Package org.apache.cxf.rs.security.saml.sso

Class SAMLProtocolResponseValidator

java.lang.Object

org.apache.cxf.rs.security.saml.sso.SAMLProtocolResponseValidator

public class SAMLProtocolResponseValidator
extends Object

Validate a SAML (1.1 or 2.0) Protocol Response. It validates the Response against the specs, the signature of the Response (if it exists), and any internal Assertion stored in the Response - including any signature. It validates the status code of the Response as well.

Field Summary

Fields

Modifier and Type	Field	Description
static final String	SAML1_STATUSCODE_SUCCESS
static final String	SAML2_STATUSCODE_SUCCESS

Constructor Summary

Constructors

Constructor	Description
SAMLProtocolResponseValidator()

Method Summary

Modifier and Type	Method	Description
protected org.apache.wss4j.common.saml.SAMLKeyInfo	createKeyInfoFromDefaultAlias(org.apache.wss4j.common.crypto.Crypto sigCrypto)
int	getFutureTTL()
void	setFutureTTL(int futureTTL)
void	setKeyInfoMustBeAvailable(boolean keyInfoMustBeAvailable)
void	validateSamlResponse(org.opensaml.saml.saml1.core.Response samlResponse, org.apache.wss4j.common.crypto.Crypto sigCrypto, CallbackHandler callbackHandler)	Validate a SAML 1.1 Protocol Response
void	validateSamlResponse(org.opensaml.saml.saml2.core.Response samlResponse, org.apache.wss4j.common.crypto.Crypto sigCrypto, CallbackHandler callbackHandler)	Validate a SAML 2 Protocol Response

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

SAML2_STATUSCODE_SUCCESS

public static final String SAML2_STATUSCODE_SUCCESS

See Also:

• Constant Field Values

SAML1_STATUSCODE_SUCCESS

public static final String SAML1_STATUSCODE_SUCCESS

See Also:

• Constant Field Values

Constructor Details

SAMLProtocolResponseValidator

public SAMLProtocolResponseValidator()

Method Details

validateSamlResponse

public void validateSamlResponse(org.opensaml.saml.saml2.core.Response samlResponse,
 org.apache.wss4j.common.crypto.Crypto sigCrypto,
 CallbackHandler callbackHandler)
                          throws org.apache.wss4j.common.ext.WSSecurityException

Validate a SAML 2 Protocol Response

Parameters:

samlResponse -

sigCrypto -

callbackHandler -

Throws:

org.apache.wss4j.common.ext.WSSecurityException

validateSamlResponse

public void validateSamlResponse(org.opensaml.saml.saml1.core.Response samlResponse,
 org.apache.wss4j.common.crypto.Crypto sigCrypto,
 CallbackHandler callbackHandler)
                          throws org.apache.wss4j.common.ext.WSSecurityException

Validate a SAML 1.1 Protocol Response

Parameters:

samlResponse -

sigCrypto -

callbackHandler -

Throws:

org.apache.wss4j.common.ext.WSSecurityException

createKeyInfoFromDefaultAlias

protected org.apache.wss4j.common.saml.SAMLKeyInfo createKeyInfoFromDefaultAlias(org.apache.wss4j.common.crypto.Crypto sigCrypto)
                                                                          throws org.apache.wss4j.common.ext.WSSecurityException

Throws:

org.apache.wss4j.common.ext.WSSecurityException

setKeyInfoMustBeAvailable

public void setKeyInfoMustBeAvailable(boolean keyInfoMustBeAvailable)

getFutureTTL

public int getFutureTTL()

setFutureTTL

public void setFutureTTL(int futureTTL)