|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.apache.rampart.PolicyBasedResultsValidator
public class PolicyBasedResultsValidator
Constructor Summary | |
---|---|
PolicyBasedResultsValidator()
|
Method Summary | |
---|---|
static org.apache.ws.security.WSSecurityEngineResult[] |
fetchActionResults(java.util.List<org.apache.ws.security.WSSecurityEngineResult> wsSecurityEngineResults,
int action)
|
protected java.util.ArrayList |
getEncryptedReferences(java.util.List<org.apache.ws.security.WSSecurityEngineResult> results)
|
protected java.util.List<org.apache.ws.security.WSSecurityEngineResult> |
getResults(java.util.List<org.apache.ws.security.WSSecurityEngineResult> results,
int action)
|
protected java.util.List<java.lang.Integer> |
getSigEncrActions(java.util.List<org.apache.ws.security.WSSecurityEngineResult> results)
|
protected void |
handleSupportingTokens(java.util.List<org.apache.ws.security.WSSecurityEngineResult> results,
org.apache.ws.secpolicy.model.SupportingToken suppTok)
|
protected boolean |
isCertificateInKeyStore(org.apache.ws.security.components.crypto.Crypto crypto,
java.security.cert.X509Certificate cert)
Check to see if the certificate argument is in the keystore TODO Directly copied from WSS4J (SignatureTrustValidator) - Optimize later |
protected boolean |
isCertificateTrusted(java.security.cert.X509Certificate cert,
org.apache.ws.security.components.crypto.Crypto crypto)
TODO - This is directly copied from WSS4J (SignatureTrustValidator). |
protected boolean |
isSignatureRequired(RampartMessageData rmd)
|
protected boolean |
isUsernameTokenPresent(org.apache.ws.secpolicy.model.SupportingToken suppTok)
|
protected boolean |
isUsernameTokenPresent(ValidatorData data)
|
void |
validate(ValidatorData data,
java.util.List<org.apache.ws.security.WSSecurityEngineResult> results)
Validate policy based results. |
void |
validate(ValidatorData data,
java.util.Vector results)
Validate policy based results. |
protected void |
validateEncrSig(ValidatorData data,
java.util.List<org.apache.ws.security.WSEncryptionPart> encryptedParts,
java.util.List<org.apache.ws.security.WSEncryptionPart> signatureParts,
java.util.List<org.apache.ws.security.WSSecurityEngineResult> results)
|
protected void |
validateEncryptedParts(ValidatorData data,
java.util.List<org.apache.ws.security.WSEncryptionPart> encryptedParts,
java.util.List<org.apache.ws.security.WSSecurityEngineResult> results)
|
protected void |
validateProtectionOrder(ValidatorData data,
java.util.List<org.apache.ws.security.WSSecurityEngineResult> results)
|
void |
validateRequiredElements(ValidatorData data)
|
protected void |
validateSignedPartsHeaders(ValidatorData data,
java.util.List<org.apache.ws.security.WSEncryptionPart> signatureParts,
java.util.List<org.apache.ws.security.WSSecurityEngineResult> results)
|
protected void |
validateSupportingTokens(ValidatorData data,
java.util.List<org.apache.ws.security.WSSecurityEngineResult> results)
|
protected boolean |
verifyTimestamp(org.apache.ws.security.message.token.Timestamp timestamp,
RampartMessageData rmd)
|
protected boolean |
verifyTrust(java.security.cert.X509Certificate cert,
RampartMessageData rmd)
Evaluate whether a given certificate should be trusted. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public PolicyBasedResultsValidator()
Method Detail |
---|
public void validate(ValidatorData data, java.util.Vector results) throws RampartException
PolicyValidatorCallbackHandler
validate
in interface PolicyValidatorCallbackHandler
data
- validator dataresults
- policy based ws-security results
RampartException
- Rampart exceptionpublic void validate(ValidatorData data, java.util.List<org.apache.ws.security.WSSecurityEngineResult> results) throws RampartException
validate
in interface ExtendedPolicyValidatorCallbackHandler
data
- validator dataresults
- policy based ws-security results
RampartException
- Rampart exceptionprotected void validateEncrSig(ValidatorData data, java.util.List<org.apache.ws.security.WSEncryptionPart> encryptedParts, java.util.List<org.apache.ws.security.WSEncryptionPart> signatureParts, java.util.List<org.apache.ws.security.WSSecurityEngineResult> results) throws RampartException
encryptedParts
- signatureParts
-
RampartException
protected void validateSupportingTokens(ValidatorData data, java.util.List<org.apache.ws.security.WSSecurityEngineResult> results) throws RampartException
data
- results
-
RampartException
protected void handleSupportingTokens(java.util.List<org.apache.ws.security.WSSecurityEngineResult> results, org.apache.ws.secpolicy.model.SupportingToken suppTok) throws RampartException
results
- suppTok
-
RampartException
protected void validateProtectionOrder(ValidatorData data, java.util.List<org.apache.ws.security.WSSecurityEngineResult> results) throws RampartException
data
- results
-
RampartException
protected java.util.List<java.lang.Integer> getSigEncrActions(java.util.List<org.apache.ws.security.WSSecurityEngineResult> results)
protected void validateEncryptedParts(ValidatorData data, java.util.List<org.apache.ws.security.WSEncryptionPart> encryptedParts, java.util.List<org.apache.ws.security.WSSecurityEngineResult> results) throws RampartException
RampartException
public void validateRequiredElements(ValidatorData data) throws RampartException
RampartException
protected void validateSignedPartsHeaders(ValidatorData data, java.util.List<org.apache.ws.security.WSEncryptionPart> signatureParts, java.util.List<org.apache.ws.security.WSSecurityEngineResult> results) throws RampartException
RampartException
protected boolean isSignatureRequired(RampartMessageData rmd)
protected boolean verifyTimestamp(org.apache.ws.security.message.token.Timestamp timestamp, RampartMessageData rmd) throws RampartException
RampartException
protected boolean verifyTrust(java.security.cert.X509Certificate cert, RampartMessageData rmd) throws RampartException
cert
- the certificate that should be validated against the keystorermd
- To get signature keystore information.
RampartException
- If an error occurred during validation.protected boolean isCertificateTrusted(java.security.cert.X509Certificate cert, org.apache.ws.security.components.crypto.Crypto crypto) throws RampartException
cert
- the certificate that should be validated against the keystorecrypto
- A crypto instance to use for trust validation
RampartException
- If an error occurred during validation.protected boolean isCertificateInKeyStore(org.apache.ws.security.components.crypto.Crypto crypto, java.security.cert.X509Certificate cert) throws RampartException
crypto
- A Crypto instance to use for trust validationcert
- The certificate to check
RampartException
- If certificates are not found for given issuer and serial number.protected java.util.ArrayList getEncryptedReferences(java.util.List<org.apache.ws.security.WSSecurityEngineResult> results)
protected java.util.List<org.apache.ws.security.WSSecurityEngineResult> getResults(java.util.List<org.apache.ws.security.WSSecurityEngineResult> results, int action)
protected boolean isUsernameTokenPresent(ValidatorData data)
protected boolean isUsernameTokenPresent(org.apache.ws.secpolicy.model.SupportingToken suppTok)
public static org.apache.ws.security.WSSecurityEngineResult[] fetchActionResults(java.util.List<org.apache.ws.security.WSSecurityEngineResult> wsSecurityEngineResults, int action)
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |