Package org.opensaml.security.x509
Interface PKIXTrustEvaluator
-
public interface PKIXTrustEvaluator
An interface for classes which evaluate anX509Credential
against a set of trustedPKIXValidationInformation
, using PKIX validation rules.
-
-
Method Summary
All Methods Instance Methods Abstract Methods Modifier and Type Method Description PKIXValidationOptions
getPKIXValidationOptions()
Get thePKIXValidationOptions
instance that is in use.boolean
validate(PKIXValidationInformation validationInfo, X509Credential untrustedCredential)
Validate the specified credential against the specified set of trusted validation information.
-
-
-
Method Detail
-
validate
boolean validate(@Nonnull PKIXValidationInformation validationInfo, @Nonnull X509Credential untrustedCredential) throws SecurityException
Validate the specified credential against the specified set of trusted validation information.- Parameters:
validationInfo
- the set of trusted validation informationuntrustedCredential
- the credential being evaluated- Returns:
- true if the credential can be successfully evaluated, false otherwise
- Throws:
SecurityException
- thrown if there is an error evaluating the credential
-
getPKIXValidationOptions
@Nonnull PKIXValidationOptions getPKIXValidationOptions()
Get thePKIXValidationOptions
instance that is in use.- Returns:
- the PKIXValidationOptions instance
-
-