDoesNotExist</code> 338 */ 339 public static final String FEDERATION_NOT_EXISTS_STATUS = 340 "lib:FederationDoesNotExist"; 341 /** 342 * Register NameIdentifier Request 343 */ 344 public static final String NAME_REGISTRATION_REQUEST = 345 "RegisterNameIdentifierRequest"; 346 /** 347 * Register NameIdentifier Response 348 */ 349 public static final String NAME_REGISTRATION_RESPONSE = 350 "RegisterNameIdentifierResponse"; 351 /** 352 * <code>lib</code> tag 353 */ 354 public static final String LIB = "lib"; 355 /** 356 * <code>yes</code> 357 */ 358 public static final String YES = "yes"; 359 /** 360 * <code>no</code> 361 */ 362 public static final String NO = "no"; 363 /** 364 * SP role 365 */ 366 public static final String SP = "SP"; 367 /** 368 * IDP role 369 */ 370 public static final String IDP = "IDP"; 371 /** 372 * SP and IDP role 373 */ 374 public static final String BOTH ="IDP/SP"; 375 /** 376 * Preferred cookie seperator 377 */ 378 public static final String PREFERRED_COOKIE_SEPERATOR = " "; 379 /** 380 * Session cookie 381 */ 382 public static final String SESSION_COOKIE = "SESSION"; 383 /** 384 * Persistent cookie 385 */ 386 public static final String PERSISTENT_COOKIE = "PERSISTENT"; 387 /** 388 * Persistent cookie expiration, by default 365 days 389 */ 390 public static final int PERSISTENT_COOKIE_AGE = 31536000; 391 /** 392 * Session cookie expiration 393 */ 394 public static final int SESSION_COOKIE_AGE = -1; 395 /** 396 * Repeat termination flag 397 */ 398 public static final String TERMINATION_REPEAT_FLAG = "repeatTerm"; 399 /** 400 * Repeat logout flag 401 */ 402 public static final String LOGOUT_REPEAT_FLAG = "repeatLogout"; 403 /** 404 * Partner session 405 */ 406 public static final String PARTNER_SESSION = "PartnerSession"; 407 /** 408 * Session index 409 */ 410 public static final String SESSION_INDEX = "SessionIndex"; 411 /** 412 * Provider 413 */ 414 public static final String PROVIDER = "Provider"; 415 /** 416 * Missing value for security key. 417 */ 418 public static final String MISSING_KEYINFO = "missingKeyInfo"; 419 /** 420 * Provider ID not in request and not able to reset preferred IDP 421 */ 422 public static final String INTRODUCTION_NO_PROVIDER_ID = 423 "introduction-no-provider-id"; 424 /** 425 * Redirect URL not specified. 426 */ 427 public static final String INTRODUCTION_NO_REDIRECT_URL = 428 "introduction-no-redirect-url"; 429 /** 430 * Invalid Redirect URL scheme. 431 */ 432 public static final String INTRODUCTION_INVALID_REDIRECT_URL_SCHEME = 433 "invalid-redirect-url-scheme"; 434 /** 435 * Preferred IDP Cookie not found. 436 */ 437 public static final String INTRODUCTION_COOKIE_NOT_FOUND = 438 "preferred-idp-cookie-not-found"; 439 /** 440 *Invalid Property file. No providerid code. 441 */ 442 public static final String INTRODUCTION_PROPERTY_FILE_PROVIDER_INVALID = 443 "introduction-invalid-providerid-property-file"; 444 /** 445 * Invalid Property File 446 */ 447 public static final String FEDERATION_PROPERTY_FILE_INVALID = 448 "federation-invalid-property-file"; 449 /** 450 * Failed to get Meta Manager Instance. 451 */ 452 public static final String FEDERATION_FAILED_META_INSTANCE = 453 "federation-failed-meta-instance"; 454 /** 455 * Failed to get Account Manager Instance. 456 */ 457 public static final String FEDERATION_FAILED_ACCOUNT_INSTANCE = 458 "federation-failed-account-instance"; 459 /** 460 * Redirection failed. Cannot process further 461 */ 462 public static final String FEDERATION_REDIRECT_FAILED = 463 "federation-redirection-failed"; 464 /** 465 * Failed to get Pre/Logout handler. 466 */ 467 public static final String LOGOUT_INVALID_HANDLER = 468 "logout-invalid-handler"; 469 /** 470 * Logout failed. Manager instance not available. 471 */ 472 public static final String LOGOUT_FAILED_MANAGER = 473 "logout-failed-manager"; 474 /** 475 * Logout failed to redirect due to incorrect URL. 476 */ 477 public static final String LOGOUT_REDIRECT_FAILED = 478 "logout-redirect-failed"; 479 /** 480 * Logout failed due to invalid session. 481 * Redirect to authentication. 482 */ 483 public static final String LOGOUT_TOKEN_INVALID = 484 "logout-token-invalid"; 485 /** 486 * Single logout failed. 487 */ 488 public static final String LOGOUT_FAILED = "logout-failed"; 489 /** 490 * Logout request not formed properly. Cannot proceed. 491 */ 492 public static final String LOGOUT_REQUEST_IMPROPER = 493 "logout-request-improper"; 494 /** 495 * Creation of logout request failed. 496 */ 497 public static final String LOGOUT_REQUEST_CREATION = 498 "logout-request-creation-failed"; 499 /** 500 * Failed to process Logout request. 501 */ 502 public static final String LOGOUT_REQUEST_PROCESSING_FAILED = 503 "logout-request-processing-failed"; 504 /** 505 * Logout request does not have provider specified properly. 506 * Cannot process request. 507 */ 508 public static final String LOGOUT_REQUEST_NO_PROVIDER = 509 "logout-request-no-provider"; 510 /** 511 * Unable to find cert alias. Cannot sign or verify request. 512 */ 513 public static final String NO_CERT_ALIAS = "cannot-find-cert-alias"; 514 /** 515 * Unable to find certificate. Cannot sign or verify request. 516 */ 517 public static final String NO_CERT = "cannot-find-cert"; 518 /** 519 * Request does not contain proper provider ID. 520 */ 521 public static final String REQUEST_NO_PROVIDER = "request-no-provider"; 522 /** 523 * Failed to create SPProvidedNameIdentifier. 524 */ 525 public static final String REGISTRATION_FAILED_SP_NAME_IDENTIFIER = 526 "registration-failed-sp-name-identifier"; 527 /** 528 * Error in processing Name Registration at IDP. 529 */ 530 public static final String REGISTRATION_FAILED_REMOTE = 531 "registration-failed-remote"; 532 /** 533 * Error in sending Name Registration at IDP. 534 */ 535 public static final String REGISTRATION_FAILED_SEND_REMOTE = 536 "registration-failed-send-remote"; 537 /** 538 * Error in processing Name Registration at SP. 539 */ 540 public static final String REGISTRATION_FAILED_LOCAL = 541 "registration-failed-local"; 542 /** 543 * Successful processing of Name Registration at IDP. 544 */ 545 public static final String REGISTRATION_SUCCESS_REMOTE = 546 "registration-success-remote"; 547 /** 548 * Successful processing of Name Registration at SP. 549 */ 550 public static final String REGISTRATION_SUCCESS_LOCAL = 551 "registration-success-local"; 552 /** 553 * Failed to create Name Registration request. 554 */ 555 public static final String REGISTRATION_REQUEST_CREATION_FAILED = 556 "registration-request-creation-failed"; 557 /** 558 * LECP header name 559 */ 560 public static final String LECP_HEADER_NAME = "Liberty-Enabled"; 561 /** 562 * WML header value 563 */ 564 public static final String WML_HEADER_VALUE = "text/vnd.wap.wml"; 565 /** 566 * WML profile 567 */ 568 public static final String WML_PROFILE = 569 "http://projectliberty.org/profiles/wml-post"; 570 /** 571 * Exception in Federation Termination. Unknown Error. 572 */ 573 public static final String TERMINATION_EXCEPTION = 574 "termination-exception-unknown"; 575 /** 576 * Account federation for user with provider does not exist. 