public class DefaultValidator extends java.lang.Object implements SamlValidator
Constructor and Description |
---|
DefaultValidator(SpringSecuritySaml implementation) |
Modifier and Type | Method and Description |
---|---|
protected boolean |
compareURIs(java.util.List<Endpoint> endpoints,
java.lang.String uri) |
protected boolean |
compareURIs(java.lang.String uri1,
java.lang.String uri2) |
int |
getMaxAuthenticationAgeMillis() |
int |
getResponseSkewTimeMillis() |
boolean |
isAllowUnsolicitedResponses() |
protected boolean |
isDateTimeSkewValid(int skewMillis,
int forwardMillis,
org.joda.time.DateTime time) |
java.lang.String |
removeQueryString(java.lang.String uri) |
DefaultValidator |
setAllowUnsolicitedResponses(boolean allowUnsolicitedResponses) |
void |
setMaxAuthenticationAgeMillis(int maxAuthenticationAgeMillis) |
DefaultValidator |
setNetwork(Network network) |
DefaultValidator |
setResponseSkewTimeMillis(int responseSkewTimeMillis) |
DefaultValidator |
setTime(java.time.Clock time) |
java.time.Clock |
time() |
protected ValidationResult |
validate(Response response,
java.util.List<java.lang.String> mustMatchInResponseTo,
ServiceProviderMetadata requester,
IdentityProviderMetadata responder) |
void |
validate(Saml2Object saml2Object,
SamlObjectResolver resolver,
javax.servlet.http.HttpServletRequest request)
Performs an object validation on the respective object
|
Signature |
validateSignature(Saml2Object saml2Object,
java.util.List<SimpleKey> verificationKeys)
Validates a signature on a SAML object.
|
protected ValidationResult |
verifyIssuer(Issuer issuer,
Metadata entity) |
public DefaultValidator(SpringSecuritySaml implementation)
public DefaultValidator setNetwork(Network network)
public DefaultValidator setTime(java.time.Clock time)
public Signature validateSignature(Saml2Object saml2Object, java.util.List<SimpleKey> verificationKeys) throws SignatureException
SamlValidator
validateSignature
in interface SamlValidator
saml2Object
- - a signed object to validateverificationKeys
- a list of keys to use for validationSignatureException
- if object failed signature validationpublic void validate(Saml2Object saml2Object, SamlObjectResolver resolver, javax.servlet.http.HttpServletRequest request) throws ValidationException
SamlValidator
validate
in interface SamlValidator
saml2Object
- the object to be validated according to SAML specification rulesresolver
- the object used to resolve metadatarequest
- - the servlet request that this object came in onValidationException
- if validation failed. Details in the exception.protected ValidationResult validate(Response response, java.util.List<java.lang.String> mustMatchInResponseTo, ServiceProviderMetadata requester, IdentityProviderMetadata responder)
protected boolean isDateTimeSkewValid(int skewMillis, int forwardMillis, org.joda.time.DateTime time)
public int getResponseSkewTimeMillis()
public DefaultValidator setResponseSkewTimeMillis(int responseSkewTimeMillis)
public boolean isAllowUnsolicitedResponses()
public DefaultValidator setAllowUnsolicitedResponses(boolean allowUnsolicitedResponses)
protected boolean compareURIs(java.util.List<Endpoint> endpoints, java.lang.String uri)
protected ValidationResult verifyIssuer(Issuer issuer, Metadata entity)
public int getMaxAuthenticationAgeMillis()
public java.time.Clock time()
protected boolean compareURIs(java.lang.String uri1, java.lang.String uri2)
public java.lang.String removeQueryString(java.lang.String uri)
public void setMaxAuthenticationAgeMillis(int maxAuthenticationAgeMillis)