X509TrustManager (Spring Security SAML 1.0.0.RC2 API)

Overview

Package

Class

Tree

Deprecated

Index

Help

Spring Security SAML

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

org.springframework.security.saml.trust
Class X509TrustManager

java.lang.Object
  org.springframework.security.saml.trust.X509TrustManager

All Implemented Interfaces:: TrustManager, X509TrustManager

public class X509TrustManager
extends Object
implements X509TrustManager
extends Object
implements X509TrustManager

Trust engine for verification of X509 certificates. Uses the supplied trust engine for verification. Trusted credentials are obtained by evaluating the given CredentialSet against the trustEngine. Based on the configuration of the engine either simple certificate equality check is performed or whole PKIX chain can be evaluated.

Field Summary
`protected org.opensaml.xml.security.CriteriaSet`	`criteriaSet`
`protected org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential>`	`trustEngine`

Constructor Summary
`X509TrustManager(org.opensaml.xml.security.CriteriaSet criteriaSet, org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential> trustEngine)` Creates an X509 trust engine which delegates trust verification to the supplied trust engine.

Method Summary
`void`	`checkClientTrusted(X509Certificate[] x509Certificates, String s)`
`void`	`checkServerTrusted(X509Certificate[] x509Certificates, String s)`
`X509Certificate[]`	`getAcceptedIssuers()`

Methods inherited from class java.lang.Object
`clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait`

Field Detail

criteriaSet

protected org.opensaml.xml.security.CriteriaSet criteriaSet

trustEngine

protected org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential> trustEngine

Constructor Detail

X509TrustManager

public X509TrustManager(org.opensaml.xml.security.CriteriaSet criteriaSet,
                        org.opensaml.xml.security.trust.TrustEngine<org.opensaml.xml.security.x509.X509Credential> trustEngine)

Creates an X509 trust engine which delegates trust verification to the supplied trust engine. Credentials usable for trust checks are determined by the inserted criteriaSet.

Parameters:: criteriaSet - criteria set to determine trusted credentials within the trust engine; trustEngine - trust engine

Method Detail

checkClientTrusted

public void checkClientTrusted(X509Certificate[] x509Certificates,
                               String s)
                        throws CertificateException

Specified by:: checkClientTrusted in interface X509TrustManager

Throws:: CertificateException

checkServerTrusted

public void checkServerTrusted(X509Certificate[] x509Certificates,
                               String s)
                        throws CertificateException

Specified by:: checkServerTrusted in interface X509TrustManager

Throws:: CertificateException

getAcceptedIssuers

public X509Certificate[] getAcceptedIssuers()

Specified by:: getAcceptedIssuers in interface X509TrustManager