001: /*
002: jGuard is a security framework based on top of jaas (java authentication and authorization security).
003: it is written for web applications, to resolve simply, access control problems.
004: version $Name: $
005: http://sourceforge.net/projects/jguard/
006:
007: Copyright (C) 2004 Charles GAY
008:
009: This library is free software; you can redistribute it and/or
010: modify it under the terms of the GNU Lesser General Public
011: License as published by the Free Software Foundation; either
012: version 2.1 of the License, or (at your option) any later version.
013:
014: This library is distributed in the hope that it will be useful,
015: but WITHOUT ANY WARRANTY; without even the implied warranty of
016: MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
017: Lesser General Public License for more details.
018:
019: You should have received a copy of the GNU Lesser General Public
020: License along with this library; if not, write to the Free Software
021: Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
022:
023:
024: jGuard project home page:
025: http://sourceforge.net/projects/jguard/
026:
027: */
028: package net.sf.jguard.ext;
029:
030: import javax.naming.Context;
031: import javax.naming.ldap.LdapContext;
032:
033: /**
034: * Constants related to the net.sf.jguard.core package.
035: * @author <a href="mailto:diabolo512@users.sourceforge.net">Charles GAY</a>
036: */
037: public interface SecurityConstants {
038:
039: public final static String AUTHENTICATION = "authentication";
040: public final static String AUTHORIZATION_PERMISSION_RESOLUTION_CACHING = "permissionResolutionCaching";
041: public final static String AUTHENTICATION_MANAGER = "authenticationManager";
042: public final static String AUTHENTICATION_MANAGER_OPTIONS = "authenticationManagerOptions";
043: public static final String AUTHENTICATION_DATABASE_FILE_LOCATION = "authenticationDatabaseFileLocation";
044: public static final String AUTHENTICATION_JNDI_FILE_LOCATION = "authenticationJndiFileLocation";
045: public static final String AUTHENTICATION_XML_FILE_LOCATION = "authenticationXmlFileLocation";
046: public static final String AUTHORIZATION_DATABASE_FILE_LOCATION = "authorizationDatabaseFileLocation";
047: public static final String AUTHORIZATION_XML_FILE_LOCATION = "authorizationXmlFileLocation";
048:
049: //database properties
050: public final static String DATABASE_DRIVER = "databaseDriver";
051: public final static String DATABASE_DRIVER_URL = "databaseDriverUrl";
052: public final static String DATABASE_DRIVER_LOGIN = "databaseDriverLogin";
053: public final static String DATABASE_DRIVER_PASSWORD = "databaseDriverPassword";
054:
055: //JNDI constants
056: public final static String DIRECTORY_SEARCH_SCOPE = "directorySearchScope";
057: public final static String DIRECTORY_COUNT_LIMIT = "directoryCountLimit";
058: public final static String DIRECTORY_TIME_LIMIT = "directoryTimeLimit";
059: public final static String DIRECTORY_DEREF_LINK_FLAG = "directoryDerefLinkFlag";
060: public final static String DIRECTORY_RETURNING_ATTRIBUTES = "directoryReturningAttributes";
061: public final static String DIRECTORY_RETURNING_OBJ_FLAG = "directoryReturningObjFlag";
062: public final static String DIRECTORY_SEARCH_CONTEXT_NAME = "directorySearchContextName";
063: public final static String DIRECTORY_SEARCH_FILTER_EXPRESSION = "directorySearchFilterExpression";
064: //JNDI "program" configuration
065: //"java.naming.factory.initial"
066: public final String INITIAL_CONTEXT_FACTORY = Context.INITIAL_CONTEXT_FACTORY;
067: //"java.naming.factory.object"
068: public final String OBJECT_FACTORIES = Context.OBJECT_FACTORIES;
069: //"java.naming.factory.state"
070: public final String STATE_FACTORIES = Context.STATE_FACTORIES;
071: //"java.naming.factory.url.pkgs"
072: public final String URL_PKG_PREFIXES = Context.URL_PKG_PREFIXES;
073: //JNDI "access" configuration
074: //"java.naming.provider.url"
075: public final String PROVIDER_URL = Context.PROVIDER_URL;
076: //"java.naming.dns.url"
077: public final String DNS_URL = Context.DNS_URL;
078: //JNDI "Service-related" configuration
079: //"java.naming.authoritative"
080: public final String AUTHORITATIVE = Context.AUTHORITATIVE;
081: //"java.naming.batchsize"
082: public final String BATCHSIZE = Context.BATCHSIZE;
083: //"java.naming.referral"
084: public final String REFERRAL = Context.REFERRAL;
085: //JNDI "security" configuration
086: //"java.naming.security.protocol"
087: public final String SECURITY_PROTOCOL = Context.SECURITY_PROTOCOL;
088: //"java.naming.security.authentication"
089: public final String SECURITY_AUTHENTICATION = Context.SECURITY_AUTHENTICATION;
090: //"java.naming.security.principal"
091: public final String SECURITY_PRINCIPAL = Context.SECURITY_PRINCIPAL;
092: //"java.naming.security.credentials"
093: public final String SECURITY_CREDENTIALS = Context.SECURITY_CREDENTIALS;
094: //JNDI "internationalisation" configuration
095: //"java.naming.language"
096: public final String LANGUAGE = Context.LANGUAGE;
097: //JNDI "LDAP-related" program configuration
098: //"java.naming.factory.control"
099: public final String CONTROL_FACTORIES = LdapContext.CONTROL_FACTORIES;
100: public final String LDAP_ATTRIBUTES_BINARY = "java.naming.ldap.attributes.binary";
101: public final String LDAP_CONTROL_CONNECT = "java.naming.ldap.control.connect";
102: public final String LDAP_DELETE_RDN = "java.naming.ldap.deleteRDN";
103: public final String LDAP_DEREF_ALIASES = "java.naming.ldap.derefAliases";
104: public final String LDAP_FACTORY_SOCKET = "java.naming.ldap.factory.socket";
105: public final String LDAP_REF_SEPARATOR = "java.naming.ref.separator";
106: public final String LDAP_REFERRAL_LIMIT = "java.naming.referral.limit";
107: public final String LDAP_TYPESONLY = "java.naming.ldap.typesOnly";
108: public final String LDAP_VERSION = "java.naming.ldap.version";
109: //JNDI LDAP SASL-related parameters
110: public final String LDAP_SASL_AUTHORIZATION_ID = "java.naming.security.sasl.authorizationId";
111: public final String LDAP_SASL_CALLBACK = "java.naming.sasl.callback";
112: public final String LDAP_SASL_REALM = "java.naming.sasl.realm";
113: public final String LDAP_SASL_QOP = "javax.naming.sasl.qop";
114: public final String LDAP_SASL_STRENGTH = "javax.security.sasl.strength";
115: public final String LDAP_SASL_MAXBUFFER = "javax.security.sasl.maxbuffer";
116: public final String LDAP_SASL_SERVER_AUTHENTICATION = "javax.security.sasl.server.authentication";
117: public final String LDAP_SASL_POLICY_FORWARD = "javax.security.sasl.policy.forward";
118: public final String LDAP_SASL_POLICY_CREDENTIALS = "javax.security.sasl.policy.credentials";
119: public final String LDAP_SASL_POLICY_NOPLAINTEXT = "javax.security.sasl.policy.noplaintext";
120: public final String LDAP_SASL_POLICY_NOACTIVE = "javax.security.sasl.policy.noactive";
121: public final String LDAP_SASL_NODICTIONARY = "javax.security.sasl.policy.nodictionary";
122: public final String LDAP_SASL_NOANONYMOUS = "javax.security.sasl.policy.noanonymous";
123: //CRL constants
124: //certStore can be "LDAP" or "Collection"
125: public final String CERT_PATH_CERTSTORE_TYPE = "certPathCertStoreType";
126: public final String CERT_PATH_LDAP_SERVER_NAME = "certPathLdapServerName";
127: public final String CERT_PATH_LDAP_SERVER_PORT = "certPathLdapServerPort";
128: public final String CERT_PATH_CRL_DATE = "certPathCrlDate";
129: public final String CERT_PATH_CRL_TIME_ZONE = "certPathCrlTimeZone";
130: public final String CERT_PATH_CRL_LOCALE = "certPathCrlLocale";
131: public final String CERT_PATH_ISSUER_NAMES = "certPathIssuerNames";
132: public final String CERT_PATH_MIN_CRL_NUMBER = "certPathMinCrlNumber";
133: public final String CERT_PATH_MAX_CRL_NUMBER = "certPathMaxCrlNumber";
134: public final String CERT_PATH_CRL_PATH = "certPathCrlPath";
135: public final String CERT_PATH_URL_CRL_PATH = "certPathUrlCrlPath";
136: public final String CERT_PATH_ANY_POLICY_INHIBITED = "certPathAnyPolicyInhibited";
137: public final String CERT_PATH_EXPLICIT_POLICY_REQUIRED = "certPathExplicitPolicyRequired";
