Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

org.opensaml.common.binding.security
Class SAMLMDClientCertAuthRule

java.lang.Object
  extended by org.opensaml.ws.security.provider.BaseTrustEngineRule<X509Credential>
      extended by org.opensaml.ws.security.provider.ClientCertAuthRule
          extended by org.opensaml.common.binding.security.SAMLMDClientCertAuthRule
All Implemented Interfaces:
SecurityPolicyRule
public class SAMLMDClientCertAuthRule
extends ClientCertAuthRule

SAML specialization of ClientCertAuthRule which provides support for X509Credential trust engine validation based on SAML metadta.

Field Summary
private  org.slf4j.Logger log
          Logger.
 
Constructor Summary
SAMLMDClientCertAuthRule(TrustEngine<X509Credential> engine, CertificateNameOptions nameOptions)
          Constructor.
 
Method Summary
protected  CriteriaSet buildCriteriaSet(String entityID, MessageContext messageContext)
          
 
Methods inherited from class org.opensaml.ws.security.provider.ClientCertAuthRule
doEvaluate, evaluate, evaluateCertificateNameDerivedIssuers, evaluateCertificateNameDerivedPresenters, evaluateDerivedIssuers, evaluateDerivedPresenters, evaluateSubjectAltNames, evaluateSubjectCommonName, evaluateSubjectDN, getAltNames, getCertificateNameOptions, getCertificatePresenterEntityID, getCommonName, getSubjectName, setAuthenticatedCertificatePresenterEntityID
 
Methods inherited from class org.opensaml.ws.security.provider.BaseTrustEngineRule
evaluate, evaluate, getTrustEngine
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

log

private final org.slf4j.Logger log
Logger.

Constructor Detail

SAMLMDClientCertAuthRule

public SAMLMDClientCertAuthRule(TrustEngine<X509Credential> engine,
                                CertificateNameOptions nameOptions)
Constructor.

Parameters:
engine - Trust engine used to verify the request X509Credential
nameOptions - options for deriving issuer names from an X.509 certificate
Method Detail

buildCriteriaSet

protected CriteriaSet buildCriteriaSet(String entityID,
                                       MessageContext messageContext)
                                throws SecurityPolicyException

Overrides:
buildCriteriaSet in class ClientCertAuthRule
Throws:
SecurityPolicyException
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Copyright © 1999-2013. All Rights Reserved.