|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.apache.ws.security.validate.SignatureTrustValidator
public class SignatureTrustValidator
This class verifies trust in a credential used to verify a signature, which is extracted from the Credential passed to the validate method.
Constructor Summary | |
---|---|
SignatureTrustValidator()
|
Method Summary | |
---|---|
protected Crypto |
getCrypto(RequestData data)
|
protected boolean |
isCertificateInKeyStore(Crypto crypto,
X509Certificate cert)
Check to see if the certificate argument is in the keystore |
Credential |
validate(Credential credential,
RequestData data)
Validate the credential argument. |
protected void |
validateCertificates(X509Certificate[] certificates)
Validate the certificates by checking the validity of each cert |
protected boolean |
validatePublicKey(PublicKey publicKey,
Crypto crypto)
Validate a public key |
protected boolean |
verifyTrustInCert(X509Certificate cert,
Crypto crypto)
Deprecated. |
protected boolean |
verifyTrustInCert(X509Certificate cert,
Crypto crypto,
boolean enableRevocation)
Evaluate whether a given certificate should be trusted. |
protected boolean |
verifyTrustInCerts(X509Certificate[] certificates,
Crypto crypto)
Deprecated. |
protected boolean |
verifyTrustInCerts(X509Certificate[] certificates,
Crypto crypto,
boolean enableRevocation)
Evaluate whether the given certificate chain should be trusted. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public SignatureTrustValidator()
Method Detail |
---|
public Credential validate(Credential credential, RequestData data) throws WSSecurityException
validate
in interface Validator
credential
- the Credential to be validateddata
- the RequestData associated with the request
WSSecurityException
- on a failed validationprotected Crypto getCrypto(RequestData data)
protected void validateCertificates(X509Certificate[] certificates) throws WSSecurityException
WSSecurityException
@Deprecated protected boolean verifyTrustInCert(X509Certificate cert, Crypto crypto) throws WSSecurityException
cert
- the certificate that should be validated against the keystorecrypto
- A crypto instance to use for trust validation
WSSecurityException
protected boolean verifyTrustInCert(X509Certificate cert, Crypto crypto, boolean enableRevocation) throws WSSecurityException
cert
- the certificate that should be validated against the keystorecrypto
- A crypto instance to use for trust validationenableRevocation
- Whether revocation is enabled or not
WSSecurityException
protected boolean isCertificateInKeyStore(Crypto crypto, X509Certificate cert) throws WSSecurityException
crypto
- A Crypto instance to use for trust validationcert
- The certificate to check
WSSecurityException
@Deprecated protected boolean verifyTrustInCerts(X509Certificate[] certificates, Crypto crypto) throws WSSecurityException
certificates
- the certificate chain that should be validated against the keystorecrypto
- A Crypto instance to use for trust validation
WSSecurityException
protected boolean verifyTrustInCerts(X509Certificate[] certificates, Crypto crypto, boolean enableRevocation) throws WSSecurityException
certificates
- the certificate chain that should be validated against the keystorecrypto
- A Crypto instanceenableRevocation
- Whether revocation is enabled or not
WSSecurityException
protected boolean validatePublicKey(PublicKey publicKey, Crypto crypto) throws WSSecurityException
WSSecurityException
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |