content/javadoc/latest-3.1.x/org/apache/cxf/ws/security/SecurityConstants.html - cxf-site - Git at Google

 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
 <!-- NewPage -->
 <html lang="en">
 <head>
 <meta http-equiv="Content-Type" content="text/html" charset="UTF-8">
 <title>SecurityConstants (Apache CXF JavaDoc 3.1.0 API)</title>
 <link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="Style">
 </head>
 <body>
 <script type="text/javascript"><!--
     if (location.href.indexOf('is-external=true') == -1) {
         parent.document.title="SecurityConstants (Apache CXF JavaDoc 3.1.0 API)";
     }
 //-->
 </script>
 <noscript>
 <div>JavaScript is disabled on your browser.</div>
 </noscript>
 <!-- ========= START OF TOP NAVBAR ======= -->
 <div class="topNav"><a name="navbar_top">
 <!--   -->
 </a><a href="#skip-navbar_top" title="Skip navigation links"></a><a name="navbar_top_firstrow">
 <!--   -->
 </a>
 <ul class="navList" title="Navigation">
 <li><a href="../../../../../overview-summary.html">Overview</a></li>
 <li><a href="package-summary.html">Package</a></li>
 <li class="navBarCell1Rev">Class</li>
 <li><a href="class-use/SecurityConstants.html">Use</a></li>
 <li><a href="package-tree.html">Tree</a></li>
 <li><a href="../../../../../deprecated-list.html">Deprecated</a></li>
 <li><a href="../../../../../index-all.html">Index</a></li>
 <li><a href="../../../../../help-doc.html">Help</a></li>
 </ul>
 <div class="aboutLanguage"><em>Apache CXF API</em></div>
 </div>
 <div class="subNav">
 <ul class="navList">
 <li>Prev Class</li>
 <li>Next Class</li>
 </ul>
 <ul class="navList">
 <li><a href="../../../../../index.html?org/apache/cxf/ws/security/SecurityConstants.html" target="_top">Frames</a></li>
 <li><a href="SecurityConstants.html" target="_top">No Frames</a></li>
 </ul>
 <ul class="navList" id="allclasses_navbar_top">
 <li><a href="../../../../../allclasses-noframe.html">All Classes</a></li>
 </ul>
 <div>
 <script type="text/javascript"><!--
   allClassesLink = document.getElementById("allclasses_navbar_top");
   if(window==top) {
     allClassesLink.style.display = "block";
   }
   else {
     allClassesLink.style.display = "none";
   }
   //-->
 </script>
 </div>
 <div>
 <ul class="subNavList">
 <li>Summary:&nbsp;</li>
 <li>Nested&nbsp;|&nbsp;</li>
 <li><a href="#field_summary">Field</a>&nbsp;|&nbsp;</li>
 <li>Constr&nbsp;|&nbsp;</li>
 <li><a href="#methods_inherited_from_class_java.lang.Object">Method</a></li>
 </ul>
 <ul class="subNavList">
 <li>Detail:&nbsp;</li>
 <li><a href="#field_detail">Field</a>&nbsp;|&nbsp;</li>
 <li>Constr&nbsp;|&nbsp;</li>
 <li>Method</li>
 </ul>
 </div>
 <a name="skip-navbar_top">
 <!--   -->
 </a></div>
 <!-- ========= END OF TOP NAVBAR ========= -->
 <!-- ======== START OF CLASS DATA ======== -->
 <div class="header">
 <div class="subTitle">org.apache.cxf.ws.security</div>
 <h2 title="Class SecurityConstants" class="title">Class SecurityConstants</h2>
 </div>
 <div class="contentContainer">
 <ul class="inheritance">
 <li><a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true" title="class or interface in java.lang">java.lang.Object</a></li>
 <li>
 <ul class="inheritance">
 <li><a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html" title="class in org.apache.cxf.rt.security">org.apache.cxf.rt.security.SecurityConstants</a></li>
 <li>
 <ul class="inheritance">
 <li>org.apache.cxf.ws.security.SecurityConstants</li>
 </ul>
 </li>
 </ul>
 </li>
 </ul>
 <div class="description">
 <ul class="blockList">
 <li class="blockList">
 <hr>
 <br>
 <pre>public final class <span class="strong">SecurityConstants</span>
 extends <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html" title="class in org.apache.cxf.rt.security">SecurityConstants</a></pre>
 <div class="block">Configuration tags used to configure the WS-SecurityPolicy layer. Some of them are also
  used by the non WS-SecurityPolicy approach in the WSS4J(Out|In)Interceptors.</div>
 </li>
 </ul>
 </div>
 <div class="summary">
 <ul class="blockList">
 <li class="blockList">
 <!-- =========== FIELD SUMMARY =========== -->
 <ul class="blockList">
 <li class="blockList"><a name="field_summary">
 <!--   -->
 </a>
 <h3>Field Summary</h3>
 <table class="overviewSummary" border="0" cellpadding="3" cellspacing="0" summary="Field Summary table, listing fields, and an explanation">
 <caption><span>Fields</span><span class="tabEnd">&nbsp;</span></caption>
 <tr>
 <th class="colFirst" scope="col">Modifier and Type</th>
 <th class="colLast" scope="col">Field and Description</th>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#ACTOR">ACTOR</a></strong></code>
 <div class="block">The actor or role name of the wsse:Security header.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/util/Set.html?is-external=true" title="class or interface in java.util">Set</a>&lt;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a>&gt;</code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#ALL_PROPERTIES">ALL_PROPERTIES</a></strong></code>&nbsp;</td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#ALWAYS_ENCRYPT_UT">ALWAYS_ENCRYPT_UT</a></strong></code>
 <div class="block">Whether to always encrypt UsernameTokens that are defined as a SupportingToken.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#ASYMMETRIC_SIGNATURE_ALGORITHM">ASYMMETRIC_SIGNATURE_ALGORITHM</a></strong></code>
 <div class="block">This configuration tag allows the user to override the default Asymmetric Signature
  algorithm (RSA-SHA1) for use in WS-SecurityPolicy, as the WS-SecurityPolicy specification
  does not allow the use of other algorithms at present.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#BST_TOKEN_VALIDATOR">BST_TOKEN_VALIDATOR</a></strong></code>
 <div class="block">The WSS4J Validator instance to use to validate BinarySecurityTokens.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#CACHE_CONFIG_FILE">CACHE_CONFIG_FILE</a></strong></code>
 <div class="block">Set this property to point to a configuration file for the underlying caching implementation.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#CACHE_IDENTIFIER">CACHE_IDENTIFIER</a></strong></code>
 <div class="block">The Cache Identifier to use with the TokenStore.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#CACHE_ISSUED_TOKEN_IN_ENDPOINT">CACHE_ISSUED_TOKEN_IN_ENDPOINT</a></strong></code>
 <div class="block">Set this to "false" to not cache a SecurityToken per proxy object in the
  IssuedTokenInterceptorProvider.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#DELEGATED_CREDENTIAL">DELEGATED_CREDENTIAL</a></strong></code>
 <div class="block">A delegated credential to use for WS-Security.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#DISABLE_STS_CLIENT_WSMEX_CALL_USING_EPR_ADDRESS">DISABLE_STS_CLIENT_WSMEX_CALL_USING_EPR_ADDRESS</a></strong></code>
 <div class="block">Whether to avoid STS client trying send WS-MetadataExchange call using
  STS EPR WSA address when the endpoint contract contains no WS-MetadataExchange info.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_NONCE_CACHE">ENABLE_NONCE_CACHE</a></strong></code>
 <div class="block">Whether to cache UsernameToken nonces.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_SAML_ONE_TIME_USE_CACHE">ENABLE_SAML_ONE_TIME_USE_CACHE</a></strong></code>
 <div class="block">Whether to cache SAML2 Token Identifiers, if the token contains a "OneTimeUse" Condition.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_STREAMING_SECURITY">ENABLE_STREAMING_SECURITY</a></strong></code>
 <div class="block">Whether to enable streaming WS-Security.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_TIMESTAMP_CACHE">ENABLE_TIMESTAMP_CACHE</a></strong></code>
 <div class="block">Whether to cache Timestamp Created Strings (these are only cached in conjunction with a message
  Signature).The default value is "true" for message recipients, and "false" for message initiators.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#IS_BSP_COMPLIANT">IS_BSP_COMPLIANT</a></strong></code>
 <div class="block">Whether to ensure compliance with the Basic Security Profile (BSP) 1.1 or not.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#KERBEROS_CLIENT">KERBEROS_CLIENT</a></strong></code>
 <div class="block">A reference to the KerberosClient class used to obtain a service ticket.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#KERBEROS_IS_USERNAME_IN_SERVICENAME_FORM">KERBEROS_IS_USERNAME_IN_SERVICENAME_FORM</a></strong></code>
 <div class="block">Whether the Kerberos username is in servicename form or not.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#KERBEROS_JAAS_CONTEXT_NAME">KERBEROS_JAAS_CONTEXT_NAME</a></strong></code>
 <div class="block">The JAAS Context name to use for Kerberos.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#KERBEROS_REQUEST_CREDENTIAL_DELEGATION">KERBEROS_REQUEST_CREDENTIAL_DELEGATION</a></strong></code>
 <div class="block">Whether to request credential delegation or not in the KerberosClient.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#KERBEROS_SPN">KERBEROS_SPN</a></strong></code>
 <div class="block">The Kerberos Service Provider Name (spn) to use.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#KERBEROS_USE_CREDENTIAL_DELEGATION">KERBEROS_USE_CREDENTIAL_DELEGATION</a></strong></code>
 <div class="block">Whether to use credential delegation or not in the KerberosClient.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#MUST_UNDERSTAND">MUST_UNDERSTAND</a></strong></code>
 <div class="block">Set this to "false" in order to remove the SOAP mustUnderstand header from security headers generated based on
  a WS-SecurityPolicy.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#NONCE_CACHE_INSTANCE">NONCE_CACHE_INSTANCE</a></strong></code>
 <div class="block">This holds a reference to a ReplayCache instance used to cache UsernameToken nonces.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#PASSWORD_ENCRYPTOR_INSTANCE">PASSWORD_ENCRYPTOR_INSTANCE</a></strong></code>
 <div class="block">This holds a reference to a PasswordEncryptor instance, which is used to encrypt or
  decrypt passwords in the Merlin Crypto implementation (or any custom Crypto implementations).</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#POLICY_VALIDATOR_MAP">POLICY_VALIDATOR_MAP</a></strong></code>
 <div class="block">This refers to a Map of QName, SecurityPolicyValidator, which retrieves a SecurityPolicyValidator
  implementation to validate a particular security policy, based on the QName of the policy.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#PREFER_WSMEX_OVER_STS_CLIENT_CONFIG">PREFER_WSMEX_OVER_STS_CLIENT_CONFIG</a></strong></code>
 <div class="block">Whether to prefer to use WS-MEX over a STSClient's location/wsdlLocation properties
  when making an STS RequestSecurityToken call.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#RETURN_SECURITY_ERROR">RETURN_SECURITY_ERROR</a></strong></code>
 <div class="block">Whether to return the security error message to the client, and not the default error message.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#SAML_ONE_TIME_USE_CACHE_INSTANCE">SAML_ONE_TIME_USE_CACHE_INSTANCE</a></strong></code>
 <div class="block">This holds a reference to a ReplayCache instance used to cache SAML2 Token Identifiers, when
  the token has a "OneTimeUse" Condition.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#SAML1_TOKEN_VALIDATOR">SAML1_TOKEN_VALIDATOR</a></strong></code>
 <div class="block">The WSS4J Validator instance to use to validate SAML 1.1 Tokens.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#SAML2_TOKEN_VALIDATOR">SAML2_TOKEN_VALIDATOR</a></strong></code>
 <div class="block">The WSS4J Validator instance to use to validate SAML 2.0 Tokens.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#SCT_TOKEN_VALIDATOR">SCT_TOKEN_VALIDATOR</a></strong></code>
 <div class="block">The WSS4J Validator instance to use to validate SecurityContextTokens.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#SIGNATURE_TOKEN_VALIDATOR">SIGNATURE_TOKEN_VALIDATOR</a></strong></code>
 <div class="block">The WSS4J Validator instance to use to validate trust in credentials used in
  Signature verification.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#SPNEGO_CLIENT_ACTION">SPNEGO_CLIENT_ACTION</a></strong></code>
 <div class="block">The SpnegoClientAction implementation to use for SPNEGO.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_APPLIES_TO">STS_APPLIES_TO</a></strong></code>
 <div class="block">The "AppliesTo" address to send to the STS.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_CLIENT">STS_CLIENT</a></strong></code>
 <div class="block">A reference to the STSClient class used to communicate with the STS.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_CLIENT_SOAP12_BINDING">STS_CLIENT_SOAP12_BINDING</a></strong></code>
 <div class="block">Switch STS client to send Soap 1.2 messages</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_ISSUE_AFTER_FAILED_RENEW">STS_ISSUE_AFTER_FAILED_RENEW</a></strong></code>
 <div class="block">Whether to fall back to calling "issue" after failing to renew an expired token.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_ACT_AS">STS_TOKEN_ACT_AS</a></strong></code>
 <div class="block">The token to be sent to the STS in an "ActAs" field.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_CRYPTO">STS_TOKEN_CRYPTO</a></strong></code>
 <div class="block">A Crypto object to be used for the STS.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_DO_CANCEL">STS_TOKEN_DO_CANCEL</a></strong></code>
 <div class="block">Whether to cancel a token when using SecureConversation after successful invocation.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_IMMINENT_EXPIRY_VALUE">STS_TOKEN_IMMINENT_EXPIRY_VALUE</a></strong></code>
 <div class="block">This is the value in seconds within which a token is considered to be expired by the
  client.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_ON_BEHALF_OF">STS_TOKEN_ON_BEHALF_OF</a></strong></code>
 <div class="block">The token to be sent to the STS in an "OnBehalfOf" field.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_PROPERTIES">STS_TOKEN_PROPERTIES</a></strong></code>
 <div class="block">The Crypto property configuration to use for the STS, if <code>STS_TOKEN_CRYPTO</code> is not
  set instead.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_USE_CERT_FOR_KEYINFO">STS_TOKEN_USE_CERT_FOR_KEYINFO</a></strong></code>
 <div class="block">Whether to write out an X509Certificate structure in UseKey/KeyInfo, or whether to write
  out a KeyValue structure.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_USERNAME">STS_TOKEN_USERNAME</a></strong></code>
 <div class="block">The alias name in the keystore to get the user's public key to send to the STS for the
  PublicKey KeyType case.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#SUBJECT_ROLE_CLASSIFIER">SUBJECT_ROLE_CLASSIFIER</a></strong></code>
 <div class="block">The Subject Role Classifier to use.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#SUBJECT_ROLE_CLASSIFIER_TYPE">SUBJECT_ROLE_CLASSIFIER_TYPE</a></strong></code>
 <div class="block">The Subject Role Classifier Type to use.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#TIMESTAMP_CACHE_INSTANCE">TIMESTAMP_CACHE_INSTANCE</a></strong></code>
 <div class="block">This holds a reference to a ReplayCache instance used to cache Timestamp Created Strings.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#TIMESTAMP_FUTURE_TTL">TIMESTAMP_FUTURE_TTL</a></strong></code>
 <div class="block">The time in seconds in the future within which the Created time of an incoming
  Timestamp is valid.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#TIMESTAMP_TOKEN_VALIDATOR">TIMESTAMP_TOKEN_VALIDATOR</a></strong></code>
 <div class="block">The WSS4J Validator instance to use to validate Timestamps.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#TIMESTAMP_TTL">TIMESTAMP_TTL</a></strong></code>
 <div class="block">The time in seconds to append to the Creation value of an incoming Timestamp to determine
  whether to accept the Timestamp as valid or not.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#TOKEN">TOKEN</a></strong></code>&nbsp;</td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#TOKEN_ID">TOKEN_ID</a></strong></code>&nbsp;</td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#TOKEN_STORE_CACHE_INSTANCE">TOKEN_STORE_CACHE_INSTANCE</a></strong></code>
 <div class="block">The TokenStore instance to use to cache security tokens.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#USERNAME_TOKEN_VALIDATOR">USERNAME_TOKEN_VALIDATOR</a></strong></code>
 <div class="block">The WSS4J Validator instance to use to validate UsernameTokens.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#USERNAMETOKEN_FUTURE_TTL">USERNAMETOKEN_FUTURE_TTL</a></strong></code>
 <div class="block">The time in seconds in the future within which the Created time of an incoming
  UsernameToken is valid.</div>
 </td>
 </tr>
 <tr class="altColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#USERNAMETOKEN_TTL">USERNAMETOKEN_TTL</a></strong></code>
 <div class="block">The time in seconds to append to the Creation value of an incoming UsernameToken to determine
  whether to accept the UsernameToken as valid or not.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <td class="colFirst"><code>static <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a></code></td>
 <td class="colLast"><code><strong><a href="../../../../../org/apache/cxf/ws/security/SecurityConstants.html#VALIDATE_TOKEN">VALIDATE_TOKEN</a></strong></code>
 <div class="block">Whether to validate the password of a received UsernameToken or not.</div>
 </td>
 </tr>
 </table>
 <ul class="blockList">
 <li class="blockList"><a name="fields_inherited_from_class_org.apache.cxf.rt.security.SecurityConstants">
 <!--   -->
 </a>
 <h3>Fields inherited from class&nbsp;org.apache.cxf.rt.security.<a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html" title="class in org.apache.cxf.rt.security">SecurityConstants</a></h3>
 <code><a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#AUDIENCE_RESTRICTION_VALIDATION">AUDIENCE_RESTRICTION_VALIDATION</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#CALLBACK_HANDLER">CALLBACK_HANDLER</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#COMMON_PROPERTIES">COMMON_PROPERTIES</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#ENABLE_REVOCATION">ENABLE_REVOCATION</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#ENABLE_UNSIGNED_SAML_ASSERTION_PRINCIPAL">ENABLE_UNSIGNED_SAML_ASSERTION_PRINCIPAL</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#ENCRYPT_CERT">ENCRYPT_CERT</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#ENCRYPT_CRYPTO">ENCRYPT_CRYPTO</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#ENCRYPT_PROPERTIES">ENCRYPT_PROPERTIES</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#ENCRYPT_USERNAME">ENCRYPT_USERNAME</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#PASSWORD">PASSWORD</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#SAML_CALLBACK_HANDLER">SAML_CALLBACK_HANDLER</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#SAML_ROLE_ATTRIBUTENAME">SAML_ROLE_ATTRIBUTENAME</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#SC_FROM_JAAS_SUBJECT">SC_FROM_JAAS_SUBJECT</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#SIGNATURE_CRYPTO">SIGNATURE_CRYPTO</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#SIGNATURE_PROPERTIES">SIGNATURE_PROPERTIES</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#SIGNATURE_USERNAME">SIGNATURE_USERNAME</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#SUBJECT_CERT_CONSTRAINTS">SUBJECT_CERT_CONSTRAINTS</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#USERNAME">USERNAME</a>, <a href="../../../../../org/apache/cxf/rt/security/SecurityConstants.html#VALIDATE_SAML_SUBJECT_CONFIRMATION">VALIDATE_SAML_SUBJECT_CONFIRMATION</a></code></li>
 </ul>
 </li>
 </ul>
 <!-- ========== METHOD SUMMARY =========== -->
 <ul class="blockList">
 <li class="blockList"><a name="method_summary">
 <!--   -->
 </a>
 <h3>Method Summary</h3>
 <ul class="blockList">
 <li class="blockList"><a name="methods_inherited_from_class_java.lang.Object">
 <!--   -->
 </a>
 <h3>Methods inherited from class&nbsp;java.lang.<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true" title="class or interface in java.lang">Object</a></h3>
 <code><a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true#clone()" title="class or interface in java.lang">clone</a>, <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true#equals(java.lang.Object)" title="class or interface in java.lang">equals</a>, <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true#finalize()" title="class or interface in java.lang">finalize</a>, <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true#getClass()" title="class or interface in java.lang">getClass</a>, <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true#hashCode()" title="class or interface in java.lang">hashCode</a>, <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true#notify()" title="class or interface in java.lang">notify</a>, <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true#notifyAll()" title="class or interface in java.lang">notifyAll</a>, <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true#toString()" title="class or interface in java.lang">toString</a>, <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true#wait()" title="class or interface in java.lang">wait</a>, <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true#wait(long)" title="class or interface in java.lang">wait</a>, <a href="http://docs.oracle.com/javase/7/docs/api/java/lang/Object.html?is-external=true#wait(long,%20int)" title="class or interface in java.lang">wait</a></code></li>
 </ul>
 </li>
 </ul>
 </li>
 </ul>
 </div>
 <div class="details">
 <ul class="blockList">
 <li class="blockList">
 <!-- ============ FIELD DETAIL =========== -->
 <ul class="blockList">
 <li class="blockList"><a name="field_detail">
 <!--   -->
 </a>
 <h3>Field Detail</h3>
 <a name="ACTOR">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>ACTOR</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> ACTOR</pre>
 <div class="block">The actor or role name of the wsse:Security header. If this parameter
  is omitted, the actor name is not set.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.ACTOR">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="VALIDATE_TOKEN">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>VALIDATE_TOKEN</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> VALIDATE_TOKEN</pre>
 <div class="block">Whether to validate the password of a received UsernameToken or not. The default is true.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.VALIDATE_TOKEN">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="ALWAYS_ENCRYPT_UT">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>ALWAYS_ENCRYPT_UT</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> ALWAYS_ENCRYPT_UT</pre>
 <div class="block">Whether to always encrypt UsernameTokens that are defined as a SupportingToken. The default
  is true. This should not be set to false in a production environment, as it exposes the
  password (or the digest of the password) on the wire.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.ALWAYS_ENCRYPT_UT">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="IS_BSP_COMPLIANT">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>IS_BSP_COMPLIANT</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> IS_BSP_COMPLIANT</pre>
 <div class="block">Whether to ensure compliance with the Basic Security Profile (BSP) 1.1 or not. The
  default value is "true".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.IS_BSP_COMPLIANT">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="ENABLE_NONCE_CACHE">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>ENABLE_NONCE_CACHE</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> ENABLE_NONCE_CACHE</pre>
 <div class="block">Whether to cache UsernameToken nonces. The default value is "true" for message recipients, and
  "false" for message initiators. Set it to true to cache for both cases. Set this to "false" to
  not cache UsernameToken nonces. Note that caching only applies when either a UsernameToken
  WS-SecurityPolicy is in effect, or else that a UsernameToken action has been configured
  for the non-security-policy case.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.ENABLE_NONCE_CACHE">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="ENABLE_TIMESTAMP_CACHE">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>ENABLE_TIMESTAMP_CACHE</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> ENABLE_TIMESTAMP_CACHE</pre>
 <div class="block">Whether to cache Timestamp Created Strings (these are only cached in conjunction with a message
  Signature).The default value is "true" for message recipients, and "false" for message initiators.
  Set it to true to cache for both cases. Set this to "false" to not cache Timestamp Created Strings.
  Note that caching only applies when either a "IncludeTimestamp" policy is in effect, or
  else that a Timestamp action has been configured for the non-security-policy case.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.ENABLE_TIMESTAMP_CACHE">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="ENABLE_STREAMING_SECURITY">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>ENABLE_STREAMING_SECURITY</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> ENABLE_STREAMING_SECURITY</pre>
 <div class="block">Whether to enable streaming WS-Security. If set to false (the default), the old DOM
  implementation is used. If set to true, the new streaming (StAX) implementation is used.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.ENABLE_STREAMING_SECURITY">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="RETURN_SECURITY_ERROR">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>RETURN_SECURITY_ERROR</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> RETURN_SECURITY_ERROR</pre>
 <div class="block">Whether to return the security error message to the client, and not the default error message.
  The "real" security errors should not be returned to the client in a deployment scenario,
  as they may leak information about the deployment, or otherwise provide a "oracle" for attacks.
  The default is false.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.RETURN_SECURITY_ERROR">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="MUST_UNDERSTAND">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>MUST_UNDERSTAND</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> MUST_UNDERSTAND</pre>
 <div class="block">Set this to "false" in order to remove the SOAP mustUnderstand header from security headers generated based on
  a WS-SecurityPolicy.

  The default value is "true" which included the SOAP mustUnderstand header.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.MUST_UNDERSTAND">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="ENABLE_SAML_ONE_TIME_USE_CACHE">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>ENABLE_SAML_ONE_TIME_USE_CACHE</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> ENABLE_SAML_ONE_TIME_USE_CACHE</pre>
 <div class="block">Whether to cache SAML2 Token Identifiers, if the token contains a "OneTimeUse" Condition.
  The default value is "true" for message recipients, and "false" for message initiators.
  Set it to true to cache for both cases. Set this to "false" to not cache SAML2 Token Identifiers.
  Note that caching only applies when either a "SamlToken" policy is in effect, or
  else that a SAML action has been configured for the non-security-policy case.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.ENABLE_SAML_ONE_TIME_USE_CACHE">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="TIMESTAMP_TTL">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>TIMESTAMP_TTL</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> TIMESTAMP_TTL</pre>
 <div class="block">The time in seconds to append to the Creation value of an incoming Timestamp to determine
  whether to accept the Timestamp as valid or not. The default value is 300 seconds (5 minutes).</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.TIMESTAMP_TTL">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="TIMESTAMP_FUTURE_TTL">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>TIMESTAMP_FUTURE_TTL</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> TIMESTAMP_FUTURE_TTL</pre>
 <div class="block">The time in seconds in the future within which the Created time of an incoming
  Timestamp is valid. The default value is "60", to avoid problems where clocks are
  slightly askew. To reject all future-created Timestamps, set this value to "0".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.TIMESTAMP_FUTURE_TTL">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="USERNAMETOKEN_TTL">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>USERNAMETOKEN_TTL</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> USERNAMETOKEN_TTL</pre>
 <div class="block">The time in seconds to append to the Creation value of an incoming UsernameToken to determine
  whether to accept the UsernameToken as valid or not. The default value is 300 seconds (5 minutes).</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.USERNAMETOKEN_TTL">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="USERNAMETOKEN_FUTURE_TTL">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>USERNAMETOKEN_FUTURE_TTL</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> USERNAMETOKEN_FUTURE_TTL</pre>
 <div class="block">The time in seconds in the future within which the Created time of an incoming
  UsernameToken is valid. The default value is "60", to avoid problems where clocks are
  slightly askew. To reject all future-created UsernameTokens, set this value to "0".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.USERNAMETOKEN_FUTURE_TTL">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="SPNEGO_CLIENT_ACTION">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>SPNEGO_CLIENT_ACTION</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> SPNEGO_CLIENT_ACTION</pre>
 <div class="block">The SpnegoClientAction implementation to use for SPNEGO. This allows the user to plug in
  a different implementation to obtain a service ticket.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.SPNEGO_CLIENT_ACTION">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="NONCE_CACHE_INSTANCE">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>NONCE_CACHE_INSTANCE</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> NONCE_CACHE_INSTANCE</pre>
 <div class="block">This holds a reference to a ReplayCache instance used to cache UsernameToken nonces. The
  default instance that is used is the EHCacheReplayCache.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.NONCE_CACHE_INSTANCE">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="TIMESTAMP_CACHE_INSTANCE">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>TIMESTAMP_CACHE_INSTANCE</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> TIMESTAMP_CACHE_INSTANCE</pre>
 <div class="block">This holds a reference to a ReplayCache instance used to cache Timestamp Created Strings. The
  default instance that is used is the EHCacheReplayCache.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.TIMESTAMP_CACHE_INSTANCE">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="SAML_ONE_TIME_USE_CACHE_INSTANCE">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>SAML_ONE_TIME_USE_CACHE_INSTANCE</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> SAML_ONE_TIME_USE_CACHE_INSTANCE</pre>
 <div class="block">This holds a reference to a ReplayCache instance used to cache SAML2 Token Identifiers, when
  the token has a "OneTimeUse" Condition. The default instance that is used is the EHCacheReplayCache.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.SAML_ONE_TIME_USE_CACHE_INSTANCE">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="CACHE_CONFIG_FILE">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>CACHE_CONFIG_FILE</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> CACHE_CONFIG_FILE</pre>
 <div class="block">Set this property to point to a configuration file for the underlying caching implementation.
  The default configuration file that is used is cxf-ehcache.xml in this module.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.CACHE_CONFIG_FILE">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="TOKEN_STORE_CACHE_INSTANCE">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>TOKEN_STORE_CACHE_INSTANCE</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> TOKEN_STORE_CACHE_INSTANCE</pre>
 <div class="block">The TokenStore instance to use to cache security tokens. By default this uses the
  EHCacheTokenStore if EhCache is available. Otherwise it uses the MemoryTokenStore.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.TOKEN_STORE_CACHE_INSTANCE">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="CACHE_IDENTIFIER">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>CACHE_IDENTIFIER</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> CACHE_IDENTIFIER</pre>
 <div class="block">The Cache Identifier to use with the TokenStore. CXF uses the following key to retrieve a
  token store: "org.apache.cxf.ws.security.tokenstore.TokenStore-<identifier>". This key can be
  used to configure service-specific cache configuration. If the identifier does not match, then it
  falls back to a cache configuration with key "org.apache.cxf.ws.security.tokenstore.TokenStore".

  The default "<identifier>" is the QName of the service in question. However to pick up a
  custom cache configuration (for example, if you want to specify a TokenStore per-client proxy),
  it can be configured with this identifier instead.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.CACHE_IDENTIFIER">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="SUBJECT_ROLE_CLASSIFIER">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>SUBJECT_ROLE_CLASSIFIER</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> SUBJECT_ROLE_CLASSIFIER</pre>
 <div class="block">The Subject Role Classifier to use. If one of the WSS4J Validators returns a JAAS Subject
  from Validation, then the WSS4JInInterceptor will attempt to create a SecurityContext
  based on this Subject. If this value is not specified, then it tries to get roles using
  the DefaultSecurityContext in cxf-rt-core. Otherwise it uses this value in combination
  with the SUBJECT_ROLE_CLASSIFIER_TYPE to get the roles from the Subject.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.SUBJECT_ROLE_CLASSIFIER">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="SUBJECT_ROLE_CLASSIFIER_TYPE">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>SUBJECT_ROLE_CLASSIFIER_TYPE</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> SUBJECT_ROLE_CLASSIFIER_TYPE</pre>
 <div class="block">The Subject Role Classifier Type to use. If one of the WSS4J Validators returns a JAAS Subject
  from Validation, then the WSS4JInInterceptor will attempt to create a SecurityContext
  based on this Subject. Currently accepted values are "prefix" or "classname". Must be
  used in conjunction with the SUBJECT_ROLE_CLASSIFIER. The default value is "prefix".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.SUBJECT_ROLE_CLASSIFIER_TYPE">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="ASYMMETRIC_SIGNATURE_ALGORITHM">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>ASYMMETRIC_SIGNATURE_ALGORITHM</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> ASYMMETRIC_SIGNATURE_ALGORITHM</pre>
 <div class="block">This configuration tag allows the user to override the default Asymmetric Signature
  algorithm (RSA-SHA1) for use in WS-SecurityPolicy, as the WS-SecurityPolicy specification
  does not allow the use of other algorithms at present.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.ASYMMETRIC_SIGNATURE_ALGORITHM">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="PASSWORD_ENCRYPTOR_INSTANCE">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>PASSWORD_ENCRYPTOR_INSTANCE</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> PASSWORD_ENCRYPTOR_INSTANCE</pre>
 <div class="block">This holds a reference to a PasswordEncryptor instance, which is used to encrypt or
  decrypt passwords in the Merlin Crypto implementation (or any custom Crypto implementations).

  By default, WSS4J uses the JasyptPasswordEncryptor, which must be instantiated with a
  master password to use to decrypt keystore passwords in the Merlin Crypto properties file.
  This master password is obtained via the CallbackHandler defined via PW_CALLBACK_CLASS
  or PW_CALLBACK_REF.

  The encrypted passwords must be stored in the format "ENC(encoded encrypted password)".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.PASSWORD_ENCRYPTOR_INSTANCE">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="DELEGATED_CREDENTIAL">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>DELEGATED_CREDENTIAL</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> DELEGATED_CREDENTIAL</pre>
 <div class="block">A delegated credential to use for WS-Security. Currently only a Kerberos GSSCredential
  Object is supported. This is used to retrieve a service ticket instead of using the
  client credentials.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.DELEGATED_CREDENTIAL">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="USERNAME_TOKEN_VALIDATOR">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>USERNAME_TOKEN_VALIDATOR</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> USERNAME_TOKEN_VALIDATOR</pre>
 <div class="block">The WSS4J Validator instance to use to validate UsernameTokens. The default value is the
  UsernameTokenValidator.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.USERNAME_TOKEN_VALIDATOR">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="SAML1_TOKEN_VALIDATOR">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>SAML1_TOKEN_VALIDATOR</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> SAML1_TOKEN_VALIDATOR</pre>
 <div class="block">The WSS4J Validator instance to use to validate SAML 1.1 Tokens. The default value is the
  SamlAssertionValidator.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.SAML1_TOKEN_VALIDATOR">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="SAML2_TOKEN_VALIDATOR">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>SAML2_TOKEN_VALIDATOR</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> SAML2_TOKEN_VALIDATOR</pre>
 <div class="block">The WSS4J Validator instance to use to validate SAML 2.0 Tokens. The default value is the
  SamlAssertionValidator.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.SAML2_TOKEN_VALIDATOR">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="TIMESTAMP_TOKEN_VALIDATOR">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>TIMESTAMP_TOKEN_VALIDATOR</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> TIMESTAMP_TOKEN_VALIDATOR</pre>
 <div class="block">The WSS4J Validator instance to use to validate Timestamps. The default value is the
  TimestampValidator.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.TIMESTAMP_TOKEN_VALIDATOR">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="SIGNATURE_TOKEN_VALIDATOR">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>SIGNATURE_TOKEN_VALIDATOR</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> SIGNATURE_TOKEN_VALIDATOR</pre>
 <div class="block">The WSS4J Validator instance to use to validate trust in credentials used in
  Signature verification. The default value is the SignatureTrustValidator.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.SIGNATURE_TOKEN_VALIDATOR">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="BST_TOKEN_VALIDATOR">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>BST_TOKEN_VALIDATOR</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> BST_TOKEN_VALIDATOR</pre>
 <div class="block">The WSS4J Validator instance to use to validate BinarySecurityTokens. The default value
  is the NoOpValidator.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.BST_TOKEN_VALIDATOR">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="SCT_TOKEN_VALIDATOR">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>SCT_TOKEN_VALIDATOR</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> SCT_TOKEN_VALIDATOR</pre>
 <div class="block">The WSS4J Validator instance to use to validate SecurityContextTokens. The default value is
  the NoOpValidator.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.SCT_TOKEN_VALIDATOR">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="POLICY_VALIDATOR_MAP">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>POLICY_VALIDATOR_MAP</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> POLICY_VALIDATOR_MAP</pre>
 <div class="block">This refers to a Map of QName, SecurityPolicyValidator, which retrieves a SecurityPolicyValidator
  implementation to validate a particular security policy, based on the QName of the policy. Any
  SecurityPolicyValidator implementation defined in this map will override the default value
  used internally for the corresponding QName.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.POLICY_VALIDATOR_MAP">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_CLIENT">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_CLIENT</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_CLIENT</pre>
 <div class="block">A reference to the STSClient class used to communicate with the STS.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_CLIENT">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_APPLIES_TO">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_APPLIES_TO</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_APPLIES_TO</pre>
 <div class="block">The "AppliesTo" address to send to the STS. The default is the endpoint address of the
  service provider.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_APPLIES_TO">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_TOKEN_USE_CERT_FOR_KEYINFO">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_TOKEN_USE_CERT_FOR_KEYINFO</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_TOKEN_USE_CERT_FOR_KEYINFO</pre>
 <div class="block">Whether to write out an X509Certificate structure in UseKey/KeyInfo, or whether to write
  out a KeyValue structure. The default value is "false".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_TOKEN_USE_CERT_FOR_KEYINFO">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_TOKEN_DO_CANCEL">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_TOKEN_DO_CANCEL</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_TOKEN_DO_CANCEL</pre>
 <div class="block">Whether to cancel a token when using SecureConversation after successful invocation. The
  default is "false".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_TOKEN_DO_CANCEL">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_ISSUE_AFTER_FAILED_RENEW">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_ISSUE_AFTER_FAILED_RENEW</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_ISSUE_AFTER_FAILED_RENEW</pre>
 <div class="block">Whether to fall back to calling "issue" after failing to renew an expired token. Some
  STSs do not support the renew binding, and so we should just issue a new token after expiry.
  The default is true.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_ISSUE_AFTER_FAILED_RENEW">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="CACHE_ISSUED_TOKEN_IN_ENDPOINT">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>CACHE_ISSUED_TOKEN_IN_ENDPOINT</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> CACHE_ISSUED_TOKEN_IN_ENDPOINT</pre>
 <div class="block">Set this to "false" to not cache a SecurityToken per proxy object in the
  IssuedTokenInterceptorProvider. This should be done if a token is being retrieved
  from an STS in an intermediary. The default value is "true".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.CACHE_ISSUED_TOKEN_IN_ENDPOINT">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="DISABLE_STS_CLIENT_WSMEX_CALL_USING_EPR_ADDRESS">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>DISABLE_STS_CLIENT_WSMEX_CALL_USING_EPR_ADDRESS</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> DISABLE_STS_CLIENT_WSMEX_CALL_USING_EPR_ADDRESS</pre>
 <div class="block">Whether to avoid STS client trying send WS-MetadataExchange call using
  STS EPR WSA address when the endpoint contract contains no WS-MetadataExchange info.
  The default value is "false".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.DISABLE_STS_CLIENT_WSMEX_CALL_USING_EPR_ADDRESS">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="PREFER_WSMEX_OVER_STS_CLIENT_CONFIG">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>PREFER_WSMEX_OVER_STS_CLIENT_CONFIG</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> PREFER_WSMEX_OVER_STS_CLIENT_CONFIG</pre>
 <div class="block">Whether to prefer to use WS-MEX over a STSClient's location/wsdlLocation properties
  when making an STS RequestSecurityToken call. This can be set to true for the scenario
  of making a WS-MEX call to an initial STS, and using the returned token to make another
  call to an STS (which is configured using the STSClient configuration). Default is
  "false".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.PREFER_WSMEX_OVER_STS_CLIENT_CONFIG">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_CLIENT_SOAP12_BINDING">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_CLIENT_SOAP12_BINDING</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_CLIENT_SOAP12_BINDING</pre>
 <div class="block">Switch STS client to send Soap 1.2 messages</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_CLIENT_SOAP12_BINDING">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_TOKEN_CRYPTO">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_TOKEN_CRYPTO</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_TOKEN_CRYPTO</pre>
 <div class="block">A Crypto object to be used for the STS. If this is not defined then the
  <code>STS_TOKEN_PROPERTIES</code> is used instead.

  WCF's trust server sometimes will encrypt the token in the response IN ADDITION TO
  the full security on the message. These properties control the way the STS client
  will decrypt the EncryptedData elements in the response.

  These are also used by the STSClient to send/process any RSA/DSAKeyValue tokens
  used if the KeyType is "PublicKey"</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_TOKEN_CRYPTO">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_TOKEN_PROPERTIES">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_TOKEN_PROPERTIES</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_TOKEN_PROPERTIES</pre>
 <div class="block">The Crypto property configuration to use for the STS, if <code>STS_TOKEN_CRYPTO</code> is not
  set instead.
  The value of this tag must be either:
  a) A Java Properties object that contains the Crypto configuration.
  b) The path of the Crypto property file that contains the Crypto configuration.
  c) A URL that points to the Crypto property file that contains the Crypto configuration.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_TOKEN_PROPERTIES">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_TOKEN_USERNAME">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_TOKEN_USERNAME</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_TOKEN_USERNAME</pre>
 <div class="block">The alias name in the keystore to get the user's public key to send to the STS for the
  PublicKey KeyType case.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_TOKEN_USERNAME">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_TOKEN_ACT_AS">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_TOKEN_ACT_AS</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_TOKEN_ACT_AS</pre>
 <div class="block">The token to be sent to the STS in an "ActAs" field. It can be either:
  a) A String (which must be an XML statement like "<wst:OnBehalfOf xmlns:wst=...>...</wst:OnBehalfOf>")
  b) A DOM Element
  c) A CallbackHandler object to use to obtain the token

  In the case of a CallbackHandler, it must be able to handle a
  org.apache.cxf.ws.security.trust.delegation.DelegationCallback Object, which contains a
  reference to the current Message. The CallbackHandler implementation is required to set
  the token Element to be sent in the request on the Callback.

  Some examples that can be reused are:
  org.apache.cxf.ws.security.trust.delegation.ReceivedTokenCallbackHandler
  org.apache.cxf.ws.security.trust.delegation.WSSUsernameCallbackHandler</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_TOKEN_ACT_AS">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_TOKEN_ON_BEHALF_OF">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_TOKEN_ON_BEHALF_OF</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_TOKEN_ON_BEHALF_OF</pre>
 <div class="block">The token to be sent to the STS in an "OnBehalfOf" field. It can be either:
  a) A String (which must be an XML statement like "<wst:OnBehalfOf xmlns:wst=...>...</wst:OnBehalfOf>")
  b) A DOM Element
  c) A CallbackHandler object to use to obtain the token

  In the case of a CallbackHandler, it must be able to handle a
  org.apache.cxf.ws.security.trust.delegation.DelegationCallback Object, which contains a
  reference to the current Message. The CallbackHandler implementation is required to set
  the token Element to be sent in the request on the Callback.

  Some examples that can be reused are:
  org.apache.cxf.ws.security.trust.delegation.ReceivedTokenCallbackHandler
  org.apache.cxf.ws.security.trust.delegation.WSSUsernameCallbackHandler</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_TOKEN_ON_BEHALF_OF">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="STS_TOKEN_IMMINENT_EXPIRY_VALUE">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>STS_TOKEN_IMMINENT_EXPIRY_VALUE</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> STS_TOKEN_IMMINENT_EXPIRY_VALUE</pre>
 <div class="block">This is the value in seconds within which a token is considered to be expired by the
  client. When a cached token (from a STS) is retrieved by the client, it is considered
  to be expired if it will expire in a time less than the value specified by this tag.
  This prevents token expiry when the message is en route / being processed by the
  service. When the token is found to be expired then it will be renewed via the STS.

  The default value is 10 (seconds). Specify 0 to avoid this check.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.STS_TOKEN_IMMINENT_EXPIRY_VALUE">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="KERBEROS_REQUEST_CREDENTIAL_DELEGATION">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>KERBEROS_REQUEST_CREDENTIAL_DELEGATION</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> KERBEROS_REQUEST_CREDENTIAL_DELEGATION</pre>
 <div class="block">Whether to request credential delegation or not in the KerberosClient. If this is set to "true",
  then it tries to get a kerberos service ticket that can be used for delegation. The default
  is "false".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.KERBEROS_REQUEST_CREDENTIAL_DELEGATION">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="KERBEROS_USE_CREDENTIAL_DELEGATION">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>KERBEROS_USE_CREDENTIAL_DELEGATION</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> KERBEROS_USE_CREDENTIAL_DELEGATION</pre>
 <div class="block">Whether to use credential delegation or not in the KerberosClient. If this is set to "true",
  then it tries to get a GSSCredential Object from the Message Context using the
  DELEGATED_CREDENTIAL configuration tag below, and then use this to obtain a service ticket.
  The default is "false".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.KERBEROS_USE_CREDENTIAL_DELEGATION">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="KERBEROS_IS_USERNAME_IN_SERVICENAME_FORM">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>KERBEROS_IS_USERNAME_IN_SERVICENAME_FORM</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> KERBEROS_IS_USERNAME_IN_SERVICENAME_FORM</pre>
 <div class="block">Whether the Kerberos username is in servicename form or not. The default is "false".</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.KERBEROS_IS_USERNAME_IN_SERVICENAME_FORM">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="KERBEROS_JAAS_CONTEXT_NAME">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>KERBEROS_JAAS_CONTEXT_NAME</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> KERBEROS_JAAS_CONTEXT_NAME</pre>
 <div class="block">The JAAS Context name to use for Kerberos.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.KERBEROS_JAAS_CONTEXT_NAME">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="KERBEROS_SPN">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>KERBEROS_SPN</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> KERBEROS_SPN</pre>
 <div class="block">The Kerberos Service Provider Name (spn) to use.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.KERBEROS_SPN">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="KERBEROS_CLIENT">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>KERBEROS_CLIENT</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> KERBEROS_CLIENT</pre>
 <div class="block">A reference to the KerberosClient class used to obtain a service ticket.</div>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.KERBEROS_CLIENT">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="TOKEN">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>TOKEN</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> TOKEN</pre>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.TOKEN">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="TOKEN_ID">
 <!--   -->
 </a>
 <ul class="blockList">
 <li class="blockList">
 <h4>TOKEN_ID</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a> TOKEN_ID</pre>
 <dl><dt><span class="strong">See Also:</span></dt><dd><a href="../../../../../constant-values.html#org.apache.cxf.ws.security.SecurityConstants.TOKEN_ID">Constant Field Values</a></dd></dl>
 </li>
 </ul>
 <a name="ALL_PROPERTIES">
 <!--   -->
 </a>
 <ul class="blockListLast">
 <li class="blockList">
 <h4>ALL_PROPERTIES</h4>
 <pre>public static final&nbsp;<a href="http://docs.oracle.com/javase/7/docs/api/java/util/Set.html?is-external=true" title="class or interface in java.util">Set</a>&lt;<a href="http://docs.oracle.com/javase/7/docs/api/java/lang/String.html?is-external=true" title="class or interface in java.lang">String</a>&gt; ALL_PROPERTIES</pre>
 </li>
 </ul>
 </li>
 </ul>
 </li>
 </ul>
 </div>
 </div>
 <!-- ========= END OF CLASS DATA ========= -->
 <!-- ======= START OF BOTTOM NAVBAR ====== -->
 <div class="bottomNav"><a name="navbar_bottom">
 <!--   -->
 </a><a href="#skip-navbar_bottom" title="Skip navigation links"></a><a name="navbar_bottom_firstrow">
 <!--   -->
 </a>
 <ul class="navList" title="Navigation">
 <li><a href="../../../../../overview-summary.html">Overview</a></li>
 <li><a href="package-summary.html">Package</a></li>
 <li class="navBarCell1Rev">Class</li>
 <li><a href="class-use/SecurityConstants.html">Use</a></li>
 <li><a href="package-tree.html">Tree</a></li>
 <li><a href="../../../../../deprecated-list.html">Deprecated</a></li>
 <li><a href="../../../../../index-all.html">Index</a></li>
 <li><a href="../../../../../help-doc.html">Help</a></li>
 </ul>
 <div class="aboutLanguage"><em>Apache CXF API</em></div>
 </div>
 <div class="subNav">
 <ul class="navList">
 <li>Prev Class</li>
 <li>Next Class</li>
 </ul>
 <ul class="navList">
 <li><a href="../../../../../index.html?org/apache/cxf/ws/security/SecurityConstants.html" target="_top">Frames</a></li>
 <li><a href="SecurityConstants.html" target="_top">No Frames</a></li>
 </ul>
 <ul class="navList" id="allclasses_navbar_bottom">
 <li><a href="../../../../../allclasses-noframe.html">All Classes</a></li>
 </ul>
 <div>
 <script type="text/javascript"><!--
   allClassesLink = document.getElementById("allclasses_navbar_bottom");
   if(window==top) {
     allClassesLink.style.display = "block";
   }
   else {
     allClassesLink.style.display = "none";
   }
   //-->
 </script>
 </div>
 <div>
 <ul class="subNavList">
 <li>Summary:&nbsp;</li>
 <li>Nested&nbsp;|&nbsp;</li>
 <li><a href="#field_summary">Field</a>&nbsp;|&nbsp;</li>
 <li>Constr&nbsp;|&nbsp;</li>
 <li><a href="#methods_inherited_from_class_java.lang.Object">Method</a></li>
 </ul>
 <ul class="subNavList">
 <li>Detail:&nbsp;</li>
 <li><a href="#field_detail">Field</a>&nbsp;|&nbsp;</li>
 <li>Constr&nbsp;|&nbsp;</li>
 <li>Method</li>
 </ul>
 </div>
 <a name="skip-navbar_bottom">
 <!--   -->
 </a></div>
 <!-- ======== END OF BOTTOM NAVBAR ======= -->
 <p class="legalCopy"><small>Apache CXF</small></p>
 </body>
 </html>