org.opensaml.saml.common.binding.security.impl

Class SAMLMDClientCertAuthSecurityHandler

java.lang.Object

net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

org.opensaml.messaging.handler.AbstractMessageHandler<MessageType>

org.opensaml.security.messaging.impl.BaseTrustEngineSecurityHandler<org.opensaml.security.x509.X509Credential,MessageType>

org.opensaml.security.messaging.impl.BaseClientCertAuthSecurityHandler<SAMLObject>

org.opensaml.saml.common.binding.security.impl.SAMLMDClientCertAuthSecurityHandler

All Implemented Interfaces:

net.shibboleth.utilities.java.support.component.Component, net.shibboleth.utilities.java.support.component.DestructableComponent, net.shibboleth.utilities.java.support.component.InitializableComponent, org.opensaml.messaging.handler.MessageHandler<SAMLObject>

public class SAMLMDClientCertAuthSecurityHandler
extends BaseClientCertAuthSecurityHandler<SAMLObject>

SAML specialization of BaseClientCertAuthSecurityHandler which provides support for X509Credential trust engine validation based on SAML metadata.

Constructor Summary

Constructors

Constructor and Description
SAMLMDClientCertAuthSecurityHandler()

Method Summary

Methods

Modifier and Type	Method and Description
protected net.shibboleth.utilities.java.support.resolver.CriteriaSet	buildCriteriaSet(String entityID, org.opensaml.messaging.context.MessageContext<SAMLObject> messageContext)
protected String	getCertificatePresenterEntityID(org.opensaml.messaging.context.MessageContext<SAMLObject> messageContext)
protected SAMLProtocolContext	getSAMLProtocolContext(org.opensaml.messaging.context.MessageContext<SAMLObject> messageContext) Get the current SAML Protocol context.
protected void	setAuthenticatedCertificatePresenterEntityID(org.opensaml.messaging.context.MessageContext<SAMLObject> messageContext, String entityID)
protected void	setAuthenticatedState(org.opensaml.messaging.context.MessageContext<SAMLObject> messageContext, boolean authenticated)

Methods inherited from class org.opensaml.security.messaging.impl.BaseClientCertAuthSecurityHandler

doEvaluate, doInitialize, doInvoke, evaluateCertificateNameDerivedPresenters, evaluateDerivedPresenters, evaluateSubjectAltNames, evaluateSubjectCommonName, evaluateSubjectDN, getAltNames, getCertificateNameOptions, getCommonName, getHttpServletRequest, getSubjectName, setCertificateNameOptions, setHttpServletRequest

Methods inherited from class org.opensaml.security.messaging.impl.BaseTrustEngineSecurityHandler

evaluate, evaluate, getTrustEngine, setTrustEngine

Methods inherited from class org.opensaml.messaging.handler.AbstractMessageHandler

doPostInvoke, doPostInvoke, doPreInvoke, getLogPrefix, invoke

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

destroy, doDestroy, initialize, isDestroyed, isInitialized

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface net.shibboleth.utilities.java.support.component.InitializableComponent

initialize, isInitialized

Constructor Detail

SAMLMDClientCertAuthSecurityHandler

public SAMLMDClientCertAuthSecurityHandler()

Method Detail

buildCriteriaSet

@Nonnull
protected net.shibboleth.utilities.java.support.resolver.CriteriaSet buildCriteriaSet(@Nullable
                                                                                  String entityID,
                                                                                  @Nonnull
                                                                                  org.opensaml.messaging.context.MessageContext<SAMLObject> messageContext)
                                                                               throws org.opensaml.messaging.handler.MessageHandlerException

Overrides:

buildCriteriaSet in class BaseClientCertAuthSecurityHandler<SAMLObject>

Throws:

org.opensaml.messaging.handler.MessageHandlerException

getSAMLProtocolContext

@Nullable
protected SAMLProtocolContext getSAMLProtocolContext(@Nonnull
                                                  org.opensaml.messaging.context.MessageContext<SAMLObject> messageContext)

Get the current SAML Protocol context.

Parameters:

messageContext - the current message context

Returns:

the current SAML protocol context

getCertificatePresenterEntityID

@Nullable
protected String getCertificatePresenterEntityID(@Nonnull
                                              org.opensaml.messaging.context.MessageContext<SAMLObject> messageContext)

Specified by:

getCertificatePresenterEntityID in class BaseClientCertAuthSecurityHandler<SAMLObject>

setAuthenticatedCertificatePresenterEntityID

protected void setAuthenticatedCertificatePresenterEntityID(@Nonnull
                                                org.opensaml.messaging.context.MessageContext<SAMLObject> messageContext,
                                                @Nullable
                                                String entityID)

Specified by:

setAuthenticatedCertificatePresenterEntityID in class BaseClientCertAuthSecurityHandler<SAMLObject>

setAuthenticatedState

protected void setAuthenticatedState(@Nonnull
                         org.opensaml.messaging.context.MessageContext<SAMLObject> messageContext,
                         boolean authenticated)

Specified by:

setAuthenticatedState in class BaseClientCertAuthSecurityHandler<SAMLObject>