public final class SAMLUtils extends Object
| Modifier and Type | Method and Description |
|---|---|
static boolean |
checkHolderOfKey(org.apache.ws.security.saml.ext.AssertionWrapper assertionWrapper,
List<org.apache.ws.security.WSSecurityEngineResult> signedResults,
Certificate[] tlsCerts)
Check the holder-of-key requirements against the received assertion.
|
static boolean |
checkSenderVouches(org.apache.ws.security.saml.ext.AssertionWrapper assertionWrapper,
Certificate[] tlsCerts,
Element body,
List<org.apache.ws.security.WSSecurityEngineResult> signed)
Check the sender-vouches requirements against the received assertion.
|
static boolean |
compareCredentials(org.apache.ws.security.saml.SAMLKeyInfo subjectKeyInfo,
List<org.apache.ws.security.WSSecurityEngineResult> signedResults,
Certificate[] tlsCerts)
Compare the credentials of the assertion to the credentials used in 2-way TLS or those
used to verify signatures.
|
static Element |
getAssertionElement(Object assertion) |
static String |
getIssuer(Object assertion) |
static List<String> |
parseRolesInAssertion(Object assertion,
String roleAttributeName) |
static void |
validateSAMLResults(List<org.apache.ws.security.WSSecurityEngineResult> results,
Message message,
Element body) |
public static List<String> parseRolesInAssertion(Object assertion, String roleAttributeName)
public static void validateSAMLResults(List<org.apache.ws.security.WSSecurityEngineResult> results, Message message, Element body) throws org.apache.ws.security.WSSecurityException
org.apache.ws.security.WSSecurityExceptionpublic static boolean checkHolderOfKey(org.apache.ws.security.saml.ext.AssertionWrapper assertionWrapper,
List<org.apache.ws.security.WSSecurityEngineResult> signedResults,
Certificate[] tlsCerts)
assertionWrapper - the SAML Assertion wrapper objectsignedResults - a list of all of the signed resultspublic static boolean compareCredentials(org.apache.ws.security.saml.SAMLKeyInfo subjectKeyInfo,
List<org.apache.ws.security.WSSecurityEngineResult> signedResults,
Certificate[] tlsCerts)
subjectKeyInfo - the SAMLKeyInfo objectsignedResults - a list of all of the signed resultspublic static boolean checkSenderVouches(org.apache.ws.security.saml.ext.AssertionWrapper assertionWrapper,
Certificate[] tlsCerts,
Element body,
List<org.apache.ws.security.WSSecurityEngineResult> signed)
Apache CXF