org.opensaml.common.binding.security
Class SAMLMDClientCertAuthRule
java.lang.Object
org.opensaml.ws.security.provider.BaseTrustEngineRule<org.opensaml.xml.security.x509.X509Credential>
org.opensaml.ws.security.provider.ClientCertAuthRule
org.opensaml.common.binding.security.SAMLMDClientCertAuthRule
- All Implemented Interfaces:
- org.opensaml.ws.security.SecurityPolicyRule
public class SAMLMDClientCertAuthRule
- extends org.opensaml.ws.security.provider.ClientCertAuthRule
SAML specialization of ClientCertAuthRule
which provides support for X509Credential trust engine validation
based on SAML metadta.
Constructor Summary |
SAMLMDClientCertAuthRule(org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential> engine,
org.opensaml.ws.security.provider.CertificateNameOptions nameOptions)
Constructor. |
Method Summary |
protected org.opensaml.xml.security.CriteriaSet |
buildCriteriaSet(java.lang.String entityID,
org.opensaml.ws.message.MessageContext messageContext)
|
Methods inherited from class org.opensaml.ws.security.provider.ClientCertAuthRule |
doEvaluate, evaluate, evaluateCertificateNameDerivedIssuers, evaluateDerivedIssuers, evaluateSubjectAltNames, evaluateSubjectCommonName, evaluateSubjectDN, getAltNames, getCertificateNameOptions, getCommonName, getSubjectName |
Methods inherited from class org.opensaml.ws.security.provider.BaseTrustEngineRule |
evaluate, evaluate, getTrustEngine |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
SAMLMDClientCertAuthRule
public SAMLMDClientCertAuthRule(org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential> engine,
org.opensaml.ws.security.provider.CertificateNameOptions nameOptions)
- Constructor.
- Parameters:
engine
- Trust engine used to verify the request X509CredentialnameOptions
- options for deriving issuer names from an X.509 certificate
buildCriteriaSet
protected org.opensaml.xml.security.CriteriaSet buildCriteriaSet(java.lang.String entityID,
org.opensaml.ws.message.MessageContext messageContext)
throws org.opensaml.ws.security.SecurityPolicyException
-
- Overrides:
buildCriteriaSet
in class org.opensaml.ws.security.provider.ClientCertAuthRule
- Throws:
org.opensaml.ws.security.SecurityPolicyException
Copyright © 2006-2011 Internet2. All Rights Reserved.