577 */ 578 public static final String TERMINATION_INVALID_FEDERATION = 579 "termination-invalid-federation"; 580 /** 581 * Termination cannot proceed. Provider not found. 582 */ 583 public static final String TERMINATION_NO_PROVIDER = 584 "termination-no-provider"; 585 /** 586 * Invalid Termination Handler 587 */ 588 public static final String TERMINATION_INVALID_HANDLER = 589 "termination-handle-invalid"; 590 /** 591 * Federation Termination failed during processTerminationRequest. 592 */ 593 public static final String TERMINATION_REQUEST_PROCESSING_FAILED = 594 "termination-request-processing-failed"; 595 /** 596 * Request not proper. Cannot proceed federation termination. 597 */ 598 public static final String TERMINATION_REQUEST_IMPROPER = 599 "termination-request-improper"; 600 /** 601 * Request creation failed. Cannot proceed with federation ] 602 * termination. 603 */ 604 public static final String TERMINATION_REQUEST_CREATION = 605 "termination-request-creation-failed"; 606 /** 607 * Federation Termination failed at remote provider. 608 */ 609 public static final String TERMINATION_REMOTE_FAILED = 610 "termination-failed-remotely"; 611 /** 612 * Federation Termination failed locally. Cannot update account. 613 */ 614 public static final String TERMINATION_LOCAL_FAILED = 615 "termination-failed-locally"; 616 /** 617 * Federation Termination succeeded locally. User account updated. 618 */ 619 public static final String TERMINATION_LOCAL_SUCCEEDED = 620 "termination-succeeded-locally"; 621 /** 622 * Failed to get termination handler. 623 */ 624 public static final String TERMINATION_HANDLE_CREATION_FAILED = 625 "termination-handle-creation-failed"; 626 /** 627 * Failed in sending SOAP request to remote end. 628 */ 629 public static final String TERMINATION_SOAP_SEND_FAILED = 630 "termination-soap-send-failed"; 631 /** 632 * Invalid Federation Termination Service Return URL. 633 */ 634 public static final String TERMINATION_INVALID_REDIRECT_URL = 635 "termination-invalid-redirect-url"; 636 /** 637 * Federation Termination Successful 638 */ 639 public static final String TERMINATION_SUCCEEDED = 640 "federation-termination-successful"; 641 /** 642 * Signature verification of federation termination request failed. 643 */ 644 public static final String TERMINATION_INVALID_SIGNATURE = 645 "termination-invalid-signature"; 646 /** 647 * Failed to construct SOAP message from request object. 648 */ 649 public static final String TERMINATION_FAILED_SOAP_MESSAGE_CREATION = 650 "termination-failed-soap-creation"; 651 /** 652 * Failed to send termination message to remote provider. 653 */ 654 public static final String TERMINATION_FAILED_SEND_REMOTE = 655 "termination-failed-send-remote"; 656 /** 657 * Federation termination servlet 658 */ 659 public static final String TERMINATE_SERVLET = 660 "/federation-terminate"; 661 /** 662 * Name registration servlet 663 */ 664 public static final String REGISTRATION_SERVLET = 665 "/InitiateRegistration"; 666 /** 667 * Session cookie name 668 */ 669// public static String SESSION_COOKIE_NAME = 670 // "com.sun.identity.federation.sessioncookie"; 671 /** 672 * Circle of trust id 673 */ 674 // public static final String COT_INFO = 675 // "com.sun.identity.federation.services.cotid"; 676 /** 677 * Authentication login url 678 */ 679 // public static final String authURL = 680 // "com.sun.identity.federation.services.authLoginUrl"; 681 /** 682 * Termination profile 683 */ 684 // public static final String TERMINATION_PROFILE = 685 // "com.sun.identity.federation.services.termination.profile"; 686 /** 687 * Termination profile relay state 688 */ 689 public static String TERMINATION_RELAY_STATE = "RelayState"; 690 /** 691 * Logout relay state 692 */ 693 public static String LOGOUT_RELAY_STATE = "RelayState"; 694 /** 695 * Name registration indicator 696 */ 697 public static String NAMEREGIS_INDICATOR_PARAM = "nameregis"; 698 /** 699 * Question mark 700 */ 701 public static final char QUESTION_MARK = '?'; 702 /** 703 * Ampersand 704 */ 705 public static final char AMPERSAND = '&'; 706 /** 707 *Equal to 708 */ 709 public static final char EQUAL_TO = '='; 710 /** 711 * Role 712 */ 713 public static String ROLE = "ROLE"; 714 /** 715 * Response to 716 */ 717 public static String RESPONSE_TO = "responseTo"; 718 /** 719 * IDP Single logout via idp 720 */ 721 public static final String LOGOUT_IDP_SOAP_PROFILE = 722 "http://projectliberty.org/profiles/slo-idp-soap"; 723 /** 724 * IDP Single logout via http 725 */ 726 public static final String LOGOUT_IDP_REDIRECT_PROFILE = 727 "http://projectliberty.org/profiles/slo-idp-http"; 728 /** 729 * IDP Single logout via http get 730 */ 731 public static final String LOGOUT_IDP_GET_PROFILE = 732 "http://projectliberty.org/profiles/slo-idp-http-get"; 733 /** 734 * SP Single logout via soap 735 */ 736 public static final String LOGOUT_SP_SOAP_PROFILE = 737 "http://projectliberty.org/profiles/slo-sp-soap"; 738 /** 739 * SP Single logout via http 740 */ 741 public static final String LOGOUT_SP_REDIRECT_PROFILE = 742 "http://projectliberty.org/profiles/slo-sp-http"; 743 /** 744 * IDP Termination via http 745 */ 746 public static final String TERMINATION_IDP_HTTP_PROFILE = 747 "http://projectliberty.org/profiles/fedterm-idp-http"; 748 /** 749 * IDP Termination via soap 750 */ 751 public static final String TERMINATION_IDP_SOAP_PROFILE = 752 "http://projectliberty.org/profiles/fedterm-idp-soap"; 753 /** 754 * SP Termination via soap 755 */ 756 public static final String TERMINATION_SP_SOAP_PROFILE = 757 "http://projectliberty.org/profiles/fedterm-sp-soap"; 758 /** 759 * SP Termination via http 760 */ 761 public static final String TERMINATION_SP_HTTP_PROFILE = 762 "http://projectliberty.org/profiles/fedterm-sp-http"; 763 /** 764 * Name registration via soap 765 */ 766 public static final String NAME_REGISTRATION_PROFILE = 767 "http://projectliberty.org/profiles/rni-soap"; 768 769 /** 770 * URI for HTTP-Redirect-based Name Identifier Registration Profile 771 * initiated at Service Provider 772 */ 773 public static final String NAME_REGISTRATION_SP_HTTP_PROFILE = 774 "http://projectliberty.org/profiles/rni-sp-http"; 775 /** 776 * URI for SOAP/HTTP-based Name Identifier Registration Profile 777 * initiated at Service Provider 778 */ 779 public static final String NAME_REGISTRATION_SP_SOAP_PROFILE = 780 "http://projectliberty.org/profiles/rni-sp-soap"; 781 /** 782 * URI for HTTP-Redirect-based Name Identifier Registration Profile 783 * initiated at Identity Provider 784 */ 785 public static final String NAME_REGISTRATION_IDP_HTTP_PROFILE = 786 "http://projectliberty.org/profiles/rni-idp-http"; 787 788 /** 789 * URI for SOAP/HTTP-based Name Identifier Registration Profile 790 * initiated at Identity Provider 791 */ 792 public static final String NAME_REGISTRATION_IDP_SOAP_PROFILE = 793 "http://projectliberty.org/profiles/rni-idp-soap"; 794 795 796 /** 797 * FedCookie name 798 */ 799 public static final String FEDERATE_COOKIE_NAME = 800 "com.sun.identity.federation.fedCookieName"; 801 /** 802 * Quote 803 */ 804 public static final String QUOTE = "\""; 805 /** 806 * New line 807 */ 808 public static final String NL = "\n"; 809 /** 810 * Left angle 811 */ 812 public static final String LEFT_ANGLE = "<"; 813 /** 814 * Right angle 815 */ 816 public static final String RIGHT_ANGLE = ">"; 817 /** 818 * End element 819 */ 820 public static final String END_ELEMENT = "/>"; 821 /** 822 * Start end element 823 */ 824 public static final String START_END_ELEMENT = "</"; 825 /** 826 * Space 827 */ 828 public static final String SPACE = " "; 829 /** 830 * SAML tag 831 */ 832 public static final String SAML_LOG_NAME = "SAML"; 833 /** 834 * AuthenticationContext prefix 835 */ 836 public static final String AC_PREFIX = "AC:"; 837 /** 838 * lib prefix 839 */ 840 public static final String LIB_PREFIX = "lib:"; 841 /** 842 * Liberty namespace uri 843 */ 844 public static final String libertyMessageNamespaceURI = 845 "http://projectliberty.org/schemas/core/2002/12"; 846 /** 847 * Liberty name space 848 */ 849 public static final String LIB_NAMESPACE_STRING = 850 " xmlns:lib=\"http://projectliberty.org/schemas/core/2002/12\""; 851 /** 852 * AuthenticationContext name space 853 */ 854 public static final String AC_NAMESPACE_STRING = 855 " xmlns:ac=\"http://projectliberty.org/schemas/authctx/2002/05\""; 856 /** 857 * AuthenticationContext namespace uri 858 */ 859 public static final String AC_XML_NS = 860 "http://projectliberty.org/schemas/authctx/2002/05"; 861 /** 862 * SAML assertion name space 863 */ 864 public static final String assertionSAMLNameSpaceURI = 865 "urn:oasis:names:tc:SAML:1.0:assertion"; 866 /** 867 * SOAP envelope uri 868 */ 869 public static final String SOAP_URI = 870 "http://schemas.xmlsoap.org/soap/envelope/"; 871 /** 872 * SOAP prefix 873 */ 874 public static final String SOAP_ENV_PREFIX = "soap-env"; 875 /** 876 * SAML protocol namespace 877 */ 878 public static final String PROTOCOL_NAMESPACE_URI = 879 "urn:oasis:names:tc:SAML:1.0:protocol"; 880 /** 881 * XML Digital signature namespace 882 */ 883 public static final String DSSAMLNameSpace = 884 "xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\""; 885 /** 886 * XML schema namespace 887 */ 888 public static final String XSI_NAMESPACE_STRING = 889 "xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\""; 890 /** 891 * SAML assertion namespace 892 */ 893 public static final String assertionDeclareStr = 894 " xmlns:saml=\"urn:oasis:names:tc:SAML:1.0:assertion\""; 895 /** 896 * SAML protocol namespace 897 */ 898 public static final String PROTOCOL_NAMESPACE_STRING = 899 " xmlns:samlp=\"urn:oasis:names:tc:SAML:1.0:protocol\""; 900 /** 901 * SAML Actions namespace identifiers: 902 * Read/Write/Execute/Delete/Control 903 */ 904 public static final String ACTIONS_NAMESPACE = 905 "urn:oasis:names:tc:SAML:1.0:action:rwedc"; 906 /** 907 * SAML Actions namespace identifiers: 908 * Read/Write/Execute/Delete/Control with negation 909 */ 910 public static final String ACTIONS_NAMESPACE_NEGATION = 911 "urn:oasis:names:tc:SAML:1.0:action:rwedc-negation"; 912 /** 913 * SAML Actions namespace identifiers: 914 * Get/Head/Put/Post 915 */ 916 public static final String ACTIONS_NAMESPACE_GHPP = 917 "urn:oasis:names:tc:SAML:1.0:ghpp"; 918 /** 919 * SAML Actions namespace identifiers: 920 * Unix file permissions 921 */ 922 public static final String ACTIONS_NAMESPACE_UNIX = 923 "urn:oasis:names:tc:SAML:1.0:action:unix"; 924 /** 925 * SAML prefix 926 */ 927 public static final String ASSERTION_PREFIX = "saml:"; 928 /** 929 * SAML protocol prefix 930 */ 931 public static final String PROTOCOL_PREFIX = "samlp:"; 932 /** 933 * Assertion major version 934 */ 935 public static final int ASSERTION_MAJOR_VERSION = 1; 936 /** 937 * Assertion minor version 938 */ 939 public static final int ASSERTION_MINOR_VERSION = 0; 940 /** 941 * Protocol major version 942 */ 943 public static final int PROTOCOL_MAJOR_VERSION = 1; 944 /** 945 * Protocol minor version 946 */ 947 public static final int PROTOCOL_MINOR_VERSION = 0; 948 /** 949 * Default encoding 950 */ 951 public static final String DEFAULT_ENCODING = "UTF-8"; 952 /** 953 * Confirmation method: Artifact 954 */ 955 public static final String CONFIRMATION_METHOD_ARTIFACT = 956 "urn:oasis:names:tc:SAML:1.0:cm:artifact-01"; 957 /** 958 * Confirmation method 959 */ 960 public static final String CONFIRMATION_METHOD_DSAME = 961 "urn:sun.com:sunone:ims"; 962 /** 963 * Confirmation method: Bearer 964 */ 965 public static final String CONFIRMATION_METHOD_BEARER = 966 "urn:oasis:names:tc:SAML:1.0:cm:bearer"; 967 /** 968 * Default Artifact time out 969 */ 970 public static final int ARTIFACT_TIMEOUT_DEFAULT = 120; 971 /** 972 * Default Assertion time out 973 */ 974 public static final int ASSERTION_TIMEOUT_DEFAULT = 60; 975 /** 976 * Assertion timeout allowed difference 977 */ 978 public static final int ASSERTION_TIMEOUT_ALLOWED_DIFFERENCE = 60000; 979 /** 980 * Site id 981 */ 982 public static final String SITE_ID = "iplanet-am-saml-siteid"; 983 /** 984 * Default Artifact name 985 */ 986 public static final String ARTIFACT_NAME_DEFAULT = "SAMLart" ; 987 /** 988 * <code>RelayState</code> parameter 989 */ 990 public static final String LRURL = "RelayState"; 991 /** 992 * Length of an identifier 993 */ 994 public static final int ID_LENGTH = 20; 995 /** 996 * XML Digital Signing algorithm 997 */ 998 public static final String ALGO_ID_SIGNATURE_DSA = 999 "http://www.w3.org/2000/09/xmldsig#dsa-sha1"; 1000 /** 1001 * XML Digital Signing algorithm 1002 */ 1003 public static final String ALGO_ID_SIGNATURE_RSA = 1004 "http://www.w3.org/2000/09/xmldsig#rsa-sha1"; 1005 /** 1006 * XML Digital Signing constant 1007 */ 1008 public static final String DEF_SIG_ALGO = 1009 "http://www.w3.org/2000/09/xmldsig#dsa-sha1"; 1010 /** 1011 * XML Digital Signing constant 1012 */ 1013 public static final String DEF_SIG_ALGO_JCA = 1014 "SHA1withRSA"; 1015 /** 1016 * XML Digital Signing constant 1017 */ 1018 public static final String ALGO_ID_SIGNATURE_DSA_JCA = 1019 "SHA1withDSA"; 1020 /** 1021 * XML Digital Signing constant 1022 */ 1023 public static final String ALGO_ID_SIGNATURE_RSA_JCA = 1024 "SHA1withRSA"; 1025 /** 1026 * XML Digital Signing: DSA key 1027 */ 1028 public static final String KEY_ALG_DSA = "DSA"; 1029 /** 1030 * XML Digital Signing: RSA key 1031 */ 1032 public static final String KEY_ALG_RSA = "RSA"; 1033 /** 1034 * Liberty namespace uri 1035 */ 1036 public static final String LIB_NAMESPACE_URI = 1037 "http://projectliberty.org/schemas/core/2002/12"; 1038 /** 1039 * Liberty browser artifact profile 1040 */ 1041 public static final String SSO_PROF_BROWSER_ART = 1042 "http://projectliberty.org/profiles/brws-art"; 1043 /** 1044 * Liberty browser post profile 1045 */ 1046 public static final String SSO_PROF_BROWSER_POST = 1047 "http://projectliberty.org/profiles/brws-post"; 1048 /** 1049 * Liberty WML post profile 1050 */ 1051 public static final String SSO_PROF_WML_POST = 1052 "http://projectliberty.org/profiles/wml-post"; 1053 /** 1054 * Liberty LECP profile 1055 */ 1056 public static final String SSO_PROF_LECP = 1057 "http://projectliberty.org/profiles/lecp"; 1058 /** 1059 * Local opaque handler 1060 */ 1061 public static final int LOCAL_OPAQUE_HANDLE = 0; 1062 /** 1063 * Remote opaque handler 1064 */ 1065 public static final int