org.wso2.carbon.security.SecurityConstants Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of org.wso2.carbon.security.mgt Show documentation
Show all versions of org.wso2.carbon.security.mgt Show documentation
A custom wso2 products or solution
/*
* Copyright (c) 2010, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
*
* WSO2 Inc. licenses this file to you under the Apache License,
* Version 2.0 (the "License"); you may not use this file except
* in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*/
package org.wso2.carbon.security;
import org.wso2.carbon.core.RegistryResources;
import javax.xml.namespace.QName;
public class SecurityConstants {
public static final String SECURITY_NAMESPACE = "http://www.wso2.org/products/carbon/security";
public static final QName SUMMARY_QN = new QName(SECURITY_NAMESPACE, "Summary");
public static final QName DESCRIPTION_QN = new QName(SECURITY_NAMESPACE, "Description");
public static final QName ID_QN = new QName("id");
public static final QName CATEGORY_QN = new QName(SECURITY_NAMESPACE, "Category");
public static final QName MODULES_QN = new QName(SECURITY_NAMESPACE, "Modules");
public static final QName WSUID_QN = new QName(SECURITY_NAMESPACE, "WsuId");
public static final QName TYPE_QN = new QName(SECURITY_NAMESPACE, "Type");
public static final QName IS_GEN_POLICY_QN = new QName(SECURITY_NAMESPACE, "isGeneralPolicy");
//Resources
public static final String SECURITY_POLICY = RegistryResources.COMPONENTS
+ "org.wso2.carbon.security.mgt/policy";
//Basic scenarios
public static final String CUSTOM_SECURITY_SCENARIO = "customScenario";
public static final String USERNAME_TOKEN_SCENARIO_ID = "scenario1";
public static final String CONFIDENTIALITY_SCENARIO_ID = "scenario5";
public static final String INTEGRITY_SCENARIO_ID = "scenario4";
public static final String NONREPUDIATION_SCENARIO_ID = "scenario2";
public static final String SCENARIO_DISABLE_SECURITY = "DisableSecurity";
public static final String POLICY_FROM_REG_SCENARIO = "policyFromRegistry";
public static final String CUSTOM_SECURITY_SCENARIO_SUMMARY = "Custom security policy";
public static final String ALLOW_ROLES_PROXY_PARAM_NAME = "allowRoles";
public static final String PROP_USER_STORE = "service.userstore";
public static final String EMPTY_SERVICE_VERSION = "SNAPSHOT";
public static final String EMPTY_MODULE_VERSION = "SNAPSHOT";
public static final String RAMPART_MODULE_NAME = "rampart";
public static final String ASSOCIATION_TRUSTED_KEYSTORE = "trusted-keystore";
public static final String ASSOCIATION_PRIVATE_KEYSTORE = RegistryResources.Associations.PRIVATE_KEYSTORE;
public static final String ASSOCIATION_SERVICE_SECURING_POLICY = "service-secpolicy";
public static final String ASSOCIATION_STORE_TYPE = "service-secpolicy";
public static final String USER = "rampart.config.user";
public static final String HTTPS_TRANSPORT = "https";
public static final String KEY_STORES = RegistryResources.SecurityManagement.KEY_STORES;
//properties
public static final String PROP_ROLE = RegistryResources.SecurityManagement.PROP_ROLE;
public static final String PROP_PASSWORD = RegistryResources.SecurityManagement.PROP_PASSWORD;
public static final String PROP_TYPE = RegistryResources.SecurityManagement.PROP_TYPE;
public static final String PROP_USERS = RegistryResources.SecurityManagement.PROP_USERS;
public static final String PROP_PRIVATE_KEY_ALIAS = RegistryResources.SecurityManagement.PROP_PRIVATE_KEY_ALIAS;
public static final String PROP_PRIVATE_KEY_PASS = RegistryResources.SecurityManagement.PROP_PRIVATE_KEY_PASS;
public static final String PROP_DESCRIPTION = "description";
public static final String PROP_AUTHENTICATOR_CLASS = "class";
public static final String PROP_INTERNAL = "internal";
public static final String PROP_PROVIDER = "provider";
public static final String PROP_SELECT_ALL = "selectAll";
public static final String PROP_RAHAS_SCT_ISSUER = "rahas.sctissuer";
public static final String PROP_TENANT_PUB_KEY_FILE_NAME_APPENDER = "tenant.pub.key.file.name.appender";
//associations
public static final String ASSOCIATION_STORE_GROUP = RegistryResources.SecurityManagement.ASSOCIATION_STORE_GROUP;
public static final String ASSOCIATION_TENANT_KS_PUB_KEY = "assoc.tenant.ks.pub.key";
public static final String DEFAULT_STORE = RegistryResources.SecurityManagement.DEFAULT_STORE;
public static final String ADMIN_USER = "admin";
public static final String ADMIN_GROUP = "admin-group";
// registry identifiers
public static final String CONFIG_REGISTRY_IDENTIFIER = "conf";
public static final String GOVERNANCE_REGISTRY_IDENTIFIER = "gov";
public static final String SECURITY_POLICY_PATH = "secPolicyRegistryPath";
public static final int MAX_USER_COUNT = 50;
public static final String WS_SEC_UTILITY_NS = "http://docs.oasis-open.org/wss/2004/01/oasis-" +
"200401-wss-wssecurity-utility-1.0.xsd";
public static final String POLICY_ID = "Id";
public static final QName POLICY_ID_QNAME = new QName(WS_SEC_UTILITY_NS, POLICY_ID);
public static final int DEFAULT_ITEMS_PER_PAGE = 50;
public static final int ITEMS_PER_PAGE = 10;
public static final int CACHING_PAGE_SIZE = 5;
//AxisService parameter names
public static final String SCENARIO_ID_PARAM_NAME = "ScenarioID";
public static final String SCENARIO_ID_SET_PARAM_NAME = "ScenarioIDSet";
public static final String ROLE_ADMIN = RegistryResources.SecurityManagement.ADMIN_ROLE;
public static final String ROLE_GENERAL = "General User";
public static final String TRUST_MODULE = "rahas";
public static final String ALLOWED_ROLES_PARAM_NAME = "org.wso2.carbon.security.allowedroles";
// Constants related to security policy parts
public static final String CARBON_SEC_CONFIG = "CarbonSecConfig";
public static final String TRUST = "Trust";
public static final String ENCRYPTED = "encrypted";
public static final String AUTHORIZATION = "Authorization";
public static final String KERBEROS = "Kerberos";
public static final String PROPERTY_LABEL = "property";
public static final String NAME_LABEL = "name";
private SecurityConstants(){}
/**
* Contains the Keystore management service related constants.
*/
public static class KeyStoreMgtConstants {
public static final String FILTER_FIELD_ALIAS = "alias";
public static final String FILTER_OPERATION_EQUALS = "eq";
public static final String FILTER_OPERATION_STARTS_WITH = "sw";
public static final String FILTER_OPERATION_ENDS_WITH = "ew";
public static final String FILTER_OPERATION_CONTAINS = "co";
public static final String SERVER_TRUSTSTORE_FILE = "Security.TrustStore.Location";
/**
* Enum for Keystore management service related errors.
*/
public enum ErrorMessage {
/**
* Server errors.
*/
ERROR_CODE_RETRIEVE_KEYSTORE("KSS-65001",
"Unable to retrieve the keystore for tenant: %s."),
ERROR_CODE_RETRIEVE_KEYSTORE_INFORMATION("KSS-65002",
"Unable to retrieve keystore information for keystore: %s"),
ERROR_CODE_RETRIEVE_CLIENT_TRUSTSTORE("KSS-65003",
"Unable to retrieve client truststore for tenant: %s"),
ERROR_CODE_RETRIEVE_CLIENT_TRUSTSTORE_ALIASES("KSS-65004",
"Unable to retrieve the client truststore aliases for tenant: %s."),
ERROR_CODE_RETRIEVE_CLIENT_TRUSTSTORE_CERTIFICATE("KSS-65005",
"Unable to retrieve the client truststore certificate for alias: %s."),
ERROR_CODE_ADD_CERTIFICATE("KSS-65006",
"Unable to add certificate with alias: %s"),
ERROR_CODE_DELETE_CERTIFICATE("KSS-65007",
"Unable to delete certificate with alias: %s"),
ERROR_CODE_VALIDATE_CERTIFICATE("KSS-65008", "Error occurred while validating the " +
"certificate."),
ERROR_CODE_INITIALIZE_REGISTRY("KSS-65009",
"Unable to initialize the registry for the tenant: %s."),
/**
* Client error.
*/
ERROR_CODE_CERTIFICATE_EXISTS("KSS-60001",
"Provided certificate already exists with the alias: %s"),
ERROR_CODE_ALIAS_EXISTS("KSS-60002",
"Provided alias '%s' is already available in the keystore."),
ERROR_CODE_BAD_VALUE_FOR_FILTER("KSS-60003",
"Unsupported filter: %s."),
ERROR_CODE_UNSUPPORTED_FILTER_OPERATION("KSS-60004",
"Unsupported filter operation %s."),
ERROR_CODE_EMPTY_ALIAS("KSS-60005", "Alias value can not be null."),
ERROR_CODE_INVALID_CERTIFICATE("KSS-60006", "Provided certificate is invalid."),
ERROR_CODE_CANNOT_DELETE_TENANT_CERT("KSS-60007", "Not allowed to delete the tenant certificate %s.");
private final String code;
private final String message;
ErrorMessage(String code, String message) {
this.code = code;
this.message = message;
}
public String getCode() {
return code;
}
public String getMessage() {
return message;
}
@Override
public String toString() {
return code + " : " + message;
}
}
}
}