001/**
002 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
003 *
004 * Copyright (c) 2006 Sun Microsystems Inc. All Rights Reserved
005 *
006 * The contents of this file are subject to the terms
007 * of the Common Development and Distribution License
008 * (the License). You may not use this file except in
009 * compliance with the License.
010 *
011 * You can obtain a copy of the License at
012 * https://opensso.dev.java.net/public/CDDLv1.0.html or
013 * opensso/legal/CDDLv1.0.txt
014 * See the License for the specific language governing
015 * permission and limitations under the License.
016 *
017 * When distributing Covered Code, include this CDDL
018 * Header Notice in each file and include the License file
019 * at opensso/legal/CDDLv1.0.txt.
020 * If applicable, add the following below the CDDL Header,
021 * with the fields enclosed by brackets [] replaced by
022 * your own identifying information:
023 * "Portions Copyrighted [year] [name of copyright owner]"
024 *
025 * $Id: IFSConstants.java,v 1.12 2008/08/29 04:57:15 exu Exp $
026 *
027 */
028
029
030package com.sun.identity.federation.common;
031
032import com.sun.identity.cot.COTConstants;
033/**
034 * This interface represents a collection of common constants used by
035 * the classes in Federation Service.  
036 * @supported.all.api
037 */
038public interface IFSConstants {
039    /**
040     * HTTPS URL prefix 
041     */
042    public static final String HTTPS_URL_PREFIX  = "https://";
043    /**
044     * Dot character
045     */
046    public static final char   DOT               = '.';
047    /**
048     * Federation error 
049     */
050    public static final String FEDERROR         ="federror";
051    /**
052     * Federation remark 
053     */
054    public static final String FEDREMARK        ="fedremark";
055    /**
056     * Provider or entity status
057     */
058    public static final String ACTIVE            = "active";
059    /**
060     * Provider or entity status
061     */
062    public static final String INACTIVE          = "inactive";
063    /**
064     * IDFF 1.1 meta version
065     */
066    public static final String ENUM_ZERO         = "urn:liberty:iff:2002-12";
067    /**
068     * IDFF 1.2 meta version
069     */
070    public static final String ENUM_ONE          = "urn:liberty:iff:2003-08";
071    /**
072     * Affiliation descriptor
073     */
074    public static final String AFFILIATE_TYPE  = "urn:liberty:iff:affiliate";
075    /**
076     * Provider descriptor
077     */
078    public static final String CONTAINER_TYPE    = "urn:liberty:iff:provider";  
079    /**
080     * SOAP binding 
081     */
082    public static final String SOAP              = "SOAP";
083    /**
084     * HTTP redirect
085     */
086    public static final String HTTP_REDIRECT     = "HTTP Redirect";
087    /**
088     * HTTP redirect 
089     */
090    public static final String HTTP_GET          = "HTTP Get";
091    /**
092     * PASSIVE mode
093     */
094    public static final String PASSIVE           = "passive";
095    /**
096     * Local login page
097     */
098    public static final String LOCAL_LOGIN       = "locallogin";
099    /**
100     * Common login page
101     */
102    public static final String COMMON_LOGIN       = "commonlogin";
103    /**
104     * Provider acts SP and IDP role
105     */
106    public static final String SP_IDP            = "SP/IDP";
107    /**
108     * Supported protocol type
109     */
110    public static final String ALLOWED_PROTOCOL_KEY =
111        "com.sun.identity.federation.allowedProtocol";
112    /**
113     * Specify keystore location in config file 
114     */    
115    public static final String KEY_STORE =
116        "com.sun.identity.saml.xmlsig.keystore";
117    /**
118     * Specify keystore password file in config file 
119     */        
120    public static final String STORE_PASS =
121        "com.sun.identity.saml.xmlsig.storepass";
122    /**
123     * Specify private key password in config file 
124     */        
125    public static final String KEY_PASS =
126        "com.sun.identity.saml.xmlsig.keypass";
127
128    /**
129     * Specify login URL IDP will redirect to when there is no valid session 
130     */        
131    public static final String IDP_LOGIN_URL =
132        "com.sun.identity.federation.services.idpLoginURL";
133
134    /**
135     * Internal error
136     */     
137    public static final String INTERNAL_ERROR = "internalError";
138   
139    public static final int LOCAL_NAME_IDENTIFIER = 0;
140    public static final int REMOTE_NAME_IDENTIFIER = 1;
141 
142    // **********************************
143    // these are keys whose values store in "libIDFF.properties" file.
144    // **********************************
145    /**
146     * Account management: hosted descriptor config is null. 
147     */
148    public static final String NULL_HOSTED_CONFIG = 
149        "actmgmt-hosted-config-is-null";
150    /**
151     * Account management: hosted entity id is null. 
152     */
153    public static final String NULL_PROVIDER_ID = 
154        "actmgmt-provider-id-is-null";
155    /**
156     * Account management: meta alias is null. 
157     */
158    public static final String NULL_META_ALIAS = 
159        "actmgmt-meta-alias-is-null";
160    /**
161     * Account management: User DN is null. 
162     */    
163    public static final String NULL_USER_DN = 
164        "actmgmt-user-dn-is-null";
165    /**
166     * Account management: Opaque handle is null. 
167     */    
168    public static final String NULL_NAME = 
169        "actmgmt-name-is-null";
170    /**
171     * Account management: Namespace is null. 
172     */    
173    public static final String NULL_NAME_SPACE = 
174        "actmgmt-name-space-is-null";
175    /**
176     * Account management: Name identifier is null. 
177     */     
178    public static final String NULL_NAME_IDENTIFIER = 
179        "actmgmt-name-identifier-is-null";
180    /**
181     * Account management: FedInfo is null. 
182     */    
183    public static final String NULL_FED_INFO_OBJECT =
184        "actmgmt-account-fed-info-object-is-null";
185    /**
186     * Account management: FedInfo key is null. 
187     */    
188    public static final String NULL_FED_INFO_KEY_OBJECT = 
189        "actmgmt-account-fed-info-key-object-is-null";
190    /**
191     * Account management: Account federation info is 
192     * modified in the directory. 
193     */    
194    public static final String INVALID_ACT_FED_INFO_IN_IDS = 
195        "actmgmt-fed-info-modified-in-ids";
196    /**
197     * Account management: Invalid name identifier type.
198     */      
199    public static final String INVALID_NAME_IDENTIFIER_TYPE = 
200        "actmgmt-nameIdentifierType-invalid";
201    /**
202     * Account management: Account federation info not found.
203     */       
204    public static final String ACT_FED_INFO_NOT_FOUND =
205        "actmgmt-fed-info-not-found";
206    /**
207     * Account management: Multiple UIDs matched.
208     */   
209    public static final String MULTIPLE_UID_MATCHED = 
210        "actmgmt-multiple-uid-matched";
211    /**
212     * Account management: UID does not match.
213     */ 
214    public static final String UID_NOT_MATCHED =
215        "actmgmt-uid-not-matched";
216    /**
217     * Account management: User does not match.
218     */     
219    public static final String USER_NOT_FOUND =
220        "actmgmt-user-not-found";
221    /**
222     * Maximum number of Assertion
223     */
224    public static final int ASSERTION_MAX_NUMBER_DEFAULT = 10;
225    /**
226     * Cleanup time interval
227     */
228    public static final int CLEANUP_INTERVAL_DEFAULT = 180;
229    /**
230     * User is used in basic authentication.
231     */
232    public static final String USER = "iplanet-am-saml-user";
233    /**
234     * Password for the user (basic authentication).
235     */
236    public static final String PASSWORD="iplanet-am-saml-password";
237    /**
238     * Basic authentication
239     */ 
240    public static final String BASICAUTH= "BASICAUTH";
241    /**
242     * SSL with basic authentication
243     */  
244    public static final String SSLWITHBASICAUTH = "SSLWITHBASICAUTH";
245    /**
246     * No authentication enforced 
247     */
248    public static final String NOAUTH = "NOAUTH";
249    /**
250     * SSL
251     */
252    public static final String SSL = "SSL";
253    /**
254     * Status code for saml protocol success
255     */
256    public static final String STATUS_CODE_SUCCESS = "samlp:Success";
257    /**
258     * Status code for saml protocol success without prefix 
259     */
260    public static final String STATUS_CODE_SUCCESS_NO_PREFIX = ":Success";
261    /**
262     * http protocol 
263     */
264    public static final String HTTP="http";
265    /**
266     * https protocol 
267     */
268    public static final String HTTPS="https";
269    /**
270     * Post AuthnResponse parameter 
271     */   
272    public static final String POST_AUTHN_RESPONSE_PARAM = "LARES";
273    /**
274     * Post AuthnRequest parameter 
275     */   
276    public static final String POST_AUTHN_REQUEST_PARAM = "LAREQ";
277    /**
278     * Authentication indicator parameter
279     */   
280    public static final String AUTHN_INDICATOR_PARAM = "Authn";
281    /**
282     * Default value for Authentication indicator parameter
283     */ 
284    public static final String AUTHN_INDICATOR_VALUE = "true";  
285    /**
286     * Attribute name in the session
287     */
288    public static final String SESSION_COTSET_ATTR = "CotSet";
289    /**
290     * Maximum length of URL
291     */
292    public static final int URL_MAX_LENGTH = 1256;
293    /**
294     * Error in metadata setting.
295     */     
296    public static final String METADATA_ERROR =
297        "metadata-error-check";
298    /**
299     * Contact system administrator to report this problem.
300     */
301    public static final String CONTACT_ADMIN = "contact-admin";
302    /**
303     * Federation access log file name 
304     */
305    public static final String FS_ACCESS_LOG_NAME = "Federation.access";
306    /**
307     * Federation error log file name 
308     */
309    public static final String FS_ERROR_LOG_NAME = "Federation.error";
310    /**
311     * Status code: <code>samlp:Success</code>  
312     */
313    public static final String SAML_SUCCESS = "samlp:Success";
314    /**
315     * Status code: <code>samlp:Responder</code>  
316     */
317    public static final String SAML_RESPONDER = "samlp:Responder";
318    /**
319     * Status code: <code>samlp:Requester</code>  
320     */
321    public static final String SAML_REQUESTER = "samlp:Requester";
322    /**
323     * Status code: <code>samlp:VersionMismatch</code>  
324     */
325    public static final String SAML_VERSION_MISMATCH = "samlp:VersionMismatch";
326
327    /**
328     * Liberty unsupported: <code>lib:Unsupported</code>
329     */
330    public static final String SAML_UNSUPPORTED = "lib:Unsupported";
331    /**
332     * Liberty failure: <code>lib:Failure</code>
333     */
334    public static final String REGISTRATION_FAILURE_STATUS = "lib:Failure";
335    /**
336     * Liberty federation does not exist:
337     * <code>lib:FederationDoesNotExist</code>
338     */
339    public static final String FEDERATION_NOT_EXISTS_STATUS = 
340        "lib:FederationDoesNotExist";
341    /**
342     * Register NameIdentifier Request
343     */
344    public static final String NAME_REGISTRATION_REQUEST = 
345        "RegisterNameIdentifierRequest";
346    /**
347     * Register NameIdentifier Response
348     */    
349    public static final String NAME_REGISTRATION_RESPONSE = 
350        "RegisterNameIdentifierResponse";
351    /**
352     * <code>lib</code> tag 
353     */    
354    public static final String LIB = "lib";
355    /**
356     * <code>yes</code>
357     */
358    public static final String YES = "yes";
359    /**
360     * <code>no</code>
361     */
362    public static final String NO = "no";
363    /**
364     * SP role
365     */
366    public static final String SP = "SP";
367    /**
368     * IDP role 
369     */
370    public static final String IDP = "IDP";
371    /**
372     * SP and IDP role 
373     */
374    public static final String BOTH ="IDP/SP";
375    /**
376     * Preferred cookie seperator
377     */
378    public static final String PREFERRED_COOKIE_SEPERATOR = " ";
379    /**
380     * Session cookie 
381     */
382    public static final String SESSION_COOKIE = "SESSION";
383    /**
384     * Persistent cookie
385     */
386    public static final String PERSISTENT_COOKIE = "PERSISTENT";
387    /**
388     * Persistent cookie expiration, by default 365 days
389     */
390    public static final int PERSISTENT_COOKIE_AGE = 31536000; 
391    /**
392     * Session cookie expiration
393     */
394    public static final int SESSION_COOKIE_AGE = -1;
395    /**
396     * Repeat termination flag
397     */
398    public static final String TERMINATION_REPEAT_FLAG = "repeatTerm";
399    /**
400     * Repeat logout flag
401     */
402    public static final String LOGOUT_REPEAT_FLAG = "repeatLogout";
403    /**
404     * Partner session
405     */
406    public static final String PARTNER_SESSION = "PartnerSession";
407    /**
408     * Session index 
409     */
410    public static final String SESSION_INDEX = "SessionIndex";
411    /**
412     * Provider 
413     */
414    public static final String PROVIDER = "Provider";
415    /**
416     * Missing value for security key.
417     */
418    public static final String MISSING_KEYINFO = "missingKeyInfo";
419    /**
420     * Provider ID not in request and not able to reset preferred IDP
421     */
422    public static final String INTRODUCTION_NO_PROVIDER_ID = 
423        "introduction-no-provider-id";
424    /**
425     * Redirect URL not specified.
426     */ 
427    public static final String INTRODUCTION_NO_REDIRECT_URL = 
428        "introduction-no-redirect-url";
429    /**
430     * Invalid Redirect URL scheme.
431     */
432    public static final String INTRODUCTION_INVALID_REDIRECT_URL_SCHEME = 
433        "invalid-redirect-url-scheme";
434    /**
435     * Preferred IDP Cookie not found.
436     */
437    public static final String INTRODUCTION_COOKIE_NOT_FOUND = 
438        "preferred-idp-cookie-not-found";
439    /**
440     *Invalid Property file. No providerid code.
441     */
442    public static final String INTRODUCTION_PROPERTY_FILE_PROVIDER_INVALID = 
443        "introduction-invalid-providerid-property-file";
444    /**
445     * Invalid Property File
446     */    
447    public static final String FEDERATION_PROPERTY_FILE_INVALID = 
448        "federation-invalid-property-file";
449    /**
450     * Failed to get Meta Manager Instance.
451     */
452    public static final String FEDERATION_FAILED_META_INSTANCE = 
453        "federation-failed-meta-instance";
454    /**
455     * Failed to get Account Manager Instance.
456     */
457    public static final String FEDERATION_FAILED_ACCOUNT_INSTANCE =
458        "federation-failed-account-instance";
459    /**
460     * Redirection failed. Cannot process further
461     */
462    public static final String FEDERATION_REDIRECT_FAILED = 
463        "federation-redirection-failed";
464    /**
465     * Failed to get Pre/Logout handler.
466     */
467    public static final String LOGOUT_INVALID_HANDLER =
468        "logout-invalid-handler";
469    /**
470     * Logout failed. Manager instance not available.
471     */
472    public static final String LOGOUT_FAILED_MANAGER = 
473        "logout-failed-manager";
474    /**
475     * Logout failed to redirect due to incorrect URL.
476     */
477    public static final String LOGOUT_REDIRECT_FAILED =
478        "logout-redirect-failed";
479    /**
480     * Logout failed due to invalid session.
481     * Redirect to authentication.
482     */
483    public static final String LOGOUT_TOKEN_INVALID = 
484        "logout-token-invalid";
485    /**
486     * Single logout failed.
487     */     
488    public static final String LOGOUT_FAILED = "logout-failed";
489    /**
490     * Logout request not formed properly. Cannot proceed.
491     */
492    public static final String LOGOUT_REQUEST_IMPROPER =
493        "logout-request-improper";
494    /**
495     * Creation of logout request failed.
496     */
497    public static final String LOGOUT_REQUEST_CREATION = 
498        "logout-request-creation-failed";
499    /**
500     * Failed to process Logout request.
501     */    
502    public static final String LOGOUT_REQUEST_PROCESSING_FAILED = 
503        "logout-request-processing-failed";
504    /**
505     * Logout request does not have provider specified properly.
506     * Cannot process request.
507     */
508    public static final String LOGOUT_REQUEST_NO_PROVIDER = 
509        "logout-request-no-provider";
510    /**
511     * Unable to find cert alias. Cannot sign or verify request.
512     */    
513    public static final String NO_CERT_ALIAS = "cannot-find-cert-alias";
514    /**
515     * Unable to find certificate. Cannot sign or verify request.
516     */    
517    public static final String NO_CERT = "cannot-find-cert";
518    /**
519     * Request does not contain proper provider ID.
520     */
521    public static final String REQUEST_NO_PROVIDER = "request-no-provider";
522    /**
523     * Failed to create SPProvidedNameIdentifier.
524     */
525    public static final String REGISTRATION_FAILED_SP_NAME_IDENTIFIER = 
526        "registration-failed-sp-name-identifier";
527    /**
528     * Error in processing Name Registration at IDP.
529     */
530    public static final String REGISTRATION_FAILED_REMOTE = 
531        "registration-failed-remote";
532    /**
533     * Error in sending Name Registration at IDP.
534     */
535    public static final String REGISTRATION_FAILED_SEND_REMOTE = 
536        "registration-failed-send-remote";
537    /**
538     * Error in processing Name Registration at SP.
539     */
540    public static final String REGISTRATION_FAILED_LOCAL = 
541        "registration-failed-local";
542    /**
543     * Successful processing of Name Registration at IDP.
544     */
545    public static final String REGISTRATION_SUCCESS_REMOTE =
546        "registration-success-remote";
547    /**
548     * Successful processing of Name Registration at SP. 
549     */
550    public static final String REGISTRATION_SUCCESS_LOCAL =
551        "registration-success-local";
552    /**
553     * Failed to create Name Registration request.
554     */
555    public static final String REGISTRATION_REQUEST_CREATION_FAILED = 
556        "registration-request-creation-failed";
557    /**
558     * LECP header name 
559     */
560    public static final String LECP_HEADER_NAME = "Liberty-Enabled";
561    /**
562     * WML header value 
563     */
564    public static final String WML_HEADER_VALUE = "text/vnd.wap.wml";
565    /**
566     * WML profile 
567     */
568    public static final String WML_PROFILE = 
569        "http://projectliberty.org/profiles/wml-post";
570    /**
571     * Exception in Federation Termination. Unknown Error.
572     */    
573    public static final String TERMINATION_EXCEPTION =
574        "termination-exception-unknown";
575    /**
576     * Account federation for user with provider does not exist.
577     */    
578    public static final String TERMINATION_INVALID_FEDERATION = 
579        "termination-invalid-federation";
580    /**
581     * Termination cannot proceed. Provider not found.
582     */    
583    public static final String TERMINATION_NO_PROVIDER = 
584        "termination-no-provider";
585    /**
586     * Invalid Termination Handler
587     */    
588    public static final String TERMINATION_INVALID_HANDLER =
589        "termination-handle-invalid";
590    /**
591     * Federation Termination failed during processTerminationRequest.
592     */    
593    public static final String TERMINATION_REQUEST_PROCESSING_FAILED =  
594        "termination-request-processing-failed";
595    /**
596     * Request not proper. Cannot proceed federation termination.
597     */
598    public static final String TERMINATION_REQUEST_IMPROPER =
599        "termination-request-improper";
600    /**
601     * Request creation failed. Cannot proceed with federation ]
602     * termination.
603     */
604    public static final String TERMINATION_REQUEST_CREATION = 
605        "termination-request-creation-failed";
606    /**
607     * Federation Termination failed at remote provider.
608     */    
609    public static final String TERMINATION_REMOTE_FAILED =
610        "termination-failed-remotely";
611    /**
612     * Federation Termination failed locally. Cannot update account.
613     */    
614    public static final String TERMINATION_LOCAL_FAILED =
615        "termination-failed-locally";
616    /**
617     * Federation Termination succeeded locally. User account updated.
618     */    
619    public static final String TERMINATION_LOCAL_SUCCEEDED =
620        "termination-succeeded-locally";
621    /** 
622     * Failed to get termination handler.
623     */
624    public static final String TERMINATION_HANDLE_CREATION_FAILED = 
625        "termination-handle-creation-failed";
626    /**
627     * Failed in sending SOAP request to remote end.
628     */    
629    public static final String TERMINATION_SOAP_SEND_FAILED =
630        "termination-soap-send-failed";
631    /**
632     * Invalid Federation Termination Service Return URL.
633     */    
634    public static final String TERMINATION_INVALID_REDIRECT_URL =
635        "termination-invalid-redirect-url";
636    /**
637     * Federation Termination Successful
638     */    
639    public static final String TERMINATION_SUCCEEDED =
640        "federation-termination-successful";
641    /**
642     * Signature verification of federation termination request failed.
643     */    
644    public static final String  TERMINATION_INVALID_SIGNATURE =
645        "termination-invalid-signature";
646    /**
647     * Failed to construct SOAP message from request object. 
648     */ 
649    public static final String TERMINATION_FAILED_SOAP_MESSAGE_CREATION =
650        "termination-failed-soap-creation";
651    /**
652     * Failed to send termination message to remote provider.
653     */
654    public static final String TERMINATION_FAILED_SEND_REMOTE =
655        "termination-failed-send-remote";
656    /**
657     * Federation termination servlet
658     */
659    public static final String TERMINATE_SERVLET = 
660        "/federation-terminate";
661    /**
662     * Name registration servlet 
663     */    
664    public static final String REGISTRATION_SERVLET =
665        "/InitiateRegistration"; 
666    /**
667     * Session cookie name 
668     */
669//    public static String SESSION_COOKIE_NAME = 
670 //       "com.sun.identity.federation.sessioncookie";
671    /**
672     * Circle of trust id 
673     */
674  //  public static final String COT_INFO = 
675   //     "com.sun.identity.federation.services.cotid";
676    /**
677     * Authentication login url 
678     */
679 //   public static final String authURL = 
680  //      "com.sun.identity.federation.services.authLoginUrl";
681    /**
682     * Termination profile 
683     */    
684   // public static final String TERMINATION_PROFILE =
685    //    "com.sun.identity.federation.services.termination.profile";
686    /**
687     * Termination profile relay state 
688     */    
689    public static String TERMINATION_RELAY_STATE = "RelayState";
690    /**
691     * Logout relay state
692     */
693    public static String LOGOUT_RELAY_STATE = "RelayState";
694    /**
695     * Name registration indicator
696     */
697    public static String NAMEREGIS_INDICATOR_PARAM = "nameregis";
698    /**
699     * Question mark
700     */
701    public static final char   QUESTION_MARK = '?';
702    /**
703     * Ampersand 
704     */
705    public static final char   AMPERSAND = '&';
706    /**
707     *Equal to
708     */
709    public static final char   EQUAL_TO = '=';
710    /**
711     * Role
712     */
713    public static String ROLE = "ROLE";
714    /**
715     * Response to 
716     */
717    public static String RESPONSE_TO = "responseTo";
718    /**
719     * IDP Single logout via idp 
720     */
721    public static final String LOGOUT_IDP_SOAP_PROFILE =
722        "http://projectliberty.org/profiles/slo-idp-soap";
723    /**
724     * IDP Single logout via http
725     */    
726    public static final String LOGOUT_IDP_REDIRECT_PROFILE =
727        "http://projectliberty.org/profiles/slo-idp-http";
728    /**    
729     * IDP Single logout via http get
730     */ 
731    public static final String LOGOUT_IDP_GET_PROFILE =
732        "http://projectliberty.org/profiles/slo-idp-http-get";
733    /**
734     * SP Single logout via soap 
735     */    
736    public static final String LOGOUT_SP_SOAP_PROFILE =
737        "http://projectliberty.org/profiles/slo-sp-soap";
738    /**
739     * SP Single logout via http 
740     */    
741    public static final String LOGOUT_SP_REDIRECT_PROFILE = 
742        "http://projectliberty.org/profiles/slo-sp-http";
743    /**
744     * IDP Termination via http 
745     */    
746    public static final String TERMINATION_IDP_HTTP_PROFILE =
747        "http://projectliberty.org/profiles/fedterm-idp-http";
748    /**
749     * IDP Termination via soap 
750     */    
751    public static final String TERMINATION_IDP_SOAP_PROFILE =
752        "http://projectliberty.org/profiles/fedterm-idp-soap";
753    /**
754     * SP Termination via soap 
755     */    
756    public static final String TERMINATION_SP_SOAP_PROFILE = 
757        "http://projectliberty.org/profiles/fedterm-sp-soap";
758    /**
759     * SP Termination via http 
760     */    
761    public static final String TERMINATION_SP_HTTP_PROFILE =
762        "http://projectliberty.org/profiles/fedterm-sp-http";
763    /**
764     * Name registration via soap 
765     */    
766    public static final String NAME_REGISTRATION_PROFILE =
767        "http://projectliberty.org/profiles/rni-soap";
768
769    /**
770     * URI for HTTP-Redirect-based Name Identifier Registration Profile
771     * initiated at Service Provider
772     */
773    public static final String NAME_REGISTRATION_SP_HTTP_PROFILE =
774        "http://projectliberty.org/profiles/rni-sp-http";
775    /**
776     * URI for SOAP/HTTP-based Name Identifier Registration Profile
777     * initiated at Service Provider
778     */
779    public static final String NAME_REGISTRATION_SP_SOAP_PROFILE =
780        "http://projectliberty.org/profiles/rni-sp-soap";
781    /**
782     * URI for HTTP-Redirect-based Name Identifier Registration Profile
783     * initiated at Identity Provider
784     */
785    public static final String NAME_REGISTRATION_IDP_HTTP_PROFILE =
786        "http://projectliberty.org/profiles/rni-idp-http";
787
788    /**
789     * URI for SOAP/HTTP-based Name Identifier Registration Profile
790     * initiated at Identity Provider
791     */
792    public static final String NAME_REGISTRATION_IDP_SOAP_PROFILE =
793        "http://projectliberty.org/profiles/rni-idp-soap";
794
795
796    /**
797     * FedCookie name 
798     */   
799    public static final String FEDERATE_COOKIE_NAME =
800        "com.sun.identity.federation.fedCookieName";
801    /**
802     * Quote
803     */ 
804    public static final String QUOTE                    = "\"";
805    /** 
806     * New line
807     */
808    public static final String NL                       = "\n";
809    /**
810     * Left angle
811     */
812    public static final String LEFT_ANGLE               = "<";
813    /** 
814     * Right angle
815     */
816    public static final String RIGHT_ANGLE              = ">";
817    /**
818     * End element 
819     */
820    public static final String END_ELEMENT              = "/>";
821    /** 
822     * Start end element 
823     */
824    public static final String START_END_ELEMENT        = "</";
825    /**
826     * Space
827     */
828    public static final String SPACE                    = " ";
829     /** 
830      * SAML tag
831      */
832    public static final String SAML_LOG_NAME            = "SAML";
833    /**
834     * AuthenticationContext  prefix 
835     */
836    public static final String AC_PREFIX                = "AC:";
837    /**
838     * lib prefix
839     */
840    public static final String LIB_PREFIX               = "lib:";
841    /**
842     * Liberty namespace uri
843     */
844    public static final String libertyMessageNamespaceURI =
845        "http://projectliberty.org/schemas/core/2002/12";
846    /**
847     * Liberty name space 
848     */    
849    public static final String LIB_NAMESPACE_STRING =
850        " xmlns:lib=\"http://projectliberty.org/schemas/core/2002/12\"";
851    /**
852     * AuthenticationContext name space 
853     */    
854    public static final String AC_NAMESPACE_STRING =
855        " xmlns:ac=\"http://projectliberty.org/schemas/authctx/2002/05\"";
856    /**
857     * AuthenticationContext namespace uri
858     */
859    public static final String AC_XML_NS = 
860        "http://projectliberty.org/schemas/authctx/2002/05";
861    /**
862     * SAML assertion name space 
863     */
864    public static final String assertionSAMLNameSpaceURI =
865        "urn:oasis:names:tc:SAML:1.0:assertion";
866    /**
867     * SOAP envelope uri
868     */    
869    public static final String SOAP_URI =
870        "http://schemas.xmlsoap.org/soap/envelope/";
871    /**
872     * SOAP prefix 
873     */    
874    public static final String SOAP_ENV_PREFIX = "soap-env";
875    /**
876     * SAML protocol namespace 
877     */
878    public static final String PROTOCOL_NAMESPACE_URI =
879        "urn:oasis:names:tc:SAML:1.0:protocol";
880    /**
881     * XML Digital signature namespace 
882     */    
883    public static final String DSSAMLNameSpace =
884        "xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\"";
885    /**
886     * XML schema namespace 
887     */    
888    public static final String XSI_NAMESPACE_STRING =
889        "xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\"";
890    /**
891     * SAML assertion namespace 
892     */    
893    public static final String assertionDeclareStr =
894        " xmlns:saml=\"urn:oasis:names:tc:SAML:1.0:assertion\"";
895    /**
896     * SAML protocol namespace 
897     */    
898    public static final String PROTOCOL_NAMESPACE_STRING =
899        " xmlns:samlp=\"urn:oasis:names:tc:SAML:1.0:protocol\"";
900    /**
901     * SAML Actions namespace identifiers: 
902     * Read/Write/Execute/Delete/Control
903     */    
904    public static final String ACTIONS_NAMESPACE =
905        "urn:oasis:names:tc:SAML:1.0:action:rwedc";
906    /**
907     * SAML Actions namespace identifiers: 
908     * Read/Write/Execute/Delete/Control with negation
909     */    
910    public static final String ACTIONS_NAMESPACE_NEGATION = 
911        "urn:oasis:names:tc:SAML:1.0:action:rwedc-negation";
912    /**
913     * SAML Actions namespace identifiers: 
914     * Get/Head/Put/Post
915     */  
916    public static final String ACTIONS_NAMESPACE_GHPP =
917        "urn:oasis:names:tc:SAML:1.0:ghpp";
918    /**
919     * SAML Actions namespace identifiers: 
920     * Unix file permissions
921     */     
922    public static final String ACTIONS_NAMESPACE_UNIX =
923        "urn:oasis:names:tc:SAML:1.0:action:unix";
924    /**
925     * SAML prefix
926     */
927    public static final String ASSERTION_PREFIX = "saml:";
928    /**
929     * SAML protocol prefix 
930     */
931    public static final String PROTOCOL_PREFIX = "samlp:";
932    /**
933     * Assertion major version
934     */
935    public static final int ASSERTION_MAJOR_VERSION = 1;
936    /**
937     * Assertion minor version
938     */
939    public static final int ASSERTION_MINOR_VERSION = 0;
940    /** 
941     * Protocol major version
942     */
943    public static final int PROTOCOL_MAJOR_VERSION = 1;
944    /**
945     * Protocol minor version
946     */
947    public static final int PROTOCOL_MINOR_VERSION = 0;
948    /**
949     * Default encoding
950     */
951    public static final String DEFAULT_ENCODING = "UTF-8";
952    /**
953     * Confirmation method: Artifact 
954     */
955    public static final String CONFIRMATION_METHOD_ARTIFACT =
956        "urn:oasis:names:tc:SAML:1.0:cm:artifact-01";
957    /**
958     * Confirmation method
959     */    
960    public static final String CONFIRMATION_METHOD_DSAME =
961        "urn:sun.com:sunone:ims";
962    /**
963     * Confirmation method: Bearer
964     */    
965    public static final String CONFIRMATION_METHOD_BEARER =
966        "urn:oasis:names:tc:SAML:1.0:cm:bearer";
967    /**
968     * Default Artifact time out
969     */    
970    public static final int ARTIFACT_TIMEOUT_DEFAULT = 120;
971    /**
972     * Default Assertion time out
973     */
974    public static final int ASSERTION_TIMEOUT_DEFAULT = 60;
975    /**
976     * Assertion timeout allowed difference  
977     */
978    public static final int ASSERTION_TIMEOUT_ALLOWED_DIFFERENCE = 60000;
979    /**
980     * Site id
981     */
982    public static final String SITE_ID = "iplanet-am-saml-siteid";
983    /**
984     * Default Artifact name 
985     */
986    public static final String ARTIFACT_NAME_DEFAULT = "SAMLart" ;
987    /**
988     * <code>RelayState</code> parameter
989     */
990    public static final String LRURL = "RelayState";
991    /**
992     * Length of an identifier
993     */
994    public static final int ID_LENGTH = 20;
995    /**
996     * XML Digital Signing algorithm
997     */
998    public static final String ALGO_ID_SIGNATURE_DSA =
999        "http://www.w3.org/2000/09/xmldsig#dsa-sha1";
1000    /**
1001     * XML Digital Signing algorithm
1002     */    
1003    public static final String ALGO_ID_SIGNATURE_RSA =
1004        "http://www.w3.org/2000/09/xmldsig#rsa-sha1";
1005    /**
1006     * XML Digital Signing constant
1007     */       
1008    public static final String DEF_SIG_ALGO =
1009        "http://www.w3.org/2000/09/xmldsig#dsa-sha1";
1010    /**
1011     * XML Digital Signing constant
1012     */ 
1013    public static final String DEF_SIG_ALGO_JCA =
1014        "SHA1withRSA";
1015    /**
1016     * XML Digital Signing constant
1017     */  
1018    public static final String ALGO_ID_SIGNATURE_DSA_JCA = 
1019        "SHA1withDSA";
1020    /**
1021     * XML Digital Signing constant
1022     */  
1023    public static final String ALGO_ID_SIGNATURE_RSA_JCA =
1024        "SHA1withRSA";
1025    /**
1026     * XML Digital Signing: DSA key 
1027     */      
1028    public static final String KEY_ALG_DSA = "DSA";
1029    /**
1030     * XML Digital Signing: RSA key 
1031     */  
1032    public static final String KEY_ALG_RSA = "RSA";
1033    /**
1034     * Liberty namespace uri 
1035     */
1036    public static final String LIB_NAMESPACE_URI =
1037        "http://projectliberty.org/schemas/core/2002/12";
1038    /**
1039     * Liberty browser artifact profile 
1040     */    
1041    public static final String SSO_PROF_BROWSER_ART =
1042        "http://projectliberty.org/profiles/brws-art";
1043    /**
1044     * Liberty browser post profile 
1045     */        
1046    public static final String SSO_PROF_BROWSER_POST =
1047        "http://projectliberty.org/profiles/brws-post";
1048    /**
1049     * Liberty WML post profile 
1050     */        
1051    public static final String SSO_PROF_WML_POST =
1052        "http://projectliberty.org/profiles/wml-post";
1053    /**
1054     * Liberty LECP profile 
1055     */         
1056    public static final String SSO_PROF_LECP =
1057        "http://projectliberty.org/profiles/lecp";
1058    /**
1059     * Local opaque handler
1060     */     
1061    public static final int LOCAL_OPAQUE_HANDLE = 0; 
1062    /**
1063     * Remote opaque handler
1064     */ 
1065    public static final int REMOTE_OPAQUE_HANDLE = 1;
1066    /**
1067     * Meta Alias
1068     */
1069    public static final String META_ALIAS = "metaAlias";
1070    /**
1071     * Goto parameter
1072     */
1073    public static final String GOTO_URL_PARAM = "goto";
1074    /**
1075     * Session host provider attribute 
1076     */
1077    public static final String SESSION_HOST_PROVIDER_ATTR = "hostid";
1078    /**
1079     * AuthnContext 
1080     */
1081    public static final String AUTHN_CONTEXT = "AuthnContext";
1082    /**
1083     * Artifact length 
1084     */
1085    public static final int ART_ID_LENGTH = 20;
1086    /** 
1087     * Sourceid encoding
1088     */
1089    public static final String SOURCEID_ENCODING = "ISO-8859-1";
1090
1091    /**
1092     * Max session time
1093     */
1094    public static final int MAX_SESSION_TIME = 12000;
1095    /**
1096     * Max ide time
1097     */
1098    public static final int MAX_IDLE_TIME = 3000;
1099    /**
1100     * Max caching time
1101     */
1102    public static final int MAX_CACHING_TIME = 500;
1103    /**
1104     * Max session time key 
1105     */
1106    public static final String MAX_SESSION_TIME_KEY = "SESSION_TIME";
1107    /**
1108     * Max idle time key
1109     */
1110    public static final String MAX_IDLE_TIME_KEY = "IDLE_TIME";
1111    /**
1112     * Max caching time key
1113     */
1114    public static final String MAX_CACHING_TIME_KEY = "CACHING_TIME";
1115    /**
1116     * Error code for Missing Authentication Context in entity metadata.
1117     */ 
1118    public static final String META_MISSING_AUTH_CONTEXT =
1119        "meta_missing_auth_context";
1120
1121    /**
1122     * Error code for Invalid value for Priority in entity metadata.
1123     */     
1124    public static final String META_INVALID_LEVEL =
1125        "meta_invalid_level";
1126    /**
1127     * Error code for Contact person type
1128     */                             
1129    public static final String TECHNICAL        = "technical";
1130    /**
1131     * Error code for Contact person type
1132     */  
1133    public static final String ADMINISTRATIVE   = "administrative";
1134    /**
1135     * Error code for Contact person type
1136     */  
1137    public static final String BILLING          = "billing";
1138    /**
1139     * Error code for Contact person type
1140     */  
1141    public static final String OTHER            = "other";       
1142     /**
1143     * Specified logout profile is not supported. 
1144     */    
1145    public static final String LOGOUT_PROFILE_NOT_SUPPORTED = 
1146        "logout-profile-not-supported";
1147    /**
1148     * No provider is specified in name registration.
1149     */     
1150    public static final String REGISTRATION_NO_PROVIDER = 
1151        "registration-no-provider";
1152    /**
1153     * Invalid Provider in Registration.
1154     */  
1155    public static final String REGISTRATION_INVALID_PROVIDER =
1156        "registration-invalid-provider";
1157    /**
1158     * Invalid Signature for Registration.
1159     */  
1160    public static final String  REGISTRATION_INVALID_SIGNATURE= 
1161        "registration-invalid-signature";
1162    /**
1163     * Registration failed.
1164     */
1165    public static final String REGISTRATION_FAILED      = 
1166        "registration-failed";
1167    /**
1168     * Improper Registration Request
1169     */
1170    public static final String REGISTRATION_REQUEST_IMPROPER = 
1171        "registration-request-improper";   
1172    /**
1173     * Console service 
1174     */ 
1175    public static final String CONSOLE_SERVICE =
1176        "iPlanetAMAdminConsoleService";
1177    /**
1178     * Console service version
1179     */
1180    public static final String CONSOLE_SERVICE_VERSION =
1181        "1.0";
1182    /**
1183     * Liberty enabled console
1184     */
1185    public static final String LIBERTY_ENABLED_KEY =
1186       "iplanet-am-admin-console-liberty-enabled";
1187    /**
1188     * Local configuration is invalid. 
1189     */   
1190    public static final String LOCALCONFIG_INVALID = "localconfig_invalid";
1191    /**
1192     * Invalid circle of trust list
1193     */
1194    public static final String COTLIST_INVALID =
1195        "cotlist_invalid";
1196    /**
1197     * <code>AuthnRequest</code> RequestID attribute
1198     */  
1199    public static final String AUTH_REQUEST_ID = "RequestID";
1200    /**
1201     * <code>arg</code> key
1202     */  
1203    public static final String ARGKEY = "arg";
1204    /**
1205     * New Session
1206     */
1207    public static final String NEWSESSION = "newsession";
1208    /**
1209     * Post-login page
1210     */
1211    public static final String POST_LOGIN_PAGE = "/postLogin";
1212    /**
1213     * Pre-login page
1214     */
1215    public static final String PRE_LOGIN_PAGE = "/preLogin";
1216    /**
1217     * Federate keyword
1218     */
1219    public static final String FEDERATEKEY = "federate";
1220    /**
1221     * Default value of the <code>federate</code>
1222     */
1223    public static final String FEDERATEVALUE = "false";
1224    /**
1225     * sso keyword
1226     */
1227    public static final String SSOKEY = "sso";
1228    /**
1229     * Default value of the <code>sso</code>
1230     */
1231    public static final String SSOVALUE = "true";
1232    /**
1233     * cotkey keyword
1234     */
1235    public static final String COTKEY = "cotkey";
1236    /**
1237     * Chosen provider
1238     */
1239    public static final String SELECTEDPROVIDER = "selectedprovider";
1240    /**
1241     * goto parameter 
1242     */
1243    public static final String GOTOKEY = "goto";
1244    /**
1245     * org parameter
1246     */
1247    public static final String ORGKEY = "org";
1248    /**
1249     * authlevel parameter 
1250     */
1251    public static final String AUTH_LEVEL_KEY = "authlevel";
1252    /** 
1253     * AuthContext Comparison type
1254     */
1255    public static final String  MINIMUM = "minimum";
1256    /** 
1257     * AuthContext Comparison type
1258     */
1259    public static final String EXACT = "exact";
1260    /** 
1261     * AuthContext Comparison type
1262     */
1263    public static final String BETTER = "better";
1264    /** 
1265     * AuthContext Comparison type
1266     */
1267    public static final String MAXIMUM = "maximum";
1268    /**
1269     * Parameter used in introduction profile
1270     */
1271    public static final String PROVIDER_ID_KEY = "_liberty_idp" ;
1272    /**
1273     * Parameter used to pass realm value.
1274     */
1275     public static final String REALM = "realm";
1276    /**
1277     * Intersite transfer URL
1278     */
1279    public static final String INTERSITE_URL = "IntersiteTransferService";
1280    /**
1281     * Part of the login URL 
1282     */
1283    public static final String LOGIN_PAGE = "/UI/Login";
1284    /**
1285     * Useraction value: Cancel 
1286     */
1287    public static final String CANCEL = "cancel";
1288    /**
1289     * <code>action</code> parameter in the request object 
1290     */
1291    public static final String USERACTION = "action";  
1292    /**
1293     * Consent handler 
1294     */
1295    public static final String CONSENT_HANDLER = "consentHandler";
1296    /**
1297     * Federation handler 
1298     */
1299    public static final String FEDERATION_HANDLER = "federation";
1300    /**
1301     * Key used to search for header info in a map 
1302     */
1303    public static final String HEADER_KEY = "headerKey";
1304    /**
1305     * Key used to search for URL info in a map   
1306     */
1307    public static final String URL_KEY = "urlKey";
1308    /**
1309     * Key used to search for response info in a map   
1310     */
1311    public static final String RESPONSE_DATA_KEY = "responseData";
1312    /**
1313     * Hosted provider
1314     */
1315    public static final String PROVIDER_HOSTED = "hosted";
1316    /**
1317     * Remote provider 
1318     */
1319    public static final String PROVIDER_REMOTE = "remote";
1320    /**
1321     * Entity descriptor
1322     */
1323    public static final String ENTITY_DESCRIPTOR = "entitydescriptor";
1324    /** 
1325     * Local AuthType
1326     */
1327    public static final String AUTH_LOCAL = "local";
1328    /**
1329     * Remote AuthType
1330     */
1331    public static final String AUTH_REMOTE = "remote";
1332    /**
1333     * Home page file name
1334     */
1335    public static final String HOMEPAGE_URL_VALUE ="/index.html";
1336    /**
1337     * Common login page file name 
1338     */
1339    public static final String COMMON_LOGIN_PAGE_URL_VALUE ="/CommonLogin.jsp";
1340    /**
1341     * JSP file location 
1342     */
1343    public static final String JSP_LOCATION = "/config/federation/default";
1344    /**
1345     * SOAP endpoint value
1346     */
1347    public static final String SOAP_END_POINT_VALUE = "/SOAPReceiver";
1348    /**
1349     * Single logout endpoint value
1350     */
1351    public static final String SLO_VALUE =  "/ProcessLogout";
1352    /**
1353     * Single logout return endpoint value
1354     */
1355    public static final String SLO_RETURN_VALUE = "/ReturnLogout";
1356    /**
1357     * Federation termination endpoint value
1358     */
1359    public static final String TERM_VALUE = "/ProcessTermination";
1360    /**
1361     * Federation termination  return endpoint value
1362     */
1363    public static final String TERM_RETURN_VALUE = "/ReturnTermination";
1364    /**
1365     * Assertion consumer service endpoint value
1366     */
1367    public static final String ASSERTION_CONSUMER_VALUE =
1368        "/AssertionConsumerService";
1369    /**
1370     * Single signon endpoint value
1371     */
1372    public static final String SSO_VALUE =  "/SingleSignOnService";
1373    /**
1374     * Configuration root directory
1375     */
1376    public static final String CONFIG_ROOT = "/config/federation";
1377    /**
1378     * Resource lookup related variables.
1379     */
1380    public static final String CONFIG_DIR = "config";
1381    public static final String FEDERATION_DIR = "federation";
1382    public static final String DEFAULT_DIR = "default";
1383
1384    /**
1385     * AuthenticatonStatement prefix
1386     */
1387    public static final String RESPOND_WITH =
1388        "lib:AuthenticationStatement";
1389    /**
1390     * Federation jsp name
1391     */
1392    public static final String DOFEDERATE_PAGE_NAME = 
1393        "Federate.jsp";
1394    /**
1395     * Logout completed jsp name 
1396     */
1397    public static final String LOGOUTDONE_PAGE_NAME = 
1398        "LogoutDone.jsp";
1399    /**
1400     * Federation completed jsp name 
1401     */
1402    public static final String FEDERATIONDONE_PAGE_NAME =
1403        "FederationDone.jsp";
1404    /**
1405     * Error page
1406     */    
1407    public static final String ERROR_PAGE_NAME = "Error.jsp";
1408    /**
1409     * List of circle of trust page 
1410     */
1411    public static final String LISTOFCOTS_PAGE_NAME = "ListOfCOTs.jsp";
1412    /**
1413     * Federation termination done jsp name 
1414     */
1415    public static final String TERMINATION_DONE_PAGE_NAME = 
1416        "TerminationDone.jsp";
1417    /**
1418     * Name registration done jsp name 
1419     */   
1420    public static final String NAME_REGISTRATION_DONE_PAGE_NAME =
1421        "NameRegistrationDone.jsp";
1422    /**
1423     * Common login jsp name  
1424     */      
1425    public static final String COMMON_LOGIN_PAGE_NAME = 
1426        "CommonLogin.jsp";
1427    /**
1428     * Termination status 
1429     */
1430    public static final String TERMINATION_STATUS ="termStatus";
1431    /**
1432     * Termination status : Sucess
1433     */
1434    public static final String TERMINATION_SUCCESS ="termSuccess";
1435    /**
1436     * Termination status : Failure 
1437     */
1438    public static final String TERMINATION_FAILURE ="termFailure";
1439    /**
1440     * Provider id key is usd in Termination. 
1441     */
1442    public static final String TERMINATION_PROVIDER_ID =
1443        "_liberty_id";
1444    /**
1445     * Failed to get hosted descriptor
1446     */
1447    public static final String FAILED_HOSTED_DESCRIPTOR =
1448        "failed-reading-hosted-descriptor";
1449    /**
1450     * Logout status
1451     */
1452    public static final String LOGOUT_STATUS="logoutStatus";
1453    /**
1454     * Logout status: Success
1455     */
1456    public static final String LOGOUT_SUCCESS="logoutSuccess";
1457    /**
1458     * Logout status: Failure
1459     */
1460    public static final String LOGOUT_FAILURE="logoutFailure";
1461    /**
1462     * Logout status: No Session
1463     */
1464    public static final String LOGOUT_NO_SESSION="noSession";
1465    /**
1466     * boolean: <code>true</code>
1467     */
1468    public static final String TRUE = "true";
1469    /**
1470     * boolean: <code>false</code>
1471     */
1472    public static final String FALSE = "false";
1473    /**
1474     * Optional attribute
1475     */
1476    public static final String OPTIONAL = "optional";
1477    /**
1478     * Provider id key is used in name registration.
