1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17 package org.opensaml.xml.security.credential.criteria;
18
19 import org.opensaml.xml.security.credential.Credential;
20 import org.opensaml.xml.security.credential.UsageType;
21 import org.opensaml.xml.security.criteria.UsageCriteria;
22 import org.slf4j.Logger;
23 import org.slf4j.LoggerFactory;
24
25
26
27
28 public class EvaluableUsageCredentialCriteria implements EvaluableCredentialCriteria {
29
30
31 private final Logger log = LoggerFactory.getLogger(EvaluableUsageCredentialCriteria.class);
32
33
34 private UsageType usage;
35
36
37
38
39
40
41 public EvaluableUsageCredentialCriteria(UsageCriteria criteria) {
42 if (criteria == null) {
43 throw new NullPointerException("Criteria instance may not be null");
44 }
45 usage = criteria.getUsage();
46 }
47
48
49
50
51
52
53 public EvaluableUsageCredentialCriteria(UsageType newUsage) {
54 if (newUsage == null) {
55 throw new IllegalArgumentException("Usage may not be null");
56 }
57 usage = newUsage;
58 }
59
60
61 public Boolean evaluate(Credential target) {
62 if (target == null) {
63 log.error("Credential target was null");
64 return null;
65 }
66 UsageType credUsage = target.getUsageType();
67 if (credUsage == null) {
68 log.info("Could not evaluate criteria, credential contained no usage specifier");
69 return null;
70 }
71
72 Boolean result = matchUsage(credUsage, usage);
73 return result;
74 }
75
76
77
78
79
80
81
82
83 protected boolean matchUsage(UsageType credentialUsage, UsageType criteriaUsage) {
84 if (credentialUsage == UsageType.UNSPECIFIED || criteriaUsage == UsageType.UNSPECIFIED) {
85 return true;
86 }
87 return credentialUsage == criteriaUsage;
88 }
89
90 }