Spring Security SAML

org.springframework.security.saml.trust
Class X509TrustManager

java.lang.Object
  extended by org.springframework.security.saml.trust.X509TrustManager
All Implemented Interfaces:
TrustManager, X509TrustManager

public class X509TrustManager
extends Object
implements X509TrustManager

Trust engine for verification of X509 certificates. Uses the supplied trust engine for verification. Trusted credentials are obtained by evaluating the given CredentialSet against the trustEngine. Based on the configuration of the engine either simple certificate equality check is performed or whole PKIX chain can be evaluated.


Field Summary
protected  org.opensaml.xml.security.CriteriaSet criteriaSet
           
protected  org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential> trustEngine
           
 
Constructor Summary
X509TrustManager(org.opensaml.xml.security.CriteriaSet criteriaSet, org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential> trustEngine)
          Creates an X509 trust engine which delegates trust verification to the supplied trust engine.
 
Method Summary
 void checkClientTrusted(X509Certificate[] x509Certificates, String s)
           
 void checkServerTrusted(X509Certificate[] x509Certificates, String s)
           
 X509Certificate[] getAcceptedIssuers()
           
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

criteriaSet

protected org.opensaml.xml.security.CriteriaSet criteriaSet

trustEngine

protected org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential> trustEngine
Constructor Detail

X509TrustManager

public X509TrustManager(org.opensaml.xml.security.CriteriaSet criteriaSet,
                        org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential> trustEngine)
Creates an X509 trust engine which delegates trust verification to the supplied trust engine. Credentials usable for trust checks are determined by the inserted criteriaSet.

Parameters:
criteriaSet - criteria set to determine trusted credentials within the trust engine
trustEngine - trust engine
Method Detail

checkClientTrusted

public void checkClientTrusted(X509Certificate[] x509Certificates,
                               String s)
                        throws CertificateException
Specified by:
checkClientTrusted in interface X509TrustManager
Throws:
CertificateException

checkServerTrusted

public void checkServerTrusted(X509Certificate[] x509Certificates,
                               String s)
                        throws CertificateException
Specified by:
checkServerTrusted in interface X509TrustManager
Throws:
CertificateException

getAcceptedIssuers

public X509Certificate[] getAcceptedIssuers()
Specified by:
getAcceptedIssuers in interface X509TrustManager

Spring Security SAML