Package org.opensaml.saml.common.binding.security.impl
Classes responsible for performing transport-related and basic message
validation of decoded SAML messages.
-
Class Summary Class Description BaseSAMLSimpleSignatureSecurityHandler Base class for security-oriented message handlers which verify simple "blob" signatures computed over some components of a request.BaseSAMLXMLSignatureSecurityHandler Base class for SAML security message handlers which evaluate a signature with a signature trust engine.CheckAndRecordServerTLSEntityAuthenticationtHandler Handler implementation that checks and records the result ofHttpClient
server TLS authentication as stored in the @linkHttpClientContext
resolved via strategy function.EndpointURLSchemeSecurityHandler Class which verifies that theEndpoint
to which a message will be delivered contains a valid URL scheme.InResponseToSecurityHandler Client-side message handler for validating that the inbound SAML response inResponseTo ID matches the corresponding outbound request ID.MessageLifetimeSecurityHandler Security message handler implementation that checks for validity of SAML message issue instant date and time.MessageReplaySecurityHandler Security message handler implementation that which checks for replay of SAML messages.OperationContextEntityIDLookup Function for resolving the SAML entity ID from the parentInOutOperationContext
.ReceivedEndpointSecurityHandler Message handler which checks the validity of the SAML protocol message receiver endpoint against requirements indicated in the message.SAMLMDClientCertAuthSecurityHandler SAML specialization ofBaseClientCertAuthSecurityHandler
which provides support for X509Credential trust engine validation based on SAML metadata.SAMLOutboundProtocolMessageSigningHandler A message handler implementation that signs an outbound SAML protocol message if the message context contains an instance ofSignatureSigningParameters
as determined bySAMLMessageSecuritySupport.getContextSigningParameters(MessageContext)
.SAMLProtocolMessageXMLSignatureSecurityHandler SAML security message handler which validates the signature (if present) on theSAMLObject
which represents the SAML protocol message being processed.