Uses of Class
org.opensaml.security.SecurityException

Packages that use SecurityException

Package	Description
org.opensaml.saml.common.messaging	Support classes for SAML message security operations.
org.opensaml.security.credential.criteria.impl	Implementations of Criterion where the parameterized evaluation target type is Credential.
org.opensaml.security.crypto	General cryptographic functionality.
org.opensaml.security.messaging	Messaging-related security classes.
org.opensaml.security.testing
org.opensaml.security.trust	Interfaces and classes used to evaluate the trustworthiness and validity of Credentials.
org.opensaml.security.trust.impl	TrustEngine implementation classes.
org.opensaml.security.x509	X.509-based credential and trust classes.
org.opensaml.security.x509.impl	TrustEngine implementation classes related to PKIX.
org.opensaml.soap.client	SOAP client functionality.
org.opensaml.soap.client.http	SOAP HTTP client functionality.
org.opensaml.xmlsec.crypto	Support classes for XML Security operations.
org.opensaml.xmlsec.keyinfo	Classes in support of processing XML Signature KeyInfo material.
org.opensaml.xmlsec.keyinfo.impl	Interfaces and classes for working with XML KeyInfo elements.
org.opensaml.xmlsec.keyinfo.impl.provider	Specific implementations of KeyInfoProvider.
org.opensaml.xmlsec.signature.support	Functional support for XML Signature.
org.opensaml.xmlsec.signature.support.impl	Implementations of signature evaluation functions.

Uses of SecurityException in org.opensaml.saml.common.messaging

Methods in org.opensaml.saml.common.messaging that throw SecurityException

Modifier and Type	Method	Description
static void	SAMLMessageSecuritySupport.signMessage(MessageContext messageContext)	Signs the SAML message represented in the message context if it is a SignableXMLObject and the message context contains signing parameters as determined by SAMLMessageSecuritySupport.getContextSigningParameters(MessageContext).

Uses of SecurityException in org.opensaml.security.credential.criteria.impl

Methods in org.opensaml.security.credential.criteria.impl that throw SecurityException

Modifier and Type	Method	Description
static EvaluableCredentialCriterion	EvaluableCredentialCriteriaRegistry.getEvaluator(Criterion criteria)	Get an instance of EvaluableCredentialCriterion which can evaluate the supplied criteria's requirements against a Credential target.

Uses of SecurityException in org.opensaml.security.crypto

Methods in org.opensaml.security.crypto that throw SecurityException

Modifier and Type	Method	Description
static boolean	KeySupport.matchKeyPair(PublicKey pubKey, PrivateKey privKey)	Compare the supplied public and private keys, and determine if they correspond to the same key pair.
static byte[]	SigningUtil.sign(PrivateKey signingKey, String jcaAlgorithmID, byte[] input)	Compute the raw signature value over the supplied input.
static byte[]	SigningUtil.sign(Credential signingCredential, String jcaAlgorithmID, boolean isMAC, byte[] input)	Compute the signature or MAC value over the supplied input.
static byte[]	SigningUtil.signMAC(Key signingKey, String jcaAlgorithmID, byte[] input)	Compute the Message Authentication Code (MAC) value over the supplied input.
static boolean	SigningUtil.verify(PublicKey verificationKey, String jcaAlgorithmID, byte[] signature, byte[] input)	Verify the signature value computed over the supplied input against the supplied signature value.
static boolean	SigningUtil.verify(Credential verificationCredential, String jcaAlgorithmID, boolean isMAC, byte[] signature, byte[] input)	Verify the signature value computed over the supplied input against the supplied signature value.
static boolean	SigningUtil.verifyMAC(Key verificationKey, String jcaAlgorithmID, byte[] signature, byte[] input)	Verify the Message Authentication Code (MAC) value computed over the supplied input against the supplied MAC value.

Uses of SecurityException in org.opensaml.security.messaging

Constructors in org.opensaml.security.messaging that throw SecurityException

Modifier	Constructor	Description
	ServletRequestX509CredentialAdapter(ServletRequest request)	Constructor.

Uses of SecurityException in org.opensaml.security.testing

Methods in org.opensaml.security.testing that throw SecurityException

Modifier and Type	Method	Description
boolean	MockTrustEngine.validate(TokenType token, CriteriaSet trustBasisCriteria)	Validates the token against trusted information obtained in an implementation-specific manner.

Uses of SecurityException in org.opensaml.security.trust

Methods in org.opensaml.security.trust that throw SecurityException

Modifier and Type	Method	Description
boolean	TrustEngine.validate(TokenType token, CriteriaSet trustBasisCriteria)	Validates the token against trusted information obtained in an implementation-specific manner.

Uses of SecurityException in org.opensaml.security.trust.impl

Methods in org.opensaml.security.trust.impl that throw SecurityException

Modifier and Type	Method	Description
boolean	ChainingTrustEngine.validate(TokenType token, CriteriaSet trustBasisCriteria)	Validates the token against trusted information obtained in an implementation-specific manner.
boolean	ExplicitKeyTrustEngine.validate(Credential untrustedCredential, CriteriaSet trustBasisCriteria)	Validates the token against trusted information obtained in an implementation-specific manner.
boolean	ExplicitX509CertificateTrustEngine.validate(X509Credential untrustedCredential, CriteriaSet trustBasisCriteria)	Validates the token against trusted information obtained in an implementation-specific manner.

Uses of SecurityException in org.opensaml.security.x509

Methods in org.opensaml.security.x509 that throw SecurityException

Modifier and Type	Method	Description
static X509Certificate	X509Support.determineEntityCertificate(Collection<X509Certificate> certs, PrivateKey privateKey)	Determines the certificate, from the collection, associated with the private key.
static byte[]	X509Support.getX509Digest(X509Certificate certificate, String jcaAlgorithm)	Get the XML Signature-compliant digest of an X.509 certificate.
boolean	PKIXTrustEvaluator.validate(PKIXValidationInformation validationInfo, X509Credential untrustedCredential)	Validate the specified credential against the specified set of trusted validation information.

Uses of SecurityException in org.opensaml.security.x509.impl

Methods in org.opensaml.security.x509.impl that throw SecurityException

Modifier and Type	Method	Description
protected boolean	PKIXX509CredentialTrustEngine.checkNames(Set<String> trustedNames, X509Credential untrustedCredential)	Evaluate the credential against the set of trusted names.
boolean	BasicX509CredentialNameEvaluator.evaluate(X509Credential credential, Set<String> trustedNames)	Evaluate the specified credential against the specified set of trusted names.
boolean	DummyX509CredentialNameEvaluator.evaluate(X509Credential credential, Set<String> trustedNames)	Evaluate the specified credential against the specified set of trusted names.
boolean	X509CredentialNameEvaluator.evaluate(X509Credential credential, Set<String> trustedNames)	Evaluate the specified credential against the specified set of trusted names.
boolean	CertPathPKIXTrustEvaluator.validate(PKIXValidationInformation validationInfo, X509Credential untrustedCredential)	Validate the specified credential against the specified set of trusted validation information.
protected boolean	PKIXX509CredentialTrustEngine.validate(X509Credential untrustedX509Credential, Set<String> trustedNames, Iterable<PKIXValidationInformation> validationInfoSet)	Perform PKIX validation on the untrusted credential, using PKIX validation information based on the supplied set of trusted credentials.
boolean	PKIXX509CredentialTrustEngine.validate(X509Credential untrustedCredential, CriteriaSet trustBasisCriteria)	Validates the token against trusted information obtained in an implementation-specific manner.

Uses of SecurityException in org.opensaml.soap.client

Methods in org.opensaml.soap.client that throw SecurityException

Modifier and Type	Method	Description
void	SOAPClient.send(String endpoint, InOutOperationContext context)	Sends a message and waits for a response.

Uses of SecurityException in org.opensaml.soap.client.http

Methods in org.opensaml.soap.client.http that throw SecurityException

Modifier and Type	Method	Description
void	AbstractPipelineHttpSOAPClient.send(String endpoint, InOutOperationContext operationContext)	Sends a message and waits for a response.
void	HttpSOAPClient.send(String endpoint, InOutOperationContext context)	Deprecated. Sends a message and waits for a response.

Uses of SecurityException in org.opensaml.xmlsec.crypto

Methods in org.opensaml.xmlsec.crypto that throw SecurityException

Modifier and Type	Method	Description
static byte[]	XMLSigningUtil.signWithURI(Credential signingCredential, String algorithmURI, byte[] input)	Compute the signature or MAC value over the supplied input.
static boolean	XMLSigningUtil.verifyWithURI(Credential verificationCredential, String algorithmURI, byte[] signature, byte[] input)	Verify the signature value computed over the supplied input against the supplied signature value.

Uses of SecurityException in org.opensaml.xmlsec.keyinfo

Methods in org.opensaml.xmlsec.keyinfo that throw SecurityException

Modifier and Type	Method	Description
static X509SKI	KeyInfoSupport.buildX509SKI(X509Certificate javaCert)	Build an X509SKI containing the subject key identifier extension value contained within a certificate.
KeyInfo	KeyInfoGenerator.generate(Credential credential)	Generate a new KeyInfo object based on keying material and other information within a credential.

Uses of SecurityException in org.opensaml.xmlsec.keyinfo.impl

Methods in org.opensaml.xmlsec.keyinfo.impl that throw SecurityException

Modifier and Type	Method	Description
protected KeyInfo	BasicKeyInfoGeneratorFactory.BasicKeyInfoGenerator.buildKeyInfo()	Build a new KeyInfo instance.
private KeyInfo	StaticKeyInfoGenerator.clone(KeyInfo origKeyInfo)	Clone a KeyInfo and return the new object.
KeyInfo	BasicKeyInfoGeneratorFactory.BasicKeyInfoGenerator.generate(Credential credential)	Generate a new KeyInfo object based on keying material and other information within a credential.
KeyInfo	KeyAgreementKeyInfoGeneratorFactory.KeyAgreementKeyInfoGenerator.generate(Credential credential)	Generate a new KeyInfo object based on keying material and other information within a credential.
KeyInfo	StaticKeyInfoGenerator.generate(Credential credential)	Generate a new KeyInfo object based on keying material and other information within a credential.
KeyInfo	X509KeyInfoGeneratorFactory.X509KeyInfoGenerator.generate(Credential credential)	Generate a new KeyInfo object based on keying material and other information within a credential.
private Marshaller	StaticKeyInfoGenerator.getMarshaller()	Get a KeyInfo marshaller.
private Unmarshaller	StaticKeyInfoGenerator.getUnmarshaller()	Get a KeyInfo unmarshaller.
Collection<Credential>	KeyInfoProvider.process(KeyInfoCredentialResolver resolver, XMLObject keyInfoChild, CriteriaSet criteriaSet, KeyInfoResolutionContext kiContext)	Process a specified KeyInfo child (XMLobject) and attempt to resolve a credential from it.
private void	KeyAgreementKeyInfoGeneratorFactory.KeyAgreementKeyInfoGenerator.processAgreementParameters(KeyInfo keyInfo, AgreementMethod agreementMethod, KeyAgreementCredential credential)	Process KeyAgreementCredential.getParameters().
protected void	X509KeyInfoGeneratorFactory.X509KeyInfoGenerator.processCertX509DataOptions(X509Data x509Data, X509Certificate cert)	Process the options related to generation of child elements of X509Data based on certificate data.
protected void	X509KeyInfoGeneratorFactory.X509KeyInfoGenerator.processCertX509Digest(X509Data x509Data, X509Certificate cert)	Process the options related to generation of the X509Digest child element of X509Data based on certificate data.
protected void	X509KeyInfoGeneratorFactory.X509KeyInfoGenerator.processCertX509SKI(X509Data x509Data, X509Certificate cert)	Process the options related to generation of the X509SKI child element of X509Data based on certificate data.
protected void	X509KeyInfoGeneratorFactory.X509KeyInfoGenerator.processCRLs(KeyInfo keyInfo, X509Data x509Data, X509Credential credential)	Process the value of X509Credential.getCRLs().
protected void	X509KeyInfoGeneratorFactory.X509KeyInfoGenerator.processEntityCertificate(KeyInfo keyInfo, X509Data x509Data, X509Credential credential)	Process the value of X509Credential.getEntityCertificate().
protected void	X509KeyInfoGeneratorFactory.X509KeyInfoGenerator.processEntityCertificateChain(KeyInfo keyInfo, X509Data x509Data, X509Credential credential)	Process the value of X509Credential.getEntityCertificateChain().
private void	KeyAgreementKeyInfoGeneratorFactory.KeyAgreementKeyInfoGenerator.processOriginatorKeyInfo(KeyInfo keyInfo, AgreementMethod agreementMethod, KeyAgreementCredential credential)	Process the KeyAgreementCredential.getOriginatorCredential().
protected void	BasicKeyInfoGeneratorFactory.BasicKeyInfoGenerator.processPublicKey(KeyInfo keyInfo, Credential credential)	Process the value of Credential.getPublicKey().
private void	KeyAgreementKeyInfoGeneratorFactory.KeyAgreementKeyInfoGenerator.processRecipientKeyInfo(KeyInfo keyInfo, AgreementMethod agreementMethod, KeyAgreementCredential credential)	Process KeyAgreementCredential.getRecipientCredential().

Uses of SecurityException in org.opensaml.xmlsec.keyinfo.impl.provider

Methods in org.opensaml.xmlsec.keyinfo.impl.provider that throw SecurityException

Modifier and Type	Method	Description
private List<X509Certificate>	InlineX509DataProvider.extractCertificates(X509Data x509Data)	Extract certificates from the X509Data.
private List<X509CRL>	InlineX509DataProvider.extractCRLs(X509Data x509Data)	Extract CRLs from the X509Data.
Collection<Credential>	AgreementMethodKeyInfoProvider.process(KeyInfoCredentialResolver resolver, XMLObject keyInfoChild, CriteriaSet criteriaSet, KeyInfoResolutionContext kiContext)	Process a specified KeyInfo child (XMLobject) and attempt to resolve a credential from it.
Collection<Credential>	DEREncodedKeyValueProvider.process(KeyInfoCredentialResolver resolver, XMLObject keyInfoChild, CriteriaSet criteriaSet, KeyInfoResolutionContext kiContext)	Process a specified KeyInfo child (XMLobject) and attempt to resolve a credential from it.
Collection<Credential>	DSAKeyValueProvider.process(KeyInfoCredentialResolver resolver, XMLObject keyInfoChild, CriteriaSet criteriaSet, KeyInfoResolutionContext kiContext)	Process a specified KeyInfo child (XMLobject) and attempt to resolve a credential from it.
Collection<Credential>	ECKeyValueProvider.process(KeyInfoCredentialResolver resolver, XMLObject keyInfoChild, CriteriaSet criteriaSet, KeyInfoResolutionContext kiContext)	Process a specified KeyInfo child (XMLobject) and attempt to resolve a credential from it.
Collection<Credential>	InlineX509DataProvider.process(KeyInfoCredentialResolver resolver, XMLObject keyInfoChild, CriteriaSet criteriaSet, KeyInfoResolutionContext kiContext)	Process a specified KeyInfo child (XMLobject) and attempt to resolve a credential from it.
Collection<Credential>	KeyInfoReferenceProvider.process(KeyInfoCredentialResolver resolver, XMLObject keyInfoChild, CriteriaSet criteriaSet, KeyInfoResolutionContext kiContext)	Process a specified KeyInfo child (XMLobject) and attempt to resolve a credential from it.
Collection<Credential>	RSAKeyValueProvider.process(KeyInfoCredentialResolver resolver, XMLObject keyInfoChild, CriteriaSet criteriaSet, KeyInfoResolutionContext kiContext)	Process a specified KeyInfo child (XMLobject) and attempt to resolve a credential from it.
private String	AgreementMethodKeyInfoProvider.resolveKeyAlgorithm(AgreementMethod agreementMethod)	Resolve the encryption algorithm URI to be used with the derived key.
private Credential	AgreementMethodKeyInfoProvider.resolveOriginatorCredential(AgreementMethod agreementMethod, KeyInfoCredentialResolver resolver)	Resolve the originator Credential from the OriginatorKeyInfo element.
private Credential	AgreementMethodKeyInfoProvider.resolveRecipientCredential(AgreementMethod agreementMethod, KeyInfoCredentialResolver resolver)	Resolve the recipient Credential from the RecipientKeyInfo element.

Uses of SecurityException in org.opensaml.xmlsec.signature.support

Methods in org.opensaml.xmlsec.signature.support that throw SecurityException

Modifier and Type	Method	Description
static void	SignatureSupport.prepareSignatureParams(Signature signature, SignatureSigningParameters parameters)	Prepare a Signature with necessary additional information prior to signing.
private static void	SignatureSupport.processContentReferences(Signature signature, SignatureSigningParameters parameters)	Prepare the content references.
private static void	SignatureSupport.processKeyInfo(Signature signature, SignatureSigningParameters parameters)	Prepare the content references.
static void	SignatureSupport.signObject(SignableXMLObject signable, SignatureSigningParameters parameters)	Signs a SignableXMLObject.
boolean	SignatureTrustEngine.validate(byte[] signature, byte[] content, String algorithmURI, CriteriaSet trustBasisCriteria, Credential candidateCredential)	Determines whether a raw signature over specified content is valid and signed by a trusted credential.

Uses of SecurityException in org.opensaml.xmlsec.signature.support.impl

Methods in org.opensaml.xmlsec.signature.support.impl that throw SecurityException

Modifier and Type	Method	Description
protected boolean	PKIXSignatureTrustEngine.checkNames(Set<String> trustedNames, X509Credential untrustedCredential)	Evaluate the credential against the set of trusted names.
protected void	BaseSignatureTrustEngine.checkParams(Signature signature, CriteriaSet trustBasisCriteria)	Check the signature and credential criteria for required values.
protected void	BaseSignatureTrustEngine.checkParamsRaw(byte[] signature, byte[] content, String algorithmURI, CriteriaSet trustBasisCriteria)	Check the signature and credential criteria for required values.
protected abstract boolean	BaseSignatureTrustEngine.doValidate(byte[] signature, byte[] content, String algorithmURI, CriteriaSet trustBasisCriteria, Credential candidateCredential)	Determines whether a raw signature over specified content is valid and signed by a trusted credential.
protected abstract boolean	BaseSignatureTrustEngine.doValidate(Signature signature, CriteriaSet trustBasisCriteria)	Validate the signature using the supplied trust criteria.
protected boolean	ExplicitKeySignatureTrustEngine.doValidate(byte[] signature, byte[] content, String algorithmURI, CriteriaSet trustBasisCriteria, Credential candidateCredential)	Determines whether a raw signature over specified content is valid and signed by a trusted credential.
protected boolean	ExplicitKeySignatureTrustEngine.doValidate(Signature signature, CriteriaSet trustBasisCriteria)	Validate the signature using the supplied trust criteria.
protected boolean	PKIXSignatureTrustEngine.doValidate(byte[] signature, byte[] content, String algorithmURI, CriteriaSet trustBasisCriteria, Credential candidateCredential)	Determines whether a raw signature over specified content is valid and signed by a trusted credential.
protected boolean	PKIXSignatureTrustEngine.doValidate(Signature signature, CriteriaSet trustBasisCriteria)	Validate the signature using the supplied trust criteria.
protected abstract boolean	BaseSignatureTrustEngine.evaluateTrust(Credential untrustedCredential, TrustBasisType trustBasis)	Evaluate the untrusted KeyInfo-derived credential with respect to the specified trusted information.
protected boolean	ExplicitKeySignatureTrustEngine.evaluateTrust(Credential untrustedCredential, Iterable<Credential> trustedCredentials)	Evaluate the untrusted KeyInfo-derived credential with respect to the specified trusted information.
protected boolean	PKIXSignatureTrustEngine.evaluateTrust(Credential untrustedCredential, Pair<Set<String>,Iterable<PKIXValidationInformation>> validationPair)	Evaluate the untrusted KeyInfo-derived credential with respect to the specified trusted information.
protected Pair<Set<String>,Iterable<PKIXValidationInformation>>	PKIXSignatureTrustEngine.resolveValidationInfo(CriteriaSet trustBasisCriteria)	Resolve and return a set of trusted validation information.
final boolean	BaseSignatureTrustEngine.validate(byte[] signature, byte[] content, String algorithmURI, CriteriaSet trustBasisCriteria, Credential candidateCredential)	Determines whether a raw signature over specified content is valid and signed by a trusted credential.
final boolean	BaseSignatureTrustEngine.validate(Signature signature, CriteriaSet trustBasisCriteria)	Validates the token against trusted information obtained in an implementation-specific manner.
protected boolean	BaseSignatureTrustEngine.validate(Signature signature, TrustBasisType trustBasis)	Attempt to establish trust by resolving signature verification credentials from the Signature's KeyInfo.
boolean	ChainingSignatureTrustEngine.validate(byte[] signature, byte[] content, String algorithmURI, CriteriaSet trustBasisCriteria, Credential candidateCredential)	Determines whether a raw signature over specified content is valid and signed by a trusted credential.
boolean	ChainingSignatureTrustEngine.validate(Signature token, CriteriaSet trustBasisCriteria)	Validates the token against trusted information obtained in an implementation-specific manner.