IFSConstants.java revision f948ca04a28ccfeed9633bf4b0fb0d2c59c37478
/**
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
*
* Copyright (c) 2006 Sun Microsystems Inc. All Rights Reserved
*
* The contents of this file are subject to the terms
* of the Common Development and Distribution License
* (the License). You may not use this file except in
* compliance with the License.
*
* You can obtain a copy of the License at
* See the License for the specific language governing
* permission and limitations under the License.
*
* When distributing Covered Code, include this CDDL
* Header Notice in each file and include the License file
* at opensso/legal/CDDLv1.0.txt.
* If applicable, add the following below the CDDL Header,
* with the fields enclosed by brackets [] replaced by
* your own identifying information:
* "Portions Copyrighted [year] [name of copyright owner]"
*
* $Id: IFSConstants.java,v 1.12 2008/08/29 04:57:15 exu Exp $
* Portions Copyrights 2014 ForgeRock AS
*/
/**
* This interface represents a collection of common constants used by
* the classes in Federation Service.
* @supported.all.api
* @deprecated since 12.0.0
*/
public interface IFSConstants {
/**
* HTTPS URL prefix
*/
/**
* Dot character
*/
public static final char DOT = '.';
/**
* Federation error
*/
/**
* Federation remark
*/
/**
* Provider or entity status
*/
/**
* Provider or entity status
*/
/**
* IDFF 1.1 meta version
*/
/**
* IDFF 1.2 meta version
*/
/**
* Affiliation descriptor
*/
/**
* Provider descriptor
*/
/**
* SOAP binding
*/
/**
* HTTP redirect
*/
/**
* HTTP redirect
*/
/**
* PASSIVE mode
*/
/**
* Local login page
*/
/**
* Common login page
*/
/**
* Provider acts SP and IDP role
*/
/**
* Supported protocol type
*/
public static final String ALLOWED_PROTOCOL_KEY =
"com.sun.identity.federation.allowedProtocol";
/**
* Specify keystore location in config file
*/
"com.sun.identity.saml.xmlsig.keystore";
/**
* Specify keystore password file in config file
*/
public static final String STORE_PASS =
"com.sun.identity.saml.xmlsig.storepass";
/**
* Specify private key password in config file
*/
"com.sun.identity.saml.xmlsig.keypass";
/**
* Specify login URL IDP will redirect to when there is no valid session
*/
public static final String IDP_LOGIN_URL =
"com.sun.identity.federation.services.idpLoginURL";
/**
* Internal error
*/
public static final int LOCAL_NAME_IDENTIFIER = 0;
public static final int REMOTE_NAME_IDENTIFIER = 1;
// **********************************
// these are keys whose values store in "libIDFF.properties" file.
// **********************************
/**
* Account management: hosted descriptor config is null.
*/
public static final String NULL_HOSTED_CONFIG =
"actmgmt-hosted-config-is-null";
/**
* Account management: hosted entity id is null.
*/
public static final String NULL_PROVIDER_ID =
"actmgmt-provider-id-is-null";
/**
* Account management: meta alias is null.
*/
public static final String NULL_META_ALIAS =
"actmgmt-meta-alias-is-null";
/**
* Account management: User DN is null.
*/
public static final String NULL_USER_DN =
"actmgmt-user-dn-is-null";
/**
* Account management: Opaque handle is null.
*/
"actmgmt-name-is-null";
/**
* Account management: Namespace is null.
*/
public static final String NULL_NAME_SPACE =
"actmgmt-name-space-is-null";
/**
* Account management: Name identifier is null.
*/
public static final String NULL_NAME_IDENTIFIER =
"actmgmt-name-identifier-is-null";
/**
* Account management: FedInfo is null.
*/
public static final String NULL_FED_INFO_OBJECT =
"actmgmt-account-fed-info-object-is-null";
/**
* Account management: FedInfo key is null.
*/
public static final String NULL_FED_INFO_KEY_OBJECT =
"actmgmt-account-fed-info-key-object-is-null";
/**
* Account management: Account federation info is
* modified in the directory.
*/
public static final String INVALID_ACT_FED_INFO_IN_IDS =
"actmgmt-fed-info-modified-in-ids";
/**
* Account management: Invalid name identifier type.
*/
public static final String INVALID_NAME_IDENTIFIER_TYPE =
"actmgmt-nameIdentifierType-invalid";
/**
* Account management: Account federation info not found.
*/
public static final String ACT_FED_INFO_NOT_FOUND =
"actmgmt-fed-info-not-found";
/**
* Account management: Multiple UIDs matched.
*/
public static final String MULTIPLE_UID_MATCHED =
"actmgmt-multiple-uid-matched";
/**
* Account management: UID does not match.
*/
public static final String UID_NOT_MATCHED =
"actmgmt-uid-not-matched";
/**
* Account management: User does not match.
*/
public static final String USER_NOT_FOUND =
"actmgmt-user-not-found";
/**
* Maximum number of Assertion
*/
public static final int ASSERTION_MAX_NUMBER_DEFAULT = 10;
/**
* Cleanup time interval
*/
public static final int CLEANUP_INTERVAL_DEFAULT = 180;
/**
* User is used in basic authentication.
*/
/**
* Password for the user (basic authentication).
*/
/**
* Basic authentication
*/
/**
* SSL with basic authentication
*/
/**
* No authentication enforced
*/
/**
* SSL
*/
/**
* Status code for saml protocol success
*/
/**
* Status code for saml protocol success without prefix
*/
/**
* http protocol
*/
/**
* https protocol
*/
/**
* Post AuthnResponse parameter
*/
/**
* Post AuthnRequest parameter
*/
/**
* Authentication indicator parameter
*/
/**
* Default value for Authentication indicator parameter
*/
/**
* Attribute name in the session
*/
/**
* Maximum length of URL
*/
public static final int URL_MAX_LENGTH = 1256;
/**
* Error in metadata setting.
*/
public static final String METADATA_ERROR =
"metadata-error-check";
/**
* Contact system administrator to report this problem.
*/
/**
* Federation access log file name
*/
/**
* Federation error log file name
*/
/**
* Status code: <code>samlp:Success</code>
*/
/**
* Status code: <code>samlp:Responder</code>
*/
/**
* Status code: <code>samlp:Requester</code>
*/
/**
* Status code: <code>samlp:VersionMismatch</code>
*/
/**
* Liberty unsupported: <code>lib:Unsupported</code>
*/
/**
* Liberty failure: <code>lib:Failure</code>
*/
/**
* Liberty federation does not exist:
* <code>lib:FederationDoesNotExist</code>
*/
public static final String FEDERATION_NOT_EXISTS_STATUS =
"lib:FederationDoesNotExist";
/**
* Register NameIdentifier Request
*/
public static final String NAME_REGISTRATION_REQUEST =
"RegisterNameIdentifierRequest";
/**
* Register NameIdentifier Response
*/
public static final String NAME_REGISTRATION_RESPONSE =
"RegisterNameIdentifierResponse";
/**
* <code>lib</code> tag
*/
/**
* <code>yes</code>
*/
/**
* <code>no</code>
*/
/**
* SP role
*/
/**
* IDP role
*/
/**
* SP and IDP role
*/
/**
* Preferred cookie seperator
*/
/**
* Session cookie
*/
/**
* Persistent cookie
*/
/**
* Persistent cookie expiration, by default 365 days
*/
public static final int PERSISTENT_COOKIE_AGE = 31536000;
/**
* Session cookie expiration
*/
public static final int SESSION_COOKIE_AGE = -1;
/**
* Repeat termination flag
*/
/**
* Repeat logout flag
*/
/**
* Partner session
*/
/**
* Session index
*/
/**
* Provider
*/
/**
* Missing value for security key.
*/
/**
* Provider ID not in request and not able to reset preferred IDP
*/
public static final String INTRODUCTION_NO_PROVIDER_ID =
"introduction-no-provider-id";
/**
* Redirect URL not specified.
*/
public static final String INTRODUCTION_NO_REDIRECT_URL =
"introduction-no-redirect-url";
/**
* Invalid Redirect URL scheme.
*/
public static final String INTRODUCTION_INVALID_REDIRECT_URL_SCHEME =
"invalid-redirect-url-scheme";
/**
* Preferred IDP Cookie not found.
*/
public static final String INTRODUCTION_COOKIE_NOT_FOUND =
"preferred-idp-cookie-not-found";
/**
*Invalid Property file. No providerid code.
*/
public static final String INTRODUCTION_PROPERTY_FILE_PROVIDER_INVALID =
"introduction-invalid-providerid-property-file";
/**
* Invalid Property File
*/
public static final String FEDERATION_PROPERTY_FILE_INVALID =
"federation-invalid-property-file";
/**
* Failed to get Meta Manager Instance.
*/
public static final String FEDERATION_FAILED_META_INSTANCE =
"federation-failed-meta-instance";
/**
* Failed to get Account Manager Instance.
*/
public static final String FEDERATION_FAILED_ACCOUNT_INSTANCE =
"federation-failed-account-instance";
/**
* Redirection failed. Cannot process further
*/
public static final String FEDERATION_REDIRECT_FAILED =
"federation-redirection-failed";
/**
*/
public static final String LOGOUT_INVALID_HANDLER =
"logout-invalid-handler";
/**
* Logout failed. Manager instance not available.
*/
public static final String LOGOUT_FAILED_MANAGER =
"logout-failed-manager";
/**
* Logout failed to redirect due to incorrect URL.
*/
public static final String LOGOUT_REDIRECT_FAILED =
"logout-redirect-failed";
/**
* Logout failed due to invalid session.
* Redirect to authentication.
*/
public static final String LOGOUT_TOKEN_INVALID =
"logout-token-invalid";
/**
* Single logout failed.
*/
/**
* Logout request not formed properly. Cannot proceed.
*/
public static final String LOGOUT_REQUEST_IMPROPER =
"logout-request-improper";
/**
* Creation of logout request failed.
*/
public static final String LOGOUT_REQUEST_CREATION =
"logout-request-creation-failed";
/**
* Failed to process Logout request.
*/
public static final String LOGOUT_REQUEST_PROCESSING_FAILED =
"logout-request-processing-failed";
/**
* Logout request does not have provider specified properly.
* Cannot process request.
*/
public static final String LOGOUT_REQUEST_NO_PROVIDER =
"logout-request-no-provider";
/**
* Unable to find cert alias. Cannot sign or verify request.
*/
/**
* Unable to find certificate. Cannot sign or verify request.
*/
/**
* Request does not contain proper provider ID.
*/
/**
* Failed to create SPProvidedNameIdentifier.
*/
public static final String REGISTRATION_FAILED_SP_NAME_IDENTIFIER =
"registration-failed-sp-name-identifier";
/**
* Error in processing Name Registration at IDP.
*/
public static final String REGISTRATION_FAILED_REMOTE =
"registration-failed-remote";
/**
* Error in sending Name Registration at IDP.
*/
public static final String REGISTRATION_FAILED_SEND_REMOTE =
"registration-failed-send-remote";
/**
* Error in processing Name Registration at SP.
*/
public static final String REGISTRATION_FAILED_LOCAL =
"registration-failed-local";
/**
* Successful processing of Name Registration at IDP.
*/
public static final String REGISTRATION_SUCCESS_REMOTE =
"registration-success-remote";
/**
* Successful processing of Name Registration at SP.
*/
public static final String REGISTRATION_SUCCESS_LOCAL =
"registration-success-local";
/**
* Failed to create Name Registration request.
*/
public static final String REGISTRATION_REQUEST_CREATION_FAILED =
"registration-request-creation-failed";
/**
* LECP header name
*/
/**
* WML header value
*/
/**
* WML profile
*/
public static final String WML_PROFILE =
/**
* Exception in Federation Termination. Unknown Error.
*/
public static final String TERMINATION_EXCEPTION =
"termination-exception-unknown";
/**
* Account federation for user with provider does not exist.
*/
public static final String TERMINATION_INVALID_FEDERATION =
"termination-invalid-federation";
/**
* Termination cannot proceed. Provider not found.
*/
public static final String TERMINATION_NO_PROVIDER =
"termination-no-provider";
/**
* Invalid Termination Handler
*/
public static final String TERMINATION_INVALID_HANDLER =
"termination-handle-invalid";
/**
* Federation Termination failed during processTerminationRequest.
*/
public static final String TERMINATION_REQUEST_PROCESSING_FAILED =
"termination-request-processing-failed";
/**
* Request not proper. Cannot proceed federation termination.
*/
public static final String TERMINATION_REQUEST_IMPROPER =
"termination-request-improper";
/**
* Request creation failed. Cannot proceed with federation ]
* termination.
*/
public static final String TERMINATION_REQUEST_CREATION =
"termination-request-creation-failed";
/**
* Federation Termination failed at remote provider.
*/
public static final String TERMINATION_REMOTE_FAILED =
"termination-failed-remotely";
/**
* Federation Termination failed locally. Cannot update account.
*/
public static final String TERMINATION_LOCAL_FAILED =
"termination-failed-locally";
/**
* Federation Termination succeeded locally. User account updated.
*/
public static final String TERMINATION_LOCAL_SUCCEEDED =
"termination-succeeded-locally";
/**
* Failed to get termination handler.
*/
public static final String TERMINATION_HANDLE_CREATION_FAILED =
"termination-handle-creation-failed";
/**
* Failed in sending SOAP request to remote end.
*/
public static final String TERMINATION_SOAP_SEND_FAILED =
"termination-soap-send-failed";
/**
* Invalid Federation Termination Service Return URL.
*/
public static final String TERMINATION_INVALID_REDIRECT_URL =
"termination-invalid-redirect-url";
/**
* Federation Termination Successful
*/
public static final String TERMINATION_SUCCEEDED =
"federation-termination-successful";
/**
* Signature verification of federation termination request failed.
*/
public static final String TERMINATION_INVALID_SIGNATURE =
"termination-invalid-signature";
/**
* Failed to construct SOAP message from request object.
*/
public static final String TERMINATION_FAILED_SOAP_MESSAGE_CREATION =
"termination-failed-soap-creation";
/**
* Failed to send termination message to remote provider.
*/
public static final String TERMINATION_FAILED_SEND_REMOTE =
"termination-failed-send-remote";
/**
* Federation termination servlet
*/
public static final String TERMINATE_SERVLET =
"/federation-terminate";
/**
* Name registration servlet
*/
public static final String REGISTRATION_SERVLET =
"/InitiateRegistration";
/**
* Session cookie name
*/
// public static String SESSION_COOKIE_NAME =
// "com.sun.identity.federation.sessioncookie";
/**
* Circle of trust id
*/
// public static final String COT_INFO =
// "com.sun.identity.federation.services.cotid";
/**
* Authentication login url
*/
// public static final String authURL =
// "com.sun.identity.federation.services.authLoginUrl";
/**
* Termination profile
*/
// public static final String TERMINATION_PROFILE =
// "com.sun.identity.federation.services.termination.profile";
/**
* Termination profile relay state
*/
/**
* Logout relay state
*/
/**
* Name registration indicator
*/
/**
* Question mark
*/
public static final char QUESTION_MARK = '?';
/**
* Ampersand
*/
public static final char AMPERSAND = '&';
/**
*Equal to
*/
public static final char EQUAL_TO = '=';
/**
* Role
*/
/**
* Response to
*/
/**
* IDP Single logout via idp
*/
public static final String LOGOUT_IDP_SOAP_PROFILE =
/**
* IDP Single logout via http
*/
public static final String LOGOUT_IDP_REDIRECT_PROFILE =
/**
* IDP Single logout via http get
*/
public static final String LOGOUT_IDP_GET_PROFILE =
/**
* SP Single logout via soap
*/
public static final String LOGOUT_SP_SOAP_PROFILE =
/**
* SP Single logout via http
*/
public static final String LOGOUT_SP_REDIRECT_PROFILE =
/**
* IDP Termination via http
*/
public static final String TERMINATION_IDP_HTTP_PROFILE =
/**
* IDP Termination via soap
*/
public static final String TERMINATION_IDP_SOAP_PROFILE =
/**
* SP Termination via soap
*/
public static final String TERMINATION_SP_SOAP_PROFILE =
/**
* SP Termination via http
*/
public static final String TERMINATION_SP_HTTP_PROFILE =
/**
* Name registration via soap
*/
public static final String NAME_REGISTRATION_PROFILE =
/**
* URI for HTTP-Redirect-based Name Identifier Registration Profile
* initiated at Service Provider
*/
public static final String NAME_REGISTRATION_SP_HTTP_PROFILE =
/**
* URI for SOAP/HTTP-based Name Identifier Registration Profile
* initiated at Service Provider
*/
public static final String NAME_REGISTRATION_SP_SOAP_PROFILE =
/**
* URI for HTTP-Redirect-based Name Identifier Registration Profile
* initiated at Identity Provider
*/
public static final String NAME_REGISTRATION_IDP_HTTP_PROFILE =
/**
* URI for SOAP/HTTP-based Name Identifier Registration Profile
* initiated at Identity Provider
*/
public static final String NAME_REGISTRATION_IDP_SOAP_PROFILE =
/**
* FedCookie name
*/
public static final String FEDERATE_COOKIE_NAME =
"com.sun.identity.federation.fedCookieName";
/**
* Quote
*/
/**
* New line
*/
/**
* Left angle
*/
/**
* Right angle
*/
/**
* End element
*/
/**
* Start end element
*/
/**
* Space
*/
/**
* SAML tag
*/
/**
* AuthenticationContext prefix
*/
/**
* lib prefix
*/
/**
* Liberty namespace uri
*/
public static final String libertyMessageNamespaceURI =
/**
* Liberty name space
*/
public static final String LIB_NAMESPACE_STRING =
" xmlns:lib=\"http://projectliberty.org/schemas/core/2002/12\"";
/**
* AuthenticationContext name space
*/
public static final String AC_NAMESPACE_STRING =
" xmlns:ac=\"http://projectliberty.org/schemas/authctx/2002/05\"";
/**
* AuthenticationContext namespace uri
*/
/**
* SAML assertion name space
*/
public static final String assertionSAMLNameSpaceURI =
"urn:oasis:names:tc:SAML:1.0:assertion";
/**
* SOAP envelope uri
*/
/**
* SOAP prefix
*/
/**
* SAML protocol namespace
*/
public static final String PROTOCOL_NAMESPACE_URI =
"urn:oasis:names:tc:SAML:1.0:protocol";
/**
* XML Digital signature namespace
*/
public static final String DSSAMLNameSpace =
"xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\"";
/**
* XML schema namespace
*/
public static final String XSI_NAMESPACE_STRING =
"xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\"";
/**
* SAML assertion namespace
*/
public static final String assertionDeclareStr =
" xmlns:saml=\"urn:oasis:names:tc:SAML:1.0:assertion\"";
/**
* SAML protocol namespace
*/
public static final String PROTOCOL_NAMESPACE_STRING =
" xmlns:samlp=\"urn:oasis:names:tc:SAML:1.0:protocol\"";
/**
* SAML Actions namespace identifiers:
*/
public static final String ACTIONS_NAMESPACE =
"urn:oasis:names:tc:SAML:1.0:action:rwedc";
/**
* SAML Actions namespace identifiers:
*/
public static final String ACTIONS_NAMESPACE_NEGATION =
"urn:oasis:names:tc:SAML:1.0:action:rwedc-negation";
/**
* SAML Actions namespace identifiers:
*/
public static final String ACTIONS_NAMESPACE_GHPP =
"urn:oasis:names:tc:SAML:1.0:ghpp";
/**
* SAML Actions namespace identifiers:
* Unix file permissions
*/
public static final String ACTIONS_NAMESPACE_UNIX =
"urn:oasis:names:tc:SAML:1.0:action:unix";
/**
* SAML prefix
*/
/**
* SAML protocol prefix
*/
/**
* Assertion major version
*/
public static final int ASSERTION_MAJOR_VERSION = 1;
/**
* Assertion minor version
*/
public static final int ASSERTION_MINOR_VERSION = 0;
/**
* Protocol major version
*/
public static final int PROTOCOL_MAJOR_VERSION = 1;
/**
* Protocol minor version
*/
public static final int PROTOCOL_MINOR_VERSION = 0;
/**
* Default encoding
*/
/**
* Confirmation method: Artifact
*/
public static final String CONFIRMATION_METHOD_ARTIFACT =
"urn:oasis:names:tc:SAML:1.0:cm:artifact-01";
/**
* Confirmation method
*/
public static final String CONFIRMATION_METHOD_DSAME =
"urn:sun.com:sunone:ims";
/**
* Confirmation method: Bearer
*/
public static final String CONFIRMATION_METHOD_BEARER =
"urn:oasis:names:tc:SAML:1.0:cm:bearer";
/**
* Default Artifact time out
*/
public static final int ARTIFACT_TIMEOUT_DEFAULT = 120;
/**
* Default Assertion time out
*/
public static final int ASSERTION_TIMEOUT_DEFAULT = 60;
/**
* Assertion timeout allowed difference
*/
public static final int ASSERTION_TIMEOUT_ALLOWED_DIFFERENCE = 60000;
/**
* Site id
*/
/**
* Default Artifact name
*/
/**
* <code>RelayState</code> parameter
*/
/**
* Length of an identifier
*/
public static final int ID_LENGTH = 20;
/**
* XML Digital Signing algorithm
*/
public static final String ALGO_ID_SIGNATURE_DSA =
"http://www.w3.org/2000/09/xmldsig#dsa-sha1";
/**
* XML Digital Signing algorithm
*/
public static final String ALGO_ID_SIGNATURE_RSA =
"http://www.w3.org/2000/09/xmldsig#rsa-sha1";
/**
* XML Digital Signing constant
*/
public static final String DEF_SIG_ALGO =
"http://www.w3.org/2000/09/xmldsig#dsa-sha1";
/**
* XML Digital Signing constant
*/
public static final String DEF_SIG_ALGO_JCA =
"SHA1withRSA";
/**
* XML Digital Signing constant
*/
public static final String ALGO_ID_SIGNATURE_DSA_JCA =
"SHA1withDSA";
/**
* XML Digital Signing constant
*/
public static final String ALGO_ID_SIGNATURE_RSA_JCA =
"SHA1withRSA";
/**
* XML Digital Signing: DSA key
*/
/**
* XML Digital Signing: RSA key
*/
/**
* Liberty namespace uri
*/
public static final String LIB_NAMESPACE_URI =
/**
* Liberty browser artifact profile
*/
public static final String SSO_PROF_BROWSER_ART =
/**
* Liberty browser post profile
*/
public static final String SSO_PROF_BROWSER_POST =
/**
* Liberty WML post profile
*/
public static final String SSO_PROF_WML_POST =
/**
* Liberty LECP profile
*/
public static final String SSO_PROF_LECP =
/**
* Local opaque handler
*/
public static final int LOCAL_OPAQUE_HANDLE = 0;
/**
* Remote opaque handler
*/
public static final int REMOTE_OPAQUE_HANDLE = 1;
/**
* Meta Alias
*/
/**
* Goto parameter
*/
/**
* Session host provider attribute
*/
/**
* AuthnContext
*/
/**
* Artifact length
*/
public static final int ART_ID_LENGTH = 20;
/**
* Sourceid encoding
*/
/**
* Max session time
*/
public static final int MAX_SESSION_TIME = 12000;
/**
* Max ide time
*/
public static final int MAX_IDLE_TIME = 3000;
/**
* Max caching time
*/
public static final int MAX_CACHING_TIME = 500;
/**
* Max session time key
*/
/**
* Max idle time key
*/
/**
* Max caching time key
*/
/**
* Error code for Missing Authentication Context in entity metadata.
*/
public static final String META_MISSING_AUTH_CONTEXT =
"meta_missing_auth_context";
/**
* Error code for Invalid value for Priority in entity metadata.
*/
public static final String META_INVALID_LEVEL =
"meta_invalid_level";
/**
* Error code for Contact person type
*/
/**
* Error code for Contact person type
*/
/**
* Error code for Contact person type
*/
/**
* Error code for Contact person type
*/
/**
* Specified logout profile is not supported.
*/
public static final String LOGOUT_PROFILE_NOT_SUPPORTED =
"logout-profile-not-supported";
/**
* No provider is specified in name registration.
*/
public static final String REGISTRATION_NO_PROVIDER =
"registration-no-provider";
/**
* Invalid Provider in Registration.
*/
public static final String REGISTRATION_INVALID_PROVIDER =
"registration-invalid-provider";
/**
* Invalid Signature for Registration.
*/
public static final String REGISTRATION_INVALID_SIGNATURE=
"registration-invalid-signature";
/**
* Registration failed.
*/
public static final String REGISTRATION_FAILED =
"registration-failed";
/**
* Improper Registration Request
*/
public static final String REGISTRATION_REQUEST_IMPROPER =
"registration-request-improper";
/**
* Console service
*/
public static final String CONSOLE_SERVICE =
"iPlanetAMAdminConsoleService";
/**
* Console service version
*/
public static final String CONSOLE_SERVICE_VERSION =
"1.0";
/**
* Liberty enabled console
*/
public static final String LIBERTY_ENABLED_KEY =
"iplanet-am-admin-console-liberty-enabled";
/**
* Local configuration is invalid.
*/
/**
* Invalid circle of trust list
*/
public static final String COTLIST_INVALID =
"cotlist_invalid";
/**
* <code>AuthnRequest</code> RequestID attribute
*/
/**
* <code>arg</code> key
*/
/**
* New Session
*/
/**
* Post-login page
*/
/**
* Pre-login page
*/
/**
* Federate keyword
*/
/**
* Default value of the <code>federate</code>
*/
/**
* sso keyword
*/
/**
* Default value of the <code>sso</code>
*/
/**
* cotkey keyword
*/
/**
* Chosen provider
*/
/**
* goto parameter
*/
/**
* org parameter
*/
/**
* authlevel parameter
*/
/**
* AuthContext Comparison type
*/
/**
* AuthContext Comparison type
*/
/**
* AuthContext Comparison type
*/
/**
* AuthContext Comparison type
*/
/**
* Parameter used in introduction profile
*/
/**
* Parameter used to pass realm value.
*/
/**
* Intersite transfer URL
*/
/**
* Part of the login URL
*/
/**
* Useraction value: Cancel
*/
/**
* <code>action</code> parameter in the request object
*/
/**
* Consent handler
*/
/**
* Federation handler
*/
/**
* Key used to search for header info in a map
*/
/**
* Key used to search for URL info in a map
*/
/**
* Key used to search for response info in a map
*/
/**
* Hosted provider
*/
/**
* Remote provider
*/
/**
* Entity descriptor
*/
/**
* Local AuthType
*/
/**
* Remote AuthType
*/
/**
* Home page file name
*/
/**
* Common login page file name
*/
/**
* JSP file location
*/
/**
* SOAP endpoint value
*/
/**
* Single logout endpoint value
*/
/**
* Single logout return endpoint value
*/
/**
* Federation termination endpoint value
*/
/**
* Federation termination return endpoint value
*/
/**
* Assertion consumer service endpoint value
*/
public static final String ASSERTION_CONSUMER_VALUE =
"/AssertionConsumerService";
/**
* Single signon endpoint value
*/
/**
* Configuration root directory
*/
/**
* Resource lookup related variables.
*/
/**
* AuthenticatonStatement prefix
*/
public static final String RESPOND_WITH =
"lib:AuthenticationStatement";
/**
* Federation jsp name
*/
public static final String DOFEDERATE_PAGE_NAME =
"Federate.jsp";
/**
* Logout completed jsp name
*/
public static final String LOGOUTDONE_PAGE_NAME =
"LogoutDone.jsp";
/**
* Federation completed jsp name
*/
public static final String FEDERATIONDONE_PAGE_NAME =
"FederationDone.jsp";
/**
* Error page
*/
/**
* List of circle of trust page
*/
/**
* Federation termination done jsp name
*/
public static final String TERMINATION_DONE_PAGE_NAME =
"TerminationDone.jsp";
/**
* Name registration done jsp name
*/
public static final String NAME_REGISTRATION_DONE_PAGE_NAME =
"NameRegistrationDone.jsp";
/**
* Common login jsp name
*/
public static final String COMMON_LOGIN_PAGE_NAME =
"CommonLogin.jsp";
/**
* Termination status
*/
/**
* Termination status : Sucess
*/
/**
* Termination status : Failure
*/
/**
* Provider id key is usd in Termination.
*/
public static final String TERMINATION_PROVIDER_ID =
"_liberty_id";
/**
* Failed to get hosted descriptor
*/
public static final String FAILED_HOSTED_DESCRIPTOR =
"failed-reading-hosted-descriptor";
/**
* Logout status
*/
/**
* Logout status: Success
*/
/**
* Logout status: Failure
*/
/**
* Logout status: No Session
*/
/**
* boolean: <code>true</code>
*/
/**
* boolean: <code>false</code>
*/
/**
* Optional attribute
*/
/**
* Provider id key is used in name registration.
*/
/**
* Failed to create name registration handlde
*/
public static final String REGISTRATION_HANDLE_CREATION_FAILED =
"registration-handle-creation-failed";
/**
* Registration status
*/
/**
* Registration status : Success
*/
/**
* Registration status : Failure
*/
/**
* Relay state
*/
/**
* Name Registration profile
*/
public static final String REGISTRATION_IDP_HTTP_PROFILE =
/**
* Name Registration profile
*/
public static final String REGISTRATION_IDP_SOAP_PROFILE =
/**
* Name Registration profile
*/
public static final String REGISTRATION_SP_SOAP_PROFILE =
/**
* Name Registration profile
*/
public static final String REGISTRATION_SP_HTTP_PROFILE =
/**
* Single signon service
*/
/**
* Process registration uri
*/
/**
* Registration return uri
*/
public static final String REGISTRATION_RETURN_VALUE =
"returnRegistration";
/**
* Do name registration after federation
*/
/**
* Do name registration during single signon process
*/
/**
* Do name registration on demand
*/
/**
* Signature Id used in termination profile
*/
/**
* Signature Id used in name registration profile
*/
/**
* Signature Id used in logout profile
*/
/**
* LECP request header
*/
public static final String LECP_CONTENT_TYPE_HEADER =
"application/vnd.liberty-request+xml";
/**
* LECP response header
*/
public static final String LECP_RESP_CONTENT_TYPE_HEADER =
"application/vnd.liberty-response+xml";
/**
* LECP indicator parameter
*/
/**
* LECP indicator parameter's default value
*/
/**
* Goto this URL if no federation cookie presents.
*/
/**
* <code>isPassive</code>
*/
/**
* Take action if no federation cookie presents.
