|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object org.opensaml.common.binding.security.BaseSAMLSimpleSignatureSecurityPolicyRule org.opensaml.saml2.binding.security.SAML2HTTPPostSimpleSignRule
public class SAML2HTTPPostSimpleSignRule
Security policy which evaluates simple "blob" signatures according to the SAML 2 HTTP-POST-SimpleSign binding.
Field Summary | |
---|---|
private KeyInfoCredentialResolver |
keyInfoResolver
KeyInfo resolver to use to process KeyInfo request parameter. |
private org.slf4j.Logger |
log
Logger. |
private ParserPool |
parser
Parser pool to use to process KeyInfo request parameter. |
Constructor Summary | |
---|---|
SAML2HTTPPostSimpleSignRule(SignatureTrustEngine engine,
ParserPool parserPool,
KeyInfoCredentialResolver keyInfoCredResolver)
Constructor. |
Method Summary | |
---|---|
protected List<Credential> |
getRequestCredentials(javax.servlet.http.HttpServletRequest request,
SAMLMessageContext samlContext)
Extract any candidate validation credentials from the request and/or message context. |
protected byte[] |
getSignedContent(javax.servlet.http.HttpServletRequest request)
Get the content over which to validate the signature, in the form suitable for input into SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential) . |
protected boolean |
ruleHandles(javax.servlet.http.HttpServletRequest request,
SAMLMessageContext samlMsgCtx)
Determine whether the rule should handle the request, based on the unwrapped HTTP servlet request and/or message context. |
Methods inherited from class org.opensaml.common.binding.security.BaseSAMLSimpleSignatureSecurityPolicyRule |
---|
buildCriteriaSet, deriveSignerEntityID, evaluate, getSignature, getSignatureAlgorithm, getTrustEngine, validateSignature |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
private org.slf4j.Logger log
private ParserPool parser
private KeyInfoCredentialResolver keyInfoResolver
Constructor Detail |
---|
public SAML2HTTPPostSimpleSignRule(SignatureTrustEngine engine, ParserPool parserPool, KeyInfoCredentialResolver keyInfoCredResolver)
engine
- the trust engine to useparserPool
- the parser pool used to parse the KeyInfo request parameterkeyInfoCredResolver
- the KeyInfo credential resovler to use to extract credentials from the KeyInfo request
parameterMethod Detail |
---|
protected boolean ruleHandles(javax.servlet.http.HttpServletRequest request, SAMLMessageContext samlMsgCtx)
ruleHandles
in class BaseSAMLSimpleSignatureSecurityPolicyRule
request
- the HTTP servlet request being processedsamlMsgCtx
- the SAML message context being processed
protected byte[] getSignedContent(javax.servlet.http.HttpServletRequest request) throws SecurityPolicyException
SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential)
.
getSignedContent
in class BaseSAMLSimpleSignatureSecurityPolicyRule
request
- the HTTP servlet request being processed
SecurityPolicyException
- thrown if there is an error during request processingprotected List<Credential> getRequestCredentials(javax.servlet.http.HttpServletRequest request, SAMLMessageContext samlContext) throws SecurityPolicyException
getRequestCredentials
in class BaseSAMLSimpleSignatureSecurityPolicyRule
request
- the HTTP servlet request being processedsamlContext
- the SAML message context being processed
SecurityPolicyException
- thrown if there is an error during request processing
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |