Package org.opensaml.security.config
Class BasicSecurityConfiguration
java.lang.Object
org.opensaml.security.config.BasicSecurityConfiguration
- All Implemented Interfaces:
Component,IdentifiableComponent,IdentifiedComponent,SecurityConfiguration
- Direct Known Subclasses:
BasicXMLSecurityConfiguration
public class BasicSecurityConfiguration
extends Object
implements SecurityConfiguration, IdentifiableComponent
Basic implementation of
SecurityConfiguration interface.- Since:
- 5.0.0
-
Field Summary
FieldsModifier and TypeFieldDescriptionprivate ClientTLSValidationConfigurationConfiguration used when validating client TLS X509Credentials.private final DurationAcceptable clock skew.private HttpClientSecurityConfigurationConfiguration used when executing HttpClient requests.private StringIdentifier.private final IdentifierGenerationStrategyGenerator used to generate various secure IDs (e.g., message identifiers). -
Constructor Summary
ConstructorsConstructorDescriptionConstructor.BasicSecurityConfiguration(Duration skew, IdentifierGenerationStrategy generator) Constructor. -
Method Summary
Modifier and TypeMethodDescriptionGet the configuration used when validating client TLS X509Credentials.Get the acceptable clock skew.Get the configuration used when executing HttpClient requests.getId()Get the generator used to generate secure identifiers.Set the configuration used when validating client TLS X509Credentials.Set the configuration used when executing HttpClient requests.void
-
Field Details
-
id
Identifier. -
clockSkew
Acceptable clock skew. -
idGenerator
Generator used to generate various secure IDs (e.g., message identifiers). -
clientTLSConfig
Configuration used when validating client TLS X509Credentials. -
httpClientConfig
Configuration used when executing HttpClient requests.
-
-
Constructor Details
-
BasicSecurityConfiguration
public BasicSecurityConfiguration()Constructor. Initializes the clock skew to 5 minutes and the identifier generator toIdentifierGenerationStrategy.ProviderType.SECURE.
-
-
Method Details
-
getId
- Specified by:
getIdin interfaceIdentifiedComponent
-
setId
- Specified by:
setIdin interfaceIdentifiableComponent
-
getClockSkew
Get the acceptable clock skew.- Specified by:
getClockSkewin interfaceSecurityConfiguration- Returns:
- acceptable clock skew
-
getIdGenerator
Get the generator used to generate secure identifiers.- Specified by:
getIdGeneratorin interfaceSecurityConfiguration- Returns:
- generator used to generate secure identifiers
-
getClientTLSValidationConfiguration
Get the configuration used when validating client TLS X509Credentials.- Specified by:
getClientTLSValidationConfigurationin interfaceSecurityConfiguration- Returns:
- configuration used when validating client TLS X509Credentials, or null
-
setClientTLSValidationConfiguration
@Nonnull public BasicSecurityConfiguration setClientTLSValidationConfiguration(@Nullable ClientTLSValidationConfiguration config) Set the configuration used when validating client TLS X509Credentials.- Parameters:
config- configuration used when validating client TLS X509Credentials, or null- Returns:
- this object
-
getHttpClientSecurityConfiguration
Get the configuration used when executing HttpClient requests.- Specified by:
getHttpClientSecurityConfigurationin interfaceSecurityConfiguration- Returns:
- configuration used when executing HttpClient requests, or null
-
setHttpClientSecurityConfiguration
@Nonnull public BasicSecurityConfiguration setHttpClientSecurityConfiguration(@Nullable HttpClientSecurityConfiguration config) Set the configuration used when executing HttpClient requests.- Parameters:
config- configuration used when executing HttpClient requests, or null- Returns:
- this object
-