public abstract class AbstractBindingPolicyValidator extends Object implements SecurityPolicyValidator
Constructor and Description |
---|
AbstractBindingPolicyValidator() |
Modifier and Type | Method and Description |
---|---|
protected void |
assertDerivedKeys(org.apache.wss4j.policy.model.AbstractToken token,
AssertionInfoMap aim) |
protected boolean |
checkDerivedKeys(org.apache.wss4j.policy.model.AbstractTokenWrapper tokenWrapper,
boolean hasDerivedKeys,
List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> signedResults,
List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> encryptedResults)
Check the derived key requirement.
|
protected boolean |
checkProperties(org.apache.wss4j.policy.model.AbstractSymmetricAsymmetricBinding binding,
AssertionInfo ai,
AssertionInfoMap aim,
org.apache.wss4j.dom.handler.WSHandlerResult results,
List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> signedResults,
Message message)
Check various properties set in the policy of the binding
|
protected boolean |
checkProtectionOrder(org.apache.wss4j.policy.model.AbstractSymmetricAsymmetricBinding binding,
AssertionInfoMap aim,
AssertionInfo ai,
List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> results)
Check the Protection Order of the binding
|
protected boolean |
isSignatureEncrypted(List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> results)
Check whether the primary Signature (and all SignatureConfirmation) elements were encrypted
|
protected boolean |
isTokenProtected(List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> results,
List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> signedResults)
Check whether the token protection policy is followed.
|
protected boolean |
validateEntireHeaderAndBodySignatures(List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> signedResults)
Validate the entire header and body signature property.
|
protected boolean |
validateTimestamp(boolean includeTimestamp,
boolean transportBinding,
org.apache.wss4j.dom.handler.WSHandlerResult results,
List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> signedResults,
Message message)
Validate a Timestamp
|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
canValidatePolicy, validatePolicies
protected boolean validateTimestamp(boolean includeTimestamp, boolean transportBinding, org.apache.wss4j.dom.handler.WSHandlerResult results, List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> signedResults, Message message)
includeTimestamp
- whether a Timestamp must be included or nottransportBinding
- whether the Transport binding is in use or notsignedResults
- the signed results listmessage
- the Message objectprotected boolean validateEntireHeaderAndBodySignatures(List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> signedResults)
protected boolean checkProperties(org.apache.wss4j.policy.model.AbstractSymmetricAsymmetricBinding binding, AssertionInfo ai, AssertionInfoMap aim, org.apache.wss4j.dom.handler.WSHandlerResult results, List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> signedResults, Message message)
protected boolean checkProtectionOrder(org.apache.wss4j.policy.model.AbstractSymmetricAsymmetricBinding binding, AssertionInfoMap aim, AssertionInfo ai, List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> results)
protected boolean checkDerivedKeys(org.apache.wss4j.policy.model.AbstractTokenWrapper tokenWrapper, boolean hasDerivedKeys, List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> signedResults, List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> encryptedResults)
protected boolean isTokenProtected(List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> results, List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> signedResults)
protected boolean isSignatureEncrypted(List<org.apache.wss4j.dom.engine.WSSecurityEngineResult> results)
protected void assertDerivedKeys(org.apache.wss4j.policy.model.AbstractToken token, AssertionInfoMap aim)
Apache CXF