Class SAML2AssertionValidationParameters
- java.lang.Object
-
- org.opensaml.saml.saml2.assertion.SAML2AssertionValidationParameters
-
public final class SAML2AssertionValidationParameters extends Object
Parameter keys used to store and retrieve static and dynamic parameters within aValidationContext
.
-
-
Field Summary
Fields Modifier and Type Field Description static String
CLOCK_SKEW
Carries aDuration
specifying a clock skew value.static String
COND_INFIX
The standard infix for parameters concerned with conditions evaluation.static String
COND_ONE_TIME_USE_EXPIRES
Carries aDuration
representing the per-invocation value for the Assertion replay cache expiration.static String
COND_REQUIRED_CONDITIONS
static String
COND_VALID_AUDIENCES
Carries aSet
<
String
>
whose values are the acceptableAudienceRestriction
Audience
values for evaluating the Assertion.static String
CONFIRMED_SUBJECT_CONFIRMATION
Carries theSubjectConfirmation
that confirmed the subject.static String
SC_ADDRESS_REQUIRED
Carries aBoolean
flag which indicates whether theSubjectConfirmationData
Address is required.static String
SC_CHECK_ADDRESS
Carries aBoolean
flag which indicates whether theSubjectConfirmationData
address should be checked.static String
SC_HOK_CONFIRMED_KEYINFO
Carries theKeyInfo
that successfully confirmed the subject via holder-of-key subject confirmation.static String
SC_HOK_PRESENTER_CERT
Carries theX509Certificate
used by the presenter.static String
SC_HOK_PRESENTER_KEY
Carries thePublicKey
used by the presenter.static String
SC_IN_RESPONSE_TO_REQUIRED
Carries aBoolean
flag which indicates whetherSubjectConfirmationData
InResponseTo is required.static String
SC_INFIX
The standard infix for parameters concerned with subject confirmation.static String
SC_NOT_BEFORE_REQUIRED
Carries aBoolean
flag which indicates whetherSubjectConfirmationData
NotBefore is required.static String
SC_NOT_ON_OR_AFTER_REQUIRED
Carries aBoolean
flag which indicates whetherSubjectConfirmationData
NotOnOrAfter is required.static String
SC_RECIPIENT_REQUIRED
Carries aBoolean
flag which indicates whetherSubjectConfirmationData
Recipient is required.static String
SC_VALID_ADDRESSES
static String
SC_VALID_IN_RESPONSE_TO
Carries aString
whose value is the acceptableSubjectConfirmationData
InResponseTo.static String
SC_VALID_RECIPIENTS
static String
SIGNATURE_REQUIRED
Carries aBoolean
flag which indicates whether the Assertion is required to be signed.static String
SIGNATURE_VALIDATION_CRITERIA_SET
Carries aCriteriaSet
which will be used as the input to aSignatureTrustEngine
.static String
SIGNATURE_VALIDATION_PREVALIDATOR
Carries aSignaturePrevalidator
which will be used to pre-validate the Assertion signature.static String
SIGNATURE_VALIDATION_TRUST_ENGINE
Carries aSignatureTrustEngine
which will be used to validate the Assertion signature.static String
STD_PREFIX
The standard prefix for all SAML 2 parameters defined in this set.static String
STMT_AUTHN_CHECK_ADDRESS
Carries aBoolean
flag which indicates whether the Address attribute of theSubjectLocality
of anAuthnStatement
should be checked.static String
STMT_AUTHN_MAX_TIME
Carries aDuration
used to evaluate the allowed value of an AuthnInstant attribute of anAuthnStatement
.static String
STMT_AUTHN_VALID_ADDRESSES
Carries aSet
<
InetAddress
>
whose values are the acceptable values for the Address attribute of theSubjectLocality
of anAuthnStatement
.static String
STMT_INFIX
The standard infix for parameters concerned with statement evaluation.static String
VALID_ISSUERS
-
Constructor Summary
Constructors Modifier Constructor Description private
SAML2AssertionValidationParameters()
Constructor.
-
-
-
Field Detail
-
STD_PREFIX
public static final String STD_PREFIX
The standard prefix for all SAML 2 parameters defined in this set.- See Also:
- Constant Field Values
-
SC_INFIX
public static final String SC_INFIX
The standard infix for parameters concerned with subject confirmation.- See Also:
- Constant Field Values
-
COND_INFIX
public static final String COND_INFIX
The standard infix for parameters concerned with conditions evaluation.- See Also:
- Constant Field Values
-
STMT_INFIX
public static final String STMT_INFIX
The standard infix for parameters concerned with statement evaluation.- See Also:
- Constant Field Values
-
CLOCK_SKEW
public static final String CLOCK_SKEW
Carries aDuration
specifying a clock skew value.- See Also:
- Constant Field Values
-
CONFIRMED_SUBJECT_CONFIRMATION
public static final String CONFIRMED_SUBJECT_CONFIRMATION
Carries theSubjectConfirmation
that confirmed the subject.- See Also:
- Constant Field Values
-
VALID_ISSUERS
public static final String VALID_ISSUERS
- See Also:
- Constant Field Values
-
SIGNATURE_REQUIRED
public static final String SIGNATURE_REQUIRED
Carries aBoolean
flag which indicates whether the Assertion is required to be signed.- See Also:
- Constant Field Values
-
SIGNATURE_VALIDATION_CRITERIA_SET
public static final String SIGNATURE_VALIDATION_CRITERIA_SET
Carries aCriteriaSet
which will be used as the input to aSignatureTrustEngine
.- See Also:
- Constant Field Values
-
SIGNATURE_VALIDATION_TRUST_ENGINE
public static final String SIGNATURE_VALIDATION_TRUST_ENGINE
Carries aSignatureTrustEngine
which will be used to validate the Assertion signature.- See Also:
- Constant Field Values
-
SIGNATURE_VALIDATION_PREVALIDATOR
public static final String SIGNATURE_VALIDATION_PREVALIDATOR
Carries aSignaturePrevalidator
which will be used to pre-validate the Assertion signature.- See Also:
- Constant Field Values
-
SC_NOT_BEFORE_REQUIRED
public static final String SC_NOT_BEFORE_REQUIRED
Carries aBoolean
flag which indicates whetherSubjectConfirmationData
NotBefore is required.- See Also:
- Constant Field Values
-
SC_NOT_ON_OR_AFTER_REQUIRED
public static final String SC_NOT_ON_OR_AFTER_REQUIRED
Carries aBoolean
flag which indicates whetherSubjectConfirmationData
NotOnOrAfter is required.- See Also:
- Constant Field Values
-
SC_RECIPIENT_REQUIRED
public static final String SC_RECIPIENT_REQUIRED
Carries aBoolean
flag which indicates whetherSubjectConfirmationData
Recipient is required.- See Also:
- Constant Field Values
-
SC_VALID_RECIPIENTS
public static final String SC_VALID_RECIPIENTS
- See Also:
- Constant Field Values
-
SC_ADDRESS_REQUIRED
public static final String SC_ADDRESS_REQUIRED
Carries aBoolean
flag which indicates whether theSubjectConfirmationData
Address is required.- See Also:
- Constant Field Values
-
SC_CHECK_ADDRESS
public static final String SC_CHECK_ADDRESS
Carries aBoolean
flag which indicates whether theSubjectConfirmationData
address should be checked.- See Also:
- Constant Field Values
-
SC_VALID_ADDRESSES
public static final String SC_VALID_ADDRESSES
- See Also:
- Constant Field Values
-
SC_IN_RESPONSE_TO_REQUIRED
public static final String SC_IN_RESPONSE_TO_REQUIRED
Carries aBoolean
flag which indicates whetherSubjectConfirmationData
InResponseTo is required.- See Also:
- Constant Field Values
-
SC_VALID_IN_RESPONSE_TO
public static final String SC_VALID_IN_RESPONSE_TO
Carries aString
whose value is the acceptableSubjectConfirmationData
InResponseTo.- See Also:
- Constant Field Values
-
SC_HOK_PRESENTER_KEY
public static final String SC_HOK_PRESENTER_KEY
Carries thePublicKey
used by the presenter.- See Also:
- Constant Field Values
-
SC_HOK_PRESENTER_CERT
public static final String SC_HOK_PRESENTER_CERT
Carries theX509Certificate
used by the presenter.- See Also:
- Constant Field Values
-
SC_HOK_CONFIRMED_KEYINFO
public static final String SC_HOK_CONFIRMED_KEYINFO
Carries theKeyInfo
that successfully confirmed the subject via holder-of-key subject confirmation.- See Also:
- Constant Field Values
-
COND_REQUIRED_CONDITIONS
public static final String COND_REQUIRED_CONDITIONS
- See Also:
- Constant Field Values
-
COND_VALID_AUDIENCES
public static final String COND_VALID_AUDIENCES
Carries aSet
<
String
>
whose values are the acceptableAudienceRestriction
Audience
values for evaluating the Assertion.- See Also:
- Constant Field Values
-
COND_ONE_TIME_USE_EXPIRES
public static final String COND_ONE_TIME_USE_EXPIRES
Carries aDuration
representing the per-invocation value for the Assertion replay cache expiration.- See Also:
- Constant Field Values
-
STMT_AUTHN_CHECK_ADDRESS
public static final String STMT_AUTHN_CHECK_ADDRESS
Carries aBoolean
flag which indicates whether the Address attribute of theSubjectLocality
of anAuthnStatement
should be checked.- See Also:
- Constant Field Values
-
STMT_AUTHN_VALID_ADDRESSES
public static final String STMT_AUTHN_VALID_ADDRESSES
Carries aSet
<
InetAddress
>
whose values are the acceptable values for the Address attribute of theSubjectLocality
of anAuthnStatement
.- See Also:
- Constant Field Values
-
STMT_AUTHN_MAX_TIME
public static final String STMT_AUTHN_MAX_TIME
Carries aDuration
used to evaluate the allowed value of an AuthnInstant attribute of anAuthnStatement
.- See Also:
- Constant Field Values
-
-