security package

The com.sybase.security package contains the main classes and interfaces that define the SAP Common Security Infrastructure (CSI) framework.

Members

All public members of the security package.

authorization package – The authorization package provides various types of security authorization request types with which a CSI consumer could construct more complex authorization requests.
callback package – The com.sybase.security.callback package contains the callback and callback handler implementations used/supported by the default authentication providers.
core package – The com.sybase.security.core package contains the default provider implementations that are packaged as part of csi-core.jar file as well as some utility classes that are useful in implementing new providers.
provider package – Custom providers allow for the customization and extension of security enforcement as needed, by implementing Provider-side interfaces to author custom providers.
Attributed interface – All objects that have Attributes should implement this interface.
CertificateCredential class – This class exposes the method to retrieve the certificate after a user has been authenticated so that other components can retrieve it for performing SSO.
Const interface – This interface defines constants for use with CSI.
Decision class – Represents decisions within the audit subsystems.
Named interface – This interface defines a base for objects that have names and unique identifiers.
NamedCredential interface – This interface associates a name with a credential object added to the JAAS subject.
Operation class – Represents operations that can be performed on cryptographic objects.
SecAdminContext interface – This interface provides access to administrative CSI services.
SecConfiguration interface – The interface that describes the configuration interface for CSI.
SecConfiguration2 interface – The interface that describes the configuration interface for CSI.
SecConfiguration3 interface – The interface that describes the configuration interface for CSI.
SecContext interface – This interface defines methods available for performing security checks, and factories for Resource, Subject, and Environment classes.
SecContextFactory class – This class exposes factory methods that other SAP products can use for programmatic security.
SecEnvironment interface – This interface wraps classes that can convey arbitrary attributes of the execution environment to the PDP.
SecException class – Various security exceptions that occur during the use of methods in this package will throw this exception.
SecProfile interface – This interface defines methods available for obtaining information on profiles.
SecResource interface – This interface defines classes that can represent a protected resource in a security system.
SecSubject interface – This interface defines methods available for obtaining information on subjects.
SecWarning interface – An interface to propagate error information from the framework or the provider to the client.
SSOTokenCredential interface – This represents a credential that contains Single Sign On (SSO) data that can be retrieved from an authenticated Subject.

Remarks

CSI has a service provider plug-in model defined by the classes and interfaces in the com.sybase.security package that allows providers to be plugged into the framework to integrate with the existing security infrastructure. If none of the default providers meet the security needs, one can implement a new provider that interfaces with a security back-end of choice and plug it into CSI as long as it implements the relevant interfaces.