Package org.apache.cxf.sts.token.validator

Class X509TokenValidator

java.lang.Object
org.apache.cxf.sts.token.validator.X509TokenValidator
All Implemented Interfaces:
TokenValidator
public class X509TokenValidator extends Object implements TokenValidator
This class validates an X.509 V.3 certificate (received as a BinarySecurityToken or an X509Data DOM Element). The cert must be known (or trusted) by the STS crypto object.

  • Field Details

  • Constructor Details

    • X509TokenValidator

      public X509TokenValidator()

  • Method Details

    • setSubjectConstraints

      public void setSubjectConstraints(List<String> subjectConstraints)
      Set a list of Strings corresponding to regular expression constraints on the subject DN of a certificate

    • setValidator

      public void setValidator(org.apache.wss4j.dom.validate.Validator validator)
      Set the WSS4J Validator instance to use to validate the token.
      Parameters:
      validator - the WSS4J Validator instance to use to validate the token

    • canHandleToken

      public boolean canHandleToken(ReceivedToken validateTarget)
      Return true if this TokenValidator implementation is capable of validating the ReceivedToken argument.
      Specified by:
      canHandleToken in interface TokenValidator

    • canHandleToken

      public boolean canHandleToken(ReceivedToken validateTarget, String realm)
      Return true if this TokenValidator implementation is capable of validating the ReceivedToken argument. The realm is ignored in this token Validator.
      Specified by:
      canHandleToken in interface TokenValidator

    • validateToken

      public TokenValidatorResponse validateToken(TokenValidatorParameters tokenParameters)
      Validate a Token using the given TokenValidatorParameters.
      Specified by:
      validateToken in interface TokenValidator