SAP ABAP Class CL_HTTP_SECURITY_SESSION (HTTP Security Session Management (Kernel Methods))
Hierarchy
SAP_BASIS (Software Component) SAP Basis Component
   BC-SEC-LGN (Application Component) Authentication and SSO
     SHTTP_SECURITY_SESSIONS (Package) HTTP Security Session Management
Properties
Class CL_HTTP_SECURITY_SESSION  
Short Description HTTP Security Session Management (Kernel Methods)    
Super Class    
Instantiability of a Class 0  Private 
Final    
General Data
Message Class    
Program status     
Category 0   
Package SHTTP_SECURITY_SESSIONS   HTTP Security Session Management 
Created 20081020   SAP 
Last change 20130531   SAP 
Shared Memory-enabled    
Fixed point arithmetic    
Unicode checks active    
Forward declarations
Class CL_HTTP_SECURITY_SESSION has no forward declaration.
Interfaces
Class CL_HTTP_SECURITY_SESSION has no interface implemented.
Friends
# Friend Modeled only Created on Description
1 CL_HTTP_SECURITY_SESSION_ADMIN 20090922 HTTP Security Session Management, Admin. Functions
2 CL_HTTP_SECURITY_SESSION_ICF 20090922 HTTP Security Session Management, ICF Usage
3 CL_HTTP_SECURITY_SESSION_SAML 20090922 HTTP Security Session Management for SAML (SP)
4 CL_HTTP_SECURITY_SESSION_WSS 20090922 HTTP Security Session Management, WS Security
Attributes
# Attribute Level Visibility Read only Typing Associated Type Initial Value Description Created on
1 CO_AUTHNMETHOD_ASSERTIONTICKET Constant Public Type reference (TYPE) SECURITY_SESSION_AUTHN_METHOD 4 Logon with Assertion Ticket 20090310
2 CO_AUTHNMETHOD_LOCALHTTPCALL Constant Public Type reference (TYPE) SECURITY_SESSION_AUTHN_METHOD 6 Local HTTP Call (Same System) 20090310
3 CO_AUTHNMETHOD_LOGONTICKET Constant Public Type reference (TYPE) SECURITY_SESSION_AUTHN_METHOD 3 Logon with Logon Ticket 20090310
4 CO_AUTHNMETHOD_PASSWORD Constant Public Type reference (TYPE) SECURITY_SESSION_AUTHN_METHOD 1 Password Logon 20090310
5 CO_AUTHNMETHOD_SAML Constant Public Type reference (TYPE) SECURITY_SESSION_AUTHN_METHOD 7 SAML Logon 20090310
6 CO_AUTHNMETHOD_SPNEGO Constant Public Type reference (TYPE) SECURITY_SESSION_AUTHN_METHOD 8 SPNego Logon 20120709
7 CO_AUTHNMETHOD_TRUSTEDSYSTEM Constant Public Type reference (TYPE) SECURITY_SESSION_AUTHN_METHOD 5 Trusted System Logon 20090310
8 CO_AUTHNMETHOD_X509CERT Constant Public Type reference (TYPE) SECURITY_SESSION_AUTHN_METHOD 2 X.509 Certificate Logon 20090310
9 CO_BOOLEAN_FALSE Constant Public Type reference (TYPE) INT1 0 Boolean Value "false" 20090716
10 CO_BOOLEAN_TRUE Constant Public Type reference (TYPE) INT1 1 Boolean Value "true" 20090716
11       Local Logon with Assertion Ticket
12       Local HTTP Call (Same System)
13       Local Logon with Logon Ticket
14       Local Password Logon
15       Local SAML Browser Artifact Logon
16       Local Trusted-System Logon
17       Local X.509 Certificate Logon
18 CO_TERMINATE_AFTER_TIMEOUT Constant Private Type reference (TYPE) SECURITY_SESSION_TERM_REASON 3 Inactivity Timeout (Local on Server) 20081121
19 CO_TERMINATE_BY_ADMIN Constant Private Type reference (TYPE) SECURITY_SESSION_TERM_REASON 4 Termination Through Administrator 20081121
20 CO_TERMINATE_ON_SAML_REQUEST Constant Private Type reference (TYPE) SECURITY_SESSION_TERM_REASON 2 Standard Logoff (SAML 2) 20081121
21 CO_TERMINATE_ON_USER_REQUEST Constant Private Type reference (TYPE) SECURITY_SESSION_TERM_REASON 1 Regular Logoff (Requested by User, Local) 20081121
Methods
# Method Level Visibility Method type Description Created on
1 _ASSERTION_CHECK_FOR_LOCALAUTH Static method Private Method Internal Value Range Check 20081127
2 _ASSIGN_TO_SECURITY_CONTEXT Static method Private Method Assignment Current Task Handler Session to Security Context 20081030
3 _CREATE_SESSION_ID Static method Private Method Creation of a Session ID (Internal Kernel Method) 20081030
4 _CREATE_XSRF_TOKEN Static method Private Method Generate XSRF Token (Base64-Coded 128-Bit Random Value) 20110629
5 _LOCAL_SESSION_TERMINATION Static method Private Method Local Cancellation of Security Context and All Appl.Contexts 20081030
6 _SEND_TERMINATION_NOTIFICATION Static method Private Method Notification of All Server Instances Through Session Cancel 20081030
7 _SEND_UPDATE_NOTIFICATION Static method Private Method Notification of All Server Instances Through Session Change 20081030
8 _SESSIONID2CONTEXTID Static method Private Method Calculates the context ID for a session ID 20081103
9 _UPDATE_CONTEXT_TIMESTAMP Static method Private Method Update of Session Context Timestamp 20081030
Events
Class CL_HTTP_SECURITY_SESSION has no event.
Types
Class CL_HTTP_SECURITY_SESSION has no local type.
Method Signatures

Method _ASSERTION_CHECK_FOR_LOCALAUTH Signature

# Type Parameter Pass Value Optional Typing Method Associated Type Default value Description Created on
1 Importing AUTHENTICATION_METHOD Call by reference Type reference (TYPE) SECURITY_SESSION_AUTHN_METHOD lokale HTTP-Anmeldeverfahren (Speicherung: Security-Kontext) 20081127
# Exception Resumable Description Created on
1 CX_HTTP_SECURITY_SESSION Ausnahme-Klasse zu CL_HTTP_SECURITY_SESSION 20081127

Method _ASSIGN_TO_SECURITY_CONTEXT Signature

# Type Parameter Pass Value Optional Typing Method Associated Type Default value Description Created on
1 Importing CLIENT Call by reference Type reference (TYPE) MANDT Mandant 20081107
2 Importing CONTEXT_REF Call by reference Type reference (TYPE) SECURITY_CONTEXT_REF interne Referenz auf einen Security-Kontext (zeitinvariant) 20081030
3 Importing LANGUAGE Call by reference Type reference (TYPE) XULANGU Anmeldesprache 20081117
4 Exporting PASSFLAG Call by reference Type reference (TYPE) XUPWDSTATE Status des Benutzerkennworts (Werte: -2/-1/0/1/2/3, s. Doku) 20081117
5 Importing USERID Call by reference Type reference (TYPE) XUBNAME Benutzername im Benutzerstamm 20081107
# Exception Resumable Description Created on
1 CX_HTTP_SECURITY_SESSION Ausnahme-Klasse zu CL_HTTP_SECURITY_SESSION 20081113

Method _CREATE_SESSION_ID Signature

# Type Parameter Pass Value Optional Typing Method Associated Type Default value Description Created on
1 Exporting CONTEXT_ID Call by reference Type reference (TYPE) SECURITY_CONTEXT_ID Security Kontext-ID (interne Darstellung der Session-ID) 20081030
2 Exporting CONTEXT_REF Call by reference Type reference (TYPE) SECURITY_CONTEXT_REF interne Referenz auf einen Security-Kontext (zeitinvariant) 20081030
3 Exporting SESSION_ID Call by reference Type reference (TYPE) SECURITY_SESSION_ID Security Session ID (wird per Cookie übertragen) 20081030
# Exception Resumable Description Created on
1 CX_HTTP_SECURITY_SESSION Ausnahme-Klasse zu CL_HTTP_SECURITY_SESSION 20081113

Method _CREATE_XSRF_TOKEN Signature

# Type Parameter Pass Value Optional Typing Method Associated Type Default value Description Created on
1 Returning TOKEN Value transfer Type reference (TYPE) SECURITY_CONTEXT_XSRF_TOKEN XSRF-Token (Base64-kodierter 128-Bit-Zufallswert) 20110629

Method _CREATE_XSRF_TOKEN on class CL_HTTP_SECURITY_SESSION has no exception.

Method _LOCAL_SESSION_TERMINATION Signature

# Type Parameter Pass Value Optional Typing Method Associated Type Default value Description Created on
1 Importing CLIENT Call by reference Type reference (TYPE) MANDT Mandant 20081124
2 Importing CONTEXT_ID Call by reference Type reference (TYPE) SECURITY_CONTEXT_ID Security Kontext-ID (interne Darstellung der Session-ID) 20081030
3 Importing CONTEXT_REF Call by reference Type reference (TYPE) SECURITY_CONTEXT_REF interne Referenz auf einen Security-Kontext (zeitinvariant) 20081030
4 Importing REASON Call by reference Type reference (TYPE) SECURITY_SESSION_TERM_REASON Grund für den Abbau einer Security-Session 20081030
# Exception Resumable Description Created on
1 CX_HTTP_SECURITY_SESSION Ausnahme-Klasse zu CL_HTTP_SECURITY_SESSION 20081113

Method _SEND_TERMINATION_NOTIFICATION Signature

# Type Parameter Pass Value Optional Typing Method Associated Type Default value Description Created on
1 Importing CLIENT Call by reference Type reference (TYPE) MANDT Mandant 20081124
2 Importing CONTEXT_ID Call by reference Type reference (TYPE) SECURITY_CONTEXT_ID Security Kontext-ID (interne Darstellung der Session-ID) 20081030
3 Importing CONTEXT_REF Call by reference Type reference (TYPE) SECURITY_CONTEXT_REF interne Referenz auf einen Security-Kontext (zeitinvariant) 20081030
4 Importing REASON Call by reference Type reference (TYPE) SECURITY_SESSION_TERM_REASON Grund für den Abbau einer Security-Session 20081030
# Exception Resumable Description Created on
1 CX_HTTP_SECURITY_SESSION Ausnahme-Klasse zu CL_HTTP_SECURITY_SESSION 20081113

Method _SEND_UPDATE_NOTIFICATION Signature

# Type Parameter Pass Value Optional Typing Method Associated Type Default value Description Created on
1 Importing CLIENT Call by reference Type reference (TYPE) MANDT SY-MANDT Mandant 20081124
2 Importing NEW_CONTEXT_ID Call by reference Type reference (TYPE) SECURITY_CONTEXT_ID Security Kontext-ID (interne Darstellung der Session-ID) 20090227
3 Importing OLD_CONTEXT_ID Call by reference Type reference (TYPE) SECURITY_CONTEXT_ID Security Kontext-ID (interne Darstellung der Session-ID) 20090227
# Exception Resumable Description Created on
1 CX_HTTP_SECURITY_SESSION Ausnahme-Klasse zu CL_HTTP_SECURITY_SESSION 20081113

Method _SESSIONID2CONTEXTID Signature

# Type Parameter Pass Value Optional Typing Method Associated Type Default value Description Created on
1 Returning CONTEXT_ID Value transfer Type reference (TYPE) SECURITY_CONTEXT_ID Security Kontext-ID (interne Darstellung der Session-ID) 20081103
2 Importing SESSION_ID Call by reference Type reference (TYPE) SECURITY_SESSION_ID Security Session ID (wird per Cookie übertragen) 20081103
# Exception Resumable Description Created on
1 CX_HTTP_SECURITY_SESSION Ausnahme-Klasse zu CL_HTTP_SECURITY_SESSION 20081113

Method _UPDATE_CONTEXT_TIMESTAMP Signature

# Type Parameter Pass Value Optional Typing Method Associated Type Default value Description Created on
1 Importing CLIENT Call by reference Type reference (TYPE) MANDT SY-MANDT Mandant 20081124
2 Importing CONTEXT_ID Call by reference Type reference (TYPE) SECURITY_CONTEXT_ID Security Kontext-ID (interne Darstellung der Session-ID) 20081030
3 Importing CONTEXT_REF Call by reference Type reference (TYPE) SECURITY_CONTEXT_REF interne Referenz auf einen Security-Kontext (zeitinvariant) 20090109
4 Importing USERID Call by reference Type reference (TYPE) XUBNAME Benutzername im Benutzerstamm 20090115
# Exception Resumable Description Created on
1 CX_HTTP_SECURITY_SESSION Ausnahme-Klasse zu CL_HTTP_SECURITY_SESSION 20081113
History
Last changed by/on SAP  20130531 
SAP Release Created in 720