org.opensaml.saml2.binding.security
public class SAML2HTTPRedirectDeflateSignatureRule extends BaseSAMLSimpleSignatureSecurityPolicyRule
Modifier and Type | Field and Description |
---|---|
private org.slf4j.Logger |
log
Logger.
|
Constructor and Description |
---|
SAML2HTTPRedirectDeflateSignatureRule(SignatureTrustEngine engine)
Constructor.
|
Modifier and Type | Method and Description |
---|---|
private boolean |
appendParameter(StringBuilder builder,
String queryString,
String paramName)
Find the raw query string parameter indicated and append it to the string builder.
|
private String |
buildSignedContentString(String queryString)
Extract the raw request parameters and build a string representation of the content that was signed.
|
protected byte[] |
getSignedContent(javax.servlet.http.HttpServletRequest request)
Get the content over which to validate the signature, in the form suitable for input into
SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential) . |
protected boolean |
ruleHandles(javax.servlet.http.HttpServletRequest request,
SAMLMessageContext samlMsgCtx)
Determine whether the rule should handle the request, based on the unwrapped HTTP servlet request and/or message
context.
|
buildCriteriaSet, deriveSignerEntityID, evaluate, getRequestCredentials, getSignature, getSignatureAlgorithm, getTrustEngine, validateSignature
public SAML2HTTPRedirectDeflateSignatureRule(SignatureTrustEngine engine)
engine
- the trust engine to useprotected boolean ruleHandles(javax.servlet.http.HttpServletRequest request, SAMLMessageContext samlMsgCtx) throws SecurityPolicyException
ruleHandles
in class BaseSAMLSimpleSignatureSecurityPolicyRule
request
- the HTTP servlet request being processedsamlMsgCtx
- the SAML message context being processedSecurityPolicyException
- thrown if there is an error during request processingprotected byte[] getSignedContent(javax.servlet.http.HttpServletRequest request) throws SecurityPolicyException
SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential)
.getSignedContent
in class BaseSAMLSimpleSignatureSecurityPolicyRule
request
- the HTTP servlet request being processedSecurityPolicyException
- thrown if there is an error during request processingprivate String buildSignedContentString(String queryString) throws SecurityPolicyException
queryString
- the raw HTTP query string from the requestSecurityPolicyException
- thrown if there is an error during request processingprivate boolean appendParameter(StringBuilder builder, String queryString, String paramName)
builder
- string builder to which to append the parameterqueryString
- the URL query string containing parametersparamName
- the name of the parameter to appendCopyright © 1999-2013 JBoss by Red Hat. All Rights Reserved.