Package com.sun.identity.saml.common

Class SAMLConstants

  • @Supported
public final class SAMLConstants
extends Object
    This is a common class defining some constants common to all SAML elements.

    • Field Detail

      • ACTION_NAMESPACE

        @Supported
public static final String ACTION_NAMESPACE
        String used in the ActionNamespace attribute to refer to common sets of actions to perform on resources. Title: Read/Write/Execute/Delete/Control Defined actions: Read Write Execute Delete Control These actions are interpreted in the normal manner, i.e.
        • Read: The subject may read the resource
        • Write: The subject may modify the resource
        • Execute: The subject may execute the resource
        • Delete: The subject may delete the resource
        • Control: The subject may specify the access control policy for the resource.
        See Also:
        Constant Field Values

      • ACTION_NAMESPACE_NEGATION

        @Supported
public static final String ACTION_NAMESPACE_NEGATION
        String used in the ActionNamespace attribute to refer to common sets of actions to perform on resources. Title: Read/Write/Execute/Delete/Control with Negation Defined actions: Read Write Execute Delete Control ~Read ~Write ~Execute ~Delete ~Control
        • Read: The subject may read the resource
        • Write: The subject may modify the resource
        • Execute: The subject may execute the resource
        • Delete: The subject may delete the resource
        • Control: The subject may specify the access control policy for the resource
        • ~Read: The subject may NOT read the resource
        • ~Write: The subject may NOT modify the resource
        • ~Execute: The subject may NOT execute the resource
        • ~Delete: The subject may NOT delete the resource
        • ~Control: The subject may NOT specify the access control policy for the resource
        An application MUST NOT authorize both an action and its negated form.
        See Also:
        Constant Field Values

      • ACTION_NAMESPACE_GHPP

        @Supported
public static final String ACTION_NAMESPACE_GHPP
        String used in the ActionNamespace attribute to refer to common sets of actions to perform on resources. Title: Get/Head/Put/Post Defined actions: GET HEAD PUT POST These actions bind to the corresponding HTTP operations. For example a subject authorized to perform the GET action on a resource is authorized to retrieve it. The GET and HEAD actions loosely correspond to the conventional read permission and the PUT and POST actions to the write permission. The correspondence is not exact however since a HTTP GET operation may cause data to be modified and a POST operation may cause modification to a resource other than the one specified in the request. For this reason a separate Action URI specifier is provided.
        See Also:
        Constant Field Values

      • ACTION_NAMESPACE_UNIX

        @Supported
public static final String ACTION_NAMESPACE_UNIX
        String used in the ActionNamespace attribute to refer to common sets of actions to perform on resources. Title: UNIX File Permissions Defined actions: The defined actions are the set of UNIX file access permissions expressed in the numeric (octal) notation. The action string is a four digit numeric code: extended user group world Where the extended access permission has the value
        • +2 if sgid is set
        • +4 if suid is set
        The user group and world access permissions have the value
        • +1 if execute permission is granted
        • +2 if write permission is granted
        • +4 if read permission is granted
        For example 0754 denotes the UNIX file access permission: user read, write and execute, group read and execute and world read.
        See Also:
        Constant Field Values

      • CONFIRMATION_METHOD_HOLDEROFKEY

        @Supported
public static final String CONFIRMATION_METHOD_HOLDEROFKEY
        SAML "Holder of Key" confirmation method identifier URI.
        See Also:
        Constant Field Values

      • ALGO_ID_SIGNATURE_NOT_RECOMMENDED_RSA_MD5

        @Supported
public static final String ALGO_ID_SIGNATURE_NOT_RECOMMENDED_RSA_MD5
        Signature Algorithm RSA-MD5 URI.
        See Also:
        Constant Field Values

      • ALGO_ID_C14N_EXCL_WITH_COMMENTS

        @Supported
public static final String ALGO_ID_C14N_EXCL_WITH_COMMENTS
        Exclusive XML canonicalization with comments Algorithm URI.
        See Also:
        Constant Field Values

      • TRANSFORM_C14N_EXCL_OMIT_COMMENTS

        @Supported
public static final String TRANSFORM_C14N_EXCL_OMIT_COMMENTS
        Exclusive XML canonicalization Transform URI.
        See Also:
        Constant Field Values

      • TRANSFORM_C14N_EXCL_WITH_COMMENTS

        @Supported
public static final String TRANSFORM_C14N_EXCL_WITH_COMMENTS
        Exclusive XML canonicalization with comments Transform URI.
        See Also:
        Constant Field Values