public class SamlTokenValidatorImpl extends SignatureTokenValidatorImpl implements SamlTokenValidator
Constructor and Description |
---|
SamlTokenValidatorImpl() |
Modifier and Type | Method and Description |
---|---|
protected void |
checkAuthnStatements(SamlAssertionWrapper samlAssertion)
Check the AuthnStatements of the Assertion (if any)
|
protected void |
checkConditions(SamlAssertionWrapper samlAssertion)
Check the Conditions of the Assertion.
|
protected void |
checkConditions(SamlAssertionWrapper samlAssertion,
List<String> audienceRestrictions)
Check the Conditions of the Assertion.
|
protected void |
checkOneTimeUse(SamlAssertionWrapper samlAssertion,
ReplayCache replayCache)
Check the "OneTimeUse" Condition of the Assertion.
|
String |
getRequiredSubjectConfirmationMethod() |
int |
getTtl() |
boolean |
isRequireBearerSignature() |
boolean |
isRequireStandardSubjectConfirmationMethod() |
boolean |
isValidateSignatureAgainstProfile()
Whether to validate the signature of the Assertion (if it exists) against the
relevant profile.
|
void |
setFutureTTL(int newFutureTTL)
Set the time in seconds in the future within which the NotBefore time of an incoming
Assertion is valid.
|
void |
setRequireBearerSignature(boolean requireBearerSignature) |
void |
setRequiredSubjectConfirmationMethod(String requiredSubjectConfirmationMethod) |
void |
setRequireStandardSubjectConfirmationMethod(boolean requireStandardSubjectConfirmationMethod) |
void |
setTtl(int ttl) |
void |
setValidateSignatureAgainstProfile(boolean validateSignatureAgainstProfile)
Whether to validate the signature of the Assertion (if it exists) against the
relevant profile.
|
<T extends SamlSecurityToken & org.apache.xml.security.stax.securityToken.InboundSecurityToken> |
validate(SamlAssertionWrapper samlAssertionWrapper,
org.apache.xml.security.stax.securityToken.InboundSecurityToken subjectSecurityToken,
TokenContext tokenContext) |
protected void |
validateAssertion(SamlAssertionWrapper samlAssertion)
Validate the samlAssertion against schemas/profiles
|
protected void |
verifySubjectConfirmationMethod(SamlAssertionWrapper samlAssertion)
Check the Subject Confirmation method requirements
|
validate
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
validate
public void setFutureTTL(int newFutureTTL)
public boolean isValidateSignatureAgainstProfile()
public void setValidateSignatureAgainstProfile(boolean validateSignatureAgainstProfile)
public String getRequiredSubjectConfirmationMethod()
public void setRequiredSubjectConfirmationMethod(String requiredSubjectConfirmationMethod)
public <T extends SamlSecurityToken & org.apache.xml.security.stax.securityToken.InboundSecurityToken> T validate(SamlAssertionWrapper samlAssertionWrapper, org.apache.xml.security.stax.securityToken.InboundSecurityToken subjectSecurityToken, TokenContext tokenContext) throws WSSecurityException
validate
in interface SamlTokenValidator
WSSecurityException
protected void verifySubjectConfirmationMethod(SamlAssertionWrapper samlAssertion) throws WSSecurityException
WSSecurityException
protected void checkConditions(SamlAssertionWrapper samlAssertion, List<String> audienceRestrictions) throws WSSecurityException
WSSecurityException
protected void checkConditions(SamlAssertionWrapper samlAssertion) throws WSSecurityException
WSSecurityException
protected void checkAuthnStatements(SamlAssertionWrapper samlAssertion) throws WSSecurityException
WSSecurityException
protected void checkOneTimeUse(SamlAssertionWrapper samlAssertion, ReplayCache replayCache) throws WSSecurityException
WSSecurityException
protected void validateAssertion(SamlAssertionWrapper samlAssertion) throws WSSecurityException
WSSecurityException
public boolean isRequireStandardSubjectConfirmationMethod()
public void setRequireStandardSubjectConfirmationMethod(boolean requireStandardSubjectConfirmationMethod)
public boolean isRequireBearerSignature()
public void setRequireBearerSignature(boolean requireBearerSignature)
public int getTtl()
public void setTtl(int ttl)
Copyright © 2017 JBoss by Red Hat. All rights reserved.