*/
/**
* Boot strapping
*/
public static final String DISCO_RESOURCE_OFFERING_NAME =
"DiscoveryResourceOffering";
/**
* Termination notification profile
*/
public static final String TERMINATION_NOTIFICATION_PROFILE =
/**
* IDFF1.2 Name space
*/
public static final String LIB_12_NAMESPACE_STRING =
" xmlns:lib=\"urn:liberty:iff:2003-08\"";
/**
* Authentication context Name space
*/
public static final String AC_12_NAMESPACE_STRING=
" xmlns:ac=\"urn:liberty:ac:2003-08\"";
/**
* IDFF1.2 Name space
*/
/**
* Authentication context Name space urn
*/
/**
* IDFF 1.2 saml protocol minor version
*/
public static final int FF_12_SAML_PROTOCOL_MINOR_VERSION = 1;
/**
* IDFF 1.1 saml protocol minor version
*/
public static final int FF_11_SAML_PROTOCOL_MINOR_VERSION = 0;
/**
* IDFF 1.2 saml assertion minor version (POST profile)
*/
public static final int FF_12_POST_ASSERTION_MINOR_VERSION = 2;
/**
* IDFF 1.2 saml assertion minor version (Artifact profile)
*/
public static final int FF_12_ART_ASSERTION_MINOR_VERSION = 2;
/**
* IDFF 1.1 saml assertion minor version (Artifact profile)
*/
public static final int FF_11_ASSERTION_MINOR_VERSION = 0;
/**
* IDFF 1.2 saml protocol minor version
*/
public static final int FF_12_PROTOCOL_MINOR_VERSION = 2;
/**
* IDFF 1.1 saml protocol minor version
*/
public static final int FF_11_PROTOCOL_MINOR_VERSION = 0;
/**
* Name Identifier format URI
*/
public static final String NI_FEDERATED_FORMAT_URI =
"urn:liberty:iff:nameid:federated";
/**
* Name Identifier format URI
*/
public static final String NI_ONETIME_FORMAT_URI =
"urn:liberty:iff:nameid:one-time";
/**
* Name Identifier format URI
*/
public static final String NI_ENCRYPTED_FORMAT_URI =
"urn:liberty:iff:nameid:encrypted";
/**
* Discovery Resource Offering
*/
public static final String DISCOVERY_RESOURCE_OFFERING =
"DiscoveryResourceOffering";
/**
* Assertion ID
*/
/**
* Request ID
*/
/**
* Response ID
*/
/**
* ID
*/
/**
* NameIDPolicy Element name
*/
/**
* NameIDPolicy configuration attribute name
*/
/**
* Key is used for signing.
*/
/**
* Key is used for encryption.
*/
/**
* <code>NameIDPolicy</code> value type
*/
/**
* <code>NameIDPolicy</code> value type
*/
/**
* <code>NameIDPolicy</code> value type
*/
/**
* <code>NameIDPolicy</code> value type
*/
/**
* Idp finder URL
*/
/**
* XPATH for Assertion Artifact
*/
public static final String ARTIFACT_XPATH =
/**
* Affiliation id for Affiliation descriptor
*/
/**
* Auth Federation attribute
*/
/**
* Provider id separator
*/
/**
* SP provider suffix
*/
public static final String SP_PROVIDER_SFX =
PROVIDER_ID_SEPARATOR + "SP";
/**
* IDP provider suffix
*/
public static final String IDP_PROVIDER_SFX =
PROVIDER_ID_SEPARATOR + "IDP";
/**
* Used in local configuration descriptor to track the version
*/
public static final int PROVIDER_CONFIG_70_VERSION = 30;
/**
* Used in local configuration descriptor to track the version
*/
public static final int PROVIDER_CONFIG_71_VERSION = 40;
/**
* Anonymous Onetime federation
*/
/**
* Parameter for status code. Used in FederationSPAdapter.
*/
/**
* Parameter for failure code. Used in FederationSPAdapter.
*/
/**
* Used by <code>FSUserProvider</code> to pass in termination request
* through env map.
*/
public static final String FS_USER_PROVIDER_ENV_TERMINATION_KEY =
"FSFederationTerminationNotification";
/**
* Used by <code>FSUserProvider</code> to pass in authn response
* through env map.
*/
public static final String FS_USER_PROVIDER_ENV_AUTHNRESPONSE_KEY =
"FSAuthnResponse";
/**
* Used by <code>FSUserProvider</code> to pass in logout request
* through env map.
*/
public static final String FS_USER_PROVIDER_ENV_LOGOUT_KEY =
"FSLogoutNotification";
/**
* Used by <code>FSUserProvider</code> to pass in registration request
* through env map.
*/
public static final String FS_USER_PROVIDER_ENV_REGISTRATION_KEY =
"FSNameRegistrationRequest";
/**
* Used by <code>FSUserProvider</code> to pass in saml response
* through env map.
*/
public static final String FS_USER_PROVIDER_ENV_FSRESPONSE_KEY =
"FSResponse";
/**
* Used by <code>FSUserProvider</code> to pass in name ID mapping request
* through env map.
*/
public static final String FS_USER_PROVIDER_ENV_NAMEMAPPING_KEY =
"FSNameIdentifierMappingRequest";
/**
* Default <code>FSUserProvider</code> implemeation class.
*/
public static final String FS_USER_PROVIDER_DEFAULT =
"com.sun.identity.federation.accountmgmt.DefaultFSUserProvider";
/**
* ID-FF component name used in obtaining provider.
*/
/**
* Key name for the federation attribute mapper.
*/
public static final String FS_ATTRIBUTE_MAPPER =
"com.sun.identity.liberty.fed.attributemapper";
/**
* Key name for the webservices security attribute mapper.
*/
public static final String WS_ATTRIBUTE_PLUGIN =
"com.sun.identity.liberty.ws.attributeplugin";
/**
* Assertion
*/
/**
* Major Version
*/
/**
* Minor Version
*/
/**
* Issuer
*/
/**
* InResponseTo
*/
/**
* IssueInstant
*/
/**
* Conditions
*/
/**
* Advice
*/
/**
* AuthenticationStatement
*/
public static final String AUTHENTICATIONSTATEMENT
= "AuthenticationStatement";
/**
* AuthorizationDecisionStatement
*/
public static final String AUTHZDECISIONSTATEMENT =
"AuthorizationDecisionStatement";
/**
* AttributeStatement
*/
/**
* Signature
*/
/**
* AssertionType
*/
/**
* xsi type
*/
/**
* Authentication Method
*/
/**
* Authentication Instant
*/
/**
* Authority Binding
*/
/**
* SubjectLocality
*/
/**
* ReauthenticationOnOrAfter
*/
/**
* Authentication Subject
*/
/**
* Authentication Statement Type
*/
public static final String AUTHENTICATIONSTATEMENT_TYPE
= "AuthenticationStatementType";
/**
* Authentication Request
*/
/**
* RespondWith
*/
/**
* Consent
*/
/**
* Provider Identifier
*/
/**
* Federate
*/
/**
* Major Version Value
*/
/**
* ProtocolProfile
*/
/**
* Requested AuthnContext
*/
/**
* Affliation Identifier
*/
/**
* Extension
*/
/**
* Scoping
*/
/**
* Assertion Consumer Service Identifier
*/
public static final String ASSERTION_CONSUMER_SVC_ID=
"AssertionConsumerServiceID";
/**
* Authenticaion Context Comparison
*/
public static final String AUTHN_CONTEXT_COMPARISON=
"AuthnContextComparison";
/**
* RelayState
*/
/**
* NameIdentifier Mapping Request
*/
public static final String NAMEID_MAPPING_REQUEST =
"NameIdentifierMappingRequest";
/**
* NameIdentifier Mapping Response
*/
public static final String NAMEID_MAPPING_RESPONSE =
"NameIdentifierMappingResponse";
/**
* Target Name Space
*/
/**
* XML Prefix String
*/
/**
* Name Identifier
*/
/**
* Federation Termination Notification
*/
public static final String FEDERATION_TERMINATION_NOTICFICATION =
"FederationTerminationNotification";
/**
* Name
*/
/**
* Name Qualifier
*/
/**
* NameFormat
*/
/**
* GetComplete
*/
/**
* IDP Entries
*/
/**
* LogoutRequest
*/
/**
* LogoutResponse
*/
/**
* NotOnOrAfter
*/
/**
* Value
*/
/**
* IDPList
*/
/**
* Authentication Request Envelope
*/
/**
* Assertion Consumer Service URL
*/
public static final String ASSERTION_CONSUMER_SERVICE_URL=
"AssertionConsumerServiceURL";
/**
* Authentication Response
*/
/**
* Authentication Response Envelope
*/
public static final String AUTHN_RESPONSE_ENVELOPE
="AuthnResponseEnvelope";
/**
* Recipient
*/
/**
* Status
*/
/**
* ProviderName
*/
/**
* IsPassive Element Name
*/
/**
* Force Authentication Element Name
*/
/**
* Provider Status
*/
/**
* Signing Certificate Alias
*/
/**
* Encryption Certificate Alias
*/
/**
* Enable IDP Proxy
*/
/**
* IDP Proxy Name List
*/
/**
* IDP Proxy Count
*/
/**
* Use Introduction for IDP Proxy
*/
/**
* Enable Name Identifier Encryption
*/
/**
* Generate Bootstrapping in Single Sign-on Assertion
*/
/**
* Responds with
*/
/**
* Name Identifier Implementation Class
*/
/**
*/
/**
* Registration Done URL
*/
/**
* Termination Done URL
*/
/**
* Logout Done URL
*/
/**
* Federation Done URL
*/
/**
* Single Sign-on failure redirection URL
*/
/**
* Error page redirection URL
*/
/**
* List of COTs page URL.
*/
/**
* Do federate page URL.
*/
/**
* Implementation class for SPI <code>FSUserProvider</code>.
*/
/**
* Provider Home page URL.
*/
/**
* Assertion valid interval
*/
/**
* Internal Thread Cleanup Internal
*/
/**
* Artifact Timeout Interval
*/
/**
* Maximum Assertion Limit
*/
/**
* Assertion Issuer
*/
/**
* Attribute Plugin
*/
/**
* IDP Attribute Map
*/
/**
* Whether to initialize registration after sso/federation.
* Currently, it is not used.
*/
/**
* Default AuthnContext
*/
/**
* Default AuthnContext Password
*/
public String DEFAULT_AUTHNCONTEXT_PASSWORD =
/**
* IDP AuthnContext Mapping
*/
/**
* Enable Auto-Federation
*/
/**
* Auto-Federation Attribute
*/
/**
* Attribute Mapper Class
*/
/**
* Circle-of-trust list
*/
/**
* Enable Affiliation
*/
/**
* Force Authentication at IDP
*/
/**
* Request IDP to be Passive
*/
/**
* Service Provider AuthnContext Mapping
*/
/**
* Service Provider Attribute Map
*/
/**
* Federation Service Provider Adapter
*/
/**
* Environment variables for Federation Service Provider Adapter
*/
/**
* Service Provider's supported profiles for single sign on.
* First one is the default one.
*/
/**
* Constants for authn context mapping values.
*/
/**
* Provider description.
*/
/**
* Service Provider's default relay state.
*/
public String SP_DEFAULT_RELAY_STATE =
/**
* boolean to indicate if this is SOAP profile
*/
/**
* root realm.
*/
/**
* SAMLRequest query parameter name
*/
/**
* SAMLResponse query parameter name
*/
/**
* Parameter name for SAML artifact in http request.
*/
}