Package org.opensaml.security.x509

Interface PKIXValidationInformationResolver

  • All Superinterfaces:
    net.shibboleth.utilities.java.support.resolver.Resolver<PKIXValidationInformation,​net.shibboleth.utilities.java.support.resolver.CriteriaSet>
    public interface PKIXValidationInformationResolver
extends net.shibboleth.utilities.java.support.resolver.Resolver<PKIXValidationInformation,​net.shibboleth.utilities.java.support.resolver.CriteriaSet>
    A resolver which uses Criterion to resolve PKIXValidationInformation, which will typically be used by PKIX-based trust engines. Implementations must also implement resolveTrustedNames(CriteriaSet), which will return a set of trusted names associated with the entity implied by the criteria. These trusted names may be used to validate (in an application-specific manner) that an entity is trusted to wield a particular certificate.

    • Method Summary

      All Methods Instance Methods Abstract Methods 
      Modifier and Type Method Description
      Set<String> resolveTrustedNames​(net.shibboleth.utilities.java.support.resolver.CriteriaSet criteriaSet)
      Resolve a set of trusted names associated with the entity indicated by the criteria.
      boolean supportsTrustedNameResolution()
      Check whether resolution of trusted names is supported.

      • Methods inherited from interface net.shibboleth.utilities.java.support.resolver.Resolver

        resolve, resolveSingle

    • Method Detail

      • resolveTrustedNames

        @Nonnull
Set<String> resolveTrustedNames​(@Nullable
                                net.shibboleth.utilities.java.support.resolver.CriteriaSet criteriaSet)
                         throws net.shibboleth.utilities.java.support.resolver.ResolverException
        Resolve a set of trusted names associated with the entity indicated by the criteria. This method is optional to implement.
        Parameters:
        criteriaSet - set of criteria used to determine or resolve the trusted names
        Returns:
        the set of certificate names trusted for an entity
        Throws:
        net.shibboleth.utilities.java.support.resolver.ResolverException - thrown if there is an error resolving the trusted names
        UnsupportedOperationException - thrown if this optional method is not supported by the implementation

      • supportsTrustedNameResolution

        boolean supportsTrustedNameResolution()
        Check whether resolution of trusted names is supported.
        Returns:
        true if the implementation supports resolution of trusted names, otherwise false