REMOTE_OPAQUE_HANDLE = 1; 1066 /** 1067 * Meta Alias 1068 */ 1069 public static final String META_ALIAS = "metaAlias"; 1070 /** 1071 * Goto parameter 1072 */ 1073 public static final String GOTO_URL_PARAM = "goto"; 1074 /** 1075 * Session host provider attribute 1076 */ 1077 public static final String SESSION_HOST_PROVIDER_ATTR = "hostid"; 1078 /** 1079 * AuthnContext 1080 */ 1081 public static final String AUTHN_CONTEXT = "AuthnContext"; 1082 /** 1083 * Artifact length 1084 */ 1085 public static final int ART_ID_LENGTH = 20; 1086 /** 1087 * Sourceid encoding 1088 */ 1089 public static final String SOURCEID_ENCODING = "ISO-8859-1"; 1090 1091 /** 1092 * Max session time 1093 */ 1094 public static final int MAX_SESSION_TIME = 12000; 1095 /** 1096 * Max ide time 1097 */ 1098 public static final int MAX_IDLE_TIME = 3000; 1099 /** 1100 * Max caching time 1101 */ 1102 public static final int MAX_CACHING_TIME = 500; 1103 /** 1104 * Max session time key 1105 */ 1106 public static final String MAX_SESSION_TIME_KEY = "SESSION_TIME"; 1107 /** 1108 * Max idle time key 1109 */ 1110 public static final String MAX_IDLE_TIME_KEY = "IDLE_TIME"; 1111 /** 1112 * Max caching time key 1113 */ 1114 public static final String MAX_CACHING_TIME_KEY = "CACHING_TIME"; 1115 /** 1116 * Error code for Missing Authentication Context in entity metadata. 1117 */ 1118 public static final String META_MISSING_AUTH_CONTEXT = 1119 "meta_missing_auth_context"; 1120 1121 /** 1122 * Error code for Invalid value for Priority in entity metadata. 1123 */ 1124 public static final String META_INVALID_LEVEL = 1125 "meta_invalid_level"; 1126 /** 1127 * Error code for Contact person type 1128 */ 1129 public static final String TECHNICAL = "technical"; 1130 /** 1131 * Error code for Contact person type 1132 */ 1133 public static final String ADMINISTRATIVE = "administrative"; 1134 /** 1135 * Error code for Contact person type 1136 */ 1137 public static final String BILLING = "billing"; 1138 /** 1139 * Error code for Contact person type 1140 */ 1141 public static final String OTHER = "other"; 1142 /** 1143 * Specified logout profile is not supported. 1144 */ 1145 public static final String LOGOUT_PROFILE_NOT_SUPPORTED = 1146 "logout-profile-not-supported"; 1147 /** 1148 * No provider is specified in name registration. 1149 */ 1150 public static final String REGISTRATION_NO_PROVIDER = 1151 "registration-no-provider"; 1152 /** 1153 * Invalid Provider in Registration. 1154 */ 1155 public static final String REGISTRATION_INVALID_PROVIDER = 1156 "registration-invalid-provider"; 1157 /** 1158 * Invalid Signature for Registration. 1159 */ 1160 public static final String REGISTRATION_INVALID_SIGNATURE= 1161 "registration-invalid-signature"; 1162 /** 1163 * Registration failed. 1164 */ 1165 public static final String REGISTRATION_FAILED = 1166 "registration-failed"; 1167 /** 1168 * Improper Registration Request 1169 */ 1170 public static final String REGISTRATION_REQUEST_IMPROPER = 1171 "registration-request-improper"; 1172 /** 1173 * Console service 1174 */ 1175 public static final String CONSOLE_SERVICE = 1176 "iPlanetAMAdminConsoleService"; 1177 /** 1178 * Console service version 1179 */ 1180 public static final String CONSOLE_SERVICE_VERSION = 1181 "1.0"; 1182 /** 1183 * Liberty enabled console 1184 */ 1185 public static final String LIBERTY_ENABLED_KEY = 1186 "iplanet-am-admin-console-liberty-enabled"; 1187 /** 1188 * Local configuration is invalid. 1189 */ 1190 public static final String LOCALCONFIG_INVALID = "localconfig_invalid"; 1191 /** 1192 * Invalid circle of trust list 1193 */ 1194 public static final String COTLIST_INVALID = 1195 "cotlist_invalid"; 1196 /** 1197 * <code>AuthnRequest</code> RequestID attribute 1198 */ 1199 public static final String AUTH_REQUEST_ID = "RequestID"; 1200 /** 1201 * <code>arg</code> key 1202 */ 1203 public static final String ARGKEY = "arg"; 1204 /** 1205 * New Session 1206 */ 1207 public static final String NEWSESSION = "newsession"; 1208 /** 1209 * Post-login page 1210 */ 1211 public static final String POST_LOGIN_PAGE = "/postLogin"; 1212 /** 1213 * Pre-login page 1214 */ 1215 public static final String PRE_LOGIN_PAGE = "/preLogin"; 1216 /** 1217 * Federate keyword 1218 */ 1219 public static final String FEDERATEKEY = "federate"; 1220 /** 1221 * Default value of the <code>federate</code> 1222 */ 1223 public static final String FEDERATEVALUE = "false"; 1224 /** 1225 * sso keyword 1226 */ 1227 public static final String SSOKEY = "sso"; 1228 /** 1229 * Default value of the <code>sso</code> 1230 */ 1231 public static final String SSOVALUE = "true"; 1232 /** 1233 * cotkey keyword 1234 */ 1235 public static final String COTKEY = "cotkey"; 1236 /** 1237 * Chosen provider 1238 */ 1239 public static final String SELECTEDPROVIDER = "selectedprovider"; 1240 /** 1241 * goto parameter 1242 */ 1243 public static final String GOTOKEY = "goto"; 1244 /** 1245 * org parameter 1246 */ 1247 public static final String ORGKEY = "org"; 1248 /** 1249 * authlevel parameter 1250 */ 1251 public static final String AUTH_LEVEL_KEY = "authlevel"; 1252 /** 1253 * AuthContext Comparison type 1254 */ 1255 public static final String MINIMUM = "minimum"; 1256 /** 1257 * AuthContext Comparison type 1258 */ 1259 public static final String EXACT = "exact"; 1260 /** 1261 * AuthContext Comparison type 1262 */ 1263 public static final String BETTER = "better"; 1264 /** 1265 * AuthContext Comparison type 1266 */ 1267 public static final String MAXIMUM = "maximum"; 1268 /** 1269 * Parameter used in introduction profile 1270 */ 1271 public static final String PROVIDER_ID_KEY = "_liberty_idp" ; 1272 /** 1273 * Parameter used to pass realm value. 1274 */ 1275 public static final String REALM = "realm"; 1276 /** 1277 * Intersite transfer URL 1278 */ 1279 public static final String INTERSITE_URL = "IntersiteTransferService"; 1280 /** 1281 * Part of the login URL 1282 */ 1283 public static final String LOGIN_PAGE = "/UI/Login"; 1284 /** 1285 * Useraction value: Cancel 1286 */ 1287 public static final String CANCEL = "cancel"; 1288 /** 1289 * <code>action</code> parameter in the request object 1290 */ 1291 public static final String USERACTION = "action"; 1292 /** 1293 * Consent handler 1294 */ 1295 public static final String CONSENT_HANDLER = "consentHandler"; 1296 /** 1297 * Federation handler 1298 */ 1299 public static final String FEDERATION_HANDLER = "federation"; 1300 /** 1301 * Key used to search for header info in a map 1302 */ 1303 public static final String HEADER_KEY = "headerKey"; 1304 /** 1305 * Key used to search for URL info in a map 1306 */ 1307 public static final String URL_KEY = "urlKey"; 1308 /** 1309 * Key used to search for response info in a map 1310 */ 1311 public static final String RESPONSE_DATA_KEY = "responseData"; 1312 /** 1313 * Hosted provider 1314 */ 1315 public static final String PROVIDER_HOSTED = "hosted"; 1316 /** 1317 * Remote provider 1318 */ 1319 public static final String PROVIDER_REMOTE = "remote"; 1320 /** 1321 * Entity descriptor 1322 */ 1323 public static final String ENTITY_DESCRIPTOR = "entitydescriptor"; 1324 /** 1325 * Local AuthType 1326 */ 1327 public static final String