1479     */    
1480    public static final String REGISTRATION_PROVIDER_ID="_liberty_id";
1481    /**
1482     * Failed to  create name registration handlde
1483     */
1484    public static final String REGISTRATION_HANDLE_CREATION_FAILED = 
1485        "registration-handle-creation-failed";
1486    /**
1487     * Registration status 
1488     */    
1489    public static final String REGISTRATION_STATUS="regisStatus";
1490    /**
1491     * Registration status : Success
1492     */   
1493    public static final String REGISTRATION_SUCCESS="regisSuccess";
1494    /**
1495     * Registration status : Failure
1496     */   
1497    public static final String REGISTRATION_FAILURE="regisFailure";
1498    /**
1499     * Relay state
1500     */
1501    public static String REGISTRATION_RELAY_STATE = "RELAYSTATE";
1502    /**
1503     * Name Registration profile 
1504     */
1505    public static final String REGISTRATION_IDP_HTTP_PROFILE =
1506        "http://projectliberty.org/profiles/rni-idp-http";
1507    /**
1508     * Name Registration profile 
1509     */
1510    public static final String REGISTRATION_IDP_SOAP_PROFILE = 
1511        "http://projectliberty.org/profiles/rni-idp-soap";
1512    /**
1513     * Name Registration profile 
1514     */
1515    public static final String REGISTRATION_SP_SOAP_PROFILE =
1516        "http://projectliberty.org/profiles/rni-sp-soap";
1517    /**
1518     * Name Registration profile 
1519     */
1520    public static final String REGISTRATION_SP_HTTP_PROFILE = 
1521        "http://projectliberty.org/profiles/rni-sp-http";
1522    /**
1523     * Single signon service 
1524     */
1525    public static final String SSO_URL = "/SingleSignOnService";
1526    /**
1527     * Process registration uri
1528     */
1529    public static final String REGISTRATION_VALUE = "/ProcessRegistration";
1530    /**
1531     * Registration return uri
1532     */
1533    public static final String REGISTRATION_RETURN_VALUE = 
1534        "returnRegistration";
1535    /**
1536     * Do name registration after federation
1537     */    
1538    public static final String REGIS_FEDERATION = "AfterFederation"; 
1539    /**
1540     * Do name registration during single signon process
1541     */  
1542    public static final String REGIS_SSO = "DuringSSO"; 
1543    /**
1544     * Do name registration on demand 
1545     */  
1546    public static final String REGIS_LINK = "STAND_ALONE";
1547    /**
1548     * Signature Id used in termination profile 
1549     */
1550    public static final String TERMINATIONID = "term-Sig-ID";
1551    /**
1552     * Signature Id used in name registration profile 
1553     */
1554    public static final String REGISTRATIONID = "reg-Sig-ID";
1555    /**
1556     * Signature Id used in logout profile 
1557     */
1558    public static final String LOGOUTID = "logout-sig-ID";
1559    /**
1560     * LECP request header 
1561     */
1562    public static final String LECP_CONTENT_TYPE_HEADER = 
1563        "application/vnd.liberty-request+xml";
1564    /**
1565     * LECP response header 
1566     */   
1567    public static final String LECP_RESP_CONTENT_TYPE_HEADER =
1568        "application/vnd.liberty-response+xml";
1569    /**
1570     * LECP indicator parameter 
1571     */   
1572    public static final String LECP_INDICATOR_PARAM = "LECP";
1573    /**
1574     * LECP indicator parameter's default value 
1575     */   
1576    public static final String LECP_INDICATOR_VALUE = "TRUE";
1577    /** 
1578     * Goto this URL if no federation cookie presents.
1579     */
1580    public static final String GOTO_ON_FEDCOOKIE_NO_URL = "gotoOnFedCookieNo"; 
1581    /**
1582     * <code>isPassive</code> 
1583     */
1584    public static final String IS_PASSIVE_QUERY = "isPassive"; 
1585    /**
1586     * Take action if no federation cookie presents.
1587     */
1588    public static final String ACTION_ON_NO_FED_COOKIE = "actionOnNoFedCookie";
1589
1590    /**
1591     * Boot strapping
1592     */
1593    public static final String DISCO_RESOURCE_OFFERING_NAME = 
1594                    "DiscoveryResourceOffering";
1595    /**
1596     * Termination notification profile
1597     */                         
1598    public static final String TERMINATION_NOTIFICATION_PROFILE = 
1599        "http://projectliberty.org/profiles/rel-term-soap";
1600    /**
1601     * IDFF1.2 Name space
1602     */
1603    public static final String LIB_12_NAMESPACE_STRING =
1604        " xmlns:lib=\"urn:liberty:iff:2003-08\"";
1605    /**
1606     * Authentication context Name space
1607     */    
1608    public static final String AC_12_NAMESPACE_STRING=
1609        " xmlns:ac=\"urn:liberty:ac:2003-08\"";
1610    /**
1611     * IDFF1.2 Name space
1612     */    
1613    public static final String FF_12_XML_NS="urn:liberty:iff:2003-08";
1614    /**
1615     * Authentication context Name space urn
1616     */
1617    public static final String AC_12_XML_NS="urn:liberty:ac:2003-08";
1618    /**
1619     * IDFF 1.2 saml protocol minor version
1620     */
1621    public static final int FF_12_SAML_PROTOCOL_MINOR_VERSION = 1;
1622    /**
1623     * IDFF 1.1 saml protocol minor version
1624     */ 
1625    public static final int FF_11_SAML_PROTOCOL_MINOR_VERSION = 0;
1626    /**
1627     * IDFF 1.2 saml assertion minor version (POST profile)
1628     */   
1629    public static final int FF_12_POST_ASSERTION_MINOR_VERSION = 2;
1630    /**
1631     * IDFF 1.2 saml assertion minor version (Artifact profile)
1632     */   
1633    public static final int FF_12_ART_ASSERTION_MINOR_VERSION = 2;
1634    /**
1635     * IDFF 1.1 saml assertion minor version (Artifact profile)
1636     */  
1637    public static final int FF_11_ASSERTION_MINOR_VERSION = 0;
1638    /**
1639     * IDFF 1.2 saml protocol minor version
1640     */ 
1641    public static final int FF_12_PROTOCOL_MINOR_VERSION = 2;
1642    /**
1643     * IDFF 1.1 saml protocol minor version
1644     */ 
1645    public static final int FF_11_PROTOCOL_MINOR_VERSION = 0;
1646    /**
1647     * Name Identifier format URI 
1648     */
1649    public static final String NI_FEDERATED_FORMAT_URI =
1650        "urn:liberty:iff:nameid:federated";
1651    /**
1652     * Name Identifier format URI 
1653     */
1654    public static final String NI_ONETIME_FORMAT_URI =
1655        "urn:liberty:iff:nameid:one-time";
1656    /**
1657     * Name Identifier format URI 
1658     */
1659    public static final String NI_ENCRYPTED_FORMAT_URI =
1660        "urn:liberty:iff:nameid:encrypted";
1661    /**
1662     * Discovery Resource Offering
1663     */    
1664    public static final String DISCOVERY_RESOURCE_OFFERING =
1665        "DiscoveryResourceOffering";
1666    /**
1667     * Assertion ID
1668     */
1669    public static final String ASSERTION_ID="AssertionID"; 
1670    /**
1671     * Request ID
1672     */
1673    public static final String REQUEST_ID="RequestID"; 
1674    /**
1675     * Response ID
1676     */
1677    public static final String RESPONSE_ID="ResponseID";
1678    /**
1679     * ID 
1680     */
1681    public static final String ID="id";
1682    
1683    /**
1684     * NameIDPolicy Element name
1685     */
1686    public static final String NAMEID_POLICY_ELEMENT="NameIDPolicy";
1687
1688    /**
1689     * NameIDPolicy configuration attribute name
1690     */
1691    public static final String NAMEID_POLICY="nameIDPolicy";
1692
1693    /**
1694     * Key is used for signing.
1695     */
1696    public static final String KEYTYPE_SIGNING="signing";
1697    /**
1698     * Key is used for encryption.
1699     */
1700    public static final String KEYTYPE_ENCRYPTION="encryption";
1701    /**
1702     * <code>NameIDPolicy</code> value type
1703     */
1704    public static final String NAME_ID_POLICY_NONE = "none";
1705     /**
1706     * <code>NameIDPolicy</code> value type
1707     */
1708    public static final String NAME_ID_POLICY_ONETIME = "onetime";
1709    /**
1710     * <code>NameIDPolicy</code> value type
1711     */
1712    public static final String NAME_ID_POLICY_FEDERATED = "federated";
1713    /**
1714     * <code>NameIDPolicy</code> value type
1715     */
1716    public static final String NAME_ID_POLICY_ANY = "any";
1717    /**
1718     * Idp finder URL
1719     */
1720    public static final String IDP_FINDER_URL ="/idpfinder";
1721    /**
1722     * XPATH for Assertion Artifact 
1723     */
1724    public static final String ARTIFACT_XPATH = 
1725       "/Envelope/Body/Request/AssertionArtifact";
1726    /**
1727     * Affiliation id for Affiliation descriptor
1728     */   
1729    public static final String AFFILIATED = "Affiliated";
1730    /**
1731     * Auth Federation attribute 
1732     */
1733    public static final String AUTO_FED_ATTR = "AutoFederateAttribute";
1734    /**
1735     * Provider id separator 
1736     */
1737    public static final String PROVIDER_ID_SEPARATOR = "|";
1738    /**
1739     * SP provider suffix 
1740     */
1741    public static final String SP_PROVIDER_SFX =
1742        PROVIDER_ID_SEPARATOR + "SP";
1743    /**
1744     * IDP provider suffix 
1745     */ 
1746    public static final String IDP_PROVIDER_SFX = 
1747        PROVIDER_ID_SEPARATOR + "IDP";
1748    /**
1749     * Used in local configuration descriptor to track the version
1750     */
1751    public static final int PROVIDER_CONFIG_70_VERSION = 30;
1752    /**
1753     * Used in local configuration descriptor to track the version
1754     */
1755    public static final int PROVIDER_CONFIG_71_VERSION = 40;
1756    /**
1757     * Anonymous Onetime federation
1758     */
1759    public static final String ANONYMOUS_ONETIME = "anonymousOnetime";
1760    /**
1761     * Parameter for status code. Used in FederationSPAdapter.
1762     */
1763    public static final String STATUS_CODE = "StatusCode";
1764    /**
1765     * Parameter for failure code. Used in FederationSPAdapter.
1766     */
1767    public static final String FAILURE_CODE = "FailureCode";
1768
1769    /**
1770     * Used by <code>FSUserProvider</code> to pass in termination request
1771     * through env map.
1772     */
1773    public static final String FS_USER_PROVIDER_ENV_TERMINATION_KEY =
1774                "FSFederationTerminationNotification";
1775    /**
1776     * Used by <code>FSUserProvider</code> to pass in authn response
1777     * through env map.
1778     */
1779    public static final String FS_USER_PROVIDER_ENV_AUTHNRESPONSE_KEY =
1780                "FSAuthnResponse";
1781    /**
1782     * Used by <code>FSUserProvider</code> to pass in logout request
1783     * through env map.
1784     */
1785    public static final String FS_USER_PROVIDER_ENV_LOGOUT_KEY =
1786                "FSLogoutNotification";
1787    /**
1788     * Used by <code>FSUserProvider</code> to pass in registration request
1789     * through env map.
1790     */
1791    public static final String FS_USER_PROVIDER_ENV_REGISTRATION_KEY =
1792                "FSNameRegistrationRequest";
1793    /**
1794     * Used by <code>FSUserProvider</code> to pass in saml response
1795     * through env map.
1796     */
1797    public static final String FS_USER_PROVIDER_ENV_FSRESPONSE_KEY =
1798                "FSResponse";
1799    /**
1800     * Used by <code>FSUserProvider</code> to pass in name ID mapping request
1801     * through env map.
1802     */
1803    public static final String FS_USER_PROVIDER_ENV_NAMEMAPPING_KEY =
1804                "FSNameIdentifierMappingRequest";
1805
1806    /**
1807     * Default <code>FSUserProvider</code> implemeation class.
1808     */
1809    public static final String FS_USER_PROVIDER_DEFAULT =
1810                "com.sun.identity.federation.accountmgmt.DefaultFSUserProvider";
1811    /**
1812     * ID-FF component name used in obtaining provider.
1813     */
1814    public static final String IDFF = "IDFF";
1815
1816    /**
1817     * Key name for the federation attribute mapper.
1818     */
1819    public static final String FS_ATTRIBUTE_MAPPER =
1820        "com.sun.identity.liberty.fed.attributemapper";
1821                                                                              
1822    /**
1823     * Key name for the webservices security attribute mapper.
1824     */
1825    public static final String WS_ATTRIBUTE_PLUGIN =
1826        "com.sun.identity.liberty.ws.attributeplugin";
1827    
1828    /**
1829     * Assertion
1830     */
1831    public static final String ASSERTION = "Assertion";
1832
1833    /**
1834     * Major Version
1835     */
1836    public static final String MAJOR_VERSION="MajorVersion";
1837
1838    /**
1839     * Minor Version
1840     */
1841    public static final String MINOR_VERSION="MinorVersion";
1842
1843    /**
1844     * Issuer
1845     */
1846    public static final String ISSUER="Issuer";
1847    
1848    /**
1849     * InResponseTo
1850     */
1851    public static final String IN_RESPONSE_TO="InResponseTo";
1852    
1853    /**
1854     * IssueInstant
1855     */
1856    public static final String ISSUE_INSTANT="IssueInstant";
1857
1858    /**
1859     * Conditions
1860     */
1861    public static final String CONDITIONS="Conditions";
1862    
1863    /**
1864     * Advice
1865     */
1866    public static final String ADVICE="Advice";
1867    
1868    /**
1869     * AuthenticationStatement
1870     */
1871    public static final String AUTHENTICATIONSTATEMENT 
1872                                      = "AuthenticationStatement";
1873    /**
1874     * AuthorizationDecisionStatement
1875     */
1876    public static final String AUTHZDECISIONSTATEMENT =
1877                                     "AuthorizationDecisionStatement";
1878
1879    /**
1880     * AttributeStatement
1881     */
1882    public static final String ATTRIBUTESTATEMENT = "AttributeStatement";
1883
1884    /**
1885     * Signature
1886     */
1887    public static final String SIGNATURE = "Signature";
1888    
1889    /**
1890     * AssertionType
1891     */
1892    public static final String ASSERTION_TYPE = "AssertionType";
1893
1894    /**
1895     * xsi type
1896     */
1897    public static final String XSI_TYPE = "xsi:type";
1898    
1899    /**
1900     * Authentication Method
1901     */
1902    public static final String AUTHENTICATION_METHOD="AuthenticationMethod";   
1903    
1904    /**
1905     * Authentication Instant
1906     */
1907    public static final String AUTHENTICATION_INSTANT="AuthenticationInstant";
1908
1909    /**
1910     * Authority Binding
1911     */
1912    public static final String AUTHORITY_BINDING= "AuthorityBinding";   
1913    
1914    /**
1915     * SubjectLocality
1916     */
1917    public static final String SUBJECT_LOCALITY="SubjectLocality";
1918
1919    
1920    /**
1921     * ReauthenticationOnOrAfter
1922     */
1923    public static final String REAUTH_ON_OR_AFTER="ReauthenticateOnOrAfter";
1924
1925    /**
1926     * Authentication Subject
1927     */
1928    public static final String AUTH_SUBJECT="Subject";
1929
1930    /**
1931     * Authentication Statement Type
1932     */
1933    public static final String AUTHENTICATIONSTATEMENT_TYPE
1934            = "AuthenticationStatementType";
1935
1936    /**
1937     * Authentication Request 
1938     */
1939    public static final String AUTHN_REQUEST="AuthnRequest";
1940
1941    /**
1942     * RespondWith
1943     */
1944    public static final String RESPONDWITH="RespondWith";
1945
1946    /**
1947     * Consent
1948     */
1949    public static final String CONSENT="consent";
1950    
1951    /**
1952     * Provider Identifier
1953     */
1954    public static final String PROVIDER_ID="ProviderID";   
1955    
1956    /**
1957     * Federate
1958     */
1959    public static final String FEDERATE ="Federate";
1960    
1961    /**
1962     * Major Version Value
1963     */
1964       
1965    public static final String ONE ="1";
1966
1967    /**
1968     * ProtocolProfile
1969     */
1970    public static final String PROTOCOL_PROFILE="ProtocolProfile";
1971    
1972    /**
1973     * Requested AuthnContext
1974     */
1975    
1976    public static final String REQUEST_AUTHN_CONTEXT="RequestAuthnContext";
1977    
1978    /**
1979     * Affliation Identifier
1980     */
1981    public static final String  AFFILIATIONID = "AffiliationID";
1982    
1983    /**
1984     * Extension
1985     */
1986    public static final String  EXTENSION = "Extension";
1987    
1988    /**
1989     * Scoping
1990     */
1991    public static final String  SCOPING = "Scoping";
1992 
1993    /**
1994     * Assertion Consumer Service Identifier
1995     */
1996    public static final String ASSERTION_CONSUMER_SVC_ID=
1997            "AssertionConsumerServiceID";
1998    
1999    /**
2000     * Authenticaion Context Comparison
2001     */
2002    public static final String AUTHN_CONTEXT_COMPARISON=
2003            "AuthnContextComparison";
2004
2005    /**
2006     * RelayState
2007     */
2008    public static final String RELAY_STATE ="RelayState";
2009    
2010    /**
2011     * NameIdentifier Mapping Request
2012     */
2013    public static final String NAMEID_MAPPING_REQUEST =
2014            "NameIdentifierMappingRequest";
2015    
2016    /**
2017     * NameIdentifier Mapping Response
2018     */
2019    public static final String NAMEID_MAPPING_RESPONSE =
2020            "NameIdentifierMappingResponse";
2021    
2022    /**
2023     * Target Name Space
2024     */
2025    public static final String TARGET_NAME_SPACE="TargetNamespace";
2026    
2027    /**
2028     * XML Prefix String
2029     */
2030    public static final String XML_PREFIX="<?xml version=\"1.0\" encoding=\"";
2031    
2032    /**
2033     * Name Identifier
2034     */
2035    public static final String NAME_IDENTIFIER="NameIdentifier";
2036    
2037    /**
2038     * Federation Termination Notification
2039     */
2040    public static final String FEDERATION_TERMINATION_NOTICFICATION =
2041                                            "FederationTerminationNotification";
2042    
2043    /**
2044     * Name 
2045     */
2046    public static final String NAME = "Name";
2047    
2048    /** 
2049     * Name Qualifier
2050     */
2051    
2052    public static final String NAME_QUALIFIER = "NameQualifier";
2053    
2054    /**
2055     * NameFormat
2056     */
2057    public static final String NAME_FORMAT = "NameFormat";
2058    
2059    /**
2060     * GetComplete
2061     */
2062    public static final String GET_COMPLETE = "GetComplete";
2063    
2064    /**
2065     * IDP Entries 
2066     */
2067    public static final String IDP_ENTRIES = "IDPEntries";
2068    
2069    /**
2070     * LogoutRequest
2071     */
2072    public static final String LOGOUT_REQUEST = "LogoutRequest";
2073    
2074    /**
2075     * LogoutResponse
2076     */
2077     
2078    public static final String LOGOUT_RESPONSE = "LogoutResponse";
2079    
2080    /**
2081     * NotOnOrAfter
2082     */
2083    public static final String NOT_ON_OR_AFTER = "NotOnOrAfter";
2084    
2085    /**
2086     * Value
2087     */
2088    public static final String VALUE = "Value";
2089
2090    /**
2091     * IDPList
2092     */
2093    public static final String IDP_LIST="IDPList";
2094    
2095    /**
2096     * Authentication Request Envelope
2097     */
2098    public static final String AUTHN_REQUEST_ENVELOPE="AuthnRequestEnvelope";
2099    
2100    /**
2101     * Assertion Consumer Service URL
2102     */
2103    public static final String ASSERTION_CONSUMER_SERVICE_URL=
2104            "AssertionConsumerServiceURL";
2105
2106    /**
2107     * Authentication Response
2108     */
2109    public static final String AUTHN_RESPONSE="AuthnResponse";
2110    
2111    /**
2112     * Authentication Response Envelope
2113     */
2114    public static final String AUTHN_RESPONSE_ENVELOPE
2115                                        ="AuthnResponseEnvelope";  
2116    
2117    /**
2118     * Recipient
2119     */
2120    public static final String RECIPIENT = "Recipient";
2121
2122    /**
2123     * Status
2124     */
2125    public static final String STATUS = "Status";
2126    
2127    /**
2128     * ProviderName
2129     */
2130    public static final String PROVIDER_NAME="ProviderName";
2131    
2132    /**
2133     * IsPassive Element Name
2134     */
2135    public String IS_PASSIVE_ELEM = "IsPassive"; 
2136
2137    /**
2138     * Force Authentication Element Name
2139     */
2140    public String FORCE_AUTHN_ELEM = "ForceAuthn";
2141
2142
2143    /**
2144     * Provider Status
2145     */
2146    public String PROVIDER_STATUS = "providerStatus";
2147
2148    /**
2149     * Signing Certificate Alias 
2150     */ 
2151    public String SIGNING_CERT_ALIAS = "signingCertAlias";
2152
2153    /**
2154     * Encryption Certificate Alias
2155     */
2156    public static final String ENCRYPTION_CERT_ALIAS = "encryptionCertAlias";
2157
2158    /**
2159     * Enable IDP Proxy 
2160     */ 
2161    public String ENABLE_IDP_PROXY = "enableIDPProxy";
2162
2163    /**
2164     * IDP Proxy Name List 
2165     */ 
2166    public String IDP_PROXY_LIST = "idpProxyList";
2167
2168    /**
2169     * IDP Proxy Count 
2170     */ 
2171    public String IDP_PROXY_COUNT = "idpProxyCount";
2172
2173    /**
2174     * Use Introduction for IDP Proxy  
2175     */ 
2176    public String USE_INTRODUCTION_FOR_IDP_PROXY = "useIntroductionForIDPProxy";
2177
2178    /**
2179     * Enable Name Identifier Encryption 
2180     */ 
2181    public String ENABLE_NAMEID_ENCRYPTION = "enableNameIDEncryption";
2182
2183    /**
2184     * Generate Bootstrapping in Single Sign-on Assertion 
2185     */ 
2186    public String GENERATE_BOOTSTRAPPING = "generateBootstrapping";
2187
2188    /**
2189     * Responds with 
2190     */ 
2191    public String RESPONDS_WITH = "respondsWith";
2192
2193    /**
2194     * Name Identifier Implementation Class 
2195     */ 
2196    public String NAMEID_IMPL_CLASS = "nameIDImplementationClass";
2197
2198    /**
2199     * Authentication Type (remote/local)
2200     */ 
2201    public String AUTH_TYPE = "authType";
2202
2203    /**
2204     * Registration Done URL 
2205     */ 
2206    public String REGISTRATION_DONE_URL = "registrationDoneURL";
2207
2208    /**
2209     * Termination Done URL 
2210     */ 
2211    public String TERMINATION_DONE_URL = "terminationDoneURL";
2212
2213    /**
2214     * Logout Done URL 
2215     */ 
2216    public String LOGOUT_DONE_URL = "logoutDoneURL";
2217
2218    /**
2219     * Federation Done URL 
2220     */ 
2221    public String FEDERATION_DONE_URL = "federationDoneURL";
2222
2223    /**
2224     * Single Sign-on failure redirection URL
2225     */ 
2226    public String SSO_FAILURE_REDIRECT_URL = "ssoFailureRedirectURL";
2227
2228    /**
2229     * Error page redirection URL
2230     */ 
2231    public String ERROR_PAGE_URL = "errorPageURL";
2232
2233    /**
2234     * List of COTs page URL.
2235     */
2236    public String LISTOFCOTS_PAGE_URL = "listOfCOTsPageURL";
2237
2238    /**
2239     * Do federate page URL.
2240     */
2241    public String DOFEDERATE_PAGE_URL = "doFederatePageURL";
2242
2243    /**
2244     * Implementation class for SPI <code>FSUserProvider</code>.
2245     */
2246    public String FS_USER_PROVIDER_CLASS = "userProviderClass";
2247
2248    /**
2249     * Provider Home page URL.
2250     */ 
2251    public String PROVIDER_HOME_PAGE_URL = "providerHomePageURL";
2252
2253    /**
2254     * Assertion valid interval 
2255     */ 
2256    public String ASSERTION_INTERVAL = "assertionInterval"; 
2257
2258    /**
2259     * Internal Thread Cleanup Internal 
2260     */ 
2261    public String CLEANUP_INTERVAL = "cleanupInterval";
2262
2263    /**
2264     * Artifact Timeout Interval 
2265     */ 
2266    public String ARTIFACT_TIMEOUT = "artifactTimeout";
2267
2268    /**
2269     * Maximum Assertion Limit 
2270     */ 
2271    public String ASSERTION_LIMIT = "assertionLimit";
2272
2273    /**
2274     * Assertion Issuer 
2275     */ 
2276    public String ASSERTION_ISSUER = "assertionIssuer";
2277
2278    /**
2279     * Attribute Plugin 
2280     */ 
2281    public String ATTRIBUTE_PLUGIN = "attributePlugin";
2282
2283    /**
2284     * IDP Attribute Map 
2285     */ 
2286    public String IDP_ATTRIBUTE_MAP = "idpAttributeMap";
2287
2288    /**
2289     * Whether to initialize registration after sso/federation.
2290     * Currently, it is not used.
2291     */
2292    public String ENABLE_REGISTRATION_AFTER_SSO = "enableRegistrationAfterSSO";
2293
2294    /**
2295     * Default AuthnContext  
2296     */ 
2297    public String DEFAULT_AUTHNCONTEXT = "defaultAuthnContext";
2298
2299    /**
2300     * Default AuthnContext Password
2301     */ 
2302    public String DEFAULT_AUTHNCONTEXT_PASSWORD = 
2303        "http://www.projectliberty.org/schemas/authctx/classes/Password";
2304
2305    /**
2306     * IDP AuthnContext Mapping 
2307     */ 
2308    public String IDP_AUTHNCONTEXT_MAPPING = "idpAuthnContextMapping";
2309
2310    /**
2311     * Enable Auto-Federation 
2312     */ 
2313    public String ENABLE_AUTO_FEDERATION = "enableAutoFederation";
2314
2315    /**
2316     * Auto-Federation Attribute 
2317     */ 
2318    public String AUTO_FEDERATION_ATTRIBUTE = "autoFederationAttribute";
2319
2320    /**
2321     * Attribute Mapper Class 
2322     */ 
2323    public String ATTRIBUTE_MAPPER_CLASS = "attributeMapperClass";
2324
2325    /**
2326     * Circle-of-trust list 
2327     */ 
2328    public String COT_LIST = COTConstants.COT_LIST;
2329
2330    /**
2331     * Enable Affiliation 
2332     */ 
2333    public String ENABLE_AFFILIATION = "enableAffiliation";
2334
2335    /**
2336     * Force Authentication at IDP 
2337     */ 
2338    public String FORCE_AUTHN = "forceAuthn";
2339
2340    /**
2341     * Request IDP to be Passive 
2342     */ 
2343    public String IS_PASSIVE = "isPassive";
2344
2345    /**
2346     * Service Provider AuthnContext Mapping 
2347     */ 
2348    public String SP_AUTHNCONTEXT_MAPPING = "spAuthnContextMapping";
2349
2350    /**
2351     * Service Provider Attribute Map 
2352     */ 
2353    public String SP_ATTRIBUTE_MAP = "spAttributeMap";
2354
2355    /**
2356     * Federation Service Provider Adapter 
2357     */ 
2358    public String FEDERATION_SP_ADAPTER = "federationSPAdapter";
2359
2360    /**
2361     * Environment variables for Federation Service Provider Adapter
2362     */ 
2363    public String FEDERATION_SP_ADAPTER_ENV = "federationSPAdapterEnv";
2364
2365    /**
2366     * Service Provider's supported profiles for single sign on.
2367     * First one is the default one.
2368     */
2369    public String SUPPORTED_SSO_PROFILE = "supportedSSOProfile";
2370
2371    /**
2372     * Constants for authn context mapping values.
2373     */
2374    public String ATTRIBUTE_SEPARATOR = "|";
2375    public String KEY_VALUE_SEPARATOR = "=";
2376    public String AUTH_CONTEXT_NAME = "context";
2377    public String MODULE_INDICATOR_KEY = "key";
2378    public String MODULE_INDICATOR_VALUE = "value";
2379    public String LEVEL = "level";
2380
2381    /**
2382     * Provider description.
2383     */
2384    public String PROVIDER_DESCRIPTION = "providerDescription";
2385
2386    /**
2387     * Service Provider's default relay state.
2388     */
2389    public String SP_DEFAULT_RELAY_STATE =
2390        "/samples/idff/sp/index.jsp";
2391    
2392    /**
2393     * boolean to indicate if this is SOAP profile
2394     */
2395    public String IS_SOAP_PROFILE = "isSOAPProfile";
2396
2397    /**
2398     * root realm.
2399     */
2400    public String ROOT_REALM = "/";
2401
2402    /**
2403     * SAMLRequest query parameter name
2404     */
2405    public String SAML_REQUEST = "SAMLRequest";
2406
2407    /**
2408     * SAMLResponse query parameter name
2409     */
2410    public String SAML_RESPONSE = "SAMLResponse";
2411
2412    /**
2413     * Parameter name for SAML artifact in http request.
2414     */
2415    public String SAML_ART = "SAMLart";
2416
2417}
2418