|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.opensaml.ws.security.provider.BaseTrustEngineRule<TokenType,RequestType>
RequestType
- type of request being processedTokenType
- type of token which is being evaluated by the underlying trust enginepublic abstract class BaseTrustEngineRule<TokenType,RequestType extends javax.servlet.ServletRequest>
Base rule which uses a trust engine to evaluate a token extracted from the request or message.
Constructor Summary | |
---|---|
BaseTrustEngineRule(TrustEngine<TokenType> engine)
Constructor. |
Method Summary | |
---|---|
protected abstract CriteriaSet |
buildCriteriaSet(java.lang.String entityID,
RequestType request,
XMLObject message,
SecurityPolicyContext context)
Subclasses are required to implement this method to build a criteria set for the trust engine according to trust engine and application-specific needs. |
abstract void |
evaluate(RequestType request,
XMLObject message,
SecurityPolicyContext context)
Evaluates the rule against the given request and message. |
protected boolean |
evaluate(TokenType token,
CriteriaSet criteriaSet)
Evaluate the token against the specified criteria using the configured trust engine. |
TrustEngine<TokenType> |
getTrustEngine()
Gets the engine used to validate the untrusted token. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public BaseTrustEngineRule(TrustEngine<TokenType> engine)
engine
- Trust engine used to verify the particular token typeMethod Detail |
---|
public TrustEngine<TokenType> getTrustEngine()
public abstract void evaluate(RequestType request, XMLObject message, SecurityPolicyContext context) throws SecurityPolicyException
evaluate
in interface SecurityPolicyRule<RequestType extends javax.servlet.ServletRequest>
request
- the protocol requestmessage
- the incoming messagecontext
- the security policy context to use for evaluation and storage of related state info
SecurityPolicyException
- thrown if the request/message do not meet the requirements of this ruleprotected abstract CriteriaSet buildCriteriaSet(java.lang.String entityID, RequestType request, XMLObject message, SecurityPolicyContext context)
entityID
- the candidate issuer entity ID which is being evaluatedrequest
- the protocol requestmessage
- the incoming messagecontext
- the security policy context to use for evaluation and storage of related state info
protected boolean evaluate(TokenType token, CriteriaSet criteriaSet) throws SecurityPolicyException
token
- the token to be evaluatedcriteriaSet
- the set of criteria against which to evaluate the token
SecurityPolicyException
- thrown if there is a fatal error during trust engine evaluation
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |