001/** 002 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER. 003 * 004 * Copyright (c) 2006 Sun Microsystems Inc. All Rights Reserved 005 * 006 * The contents of this file are subject to the terms 007 * of the Common Development and Distribution License 008 * (the License). You may not use this file except in 009 * compliance with the License. 010 * 011 * You can obtain a copy of the License at 012 * https://opensso.dev.java.net/public/CDDLv1.0.html or 013 * opensso/legal/CDDLv1.0.txt 014 * See the License for the specific language governing 015 * permission and limitations under the License. 016 * 017 * When distributing Covered Code, include this CDDL 018 * Header Notice in each file and include the License file 019 * at opensso/legal/CDDLv1.0.txt. 020 * If applicable, add the following below the CDDL Header, 021 * with the fields enclosed by brackets [] replaced by 022 * your own identifying information: 023 * "Portions Copyrighted [year] [name of copyright owner]" 024 * 025 * $Id: IFSConstants.java,v 1.12 2008/08/29 04:57:15 exu Exp $ 026 * Portions Copyrights 2014 ForgeRock AS 027 */ 028 029 030package com.sun.identity.federation.common; 031 032import com.sun.identity.cot.COTConstants; 033/** 034 * This interface represents a collection of common constants used by 035 * the classes in Federation Service. 036 * @supported.all.api 037 * @deprecated since 12.0.0 038 */ 039@Deprecated 040public interface IFSConstants { 041 /** 042 * HTTPS URL prefix 043 */ 044 public static final String HTTPS_URL_PREFIX = "https://"; 045 /** 046 * Dot character 047 */ 048 public static final char DOT = '.'; 049 /** 050 * Federation error 051 */ 052 public static final String FEDERROR ="federror"; 053 /** 054 * Federation remark 055 */ 056 public static final String FEDREMARK ="fedremark"; 057 /** 058 * Provider or entity status 059 */ 060 public static final String ACTIVE = "active"; 061 /** 062 * Provider or entity status 063 */ 064 public static final String INACTIVE = "inactive"; 065 /** 066 * IDFF 1.1 meta version 067 */ 068 public static final String ENUM_ZERO = "urn:liberty:iff:2002-12"; 069 /** 070 * IDFF 1.2 meta version 071 */ 072 public static final String ENUM_ONE = "urn:liberty:iff:2003-08"; 073 /** 074 * Affiliation descriptor 075 */ 076 public static final String AFFILIATE_TYPE = "urn:liberty:iff:affiliate"; 077 /** 078 * Provider descriptor 079 */ 080 public static final String CONTAINER_TYPE = "urn:liberty:iff:provider"; 081 /** 082 * SOAP binding 083 */ 084 public static final String SOAP = "SOAP"; 085 /** 086 * HTTP redirect 087 */ 088 public static final String HTTP_REDIRECT = "HTTP Redirect"; 089 /** 090 * HTTP redirect 091 */ 092 public static final String HTTP_GET = "HTTP Get"; 093 /** 094 * PASSIVE mode 095 */ 096 public static final String PASSIVE = "passive"; 097 /** 098 * Local login page 099 */ 100 public static final String LOCAL_LOGIN = "locallogin"; 101 /** 102 * Common login page 103 */ 104 public static final String COMMON_LOGIN = "commonlogin"; 105 /** 106 * Provider acts SP and IDP role 107 */ 108 public static final String SP_IDP = "SP/IDP"; 109 /** 110 * Supported protocol type 111 */ 112 public static final String ALLOWED_PROTOCOL_KEY = 113 "com.sun.identity.federation.allowedProtocol"; 114 /** 115 * Specify keystore location in config file 116 */ 117 public static final String KEY_STORE = 118 "com.sun.identity.saml.xmlsig.keystore"; 119 /** 120 * Specify keystore password file in config file 121 */ 122 public static final String STORE_PASS = 123 "com.sun.identity.saml.xmlsig.storepass"; 124 /** 125 * Specify private key password in config file 126 */ 127 public static final String KEY_PASS = 128 "com.sun.identity.saml.xmlsig.keypass"; 129 130 /** 131 * Specify login URL IDP will redirect to when there is no valid session 132 */ 133 public static final String IDP_LOGIN_URL = 134 "com.sun.identity.federation.services.idpLoginURL"; 135 136 /** 137 * Internal error 138 */ 139 public static final String INTERNAL_ERROR = "internalError"; 140 141 public static final int LOCAL_NAME_IDENTIFIER = 0; 142 public static final int REMOTE_NAME_IDENTIFIER = 1; 143 144 // ********************************** 145 // these are keys whose values store in "libIDFF.properties" file. 146 // ********************************** 147 /** 148 * Account management: hosted descriptor config is null. 149 */ 150 public static final String NULL_HOSTED_CONFIG = 151 "actmgmt-hosted-config-is-null"; 152 /** 153 * Account management: hosted entity id is null. 154 */ 155 public static final String NULL_PROVIDER_ID = 156 "actmgmt-provider-id-is-null"; 157 /** 158 * Account management: meta alias is null. 159 */ 160 public static final String NULL_META_ALIAS = 161 "actmgmt-meta-alias-is-null"; 162 /** 163 * Account management: User DN is null. 164 */ 165 public static final String NULL_USER_DN = 166 "actmgmt-user-dn-is-null"; 167 /** 168 * Account management: Opaque handle is null. 169 */ 170 public static final String NULL_NAME = 171 "actmgmt-name-is-null"; 172 /** 173 * Account management: Namespace is null. 174 */ 175 public static final String NULL_NAME_SPACE = 176 "actmgmt-name-space-is-null"; 177 /** 178 * Account management: Name identifier is null. 179 */ 180 public static final String NULL_NAME_IDENTIFIER = 181 "actmgmt-name-identifier-is-null"; 182 /** 183 * Account management: FedInfo is null. 184 */ 185 public static final String NULL_FED_INFO_OBJECT = 186 "actmgmt-account-fed-info-object-is-null"; 187 /** 188 * Account management: FedInfo key is null. 189 */ 190 public static final String NULL_FED_INFO_KEY_OBJECT = 191 "actmgmt-account-fed-info-key-object-is-null"; 192 /** 193 * Account management: Account federation info is 194 * modified in the directory. 195 */ 196 public static final String INVALID_ACT_FED_INFO_IN_IDS = 197 "actmgmt-fed-info-modified-in-ids"; 198 /** 199 * Account management: Invalid name identifier type. 200 */ 201 public static final String INVALID_NAME_IDENTIFIER_TYPE = 202 "actmgmt-nameIdentifierType-invalid"; 203 /** 204 * Account management: Account federation info not found. 205 */ 206 public static final String ACT_FED_INFO_NOT_FOUND = 207 "actmgmt-fed-info-not-found"; 208 /** 209 * Account management: Multiple UIDs matched. 210 */ 211 public static final String MULTIPLE_UID_MATCHED = 212 "actmgmt-multiple-uid-matched"; 213 /** 214 * Account management: UID does not match. 215 */ 216 public static final String UID_NOT_MATCHED = 217 "actmgmt-uid-not-matched"; 218 /** 219 * Account management: User does not match. 220 */ 221 public static final String USER_NOT_FOUND = 222 "actmgmt-user-not-found"; 223 /** 224 * Maximum number of Assertion 225 */ 226 public static final int ASSERTION_MAX_NUMBER_DEFAULT = 10; 227 /** 228 * Cleanup time interval 229 */ 230 public static final int CLEANUP_INTERVAL_DEFAULT = 180; 231 /** 232 * User is used in basic authentication. 233 */ 234 public static final String USER = "iplanet-am-saml-user"; 235 /** 236 * Password for the user (basic authentication). 237 */ 238 public static final String PASSWORD="iplanet-am-saml-password"; 239 /** 240 * Basic authentication 241 */ 242 public static final String BASICAUTH= "BASICAUTH"; 243 /** 244 * SSL with basic authentication 245 */ 246 public static final String SSLWITHBASICAUTH = "SSLWITHBASICAUTH"; 247 /** 248 * No authentication enforced 249 */ 250 public static final String NOAUTH = "NOAUTH"; 251 /** 252 * SSL 253 */ 254 public static final String SSL = "SSL"; 255 /** 256 * Status code for saml protocol success 257 */ 258 public static final String STATUS_CODE_SUCCESS = "samlp:Success"; 259 /** 260 * Status code for saml protocol success without prefix 261 */ 262 public static final String STATUS_CODE_SUCCESS_NO_PREFIX = ":Success"; 263 /** 264 * http protocol 265 */ 266 public static final String HTTP="http"; 267 /** 268 * https protocol 269 */ 270 public static final String HTTPS="https"; 271 /** 272 * Post AuthnResponse parameter 273 */ 274 public static final String POST_AUTHN_RESPONSE_PARAM = "LARES"; 275 /** 276 * Post AuthnRequest parameter 277 */ 278 public static final String POST_AUTHN_REQUEST_PARAM = "LAREQ"; 279 /** 280 * Authentication indicator parameter 281 */ 282 public static final String AUTHN_INDICATOR_PARAM = "Authn"; 283 /** 284 * Default value for Authentication indicator parameter 285 */ 286 public static final String AUTHN_INDICATOR_VALUE = "true"; 287 /** 288 * Attribute name in the session 289 */ 290 public static final String SESSION_COTSET_ATTR = "CotSet"; 291 /** 292 * Maximum length of URL 293 */ 294 public static final int URL_MAX_LENGTH = 1256; 295 /** 296 * Error in metadata setting. 297 */ 298 public static final String METADATA_ERROR = 299 "metadata-error-check"; 300 /** 301 * Contact system administrator to report this problem. 302 */ 303 public static final String CONTACT_ADMIN = "contact-admin"; 304 /** 305 * Federation access log file name 306 */ 307 public static final String FS_ACCESS_LOG_NAME = "Federation.access"; 308 /** 309 * Federation error log file name 310 */ 311 public static final String FS_ERROR_LOG_NAME = "Federation.error"; 312 /** 313 * Status code: <code>samlp:Success</code> 314 */ 315 public static final String SAML_SUCCESS = "samlp:Success"; 316 /** 317 * Status code: <code>samlp:Responder</code> 318 */ 319 public static final String SAML_RESPONDER = "samlp:Responder"; 320 /** 321 * Status code: <code>samlp:Requester</code> 322 */ 323 public static final String SAML_REQUESTER = "samlp:Requester"; 324 /** 325 * Status code: <code>samlp:VersionMismatch</code> 326 */ 327 public static final String SAML_VERSION_MISMATCH = "samlp:VersionMismatch"; 328 329 /** 330 * Liberty unsupported: <code>lib:Unsupported</code> 331 */ 332 public static final String SAML_UNSUPPORTED = "lib:Unsupported"; 333 /** 334 * Liberty failure: <code>lib:Failure</code> 335 */ 336 public static final String REGISTRATION_FAILURE_STATUS = "lib:Failure"; 337 /** 338 * Liberty federation does not exist: 339 * <code>lib:FederationDoesNotExist</code> 340 */ 341 public static final String FEDERATION_NOT_EXISTS_STATUS = 342 "lib:FederationDoesNotExist"; 343 /** 344 * Register NameIdentifier Request 345 */ 346 public static final String NAME_REGISTRATION_REQUEST = 347 "RegisterNameIdentifierRequest"; 348 /** 349 * Register NameIdentifier Response 350 */ 351 public static final String NAME_REGISTRATION_RESPONSE = 352 "RegisterNameIdentifierResponse"; 353 /** 354 * <code>lib</code> tag 355 */ 356 public static final String LIB = "lib"; 357 /** 358 * <code>yes</code> 359 */ 360 public static final String YES = "yes"; 361 /** 362 * <code>no</code> 363 */ 364 public static final String NO = "no"; 365 /** 366 * SP role 367 */ 368 public static final String SP = "SP"; 369 /** 370 * IDP role 371 */ 372 public static final String IDP = "IDP"; 373 /** 374 * SP and IDP role 375 */ 376 public static final String BOTH ="IDP/SP"; 377 /** 378 * Preferred cookie seperator 379 */ 380 public static final String PREFERRED_COOKIE_SEPERATOR = " "; 381 /** 382 * Session cookie 383 */ 384 public static final String SESSION_COOKIE = "SESSION"; 385 /** 386 * Persistent cookie 387 */ 388 public static final String PERSISTENT_COOKIE = "PERSISTENT"; 389 /** 390 * Persistent cookie expiration, by default 365 days 391 */ 392 public static final int PERSISTENT_COOKIE_AGE = 31536000; 393 /** 394 * Session cookie expiration 395 */ 396 public static final int SESSION_COOKIE_AGE = -1; 397 /** 398 * Repeat termination flag 399 */ 400 public static final String TERMINATION_REPEAT_FLAG = "repeatTerm"; 401 /** 402 * Repeat logout flag 403 */ 404 public static final String LOGOUT_REPEAT_FLAG = "repeatLogout"; 405 /** 406 * Partner session 407 */ 408 public static final String PARTNER_SESSION = "PartnerSession"; 409 /** 410 * Session index 411 */ 412 public static final String SESSION_INDEX = "SessionIndex"; 413 /** 414 * Provider 415 */ 416 public static final String PROVIDER = "Provider"; 417 /** 418 * Missing value for security key. 419 */ 420 public static final String MISSING_KEYINFO = "missingKeyInfo"; 421 /** 422 * Provider ID not in request and not able to reset preferred IDP 423 */ 424 public static final String INTRODUCTION_NO_PROVIDER_ID = 425 "introduction-no-provider-id"; 426 /** 427 * Redirect URL not specified. 428 */ 429 public static final String INTRODUCTION_NO_REDIRECT_URL = 430 "introduction-no-redirect-url"; 431 /** 432 * Invalid Redirect URL scheme. 433 */ 434 public static final String INTRODUCTION_INVALID_REDIRECT_URL_SCHEME = 435 "invalid-redirect-url-scheme"; 436 /** 437 * Preferred IDP Cookie not found. 438 */ 439 public static final String INTRODUCTION_COOKIE_NOT_FOUND = 440 "preferred-idp-cookie-not-found"; 441 /** 442 *Invalid Property file. No providerid code. 443 */ 444 public static final String INTRODUCTION_PROPERTY_FILE_PROVIDER_INVALID = 445 "introduction-invalid-providerid-property-file"; 446 /** 447 * Invalid Property File 448 */ 449 public static final String FEDERATION_PROPERTY_FILE_INVALID = 450 "federation-invalid-property-file"; 451 /** 452 * Failed to get Meta Manager Instance. 453 */ 454 public static final String FEDERATION_FAILED_META_INSTANCE = 455 "federation-failed-meta-instance"; 456 /** 457 * Failed to get Account Manager Instance. 458 */ 459 public static final String FEDERATION_FAILED_ACCOUNT_INSTANCE = 460 "federation-failed-account-instance"; 461 /** 462 * Redirection failed. Cannot process further 463 */ 464 public static final String FEDERATION_REDIRECT_FAILED = 465 "federation-redirection-failed"; 466 /** 467 * Failed to get Pre/Logout handler. 468 */ 469 public static final String LOGOUT_INVALID_HANDLER = 470 "logout-invalid-handler"; 471 /** 472 * Logout failed. Manager instance not available. 473 */ 474 public static final String LOGOUT_FAILED_MANAGER = 475 "logout-failed-manager"; 476 /** 477 * Logout failed to redirect due to incorrect URL. 478 */ 479 public static final String LOGOUT_REDIRECT_FAILED = 480 "logout-redirect-failed"; 481 /** 482 * Logout failed due to invalid session. 483 * Redirect to authentication. 484 */ 485 public static final String LOGOUT_TOKEN_INVALID = 486 "logout-token-invalid"; 487 /** 488 * Single logout failed. 489 */ 490 public static final String LOGOUT_FAILED = "logout-failed"; 491 /** 492 * Logout request not formed properly. Cannot proceed. 493 */ 494 public static final String LOGOUT_REQUEST_IMPROPER = 495 "logout-request-improper"; 496 /** 497 * Creation of logout request failed. 498 */ 499 public static final String LOGOUT_REQUEST_CREATION = 500 "logout-request-creation-failed"; 501 /** 502 * Failed to process Logout request. 503 */ 504 public static final String LOGOUT_REQUEST_PROCESSING_FAILED = 505 "logout-request-processing-failed"; 506 /** 507 * Logout request does not have provider specified properly. 508 * Cannot process request. 509 */ 510 public static final String LOGOUT_REQUEST_NO_PROVIDER = 511 "logout-request-no-provider"; 512 /** 513 * Unable to find cert alias. Cannot sign or verify request. 514 */ 515 public static final String NO_CERT_ALIAS = "cannot-find-cert-alias"; 516 /** 517 * Unable to find certificate. Cannot sign or verify request. 518 */ 519 public static final String NO_CERT = "cannot-find-cert"; 520 /** 521 * Request does not contain proper provider ID. 522 */ 523 public static final String REQUEST_NO_PROVIDER = "request-no-provider"; 524 /** 525 * Failed to create SPProvidedNameIdentifier. 526 */ 527 public static final String REGISTRATION_FAILED_SP_NAME_IDENTIFIER = 528 "registration-failed-sp-name-identifier"; 529 /** 530 * Error in processing Name Registration at IDP. 531 */ 532 public static final String REGISTRATION_FAILED_REMOTE = 533 "registration-failed-remote"; 534 /** 535 * Error in sending Name Registration at IDP. 536 */ 537 public static final String REGISTRATION_FAILED_SEND_REMOTE = 538 "registration-failed-send-remote"; 539 /** 540 * Error in processing Name Registration at SP. 541 */ 542 public static final String REGISTRATION_FAILED_LOCAL = 543 "registration-failed-local"; 544 /** 545 * Successful processing of Name Registration at IDP. 546 */ 547 public static final String REGISTRATION_SUCCESS_REMOTE = 548 "registration-success-remote"; 549 /** 550 * Successful processing of Name Registration at SP. 551 */ 552 public static final String REGISTRATION_SUCCESS_LOCAL = 553 "registration-success-local"; 554 /** 555 * Failed to create Name Registration request. 556 */ 557 public static final String REGISTRATION_REQUEST_CREATION_FAILED = 558 "registration-request-creation-failed"; 559 /** 560 * LECP header name 561 */ 562 public static final String LECP_HEADER_NAME = "Liberty-Enabled"; 563 /** 564 * WML header value 565 */ 566 public static final String WML_HEADER_VALUE = "text/vnd.wap.wml"; 567 /** 568 * WML profile 569 */ 570 public static final String WML_PROFILE = 571 "http://projectliberty.org/profiles/wml-post"; 572 /** 573 * Exception in Federation Termination. Unknown Error. 574 */ 575 public static final String TERMINATION_EXCEPTION = 576 "termination-exception-unknown"; 577 /** 578 * Account federation for user with provider does not exist. 579 */ 580 public static final String TERMINATION_INVALID_FEDERATION = 581 "termination-invalid-federation"; 582 /** 583 * Termination cannot proceed. Provider not found. 584 */ 585 public static final String TERMINATION_NO_PROVIDER = 586 "termination-no-provider"; 587 /** 588 * Invalid Termination Handler 589 */ 590 public static final String TERMINATION_INVALID_HANDLER = 591 "termination-handle-invalid"; 592 /** 593 * Federation Termination failed during processTerminationRequest. 594 */ 595 public static final String TERMINATION_REQUEST_PROCESSING_FAILED = 596 "termination-request-processing-failed"; 597 /** 598 * Request not proper. Cannot proceed federation termination. 599 */ 600 public static final String TERMINATION_REQUEST_IMPROPER = 601 "termination-request-improper"; 602 /** 603 * Request creation failed. Cannot proceed with federation ] 604 * termination. 605 */ 606 public static final String TERMINATION_REQUEST_CREATION = 607 "termination-request-creation-failed"; 608 /** 609 * Federation Termination failed at remote provider. 610 */ 611 public static final String TERMINATION_REMOTE_FAILED = 612 "termination-failed-remotely"; 613 /** 614 * Federation Termination failed locally. Cannot update account. 615 */ 616 public static final String TERMINATION_LOCAL_FAILED = 617 "termination-failed-locally"; 618 /** 619 * Federation Termination succeeded locally. User account updated. 620 */ 621 public static final String TERMINATION_LOCAL_SUCCEEDED = 622 "termination-succeeded-locally"; 623 /** 624 * Failed to get termination handler. 625 */ 626 public static final String TERMINATION_HANDLE_CREATION_FAILED = 627 "termination-handle-creation-failed"; 628 /** 629 * Failed in sending SOAP request to remote end. 630 */ 631 public static final String TERMINATION_SOAP_SEND_FAILED = 632 "termination-soap-send-failed"; 633 /** 634 * Invalid Federation Termination Service Return URL. 635 */ 636 public static final String TERMINATION_INVALID_REDIRECT_URL = 637 "termination-invalid-redirect-url"; 638 /** 639 * Federation Termination Successful 640 */ 641 public static final String TERMINATION_SUCCEEDED = 642 "federation-termination-successful"; 643 /** 644 * Signature verification of federation termination request failed. 645 */ 646 public static final String TERMINATION_INVALID_SIGNATURE = 647 "termination-invalid-signature"; 648 /** 649 * Failed to construct SOAP message from request object. 650 */ 651 public static final String TERMINATION_FAILED_SOAP_MESSAGE_CREATION = 652 "termination-failed-soap-creation"; 653 /** 654 * Failed to send termination message to remote provider. 655 */ 656 public static final String TERMINATION_FAILED_SEND_REMOTE = 657 "termination-failed-send-remote"; 658 /** 659 * Federation termination servlet 660 */ 661 public static final String TERMINATE_SERVLET = 662 "/federation-terminate"; 663 /** 664 * Name registration servlet 665 */ 666 public static final String REGISTRATION_SERVLET = 667 "/InitiateRegistration"; 668 /** 669 * Session cookie name 670 */ 671// public static String SESSION_COOKIE_NAME = 672 // "com.sun.identity.federation.sessioncookie"; 673 /** 674 * Circle of trust id 675 */ 676 // public static final String COT_INFO = 677 // "com.sun.identity.federation.services.cotid"; 678 /** 679 * Authentication login url 680 */ 681 // public static final String authURL = 682 // "com.sun.identity.federation.services.authLoginUrl"; 683 /** 684 * Termination profile 685 */ 686 // public static final String TERMINATION_PROFILE = 687 // "com.sun.identity.federation.services.termination.profile"; 688 /** 689 * Termination profile relay state 690 */ 691 public static String TERMINATION_RELAY_STATE = "RelayState"; 692 /** 693 * Logout relay state 694 */ 695 public static String LOGOUT_RELAY_STATE = "RelayState"; 696 /** 697 * Name registration indicator 698 */ 699 public static String NAMEREGIS_INDICATOR_PARAM = "nameregis"; 700 /** 701 * Question mark 702 */ 703 public static final char QUESTION_MARK = '?'; 704 /** 705 * Ampersand 706 */ 707 public static final char AMPERSAND = '&'; 708 /** 709 *Equal to 710 */ 711 public static final char EQUAL_TO = '='; 712 /** 713 * Role 714 */ 715 public static String ROLE = "ROLE"; 716 /** 717 * Response to 718 */ 719 public static String RESPONSE_TO = "responseTo"; 720 /** 721 * IDP Single logout via idp 722 */ 723 public static final String LOGOUT_IDP_SOAP_PROFILE = 724 "http://projectliberty.org/profiles/slo-idp-soap"; 725 /** 726 * IDP Single logout via http 727 */ 728 public static final String LOGOUT_IDP_REDIRECT_PROFILE = 729 "http://projectliberty.org/profiles/slo-idp-http"; 730 /** 731 * IDP Single logout via http get 732 */ 733 public static final String LOGOUT_IDP_GET_PROFILE = 734 "http://projectliberty.org/profiles/slo-idp-http-get"; 735 /** 736 * SP Single logout via soap 737 */ 738 public static final String LOGOUT_SP_SOAP_PROFILE = 739 "http://projectliberty.org/profiles/slo-sp-soap"; 740 /** 741 * SP Single logout via http 742 */ 743 public static final String LOGOUT_SP_REDIRECT_PROFILE = 744 "http://projectliberty.org/profiles/slo-sp-http"; 745 /** 746 * IDP Termination via http 747 */ 748 public static final String TERMINATION_IDP_HTTP_PROFILE = 749 "http://projectliberty.org/profiles/fedterm-idp-http"; 750 /** 751 * IDP Termination via soap 752 */ 753 public static final String TERMINATION_IDP_SOAP_PROFILE = 754 "http://projectliberty.org/profiles/fedterm-idp-soap"; 755 /** 756 * SP Termination via soap 757 */ 758 public static final String TERMINATION_SP_SOAP_PROFILE = 759 "http://projectliberty.org/profiles/fedterm-sp-soap"; 760 /** 761 * SP Termination via http 762 */ 763 public static final String TERMINATION_SP_HTTP_PROFILE = 764 "http://projectliberty.org/profiles/fedterm-sp-http"; 765 /** 766 * Name registration via soap 767 */ 768 public static final String NAME_REGISTRATION_PROFILE = 769 "http://projectliberty.org/profiles/rni-soap"; 770 771 /** 772 * URI for HTTP-Redirect-based Name Identifier Registration Profile 773 * initiated at Service Provider 774 */ 775 public static final String NAME_REGISTRATION_SP_HTTP_PROFILE = 776 "http://projectliberty.org/profiles/rni-sp-http"; 777 /** 778 * URI for SOAP/HTTP-based Name Identifier Registration Profile 779 * initiated at Service Provider 780 */ 781 public static final String NAME_REGISTRATION_SP_SOAP_PROFILE = 782 "http://projectliberty.org/profiles/rni-sp-soap"; 783 /** 784 * URI for HTTP-Redirect-based Name Identifier Registration Profile 785 * initiated at Identity Provider 786 */ 787 public static final String NAME_REGISTRATION_IDP_HTTP_PROFILE = 788 "http://projectliberty.org/profiles/rni-idp-http"; 789 790 /** 791 * URI for SOAP/HTTP-based Name Identifier Registration Profile 792 * initiated at Identity Provider 793 */ 794 public static final String NAME_REGISTRATION_IDP_SOAP_PROFILE = 795 "http://projectliberty.org/profiles/rni-idp-soap"; 796 797 798 /** 799 * FedCookie name 800 */ 801 public static final String FEDERATE_COOKIE_NAME = 802 "com.sun.identity.federation.fedCookieName"; 803 /** 804 * Quote 805 */ 806 public static final String QUOTE = "\""; 807 /** 808 * New line 809 */ 810 public static final String NL = "\n"; 811 /** 812 * Left angle 813 */ 814 public static final String LEFT_ANGLE = "<"; 815 /** 816 * Right angle 817 */ 818 public static final String RIGHT_ANGLE = ">"; 819 /** 820 * End element 821 */ 822 public static final String END_ELEMENT = "/>"; 823 /** 824 * Start end element 825 */ 826 public static final String START_END_ELEMENT = "</"; 827 /** 828 * Space 829 */ 830 public static final String SPACE = " "; 831 /** 832 * SAML tag 833 */ 834 public static final String SAML_LOG_NAME = "SAML"; 835 /** 836 * AuthenticationContext prefix 837 */ 838 public static final String AC_PREFIX = "AC:"; 839 /** 840 * lib prefix 841 */ 842 public static final String LIB_PREFIX = "lib:"; 843 /** 844 * Liberty namespace uri 845 */ 846 public static final String libertyMessageNamespaceURI = 847 "http://projectliberty.org/schemas/core/2002/12"; 848 /** 849 * Liberty name space 850 */ 851 public static final String LIB_NAMESPACE_STRING = 852 " xmlns:lib=\"http://projectliberty.org/schemas/core/2002/12\""; 853 /** 854 * AuthenticationContext name space 855 */ 856 public static final String AC_NAMESPACE_STRING = 857 " xmlns:ac=\"http://projectliberty.org/schemas/authctx/2002/05\""; 858 /** 859 * AuthenticationContext namespace uri 860 */ 861 public static final String AC_XML_NS = 862 "http://projectliberty.org/schemas/authctx/2002/05"; 863 /** 864 * SAML assertion name space 865 */ 866 public static final String assertionSAMLNameSpaceURI = 867 "urn:oasis:names:tc:SAML:1.0:assertion"; 868 /** 869 * SOAP envelope uri 870 */ 871 public static final String SOAP_URI = 872 "http://schemas.xmlsoap.org/soap/envelope/"; 873 /** 874 * SOAP prefix 875 */ 876 public static final String SOAP_ENV_PREFIX = "soap-env"; 877 /** 878 * SAML protocol namespace 879 */ 880 public static final String PROTOCOL_NAMESPACE_URI = 881 "urn:oasis:names:tc:SAML:1.0:protocol"; 882 /** 883 * XML Digital signature namespace 884 */ 885 public static final String DSSAMLNameSpace = 886 "xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\""; 887 /** 888 * XML schema namespace 889 */ 890 public static final String XSI_NAMESPACE_STRING = 891 "xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\""; 892 /** 893 * SAML assertion namespace 894 */ 895 public static final String assertionDeclareStr = 896 " xmlns:saml=\"urn:oasis:names:tc:SAML:1.0:assertion\""; 897 /** 898 * SAML protocol namespace 899 */ 900 public static final String PROTOCOL_NAMESPACE_STRING = 901 " xmlns:samlp=\"urn:oasis:names:tc:SAML:1.0:protocol\""; 902 /** 903 * SAML Actions namespace identifiers: 904 * Read/Write/Execute/Delete/Control 905 */ 906 public static final String ACTIONS_NAMESPACE = 907 "urn:oasis:names:tc:SAML:1.0:action:rwedc"; 908 /** 909 * SAML Actions namespace identifiers: 910 * Read/Write/Execute/Delete/Control with negation 911 */ 912 public static final String ACTIONS_NAMESPACE_NEGATION = 913 "urn:oasis:names:tc:SAML:1.0:action:rwedc-negation"; 914 /** 915 * SAML Actions namespace identifiers: 916 * Get/Head/Put/Post 917 */ 918 public static final String ACTIONS_NAMESPACE_GHPP = 919 "urn:oasis:names:tc:SAML:1.0:ghpp"; 920 /** 921 * SAML Actions namespace identifiers: 922 * Unix file permissions 923 */ 924 public static final String ACTIONS_NAMESPACE_UNIX = 925 "urn:oasis:names:tc:SAML:1.0:action:unix"; 926 /** 927 * SAML prefix 928 */ 929 public static final String ASSERTION_PREFIX = "saml:"; 930 /** 931 * SAML protocol prefix 932 */ 933 public static final String PROTOCOL_PREFIX = "samlp:"; 934 /** 935 * Assertion major version 936 */ 937 public static final int ASSERTION_MAJOR_VERSION = 1; 938 /** 939 * Assertion minor version 940 */ 941 public static final int ASSERTION_MINOR_VERSION = 0; 942 /** 943 * Protocol major version 944 */ 945 public static final int PROTOCOL_MAJOR_VERSION = 1; 946 /** 947 * Protocol minor version 948 */ 949 public static final int PROTOCOL_MINOR_VERSION = 0; 950 /** 951 * Default encoding 952 */ 953 public static final String DEFAULT_ENCODING = "UTF-8"; 954 /** 955 * Confirmation method: Artifact 956 */ 957 public static final String CONFIRMATION_METHOD_ARTIFACT = 958 "urn:oasis:names:tc:SAML:1.0:cm:artifact-01"; 959 /** 960 * Confirmation method 961 */ 962 public static final String CONFIRMATION_METHOD_DSAME = 963 "urn:sun.com:sunone:ims"; 964 /** 965 * Confirmation method: Bearer 966 */ 967 public static final String CONFIRMATION_METHOD_BEARER = 968 "urn:oasis:names:tc:SAML:1.0:cm:bearer"; 969 /** 970 * Default Artifact time out 971 */ 972 public static final int ARTIFACT_TIMEOUT_DEFAULT = 120; 973 /** 974 * Default Assertion time out 975 */ 976 public static final int ASSERTION_TIMEOUT_DEFAULT = 60; 977 /** 978 * Assertion timeout allowed difference 979 */ 980 public static final int ASSERTION_TIMEOUT_ALLOWED_DIFFERENCE = 60000; 981 /** 982 * Site id 983 */ 984 public static final String SITE_ID = "iplanet-am-saml-siteid"; 985 /** 986 * Default Artifact name 987 */ 988 public static final String ARTIFACT_NAME_DEFAULT = "SAMLart" ; 989 /** 990 * <code>RelayState</code> parameter 991 */ 992 public static final String LRURL = "RelayState"; 993 /** 994 * Length of an identifier 995 */ 996 public static final int ID_LENGTH = 20; 997 /** 998 * XML Digital Signing algorithm 999 */ 1000 public static final String ALGO_ID_SIGNATURE_DSA = 1001 "http://www.w3.org/2000/09/xmldsig#dsa-sha1"; 1002 /** 1003 * XML Digital Signing algorithm 1004 */ 1005 public static final String ALGO_ID_SIGNATURE_RSA = 1006 "http://www.w3.org/2000/09/xmldsig#rsa-sha1"; 1007 /** 1008 * XML Digital Signing constant 1009 */ 1010 public static final String DEF_SIG_ALGO = 1011 "http://www.w3.org/2000/09/xmldsig#dsa-sha1"; 1012 /** 1013 * XML Digital Signing constant 1014 */ 1015 public static final String DEF_SIG_ALGO_JCA = 1016 "SHA1withRSA"; 1017 /** 1018 * XML Digital Signing constant 1019 */ 1020 public static final String ALGO_ID_SIGNATURE_DSA_JCA = 1021 "SHA1withDSA"; 1022 /** 1023 * XML Digital Signing constant 1024 */ 1025 public static final String ALGO_ID_SIGNATURE_RSA_JCA = 1026 "SHA1withRSA"; 1027 /** 1028 * XML Digital Signing: DSA key 1029 */ 1030 public static final String KEY_ALG_DSA = "DSA"; 1031 /** 1032 * XML Digital Signing: RSA key 1033 */ 1034 public static final String KEY_ALG_RSA = "RSA"; 1035 /** 1036 * Liberty namespace uri 1037 */ 1038 public static final String LIB_NAMESPACE_URI = 1039 "http://projectliberty.org/schemas/core/2002/12"; 1040 /** 1041 * Liberty browser artifact profile 1042 */ 1043 public static final String SSO_PROF_BROWSER_ART = 1044 "http://projectliberty.org/profiles/brws-art"; 1045 /** 1046 * Liberty browser post profile 1047 */ 1048 public static final String SSO_PROF_BROWSER_POST = 1049 "http://projectliberty.org/profiles/brws-post"; 1050 /** 1051 * Liberty WML post profile 1052 */ 1053 public static final String SSO_PROF_WML_POST = 1054 "http://projectliberty.org/profiles/wml-post"; 1055 /** 1056 * Liberty LECP profile 1057 */ 1058 public static final String SSO_PROF_LECP = 1059 "http://projectliberty.org/profiles/lecp"; 1060 /** 1061 * Local opaque handler 1062 */ 1063 public static final int LOCAL_OPAQUE_HANDLE = 0; 1064 /** 1065 * Remote opaque handler 1066 */ 1067 public static final int REMOTE_OPAQUE_HANDLE = 1; 1068 /** 1069 * Meta Alias 1070 */ 1071 public static final String META_ALIAS = "metaAlias"; 1072 /** 1073 * Goto parameter 1074 */ 1075 public static final String GOTO_URL_PARAM = "goto"; 1076 /** 1077 * Session host provider attribute 1078 */ 1079 public static final String SESSION_HOST_PROVIDER_ATTR = "hostid"; 1080 /** 1081 * AuthnContext 1082 */ 1083 public static final String AUTHN_CONTEXT = "AuthnContext"; 1084 /** 1085 * Artifact length 1086 */ 1087 public static final int ART_ID_LENGTH = 20; 1088 /** 1089 * Sourceid encoding 1090 */ 1091 public static final String SOURCEID_ENCODING = "ISO-8859-1"; 1092 1093 /** 1094 * Max session time 1095 */ 1096 public static final int MAX_SESSION_TIME = 12000; 1097 /** 1098 * Max ide time 1099 */ 1100 public static final int MAX_IDLE_TIME = 3000; 1101 /** 1102 * Max caching time 1103 */ 1104 public static final int MAX_CACHING_TIME = 500; 1105 /** 1106 * Max session time key 1107 */ 1108 public static final String MAX_SESSION_TIME_KEY = "SESSION_TIME"; 1109 /** 1110 * Max idle time key 1111 */ 1112 public static final String MAX_IDLE_TIME_KEY = "IDLE_TIME"; 1113 /** 1114 * Max caching time key 1115 */ 1116 public static final String MAX_CACHING_TIME_KEY = "CACHING_TIME"; 1117 /** 1118 * Error code for Missing Authentication Context in entity metadata. 1119 */ 1120 public static final String META_MISSING_AUTH_CONTEXT = 1121 "meta_missing_auth_context"; 1122 1123 /** 1124 * Error code for Invalid value for Priority in entity metadata. 1125 */ 1126 public static final String META_INVALID_LEVEL = 1127 "meta_invalid_level"; 1128 /** 1129 * Error code for Contact person type 1130 */ 1131 public static final String TECHNICAL = "technical"; 1132 /** 1133 * Error code for Contact person type 1134 */ 1135 public static final String ADMINISTRATIVE = "administrative"; 1136 /** 1137 * Error code for Contact person type 1138 */ 1139 public static final String BILLING = "billing"; 1140 /** 1141 * Error code for Contact person type 1142 */ 1143 public static final String OTHER = "other"; 1144 /** 1145 * Specified logout profile is not supported. 1146 */ 1147 public static final String LOGOUT_PROFILE_NOT_SUPPORTED = 1148 "logout-profile-not-supported"; 1149 /** 1150 * No provider is specified in name registration. 1151 */ 1152 public static final String REGISTRATION_NO_PROVIDER = 1153 "registration-no-provider"; 1154 /** 1155 * Invalid Provider in Registration. 1156 */ 1157 public static final String REGISTRATION_INVALID_PROVIDER = 1158 "registration-invalid-provider"; 1159 /** 1160 * Invalid Signature for Registration. 1161 */ 1162 public static final String REGISTRATION_INVALID_SIGNATURE= 1163 "registration-invalid-signature"; 1164 /** 1165 * Registration failed. 1166 */ 1167 public static final String REGISTRATION_FAILED = 1168 "registration-failed"; 1169 /** 1170 * Improper Registration Request 1171 */ 1172 public static final String REGISTRATION_REQUEST_IMPROPER = 1173 "registration-request-improper"; 1174 /** 1175 * Console service 1176 */ 1177 public static final String CONSOLE_SERVICE = 1178 "iPlanetAMAdminConsoleService"; 1179 /** 1180 * Console service version 1181 */ 1182 public static final String CONSOLE_SERVICE_VERSION = 1183 "1.0"; 1184 /** 1185 * Liberty enabled console 1186 */ 1187 public static final String LIBERTY_ENABLED_KEY = 1188 "iplanet-am-admin-console-liberty-enabled"; 1189 /** 1190 * Local configuration is invalid. 1191 */ 1192 public static final String LOCALCONFIG_INVALID = "localconfig_invalid"; 1193 /** 1194 * Invalid circle of trust list 1195 */ 1196 public static final String COTLIST_INVALID = 1197 "cotlist_invalid"; 1198 /** 1199 * <code>AuthnRequest</code> RequestID attribute 1200 */ 1201 public static final String AUTH_REQUEST_ID = "RequestID"; 1202 /** 1203 * <code>arg</code> key 1204 */ 1205 public static final String ARGKEY = "arg"; 1206 /** 1207 * New Session 1208 */ 1209 public static final String NEWSESSION = "newsession"; 1210 /** 1211 * Post-login page 1212 */ 1213 public static final String POST_LOGIN_PAGE = "/postLogin"; 1214 /** 1215 * Pre-login page 1216 */ 1217 public static final String PRE_LOGIN_PAGE = "/preLogin"; 1218 /** 1219 * Federate keyword 1220 */ 1221 public static final String FEDERATEKEY = "federate"; 1222 /** 1223 * Default value of the <code>federate</code> 1224 */ 1225 public static final String FEDERATEVALUE = "false"; 1226 /** 1227 * sso keyword 1228 */ 1229 public static final String SSOKEY = "sso"; 1230 /** 1231 * Default value of the <code>sso</code> 1232 */ 1233 public static final String SSOVALUE = "true"; 1234 /** 1235 * cotkey keyword 1236 */ 1237 public static final String COTKEY = "cotkey"; 1238 /** 1239 * Chosen provider 1240 */ 1241 public static final String SELECTEDPROVIDER = "selectedprovider"; 1242 /** 1243 * goto parameter 1244 */ 1245 public static final String GOTOKEY = "goto"; 1246 /** 1247 * org parameter 1248 */ 1249 public static final String ORGKEY = "org"; 1250 /** 1251 * authlevel parameter 1252 */ 1253 public static final String AUTH_LEVEL_KEY = "authlevel"; 1254 /** 1255 * AuthContext Comparison type 1256 */ 1257 public static final String MINIMUM = "minimum"; 1258 /** 1259 * AuthContext Comparison type 1260 */ 1261 public static final String EXACT = "exact"; 1262 /** 1263 * AuthContext Comparison type 1264 */ 1265 public static final String BETTER = "better"; 1266 /** 1267 * AuthContext Comparison type 1268 */ 1269 public static final String MAXIMUM = "maximum"; 1270 /** 1271 * Parameter used in introduction profile 1272 */ 1273 public static final String PROVIDER_ID_KEY = "_liberty_idp" ; 1274 /** 1275 * Parameter used to pass realm value. 1276 */ 1277 public static final String REALM = "realm"; 1278 /** 1279 * Intersite transfer URL 1280 */ 1281 public static final String INTERSITE_URL = "IntersiteTransferService"; 1282 /** 1283 * Part of the login URL 1284 */ 1285 public static final String LOGIN_PAGE = "/UI/Login"; 1286 /** 1287 * Useraction value: Cancel 1288 */ 1289 public static final String CANCEL = "cancel"; 1290 /** 1291 * <code>action</code> parameter in the request object 1292 */ 1293 public static final String USERACTION = "action"; 1294 /** 1295 * Consent handler 1296 */ 1297 public static final String CONSENT_HANDLER = "consentHandler"; 1298 /** 1299 * Federation handler 1300 */ 1301 public static final String FEDERATION_HANDLER = "federation"; 1302 /** 1303 * Key used to search for header info in a map 1304 */ 1305 public static final String HEADER_KEY = "headerKey"; 1306 /** 1307 * Key used to search for URL info in a map 1308 */ 1309 public static final String URL_KEY = "urlKey"; 1310 /** 1311 * Key used to search for response info in a map 1312 */ 1313 public static final String RESPONSE_DATA_KEY = "responseData"; 1314 /** 1315 * Hosted provider 1316 */ 1317 public static final String PROVIDER_HOSTED = "hosted"; 1318 /** 1319 * Remote provider 1320 */ 1321 public static final String PROVIDER_REMOTE = "remote"; 1322 /** 1323 * Entity descriptor 1324 */ 1325 public static final String ENTITY_DESCRIPTOR = "entitydescriptor"; 1326 /** 1327 * Local AuthType 1328 */ 1329 public static final String AUTH_LOCAL = "local"; 1330 /** 1331 * Remote AuthType 1332 */ 1333 public static final String AUTH_REMOTE = "remote"; 1334 /** 1335 * Home page file name 1336 */ 1337 public static final String HOMEPAGE_URL_VALUE ="/index.html"; 1338 /** 1339 * Common login page file name 1340 */ 1341 public static final String COMMON_LOGIN_PAGE_URL_VALUE ="/CommonLogin.jsp"; 1342 /** 1343 * JSP file location 1344 */ 1345 public static final String JSP_LOCATION = "/config/federation/default"; 1346 /** 1347 * SOAP endpoint value 1348 */ 1349 public static final String SOAP_END_POINT_VALUE = "/SOAPReceiver"; 1350 /** 1351 * Single logout endpoint value 1352 */ 1353 public static final String SLO_VALUE = "/ProcessLogout"; 1354 /** 1355 * Single logout return endpoint value 1356 */ 1357 public static final String SLO_RETURN_VALUE = "/ReturnLogout"; 1358 /** 1359 * Federation termination endpoint value 1360 */ 1361 public static final String TERM_VALUE = "/ProcessTermination"; 1362 /** 1363 * Federation termination return endpoint value 1364 */ 1365 public static final String TERM_RETURN_VALUE = "/ReturnTermination"; 1366 /** 1367 * Assertion consumer service endpoint value 1368 */ 1369 public static final String ASSERTION_CONSUMER_VALUE = 1370 "/AssertionConsumerService"; 1371 /** 1372 * Single signon endpoint value 1373 */ 1374 public static final String SSO_VALUE = "/SingleSignOnService"; 1375 /** 1376 * Configuration root directory 1377 */ 1378 public static final String CONFIG_ROOT = "/config/federation"; 1379 /** 1380 * Resource lookup related variables. 1381 */ 1382 public static final String CONFIG_DIR = "config"; 1383 public static final String FEDERATION_DIR = "federation"; 1384 public static final String DEFAULT_DIR = "default"; 1385 1386 /** 1387 * AuthenticatonStatement prefix 1388 */ 1389 public static final String RESPOND_WITH = 1390 "lib:AuthenticationStatement"; 1391 /** 1392 * Federation jsp name 1393 */ 1394 public static final String DOFEDERATE_PAGE_NAME = 1395 "Federate.jsp"; 1396 /** 1397 * Logout completed jsp name 1398 */ 1399 public static final String LOGOUTDONE_PAGE_NAME = 1400 "LogoutDone.jsp"; 1401 /** 1402 * Federation completed jsp name 1403 */ 1404 public static final String FEDERATIONDONE_PAGE_NAME = 1405 "FederationDone.jsp"; 1406 /** 1407 * Error page 1408 */ 1409 public static final String ERROR_PAGE_NAME = "Error.jsp"; 1410 /** 1411 * List of circle of trust page 1412 */ 1413 public static final String LISTOFCOTS_PAGE_NAME = "ListOfCOTs.jsp"; 1414 /** 1415 * Federation termination done jsp name 1416 */ 1417 public static final String TERMINATION_DONE_PAGE_NAME = 1418 "TerminationDone.jsp"; 1419 /** 1420 * Name registration done jsp name 1421 */ 1422 public static final String NAME_REGISTRATION_DONE_PAGE_NAME = 1423 "NameRegistrationDone.jsp"; 1424 /** 1425 * Common login jsp name 1426 */ 1427 public static final String COMMON_LOGIN_PAGE_NAME = 1428 "CommonLogin.jsp"; 1429 /** 1430 * Termination status 1431 */ 1432 public static final String TERMINATION_STATUS ="termStatus"; 1433 /** 1434 * Termination status : Sucess 1435 */ 1436 public static final String TERMINATION_SUCCESS ="termSuccess"; 1437 /** 1438 * Termination status : Failure 1439 */ 1440 public static final String TERMINATION_FAILURE ="termFailure"; 1441 /** 1442 * Provider id key is usd in Termination. 1443 */ 1444 public static final String TERMINATION_PROVIDER_ID = 1445 "_liberty_id"; 1446 /** 1447 * Failed to get hosted descriptor 1448 */ 1449 public static final String FAILED_HOSTED_DESCRIPTOR = 1450 "failed-reading-hosted-descriptor"; 1451 /** 1452 * Logout status 1453 */ 1454 public static final String LOGOUT_STATUS="logoutStatus"; 1455 /** 1456 * Logout status: Success 1457 */ 1458 public static final String LOGOUT_SUCCESS="logoutSuccess"; 1459 /** 1460 * Logout status: Failure 1461 */ 1462 public static final String LOGOUT_FAILURE="logoutFailure"; 1463 /** 1464 * Logout status: No Session 1465 */ 1466 public static final String LOGOUT_NO_SESSION="noSession"; 1467 /** 1468 * boolean: <code>true</code> 1469 */ 1470 public static final String TRUE = "true"; 1471 /** 1472 * boolean: <code>false</code> 1473 */ 1474 public static final String FALSE = "false"; 1475 /** 1476 * Optional attribute 1477 */ 1478 public static final String OPTIONAL = "optional"; 1479 /** 1480 * Provider id key is used in name registration. 1481 */ 1482 public static final String REGISTRATION_PROVIDER_ID="_liberty_id"; 1483 /** 1484 * Failed to create name registration handlde 1485 */ 1486 public static final String REGISTRATION_HANDLE_CREATION_FAILED = 1487 "registration-handle-creation-failed"; 1488 /** 1489 * Registration status 1490 */ 1491 public static final String REGISTRATION_STATUS="regisStatus"; 1492 /** 1493 * Registration status : Success 1494 */ 1495 public static final String REGISTRATION_SUCCESS="regisSuccess"; 1496 /** 1497 * Registration status : Failure 1498 */ 1499 public static final String REGISTRATION_FAILURE="regisFailure"; 1500 /** 1501 * Relay state 1502 */ 1503 public static String REGISTRATION_RELAY_STATE = "RELAYSTATE"; 1504 /** 1505 * Name Registration profile 1506 */ 1507 public static final String REGISTRATION_IDP_HTTP_PROFILE = 1508 "http://projectliberty.org/profiles/rni-idp-http"; 1509 /** 1510 * Name Registration profile 1511 */ 1512 public static final String REGISTRATION_IDP_SOAP_PROFILE = 1513 "http://projectliberty.org/profiles/rni-idp-soap"; 1514 /** 1515 * Name Registration profile 1516 */ 1517 public static final String REGISTRATION_SP_SOAP_PROFILE = 1518 "http://projectliberty.org/profiles/rni-sp-soap"; 1519 /** 1520 * Name Registration profile 1521 */ 1522 public static final String REGISTRATION_SP_HTTP_PROFILE = 1523 "http://projectliberty.org/profiles/rni-sp-http"; 1524 /** 1525 * Single signon service 1526 */ 1527 public static final String SSO_URL = "/SingleSignOnService"; 1528 /** 1529 * Process registration uri 1530 */ 1531 public static final String REGISTRATION_VALUE = "/ProcessRegistration"; 1532 /** 1533 * Registration return uri 1534 */ 1535 public static final String REGISTRATION_RETURN_VALUE = 1536 "returnRegistration"; 1537 /** 1538 * Do name registration after federation 1539 */ 1540 public static final String REGIS_FEDERATION = "AfterFederation"; 1541 /** 1542 * Do name registration during single signon process 1543 */ 1544 public static final String REGIS_SSO = "DuringSSO"; 1545 /** 1546 * Do name registration on demand 1547 */ 1548 public static final String REGIS_LINK = "STAND_ALONE"; 1549 /** 1550 * Signature Id used in termination profile 1551 */ 1552 public static final String TERMINATIONID = "term-Sig-ID"; 1553 /** 1554 * Signature Id used in name registration profile 1555 */ 1556 public static final String REGISTRATIONID = "reg-Sig-ID"; 1557 /** 1558 * Signature Id used in logout profile 1559 */ 1560 public static final String LOGOUTID = "logout-sig-ID"; 1561 /** 1562 * LECP request header 1563 */ 1564 public static final String LECP_CONTENT_TYPE_HEADER = 1565 "application/vnd.liberty-request+xml"; 1566 /** 1567 * LECP response header 1568 */ 1569 public static final String LECP_RESP_CONTENT_TYPE_HEADER = 1570 "application/vnd.liberty-response+xml"; 1571 /** 1572 * LECP indicator parameter 1573 */ 1574 public static final String LECP_INDICATOR_PARAM = "LECP"; 1575 /** 1576 * LECP indicator parameter's default value 1577 */ 1578 public static final String LECP_INDICATOR_VALUE = "TRUE"; 1579 /** 1580 * Goto this URL if no federation cookie presents. 1581 */ 1582 public static final String GOTO_ON_FEDCOOKIE_NO_URL = "gotoOnFedCookieNo"; 1583 /** 1584 * <code>isPassive</code> 1585 */ 1586 public static final String IS_PASSIVE_QUERY = "isPassive"; 1587 /** 1588 * Take action if no federation cookie presents. 1589 */ 1590 public static final String ACTION_ON_NO_FED_COOKIE = "actionOnNoFedCookie"; 1591 1592 /** 1593 * Boot strapping 1594 */ 1595 public static final String DISCO_RESOURCE_OFFERING_NAME = 1596 "DiscoveryResourceOffering"; 1597 /** 1598 * Termination notification profile 1599 */ 1600 public static final String TERMINATION_NOTIFICATION_PROFILE = 1601 "http://projectliberty.org/profiles/rel-term-soap"; 1602 /** 1603 * IDFF1.2 Name space 1604 */ 1605 public static final String LIB_12_NAMESPACE_STRING = 1606 " xmlns:lib=\"urn:liberty:iff:2003-08\""; 1607 /** 1608 * Authentication context Name space 1609 */ 1610 public static final String AC_12_NAMESPACE_STRING= 1611 " xmlns:ac=\"urn:liberty:ac:2003-08\""; 1612 /** 1613 * IDFF1.2 Name space 1614 */ 1615 public static final String FF_12_XML_NS="urn:liberty:iff:2003-08"; 1616 /** 1617 * Authentication context Name space urn 1618 */ 1619 public static final String AC_12_XML_NS="urn:liberty:ac:2003-08"; 1620 /** 1621 * IDFF 1.2 saml protocol minor version 1622 */ 1623 public static final int FF_12_SAML_PROTOCOL_MINOR_VERSION = 1; 1624 /** 1625 * IDFF 1.1 saml protocol minor version 1626 */ 1627 public static final int FF_11_SAML_PROTOCOL_MINOR_VERSION = 0; 1628 /** 1629 * IDFF 1.2 saml assertion minor version (POST profile) 1630 */ 1631 public static final int FF_12_POST_ASSERTION_MINOR_VERSION = 2; 1632 /** 1633 * IDFF 1.2 saml assertion minor version (Artifact profile) 1634 */ 1635 public static final int FF_12_ART_ASSERTION_MINOR_VERSION = 2; 1636 /** 1637 * IDFF 1.1 saml assertion minor version (Artifact profile) 1638 */ 1639 public static final int FF_11_ASSERTION_MINOR_VERSION = 0; 1640 /** 1641 * IDFF 1.2 saml protocol minor version 1642 */ 1643 public static final int FF_12_PROTOCOL_MINOR_VERSION = 2; 1644 /** 1645 * IDFF 1.1 saml protocol minor version 1646 */ 1647 public static final int FF_11_PROTOCOL_MINOR_VERSION = 0; 1648 /** 1649 * Name Identifier format URI 1650 */ 1651 public static final String NI_FEDERATED_FORMAT_URI = 1652 "urn:liberty:iff:nameid:federated"; 1653 /** 1654 * Name Identifier format URI 1655 */ 1656 public static final String NI_ONETIME_FORMAT_URI = 1657 "urn:liberty:iff:nameid:one-time"; 1658 /** 1659 * Name Identifier format URI 1660 */ 1661 public static final String NI_ENCRYPTED_FORMAT_URI = 1662 "urn:liberty:iff:nameid:encrypted"; 1663 /** 1664 * Discovery Resource Offering 1665 */ 1666 public static final String DISCOVERY_RESOURCE_OFFERING = 1667 "DiscoveryResourceOffering"; 1668 /** 1669 * Assertion ID 1670 */ 1671 public static final String ASSERTION_ID="AssertionID"; 1672 /** 1673 * Request ID 1674 */ 1675 public static final String REQUEST_ID="RequestID"; 1676 /** 1677 * Response ID 1678 */ 1679 public static final String RESPONSE_ID="ResponseID"; 1680 /** 1681 * ID 1682 */ 1683 public static final String ID="id"; 1684 1685 /** 1686 * NameIDPolicy Element name 1687 */ 1688 public static final String NAMEID_POLICY_ELEMENT="NameIDPolicy"; 1689 1690 /** 1691 * NameIDPolicy configuration attribute name 1692 */ 1693 public static final String NAMEID_POLICY="nameIDPolicy"; 1694 1695 /** 1696 * Key is used for signing. 1697 */ 1698 public static final String KEYTYPE_SIGNING="signing"; 1699 /** 1700 * Key is used for encryption. 1701 */ 1702 public static final String KEYTYPE_ENCRYPTION="encryption"; 1703 /** 1704 * <code>NameIDPolicy</code> value type 1705 */ 1706 public static final String NAME_ID_POLICY_NONE = "none"; 1707 /** 1708 * <code>NameIDPolicy</code> value type 1709 */ 1710 public static final String NAME_ID_POLICY_ONETIME = "onetime"; 1711 /** 1712 * <code>NameIDPolicy</code> value type 1713 */ 1714 public static final String NAME_ID_POLICY_FEDERATED = "federated"; 1715 /** 1716 * <code>NameIDPolicy</code> value type 1717 */ 1718 public static final String NAME_ID_POLICY_ANY = "any"; 1719 /** 1720 * Idp finder URL 1721 */ 1722 public static final String IDP_FINDER_URL ="/idpfinder"; 1723 /** 1724 * XPATH for Assertion Artifact 1725 */ 1726 public static final String ARTIFACT_XPATH = 1727 "/Envelope/Body/Request/AssertionArtifact"; 1728 /** 1729 * Affiliation id for Affiliation descriptor 1730 */ 1731 public static final String AFFILIATED = "Affiliated"; 1732 /** 1733 * Auth Federation attribute 1734 */ 1735 public static final String AUTO_FED_ATTR = "AutoFederateAttribute"; 1736 /** 1737 * Provider id separator 1738 */ 1739 public static final String PROVIDER_ID_SEPARATOR = "|"; 1740 /** 1741 * SP provider suffix 1742 */ 1743 public static final String SP_PROVIDER_SFX = 1744 PROVIDER_ID_SEPARATOR + "SP"; 1745 /** 1746 * IDP provider suffix 1747 */ 1748 public static final String IDP_PROVIDER_SFX = 1749 PROVIDER_ID_SEPARATOR + "IDP"; 1750 /** 1751 * Used in local configuration descriptor to track the version 1752 */ 1753 public static final int PROVIDER_CONFIG_70_VERSION = 30; 1754 /** 1755 * Used in local configuration descriptor to track the version 1756 */ 1757 public static final int PROVIDER_CONFIG_71_VERSION = 40; 1758 /** 1759 * Anonymous Onetime federation 1760 */ 1761 public static final String ANONYMOUS_ONETIME = "anonymousOnetime"; 1762 /** 1763 * Parameter for status code. Used in FederationSPAdapter. 1764 */ 1765 public static final String STATUS_CODE = "StatusCode"; 1766 /** 1767 * Parameter for failure code. Used in FederationSPAdapter. 1768 */ 1769 public static final String FAILURE_CODE = "FailureCode"; 1770 1771 /** 1772 * Used by <code>FSUserProvider</code> to pass in termination request 1773 * through env map. 1774 */ 1775 public static final String FS_USER_PROVIDER_ENV_TERMINATION_KEY = 1776 "FSFederationTerminationNotification"; 1777 /** 1778 * Used by <code>FSUserProvider</code> to pass in authn response 1779 * through env map. 1780 */ 1781 public static final String FS_USER_PROVIDER_ENV_AUTHNRESPONSE_KEY = 1782 "FSAuthnResponse"; 1783 /** 1784 * Used by <code>FSUserProvider</code> to pass in logout request 1785 * through env map. 1786 */ 1787 public static final String FS_USER_PROVIDER_ENV_LOGOUT_KEY = 1788 "FSLogoutNotification"; 1789 /** 1790 * Used by <code>FSUserProvider</code> to pass in registration request 1791 * through env map. 1792 */ 1793 public static final String FS_USER_PROVIDER_ENV_REGISTRATION_KEY = 1794 "FSNameRegistrationRequest"; 1795 /** 1796 * Used by <code>FSUserProvider</code> to pass in saml response 1797 * through env map. 1798 */ 1799 public static final String FS_USER_PROVIDER_ENV_FSRESPONSE_KEY = 1800 "FSResponse"; 1801 /** 1802 * Used by <code>FSUserProvider</code> to pass in name ID mapping request 1803 * through env map. 1804 */ 1805 public static final String FS_USER_PROVIDER_ENV_NAMEMAPPING_KEY = 1806 "FSNameIdentifierMappingRequest"; 1807 1808 /** 1809 * Default <code>FSUserProvider</code> implemeation class. 1810 */ 1811 public static final String FS_USER_PROVIDER_DEFAULT = 1812 "com.sun.identity.federation.accountmgmt.DefaultFSUserProvider"; 1813 /** 1814 * ID-FF component name used in obtaining provider. 1815 */ 1816 public static final String IDFF = "IDFF"; 1817 1818 /** 1819 * Key name for the federation attribute mapper. 1820 */ 1821 public static final String FS_ATTRIBUTE_MAPPER = 1822 "com.sun.identity.liberty.fed.attributemapper"; 1823 1824 /** 1825 * Key name for the webservices security attribute mapper. 1826 */ 1827 public static final String WS_ATTRIBUTE_PLUGIN = 1828 "com.sun.identity.liberty.ws.attributeplugin"; 1829 1830 /** 1831 * Assertion 1832 */ 1833 public static final String ASSERTION = "Assertion"; 1834 1835 /** 1836 * Major Version 1837 */ 1838 public static final String MAJOR_VERSION="MajorVersion"; 1839 1840 /** 1841 * Minor Version 1842 */ 1843 public static final String MINOR_VERSION="MinorVersion"; 1844 1845 /** 1846 * Issuer 1847 */ 1848 public static final String ISSUER="Issuer"; 1849 1850 /** 1851 * InResponseTo 1852 */ 1853 public static final String IN_RESPONSE_TO="InResponseTo"; 1854 1855 /** 1856 * IssueInstant 1857 */ 1858 public static final String ISSUE_INSTANT="IssueInstant"; 1859 1860 /** 1861 * Conditions 1862 */ 1863 public static final String CONDITIONS="Conditions"; 1864 1865 /** 1866 * Advice 1867 */ 1868 public static final String ADVICE="Advice"; 1869 1870 /** 1871 * AuthenticationStatement 1872 */ 1873 public static final String AUTHENTICATIONSTATEMENT 1874 = "AuthenticationStatement"; 1875 /** 1876 * AuthorizationDecisionStatement 1877 */ 1878 public static final String AUTHZDECISIONSTATEMENT = 1879 "AuthorizationDecisionStatement"; 1880 1881 /** 1882 * AttributeStatement 1883 */ 1884 public static final String ATTRIBUTESTATEMENT = "AttributeStatement"; 1885 1886 /** 1887 * Signature 1888 */ 1889 public static final String SIGNATURE = "Signature"; 1890 1891 /** 1892 * AssertionType 1893 */ 1894 public static final String ASSERTION_TYPE = "AssertionType"; 1895 1896 /** 1897 * xsi type 1898 */ 1899 public static final String XSI_TYPE = "xsi:type"; 1900 1901 /** 1902 * Authentication Method 1903 */ 1904 public static final String AUTHENTICATION_METHOD="AuthenticationMethod"; 1905 1906 /** 1907 * Authentication Instant 1908 */ 1909 public static final String AUTHENTICATION_INSTANT="AuthenticationInstant"; 1910 1911 /** 1912 * Authority Binding 1913 */ 1914 public static final String AUTHORITY_BINDING= "AuthorityBinding"; 1915 1916 /** 1917 * SubjectLocality 1918 */ 1919 public static final String SUBJECT_LOCALITY="SubjectLocality"; 1920 1921 1922 /** 1923 * ReauthenticationOnOrAfter 1924 */ 1925 public static final String REAUTH_ON_OR_AFTER="ReauthenticateOnOrAfter"; 1926 1927 /** 1928 * Authentication Subject 1929 */ 1930 public static final String AUTH_SUBJECT="Subject"; 1931 1932 /** 1933 * Authentication Statement Type 1934 */ 1935 public static final String AUTHENTICATIONSTATEMENT_TYPE 1936 = "AuthenticationStatementType"; 1937 1938 /** 1939 * Authentication Request 1940 */ 1941 public static final String AUTHN_REQUEST="AuthnRequest"; 1942 1943 /** 1944 * RespondWith 1945 */ 1946 public static final String RESPONDWITH="RespondWith"; 1947 1948 /** 1949 * Consent 1950 */ 1951 public static final String CONSENT="consent"; 1952 1953 /** 1954 * Provider Identifier 1955 */ 1956 public static final String PROVIDER_ID="ProviderID"; 1957 1958 /** 1959 * Federate 1960 */ 1961 public static final String FEDERATE ="Federate"; 1962 1963 /** 1964 * Major Version Value 1965 */ 1966 1967 public static final String ONE ="1"; 1968 1969 /** 1970 * ProtocolProfile 1971 */ 1972 public static final String PROTOCOL_PROFILE="ProtocolProfile"; 1973 1974 /** 1975 * Requested AuthnContext 1976 */ 1977 1978 public static final String REQUEST_AUTHN_CONTEXT="RequestAuthnContext"; 1979 1980 /** 1981 * Affliation Identifier 1982 */ 1983 public static final String AFFILIATIONID = "AffiliationID"; 1984 1985 /** 1986 * Extension 1987 */ 1988 public static final String EXTENSION = "Extension"; 1989 1990 /** 1991 * Scoping 1992 */ 1993 public static final String SCOPING = "Scoping"; 1994 1995 /** 1996 * Assertion Consumer Service Identifier 1997 */ 1998 public static final String ASSERTION_CONSUMER_SVC_ID= 1999 "AssertionConsumerServiceID"; 2000 2001 /** 2002 * Authenticaion Context Comparison 2003 */ 2004 public static final String AUTHN_CONTEXT_COMPARISON= 2005 "AuthnContextComparison"; 2006 2007 /** 2008 * RelayState 2009 */ 2010 public static final String RELAY_STATE ="RelayState"; 2011 2012 /** 2013 * NameIdentifier Mapping Request 2014 */ 2015 public static final String NAMEID_MAPPING_REQUEST = 2016 "NameIdentifierMappingRequest"; 2017 2018 /** 2019 * NameIdentifier Mapping Response 2020 */ 2021 public static final String NAMEID_MAPPING_RESPONSE = 2022 "NameIdentifierMappingResponse"; 2023 2024 /** 2025 * Target Name Space 2026 */ 2027 public static final String TARGET_NAME_SPACE="TargetNamespace"; 2028 2029 /** 2030 * XML Prefix String 2031 */ 2032 public static final String XML_PREFIX="<?xml version=\"1.0\" encoding=\""; 2033 2034 /** 2035 * Name Identifier 2036 */ 2037 public static final String NAME_IDENTIFIER="NameIdentifier"; 2038 2039 /** 2040 * Federation Termination Notification 2041 */ 2042 public static final String FEDERATION_TERMINATION_NOTICFICATION = 2043 "FederationTerminationNotification"; 2044 2045 /** 2046 * Name 2047 */ 2048 public static final String NAME = "Name"; 2049 2050 /** 2051 * Name Qualifier 2052 */ 2053 2054 public static final String NAME_QUALIFIER = "NameQualifier"; 2055 2056 /** 2057 * NameFormat 2058 */ 2059 public static final String NAME_FORMAT = "NameFormat"; 2060 2061 /** 2062 * GetComplete 2063 */ 2064 public static final String GET_COMPLETE = "GetComplete"; 2065 2066 /** 2067 * IDP Entries 2068 */ 2069 public static final String IDP_ENTRIES = "IDPEntries"; 2070 2071 /** 2072 * LogoutRequest 2073 */ 2074 public static final String LOGOUT_REQUEST = "LogoutRequest"; 2075 2076 /** 2077 * LogoutResponse 2078 */ 2079 2080 public static final String LOGOUT_RESPONSE = "LogoutResponse"; 2081 2082 /** 2083 * NotOnOrAfter 2084 */ 2085 public static final String NOT_ON_OR_AFTER = "NotOnOrAfter"; 2086 2087 /** 2088 * Value 2089 */ 2090 public static final String VALUE = "Value"; 2091 2092 /** 2093 * IDPList 2094 */ 2095 public static final String IDP_LIST="IDPList"; 2096 2097 /** 2098 * Authentication Request Envelope 2099 */ 2100 public static final String AUTHN_REQUEST_ENVELOPE="AuthnRequestEnvelope"; 2101 2102 /** 2103 * Assertion Consumer Service URL 2104 */ 2105 public static final String ASSERTION_CONSUMER_SERVICE_URL= 2106 "AssertionConsumerServiceURL"; 2107 2108 /** 2109 * Authentication Response 2110 */ 2111 public static final String AUTHN_RESPONSE="AuthnResponse"; 2112 2113 /** 2114 * Authentication Response Envelope 2115 */ 2116 public static final String AUTHN_RESPONSE_ENVELOPE 2117 ="AuthnResponseEnvelope"; 2118 2119 /** 2120 * Recipient 2121 */ 2122 public static final String RECIPIENT = "Recipient"; 2123 2124 /** 2125 * Status 2126 */ 2127 public static final String STATUS = "Status"; 2128 2129 /** 2130 * ProviderName 2131 */ 2132 public static final String PROVIDER_NAME="ProviderName"; 2133 2134 /** 2135 * IsPassive Element Name 2136 */ 2137 public String IS_PASSIVE_ELEM = "IsPassive"; 2138 2139 /** 2140 * Force Authentication Element Name 2141 */ 2142 public String FORCE_AUTHN_ELEM = "ForceAuthn"; 2143 2144 2145 /** 2146 * Provider Status 2147 */ 2148 public String PROVIDER_STATUS = "providerStatus"; 2149 2150 /** 2151 * Signing Certificate Alias 2152 */ 2153 public String SIGNING_CERT_ALIAS = "signingCertAlias"; 2154 2155 /** 2156 * Encryption Certificate Alias 2157 */ 2158 public static final String ENCRYPTION_CERT_ALIAS = "encryptionCertAlias"; 2159 2160 /** 2161 * Enable IDP Proxy 2162 */ 2163 public String ENABLE_IDP_PROXY = "enableIDPProxy"; 2164 2165 /** 2166 * IDP Proxy Name List 2167 */ 2168 public String IDP_PROXY_LIST = "idpProxyList"; 2169 2170 /** 2171 * IDP Proxy Count 2172 */ 2173 public String IDP_PROXY_COUNT = "idpProxyCount"; 2174 2175 /** 2176 * Use Introduction for IDP Proxy 2177 */ 2178 public String USE_INTRODUCTION_FOR_IDP_PROXY = "useIntroductionForIDPProxy"; 2179 2180 /** 2181 * Enable Name Identifier Encryption 2182 */ 2183 public String ENABLE_NAMEID_ENCRYPTION = "enableNameIDEncryption"; 2184 2185 /** 2186 * Generate Bootstrapping in Single Sign-on Assertion 2187 */ 2188 public String GENERATE_BOOTSTRAPPING = "generateBootstrapping"; 2189 2190 /** 2191 * Responds with 2192 */ 2193 public String RESPONDS_WITH = "respondsWith"; 2194 2195 /** 2196 * Name Identifier Implementation Class 2197 */ 2198 public String NAMEID_IMPL_CLASS = "nameIDImplementationClass"; 2199 2200 /** 2201 * Authentication Type (remote/local) 2202 */ 2203 public String AUTH_TYPE = "authType"; 2204 2205 /** 2206 * Registration Done URL 2207 */ 2208 public String REGISTRATION_DONE_URL = "registrationDoneURL"; 2209 2210 /** 2211 * Termination Done URL 2212 */ 2213 public String TERMINATION_DONE_URL = "terminationDoneURL"; 2214 2215 /** 2216 * Logout Done URL 2217 */ 2218 public String LOGOUT_DONE_URL = "logoutDoneURL"; 2219 2220 /** 2221 * Federation Done URL 2222 */ 2223 public String FEDERATION_DONE_URL = "federationDoneURL"; 2224 2225 /** 2226 * Single Sign-on failure redirection URL 2227 */ 2228 public String SSO_FAILURE_REDIRECT_URL = "ssoFailureRedirectURL"; 2229 2230 /** 2231 * Error page redirection URL 2232 */ 2233 public String ERROR_PAGE_URL = "errorPageURL"; 2234 2235 /** 2236 * List of COTs page URL. 2237 */ 2238 public String LISTOFCOTS_PAGE_URL = "listOfCOTsPageURL"; 2239 2240 /** 2241 * Do federate page URL. 2242 */ 2243 public String DOFEDERATE_PAGE_URL = "doFederatePageURL"; 2244 2245 /** 2246 * Implementation class for SPI <code>FSUserProvider</code>. 2247 */ 2248 public String FS_USER_PROVIDER_CLASS = "userProviderClass"; 2249 2250 /** 2251 * Provider Home page URL. 2252 */ 2253 public String PROVIDER_HOME_PAGE_URL = "providerHomePageURL"; 2254 2255 /** 2256 * Assertion valid interval 2257 */ 2258 public String ASSERTION_INTERVAL = "assertionInterval"; 2259 2260 /** 2261 * Internal Thread Cleanup Internal 2262 */ 2263 public String CLEANUP_INTERVAL = "cleanupInterval"; 2264 2265 /** 2266 * Artifact Timeout Interval 2267 */ 2268 public String ARTIFACT_TIMEOUT = "artifactTimeout"; 2269 2270 /** 2271 * Maximum Assertion Limit 2272 */ 2273 public String ASSERTION_LIMIT = "assertionLimit"; 2274 2275 /** 2276 * Assertion Issuer 2277 */ 2278 public String ASSERTION_ISSUER = "assertionIssuer"; 2279 2280 /** 2281 * Attribute Plugin 2282 */ 2283 public String ATTRIBUTE_PLUGIN = "attributePlugin"; 2284 2285 /** 2286 * IDP Attribute Map 2287 */ 2288 public String IDP_ATTRIBUTE_MAP = "idpAttributeMap"; 2289 2290 /** 2291 * Whether to initialize registration after sso/federation. 2292 * Currently, it is not used. 2293 */ 2294 public String ENABLE_REGISTRATION_AFTER_SSO = "enableRegistrationAfterSSO"; 2295 2296 /** 2297 * Default AuthnContext 2298 */ 2299 public String DEFAULT_AUTHNCONTEXT = "defaultAuthnContext"; 2300 2301 /** 2302 * Default AuthnContext Password 2303 */ 2304 public String DEFAULT_AUTHNCONTEXT_PASSWORD = 2305 "http://www.projectliberty.org/schemas/authctx/classes/Password"; 2306 2307 /** 2308 * IDP AuthnContext Mapping 2309 */ 2310 public String IDP_AUTHNCONTEXT_MAPPING = "idpAuthnContextMapping"; 2311 2312 /** 2313 * Enable Auto-Federation 2314 */ 2315 public String ENABLE_AUTO_FEDERATION = "enableAutoFederation"; 2316 2317 /** 2318 * Auto-Federation Attribute 2319 */ 2320 public String AUTO_FEDERATION_ATTRIBUTE = "autoFederationAttribute"; 2321 2322 /** 2323 * Attribute Mapper Class 2324 */ 2325 public String ATTRIBUTE_MAPPER_CLASS = "attributeMapperClass"; 2326 2327 /** 2328 * Circle-of-trust list 2329 */ 2330 public String COT_LIST = COTConstants.COT_LIST; 2331 2332 /** 2333 * Enable Affiliation 2334 */ 2335 public String ENABLE_AFFILIATION = "enableAffiliation"; 2336 2337 /** 2338 * Force Authentication at IDP 2339 */ 2340 public String FORCE_AUTHN = "forceAuthn"; 2341 2342 /** 2343 * Request IDP to be Passive 2344 */ 2345 public String IS_PASSIVE = "isPassive"; 2346 2347 /** 2348 * Service Provider AuthnContext Mapping 2349 */ 2350 public String SP_AUTHNCONTEXT_MAPPING = "spAuthnContextMapping"; 2351 2352 /** 2353 * Service Provider Attribute Map 2354 */ 2355 public String SP_ATTRIBUTE_MAP = "spAttributeMap"; 2356 2357 /** 2358 * Federation Service Provider Adapter 2359 */ 2360 public String FEDERATION_SP_ADAPTER = "federationSPAdapter"; 2361 2362 /** 2363 * Environment variables for Federation Service Provider Adapter 2364 */ 2365 public String FEDERATION_SP_ADAPTER_ENV = "federationSPAdapterEnv"; 2366 2367 /** 2368 * Service Provider's supported profiles for single sign on. 2369 * First one is the default one. 2370 */ 2371 public String SUPPORTED_SSO_PROFILE = "supportedSSOProfile"; 2372 2373 /** 2374 * Constants for authn context mapping values. 2375 */ 2376 public String ATTRIBUTE_SEPARATOR = "|"; 2377 public String KEY_VALUE_SEPARATOR = "="; 2378 public String AUTH_CONTEXT_NAME = "context"; 2379 public String MODULE_INDICATOR_KEY = "key"; 2380 public String MODULE_INDICATOR_VALUE = "value"; 2381 public String LEVEL = "level"; 2382 2383 /** 2384 * Provider description. 2385 */ 2386 public String PROVIDER_DESCRIPTION = "providerDescription"; 2387 2388 /** 2389 * Service Provider's default relay state. 2390 */ 2391 public String SP_DEFAULT_RELAY_STATE = 2392 "/samples/idff/sp/index.jsp"; 2393 2394 /** 2395 * boolean to indicate if this is SOAP profile 2396 */ 2397 public String IS_SOAP_PROFILE = "isSOAPProfile"; 2398 2399 /** 2400 * root realm. 2401 */ 2402 public String ROOT_REALM = "/"; 2403 2404 /** 2405 * SAMLRequest query parameter name 2406 */ 2407 public String SAML_REQUEST = "SAMLRequest"; 2408 2409 /** 2410 * SAMLResponse query parameter name 2411 */ 2412 public String SAML_RESPONSE = "SAMLResponse"; 2413 2414 /** 2415 * Parameter name for SAML artifact in http request. 2416 */ 2417 public String SAML_ART = "SAMLart"; 2418 2419} 2420
Copyright © 2010-2017, ForgeRock All Rights Reserved.