AUTH_LOCAL = "local"; 1328 /** 1329 * Remote AuthType 1330 */ 1331 public static final String AUTH_REMOTE = "remote"; 1332 /** 1333 * Home page file name 1334 */ 1335 public static final String HOMEPAGE_URL_VALUE ="/index.html"; 1336 /** 1337 * Common login page file name 1338 */ 1339 public static final String COMMON_LOGIN_PAGE_URL_VALUE ="/CommonLogin.jsp"; 1340 /** 1341 * JSP file location 1342 */ 1343 public static final String JSP_LOCATION = "/config/federation/default"; 1344 /** 1345 * SOAP endpoint value 1346 */ 1347 public static final String SOAP_END_POINT_VALUE = "/SOAPReceiver"; 1348 /** 1349 * Single logout endpoint value 1350 */ 1351 public static final String SLO_VALUE = "/ProcessLogout"; 1352 /** 1353 * Single logout return endpoint value 1354 */ 1355 public static final String SLO_RETURN_VALUE = "/ReturnLogout"; 1356 /** 1357 * Federation termination endpoint value 1358 */ 1359 public static final String TERM_VALUE = "/ProcessTermination"; 1360 /** 1361 * Federation termination return endpoint value 1362 */ 1363 public static final String TERM_RETURN_VALUE = "/ReturnTermination"; 1364 /** 1365 * Assertion consumer service endpoint value 1366 */ 1367 public static final String ASSERTION_CONSUMER_VALUE = 1368 "/AssertionConsumerService"; 1369 /** 1370 * Single signon endpoint value 1371 */ 1372 public static final String SSO_VALUE = "/SingleSignOnService"; 1373 /** 1374 * Configuration root directory 1375 */ 1376 public static final String CONFIG_ROOT = "/config/federation"; 1377 /** 1378 * Resource lookup related variables. 1379 */ 1380 public static final String CONFIG_DIR = "config"; 1381 public static final String FEDERATION_DIR = "federation"; 1382 public static final String DEFAULT_DIR = "default"; 1383 1384 /** 1385 * AuthenticatonStatement prefix 1386 */ 1387 public static final String RESPOND_WITH = 1388 "lib:AuthenticationStatement"; 1389 /** 1390 * Federation jsp name 1391 */ 1392 public static final String DOFEDERATE_PAGE_NAME = 1393 "Federate.jsp"; 1394 /** 1395 * Logout completed jsp name 1396 */ 1397 public static final String LOGOUTDONE_PAGE_NAME = 1398 "LogoutDone.jsp"; 1399 /** 1400 * Federation completed jsp name 1401 */ 1402 public static final String FEDERATIONDONE_PAGE_NAME = 1403 "FederationDone.jsp"; 1404 /** 1405 * Error page 1406 */ 1407 public static final String ERROR_PAGE_NAME = "Error.jsp"; 1408 /** 1409 * List of circle of trust page 1410 */ 1411 public static final String LISTOFCOTS_PAGE_NAME = "ListOfCOTs.jsp"; 1412 /** 1413 * Federation termination done jsp name 1414 */ 1415 public static final String TERMINATION_DONE_PAGE_NAME = 1416 "TerminationDone.jsp"; 1417 /** 1418 * Name registration done jsp name 1419 */ 1420 public static final String NAME_REGISTRATION_DONE_PAGE_NAME = 1421 "NameRegistrationDone.jsp"; 1422 /** 1423 * Common login jsp name 1424 */ 1425 public static final String COMMON_LOGIN_PAGE_NAME = 1426 "CommonLogin.jsp"; 1427 /** 1428 * Termination status 1429 */ 1430 public static final String TERMINATION_STATUS ="termStatus"; 1431 /** 1432 * Termination status : Sucess 1433 */ 1434 public static final String TERMINATION_SUCCESS ="termSuccess"; 1435 /** 1436 * Termination status : Failure 1437 */ 1438 public static final String TERMINATION_FAILURE ="termFailure"; 1439 /** 1440 * Provider id key is usd in Termination. 1441 */ 1442 public static final String TERMINATION_PROVIDER_ID = 1443 "_liberty_id"; 1444 /** 1445 * Failed to get hosted descriptor 1446 */ 1447 public static final String FAILED_HOSTED_DESCRIPTOR = 1448 "failed-reading-hosted-descriptor"; 1449 /** 1450 * Logout status 1451 */ 1452 public static final String LOGOUT_STATUS="logoutStatus"; 1453 /** 1454 * Logout status: Success 1455 */ 1456 public static final String LOGOUT_SUCCESS="logoutSuccess"; 1457 /** 1458 * Logout status: Failure 1459 */ 1460 public static final String LOGOUT_FAILURE="logoutFailure"; 1461 /** 1462 * Logout status: No Session 1463 */ 1464 public static final String LOGOUT_NO_SESSION="noSession"; 1465 /** 1466 * boolean: <code>true</code> 1467 */ 1468 public static final String TRUE = "true"; 1469 /** 1470 * boolean: <code>false</code> 1471 */ 1472 public static final String FALSE = "false"; 1473 /** 1474 * Optional attribute 1475 */ 1476 public static final String OPTIONAL = "optional"; 1477 /** 1478 * Provider id key is used in name registration. 1479 */ 1480 public static final String REGISTRATION_PROVIDER_ID="_liberty_id"; 1481 /** 1482 * Failed to create name registration handlde 1483 */ 1484 public static final String REGISTRATION_HANDLE_CREATION_FAILED = 1485 "registration-handle-creation-failed"; 1486 /** 1487 * Registration status 1488 */ 1489 public static final String REGISTRATION_STATUS="regisStatus"; 1490 /** 1491 * Registration status : Success 1492 */ 1493 public static final String REGISTRATION_SUCCESS="regisSuccess"; 1494 /** 1495 * Registration status : Failure 1496 */ 1497 public static final String REGISTRATION_FAILURE="regisFailure"; 1498 /** 1499 * Relay state 1500 */ 1501 public static String REGISTRATION_RELAY_STATE = "RELAYSTATE"; 1502 /** 1503 * Name Registration profile 1504 */ 1505 public static final String REGISTRATION_IDP_HTTP_PROFILE = 1506 "http://projectliberty.org/profiles/rni-idp-http"; 1507 /** 1508 * Name Registration profile 1509 */ 1510 public static final String REGISTRATION_IDP_SOAP_PROFILE = 1511 "http://projectliberty.org/profiles/rni-idp-soap"; 1512 /** 1513 * Name Registration profile 1514 */ 1515 public static final String REGISTRATION_SP_SOAP_PROFILE = 1516 "http://projectliberty.org/profiles/rni-sp-soap"; 1517 /** 1518 * Name Registration profile 1519 */ 1520 public static final String REGISTRATION_SP_HTTP_PROFILE = 1521 "http://projectliberty.org/profiles/rni-sp-http"; 1522 /** 1523 * Single signon service 1524 */ 1525 public static final String SSO_URL = "/SingleSignOnService"; 1526 /** 1527 * Process registration uri 1528 */ 1529 public static final String REGISTRATION_VALUE = "/ProcessRegistration"; 1530 /** 1531 * Registration return uri 1532 */ 1533 public static final String REGISTRATION_RETURN_VALUE = 1534 "returnRegistration"; 1535 /** 1536 * Do name registration after federation 1537 */ 1538 public static final String REGIS_FEDERATION = "AfterFederation"; 1539 /** 1540 * Do name registration during single signon process 1541 */ 1542 public static final String REGIS_SSO = "DuringSSO"; 1543 /** 1544 * Do name registration on demand 1545 */ 1546 public static final String REGIS_LINK = "STAND_ALONE"; 1547 /** 1548 * Signature Id used in termination profile 1549 */ 1550 public static final String TERMINATIONID = "term-Sig-ID"; 1551 /** 1552 * Signature Id used in name registration profile 1553 */ 1554 public static final String REGISTRATIONID = "reg-Sig-ID"; 1555 /** 1556 * Signature Id used in logout profile 1557 */ 1558 public static final String LOGOUTID = "logout-sig-ID"; 1559 /** 1560 * LECP request header 1561 */ 1562 public static final String LECP_CONTENT_TYPE_HEADER = 1563 "application/vnd.liberty-request+xml"; 1564 /** 1565 * LECP response header 1566 */ 1567 public static final String LECP_RESP_CONTENT_TYPE_HEADER = 1568 "application/vnd.liberty-response+xml"; 1569 /** 1570 * LECP indicator parameter 1571 */ 1572 public static final String LECP_INDICATOR_PARAM = "LECP"; 1573 /** 1574 * LECP indicator parameter's default value 1575 */ 1576 public static final String LECP_INDICATOR_VALUE = "TRUE"; 1577 /** 1578 * Goto this URL if no federation cookie presents. 1579 */ 1580 public static final String GOTO_ON_FEDCOOKIE_NO_URL = "gotoOnFedCookieNo"; 1581 /** 1582 * <code>isPassive</code> 1583 */ 1584 public static final String IS_PASSIVE_QUERY = "isPassive"; 1585 /** 1586 * Take action if no federation cookie presents. 1587 */ 1588 public static final String ACTION_ON_NO_FED_COOKIE = "actionOnNoFedCookie"; 1589 1590 /** 1591 * Boot strapping 1592 */ 1593 public static final String DISCO_RESOURCE_OFFERING_NAME = 1594 "DiscoveryResourceOffering"; 1595 /** 1596 * Termination notification profile 1597 */ 1598 public static final String TERMINATION_NOTIFICATION_PROFILE = 1599 "http://projectliberty.org/profiles/rel-term-soap"; 1600 /** 1601 * IDFF1.2 Name space 1602 */ 1603 public static final String LIB_12_NAMESPACE_STRING = 1604 " xmlns:lib=\"urn:liberty:iff:2003-08\""; 1605 /** 1606 * Authentication context Name space 1607 */ 1608 public static final String AC_12_NAMESPACE_STRING= 1609 " xmlns:ac=\"urn:liberty:ac:2003-08\""; 1610 /** 1611 * IDFF1.2 Name space 1612 */ 1613 public static final String FF_12_XML_NS="urn:liberty:iff:2003-08"; 1614 /** 1615 * Authentication context Name space urn 1616 */ 1617 public static final String AC_12_XML_NS="urn:liberty:ac:2003-08"; 1618 /** 1619 * IDFF 1.2 saml protocol minor version 1620 */ 1621 public static final int FF_12_SAML_PROTOCOL_MINOR_VERSION = 1; 1622 /** 1623 * IDFF 1.1 saml protocol minor version 1624 */ 1625 public static final int FF_11_SAML_PROTOCOL_MINOR_VERSION = 0; 1626 /** 1627 * IDFF 1.2 saml assertion minor version (POST profile) 1628 */ 1629 public static final int FF_12_POST_ASSERTION_MINOR_VERSION = 2; 1630 /** 1631 * IDFF 1.2 saml assertion minor version (Artifact profile) 1632 */ 1633 public static final int FF_12_ART_ASSERTION_MINOR_VERSION = 2; 1634 /** 1635 * IDFF 1.1 saml assertion minor version (Artifact profile) 1636 */ 1637 public static final int FF_11_ASSERTION_MINOR_VERSION = 0; 1638 /** 1639 * IDFF 1.2 saml protocol minor version 1640 */ 1641 public static final int FF_12_PROTOCOL_MINOR_VERSION = 2; 1642 /** 1643 * IDFF 1.1 saml protocol minor version 1644 */ 1645 public static final int FF_11_PROTOCOL_MINOR_VERSION = 0; 1646 /** 1647 * Name Identifier format URI 1648 */ 1649 public static final String NI_FEDERATED_FORMAT_URI = 1650 "urn:liberty:iff:nameid:federated"; 1651 /** 1652 * Name Identifier format URI 1653 */ 1654 public static final String NI_ONETIME_FORMAT_URI = 1655 "urn:liberty:iff:nameid:one-time"; 1656 /** 1657 * Name Identifier format URI 1658 */ 1659 public static final String NI_ENCRYPTED_FORMAT_URI = 1660 "urn:liberty:iff:nameid:encrypted"; 1661 /** 1662 * Discovery Resource Offering 1663 */ 1664 public static final String DISCOVERY_RESOURCE_OFFERING = 1665 "DiscoveryResourceOffering"; 1666 /** 1667 * Assertion ID 1668 */ 1669 public static final String ASSERTION_ID="AssertionID"; 1670 /** 1671 * Request ID 1672 */ 1673 public static final String REQUEST_ID="RequestID"; 1674 /** 1675 * Response ID 1676 */ 1677 public static final String RESPONSE_ID="ResponseID"; 1678 /** 1679 * ID 1680 */ 1681 public static final String ID="id"; 1682 1683 /** 1684 * NameIDPolicy Element name 1685 */ 1686 public static final String NAMEID_POLICY_ELEMENT="NameIDPolicy"; 1687 1688 /** 1689 * NameIDPolicy configuration attribute name 1690 */ 1691 public static final String NAMEID_POLICY="nameIDPolicy"; 1692 1693 /** 1694 * Key is used for signing. 1695 */ 1696 public static final String KEYTYPE_SIGNING="signing"; 1697 /** 1698 * Key is used for encryption. 1699 */ 1700 public static final String KEYTYPE_ENCRYPTION="encryption"; 1701 /** 1702 * <code>NameIDPolicy</code> value type 1703 */ 1704 public static final String NAME_ID_POLICY_NONE = "none"; 1705 /** 1706 * <code>NameIDPolicy</code> value type 1707 */ 1708 public static final String NAME_ID_POLICY_ONETIME = "onetime"; 1709 /** 1710 * <code>NameIDPolicy</code> value type 1711 */ 1712 public static final String NAME_ID_POLICY_FEDERATED = "federated"; 1713 /** 1714 * <code>NameIDPolicy</code> value type 1715 */ 1716 public static final String NAME_ID_POLICY_ANY = "any"; 1717 /** 1718 * Idp finder URL 1719 */ 1720 public static final String IDP_FINDER_URL ="/idpfinder"; 1721 /** 1722 * XPATH for Assertion Artifact 1723 */ 1724 public static final String ARTIFACT_XPATH = 1725 "/Envelope/Body/Request/AssertionArtifact"; 1726 /** 1727 * Affiliation id for Affiliation descriptor 1728 */ 1729 public static final String AFFILIATED = "Affiliated"; 1730 /** 1731 * Auth Federation attribute 1732 */ 1733 public static final String AUTO_FED_ATTR = "AutoFederateAttribute"; 1734 /** 1735 * Provider id separator 1736 */ 1737 public static final String PROVIDER_ID_SEPARATOR = "|"; 1738 /** 1739 * SP provider suffix 1740 */ 1741 public static final String SP_PROVIDER_SFX = 1742 PROVIDER_ID_SEPARATOR + "SP"; 1743 /** 1744 * IDP provider suffix 1745 */ 1746 public static final String IDP_PROVIDER_SFX = 1747 PROVIDER_ID_SEPARATOR + "IDP"; 1748 /** 1749 * Used in local configuration descriptor to track the version 1750 */ 1751 public static final int PROVIDER_CONFIG_70_VERSION = 30; 1752 /** 1753 * Used in local configuration descriptor to track the version 1754 */ 1755 public static final int PROVIDER_CONFIG_71_VERSION = 40; 1756 /** 1757 * Anonymous Onetime federation 1758 */ 1759 public static final String ANONYMOUS_ONETIME = "anonymousOnetime"; 1760 /** 1761 * Parameter for status code. Used in FederationSPAdapter. 1762 */ 1763 public static final String STATUS_CODE = "StatusCode"; 1764 /** 1765 * Parameter for failure code. Used in FederationSPAdapter. 1766 */ 1767 public static final String FAILURE_CODE = "FailureCode"; 1768 1769 /** 1770 * Used by <code>FSUserProvider</code> to pass in termination request 1771 * through env map. 1772 */ 1773 public static final String FS_USER_PROVIDER_ENV_TERMINATION_KEY = 1774 "FSFederationTerminationNotification"; 1775 /** 1776 * Used by <code>FSUserProvider</code> to pass in authn response 1777 * through env map. 1778 */ 1779 public static final String FS_USER_PROVIDER_ENV_AUTHNRESPONSE_KEY = 1780 "FSAuthnResponse"; 1781 /** 1782 * Used by <code>FSUserProvider</code> to pass in logout request 1783 * through env map. 1784 */ 1785 public static final String FS_USER_PROVIDER_ENV_LOGOUT_KEY = 1786 "FSLogoutNotification"; 1787 /** 1788 * Used by <code>FSUserProvider</code> to pass in registration request 1789 * through env map. 1790 */ 1791 public static final String FS_USER_PROVIDER_ENV_REGISTRATION_KEY = 1792 "FSNameRegistrationRequest"; 1793 /** 1794 * Used by <code>FSUserProvider</code> to pass in saml response 1795 * through env map. 1796 */ 1797 public static final String FS_USER_PROVIDER_ENV_FSRESPONSE_KEY = 1798 "FSResponse"; 1799 /** 1800 * Used by <code>FSUserProvider</code> to pass in name ID mapping request 1801 * through env map. 1802 */ 1803 public static final String FS_USER_PROVIDER_ENV_NAMEMAPPING_KEY = 1804 "FSNameIdentifierMappingRequest"; 1805 1806 /** 1807 * Default <code>FSUserProvider</code> implemeation class. 1808 */ 1809 public static final String FS_USER_PROVIDER_DEFAULT = 1810 "com.sun.identity.federation.accountmgmt.DefaultFSUserProvider"; 1811 /** 1812 * ID-FF component name used in obtaining provider. 1813 */ 1814 public static final String IDFF = "IDFF"; 1815 1816 /** 1817 * Key name for the federation attribute mapper. 1818 */ 1819 public static final String FS_ATTRIBUTE_MAPPER = 1820 "com.sun.identity.liberty.fed.attributemapper"; 1821 1822 /** 1823 * Key name for the webservices security attribute mapper. 1824 */ 1825 public static final String WS_ATTRIBUTE_PLUGIN = 1826 "com.sun.identity.liberty.ws.attributeplugin"; 1827 1828 /** 1829 * Assertion 1830 */ 1831 public static final String ASSERTION = "Assertion"; 1832 1833 /** 1834 * Major Version 1835 */ 1836 public static final String MAJOR_VERSION="MajorVersion"; 1837 1838 /** 1839 * Minor Version 1840 */ 1841 public static final String MINOR_VERSION="MinorVersion"; 1842 1843 /** 1844 * Issuer 1845 */ 1846 public static final String ISSUER="Issuer"; 1847 1848 /** 1849 * InResponseTo 1850 */ 1851 public static final String IN_RESPONSE_TO="InResponseTo"; 1852 1853 /** 1854 * IssueInstant 1855 */ 1856 public static final String ISSUE_INSTANT="IssueInstant"; 1857 1858 /** 1859 * Conditions 1860 */ 1861 public static final String CONDITIONS="Conditions"; 1862 1863 /** 1864 * Advice 1865 */ 1866 public static final String ADVICE="Advice"; 1867 1868 /** 1869 * AuthenticationStatement 1870 */ 1871 public static final String AUTHENTICATIONSTATEMENT 1872 = "AuthenticationStatement"; 1873 /** 1874 * AuthorizationDecisionStatement 1875 */ 1876 public static final String AUTHZDECISIONSTATEMENT = 1877 "AuthorizationDecisionStatement"; 1878 1879 /** 1880 * AttributeStatement 1881 */ 1882 public static final String ATTRIBUTESTATEMENT = "AttributeStatement"; 1883 1884 /** 1885 * Signature 1886 */ 1887 public static final String SIGNATURE = "Signature"; 1888 1889 /** 1890 * AssertionType 1891 */ 1892 public static final String ASSERTION_TYPE = "AssertionType"; 1893 1894 /** 1895 * xsi type 1896 */ 1897 public static final String XSI_TYPE = "xsi:type"; 1898 1899 /** 1900 * Authentication Method 1901 */ 1902 public static final String AUTHENTICATION_METHOD="AuthenticationMethod"; 1903 1904 /** 1905 * Authentication Instant 1906 */ 1907 public static final String AUTHENTICATION_INSTANT="AuthenticationInstant"; 1908 1909 /** 1910 * Authority Binding 1911 */ 1912 public static final String AUTHORITY_BINDING= "AuthorityBinding"; 1913 1914 /** 1915 * SubjectLocality 1916 */ 1917 public static final String SUBJECT_LOCALITY="SubjectLocality"; 1918 1919 1920 /** 1921 * ReauthenticationOnOrAfter 1922 */ 1923 public static final String REAUTH_ON_OR_AFTER="ReauthenticateOnOrAfter"; 1924 1925 /** 1926 * Authentication Subject 1927 */ 1928 public static final String AUTH_SUBJECT="Subject"; 1929 1930 /** 1931 * Authentication Statement Type 1932 */ 1933 public static final String AUTHENTICATIONSTATEMENT_TYPE 1934 = "AuthenticationStatementType"; 1935 1936 /** 1937 * Authentication Request 1938 */ 1939 public static final String AUTHN_REQUEST="AuthnRequest"; 1940 1941 /** 1942 * RespondWith 1943 */ 1944 public static final String RESPONDWITH="RespondWith"; 1945 1946 /** 1947 * Consent 1948 */ 1949 public static final String CONSENT="consent"; 1950 1951 /** 1952 * Provider Identifier 1953 */ 1954 public static final String PROVIDER_ID="ProviderID"; 1955 1956 /** 1957 * Federate 1958 */ 1959 public static final String FEDERATE ="Federate"; 1960 1961 /** 1962 * Major Version Value 1963 */ 1964 1965 public static final String ONE ="1"; 1966 1967 /** 1968 * ProtocolProfile 1969 */ 1970 public static final String PROTOCOL_PROFILE="ProtocolProfile"; 1971 1972 /** 1973 * Requested AuthnContext 1974 */ 1975 1976 public static final String REQUEST_AUTHN_CONTEXT="RequestAuthnContext"; 1977 1978 /** 1979 * Affliation Identifier 1980 */ 1981 public static final String AFFILIATIONID = "AffiliationID"; 1982 1983 /** 1984 * Extension 1985 */ 1986 public static final String EXTENSION = "Extension"; 1987 1988 /** 1989 * Scoping 1990 */ 1991 public static final String SCOPING = "Scoping"; 1992 1993 /** 1994 * Assertion Consumer Service Identifier 1995 */ 1996 public static final String ASSERTION_CONSUMER_SVC_ID= 1997 "AssertionConsumerServiceID"; 1998 1999 /** 2000 * Authenticaion Context Comparison 2001 */ 2002 public static final String AUTHN_CONTEXT_COMPARISON= 2003 "AuthnContextComparison"; 2004 2005 /** 2006 * RelayState 2007 */ 2008 public static final String RELAY_STATE ="RelayState"; 2009 2010 /** 2011 * NameIdentifier Mapping Request 2012 */ 2013 public static final String NAMEID_MAPPING_REQUEST = 2014 "NameIdentifierMappingRequest"; 2015 2016 /** 2017 * NameIdentifier Mapping Response 2018 */ 2019 public static final String NAMEID_MAPPING_RESPONSE = 2020 "NameIdentifierMappingResponse"; 2021 2022 /** 2023 * Target Name Space 2024 */ 2025 public static final String TARGET_NAME_SPACE="TargetNamespace"; 2026 2027 /** 2028 * XML Prefix String 2029 */ 2030 public static final String XML_PREFIX="<?xml version=\"1.0\" encoding=\""; 2031 2032 /** 2033 * Name Identifier 2034 */ 2035 public static final String NAME_IDENTIFIER="NameIdentifier"; 2036 2037 /** 2038 * Federation Termination Notification 2039 */ 2040 public static final String FEDERATION_TERMINATION_NOTICFICATION = 2041 "FederationTerminationNotification"; 2042 2043 /** 2044 * Name 2045 */ 2046 public static final String NAME = "Name"; 2047 2048 /** 2049 * Name Qualifier 2050 */ 2051 2052 public static final String NAME_QUALIFIER = "NameQualifier"; 2053 2054 /** 2055 * NameFormat 2056 */ 2057 public static final String NAME_FORMAT = "NameFormat"; 2058 2059 /** 2060 * GetComplete 2061 */ 2062 public static final String GET_COMPLETE = "GetComplete"; 2063 2064 /** 2065 * IDP Entries 2066 */ 2067 public static final String IDP_ENTRIES = "IDPEntries"; 2068 2069 /** 2070 * LogoutRequest 2071 */ 2072 public static final String LOGOUT_REQUEST = "LogoutRequest"; 2073 2074 /** 2075 * LogoutResponse 2076 */ 2077 2078 public static final String LOGOUT_RESPONSE = "LogoutResponse"; 2079 2080 /** 2081 * NotOnOrAfter 2082 */ 2083 public static final String NOT_ON_OR_AFTER = "NotOnOrAfter"; 2084 2085 /** 2086 * Value 2087 */ 2088 public static final String VALUE = "Value"; 2089 2090 /** 2091 * IDPList 2092 */ 2093 public static final String IDP_LIST="IDPList"; 2094 2095 /** 2096 * Authentication Request Envelope 2097 */ 2098 public static final String AUTHN_REQUEST_ENVELOPE="AuthnRequestEnvelope"; 2099 2100 /** 2101 * Assertion Consumer Service URL 2102 */ 2103 public static final String ASSERTION_CONSUMER_SERVICE_URL= 2104 "AssertionConsumerServiceURL"; 2105 2106 /** 2107 * Authentication Response 2108 */ 2109 public static final String AUTHN_RESPONSE="AuthnResponse"; 2110 2111 /** 2112 * Authentication Response Envelope 2113 */ 2114 public static final String AUTHN_RESPONSE_ENVELOPE 2115 ="AuthnResponseEnvelope"; 2116 2117 /** 2118 * Recipient 2119 */ 2120 public static final String RECIPIENT = "Recipient"; 2121 2122 /** 2123 * Status 2124 */ 2125 public static final String STATUS = "Status"; 2126 2127 /** 2128 * ProviderName 2129 */ 2130 public static final String PROVIDER_NAME="ProviderName"; 2131 2132 /** 2133 * IsPassive Element Name 2134 */ 2135 public String IS_PASSIVE_ELEM = "IsPassive"; 2136 2137 /** 2138 * Force Authentication Element Name 2139 */ 2140 public String FORCE_AUTHN_ELEM = "ForceAuthn"; 2141 2142 2143 /** 2144 * Provider Status 2145 */ 2146 public String PROVIDER_STATUS = "providerStatus"; 2147 2148 /** 2149 * Signing Certificate Alias 2150 */ 2151 public String SIGNING_CERT_ALIAS = "signingCertAlias"; 2152 2153 /** 2154 * Encryption Certificate Alias 2155 */ 2156 public static final String ENCRYPTION_CERT_ALIAS = "encryptionCertAlias"; 2157 2158 /** 2159 * Enable IDP Proxy 2160 */ 2161 public String ENABLE_IDP_PROXY = "enableIDPProxy"; 2162 2163 /** 2164 * IDP Proxy Name List 2165 */ 2166 public String IDP_PROXY_LIST = "idpProxyList"; 2167 2168 /** 2169 * IDP Proxy Count 2170 */ 2171 public String IDP_PROXY_COUNT = "idpProxyCount"; 2172 2173 /** 2174 * Use Introduction for IDP Proxy 2175 */ 2176 public String USE_INTRODUCTION_FOR_IDP_PROXY = "useIntroductionForIDPProxy"; 2177 2178 /** 2179 * Enable Name Identifier Encryption 2180 */ 2181 public String ENABLE_NAMEID_ENCRYPTION = "enableNameIDEncryption"; 2182 2183 /** 2184 * Generate Bootstrapping in Single Sign-on Assertion 2185 */ 2186 public String GENERATE_BOOTSTRAPPING = "generateBootstrapping"; 2187 2188 /** 2189 * Responds with 2190 */ 2191 public String RESPONDS_WITH = "respondsWith"; 2192 2193 /** 2194 * Name Identifier Implementation Class 2195 */ 2196 public String NAMEID_IMPL_CLASS = "nameIDImplementationClass"; 2197 2198 /** 2199 * Authentication Type (remote/local) 2200 */ 2201 public String AUTH_TYPE = "authType"; 2202 2203 /** 2204 * Registration Done URL 2205 */ 2206 public String REGISTRATION_DONE_URL = "registrationDoneURL"; 2207 2208 /** 2209 * Termination Done URL 2210 */ 2211 public String TERMINATION_DONE_URL = "terminationDoneURL"; 2212 2213 /** 2214 * Logout Done URL 2215 */ 2216 public String LOGOUT_DONE_URL = "logoutDoneURL"; 2217 2218 /** 2219 * Federation Done URL 2220 */ 2221 public String FEDERATION_DONE_URL = "federationDoneURL"; 2222 2223 /** 2224 * Single Sign-on failure redirection URL 2225 */ 2226 public String SSO_FAILURE_REDIRECT_URL = "ssoFailureRedirectURL"; 2227 2228 /** 2229 * Error page redirection URL 2230 */ 2231 public String ERROR_PAGE_URL = "errorPageURL"; 2232 2233 /** 2234 * List of COTs page URL. 2235 */ 2236 public String LISTOFCOTS_PAGE_URL = "listOfCOTsPageURL"; 2237 2238 /** 2239 * Do federate page URL. 2240 */ 2241 public String DOFEDERATE_PAGE_URL = "doFederatePageURL"; 2242 2243 /** 2244 * Implementation class for SPI <code>FSUserProvider</code>. 2245 */ 2246 public String FS_USER_PROVIDER_CLASS = "userProviderClass"; 2247 2248 /** 2249 * Provider Home page URL. 2250 */ 2251 public String PROVIDER_HOME_PAGE_URL = "providerHomePageURL"; 2252 2253 /** 2254 * Assertion valid interval 2255 */ 2256 public String ASSERTION_INTERVAL = "assertionInterval"; 2257 2258 /** 2259 * Internal Thread Cleanup Internal 2260 */ 2261 public String CLEANUP_INTERVAL = "cleanupInterval"; 2262 2263 /** 2264 * Artifact Timeout Interval 2265 */ 2266 public String ARTIFACT_TIMEOUT = "artifactTimeout"; 2267 2268 /** 2269 * Maximum Assertion Limit 2270 */ 2271 public String ASSERTION_LIMIT = "assertionLimit"; 2272 2273 /** 2274 * Assertion Issuer 2275 */ 2276 public String ASSERTION_ISSUER = "assertionIssuer"; 2277 2278 /** 2279 * Attribute Plugin 2280 */ 2281 public String ATTRIBUTE_PLUGIN = "attributePlugin"; 2282 2283 /** 2284 * IDP Attribute Map 2285 */ 2286 public String IDP_ATTRIBUTE_MAP = "idpAttributeMap"; 2287 2288 /** 2289 * Whether to initialize registration after sso/federation. 2290 * Currently, it is not used. 2291 */ 2292 public String ENABLE_REGISTRATION_AFTER_SSO = "enableRegistrationAfterSSO"; 2293 2294 /** 2295 * Default AuthnContext 2296 */ 2297 public String DEFAULT_AUTHNCONTEXT = "defaultAuthnContext"; 2298 2299 /** 2300 * Default AuthnContext Password 2301 */ 2302 public String DEFAULT_AUTHNCONTEXT_PASSWORD = 2303 "http://www.projectliberty.org/schemas/authctx/classes/Password"; 2304 2305 /** 2306 * IDP AuthnContext Mapping 2307 */ 2308 public String IDP_AUTHNCONTEXT_MAPPING = "idpAuthnContextMapping"; 2309 2310 /** 2311 * Enable Auto-Federation 2312 */ 2313 public String ENABLE_AUTO_FEDERATION = "enableAutoFederation"; 2314 2315 /** 2316 * Auto-Federation Attribute 2317 */ 2318 public String AUTO_FEDERATION_ATTRIBUTE = "autoFederationAttribute"; 2319 2320 /** 2321 * Attribute Mapper Class 2322 */ 2323 public String ATTRIBUTE_MAPPER_CLASS = "attributeMapperClass"; 2324 2325 /** 2326 * Circle-of-trust list 2327 */ 2328 public String COT_LIST = COTConstants.COT_LIST; 2329 2330 /** 2331 * Enable Affiliation 2332 */ 2333 public String ENABLE_AFFILIATION = "enableAffiliation"; 2334 2335 /** 2336 * Force Authentication at IDP 2337 */ 2338 public String FORCE_AUTHN = "forceAuthn"; 2339 2340 /** 2341 * Request IDP to be Passive 2342 */ 2343 public String IS_PASSIVE = "isPassive"; 2344 2345 /** 2346 * Service Provider AuthnContext Mapping 2347 */ 2348 public String SP_AUTHNCONTEXT_MAPPING = "spAuthnContextMapping"; 2349 2350 /** 2351 * Service Provider Attribute Map 2352 */ 2353 public String SP_ATTRIBUTE_MAP = "spAttributeMap"; 2354 2355 /** 2356 * Federation Service Provider Adapter 2357 */ 2358 public String FEDERATION_SP_ADAPTER = "federationSPAdapter"; 2359 2360 /** 2361 * Environment variables for Federation Service Provider Adapter 2362 */ 2363 public String FEDERATION_SP_ADAPTER_ENV = "federationSPAdapterEnv"; 2364 2365 /** 2366 * Service Provider's supported profiles for single sign on. 2367 * First one is the default one. 2368 */ 2369 public String SUPPORTED_SSO_PROFILE = "supportedSSOProfile"; 2370 2371 /** 2372 * Constants for authn context mapping values. 2373 */ 2374 public String ATTRIBUTE_SEPARATOR = "|"; 2375 public String KEY_VALUE_SEPARATOR = "="; 2376 public String AUTH_CONTEXT_NAME = "context"; 2377 public String MODULE_INDICATOR_KEY = "key"; 2378 public String MODULE_INDICATOR_VALUE = "value"; 2379 public String LEVEL = "level"; 2380 2381 /** 2382 * Provider description. 2383 */ 2384 public String PROVIDER_DESCRIPTION = "providerDescription"; 2385 2386 /** 2387 * Service Provider's default relay state. 2388 */ 2389 public String SP_DEFAULT_RELAY_STATE = 2390 "/samples/idff/sp/index.jsp"; 2391 2392 /** 2393 * boolean to indicate if this is SOAP profile 2394 */ 2395 public String IS_SOAP_PROFILE = "isSOAPProfile"; 2396 2397 /** 2398 * root realm. 2399 */ 2400 public String ROOT_REALM = "/"; 2401 2402 /** 2403 * SAMLRequest query parameter name 2404 */ 2405 public String SAML_REQUEST = "SAMLRequest"; 2406 2407 /** 2408 * SAMLResponse query parameter name 2409 */ 2410 public String SAML_RESPONSE = "SAMLResponse"; 2411 2412 /** 2413 * Parameter name for SAML artifact in http request. 2414 */ 2415 public String SAML_ART = "SAMLart"; 2416 2417} 2418