org.opensaml.common.binding.security
public class SAMLMDClientCertAuthRule extends ClientCertAuthRule
ClientCertAuthRule
which provides support for X509Credential trust engine validation
based on SAML metadta.Modifier and Type | Field and Description |
---|---|
private org.slf4j.Logger |
log
Logger.
|
Constructor and Description |
---|
SAMLMDClientCertAuthRule(TrustEngine<X509Credential> engine,
CertificateNameOptions nameOptions)
Constructor.
|
Modifier and Type | Method and Description |
---|---|
protected CriteriaSet |
buildCriteriaSet(String entityID,
MessageContext messageContext) |
doEvaluate, evaluate, evaluateCertificateNameDerivedIssuers, evaluateCertificateNameDerivedPresenters, evaluateDerivedIssuers, evaluateDerivedPresenters, evaluateSubjectAltNames, evaluateSubjectCommonName, evaluateSubjectDN, getAltNames, getCertificateNameOptions, getCertificatePresenterEntityID, getCommonName, getSubjectName, setAuthenticatedCertificatePresenterEntityID
evaluate, evaluate, getTrustEngine
public SAMLMDClientCertAuthRule(TrustEngine<X509Credential> engine, CertificateNameOptions nameOptions)
engine
- Trust engine used to verify the request X509CredentialnameOptions
- options for deriving issuer names from an X.509 certificateprotected CriteriaSet buildCriteriaSet(String entityID, MessageContext messageContext) throws SecurityPolicyException
buildCriteriaSet
in class ClientCertAuthRule
SecurityPolicyException
Copyright © 1999-2013 JBoss by Red Hat. All Rights Reserved.