Package org.opensaml.security.trust.impl
Class ExplicitKeyTrustEngine
java.lang.Object
org.opensaml.security.trust.impl.ExplicitKeyTrustEngine
- All Implemented Interfaces:
TrustedCredentialTrustEngine<Credential>,TrustEngine<Credential>
public class ExplicitKeyTrustEngine
extends Object
implements TrustedCredentialTrustEngine<Credential>
Trust engine that evaluates a credential's key against key(s) expressed within a set of trusted credentials obtained
from a trusted credential resolver.
The credential being tested is valid if its public key or secret key matches the public key, or secret key
respectively, contained within any of the trusted credentials produced by the given credential resolver.
-
Field Summary
FieldsModifier and TypeFieldDescriptionprivate final CredentialResolverResolver used for resolving trusted credentials.private final org.slf4j.LoggerClass logger.private final ExplicitKeyTrustEvaluatorTrust evaluator. -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionGets the credential resolver used to recover trusted credentials that may be used to validate tokens.booleanvalidate(Credential untrustedCredential, CriteriaSet trustBasisCriteria) Validates the token against trusted information obtained in an implementation-specific manner.
-
Field Details
-
log
@Nonnull private final org.slf4j.Logger logClass logger. -
credentialResolver
Resolver used for resolving trusted credentials. -
trustEvaluator
Trust evaluator.
-
-
Constructor Details
-
ExplicitKeyTrustEngine
Constructor.- Parameters:
resolver- credential resolver which is used to resolve trusted credentials
-
-
Method Details
-
getCredentialResolver
Gets the credential resolver used to recover trusted credentials that may be used to validate tokens.- Specified by:
getCredentialResolverin interfaceTrustedCredentialTrustEngine<Credential>- Returns:
- credential resolver used to recover trusted credentials that may be used to validate tokens
-