Constructor Detail

• AbstractSamlInHandler

  public AbstractSamlInHandler()

Method Detail

• setValidator

  public void setValidator(org.apache.ws.security.validate.Validator validator)

• setSecurityContextProvider

  public void setSecurityContextProvider(SecurityContextProvider p)

• validateToken

  protected void validateToken(org.apache.cxf.message.Message message,
                   InputStream tokenStream)

• validateToken

  protected void validateToken(org.apache.cxf.message.Message message,
                   Element tokenElement)

• checkSubjectConfirmationData

  protected void checkSubjectConfirmationData(org.apache.cxf.message.Message message,
                                  org.apache.ws.security.saml.ext.AssertionWrapper assertion)

• setSecurityContext

  protected void setSecurityContext(org.apache.cxf.message.Message message,
                        org.apache.ws.security.saml.ext.AssertionWrapper wrapper)

• throwFault

  protected void throwFault(String error,
                Exception ex)

• checkSenderVouches

  protected boolean checkSenderVouches(org.apache.cxf.message.Message message,
                           org.apache.ws.security.saml.ext.AssertionWrapper assertionWrapper,
                           Certificate[] tlsCerts)

  Check the sender-vouches requirements against the received assertion. The SAML Assertion and the request body must be signed by the same signature.

• checkHolderOfKey

  protected boolean checkHolderOfKey(org.apache.cxf.message.Message message,
                         org.apache.ws.security.saml.ext.AssertionWrapper assertionWrapper,
                         Certificate[] tlsCerts)

• checkBearer

  protected boolean checkBearer(org.apache.ws.security.saml.ext.AssertionWrapper assertionWrapper,
                    Certificate[] tlsCerts)