138: public final String CERT_PATH_POLICY_MAPPING_INHIBITED = "certPathPolicyMappingInhibited";
139: public final String CERT_PATH_POLICY_QUALIFIERS_REJECTED = "certPathPolicyQualifiersRejected";
140: public final String CERT_PATH_REVOCATION_ENABLED = "certPathRevocationEnabled";
141: public final String CERT_PATH_SIG_PROVIDER = "certPathSigProvider";
142: public final String CERT_STORE = "certStore";
143: public final String SECURITY_PROVIDER = "securityProvider";
144: public final String TRUSTED_CA_CERTIFICATES_DIRECTORY_PATH = "trustedCaCertsDirPath";
145:
146: public final static String PASSWORD_PROMPT = "passwordField";
147: //fields names used in FORM authentication
148: public final static String LOGIN_PROMPT = "loginField";
149: //guest id
150: public final static String GUEST = "guest";
151: public final static String SECURED = "secured";
152: public final static String APPLICATION_PASSWORD = "applicationPassword";
153:
154: public final static String AUTHORIZATION = "authorization";
155: public final static String AUTHORIZATION_MANAGER = "authorizationManager";
156: public final static String AUTHORIZATION_MANAGER_OPTIONS = "authorizationManagerOptions";
157:
158: public final static String DIRECTORY_PATH_TO_USER = "directoryPathToUser";
159:
160: public final static String INCLUDE_POLICY_FROM_JAVA_PARAM = "includePolicyFromJavaParam";
161: public final static String ISSUER_CA_CERT_LOCATION = "IssuerCACertLocation";
162: public final static String OCSP_SERVER_URL = "ocspServerURL";
163: public final static String OCSP_SIGNER_CERT_LOCATION = "OcspSignerCertLocation";
164:
165: //constants for jGuardConfiguration.xml
166: public static final String VALUE_MARKUP = "value";
167: public static final String OPTION = "option";
168: public static final String LOGIN_MODULE = "loginModule";
169:
170: //system properties for SingleAppPolicy
171: public static final String POLICY_CONFIGURATION_FILE = "net.sf.jguard.policy.configuration.file";
172:
173: //constants for JCaptcha
174: public static final String CAPTCHA_ANSWER = "captchaAnswer";
175: public static final String CAPTCHA_SERVICE = "captchaService";
176:
177: public static final String COM_SUN_APPLICATION_NAME = "com.sun.management.jmxremote.login.config";
178: public static final String JGUARD_APPLICATION_NAME = "net.sf.jguard.application.name";
179:
180: public static final String NEGATIVE_PERMISSIONS = "negativePermissions";
181:
182: //certificate constants
183: public static final String UNIQUE_ID = "uniqueID";
184: public static final String DN = "DN";
185: public static final String PUBLIC_KEY = "publicKey";
186: public static final String ALTERNATIVE_NAME = "alternativeName";
187:
188: public static final String SALT = "salt";
189: public static final String DIGEST_ALGORITHM = "digestAlgorithm";
190: public static final String SCOPE = "scope";
191:
192: public static final Object SKIP_PASSWORD_CHECK = "skipPasswordCheck";
193:
194: public final static String AUTHORIZATION_SCOPE = "authorizationScope";
195: public static final String AUTHENTICATION_SCOPE = "authenticationScope";
196:
197: public final static String LOCAL_SCOPE = "local";
198: public final static String JVM_SCOPE = "jvm";
199:
200: //jmx constants
201: // JMX context params
202: public static final String RMI_REGISTRY_HOST = "rmiRegistryHost";
203:
204: public static final String RMI_REGISTRY_PORT = "rmiRegistryPort";
205:
206: // default JMX configuration
207: public static final String DEFAULT_RMI_REGISTRY_HOST = "localhost";
208:
209: public static final int DEFAULT_RMI_REGISTRY_PORT = 9005;
210:
211: public static final String ENABLE_JMX = "enableJMX";
212: public static final String MBEAN_SERVER_FOR_CONNECTOR = "mbeanServerForConnector";
213:
214: public static final String JAVAX_NET_SSL_TRUSTSTORE = "javax.net.ssl.trustStore";
215: public static final Object JAVAX_NET_SSL_TRUSTSTORE_PASSWORD = "javax.net.ssl.trustStorePassword";
216: public static final Object KEY_STORE_PATH = "keyStorePath";
217: public static final Object KEY_STORE_PASSWORD = "keyStorePassword";
218: public static final Object KEY_STORE_TYPE = "keyStoreType";
219: }
|