|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.opensaml.common.binding.security.BaseSAMLSimpleSignatureSecurityPolicyRule
org.opensaml.saml2.binding.security.SAML2HTTPPostSimpleSignRule
public class SAML2HTTPPostSimpleSignRule
Security policy which evaluates simple "blob" signatures according to the SAML 2 HTTP-POST-SimpleSign binding.
Constructor Summary | |
---|---|
SAML2HTTPPostSimpleSignRule(org.opensaml.xml.signature.SignatureTrustEngine engine,
org.opensaml.xml.parse.ParserPool parserPool,
org.opensaml.xml.security.keyinfo.KeyInfoCredentialResolver keyInfoCredResolver)
Constructor. |
Method Summary | |
---|---|
protected java.util.List<org.opensaml.xml.security.credential.Credential> |
getRequestCredentials(javax.servlet.http.HttpServletRequest request,
SAMLMessageContext samlContext)
Extract any candidate validation credentials from the request and/or message context. |
protected byte[] |
getSignedContent(javax.servlet.http.HttpServletRequest request)
Get the content over which to validate the signature, in the form suitable for input into SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential) . |
protected boolean |
ruleHandles(javax.servlet.http.HttpServletRequest request,
SAMLMessageContext samlMsgCtx)
Determine whether the rule should handle the request, based on the unwrapped HTTP servlet request and/or message context. |
Methods inherited from class org.opensaml.common.binding.security.BaseSAMLSimpleSignatureSecurityPolicyRule |
---|
buildCriteriaSet, deriveSignerEntityID, evaluate, getSignature, getSignatureAlgorithm, getTrustEngine, validateSignature |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public SAML2HTTPPostSimpleSignRule(org.opensaml.xml.signature.SignatureTrustEngine engine, org.opensaml.xml.parse.ParserPool parserPool, org.opensaml.xml.security.keyinfo.KeyInfoCredentialResolver keyInfoCredResolver)
engine
- the trust engine to useparserPool
- the parser pool used to parse the KeyInfo request parameterkeyInfoCredResolver
- the KeyInfo credential resovler to use to extract credentials from the KeyInfo request
parameterMethod Detail |
---|
protected boolean ruleHandles(javax.servlet.http.HttpServletRequest request, SAMLMessageContext samlMsgCtx)
ruleHandles
in class BaseSAMLSimpleSignatureSecurityPolicyRule
request
- the HTTP servlet request being processedsamlMsgCtx
- the SAML message context being processed
protected byte[] getSignedContent(javax.servlet.http.HttpServletRequest request) throws org.opensaml.ws.security.SecurityPolicyException
SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential)
.
getSignedContent
in class BaseSAMLSimpleSignatureSecurityPolicyRule
request
- the HTTP servlet request being processed
org.opensaml.ws.security.SecurityPolicyException
- thrown if there is an error during request processingprotected java.util.List<org.opensaml.xml.security.credential.Credential> getRequestCredentials(javax.servlet.http.HttpServletRequest request, SAMLMessageContext samlContext) throws org.opensaml.ws.security.SecurityPolicyException
getRequestCredentials
in class BaseSAMLSimpleSignatureSecurityPolicyRule
request
- the HTTP servlet request being processedsamlContext
- the SAML message context being processed
org.opensaml.ws.security.SecurityPolicyException
- thrown if there is an error during request processing
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |