Package com.ibm.wsspi.security.token

Class WSSecurityPropagationHelper

java.lang.Object

com.ibm.wsspi.security.token.WSSecurityPropagationHelper

public class WSSecurityPropagationHelper
extends Object

This class provides some helper methods to retrieve the user information from an LTPA token.

Since:

5.1.1

Constructor Summary

Constructors

Constructor	Description
WSSecurityPropagationHelper()

Method Summary

Modifier and Type	Method	Description
static ValidationResult	validateToken(byte[] token)	This method validates an LTPA token and will return a ValidationResult object.

Methods inherited from class java.lang.Object

equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

WSSecurityPropagationHelper

public WSSecurityPropagationHelper()

Method Details

validateToken

public static ValidationResult validateToken(byte[] token)
                                      throws com.ibm.websphere.security.auth.ValidationFailedException

This method validates an LTPA token and will return a ValidationResult object. If the token cannot be validated, is expired or null, a ValidationFailedException will be thrown.

The validateToken API requires a Java 2 Security permission, WebSphereRuntimePermission "validateLTPAToken". You can retrieve the LtpaToken2 from the JAAS custom login module sharedState Constants.WSSSOTOKEN_KEY or callback WSCredTokenCallbackImpl. See the JAAS custom login module sample for detail information. You can also retrieve the LtpaToken2 from the LTPA cookie If you call this API with the LTPA cookie value, then you must decode the LTPA cookie value. Example: byte[] ltpaToken = Base64.getDecoder().decode(ltpaCookieValue);

Parameters:

byte - [] (LtpaToken2)

Returns:

ValidationResult

Throws:

com.ibm.websphere.security.auth.ValidationFailedException