Package | Description |
---|---|
org.opensaml.security.x509 |
X.509-based credential and trust classes.
|
org.opensaml.security.x509.impl |
TrustEngine implementation classes related to PKIX. |
org.opensaml.xmlsec.signature.support.impl |
Implementations of signature evaluation functions.
|
Modifier and Type | Method and Description |
---|---|
boolean |
PKIXTrustEvaluator.validate(PKIXValidationInformation validationInfo,
X509Credential untrustedCredential)
Validate the specified credential against the specified set of trusted validation information.
|
Modifier and Type | Class and Description |
---|---|
class |
BasicPKIXValidationInformation
Basic implementation of
PKIXValidationInformation . |
Modifier and Type | Method and Description |
---|---|
PKIXValidationInformation |
StaticPKIXValidationInformationResolver.resolveSingle(net.shibboleth.utilities.java.support.resolver.CriteriaSet criteria) |
Modifier and Type | Method and Description |
---|---|
Iterable<PKIXValidationInformation> |
StaticPKIXValidationInformationResolver.resolve(net.shibboleth.utilities.java.support.resolver.CriteriaSet criteria) |
Modifier and Type | Method and Description |
---|---|
protected CertStore |
CertPathPKIXTrustEvaluator.buildCertStore(PKIXValidationInformation validationInfo,
X509Credential untrustedCredential)
Creates the certificate store that will be used during validation.
|
protected Integer |
CertPathPKIXTrustEvaluator.getEffectiveVerificationDepth(PKIXValidationInformation validationInfo)
Get the effective maximum path depth to use when constructing PKIX cert path builder parameters.
|
protected PKIXBuilderParameters |
CertPathPKIXTrustEvaluator.getPKIXBuilderParameters(PKIXValidationInformation validationInfo,
X509Credential untrustedCredential)
Creates the set of PKIX builder parameters to use when building the cert path builder.
|
protected Set<TrustAnchor> |
CertPathPKIXTrustEvaluator.getTrustAnchors(PKIXValidationInformation validationInfo)
Creates the collection of trust anchors to use during validation.
|
boolean |
CertPathPKIXTrustEvaluator.validate(PKIXValidationInformation validationInfo,
X509Credential untrustedCredential)
Validate the specified credential against the specified set of trusted validation information.
|
Modifier and Type | Method and Description |
---|---|
protected boolean |
PKIXX509CredentialTrustEngine.validate(X509Credential untrustedX509Credential,
Set<String> trustedNames,
Iterable<PKIXValidationInformation> validationInfoSet)
Perform PKIX validation on the untrusted credential, using PKIX validation information based on the supplied set
of trusted credentials.
|
Constructor and Description |
---|
StaticPKIXValidationInformationResolver(List<PKIXValidationInformation> info,
Set<String> names)
Constructor.
|
StaticPKIXValidationInformationResolver(List<PKIXValidationInformation> info,
Set<String> names,
boolean supportDynamicNames)
Constructor.
|
Modifier and Type | Method and Description |
---|---|
protected net.shibboleth.utilities.java.support.collection.Pair<Set<String>,Iterable<PKIXValidationInformation>> |
PKIXSignatureTrustEngine.resolveValidationInfo(net.shibboleth.utilities.java.support.resolver.CriteriaSet trustBasisCriteria)
Resolve and return a set of trusted validation information.
|
Modifier and Type | Method and Description |
---|---|
protected boolean |
PKIXSignatureTrustEngine.evaluateTrust(Credential untrustedCredential,
net.shibboleth.utilities.java.support.collection.Pair<Set<String>,Iterable<PKIXValidationInformation>> validationPair)
Evaluate the untrusted KeyInfo-derived credential with respect to the specified trusted information.
|
Copyright © 2019. All rights reserved.