public abstract class AbstractSamlPolicyValidator extends AbstractTokenPolicyValidator
| Constructor and Description |
|---|
AbstractSamlPolicyValidator() |
| Modifier and Type | Method and Description |
|---|---|
boolean |
checkHolderOfKey(org.apache.ws.security.saml.ext.AssertionWrapper assertionWrapper,
List<org.apache.ws.security.WSSecurityEngineResult> signedResults,
Certificate[] tlsCerts)
Check the holder-of-key requirements against the received assertion.
|
protected boolean |
compareCredentials(org.apache.ws.security.saml.SAMLKeyInfo subjectKeyInfo,
List<org.apache.ws.security.WSSecurityEngineResult> signedResults,
Certificate[] tlsCerts)
Compare the credentials of the assertion to the credentials used in 2-way TLS or those
used to verify signatures.
|
protected boolean |
isTokenRequired(Token token,
Message message)
Check to see if a token is required or not.
|
protected boolean isTokenRequired(Token token, Message message)
isTokenRequired in class AbstractTokenPolicyValidatortoken - the tokenmessage - The messagepublic boolean checkHolderOfKey(org.apache.ws.security.saml.ext.AssertionWrapper assertionWrapper,
List<org.apache.ws.security.WSSecurityEngineResult> signedResults,
Certificate[] tlsCerts)
assertionWrapper - the SAML Assertion wrapper objectsignedResults - a list of all of the signed resultsprotected boolean compareCredentials(org.apache.ws.security.saml.SAMLKeyInfo subjectKeyInfo,
List<org.apache.ws.security.WSSecurityEngineResult> signedResults,
Certificate[] tlsCerts)
subjectKeyInfo - the SAMLKeyInfo objectsignedResults - a list of all of the signed resultsApache CXF