All Classes

Class	Description
AbstractActionPermission<This extends AbstractActionPermission<This>>	An abstract base class for named permissions that have actions, with useful API and implementation methods.
AbstractActionSetPermission<This extends AbstractActionSetPermission<This>>	An abstract base class for permissions which use a bit set to represent actions.
AbstractBooleanPermission<This extends AbstractBooleanPermission<This>>	A base class for nameless and actionless permissions that are either granted or not granted.
AbstractCredentialCallback	Abstract base class for credential callbacks.
AbstractDelegatingSaslClient	An abstract base for SaslClient instances which delegate to another SaslClient.
AbstractDelegatingSaslClientFactory	An abstract base for SaslClientFactory instances which delegate to another SaslClientFactory.
AbstractDelegatingSaslServer	An abstract base for SaslServer instances which delegate to another SaslServer.
AbstractDelegatingSaslServerFactory	An abstract base for SaslServerFactory instances which delegate to another SaslServerFactory.
AbstractMechanismAuthenticationFactory<M,F,E extends Exception>
AbstractMechanismAuthenticationFactory.Builder<M,F,E extends Exception>
AbstractNamedPermission<This extends AbstractNamedPermission<This>>	An abstract base class for named permissions with useful API and implementation methods.
AbstractNameOnlyPermission<This extends AbstractNameOnlyPermission<This>>	A permission which has a name only, and no actions.
AbstractNameSetOnlyPermission<This extends AbstractNameSetOnlyPermission<This>>	An actionless permission with a finite, fixed set of possible names.
AbstractPermission<This extends AbstractPermission<This>>	An abstract base class for any permission.
AbstractPermissionCollection	Base class for useful permission collections.
AbstractSaslClient	A base class for SASL client implementations.
AbstractSaslFactory	Abstract SASL factory base class.
AbstractSaslParticipant	A common base class for SASL participants.
AbstractSaslServer	A base class for SASL client implementations.
AccessDescription	An access description for the authority information access and subject information access extensions.
AddGlobalSecurityProviderAction	A security action to add a global security provider.
AddShutdownHookAction	A security action which adds a shutdown hook.
AggregateAttributes	An implementation of Attributes aggregating multiple instances.
AggregateSaslClientFactory	A SaslClientFactory which aggregates other SaslClientFactory instances into one.
AggregateSaslServerFactory	A SaslServerFactory which aggregates other SaslServerFactory instances into one.
AlgorithmCredential	A credential which has an associated algorithm name.
AlgorithmEvidence	A piece of evidence which supports multiple algorithms.
AnonymousAuthorizationCallback	A callback to authorize anonymous authentication.
AnonymousPrincipal	The singleton anonymous principal.
ASN1	A class that contains ASN.1 constants and utilities.
ASN1Decoder	An interface for decoding ASN.1 encoded values from an input stream.
ASN1Encodable	An object which can be encoded into an ASN.1 encoder.
ASN1Encoder	An interface for encoding ASN.1 values.
ASN1Exception	An exception that indicates that ASN.1 encoding or decoding has failed due to invalid input.
Attributes	A collection of string attributes.
Attributes.Entry	The entry collection for a mapping.
Attributes.SetEntry	The entry collection for a mapping whose values are a distinct set.
Authentication	The authentication type for SSL/TLS cipher suite selection.
AuthenticationCompleteCallback	An optional callback indicating the success or failure of the authentication operation.
AuthenticationCompleteCallbackSaslClientFactory	A SaslClientFactory which adds AuthenticationCompleteCallback functionality to a delegate SaslClientFactory.
AuthenticationCompleteCallbackSaslServerFactory	A SaslServerFactory which adds AuthenticationCompleteCallback functionality to a delegate SaslServerFactory.
AuthenticationConfiguration	A configuration which controls how authentication is performed.
AuthenticationContext	A set of rules and authentication configurations to use with a client for establishing a connection.
AuthenticationContextConfigurationClient	A client for consuming authentication context configurations.
AuthenticationContextSaslClient	A delegating SaslClient which establishes a specific AuthenticationContext for the duration of the authentication process.
AuthenticationContextSaslClient	Deprecated. Use AuthenticationContextSaslClient instead.
AuthenticationContextSaslClientFactory	A delegating SaslClientFactory which establishes a specific AuthenticationContext for the duration of the authentication process.
AuthenticationContextSaslClientFactory	Deprecated. Use AuthenticationContextSaslClientFactory instead.
AuthenticationContextSaslServer	A delegating SaslServer which establishes a specific AuthenticationContext for the duration of the authentication process.
AuthenticationContextSaslServer	Deprecated. Use AuthenticationContextSaslServer instead.
AuthenticationContextSaslServerFactory	A delegating SaslServerFactory which establishes a specific AuthenticationContext for the duration of the authentication process.
AuthenticationContextSaslServerFactory	Deprecated. Use AuthenticationContextSaslServerFactory instead.
AuthenticationException	An exception indicating that an initial authentication (login) operation has failed.
AuthenticationMechanismException	A network authentication mechanism exception.
AuthenticationTimeoutSaslServerFactory	A SaslServerFactory which adds authentication timeout functionality to a delegate SaslServerFactory.
AuthorityInformationAccessExtension	The authority information access extension as defined by RFC 5280 § 4.2.2.1.
AuthorityKeyIdentifierExtension	Authority key identifier extension as defined by RFC 5280 § 4.2.1.1.
AuthorizationCheckException	An exception indicating that an identity authorization check has failed.
AuthorizationException	A general authorization exception.
AuthorizationFailureException	An exception indicating that an authorization check failed for reasons not related to the actual authorization of the identity.
AuthorizationIdentity	A realm's authorization identity.
AvailableRealmsCallback	A callback used to query a server participant for the names of realms that it is prepared to offer.
AvailableRealmsSaslServerFactory	A SaslServerFactory which sets the server's available realms using the legacy WildFlySasl.REALM_LIST property, if specified.
BasicConstraintsExtension	The basic constraints extension as defined by RFC 5280 § 4.2.1.9.
BasicPasswordSpecEncoding	Provide methods for encoding and decoding of PasswordSpec.
BCryptPassword	A password using the "bcrypt" Blowfish-based one-way password encryption algorithm.
BearerTokenCredential	A Credential that usually holds a bearer security token.
BearerTokenEvidence	A piece of evidence that is comprised of a bearer security token.
BooleanPermissionCollection	A permission collection type which either does or does not hold its instance.
BSDUnixDESCryptPassword	A BSD-style DES "crypt" password.
ByNamePermissionCollection	A permission collection for actionless permissions which are organized by name.
CachedIdentityAuthorizeCallback	A callback that is capable of perform authorization based on the identities managed by an IdentityCache.
CallbackHandlerCredentialSource	Deprecated. Use CallbackHandlerCredentialSource instead
CallbackKind	The kinds of callbacks which can be handled by the user's callback.
CallbackUtil	Helper utility methods for callback handlers.
CaseNameRewriter	A case name rewriter adjusts a principal to upper or lower case.
CertificatePoliciesExtension	The certificate policies extension as defined by RFC 5280 § 4.2.1.4.
CertificatePoliciesExtension.PolicyInformation	Policy information for the certificate policies extension.
CertificatePoliciesExtension.PolicyQualifier	A qualifier for a policy information entry.
ChangeRoleMapperPermission	The permission to change a role mapper category on a security identity.
ChannelBindingCallback	A callback used to establish the channel binding for a security mechanism which supports it.
ChannelBindingSaslClientFactory	A SaslClientFactory which establishes channel binding parameters.
ChannelBindingSaslServerFactory	A SaslServerFactory which establishes channel binding parameters.
CipherSuitePredicate	An opaque predicate which can be used to match SSL/TLS cipher suites.
CipherSuiteSelector	An immutable filter for SSL/TLS cipher suites.
ClearContextClassLoaderAction	A security action to clear the current thread context class loader.
ClearPassword	A simple clear-text password.
ClearPasswordSpec	A password specification for clear passwords.
ClearPropertyAction	A security action which clears a system property.
ClientSaslWrapper	A SaslWrapper which encapsulates a SaslClient.
CommandCredentialSource	Deprecated. Use CommandCredentialSource instead
CommandCredentialSource.Builder	A builder for a command credential source.
CompositePrincipal	A composite principal that consists of multiple elements of possibly disparate type.
CreateTempFileAction	A security action to create a temporary file.
CreateThreadAction	A security action to create a thread.
Credential	A credential is a piece of information that can be used to verify or produce evidence.
CredentialCallback	A callback used to acquire credentials.
CredentialSaslServerFactory	A SaslServerFactory which sets the server's credential.
CredentialSource	A source for credentials.
CredentialStore	This class represents credential store functionality.
CredentialStore.CredentialSourceProtectionParameter	A protection parameter which uses a credential source to acquire a credential to use.
CredentialStore.ProtectionParameter	The protection parameter to use when accessing a credential store or entry.
CredentialStoreCredentialSource	Deprecated. Use CredentialStoreCredentialSource instead
CredentialStoreException	An exception indicating that operation with CredentialStore has failed.
CredentialStorePermission	Credential Store API specific permission.
CredentialStoreSpi	SPI for credential store provider to implement.
CredentialUpdateCallback	A callback to inform the callback handler of a credential change.
CRLDistributionPoint	A single distribution point specification.
CRLDistributionPoint.DistributionPointName	Base class of distribution point names.
CRLDistributionPoint.FullNameDistributionPointName	A full-name distribution point name.
CRLDistributionPoint.RelativeToCRLIssuerDistributionPointName	A distribution point name which is relative to a CRL issuer name.
CRLDistributionPointsExtension	The CRL distribution points extension as defined by RFC 5280 § 4.2.1.13.
DelegatingAuthConfigFactory	An AuthConfigFactory implementation that can delegate to a backup AuthConfigFactory if the Elytron factory is unable to return a provider.
DERDecoder	A class used to decode ASN.1 values that have been encoded using the Distinguished Encoding Rules (DER).
DEREncoder	A class used to encode ASN.1 values using the Distinguished Encoding Rules (DER), as specified in ITU-T X.690.
Digest	The digest algorithm type for SSL/TLS cipher suite selection.
DigestPassword	Digest MD5 (pre-digested) password.
DigestPasswordAlgorithmSpec	A AlgorithmParameterSpec for a password represented by digesting it with a username and realm as defined by RFC2617 and RFC2831.
DigestPasswordSpec	A PasswordSpec for a password represented by a Digest Response as seen in Digest-MD5 SASL/HTTP mechanism.
DisposedCallbackSaslClientFactory	A SaslClientFactory which detects SaslClient disposal and calls the callback handler with a SecurityLayerDisposedCallback instance.
DisposedCallbackSaslServerFactory	A SaslServerFactory which detects SaslServer disposal and calls the callback handler with a SecurityLayerDisposedCallback instance.
ElytronAuthConfigFactory	The WildFly Elytron implementation of AuthConfigFactory.
ElytronAuthenticator	Deprecated.
ElytronFilePasswordProvider	An implementation of FilePasswordProvider which can provide the password to decrypt a private key using a CredentialSource or Credential
ElytronMessages	Log messages and exceptions for Elytron.
ElytronPermission	A general Elytron permission.
ElytronXmlParser	A parser for the Elytron XML schema.
EmptyProvider	The singleton empty provider.
Encoding	List of supported hash encodings to use in security realms that support storing hashed passwords.
EncryptablePasswordSpec	A password specification for clear passwords which are intended to be encrypted or hashed.
Encryption	The encryption type for SSL/TLS cipher suite selection.
Evidence	A piece of evidence which may be used for credential verification.
EvidenceDecodePrincipalCallback	A server-side Callback to pass the decoded evidence principal from the callback handler to the authentication mechanism.
EvidenceDecoder	A decoder for extracting a principal from evidence.
EvidenceVerifyCallback	A Callback for use where credential verification is required.
ExclusiveNameCallback	A variation on NameCallback which allows exclusive access to the backing identity to be requested.
ExtendedCallback	A callback which provides extended information about its usage.
ExtendedChoiceCallback	A variation on ChoiceCallback which supports the extended callback interface.
ExtendedKeyUsageExtension	An extended key usage extension as defined by RFC 5280 § 4.2.1.12.
FactoryCredentialSource	Deprecated. Use FactoryCredentialSource instead
FailedSecurityFactory<T>	A SecurityFactory implementation which only throws specified exception on create.
FastUnsupportedCallbackException	A version of UnsupportedCallbackException which does not initialize a full stack trace, and thus is much more efficient to construct.
FilterMechanismSaslClientFactory	A SaslClientFactory which filters available mechanisms (either inclusively or exclusively) from a delegate SaslClientFactory.
FilterMechanismSaslServerFactory	A SaslServerFactory which filters available mechanisms (either inclusively or exclusively) from a delegate SaslServerFactory.
FixedSecurityFactory<T>	A SecurityFactory implementation which returns specified object every time.
Flag	Control flag to indicate how the auth modules should be interpreted.
FlexibleIdentityAssociation	A flexible identity association which can have its current identity modified.
FreshestCRLExtension	The freshest CRL extension as defined by RFC 5280 § 4.2.1.15.
GeneralName	A representation of an X.509 general name.
GeneralName.DirectoryName	A directory name.
GeneralName.DNSName	A DNS name.
GeneralName.EDIPartyName	An EDI party name.
GeneralName.IPAddress	An IP address.
GeneralName.OtherName	A generic name.
GeneralName.RegisteredID	A registered ID name.
GeneralName.RFC822Name	An RFC 822 name.
GeneralName.URIName	A URI name.
GeneralName.X400Address	An X.400 address.
GetAccessControlContextAction	A privileged action to get the current access control context.
GetClassLoaderAction	A security action to get the class loader of a class.
GetContextClassLoaderAction	An action which gets the current thread's context class loader.
GetEnvironmentAction	A security action which retrieves the current environment variable map.
GetModuleClassLoaderAction	A security action to get the class loader for a module.
GetProtectionDomainAction	A security action to get the protection domain of a class.
GetSystemPropertiesAction	A security action to retrieve the system properties map.
GSSCredentialSecurityFactory	Deprecated. Use GSSCredentialSecurityFactory instead
GSSCredentialSecurityFactory	A SecurityFactory implementation for obtaining a GSSCredential.
GSSCredentialSecurityFactory.Builder	A builder for GSS credential security factories.
GSSCredentialSecurityFactory.Builder	A builder for GSS credential security factories.
GSSKerberosCredential	A credential for holding a GSSCredential and optionally an associated KerberosTicket.
HashPasswordSpec	A password specification for a password represented by a hash.
HttpAuthenticationException	Exception to indicate a general failure with the HTTP authentication mechanism.
HttpAuthenticationFactory	A HTTP authentication mechanism configuration, the configuration is associated with the SecurityDomain and HttpServerAuthenticationMechanismFactory for obtaining configured mechanisms.
HttpAuthenticationFactory	Deprecated. Use HttpAuthenticationFactory instead
HttpAuthenticationFactory.Builder	A builder for SASL server factory configurations.
HttpAuthenticationFactory.Builder	A builder for SASL server factory configurations.
HttpAuthenticator	A HTTP based authenticator responsible for performing the authentication of the current request based on the policies of the associated SecurityDomain.
HttpAuthenticator.Builder	A Builder to configure and create an instance of HttpAuthenticator.
HttpConstants	Constants used within HTTP based authentication.
HttpExchangeSpi	The SPI to be implemented to bridge the Elytron APIs with the available APIs of the web server being integrated with.
HttpScope	An attachment scope for use by an authentication mechanism.
HttpScopeNotification	Interface providing information about scope notifications.
HttpScopeNotification.SessionNotificationType	Scope.SESSION notification types
HttpServerAuthenticationMechanism	Definition of a server side HTTP authentication mechanism.
HttpServerAuthenticationMechanismFactory	Factory to create authentication mechanisms.
HttpServerCookie	Server side representation of a HTTP Cookie.
HttpServerMechanismsResponder	A responder for sending either authentication challenges or responses as a result of successful authentication back to the calling client.
HttpServerRequest	Server side representation of a HTTP request.
HttpServerRequestWrapper	A wrapper delegating any request to the delegated implementation.
HttpServerResponse	Server side representation of a HTTP response.
HttpServerScopes	Interface providing access to context specific HttpScope instances.
IdentityCredentialCallback	A callback to inform a server authentication mechanism of a credential which may be cached on the authentication identity (if any).
IdentityCredentials	The public or private credentials retained by an identity, which can be used for authentication forwarding.
InhibitAnyPolicyExtension	The "inhibit anyPolicy" certificate extension as defined by RFC 5280 § 4.2.1.14.
InvalidAuthenticationConfigurationException	An exception thrown to indicate that the client authentication configuration is invalid.
InvalidPermissionClassException	An exception which is thrown when an invalid permission class is instantiated.
IssuerAlternativeNamesExtension	The issuer alternative names extension as defined by RFC 5280 § 4.2.1.7.
IteratedHashPasswordSpec	A PasswordSpec for a password represented by a hash with an iteration count or cost.
IteratedPasswordAlgorithmSpec	Algorithm parameter specification for password types with an iteration count.
IteratedSaltedHashPasswordSpec	A PasswordSpec for a password represented by a hash with a salt and a iteration count or cost.
IteratedSaltedPasswordAlgorithmSpec	Algorithm parameter specification for common hashed password types.
JaspiConfigurationBuilder	A builder API to assemble JASPIC configuration.
KeyAgreement	The key agreement type for SSL/TLS cipher suite selection.
KeyManagerCredentialSaslServerFactory	A SaslServerFactory which sets the server's credential using the given key manager.
KeyPairCredential	A public/private key pair credential.
KeyStoreCredentialSource	Deprecated. Use KeyStoreCredentialSource instead
KeyUsage	The various key usage types.
KeyUsageExtension	Key usage extension as defined by RFC 5280 § 4.2.1.3.
KeyUtil	Key utility methods.
LegacyConfiguration	An interface which allows legacy configuration to take place if no Elytron client configuration is present in the global configuration.
LegacyRealmListSaslServerFactory	A SaslServerFactory which uses the AvailableRealmsCallback to populate the legacy WildFlySasl.REALM_LIST property, if needed by a mechanism.
LocalKerberosCredentialSource	Deprecated. Kerberos based authentication mechanism obtains credential himself, see LocalKerberosCredentialSource to use with the new wildfly-elytron-credential-source-impl module
LocalKerberosCredentialSource.Builder	A builder for a local kerberos credential source.
LocalPrincipalSaslClientFactory	A delegating SASL client factory whose instances can track and return the assumed principal used for authentication.
LoginPermission	Establish whether the current identity has permission to complete an authentication ("log in").
MapAttributes	A map-backed attributes collection.
MappedRegexRealmMapper	A simple mapping regular expression-based realm mapper.
MappedRoleMapper	A simple mapping role mapper.
MappedRoleMapper.Builder	A builder for map backed role mappers.
MaskedPassword	A password which has been masked, PicketBox style.
MaskedPasswordAlgorithmSpec	An algorithm specification for a two-way password which is masked.
MaskedPasswordSpec	A password specification for a two-way password which is masked.
MatchRule	A rule used for deciding which authentication configuration to use.
MechanismAuthenticationFactory<M,F,E extends Exception>	A generalized mechanism factory which authenticates against a security domain.
MechanismAuthenticationFactory.Builder<M,F,E extends Exception>	A builder for a MechanismAuthenticationFactory.
MechanismConfiguration	A configuration that applies to an authentication mechanism.
MechanismConfiguration.Builder	A builder for authentication mechanism configuration.
MechanismConfigurationSelector	A selector to choose which MechanismConfiguration to use based on information know about the current authentication attempt.
MechanismInformation	Information about the current mechanism being used for authentication.
MechanismInformationCallback	A Callback to pass the information about the current mechanism to the CallbackHandler.
MechanismProviderFilteringSaslClientFactory	A SASL client factory which filters mechanisms based on the combination of mechanism name and security provider.
MechanismProviderFilteringSaslServerFactory	A SASL server factory which filters mechanisms based on the combination of mechanism name and security provider.
MechanismRealmConfiguration	A configuration for a single mechanism realm.
MechanismRealmConfiguration.Builder	A builder for mechanism realm configuration.
MechanismUtil	Utils to be used by authentication mechanism (SASL or HTTP) implementations.
MechanismUtil	Deprecated. Should not be part of public API.
ModifiableRealmIdentity	A realm identity which is modifiable.
ModifiableRealmIdentityIterator	An iterator over realm identities.
ModifiableSecurityRealm	A realm which can be modified.
ModularCrypt	Helper utility methods for operation on passwords based on the Modular Crypt Format(MCF).
MutableNameRewriter	A delegating name rewriter with a mutable delegation target.
NameConstraintsExtension	A name constraints extension as defined by RFC 5280 § 4.2.1.10.
NameConstraintsExtension.GeneralSubtree	A general subtree for a name constraint.
NamePrincipal	A principal which is comprised of a simple String name.
NameRewriter	A name rewriter.
NameSetPermissionCollection	A permission collection for permissions with a finite set of names, which is based on a simple bit set.
NoPermission	A permission which implies nothing, not even itself.
NullSecurityFactory<T>	A SecurityFactory implementation which returns null every time.
NumericPrincipal	A principal which is represented by a numeric ID, such as what a database might use for a primary key.
OAuth2CredentialSource	Deprecated.
OAuth2CredentialSource.Builder
OidsUtil	OIDs to attribute name and back conversion utility.
OidsUtil.Category	Category of mapping - determine context of the mapping
OneTimePassword	A one-time password, used by the OTP SASL mechanism.
OneTimePasswordAlgorithmSpec	Algorithm parameter specification for one-time password types as defined in RFC 2289.
OneTimePasswordSpec	A PasswordSpec for a one-time password as defined in RFC 2289.
OneTimeSecurityFactory<T>	A SecurityFactory implementation which calls delegated factory at first and returns created object for any other create call.
OneWayPassword	A password which can be verified but not recovered.
OptionalNameCallback	A NameCallback which is optional, for mechanisms that can accept a name from the server.
ParameterCallback	A callback used to acquire parameter specifications, either for outbound or inbound authentication.
ParametricPrivilegedAction<T,P>	A privileged action which accepts a parameter.
ParametricPrivilegedExceptionAction<T,P>	A privileged action which accepts a parameter and can throw an exception.
Password	A password key.
PasswordCredential	A credential for password authentication.
PasswordFactory	A factory for passwords.
PasswordFactorySpi	The SPI for password factories to implement.
PasswordGuessEvidence	A piece of evidence that is comprised of a password guess.
PasswordResetCallback	A callback used when a password reset is required.
PasswordSpec	A password specification object.
PeerIdentity	A peer's authenticated identity.
PeerIdentity.Configuration	The opaque configuration to apply to a peer identity.
PeerIdentityContext	A peer identity context.
PeerPrincipalCallback	An optional callback to inform the callback handler of the peer's principal identity.
PermissionActions	Deprecated. Use one of the abstract permission classes like AbstractActionSetPermission instead.
PermissionMappable	An entity to which permissions can be mapped.
PermissionMapper	A permission mapper is responsible to enable permission mapping to a SecurityDomain in order to obtain and check permissions based on an previously authorized identity and any other authorization information (eg.: roles) associated with it.
PermissionUtil	General permission utility methods and constants.
PermissionVerifier	An interface for objects that can verify permissions.
PKCS10CertificateSigningRequest	A PKCS #10 certificate signing request defined in RFC 2986 as:
PKCS10CertificateSigningRequest.Builder	A Builder to configure and generate a PKCS10CertificateSigningRequest.
PolicyConstraintsExtension	A policy constraints extension as defined by RFC 5280 § 4.2.1.11.
PolicyMappingsExtension	The policy mappings extension as defined by RFC 5280 § 4.2.1.5.
PolicyMappingsExtension.PolicyMapping	A single policy mapping.
PrincipalAuthorizeCallback	An authorization callback similar to javase AuthorizeCallback but using a generic principal.
PrincipalDecoder	A decoder for extracting a simple name from a principal.
PrivilegedSaslClient	A SaslClient which evaluates challenges and wrap/unwrap requests in an privileged context.
PrivilegedSaslClientFactory	A SaslClientFactory whose SaslClient instances evaluate challenges and wrap/unwrap requests in a privileged context.
PrivilegedSaslServer	A SaslServer which evaluates responses and wrap/unwrap requests in an privileged context.
PrivilegedSaslServerFactory	A SaslServerFactory whose SaslServer instances evaluate challenges and wrap/unwrap requests in a privileged context.
PropertiesSaslClientFactory	A SaslClientFactory that allows properties to be added to a delegate SaslClientFactory.
PropertiesSaslServerFactory	A SaslServerFactory allowing the user to add properties
Protocol	The protocol type for SSL/TLS cipher suite selection and protocol selection.
ProtocolSaslClientFactory	A SaslClientFactory which sets the protocol name to a fixed value, disregarding the passed in value.
ProtocolSaslServerFactory	A SaslServerFactory which sets the protocol name to a fixed value, disregarding the passed in value.
ProtocolSelector	An immutable filter for SSL/TLS protocols.
PublicKeyCredential	A public key credential.
RawSecretKeyFactory	SecretKeyFactorySpi that returns the given KeySpec or SecretKey verbatim.
ReadEnvironmentPropertyAction	A security action which reads an environment property.
ReadPropertyAction	A privileged action for reading a system property.
RealmAbandonedAuthenticationEvent	An event indicating that authentication was abandoned before it could complete.
RealmAuthenticationEvent	A realm authentication event.
RealmAuthorizationEvent	A realm authorization event.
RealmDefiniteOutcomeAuthenticationEvent	An authentication event with a definite outcome.
RealmEvent	An event which is potentially relevant to a realm.
RealmEventVisitor<P,R>	A class which provides an easy way to handle realm events based on the type of the event.
RealmFailedAuthenticationEvent	A realm event signifying a failed authentication.
RealmIdentity	A representation of a pre-authentication identity.
RealmIdentityAuthorizationEvent	An event indicating that one identity attempted to authorize as another identity.
RealmIdentityFailedAuthorizationEvent	An event indicating that one identity attempted to authorize as another identity.
RealmIdentitySuccessfulAuthorizationEvent	An event indicating that one identity attempted to authorize as another identity.
RealmMapper	A realm mapper.
RealmNestedPrincipal	A principal type which is used to find a specific identity in a specific realm.
RealmSuccessfulAuthenticationEvent	A realm event signifying authentication success.
RealmUnavailableException	An exception to indicate a general underlying failure of the realm.
ReauthenticationException	A run-time exception indicating that a reauthentication was required for an operation, but the reauthentication failed, preventing the operation from proceeding.
RegexNameRewriter	A simple regular expression-based name rewriter.
RegexNameValidatingRewriter	A regular expression-based name validation rewriter.
RegexRoleMapper	A pattern role mapper.
RegexRoleMapper.Builder	Construct a new RegexRoleMapper.Builder for creating the RegexRoleMapper.
ReplacePropertyAction	A privileged action for setting a system property only if it is set to another value.
Rfc3164SyslogEvent	A security audit event indicating that a log with RFC 3164 syslog format is occurring
Rfc5424SyslogEvent	A security audit event indicating that a log with RFC 3164 syslog format is occurring
RoleDecoder	A decoder to extract role information from an identity's attributes.
RoleMapper	A role mapper is responsible for mapping roles based on their raw form.
Roles	A collection of roles.
RSAParameterSpec	Algorithm parameter specification for RSA keys.
RSAParameterSpiImpl	An implementation of the AlgorithmParametersSpi SPI for RSA keys, because the JDK does not have one.
RunAsPrincipalPermission	The permission to run as another principal within some security domain.
SaltedHashPasswordSpec	A PasswordSpec for a password represented by a hash with a salt.
SaltedPasswordAlgorithmSpec	Algorithm parameter specification for salted hashed password types.
SaltedSimpleDigestPassword	A simple password where the generated digest also includes a salt.
SaslAuthenticationFactory	A SASL server factory configuration.
SaslAuthenticationFactory	Deprecated. Use SaslAuthenticationFactory instead
SaslAuthenticationFactory.Builder	A builder for SASL server factory configurations.
SaslAuthenticationFactory.Builder	A builder for SASL server factory configurations.
SaslFactories	A utility class for discovering SASL client and server factories.
SaslMechanismInformation	A collection of predicates and other information which can be used to filter SASL mechanisms.
SaslMechanismInformation.Names
SaslWrapper
SaslWrappers	Utility methods for SASL wrappers.
Scope	Enumeration of the available scopes during HTTP request handling.
Scoped	An identity configuration which can be applied on a scoped basis.
ScramDigestPassword	A SCRAM-digest password, used by the SCRAM family of SASL mechanisms.
ScramServerErrorCode	This enum lists server error codes for SCRAM authentication mechanism.
ScramServerException	A SCRAM server-side exception with an error code.
SecretKeyCredential	A secret key credential.
SecurityAuthenticationEvent	A security authentication event.
SecurityAuthenticationFailedEvent	An event to represent a failed authentication.
SecurityAuthenticationSuccessfulEvent	An event to represent a successful authentication.
SecurityDefiniteOutcomeEvent	A SecurityEvent that has a definite outcome of being successful or not.
SecurityDomain	A security domain.
SecurityDomain.Builder	A builder for creating new security domains.
SecurityDomain.RealmBuilder	A builder for a realm within a security domain.
SecurityEvent	Base class for security events emitted from a SecurityDomain.
SecurityEventVisitor<P,R>	An abstract class to be extended by visitor implementations for handling SecurityEvents.
SecurityFactory<T>	A factory for preconfigured security objects.
SecurityIdentity	A loaded and authenticated security identity.
SecurityIdentityCallback	A server-side callback used to pass a realm identity from the callback handler to the authentication mechanism.
SecurityIdentitySaslServerFactory	A SASL server factory which makes the authenticated SecurityIdentity available to the caller.
SecurityLayerDisposedCallback	A callback which indicates that the corresponding security layer (SASL client, SASL server, etc.) has been disposed and any related resources may be relinquished.
SecurityLevel	The security level setting for SSL/TLS cipher suite selection.
SecurityMessages
SecurityMessages
SecurityPermissionCheckEvent	A security event relating to a permission check.
SecurityPermissionCheckFailedEvent	An event to represent a failed permission check.
SecurityPermissionCheckSuccessfulEvent	An event to represent a successful permission check.
SecurityProviderSaslClientFactory	A SaslClientFactory which uses the currently installed security providers to acquire a delegate SaslClientFactory.
SecurityProviderSaslServerFactory	A SaslServerFactory which uses the currently installed security providers to acquire a delegate SaslServerFactory.
SecurityRealm	A single authentication realm.
SecurityRealmUnavailableEvent	A security event signifying unavailable realm.
SelectingContext	Implemented by SSLEngine instances that support selection of an alternative engine.
SelfSignedX509CertificateAndSigningKey	A self-signed X.509 certificate and the private key used to sign the certificate.
SelfSignedX509CertificateAndSigningKey.Builder	A Builder to configure and generate a SelfSignedX509CertificateAndSigningKey.
ServerAuthenticationContext	Server-side authentication context.
ServerCredentialCallback	A callback used to acquire the server (or "host") credential.
ServerNameSaslClientFactory	A SaslClientFactory which sets the server name to a fixed value, disregarding the passed in value.
ServerNameSaslServerFactory	A SaslServerFactory which sets the server name to a fixed value, disregarding the passed in value.
ServerSaslWrapper	A SaslWrapper which encapsulates a SaslServer.
ServiceLoaderSaslClientFactory	A SaslClientFactory which uses a ServiceLoader to find implementations.
ServiceLoaderSaslServerFactory	A SaslServerFactory which uses a ServiceLoader to find implementations.
SetContextClassLoaderAction	A security action to get and set the context class loader of the current thread.
SetContextClassLoaderFromClassAction	A security action to get and set the context class loader of the current thread.
SetMechanismInformationSaslServerFactory	A SaslServerFactory implementation that will always ensure mechanism information is passed to the CallbackHandler before the first authentication callbacks.
SetSystemPropertiesAction	A security action which replaces the system properties map.
SimpleActionBitsPermissionCollection	A trivially simple permission collection, suitable as a default for most permission types (though probably not as efficient as a specialized type in many cases).
SimpleAttributesEntry	An implementation of Attributes.Entry which can be used by implementations of Attributes.
SimpleDigestPassword	A simple single digest based password.
SimplePermissionCollection	A trivially simple permission collection, suitable as a default for most permission types (though probably not as efficient as a specialized type in many cases).
SimplePermissionMapper	A simple PermissionMapper implementation that maps to pre-defined PermissionVerifier instances.
SimplePermissionMapper.Builder	A builder for simple permission mappers.
SimplePermissionMapper.MappingMode	Mode defining behaviour when multiple mappings are found.
SimpleRegexRealmMapper	A simple regular expression-based realm mapper.
SNIContextMatcher
SNIContextMatcher.Builder
SNISSLContext
SocketAddressCallback	An optional callback which is used to inform the callback handler of the endpoint addresses of a connection being authenticated.
SocketAddressCallback.Kind	Endpoint disposition kinds.
SocketAddressCallbackSaslClientFactory	A SaslClientFactory which adds SocketAddressCallback capability to a delegate SaslClientFactory.
SocketAddressCallbackSaslServerFactory	A SaslServerFactory which adds SocketAddressCallback capability to a delegate SaslServerFactory.
SocketAddressQueryCallbackHandler	A callback handler which delegates to another callback handler, passing the local and/or peer socket address to that callback handler on its first invocation.
SortedMechanismClientServerFactory	A delegating SaslClientFactory which will sort the mechanism names using either a supplied Comparator<String> or a supplied ordering of mechanism names.
SortedMechanismSaslServerFactory	A delegating SaslServerFactory which will sort the mechanism names using either a supplied Comparator<String> or a supplied ordering of mechanism names.
SourceAddressRoleDecoder	A decoder to obtain role information using the source IP address runtime attribute from the identity.
SSHCredential	A credential holding the location, key identity and passphrase (instance of Credential) of a Private key in an external file and/or the name of the file containing the known hosts
SSHCredential.Builder	A builder for SSHCredential.
SSLCallback	A callback which provides information to the callback handler about the established SSLSession.
SSLConfigurator	A configurator for SSL contexts and their produced objects.
SSLConnection	An SSL connection of some sort.
SSLConnectionInformation	Information about the SSL connection currently being built.
SSLContextBuilder	A class which allows building and configuration of a single client- or server-side SSL context.
SSLContextSelector	A selector which chooses an SSL context based on connection information.
SSLQueryCallbackHandler	A callback handler which delegates to another callback handler, passing the authentication's SSL/TLS information to that callback handler on its first invocation.
SSLSaslClientFactory	A SASL client factory which provides information about the security layer of the connection to the callback handler.
SSLSaslServerFactory	A SASL server factory which provides information about the security layer of the connection to the callback handler.
SSLUtils	SSL factories and utilities.
StackInspector	A utility class which is useful for inspecting the call stack.
StringPrep	Preparation of Internationalized Strings ("stringprep") by RFC 3454
SubjectAlternativeNamesExtension	The subject alternative names extension as defined by RFC 5280 § 4.2.1.6.
SubjectDirectoryAttributesExtension	The subject directory attributes extension as defined by RFC 5280 § 4.2.1.8.
SubjectInformationAccessExtension	The subject information access extension as defined by RFC 5280 § 4.2.2.2.
SubjectKeyIdentifierExtension	Subject key identifier extension defined in RFC 5280 § 4.2.1.2 as:
SunUnixMD5CryptPassword	An MD5-crypt password using the Sun scheme.
SupportLevel	The different support levels.
SyslogAuditEvent	An abstract class to be extended by specific syslog audit events to be handled.
TLSServerEndPointChannelBinding	Utilities for handling the "tls-server-end-point" channel binding strategy used by various types of authentication mechanisms.
TLSServerEndPointChannelBindingSaslClientFactory	A SASL client factory which implements the tls-server-end-point channel binding algorithm.
TLSServerEndPointChannelBindingSaslServerFactory	A SASL server factory which implements the tls-server-end-point channel binding algorithm.
TrustedAuthoritiesCallback	An optional callback used to retrieve information about trusted certificate authorities for authenticating peers.
TrustedAuthority	A representation of a trusted certificate authority.
TrustedAuthority.CertificateTrustedAuthority	A trusted authority that is identified by its certificate.
TrustedAuthority.HashTrustedAuthority	A trusted authority that is identified by a hash.
TrustedAuthority.IssuerKeyHashTrustedAuthority	A trusted authority that is identified by the hash of its public key.
TrustedAuthority.IssuerNameHashTrustedAuthority	A trusted authority that is identified by the hash of its name.
TrustedAuthority.NameTrustedAuthority	A trusted authority that is identified by its name.
TrustedAuthority.PKCS15KeyHashTrustedAuthority	A trusted authority that is identified by the PKCS #15 key hash.
TrustManagerSaslServerFactory	A SaslServerFactory which sets the trust manager that should be used for trust verification.
TwoWayPassword	A password which can be verified and recovered.
UnixDESCryptPassword	The traditional UNIX DES crypt password algorithm.
UnixMD5CryptPassword	The UNIX modular-crypt MD5 crypt algorithm.
UnixSHACryptPassword	The UNIX modular-crypt SHA crypt algorithm.
UnsupportedCredentialTypeException	An exception indicating that given credential store is not supporting particular Credential class.
UsernamePasswordHashUtil	Deprecated. Use PasswordFactory instead.
Version	The version of this JAR.
VersionedProvider	A security provider which uses a string version, forward compatible with Java 9.
WildFlyElytronBaseProvider	The base Provider implementation for security services made available by Elytron.
WildFlyElytronClientDefaultSSLContextProvider	Provider that loads Elytron client configuration and provides default SSLContext which can be returned with SSLContext.getDefault() call.
WildFlyElytronClientDefaultSSLContextSpi	SSLContextSpi that is used by WildFlyElytronClientDefaultSSLContextProvider
WildFlyElytronCredentialStoreProvider	Provider for credential store implementations.
WildFlyElytronDigestProvider	Deprecated. Use org.wildfly.security.digest.WildFlyElytronDigestProvider instead
WildFlyElytronHttpBasicProvider	Deprecated. Use org.wildfly.security.http.basic.WildFlyElytronHttpBasicProvider instead
WildFlyElytronHttpBearerProvider	Deprecated. use org.wildfly.security.http.bearer.WildFlyElytronHttpBearerProvider instead
WildFlyElytronHttpClientCertProvider	Deprecated. Use org.wildfly.security.http.cert.WildFlyElytronHttpClientCertProvider
WildFlyElytronHttpDigestProvider	Deprecated. Use org.wildfly.security.http.digest.WildFlyElytronHttpDigestProvider instead
WildFlyElytronHttpFormProvider	Deprecated. Use org.wildfly.security.http.form.WildFlyElytronHttpFormProvider instead
WildFlyElytronHttpSpnegoProvider	Deprecated. use org.wildfly.security.http.spnego.WildFlyElytronHttpSpnegoProvider instead
WildFlyElytronKeyProvider	Provider for key implementations.
WildFlyElytronPasswordProvider	Provider for password implementations.
WildFlyElytronProvider	Deprecated.
WildFlySecurityManager	The security manager.
WildFlySecurityManagerPermission	A permission specific to the WildFly security manager.
WritePropertyAction	A privileged action for setting a system property.
WritePropertyIfAbsentAction	A privileged action for setting a system property if it is absent.
WriteSecurityPropertyAction	A security action which sets a security property.
X500	Useful X500 constants and utilities.
X500AttributePrincipalDecoder	A principal decoder which decodes an attribute from an X.500 principal.
X500AttributePrincipalDecoder	Deprecated. Use X500AttributePrincipalDecoder instead
X500AttributeTypeAndValue	An X.500 directory attribute, which is comprised of an attribute type OID and a single values, whose type is defined by the attribute type.
X500DirectoryAttribute	An X.500 directory attribute, which is comprised of an attribute type OID and zero or more values, whose types are defined by the attribute type.
X500PrincipalBuilder	A builder for X.500 principals, defined in RFC 5280 as:
X500SubjectEvidenceDecoder	An evidence decoder that derives the principal that should be associated with the given X509PeerCertificateChainEvidence from the subject from the first certificate in the given evidence, as an X500Principal.
X509CertificateBuilder	A builder for X.509 certificates.
X509CertificateChainAndSigningKey	An X.509 certificate chain and private key.
X509CertificateChainCredential	A credential which contains an X.509 certificate chain.
X509CertificateChainPrivateCredential	A credential containing a private key and an X.509 certificate chain.
X509CertificateChainPublicCredential	A credential containing an X.509 certificate chain.
X509CertificateExtension	An X.509 certificate extension.
X509CRLExtendedTrustManager	Deprecated. use X509RevocationTrustManager instead
X509PeerCertificateChainEvidence	A piece of evidence that is comprised of a verified peer certificate chain.
X509RevocationTrustManager	Extension to the X509TrustManager interface to support OCSP and CRL verification.
X509RevocationTrustManager.Builder
X509SubjectAltNameEvidenceDecoder	An evidence decoder that derives the principal that should be associated with the given X509PeerCertificateChainEvidence from an X.509 subject alternative name from the first certificate in the given evidence.