public class PKIXSignatureTrustEngineTest extends XMLObjectBaseTestCase
PKIXSignatureTrustEngine implementation.| Modifier and Type | Field and Description |
|---|---|
private CriteriaSet |
criteriaSet |
private static String |
DATA_PATH |
private boolean |
emitKeyInfo |
private boolean |
emitKeyValueOnly |
private static Set<X509Certificate> |
EMPTY_ANCHORS |
private static Set<X509CRL> |
EMPTY_CRLS |
private org.opensaml.xmlsec.signature.support.impl.PKIXSignatureTrustEngine |
engine |
private static Integer |
MAX_DEPTH |
private String |
rawAlgorithmURI |
private org.opensaml.security.credential.Credential |
rawCandidateCred |
private String |
rawData |
private byte[] |
rawSignature |
private byte[] |
rawSignedContent |
private org.opensaml.xmlsec.signature.Signature |
signature |
private String |
subjectCN |
private boolean |
tamperDocumentPostSigning |
builderFactory, marshallerFactory, parserPool, simpleXMLObjectQName, unmarshallerFactory| Constructor and Description |
|---|
PKIXSignatureTrustEngineTest() |
assertXMLEquals, assertXMLEquals, buildXMLObject, fetchDuration, getBuilder, getMarshaller, getMarshaller, getUnmarshaller, getUnmarshaller, getUnmarshaller, initXMLObjectSupport, parseXMLDocument, printXML, printXML, unmarshallElement, unmarshallElementinitOpenSAMLprivate static final String DATA_PATH
private static final Set<X509Certificate> EMPTY_ANCHORS
private static final Integer MAX_DEPTH
private org.opensaml.xmlsec.signature.support.impl.PKIXSignatureTrustEngine engine
private org.opensaml.xmlsec.signature.Signature signature
private CriteriaSet criteriaSet
private String subjectCN
private boolean tamperDocumentPostSigning
private boolean emitKeyInfo
private boolean emitKeyValueOnly
private String rawData
private byte[] rawSignedContent
private String rawAlgorithmURI
private byte[] rawSignature
private org.opensaml.security.credential.Credential rawCandidateCred
public void testGoodPathInAnchors()
public void testGoodPathInCred()
public void testGoodPathNoTrustedNames()
public void testGoodPathBadTrustedName()
public void testCertRevoked()
public void testCertExpired()
public void testMissingAnchor()
public void testNoAnchors()
public void testTamperedData()
throws SecurityException
SecurityExceptionpublic void testNoCandidateCred()
throws SecurityException
SecurityExceptionpublic void testWrongCredType()
throws SecurityException
SecurityExceptionpublic void testWhitelistedAlgorithms()
public void testBlacklistedSignatureAlgorithm()
public void testBlacklistedDigestAlgorithm()
public void testRawGoodPathInAnchors()
throws SecurityException
SecurityExceptionpublic void testRawGoodPathInCred()
throws SecurityException
SecurityExceptionpublic void testRawGoodPathNoTrustedNames()
throws SecurityException
SecurityExceptionpublic void testRawGoodPathBadTrustedName()
throws SecurityException
SecurityExceptionpublic void testRawCertRevoked()
throws SecurityException
SecurityExceptionpublic void testRawCertExpired()
throws SecurityException
SecurityExceptionpublic void testRawCertMissingAnchor()
throws SecurityException
SecurityExceptionpublic void testRawCertNoAnchors()
throws SecurityException
SecurityExceptionpublic void testRawTamperedData()
throws SecurityException
SecurityExceptionpublic void testRawNoCandidateCred()
throws SecurityException
SecurityExceptionpublic void testRawWrongCredType()
throws SecurityException
SecurityExceptionpublic void testRawWhitelistedAlgorithm()
throws SecurityException
SecurityExceptionpublic void testRawBlacklistedAlgorithm()
throws SecurityException
SecurityExceptionprivate void testValidateSuccess(String message)
private void testValidateFailure(String message)
private org.opensaml.xmlsec.signature.Signature getSignature(String entityCertFileName, String entityKeyFileName, String... chainMembers)
private BasicX509Credential getCredential(String entityCertFileName, String entityKeyFileName, String... chainMembers)
private org.opensaml.xmlsec.signature.support.impl.PKIXSignatureTrustEngine getEngine(Collection<X509Certificate> certs, Collection<X509CRL> crls, Integer depth, String... trustedNames)
private PKIXValidationInformation getPKIXInfoSet(Collection<X509Certificate> certs, Collection<X509CRL> crls, Integer depth)
private Collection<X509Certificate> getCertificates(String... certNames)
private PrivateKey getPrivateKey(String fileName)
private X509Certificate getCertificate(String fileName)
private Collection<X509CRL> getCRLS(String... crlNames)
private InputStream getInputStream(String fileName)
private org.opensaml.xmlsec.signature.SignableXMLObject buildSignedObject(X509Credential signingX509Cred) throws org.opensaml.xmlsec.signature.support.SignatureException
org.opensaml.xmlsec.signature.support.SignatureExceptionprivate void testRawValidateSuccess(String message)
private void testRawValidateFailure(String message)
Copyright © 1999–2019 Shibboleth Consortium. All rights reserved.