Package | Description |
---|---|
org.opensaml.common.binding.security |
Classes responsible for performing transport-related and basic message
validation of decoded SAML messages.
|
org.opensaml.saml2.binding.security |
Classes responsible for performing transport-related and basic message
validation of decoded SAML 2 messages.
|
org.opensaml.ws.security |
Provides interfaces that may be used to implement policies that are evaluated against incoming messages.
|
org.opensaml.ws.security.provider |
Basic implementations of some security policies.
|
Modifier and Type | Class and Description |
---|---|
class |
BaseSAMLSimpleSignatureSecurityPolicyRule
Base class for security rules which verify simple "blob" signatures computed over some components of a request.
|
class |
BaseSAMLXMLSignatureSecurityPolicyRule
Base class for SAML security policy rules which evaluate a signature with a signature trust engine.
|
class |
IssueInstantRule
Security policy rule implementation that checks for validity of SAML message issue instant date and time.
|
class |
MessageReplayRule
Security policy rule implementation that which checks for replay of SAML messages.
|
class |
SAMLMDClientCertAuthRule
SAML specialization of
ClientCertAuthRule which provides support for X509Credential trust engine validation
based on SAML metadta. |
class |
SAMLProtocolMessageXMLSignatureSecurityPolicyRule
SAML security policy rule which validates the signature (if present) on the
SAMLObject which represents the
SAML protocol message being processed. |
Modifier and Type | Class and Description |
---|---|
class |
SAML2AuthnRequestsSignedRule
Security policy rule implementation that enforces the AuthnRequestsSigned flag of
SAML 2 metadata element @{link
SPSSODescriptor . |
class |
SAML2HTTPPostSimpleSignRule
Security policy which evaluates simple "blob" signatures according to the SAML 2 HTTP-POST-SimpleSign binding.
|
class |
SAML2HTTPRedirectDeflateSignatureRule
Security policy which evaluates simple "blob" signatures according to the SAML 2 HTTP-Redirect DEFLATE binding.
|
Modifier and Type | Method and Description |
---|---|
List<SecurityPolicyRule> |
SecurityPolicy.getPolicyRules()
Gets the rules that are evaluated for this policy.
|
Modifier and Type | Class and Description |
---|---|
class |
BaseTrustEngineRule<TokenType>
Base rule which uses a trust engine to evaluate a token extracted from the request or message.
|
class |
ClientCertAuthRule
Policy rule that checks if the client cert used to authenticate the request is valid and trusted.
|
class |
HTTPRule
A security rule that checks basic HTTP connection properties.
|
class |
MandatoryAuthenticatedMessageRule
Security policy rule that requires that a message has been authenticated.
|
class |
MandatoryIssuerRule
Security policy rule implementation that which requires that an inbound message context issuer has been set by a
previous rule.
|
Modifier and Type | Method and Description |
---|---|
List<SecurityPolicyRule> |
BasicSecurityPolicy.getPolicyRules()
Gets the rules that are evaluated for this policy.
|
Copyright © 2014 JBoss by Red Hat. All Rights Reserved.