001/**
002 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
003 *
004 * Copyright (c) 2006 Sun Microsystems Inc. All Rights Reserved
005 *
006 * The contents of this file are subject to the terms
007 * of the Common Development and Distribution License
008 * (the License). You may not use this file except in
009 * compliance with the License.
010 *
011 * You can obtain a copy of the License at
012 * https://opensso.dev.java.net/public/CDDLv1.0.html or
013 * opensso/legal/CDDLv1.0.txt
014 * See the License for the specific language governing
015 * permission and limitations under the License.
016 *
017 * When distributing Covered Code, include this CDDL
018 * Header Notice in each file and include the License file
019 * at opensso/legal/CDDLv1.0.txt.
020 * If applicable, add the following below the CDDL Header,
021 * with the fields enclosed by brackets [] replaced by
022 * your own identifying information:
023 * "Portions Copyrighted [year] [name of copyright owner]"
024 *
025 * $Id: IFSConstants.java,v 1.12 2008/08/29 04:57:15 exu Exp $
026 * Portions Copyrights 2014 ForgeRock AS
027 */
028
029
030package com.sun.identity.federation.common;
031
032import com.sun.identity.cot.COTConstants;
033/**
034 * This interface represents a collection of common constants used by
035 * the classes in Federation Service.  
036 * @supported.all.api
037 * @deprecated since 12.0.0
038 */
039@Deprecated
040public interface IFSConstants {
041    /**
042     * HTTPS URL prefix 
043     */
044    public static final String HTTPS_URL_PREFIX  = "https://";
045    /**
046     * Dot character
047     */
048    public static final char   DOT               = '.';
049    /**
050     * Federation error 
051     */
052    public static final String FEDERROR         ="federror";
053    /**
054     * Federation remark 
055     */
056    public static final String FEDREMARK        ="fedremark";
057    /**
058     * Provider or entity status
059     */
060    public static final String ACTIVE            = "active";
061    /**
062     * Provider or entity status
063     */
064    public static final String INACTIVE          = "inactive";
065    /**
066     * IDFF 1.1 meta version
067     */
068    public static final String ENUM_ZERO         = "urn:liberty:iff:2002-12";
069    /**
070     * IDFF 1.2 meta version
071     */
072    public static final String ENUM_ONE          = "urn:liberty:iff:2003-08";
073    /**
074     * Affiliation descriptor
075     */
076    public static final String AFFILIATE_TYPE  = "urn:liberty:iff:affiliate";
077    /**
078     * Provider descriptor
079     */
080    public static final String CONTAINER_TYPE    = "urn:liberty:iff:provider";  
081    /**
082     * SOAP binding 
083     */
084    public static final String SOAP              = "SOAP";
085    /**
086     * HTTP redirect
087     */
088    public static final String HTTP_REDIRECT     = "HTTP Redirect";
089    /**
090     * HTTP redirect 
091     */
092    public static final String HTTP_GET          = "HTTP Get";
093    /**
094     * PASSIVE mode
095     */
096    public static final String PASSIVE           = "passive";
097    /**
098     * Local login page
099     */
100    public static final String LOCAL_LOGIN       = "locallogin";
101    /**
102     * Common login page
103     */
104    public static final String COMMON_LOGIN       = "commonlogin";
105    /**
106     * Provider acts SP and IDP role
107     */
108    public static final String SP_IDP            = "SP/IDP";
109    /**
110     * Supported protocol type
111     */
112    public static final String ALLOWED_PROTOCOL_KEY =
113        "com.sun.identity.federation.allowedProtocol";
114    /**
115     * Specify keystore location in config file 
116     */    
117    public static final String KEY_STORE =
118        "com.sun.identity.saml.xmlsig.keystore";
119    /**
120     * Specify keystore password file in config file 
121     */        
122    public static final String STORE_PASS =
123        "com.sun.identity.saml.xmlsig.storepass";
124    /**
125     * Specify private key password in config file 
126     */        
127    public static final String KEY_PASS =
128        "com.sun.identity.saml.xmlsig.keypass";
129
130    /**
131     * Specify login URL IDP will redirect to when there is no valid session 
132     */        
133    public static final String IDP_LOGIN_URL =
134        "com.sun.identity.federation.services.idpLoginURL";
135
136    /**
137     * Internal error
138     */     
139    public static final String INTERNAL_ERROR = "internalError";
140   
141    public static final int LOCAL_NAME_IDENTIFIER = 0;
142    public static final int REMOTE_NAME_IDENTIFIER = 1;
143 
144    // **********************************
145    // these are keys whose values store in "libIDFF.properties" file.
146    // **********************************
147    /**
148     * Account management: hosted descriptor config is null. 
149     */
150    public static final String NULL_HOSTED_CONFIG = 
151        "actmgmt-hosted-config-is-null";
152    /**
153     * Account management: hosted entity id is null. 
154     */
155    public static final String NULL_PROVIDER_ID = 
156        "actmgmt-provider-id-is-null";
157    /**
158     * Account management: meta alias is null. 
159     */
160    public static final String NULL_META_ALIAS = 
161        "actmgmt-meta-alias-is-null";
162    /**
163     * Account management: User DN is null. 
164     */    
165    public static final String NULL_USER_DN = 
166        "actmgmt-user-dn-is-null";
167    /**
168     * Account management: Opaque handle is null. 
169     */    
170    public static final String NULL_NAME = 
171        "actmgmt-name-is-null";
172    /**
173     * Account management: Namespace is null. 
174     */    
175    public static final String NULL_NAME_SPACE = 
176        "actmgmt-name-space-is-null";
177    /**
178     * Account management: Name identifier is null. 
179     */     
180    public static final String NULL_NAME_IDENTIFIER = 
181        "actmgmt-name-identifier-is-null";
182    /**
183     * Account management: FedInfo is null. 
184     */    
185    public static final String NULL_FED_INFO_OBJECT =
186        "actmgmt-account-fed-info-object-is-null";
187    /**
188     * Account management: FedInfo key is null. 
189     */    
190    public static final String NULL_FED_INFO_KEY_OBJECT = 
191        "actmgmt-account-fed-info-key-object-is-null";
192    /**
193     * Account management: Account federation info is 
194     * modified in the directory. 
195     */    
196    public static final String INVALID_ACT_FED_INFO_IN_IDS = 
197        "actmgmt-fed-info-modified-in-ids";
198    /**
199     * Account management: Invalid name identifier type.
200     */      
201    public static final String INVALID_NAME_IDENTIFIER_TYPE = 
202        "actmgmt-nameIdentifierType-invalid";
203    /**
204     * Account management: Account federation info not found.
205     */       
206    public static final String ACT_FED_INFO_NOT_FOUND =
207        "actmgmt-fed-info-not-found";
208    /**
209     * Account management: Multiple UIDs matched.
210     */   
211    public static final String MULTIPLE_UID_MATCHED = 
212        "actmgmt-multiple-uid-matched";
213    /**
214     * Account management: UID does not match.
215     */ 
216    public static final String UID_NOT_MATCHED =
217        "actmgmt-uid-not-matched";
218    /**
219     * Account management: User does not match.
220     */     
221    public static final String USER_NOT_FOUND =
222        "actmgmt-user-not-found";
223    /**
224     * Maximum number of Assertion
225     */
226    public static final int ASSERTION_MAX_NUMBER_DEFAULT = 10;
227    /**
228     * Cleanup time interval
229     */
230    public static final int CLEANUP_INTERVAL_DEFAULT = 180;
231    /**
232     * User is used in basic authentication.
233     */
234    public static final String USER = "iplanet-am-saml-user";
235    /**
236     * Password for the user (basic authentication).
237     */
238    public static final String PASSWORD="iplanet-am-saml-password";
239    /**
240     * Basic authentication
241     */ 
242    public static final String BASICAUTH= "BASICAUTH";
243    /**
244     * SSL with basic authentication
245     */  
246    public static final String SSLWITHBASICAUTH = "SSLWITHBASICAUTH";
247    /**
248     * No authentication enforced 
249     */
250    public static final String NOAUTH = "NOAUTH";
251    /**
252     * SSL
253     */
254    public static final String SSL = "SSL";
255    /**
256     * Status code for saml protocol success
257     */
258    public static final String STATUS_CODE_SUCCESS = "samlp:Success";
259    /**
260     * Status code for saml protocol success without prefix 
261     */
262    public static final String STATUS_CODE_SUCCESS_NO_PREFIX = ":Success";
263    /**
264     * http protocol 
265     */
266    public static final String HTTP="http";
267    /**
268     * https protocol 
269     */
270    public static final String HTTPS="https";
271    /**
272     * Post AuthnResponse parameter 
273     */   
274    public static final String POST_AUTHN_RESPONSE_PARAM = "LARES";
275    /**
276     * Post AuthnRequest parameter 
277     */   
278    public static final String POST_AUTHN_REQUEST_PARAM = "LAREQ";
279    /**
280     * Authentication indicator parameter
281     */   
282    public static final String AUTHN_INDICATOR_PARAM = "Authn";
283    /**
284     * Default value for Authentication indicator parameter
285     */ 
286    public static final String AUTHN_INDICATOR_VALUE = "true";  
287    /**
288     * Attribute name in the session
289     */
290    public static final String SESSION_COTSET_ATTR = "CotSet";
291    /**
292     * Maximum length of URL
293     */
294    public static final int URL_MAX_LENGTH = 1256;
295    /**
296     * Error in metadata setting.
297     */     
298    public static final String METADATA_ERROR =
299        "metadata-error-check";
300    /**
301     * Contact system administrator to report this problem.
302     */
303    public static final String CONTACT_ADMIN = "contact-admin";
304    /**
305     * Federation access log file name 
306     */
307    public static final String FS_ACCESS_LOG_NAME = "Federation.access";
308    /**
309     * Federation error log file name 
310     */
311    public static final String FS_ERROR_LOG_NAME = "Federation.error";
312    /**
313     * Status code: <code>samlp:Success</code>  
314     */
315    public static final String SAML_SUCCESS = "samlp:Success";
316    /**
317     * Status code: <code>samlp:Responder</code>  
318     */
319    public static final String SAML_RESPONDER = "samlp:Responder";
320    /**
321     * Status code: <code>samlp:Requester</code>  
322     */
323    public static final String SAML_REQUESTER = "samlp:Requester";
324    /**
325     * Status code: <code>samlp:VersionMismatch</code>  
326     */
327    public static final String SAML_VERSION_MISMATCH = "samlp:VersionMismatch";
328
329    /**
330     * Liberty unsupported: <code>lib:Unsupported</code>
331     */
332    public static final String SAML_UNSUPPORTED = "lib:Unsupported";
333    /**
334     * Liberty failure: <code>lib:Failure</code>
335     */
336    public static final String REGISTRATION_FAILURE_STATUS = "lib:Failure";
337    /**
338     * Liberty federation does not exist:
339     * <code>lib:FederationDoesNotExist</code>
340     */
341    public static final String FEDERATION_NOT_EXISTS_STATUS = 
342        "lib:FederationDoesNotExist";
343    /**
344     * Register NameIdentifier Request
345     */
346    public static final String NAME_REGISTRATION_REQUEST = 
347        "RegisterNameIdentifierRequest";
348    /**
349     * Register NameIdentifier Response
350     */    
351    public static final String NAME_REGISTRATION_RESPONSE = 
352        "RegisterNameIdentifierResponse";
353    /**
354     * <code>lib</code> tag 
355     */    
356    public static final String LIB = "lib";
357    /**
358     * <code>yes</code>
359     */
360    public static final String YES = "yes";
361    /**
362     * <code>no</code>
363     */
364    public static final String NO = "no";
365    /**
366     * SP role
367     */
368    public static final String SP = "SP";
369    /**
370     * IDP role 
371     */
372    public static final String IDP = "IDP";
373    /**
374     * SP and IDP role 
375     */
376    public static final String BOTH ="IDP/SP";
377    /**
378     * Preferred cookie seperator
379     */
380    public static final String PREFERRED_COOKIE_SEPERATOR = " ";
381    /**
382     * Session cookie 
383     */
384    public static final String SESSION_COOKIE = "SESSION";
385    /**
386     * Persistent cookie
387     */
388    public static final String PERSISTENT_COOKIE = "PERSISTENT";
389    /**
390     * Persistent cookie expiration, by default 365 days
391     */
392    public static final int PERSISTENT_COOKIE_AGE = 31536000; 
393    /**
394     * Session cookie expiration
395     */
396    public static final int SESSION_COOKIE_AGE = -1;
397    /**
398     * Repeat termination flag
399     */
400    public static final String TERMINATION_REPEAT_FLAG = "repeatTerm";
401    /**
402     * Repeat logout flag
403     */
404    public static final String LOGOUT_REPEAT_FLAG = "repeatLogout";
405    /**
406     * Partner session
407     */
408    public static final String PARTNER_SESSION = "PartnerSession";
409    /**
410     * Session index 
411     */
412    public static final String SESSION_INDEX = "SessionIndex";
413    /**
414     * Provider 
415     */
416    public static final String PROVIDER = "Provider";
417    /**
418     * Missing value for security key.
419     */
420    public static final String MISSING_KEYINFO = "missingKeyInfo";
421    /**
422     * Provider ID not in request and not able to reset preferred IDP
423     */
424    public static final String INTRODUCTION_NO_PROVIDER_ID = 
425        "introduction-no-provider-id";
426    /**
427     * Redirect URL not specified.
428     */ 
429    public static final String INTRODUCTION_NO_REDIRECT_URL = 
430        "introduction-no-redirect-url";
431    /**
432     * Invalid Redirect URL scheme.
433     */
434    public static final String INTRODUCTION_INVALID_REDIRECT_URL_SCHEME = 
435        "invalid-redirect-url-scheme";
436    /**
437     * Preferred IDP Cookie not found.
438     */
439    public static final String INTRODUCTION_COOKIE_NOT_FOUND = 
440        "preferred-idp-cookie-not-found";
441    /**
442     *Invalid Property file. No providerid code.
443     */
444    public static final String INTRODUCTION_PROPERTY_FILE_PROVIDER_INVALID = 
445        "introduction-invalid-providerid-property-file";
446    /**
447     * Invalid Property File
448     */    
449    public static final String FEDERATION_PROPERTY_FILE_INVALID = 
450        "federation-invalid-property-file";
451    /**
452     * Failed to get Meta Manager Instance.
453     */
454    public static final String FEDERATION_FAILED_META_INSTANCE = 
455        "federation-failed-meta-instance";
456    /**
457     * Failed to get Account Manager Instance.
458     */
459    public static final String FEDERATION_FAILED_ACCOUNT_INSTANCE =
460        "federation-failed-account-instance";
461    /**
462     * Redirection failed. Cannot process further
463     */
464    public static final String FEDERATION_REDIRECT_FAILED = 
465        "federation-redirection-failed";
466    /**
467     * Failed to get Pre/Logout handler.
468     */
469    public static final String LOGOUT_INVALID_HANDLER =
470        "logout-invalid-handler";
471    /**
472     * Logout failed. Manager instance not available.
473     */
474    public static final String LOGOUT_FAILED_MANAGER = 
475        "logout-failed-manager";
476    /**
477     * Logout failed to redirect due to incorrect URL.
478     */
479    public static final String LOGOUT_REDIRECT_FAILED =
480        "logout-redirect-failed";
481    /**
482     * Logout failed due to invalid session.
483     * Redirect to authentication.
484     */
485    public static final String LOGOUT_TOKEN_INVALID = 
486        "logout-token-invalid";
487    /**
488     * Single logout failed.
489     */     
490    public static final String LOGOUT_FAILED = "logout-failed";
491    /**
492     * Logout request not formed properly. Cannot proceed.
493     */
494    public static final String LOGOUT_REQUEST_IMPROPER =
495        "logout-request-improper";
496    /**
497     * Creation of logout request failed.
498     */
499    public static final String LOGOUT_REQUEST_CREATION = 
500        "logout-request-creation-failed";
501    /**
502     * Failed to process Logout request.
503     */    
504    public static final String LOGOUT_REQUEST_PROCESSING_FAILED = 
505        "logout-request-processing-failed";
506    /**
507     * Logout request does not have provider specified properly.
508     * Cannot process request.
509     */
510    public static final String LOGOUT_REQUEST_NO_PROVIDER = 
511        "logout-request-no-provider";
512    /**
513     * Unable to find cert alias. Cannot sign or verify request.
514     */    
515    public static final String NO_CERT_ALIAS = "cannot-find-cert-alias";
516    /**
517     * Unable to find certificate. Cannot sign or verify request.
518     */    
519    public static final String NO_CERT = "cannot-find-cert";
520    /**
521     * Request does not contain proper provider ID.
522     */
523    public static final String REQUEST_NO_PROVIDER = "request-no-provider";
524    /**
525     * Failed to create SPProvidedNameIdentifier.
526     */
527    public static final String REGISTRATION_FAILED_SP_NAME_IDENTIFIER = 
528        "registration-failed-sp-name-identifier";
529    /**
530     * Error in processing Name Registration at IDP.
531     */
532    public static final String REGISTRATION_FAILED_REMOTE = 
533        "registration-failed-remote";
534    /**
535     * Error in sending Name Registration at IDP.
536     */
537    public static final String REGISTRATION_FAILED_SEND_REMOTE = 
538        "registration-failed-send-remote";
539    /**
540     * Error in processing Name Registration at SP.
541     */
542    public static final String REGISTRATION_FAILED_LOCAL = 
543        "registration-failed-local";
544    /**
545     * Successful processing of Name Registration at IDP.
546     */
547    public static final String REGISTRATION_SUCCESS_REMOTE =
548        "registration-success-remote";
549    /**
550     * Successful processing of Name Registration at SP. 
551     */
552    public static final String REGISTRATION_SUCCESS_LOCAL =
553        "registration-success-local";
554    /**
555     * Failed to create Name Registration request.
556     */
557    public static final String REGISTRATION_REQUEST_CREATION_FAILED = 
558        "registration-request-creation-failed";
559    /**
560     * LECP header name 
561     */
562    public static final String LECP_HEADER_NAME = "Liberty-Enabled";
563    /**
564     * WML header value 
565     */
566    public static final String WML_HEADER_VALUE = "text/vnd.wap.wml";
567    /**
568     * WML profile 
569     */
570    public static final String WML_PROFILE = 
571        "http://projectliberty.org/profiles/wml-post";
572    /**
573     * Exception in Federation Termination. Unknown Error.
574     */    
575    public static final String TERMINATION_EXCEPTION =
576        "termination-exception-unknown";
577    /**
578     * Account federation for user with provider does not exist.
579     */    
580    public static final String TERMINATION_INVALID_FEDERATION = 
581        "termination-invalid-federation";
582    /**
583     * Termination cannot proceed. Provider not found.
584     */    
585    public static final String TERMINATION_NO_PROVIDER = 
586        "termination-no-provider";
587    /**
588     * Invalid Termination Handler
589     */    
590    public static final String TERMINATION_INVALID_HANDLER =
591        "termination-handle-invalid";
592    /**
593     * Federation Termination failed during processTerminationRequest.
594     */    
595    public static final String TERMINATION_REQUEST_PROCESSING_FAILED =  
596        "termination-request-processing-failed";
597    /**
598     * Request not proper. Cannot proceed federation termination.
599     */
600    public static final String TERMINATION_REQUEST_IMPROPER =
601        "termination-request-improper";
602    /**
603     * Request creation failed. Cannot proceed with federation ]
604     * termination.
605     */
606    public static final String TERMINATION_REQUEST_CREATION = 
607        "termination-request-creation-failed";
608    /**
609     * Federation Termination failed at remote provider.
610     */    
611    public static final String TERMINATION_REMOTE_FAILED =
612        "termination-failed-remotely";
613    /**
614     * Federation Termination failed locally. Cannot update account.
615     */    
616    public static final String TERMINATION_LOCAL_FAILED =
617        "termination-failed-locally";
618    /**
619     * Federation Termination succeeded locally. User account updated.
620     */    
621    public static final String TERMINATION_LOCAL_SUCCEEDED =
622        "termination-succeeded-locally";
623    /** 
624     * Failed to get termination handler.
625     */
626    public static final String TERMINATION_HANDLE_CREATION_FAILED = 
627        "termination-handle-creation-failed";
628    /**
629     * Failed in sending SOAP request to remote end.
630     */    
631    public static final String TERMINATION_SOAP_SEND_FAILED =
632        "termination-soap-send-failed";
633    /**
634     * Invalid Federation Termination Service Return URL.
635     */    
636    public static final String TERMINATION_INVALID_REDIRECT_URL =
637        "termination-invalid-redirect-url";
638    /**
639     * Federation Termination Successful
640     */    
641    public static final String TERMINATION_SUCCEEDED =
642        "federation-termination-successful";
643    /**
644     * Signature verification of federation termination request failed.
645     */    
646    public static final String  TERMINATION_INVALID_SIGNATURE =
647        "termination-invalid-signature";
648    /**
649     * Failed to construct SOAP message from request object. 
650     */ 
651    public static final String TERMINATION_FAILED_SOAP_MESSAGE_CREATION =
652        "termination-failed-soap-creation";
653    /**
654     * Failed to send termination message to remote provider.
655     */
656    public static final String TERMINATION_FAILED_SEND_REMOTE =
657        "termination-failed-send-remote";
658    /**
659     * Federation termination servlet
660     */
661    public static final String TERMINATE_SERVLET = 
662        "/federation-terminate";
663    /**
664     * Name registration servlet 
665     */    
666    public static final String REGISTRATION_SERVLET =
667        "/InitiateRegistration"; 
668    /**
669     * Session cookie name 
670     */
671//    public static String SESSION_COOKIE_NAME = 
672 //       "com.sun.identity.federation.sessioncookie";
673    /**
674     * Circle of trust id 
675     */
676  //  public static final String COT_INFO = 
677   //     "com.sun.identity.federation.services.cotid";
678    /**
679     * Authentication login url 
680     */
681 //   public static final String authURL = 
682  //      "com.sun.identity.federation.services.authLoginUrl";
683    /**
684     * Termination profile 
685     */    
686   // public static final String TERMINATION_PROFILE =
687    //    "com.sun.identity.federation.services.termination.profile";
688    /**
689     * Termination profile relay state 
690     */    
691    public static String TERMINATION_RELAY_STATE = "RelayState";
692    /**
693     * Logout relay state
694     */
695    public static String LOGOUT_RELAY_STATE = "RelayState";
696    /**
697     * Name registration indicator
698     */
699    public static String NAMEREGIS_INDICATOR_PARAM = "nameregis";
700    /**
701     * Question mark
702     */
703    public static final char   QUESTION_MARK = '?';
704    /**
705     * Ampersand 
706     */
707    public static final char   AMPERSAND = '&';
708    /**
709     *Equal to
710     */
711    public static final char   EQUAL_TO = '=';
712    /**
713     * Role
714     */
715    public static String ROLE = "ROLE";
716    /**
717     * Response to 
718     */
719    public static String RESPONSE_TO = "responseTo";
720    /**
721     * IDP Single logout via idp 
722     */
723    public static final String LOGOUT_IDP_SOAP_PROFILE =
724        "http://projectliberty.org/profiles/slo-idp-soap";
725    /**
726     * IDP Single logout via http
727     */    
728    public static final String LOGOUT_IDP_REDIRECT_PROFILE =
729        "http://projectliberty.org/profiles/slo-idp-http";
730    /**    
731     * IDP Single logout via http get
732     */ 
733    public static final String LOGOUT_IDP_GET_PROFILE =
734        "http://projectliberty.org/profiles/slo-idp-http-get";
735    /**
736     * SP Single logout via soap 
737     */    
738    public static final String LOGOUT_SP_SOAP_PROFILE =
739        "http://projectliberty.org/profiles/slo-sp-soap";
740    /**
741     * SP Single logout via http 
742     */    
743    public static final String LOGOUT_SP_REDIRECT_PROFILE = 
744        "http://projectliberty.org/profiles/slo-sp-http";
745    /**
746     * IDP Termination via http 
747     */    
748    public static final String TERMINATION_IDP_HTTP_PROFILE =
749        "http://projectliberty.org/profiles/fedterm-idp-http";
750    /**
751     * IDP Termination via soap 
752     */    
753    public static final String TERMINATION_IDP_SOAP_PROFILE =
754        "http://projectliberty.org/profiles/fedterm-idp-soap";
755    /**
756     * SP Termination via soap 
757     */    
758    public static final String TERMINATION_SP_SOAP_PROFILE = 
759        "http://projectliberty.org/profiles/fedterm-sp-soap";
760    /**
761     * SP Termination via http 
762     */    
763    public static final String TERMINATION_SP_HTTP_PROFILE =
764        "http://projectliberty.org/profiles/fedterm-sp-http";
765    /**
766     * Name registration via soap 
767     */    
768    public static final String NAME_REGISTRATION_PROFILE =
769        "http://projectliberty.org/profiles/rni-soap";
770
771    /**
772     * URI for HTTP-Redirect-based Name Identifier Registration Profile
773     * initiated at Service Provider
774     */
775    public static final String NAME_REGISTRATION_SP_HTTP_PROFILE =
776        "http://projectliberty.org/profiles/rni-sp-http";
777    /**
778     * URI for SOAP/HTTP-based Name Identifier Registration Profile
779     * initiated at Service Provider
780     */
781    public static final String NAME_REGISTRATION_SP_SOAP_PROFILE =
782        "http://projectliberty.org/profiles/rni-sp-soap";
783    /**
784     * URI for HTTP-Redirect-based Name Identifier Registration Profile
785     * initiated at Identity Provider
786     */
787    public static final String NAME_REGISTRATION_IDP_HTTP_PROFILE =
788        "http://projectliberty.org/profiles/rni-idp-http";
789
790    /**
791     * URI for SOAP/HTTP-based Name Identifier Registration Profile
792     * initiated at Identity Provider
793     */
794    public static final String NAME_REGISTRATION_IDP_SOAP_PROFILE =
795        "http://projectliberty.org/profiles/rni-idp-soap";
796
797
798    /**
799     * FedCookie name 
800     */   
801    public static final String FEDERATE_COOKIE_NAME =
802        "com.sun.identity.federation.fedCookieName";
803    /**
804     * Quote
805     */ 
806    public static final String QUOTE                    = "\"";
807    /** 
808     * New line
809     */
810    public static final String NL                       = "\n";
811    /**
812     * Left angle
813     */
814    public static final String LEFT_ANGLE               = "<";
815    /** 
816     * Right angle
817     */
818    public static final String RIGHT_ANGLE              = ">";
819    /**
820     * End element 
821     */
822    public static final String END_ELEMENT              = "/>";
823    /** 
824     * Start end element 
825     */
826    public static final String START_END_ELEMENT        = "</";
827    /**
828     * Space
829     */
830    public static final String SPACE                    = " ";
831     /** 
832      * SAML tag
833      */
834    public static final String SAML_LOG_NAME            = "SAML";
835    /**
836     * AuthenticationContext  prefix 
837     */
838    public static final String AC_PREFIX                = "AC:";
839    /**
840     * lib prefix
841     */
842    public static final String LIB_PREFIX               = "lib:";
843    /**
844     * Liberty namespace uri
845     */
846    public static final String libertyMessageNamespaceURI =
847        "http://projectliberty.org/schemas/core/2002/12";
848    /**
849     * Liberty name space 
850     */    
851    public static final String LIB_NAMESPACE_STRING =
852        " xmlns:lib=\"http://projectliberty.org/schemas/core/2002/12\"";
853    /**
854     * AuthenticationContext name space 
855     */    
856    public static final String AC_NAMESPACE_STRING =
857        " xmlns:ac=\"http://projectliberty.org/schemas/authctx/2002/05\"";
858    /**
859     * AuthenticationContext namespace uri
860     */
861    public static final String AC_XML_NS = 
862        "http://projectliberty.org/schemas/authctx/2002/05";
863    /**
864     * SAML assertion name space 
865     */
866    public static final String assertionSAMLNameSpaceURI =
867        "urn:oasis:names:tc:SAML:1.0:assertion";
868    /**
869     * SOAP envelope uri
870     */    
871    public static final String SOAP_URI =
872        "http://schemas.xmlsoap.org/soap/envelope/";
873    /**
874     * SOAP prefix 
875     */    
876    public static final String SOAP_ENV_PREFIX = "soap-env";
877    /**
878     * SAML protocol namespace 
879     */
880    public static final String PROTOCOL_NAMESPACE_URI =
881        "urn:oasis:names:tc:SAML:1.0:protocol";
882    /**
883     * XML Digital signature namespace 
884     */    
885    public static final String DSSAMLNameSpace =
886        "xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\"";
887    /**
888     * XML schema namespace 
889     */    
890    public static final String XSI_NAMESPACE_STRING =
891        "xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\"";
892    /**
893     * SAML assertion namespace 
894     */    
895    public static final String assertionDeclareStr =
896        " xmlns:saml=\"urn:oasis:names:tc:SAML:1.0:assertion\"";
897    /**
898     * SAML protocol namespace 
899     */    
900    public static final String PROTOCOL_NAMESPACE_STRING =
901        " xmlns:samlp=\"urn:oasis:names:tc:SAML:1.0:protocol\"";
902    /**
903     * SAML Actions namespace identifiers: 
904     * Read/Write/Execute/Delete/Control
905     */    
906    public static final String ACTIONS_NAMESPACE =
907        "urn:oasis:names:tc:SAML:1.0:action:rwedc";
908    /**
909     * SAML Actions namespace identifiers: 
910     * Read/Write/Execute/Delete/Control with negation
911     */    
912    public static final String ACTIONS_NAMESPACE_NEGATION = 
913        "urn:oasis:names:tc:SAML:1.0:action:rwedc-negation";
914    /**
915     * SAML Actions namespace identifiers: 
916     * Get/Head/Put/Post
917     */  
918    public static final String ACTIONS_NAMESPACE_GHPP =
919        "urn:oasis:names:tc:SAML:1.0:ghpp";
920    /**
921     * SAML Actions namespace identifiers: 
922     * Unix file permissions
923     */     
924    public static final String ACTIONS_NAMESPACE_UNIX =
925        "urn:oasis:names:tc:SAML:1.0:action:unix";
926    /**
927     * SAML prefix
928     */
929    public static final String ASSERTION_PREFIX = "saml:";
930    /**
931     * SAML protocol prefix 
932     */
933    public static final String PROTOCOL_PREFIX = "samlp:";
934    /**
935     * Assertion major version
936     */
937    public static final int ASSERTION_MAJOR_VERSION = 1;
938    /**
939     * Assertion minor version
940     */
941    public static final int ASSERTION_MINOR_VERSION = 0;
942    /** 
943     * Protocol major version
944     */
945    public static final int PROTOCOL_MAJOR_VERSION = 1;
946    /**
947     * Protocol minor version
948     */
949    public static final int PROTOCOL_MINOR_VERSION = 0;
950    /**
951     * Default encoding
952     */
953    public static final String DEFAULT_ENCODING = "UTF-8";
954    /**
955     * Confirmation method: Artifact 
956     */
957    public static final String CONFIRMATION_METHOD_ARTIFACT =
958        "urn:oasis:names:tc:SAML:1.0:cm:artifact-01";
959    /**
960     * Confirmation method
961     */    
962    public static final String CONFIRMATION_METHOD_DSAME =
963        "urn:sun.com:sunone:ims";
964    /**
965     * Confirmation method: Bearer
966     */    
967    public static final String CONFIRMATION_METHOD_BEARER =
968        "urn:oasis:names:tc:SAML:1.0:cm:bearer";
969    /**
970     * Default Artifact time out
971     */    
972    public static final int ARTIFACT_TIMEOUT_DEFAULT = 120;
973    /**
974     * Default Assertion time out
975     */
976    public static final int ASSERTION_TIMEOUT_DEFAULT = 60;
977    /**
978     * Assertion timeout allowed difference  
979     */
980    public static final int ASSERTION_TIMEOUT_ALLOWED_DIFFERENCE = 60000;
981    /**
982     * Site id
983     */
984    public static final String SITE_ID = "iplanet-am-saml-siteid";
985    /**
986     * Default Artifact name 
987     */
988    public static final String ARTIFACT_NAME_DEFAULT = "SAMLart" ;
989    /**
990     * <code>RelayState</code> parameter
991     */
992    public static final String LRURL = "RelayState";
993    /**
994     * Length of an identifier
995     */
996    public static final int ID_LENGTH = 20;
997    /**
998     * XML Digital Signing algorithm
999     */
1000    public static final String ALGO_ID_SIGNATURE_DSA =
1001        "http://www.w3.org/2000/09/xmldsig#dsa-sha1";
1002    /**
1003     * XML Digital Signing algorithm
1004     */    
1005    public static final String ALGO_ID_SIGNATURE_RSA =
1006        "http://www.w3.org/2000/09/xmldsig#rsa-sha1";
1007    /**
1008     * XML Digital Signing constant
1009     */       
1010    public static final String DEF_SIG_ALGO =
1011        "http://www.w3.org/2000/09/xmldsig#dsa-sha1";
1012    /**
1013     * XML Digital Signing constant
1014     */ 
1015    public static final String DEF_SIG_ALGO_JCA =
1016        "SHA1withRSA";
1017    /**
1018     * XML Digital Signing constant
1019     */  
1020    public static final String ALGO_ID_SIGNATURE_DSA_JCA = 
1021        "SHA1withDSA";
1022    /**
1023     * XML Digital Signing constant
1024     */  
1025    public static final String ALGO_ID_SIGNATURE_RSA_JCA =
1026        "SHA1withRSA";
1027    /**
1028     * XML Digital Signing: DSA key 
1029     */      
1030    public static final String KEY_ALG_DSA = "DSA";
1031    /**
1032     * XML Digital Signing: RSA key 
1033     */  
1034    public static final String KEY_ALG_RSA = "RSA";
1035    /**
1036     * Liberty namespace uri 
1037     */
1038    public static final String LIB_NAMESPACE_URI =
1039        "http://projectliberty.org/schemas/core/2002/12";
1040    /**
1041     * Liberty browser artifact profile 
1042     */    
1043    public static final String SSO_PROF_BROWSER_ART =
1044        "http://projectliberty.org/profiles/brws-art";
1045    /**
1046     * Liberty browser post profile 
1047     */        
1048    public static final String SSO_PROF_BROWSER_POST =
1049        "http://projectliberty.org/profiles/brws-post";
1050    /**
1051     * Liberty WML post profile 
1052     */        
1053    public static final String SSO_PROF_WML_POST =
1054        "http://projectliberty.org/profiles/wml-post";
1055    /**
1056     * Liberty LECP profile 
1057     */         
1058    public static final String SSO_PROF_LECP =
1059        "http://projectliberty.org/profiles/lecp";
1060    /**
1061     * Local opaque handler
1062     */     
1063    public static final int LOCAL_OPAQUE_HANDLE = 0; 
1064    /**
1065     * Remote opaque handler
1066     */ 
1067    public static final int REMOTE_OPAQUE_HANDLE = 1;
1068    /**
1069     * Meta Alias
1070     */
1071    public static final String META_ALIAS = "metaAlias";
1072    /**
1073     * Goto parameter
1074     */
1075    public static final String GOTO_URL_PARAM = "goto";
1076    /**
1077     * Session host provider attribute 
1078     */
1079    public static final String SESSION_HOST_PROVIDER_ATTR = "hostid";
1080    /**
1081     * AuthnContext 
1082     */
1083    public static final String AUTHN_CONTEXT = "AuthnContext";
1084    /**
1085     * Artifact length 
1086     */
1087    public static final int ART_ID_LENGTH = 20;
1088    /** 
1089     * Sourceid encoding
1090     */
1091    public static final String SOURCEID_ENCODING = "ISO-8859-1";
1092
1093    /**
1094     * Max session time
1095     */
1096    public static final int MAX_SESSION_TIME = 12000;
1097    /**
1098     * Max ide time
1099     */
1100    public static final int MAX_IDLE_TIME = 3000;
1101    /**
1102     * Max caching time
1103     */
1104    public static final int MAX_CACHING_TIME = 500;
1105    /**
1106     * Max session time key 
1107     */
1108    public static final String MAX_SESSION_TIME_KEY = "SESSION_TIME";
1109    /**
1110     * Max idle time key
1111     */
1112    public static final String MAX_IDLE_TIME_KEY = "IDLE_TIME";
1113    /**
1114     * Max caching time key
1115     */
1116    public static final String MAX_CACHING_TIME_KEY = "CACHING_TIME";
1117    /**
1118     * Error code for Missing Authentication Context in entity metadata.
1119     */ 
1120    public static final String META_MISSING_AUTH_CONTEXT =
1121        "meta_missing_auth_context";
1122
1123    /**
1124     * Error code for Invalid value for Priority in entity metadata.
1125     */     
1126    public static final String META_INVALID_LEVEL =
1127        "meta_invalid_level";
1128    /**
1129     * Error code for Contact person type
1130     */                             
1131    public static final String TECHNICAL        = "technical";
1132    /**
1133     * Error code for Contact person type
1134     */  
1135    public static final String ADMINISTRATIVE   = "administrative";
1136    /**
1137     * Error code for Contact person type
1138     */  
1139    public static final String BILLING          = "billing";
1140    /**
1141     * Error code for Contact person type
1142     */  
1143    public static final String OTHER            = "other";       
1144     /**
1145     * Specified logout profile is not supported. 
1146     */    
1147    public static final String LOGOUT_PROFILE_NOT_SUPPORTED = 
1148        "logout-profile-not-supported";
1149    /**
1150     * No provider is specified in name registration.
1151     */     
1152    public static final String REGISTRATION_NO_PROVIDER = 
1153        "registration-no-provider";
1154    /**
1155     * Invalid Provider in Registration.
1156     */  
1157    public static final String REGISTRATION_INVALID_PROVIDER =
1158        "registration-invalid-provider";
1159    /**
1160     * Invalid Signature for Registration.
1161     */  
1162    public static final String  REGISTRATION_INVALID_SIGNATURE= 
1163        "registration-invalid-signature";
1164    /**
1165     * Registration failed.
1166     */
1167    public static final String REGISTRATION_FAILED      = 
1168        "registration-failed";
1169    /**
1170     * Improper Registration Request
1171     */
1172    public static final String REGISTRATION_REQUEST_IMPROPER = 
1173        "registration-request-improper";   
1174    /**
1175     * Console service 
1176     */ 
1177    public static final String CONSOLE_SERVICE =
1178        "iPlanetAMAdminConsoleService";
1179    /**
1180     * Console service version
1181     */
1182    public static final String CONSOLE_SERVICE_VERSION =
1183        "1.0";
1184    /**
1185     * Liberty enabled console
1186     */
1187    public static final String LIBERTY_ENABLED_KEY =
1188       "iplanet-am-admin-console-liberty-enabled";
1189    /**
1190     * Local configuration is invalid. 
1191     */   
1192    public static final String LOCALCONFIG_INVALID = "localconfig_invalid";
1193    /**
1194     * Invalid circle of trust list
1195     */
1196    public static final String COTLIST_INVALID =
1197        "cotlist_invalid";
1198    /**
1199     * <code>AuthnRequest</code> RequestID attribute
1200     */  
1201    public static final String AUTH_REQUEST_ID = "RequestID";
1202    /**
1203     * <code>arg</code> key
1204     */  
1205    public static final String ARGKEY = "arg";
1206    /**
1207     * New Session
1208     */
1209    public static final String NEWSESSION = "newsession";
1210    /**
1211     * Post-login page
1212     */
1213    public static final String POST_LOGIN_PAGE = "/postLogin";
1214    /**
1215     * Pre-login page
1216     */
1217    public static final String PRE_LOGIN_PAGE = "/preLogin";
1218    /**
1219     * Federate keyword
1220     */
1221    public static final String FEDERATEKEY = "federate";
1222    /**
1223     * Default value of the <code>federate</code>
1224     */
1225    public static final String FEDERATEVALUE = "false";
1226    /**
1227     * sso keyword
1228     */
1229    public static final String SSOKEY = "sso";
1230    /**
1231     * Default value of the <code>sso</code>
1232     */
1233    public static final String SSOVALUE = "true";
1234    /**
1235     * cotkey keyword
1236     */
1237    public static final String COTKEY = "cotkey";
1238    /**
1239     * Chosen provider
1240     */
1241    public static final String SELECTEDPROVIDER = "selectedprovider";
1242    /**
1243     * goto parameter 
1244     */
1245    public static final String GOTOKEY = "goto";
1246    /**
1247     * org parameter
1248     */
1249    public static final String ORGKEY = "org";
1250    /**
1251     * authlevel parameter 
1252     */
1253    public static final String AUTH_LEVEL_KEY = "authlevel";
1254    /** 
1255     * AuthContext Comparison type
1256     */
1257    public static final String  MINIMUM = "minimum";
1258    /** 
1259     * AuthContext Comparison type
1260     */
1261    public static final String EXACT = "exact";
1262    /** 
1263     * AuthContext Comparison type
1264     */
1265    public static final String BETTER = "better";
1266    /** 
1267     * AuthContext Comparison type
1268     */
1269    public static final String MAXIMUM = "maximum";
1270    /**
1271     * Parameter used in introduction profile
1272     */
1273    public static final String PROVIDER_ID_KEY = "_liberty_idp" ;
1274    /**
1275     * Parameter used to pass realm value.
1276     */
1277     public static final String REALM = "realm";
1278    /**
1279     * Intersite transfer URL
1280     */
1281    public static final String INTERSITE_URL = "IntersiteTransferService";
1282    /**
1283     * Part of the login URL 
1284     */
1285    public static final String LOGIN_PAGE = "/UI/Login";
1286    /**
1287     * Useraction value: Cancel 
1288     */
1289    public static final String CANCEL = "cancel";
1290    /**
1291     * <code>action</code> parameter in the request object 
1292     */
1293    public static final String USERACTION = "action";  
1294    /**
1295     * Consent handler 
1296     */
1297    public static final String CONSENT_HANDLER = "consentHandler";
1298    /**
1299     * Federation handler 
1300     */
1301    public static final String FEDERATION_HANDLER = "federation";
1302    /**
1303     * Key used to search for header info in a map 
1304     */
1305    public static final String HEADER_KEY = "headerKey";
1306    /**
1307     * Key used to search for URL info in a map   
1308     */
1309    public static final String URL_KEY = "urlKey";
1310    /**
1311     * Key used to search for response info in a map   
1312     */
1313    public static final String RESPONSE_DATA_KEY = "responseData";
1314    /**
1315     * Hosted provider
1316     */
1317    public static final String PROVIDER_HOSTED = "hosted";
1318    /**
1319     * Remote provider 
1320     */
1321    public static final String PROVIDER_REMOTE = "remote";
1322    /**
1323     * Entity descriptor
1324     */
1325    public static final String ENTITY_DESCRIPTOR = "entitydescriptor";
1326    /** 
1327     * Local AuthType
1328     */
1329    public static final String AUTH_LOCAL = "local";
1330    /**
1331     * Remote AuthType
1332     */
1333    public static final String AUTH_REMOTE = "remote";
1334    /**
1335     * Home page file name
1336     */
1337    public static final String HOMEPAGE_URL_VALUE ="/index.html";
1338    /**
1339     * Common login page file name 
1340     */
1341    public static final String COMMON_LOGIN_PAGE_URL_VALUE ="/CommonLogin.jsp";
1342    /**
1343     * JSP file location 
1344     */
1345    public static final String JSP_LOCATION = "/config/federation/default";
1346    /**
1347     * SOAP endpoint value
1348     */
1349    public static final String SOAP_END_POINT_VALUE = "/SOAPReceiver";
1350    /**
1351     * Single logout endpoint value
1352     */
1353    public static final String SLO_VALUE =  "/ProcessLogout";
1354    /**
1355     * Single logout return endpoint value
1356     */
1357    public static final String SLO_RETURN_VALUE = "/ReturnLogout";
1358    /**
1359     * Federation termination endpoint value
1360     */
1361    public static final String TERM_VALUE = "/ProcessTermination";
1362    /**
1363     * Federation termination  return endpoint value
1364     */
1365    public static final String TERM_RETURN_VALUE = "/ReturnTermination";
1366    /**
1367     * Assertion consumer service endpoint value
1368     */
1369    public static final String ASSERTION_CONSUMER_VALUE =
1370        "/AssertionConsumerService";
1371    /**
1372     * Single signon endpoint value
1373     */
1374    public static final String SSO_VALUE =  "/SingleSignOnService";
1375    /**
1376     * Configuration root directory
1377     */
1378    public static final String CONFIG_ROOT = "/config/federation";
1379    /**
1380     * Resource lookup related variables.
1381     */
1382    public static final String CONFIG_DIR = "config";
1383    public static final String FEDERATION_DIR = "federation";
1384    public static final String DEFAULT_DIR = "default";
1385
1386    /**
1387     * AuthenticatonStatement prefix
1388     */
1389    public static final String RESPOND_WITH =
1390        "lib:AuthenticationStatement";
1391    /**
1392     * Federation jsp name
1393     */
1394    public static final String DOFEDERATE_PAGE_NAME = 
1395        "Federate.jsp";
1396    /**
1397     * Logout completed jsp name 
1398     */
1399    public static final String LOGOUTDONE_PAGE_NAME = 
1400        "LogoutDone.jsp";
1401    /**
1402     * Federation completed jsp name 
1403     */
1404    public static final String FEDERATIONDONE_PAGE_NAME =
1405        "FederationDone.jsp";
1406    /**
1407     * Error page
1408     */    
1409    public static final String ERROR_PAGE_NAME = "Error.jsp";
1410    /**
1411     * List of circle of trust page 
1412     */
1413    public static final String LISTOFCOTS_PAGE_NAME = "ListOfCOTs.jsp";
1414    /**
1415     * Federation termination done jsp name 
1416     */
1417    public static final String TERMINATION_DONE_PAGE_NAME = 
1418        "TerminationDone.jsp";
1419    /**
1420     * Name registration done jsp name 
1421     */   
1422    public static final String NAME_REGISTRATION_DONE_PAGE_NAME =
1423        "NameRegistrationDone.jsp";
1424    /**
1425     * Common login jsp name  
1426     */      
1427    public static final String COMMON_LOGIN_PAGE_NAME = 
1428        "CommonLogin.jsp";
1429    /**
1430     * Termination status 
1431     */
1432    public static final String TERMINATION_STATUS ="termStatus";
1433    /**
1434     * Termination status : Sucess
1435     */
1436    public static final String TERMINATION_SUCCESS ="termSuccess";
1437    /**
1438     * Termination status : Failure 
1439     */
1440    public static final String TERMINATION_FAILURE ="termFailure";
1441    /**
1442     * Provider id key is usd in Termination. 
1443     */
1444    public static final String TERMINATION_PROVIDER_ID =
1445        "_liberty_id";
1446    /**
1447     * Failed to get hosted descriptor
1448     */
1449    public static final String FAILED_HOSTED_DESCRIPTOR =
1450        "failed-reading-hosted-descriptor";
1451    /**
1452     * Logout status
1453     */
1454    public static final String LOGOUT_STATUS="logoutStatus";
1455    /**
1456     * Logout status: Success
1457     */
1458    public static final String LOGOUT_SUCCESS="logoutSuccess";
1459    /**
1460     * Logout status: Failure
1461     */
1462    public static final String LOGOUT_FAILURE="logoutFailure";
1463    /**
1464     * Logout status: No Session
1465     */
1466    public static final String LOGOUT_NO_SESSION="noSession";
1467    /**
1468     * boolean: <code>true</code>
1469     */
1470    public static final String TRUE = "true";
1471    /**
1472     * boolean: <code>false</code>
1473     */
1474    public static final String FALSE = "false";
1475    /**
1476     * Optional attribute
1477     */
1478    public static final String OPTIONAL = "optional";
1479    /**
1480     * Provider id key is used in name registration.
1481     */    
1482    public static final String REGISTRATION_PROVIDER_ID="_liberty_id";
1483    /**
1484     * Failed to  create name registration handlde
1485     */
1486    public static final String REGISTRATION_HANDLE_CREATION_FAILED = 
1487        "registration-handle-creation-failed";
1488    /**
1489     * Registration status 
1490     */    
1491    public static final String REGISTRATION_STATUS="regisStatus";
1492    /**
1493     * Registration status : Success
1494     */   
1495    public static final String REGISTRATION_SUCCESS="regisSuccess";
1496    /**
1497     * Registration status : Failure
1498     */   
1499    public static final String REGISTRATION_FAILURE="regisFailure";
1500    /**
1501     * Relay state
1502     */
1503    public static String REGISTRATION_RELAY_STATE = "RELAYSTATE";
1504    /**
1505     * Name Registration profile 
1506     */
1507    public static final String REGISTRATION_IDP_HTTP_PROFILE =
1508        "http://projectliberty.org/profiles/rni-idp-http";
1509    /**
1510     * Name Registration profile 
1511     */
1512    public static final String REGISTRATION_IDP_SOAP_PROFILE = 
1513        "http://projectliberty.org/profiles/rni-idp-soap";
1514    /**
1515     * Name Registration profile 
1516     */
1517    public static final String REGISTRATION_SP_SOAP_PROFILE =
1518        "http://projectliberty.org/profiles/rni-sp-soap";
1519    /**
1520     * Name Registration profile 
1521     */
1522    public static final String REGISTRATION_SP_HTTP_PROFILE = 
1523        "http://projectliberty.org/profiles/rni-sp-http";
1524    /**
1525     * Single signon service 
1526     */
1527    public static final String SSO_URL = "/SingleSignOnService";
1528    /**
1529     * Process registration uri
1530     */
1531    public static final String REGISTRATION_VALUE = "/ProcessRegistration";
1532    /**
1533     * Registration return uri
1534     */
1535    public static final String REGISTRATION_RETURN_VALUE = 
1536        "returnRegistration";
1537    /**
1538     * Do name registration after federation
1539     */    
1540    public static final String REGIS_FEDERATION = "AfterFederation"; 
1541    /**
1542     * Do name registration during single signon process
1543     */  
1544    public static final String REGIS_SSO = "DuringSSO"; 
1545    /**
1546     * Do name registration on demand 
1547     */  
1548    public static final String REGIS_LINK = "STAND_ALONE";
1549    /**
1550     * Signature Id used in termination profile 
1551     */
1552    public static final String TERMINATIONID = "term-Sig-ID";
1553    /**
1554     * Signature Id used in name registration profile 
1555     */
1556    public static final String REGISTRATIONID = "reg-Sig-ID";
1557    /**
1558     * Signature Id used in logout profile 
1559     */
1560    public static final String LOGOUTID = "logout-sig-ID";
1561    /**
1562     * LECP request header 
1563     */
1564    public static final String LECP_CONTENT_TYPE_HEADER = 
1565        "application/vnd.liberty-request+xml";
1566    /**
1567     * LECP response header 
1568     */   
1569    public static final String LECP_RESP_CONTENT_TYPE_HEADER =
1570        "application/vnd.liberty-response+xml";
1571    /**
1572     * LECP indicator parameter 
1573     */   
1574    public static final String LECP_INDICATOR_PARAM = "LECP";
1575    /**
1576     * LECP indicator parameter's default value 
1577     */   
1578    public static final String LECP_INDICATOR_VALUE = "TRUE";
1579    /** 
1580     * Goto this URL if no federation cookie presents.
1581     */
1582    public static final String GOTO_ON_FEDCOOKIE_NO_URL = "gotoOnFedCookieNo"; 
1583    /**
1584     * <code>isPassive</code> 
1585     */
1586    public static final String IS_PASSIVE_QUERY = "isPassive"; 
1587    /**
1588     * Take action if no federation cookie presents.
1589     */
1590    public static final String ACTION_ON_NO_FED_COOKIE = "actionOnNoFedCookie";
1591
1592    /**
1593     * Boot strapping
1594     */
1595    public static final String DISCO_RESOURCE_OFFERING_NAME = 
1596                    "DiscoveryResourceOffering";
1597    /**
1598     * Termination notification profile
1599     */                         
1600    public static final String TERMINATION_NOTIFICATION_PROFILE = 
1601        "http://projectliberty.org/profiles/rel-term-soap";
1602    /**
1603     * IDFF1.2 Name space
1604     */
1605    public static final String LIB_12_NAMESPACE_STRING =
1606        " xmlns:lib=\"urn:liberty:iff:2003-08\"";
1607    /**
1608     * Authentication context Name space
1609     */    
1610    public static final String AC_12_NAMESPACE_STRING=
1611        " xmlns:ac=\"urn:liberty:ac:2003-08\"";
1612    /**
1613     * IDFF1.2 Name space
1614     */    
1615    public static final String FF_12_XML_NS="urn:liberty:iff:2003-08";
1616    /**
1617     * Authentication context Name space urn
1618     */
1619    public static final String AC_12_XML_NS="urn:liberty:ac:2003-08";
1620    /**
1621     * IDFF 1.2 saml protocol minor version
1622     */
1623    public static final int FF_12_SAML_PROTOCOL_MINOR_VERSION = 1;
1624    /**
1625     * IDFF 1.1 saml protocol minor version
1626     */ 
1627    public static final int FF_11_SAML_PROTOCOL_MINOR_VERSION = 0;
1628    /**
1629     * IDFF 1.2 saml assertion minor version (POST profile)
1630     */   
1631    public static final int FF_12_POST_ASSERTION_MINOR_VERSION = 2;
1632    /**
1633     * IDFF 1.2 saml assertion minor version (Artifact profile)
1634     */   
1635    public static final int FF_12_ART_ASSERTION_MINOR_VERSION = 2;
1636    /**
1637     * IDFF 1.1 saml assertion minor version (Artifact profile)
1638     */  
1639    public static final int FF_11_ASSERTION_MINOR_VERSION = 0;
1640    /**
1641     * IDFF 1.2 saml protocol minor version
1642     */ 
1643    public static final int FF_12_PROTOCOL_MINOR_VERSION = 2;
1644    /**
1645     * IDFF 1.1 saml protocol minor version
1646     */ 
1647    public static final int FF_11_PROTOCOL_MINOR_VERSION = 0;
1648    /**
1649     * Name Identifier format URI 
1650     */
1651    public static final String NI_FEDERATED_FORMAT_URI =
1652        "urn:liberty:iff:nameid:federated";
1653    /**
1654     * Name Identifier format URI 
1655     */
1656    public static final String NI_ONETIME_FORMAT_URI =
1657        "urn:liberty:iff:nameid:one-time";
1658    /**
1659     * Name Identifier format URI 
1660     */
1661    public static final String NI_ENCRYPTED_FORMAT_URI =
1662        "urn:liberty:iff:nameid:encrypted";
1663    /**
1664     * Discovery Resource Offering
1665     */    
1666    public static final String DISCOVERY_RESOURCE_OFFERING =
1667        "DiscoveryResourceOffering";
1668    /**
1669     * Assertion ID
1670     */
1671    public static final String ASSERTION_ID="AssertionID"; 
1672    /**
1673     * Request ID
1674     */
1675    public static final String REQUEST_ID="RequestID"; 
1676    /**
1677     * Response ID
1678     */
1679    public static final String RESPONSE_ID="ResponseID";
1680    /**
1681     * ID 
1682     */
1683    public static final String ID="id";
1684    
1685    /**
1686     * NameIDPolicy Element name
1687     */
1688    public static final String NAMEID_POLICY_ELEMENT="NameIDPolicy";
1689
1690    /**
1691     * NameIDPolicy configuration attribute name
1692     */
1693    public static final String NAMEID_POLICY="nameIDPolicy";
1694
1695    /**
1696     * Key is used for signing.
1697     */
1698    public static final String KEYTYPE_SIGNING="signing";
1699    /**
1700     * Key is used for encryption.
1701     */
1702    public static final String KEYTYPE_ENCRYPTION="encryption";
1703    /**
1704     * <code>NameIDPolicy</code> value type
1705     */
1706    public static final String NAME_ID_POLICY_NONE = "none";
1707     /**
1708     * <code>NameIDPolicy</code> value type
1709     */
1710    public static final String NAME_ID_POLICY_ONETIME = "onetime";
1711    /**
1712     * <code>NameIDPolicy</code> value type
1713     */
1714    public static final String NAME_ID_POLICY_FEDERATED = "federated";
1715    /**
1716     * <code>NameIDPolicy</code> value type
1717     */
1718    public static final String NAME_ID_POLICY_ANY = "any";
1719    /**
1720     * Idp finder URL
1721     */
1722    public static final String IDP_FINDER_URL ="/idpfinder";
1723    /**
1724     * XPATH for Assertion Artifact 
1725     */
1726    public static final String ARTIFACT_XPATH = 
1727       "/Envelope/Body/Request/AssertionArtifact";
1728    /**
1729     * Affiliation id for Affiliation descriptor
1730     */   
1731    public static final String AFFILIATED = "Affiliated";
1732    /**
1733     * Auth Federation attribute 
1734     */
1735    public static final String AUTO_FED_ATTR = "AutoFederateAttribute";
1736    /**
1737     * Provider id separator 
1738     */
1739    public static final String PROVIDER_ID_SEPARATOR = "|";
1740    /**
1741     * SP provider suffix 
1742     */
1743    public static final String SP_PROVIDER_SFX =
1744        PROVIDER_ID_SEPARATOR + "SP";
1745    /**
1746     * IDP provider suffix 
1747     */ 
1748    public static final String IDP_PROVIDER_SFX = 
1749        PROVIDER_ID_SEPARATOR + "IDP";
1750    /**
1751     * Used in local configuration descriptor to track the version
1752     */
1753    public static final int PROVIDER_CONFIG_70_VERSION = 30;
1754    /**
1755     * Used in local configuration descriptor to track the version
1756     */
1757    public static final int PROVIDER_CONFIG_71_VERSION = 40;
1758    /**
1759     * Anonymous Onetime federation
1760     */
1761    public static final String ANONYMOUS_ONETIME = "anonymousOnetime";
1762    /**
1763     * Parameter for status code. Used in FederationSPAdapter.
1764     */
1765    public static final String STATUS_CODE = "StatusCode";
1766    /**
1767     * Parameter for failure code. Used in FederationSPAdapter.
1768     */
1769    public static final String FAILURE_CODE = "FailureCode";
1770
1771    /**
1772     * Used by <code>FSUserProvider</code> to pass in termination request
1773     * through env map.
1774     */
1775    public static final String FS_USER_PROVIDER_ENV_TERMINATION_KEY =
1776                "FSFederationTerminationNotification";
1777    /**
1778     * Used by <code>FSUserProvider</code> to pass in authn response
1779     * through env map.
1780     */
1781    public static final String FS_USER_PROVIDER_ENV_AUTHNRESPONSE_KEY =
1782                "FSAuthnResponse";
1783    /**
1784     * Used by <code>FSUserProvider</code> to pass in logout request
1785     * through env map.
1786     */
1787    public static final String FS_USER_PROVIDER_ENV_LOGOUT_KEY =
1788                "FSLogoutNotification";
1789    /**
1790     * Used by <code>FSUserProvider</code> to pass in registration request
1791     * through env map.
1792     */
1793    public static final String FS_USER_PROVIDER_ENV_REGISTRATION_KEY =
1794                "FSNameRegistrationRequest";
1795    /**
1796     * Used by <code>FSUserProvider</code> to pass in saml response
1797     * through env map.
1798     */
1799    public static final String FS_USER_PROVIDER_ENV_FSRESPONSE_KEY =
1800                "FSResponse";
1801    /**
1802     * Used by <code>FSUserProvider</code> to pass in name ID mapping request
1803     * through env map.
1804     */
1805    public static final String FS_USER_PROVIDER_ENV_NAMEMAPPING_KEY =
1806                "FSNameIdentifierMappingRequest";
1807
1808    /**
1809     * Default <code>FSUserProvider</code> implemeation class.
1810     */
1811    public static final String FS_USER_PROVIDER_DEFAULT =
1812                "com.sun.identity.federation.accountmgmt.DefaultFSUserProvider";
1813    /**
1814     * ID-FF component name used in obtaining provider.
1815     */
1816    public static final String IDFF = "IDFF";
1817
1818    /**
1819     * Key name for the federation attribute mapper.
1820     */
1821    public static final String FS_ATTRIBUTE_MAPPER =
1822        "com.sun.identity.liberty.fed.attributemapper";
1823                                                                              
1824    /**
1825     * Key name for the webservices security attribute mapper.
1826     */
1827    public static final String WS_ATTRIBUTE_PLUGIN =
1828        "com.sun.identity.liberty.ws.attributeplugin";
1829    
1830    /**
1831     * Assertion
1832     */
1833    public static final String ASSERTION = "Assertion";
1834
1835    /**
1836     * Major Version
1837     */
1838    public static final String MAJOR_VERSION="MajorVersion";
1839
1840    /**
1841     * Minor Version
1842     */
1843    public static final String MINOR_VERSION="MinorVersion";
1844
1845    /**
1846     * Issuer
1847     */
1848    public static final String ISSUER="Issuer";
1849    
1850    /**
1851     * InResponseTo
1852     */
1853    public static final String IN_RESPONSE_TO="InResponseTo";
1854    
1855    /**
1856     * IssueInstant
1857     */
1858    public static final String ISSUE_INSTANT="IssueInstant";
1859
1860    /**
1861     * Conditions
1862     */
1863    public static final String CONDITIONS="Conditions";
1864    
1865    /**
1866     * Advice
1867     */
1868    public static final String ADVICE="Advice";
1869    
1870    /**
1871     * AuthenticationStatement
1872     */
1873    public static final String AUTHENTICATIONSTATEMENT 
1874                                      = "AuthenticationStatement";
1875    /**
1876     * AuthorizationDecisionStatement
1877     */
1878    public static final String AUTHZDECISIONSTATEMENT =
1879                                     "AuthorizationDecisionStatement";
1880
1881    /**
1882     * AttributeStatement
1883     */
1884    public static final String ATTRIBUTESTATEMENT = "AttributeStatement";
1885
1886    /**
1887     * Signature
1888     */
1889    public static final String SIGNATURE = "Signature";
1890    
1891    /**
1892     * AssertionType
1893     */
1894    public static final String ASSERTION_TYPE = "AssertionType";
1895
1896    /**
1897     * xsi type
1898     */
1899    public static final String XSI_TYPE = "xsi:type";
1900    
1901    /**
1902     * Authentication Method
1903     */
1904    public static final String AUTHENTICATION_METHOD="AuthenticationMethod";   
1905    
1906    /**
1907     * Authentication Instant
1908     */
1909    public static final String AUTHENTICATION_INSTANT="AuthenticationInstant";
1910
1911    /**
1912     * Authority Binding
1913     */
1914    public static final String AUTHORITY_BINDING= "AuthorityBinding";   
1915    
1916    /**
1917     * SubjectLocality
1918     */
1919    public static final String SUBJECT_LOCALITY="SubjectLocality";
1920
1921    
1922    /**
1923     * ReauthenticationOnOrAfter
1924     */
1925    public static final String REAUTH_ON_OR_AFTER="ReauthenticateOnOrAfter";
1926
1927    /**
1928     * Authentication Subject
1929     */
1930    public static final String AUTH_SUBJECT="Subject";
1931
1932    /**
1933     * Authentication Statement Type
1934     */
1935    public static final String AUTHENTICATIONSTATEMENT_TYPE
1936            = "AuthenticationStatementType";
1937
1938    /**
1939     * Authentication Request 
1940     */
1941    public static final String AUTHN_REQUEST="AuthnRequest";
1942
1943    /**
1944     * RespondWith
1945     */
1946    public static final String RESPONDWITH="RespondWith";
1947
1948    /**
1949     * Consent
1950     */
1951    public static final String CONSENT="consent";
1952    
1953    /**
1954     * Provider Identifier
1955     */
1956    public static final String PROVIDER_ID="ProviderID";   
1957    
1958    /**
1959     * Federate
1960     */
1961    public static final String FEDERATE ="Federate";
1962    
1963    /**
1964     * Major Version Value
1965     */
1966       
1967    public static final String ONE ="1";
1968
1969    /**
1970     * ProtocolProfile
1971     */
1972    public static final String PROTOCOL_PROFILE="ProtocolProfile";
1973    
1974    /**
1975     * Requested AuthnContext
1976     */
1977    
1978    public static final String REQUEST_AUTHN_CONTEXT="RequestAuthnContext";
1979    
1980    /**
1981     * Affliation Identifier
1982     */
1983    public static final String  AFFILIATIONID = "AffiliationID";
1984    
1985    /**
1986     * Extension
1987     */
1988    public static final String  EXTENSION = "Extension";
1989    
1990    /**
1991     * Scoping
1992     */
1993    public static final String  SCOPING = "Scoping";
1994 
1995    /**
1996     * Assertion Consumer Service Identifier
1997     */
1998    public static final String ASSERTION_CONSUMER_SVC_ID=
1999            "AssertionConsumerServiceID";
2000    
2001    /**
2002     * Authenticaion Context Comparison
2003     */
2004    public static final String AUTHN_CONTEXT_COMPARISON=
2005            "AuthnContextComparison";
2006
2007    /**
2008     * RelayState
2009     */
2010    public static final String RELAY_STATE ="RelayState";
2011    
2012    /**
2013     * NameIdentifier Mapping Request
2014     */
2015    public static final String NAMEID_MAPPING_REQUEST =
2016            "NameIdentifierMappingRequest";
2017    
2018    /**
2019     * NameIdentifier Mapping Response
2020     */
2021    public static final String NAMEID_MAPPING_RESPONSE =
2022            "NameIdentifierMappingResponse";
2023    
2024    /**
2025     * Target Name Space
2026     */
2027    public static final String TARGET_NAME_SPACE="TargetNamespace";
2028    
2029    /**
2030     * XML Prefix String
2031     */
2032    public static final String XML_PREFIX="<?xml version=\"1.0\" encoding=\"";
2033    
2034    /**
2035     * Name Identifier
2036     */
2037    public static final String NAME_IDENTIFIER="NameIdentifier";
2038    
2039    /**
2040     * Federation Termination Notification
2041     */
2042    public static final String FEDERATION_TERMINATION_NOTICFICATION =
2043                                            "FederationTerminationNotification";
2044    
2045    /**
2046     * Name 
2047     */
2048    public static final String NAME = "Name";
2049    
2050    /** 
2051     * Name Qualifier
2052     */
2053    
2054    public static final String NAME_QUALIFIER = "NameQualifier";
2055    
2056    /**
2057     * NameFormat
2058     */
2059    public static final String NAME_FORMAT = "NameFormat";
2060    
2061    /**
2062     * GetComplete
2063     */
2064    public static final String GET_COMPLETE = "GetComplete";
2065    
2066    /**
2067     * IDP Entries 
2068     */
2069    public static final String IDP_ENTRIES = "IDPEntries";
2070    
2071    /**
2072     * LogoutRequest
2073     */
2074    public static final String LOGOUT_REQUEST = "LogoutRequest";
2075    
2076    /**
2077     * LogoutResponse
2078     */
2079     
2080    public static final String LOGOUT_RESPONSE = "LogoutResponse";
2081    
2082    /**
2083     * NotOnOrAfter
2084     */
2085    public static final String NOT_ON_OR_AFTER = "NotOnOrAfter";
2086    
2087    /**
2088     * Value
2089     */
2090    public static final String VALUE = "Value";
2091
2092    /**
2093     * IDPList
2094     */
2095    public static final String IDP_LIST="IDPList";
2096    
2097    /**
2098     * Authentication Request Envelope
2099     */
2100    public static final String AUTHN_REQUEST_ENVELOPE="AuthnRequestEnvelope";
2101    
2102    /**
2103     * Assertion Consumer Service URL
2104     */
2105    public static final String ASSERTION_CONSUMER_SERVICE_URL=
2106            "AssertionConsumerServiceURL";
2107
2108    /**
2109     * Authentication Response
2110     */
2111    public static final String AUTHN_RESPONSE="AuthnResponse";
2112    
2113    /**
2114     * Authentication Response Envelope
2115     */
2116    public static final String AUTHN_RESPONSE_ENVELOPE
2117                                        ="AuthnResponseEnvelope";  
2118    
2119    /**
2120     * Recipient
2121     */
2122    public static final String RECIPIENT = "Recipient";
2123
2124    /**
2125     * Status
2126     */
2127    public static final String STATUS = "Status";
2128    
2129    /**
2130     * ProviderName
2131     */
2132    public static final String PROVIDER_NAME="ProviderName";
2133    
2134    /**
2135     * IsPassive Element Name
2136     */
2137    public String IS_PASSIVE_ELEM = "IsPassive"; 
2138
2139    /**
2140     * Force Authentication Element Name
2141     */
2142    public String FORCE_AUTHN_ELEM = "ForceAuthn";
2143
2144
2145    /**
2146     * Provider Status
2147     */
2148    public String PROVIDER_STATUS = "providerStatus";
2149
2150    /**
2151     * Signing Certificate Alias 
2152     */ 
2153    public String SIGNING_CERT_ALIAS = "signingCertAlias";
2154
2155    /**
2156     * Encryption Certificate Alias
2157     */
2158    public static final String ENCRYPTION_CERT_ALIAS = "encryptionCertAlias";
2159
2160    /**
2161     * Enable IDP Proxy 
2162     */ 
2163    public String ENABLE_IDP_PROXY = "enableIDPProxy";
2164
2165    /**
2166     * IDP Proxy Name List 
2167     */ 
2168    public String IDP_PROXY_LIST = "idpProxyList";
2169
2170    /**
2171     * IDP Proxy Count 
2172     */ 
2173    public String IDP_PROXY_COUNT = "idpProxyCount";
2174
2175    /**
2176     * Use Introduction for IDP Proxy  
2177     */ 
2178    public String USE_INTRODUCTION_FOR_IDP_PROXY = "useIntroductionForIDPProxy";
2179
2180    /**
2181     * Enable Name Identifier Encryption 
2182     */ 
2183    public String ENABLE_NAMEID_ENCRYPTION = "enableNameIDEncryption";
2184
2185    /**
2186     * Generate Bootstrapping in Single Sign-on Assertion 
2187     */ 
2188    public String GENERATE_BOOTSTRAPPING = "generateBootstrapping";
2189
2190    /**
2191     * Responds with 
2192     */ 
2193    public String RESPONDS_WITH = "respondsWith";
2194
2195    /**
2196     * Name Identifier Implementation Class 
2197     */ 
2198    public String NAMEID_IMPL_CLASS = "nameIDImplementationClass";
2199
2200    /**
2201     * Authentication Type (remote/local)
2202     */ 
2203    public String AUTH_TYPE = "authType";
2204
2205    /**
2206     * Registration Done URL 
2207     */ 
2208    public String REGISTRATION_DONE_URL = "registrationDoneURL";
2209
2210    /**
2211     * Termination Done URL 
2212     */ 
2213    public String TERMINATION_DONE_URL = "terminationDoneURL";
2214
2215    /**
2216     * Logout Done URL 
2217     */ 
2218    public String LOGOUT_DONE_URL = "logoutDoneURL";
2219
2220    /**
2221     * Federation Done URL 
2222     */ 
2223    public String FEDERATION_DONE_URL = "federationDoneURL";
2224
2225    /**
2226     * Single Sign-on failure redirection URL
2227     */ 
2228    public String SSO_FAILURE_REDIRECT_URL = "ssoFailureRedirectURL";
2229
2230    /**
2231     * Error page redirection URL
2232     */ 
2233    public String ERROR_PAGE_URL = "errorPageURL";
2234
2235    /**
2236     * List of COTs page URL.
2237     */
2238    public String LISTOFCOTS_PAGE_URL = "listOfCOTsPageURL";
2239
2240    /**
2241     * Do federate page URL.
2242     */
2243    public String DOFEDERATE_PAGE_URL = "doFederatePageURL";
2244
2245    /**
2246     * Implementation class for SPI <code>FSUserProvider</code>.
2247     */
2248    public String FS_USER_PROVIDER_CLASS = "userProviderClass";
2249
2250    /**
2251     * Provider Home page URL.
2252     */ 
2253    public String PROVIDER_HOME_PAGE_URL = "providerHomePageURL";
2254
2255    /**
2256     * Assertion valid interval 
2257     */ 
2258    public String ASSERTION_INTERVAL = "assertionInterval"; 
2259
2260    /**
2261     * Internal Thread Cleanup Internal 
2262     */ 
2263    public String CLEANUP_INTERVAL = "cleanupInterval";
2264
2265    /**
2266     * Artifact Timeout Interval 
2267     */ 
2268    public String ARTIFACT_TIMEOUT = "artifactTimeout";
2269
2270    /**
2271     * Maximum Assertion Limit 
2272     */ 
2273    public String ASSERTION_LIMIT = "assertionLimit";
2274
2275    /**
2276     * Assertion Issuer 
2277     */ 
2278    public String ASSERTION_ISSUER = "assertionIssuer";
2279
2280    /**
2281     * Attribute Plugin 
2282     */ 
2283    public String ATTRIBUTE_PLUGIN = "attributePlugin";
2284
2285    /**
2286     * IDP Attribute Map 
2287     */ 
2288    public String IDP_ATTRIBUTE_MAP = "idpAttributeMap";
2289
2290    /**
2291     * Whether to initialize registration after sso/federation.
2292     * Currently, it is not used.
2293     */
2294    public String ENABLE_REGISTRATION_AFTER_SSO = "enableRegistrationAfterSSO";
2295
2296    /**
2297     * Default AuthnContext  
2298     */ 
2299    public String DEFAULT_AUTHNCONTEXT = "defaultAuthnContext";
2300
2301    /**
2302     * Default AuthnContext Password
2303     */ 
2304    public String DEFAULT_AUTHNCONTEXT_PASSWORD = 
2305        "http://www.projectliberty.org/schemas/authctx/classes/Password";
2306
2307    /**
2308     * IDP AuthnContext Mapping 
2309     */ 
2310    public String IDP_AUTHNCONTEXT_MAPPING = "idpAuthnContextMapping";
2311
2312    /**
2313     * Enable Auto-Federation 
2314     */ 
2315    public String ENABLE_AUTO_FEDERATION = "enableAutoFederation";
2316
2317    /**
2318     * Auto-Federation Attribute 
2319     */ 
2320    public String AUTO_FEDERATION_ATTRIBUTE = "autoFederationAttribute";
2321
2322    /**
2323     * Attribute Mapper Class 
2324     */ 
2325    public String ATTRIBUTE_MAPPER_CLASS = "attributeMapperClass";
2326
2327    /**
2328     * Circle-of-trust list 
2329     */ 
2330    public String COT_LIST = COTConstants.COT_LIST;
2331
2332    /**
2333     * Enable Affiliation 
2334     */ 
2335    public String ENABLE_AFFILIATION = "enableAffiliation";
2336
2337    /**
2338     * Force Authentication at IDP 
2339     */ 
2340    public String FORCE_AUTHN = "forceAuthn";
2341
2342    /**
2343     * Request IDP to be Passive 
2344     */ 
2345    public String IS_PASSIVE = "isPassive";
2346
2347    /**
2348     * Service Provider AuthnContext Mapping 
2349     */ 
2350    public String SP_AUTHNCONTEXT_MAPPING = "spAuthnContextMapping";
2351
2352    /**
2353     * Service Provider Attribute Map 
2354     */ 
2355    public String SP_ATTRIBUTE_MAP = "spAttributeMap";
2356
2357    /**
2358     * Federation Service Provider Adapter 
2359     */ 
2360    public String FEDERATION_SP_ADAPTER = "federationSPAdapter";
2361
2362    /**
2363     * Environment variables for Federation Service Provider Adapter
2364     */ 
2365    public String FEDERATION_SP_ADAPTER_ENV = "federationSPAdapterEnv";
2366
2367    /**
2368     * Service Provider's supported profiles for single sign on.
2369     * First one is the default one.
2370     */
2371    public String SUPPORTED_SSO_PROFILE = "supportedSSOProfile";
2372
2373    /**
2374     * Constants for authn context mapping values.
2375     */
2376    public String ATTRIBUTE_SEPARATOR = "|";
2377    public String KEY_VALUE_SEPARATOR = "=";
2378    public String AUTH_CONTEXT_NAME = "context";
2379    public String MODULE_INDICATOR_KEY = "key";
2380    public String MODULE_INDICATOR_VALUE = "value";
2381    public String LEVEL = "level";
2382
2383    /**
2384     * Provider description.
2385     */
2386    public String PROVIDER_DESCRIPTION = "providerDescription";
2387
2388    /**
2389     * Service Provider's default relay state.
2390     */
2391    public String SP_DEFAULT_RELAY_STATE =
2392        "/samples/idff/sp/index.jsp";
2393    
2394    /**
2395     * boolean to indicate if this is SOAP profile
2396     */
2397    public String IS_SOAP_PROFILE = "isSOAPProfile";
2398
2399    /**
2400     * root realm.
2401     */
2402    public String ROOT_REALM = "/";
2403
2404    /**
2405     * SAMLRequest query parameter name
2406     */
2407    public String SAML_REQUEST = "SAMLRequest";
2408
2409    /**
2410     * SAMLResponse query parameter name
2411     */
2412    public String SAML_RESPONSE = "SAMLResponse";
2413
2414    /**
2415     * Parameter name for SAML artifact in http request.
2416     */
2417    public String SAML_ART = "SAMLart";
2418
2419}
2420




























































Copyright © 2010-2017, ForgeRock All Rights Reserved.