KeyInfoProvider (XMLTooling-J 1.3.4 API)

Overview

Package

Class

Use

Tree

Deprecated

Index

Help

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

org.opensaml.xml.security.keyinfo
Interface KeyInfoProvider

All Known Implementing Classes:: AbstractKeyInfoProvider, DSAKeyValueProvider, InlineX509DataProvider, RSAKeyValueProvider

public interface KeyInfoProvider

Interface for providers used in conjunction with a KeyInfoCredentialResolver which support resolving Credentials based on a child element of KeyInfo.

Method Summary
`boolean`	`handles(XMLObject keyInfoChild)` Evaluate whether the given provider should attempt to handle resolving a credential from the specified KeyInfo child.
`Collection<Credential>`	`process(KeyInfoCredentialResolver resolver, XMLObject keyInfoChild, CriteriaSet criteriaSet, KeyInfoResolutionContext kiContext)` Process a specified KeyInfo child (XMLobject) and attempt to resolve a credential from it.

Method Detail

process

Collection<Credential> process(KeyInfoCredentialResolver resolver,
                               XMLObject keyInfoChild,
                               CriteriaSet criteriaSet,
                               KeyInfoResolutionContext kiContext)
                               throws SecurityException

Process a specified KeyInfo child (XMLobject) and attempt to resolve a credential from it.

Parameters:: resolver - reference to a resolver which is calling the provider; keyInfoChild - the KeyInfo child being processed; criteriaSet - the credential criteria the credential must satisfy; kiContext - the resolution context, used for sharing state amongst resolvers and providers
Returns:: a resolved Credential collection, or null
Throws:: SecurityException - if there is an error during credential resolution. Note: failure to resolve a credential is not an error.

handles

boolean handles(XMLObject keyInfoChild)

Evaluate whether the given provider should attempt to handle resolving a credential from the specified KeyInfo child. An evaluation of true does not guarantee that a credential can or will be extracted form the particular KeyInfo child, only that processing should be attempted.

Parameters:: keyInfoChild - the KeyInfo child object to consider
Returns:: true if the provider should attempt to resolve credentials, false otherwise