|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.opensaml.xml.security.x509.PKIXX509CredentialTrustEngine
public class PKIXX509CredentialTrustEngine
Trust engine implementation which evaluates an X509Credential token based on PKIX validation processing using validation information from a trusted source.
Constructor Summary | |
---|---|
PKIXX509CredentialTrustEngine(PKIXValidationInformationResolver resolver)
Constructor. |
Method Summary | |
---|---|
PKIXValidationInformationResolver |
getPKIXResolver()
Get the resolver instance which will be used to resolve PKIX validation information. |
PKIXTrustEvaluator |
getPKIXTrustEvaluator()
Get the PKIXTrustEvaluator instance used to evalute trust. |
boolean |
validate(X509Credential untrustedCredential,
CriteriaSet trustBasisCriteria)
Validates the token against trusted information obtained in an implementation-specific manner. |
protected boolean |
validate(X509Credential untrustedX509Credential,
java.util.Set<java.lang.String> trustedNames,
java.lang.Iterable<PKIXValidationInformation> validationInfoSet)
Perform PKIX validation on the untrusted credential, using PKIX validation information based on the supplied set of trusted credentials. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public PKIXX509CredentialTrustEngine(PKIXValidationInformationResolver resolver)
resolver
- credential resolver used to resolve trusted credentialsMethod Detail |
---|
public PKIXValidationInformationResolver getPKIXResolver()
getPKIXResolver
in interface PKIXTrustEngine<X509Credential>
public PKIXTrustEvaluator getPKIXTrustEvaluator()
public boolean validate(X509Credential untrustedCredential, CriteriaSet trustBasisCriteria) throws SecurityException
validate
in interface TrustEngine<X509Credential>
untrustedCredential
- security token to validatetrustBasisCriteria
- criteria used to describe and/or resolve the information
which serves as the basis for trust evaluation
SecurityException
- thrown if there is a problem validating the security tokenprotected boolean validate(X509Credential untrustedX509Credential, java.util.Set<java.lang.String> trustedNames, java.lang.Iterable<PKIXValidationInformation> validationInfoSet)
untrustedX509Credential
- the credential to evaluatevalidationInfoSet
- the set of validation information which serves as ths basis for trust evaluationtrustedNames
- the set of trusted names for name checking purposes
SecurityException
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |