Package org.opensaml.security.x509
X.509-based credential and trust classes.
-
Interface Summary Interface Description PKIXTrustEngine<TokenType> Trust engine that validates tokens using PKIX validation.PKIXTrustEvaluator An interface for classes which evaluate anX509Credentialagainst a set of trustedPKIXValidationInformation, using PKIX validation rules.PKIXValidationInformation Source of PKIX validation information such as trust anchors and CRLs.PKIXValidationInformationResolver A resolver which usesCriterionto resolvePKIXValidationInformation, which will typically be used by PKIX-based trust engines.X500DNHandler Interface for implementations which handle parsing and serialization of X.500 names represented byX500Principal.X509Credential An entity credential based on key material and other information (e.g. -
Class Summary Class Description BasicX509Credential A basic implementation ofX509Credential.InternalX500DNHandler Basic implementation ofX500DNHandlerwhich uses the internal built-in mechanisms provided byX500Principaldirectly.PKIXValidationOptions Options which may be supplied to influence the processing behavior of aPKIXTrustEvaluator.TrustedNamesCriterion A criterion implementation for conveying a dynamically-generated set of trusted names for PKIX validation purposes.X509DigestCriterion An implementation ofCriterionwhich specifies criteria based on the digest of an X.509 certificate.X509IssuerSerialCriterion An implementation ofCriterionwhich specifies criteria based on X.509 certificate issuer name and serial number.X509SubjectKeyIdentifierCriterion An implementation ofCriterionwhich specifies criteria based on X.509 certificate subject key identifier.X509SubjectNameCriterion An implementation ofCriterionwhich specifies criteria based on X.509 certificate subject name.X509Support Utility class for working with X509 objects.