org.opensaml.common.binding.security
Class SAMLMDClientCertAuthRule

java.lang.Object
  extended by org.opensaml.ws.security.provider.BaseTrustEngineRule<org.opensaml.xml.security.x509.X509Credential>
      extended by org.opensaml.ws.security.provider.ClientCertAuthRule
          extended by org.opensaml.common.binding.security.SAMLMDClientCertAuthRule
All Implemented Interfaces:
org.opensaml.ws.security.SecurityPolicyRule

public class SAMLMDClientCertAuthRule
extends org.opensaml.ws.security.provider.ClientCertAuthRule

SAML specialization of ClientCertAuthRule which provides support for X509Credential trust engine validation based on SAML metadta.


Constructor Summary
SAMLMDClientCertAuthRule(org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential> engine, org.opensaml.ws.security.provider.CertificateNameOptions nameOptions)
          Constructor.
 
Method Summary
protected  org.opensaml.xml.security.CriteriaSet buildCriteriaSet(java.lang.String entityID, org.opensaml.ws.message.MessageContext messageContext)
          
 
Methods inherited from class org.opensaml.ws.security.provider.ClientCertAuthRule
doEvaluate, evaluate, evaluateCertificateNameDerivedIssuers, evaluateDerivedIssuers, evaluateSubjectAltNames, evaluateSubjectCommonName, evaluateSubjectDN, getAltNames, getCertificateNameOptions, getCommonName, getSubjectName
 
Methods inherited from class org.opensaml.ws.security.provider.BaseTrustEngineRule
evaluate, evaluate, getTrustEngine
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

SAMLMDClientCertAuthRule

public SAMLMDClientCertAuthRule(org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential> engine,
                                org.opensaml.ws.security.provider.CertificateNameOptions nameOptions)
Constructor.

Parameters:
engine - Trust engine used to verify the request X509Credential
nameOptions - options for deriving issuer names from an X.509 certificate
Method Detail

buildCriteriaSet

protected org.opensaml.xml.security.CriteriaSet buildCriteriaSet(java.lang.String entityID,
                                                                 org.opensaml.ws.message.MessageContext messageContext)
                                                          throws org.opensaml.ws.security.SecurityPolicyException

Overrides:
buildCriteriaSet in class org.opensaml.ws.security.provider.ClientCertAuthRule
Throws:
org.opensaml.ws.security.SecurityPolicyException


Copyright © 2006-2011 Internet2. All Rights Reserved.