org.opensaml.saml2.binding.security
Class SAML2HTTPRedirectDeflateSignatureRule

java.lang.Object
  extended by org.opensaml.common.binding.security.BaseSAMLSimpleSignatureSecurityPolicyRule
      extended by org.opensaml.saml2.binding.security.SAML2HTTPRedirectDeflateSignatureRule
All Implemented Interfaces:
org.opensaml.ws.security.SecurityPolicyRule

public class SAML2HTTPRedirectDeflateSignatureRule
extends BaseSAMLSimpleSignatureSecurityPolicyRule

Security policy which evaluates simple "blob" signatures according to the SAML 2 HTTP-Redirect DEFLATE binding.


Constructor Summary
SAML2HTTPRedirectDeflateSignatureRule(org.opensaml.xml.signature.SignatureTrustEngine engine)
          Constructor.
 
Method Summary
protected  byte[] getSignedContent(javax.servlet.http.HttpServletRequest request)
          Get the content over which to validate the signature, in the form suitable for input into SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential).
protected  boolean ruleHandles(javax.servlet.http.HttpServletRequest request, SAMLMessageContext samlMsgCtx)
          Determine whether the rule should handle the request, based on the unwrapped HTTP servlet request and/or message context.
 
Methods inherited from class org.opensaml.common.binding.security.BaseSAMLSimpleSignatureSecurityPolicyRule
buildCriteriaSet, deriveSignerEntityID, evaluate, getRequestCredentials, getSignature, getSignatureAlgorithm, getTrustEngine, validateSignature
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

SAML2HTTPRedirectDeflateSignatureRule

public SAML2HTTPRedirectDeflateSignatureRule(org.opensaml.xml.signature.SignatureTrustEngine engine)
Constructor.

Parameters:
engine - the trust engine to use
Method Detail

ruleHandles

protected boolean ruleHandles(javax.servlet.http.HttpServletRequest request,
                              SAMLMessageContext samlMsgCtx)
                       throws org.opensaml.ws.security.SecurityPolicyException
Determine whether the rule should handle the request, based on the unwrapped HTTP servlet request and/or message context.

Specified by:
ruleHandles in class BaseSAMLSimpleSignatureSecurityPolicyRule
Parameters:
request - the HTTP servlet request being processed
samlMsgCtx - the SAML message context being processed
Returns:
true if the rule should attempt to process the request, otherwise false
Throws:
org.opensaml.ws.security.SecurityPolicyException - thrown if there is an error during request processing

getSignedContent

protected byte[] getSignedContent(javax.servlet.http.HttpServletRequest request)
                           throws org.opensaml.ws.security.SecurityPolicyException
Get the content over which to validate the signature, in the form suitable for input into SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential).

Specified by:
getSignedContent in class BaseSAMLSimpleSignatureSecurityPolicyRule
Parameters:
request - the HTTP servlet request being processed
Returns:
the signed content extracted from the request, in the format suitable for input to the trust engine.
Throws:
org.opensaml.ws.security.SecurityPolicyException - thrown if there is an error during request processing


Copyright © 2006-2012 Internet2. All Rights Reserved.