Index (OpenSAML :: Security API 3.4.3 API)

A B C D E F G H I J K L M O P R S T U V X

A

AbstractCredential - Class in org.opensaml.security.credential: Base class for Credential implementations.
AbstractCredential() - Constructor for class org.opensaml.security.credential.AbstractCredential: Constructor.
addDefaultTLSTrustEngineCriteria(HttpClientContext, HttpUriRequest) - Static method in class org.opensaml.security.httpclient.HttpClientSecuritySupport: Add default trust engine criteria for TLS usage to the HttpClientContext.
algorithm - Variable in class org.opensaml.security.x509.X509DigestCriterion: Digest algorithm.
authCache - Variable in class org.opensaml.security.httpclient.HttpClientSecurityParameters: HttpClient AuthCache to allow pre-emptive authentication.

B

BasicCredential - Class in org.opensaml.security.credential: A basic implementation of Credential.
BasicCredential(PublicKey) - Constructor for class org.opensaml.security.credential.BasicCredential: Constructor.
BasicCredential(PublicKey, PrivateKey) - Constructor for class org.opensaml.security.credential.BasicCredential: Constructor.
BasicCredential(SecretKey) - Constructor for class org.opensaml.security.credential.BasicCredential: Constructor.
BasicCredential() - Constructor for class org.opensaml.security.credential.BasicCredential: Constructor.
BasicX509Credential - Class in org.opensaml.security.x509: A basic implementation of X509Credential.
BasicX509Credential(X509Certificate) - Constructor for class org.opensaml.security.x509.BasicX509Credential: Constructor.
BasicX509Credential(X509Certificate, PrivateKey) - Constructor for class org.opensaml.security.x509.BasicX509Credential: Constructor.
buildJavaDSAPrivateKey(String) - Static method in class org.opensaml.security.crypto.KeySupport: Build Java DSA private key from base64 encoding.
buildJavaDSAPublicKey(String) - Static method in class org.opensaml.security.crypto.KeySupport: Build Java DSA public key from base64 encoding.
buildJavaECPrivateKey(String) - Static method in class org.opensaml.security.crypto.KeySupport: Build Java EC private key from base64 encoding.
buildJavaECPublicKey(String) - Static method in class org.opensaml.security.crypto.KeySupport: Build Java EC public key from base64 encoding.
buildJavaPrivateKey(String) - Static method in class org.opensaml.security.crypto.KeySupport: Build Java private key from base64 encoding.
buildJavaRSAPrivateKey(String) - Static method in class org.opensaml.security.crypto.KeySupport: Build Java RSA private key from base64 encoding.
buildJavaRSAPublicKey(String) - Static method in class org.opensaml.security.crypto.KeySupport: Build Java RSA public key from base64 encoding.
buildKey(KeySpec, String) - Static method in class org.opensaml.security.crypto.KeySupport: Generates a public key from the given key spec.

C

cert - Variable in class org.opensaml.security.messaging.ServletRequestX509CredentialAdapter: The entity certificate.
certChain - Variable in class org.opensaml.security.messaging.ServletRequestX509CredentialAdapter: The certificate chain.
CertificateNameOptions - Class in org.opensaml.security.x509.tls: Options for deriving message context issuer names from an client TLS X.509 certificate.
CertificateNameOptions() - Constructor for class org.opensaml.security.x509.tls.CertificateNameOptions: Constructor.
certificateNameOptions - Variable in class org.opensaml.security.x509.tls.ClientTLSValidationParameters: A CertificateNameOptions instance used to validate a client TLS X509Credential.
checkTLSCredentialEvaluated(HttpClientContext, String) - Static method in class org.opensaml.security.httpclient.HttpClientSecuritySupport: Check that trust engine evaluation of the server TLS credential was actually performed when the scheme is HTTPS.
CIPHER_MODE_CBC - Static variable in class org.opensaml.security.crypto.JCAConstants: Cipher mode: "CBC".
CIPHER_MODE_ECB - Static variable in class org.opensaml.security.crypto.JCAConstants: Cipher mode: "ECB".
CIPHER_MODE_GCM - Static variable in class org.opensaml.security.crypto.JCAConstants: Cipher mode: "GCM".
CIPHER_PADDING_ISO10126 - Static variable in class org.opensaml.security.crypto.JCAConstants: Cipher padding: "ISO10126Padding".
CIPHER_PADDING_NONE - Static variable in class org.opensaml.security.crypto.JCAConstants: Cipher padding: "NoPadding".
CIPHER_PADDING_OAEP - Static variable in class org.opensaml.security.crypto.JCAConstants: Cipher padding: "OAEPPadding".
CIPHER_PADDING_PKCS1 - Static variable in class org.opensaml.security.crypto.JCAConstants: Cipher padding: "PKCS1Padding".
clientTLSCredential - Variable in class org.opensaml.security.httpclient.HttpClientSecurityParameters: The X509 credential used for client TLS.
ClientTLSSecurityParametersContext - Class in org.opensaml.security.messaging: Messaging context implementation for holding parameters related to validating client TLS X509Credential instances.
ClientTLSSecurityParametersContext() - Constructor for class org.opensaml.security.messaging.ClientTLSSecurityParametersContext
ClientTLSValidationConfiguration - Interface in org.opensaml.security.x509.tls: Configuration used in validating a client TLS X509Credential.
ClientTLSValidationConfigurationCriterion - Class in org.opensaml.security.x509.tls: Criterion which holds one or more instances of ClientTLSValidationConfiguration.
ClientTLSValidationConfigurationCriterion(List<ClientTLSValidationConfiguration>) - Constructor for class org.opensaml.security.x509.tls.ClientTLSValidationConfigurationCriterion: Constructor.
ClientTLSValidationConfigurationCriterion(ClientTLSValidationConfiguration...) - Constructor for class org.opensaml.security.x509.tls.ClientTLSValidationConfigurationCriterion: Constructor.
ClientTLSValidationParameters - Class in org.opensaml.security.x509.tls: Parameters used in validating a client TLS X509Credential.
ClientTLSValidationParameters() - Constructor for class org.opensaml.security.x509.tls.ClientTLSValidationParameters
ClientTLSValidationParametersResolver - Interface in org.opensaml.security.x509.tls: An interface for components which resolve ClientTLSValidationParameters based on a CriteriaSet.
clone() - Method in class org.opensaml.security.x509.InternalX500DNHandler: Clone the handler.
clone() - Method in class org.opensaml.security.x509.tls.CertificateNameOptions
clone() - Method in interface org.opensaml.security.x509.X500DNHandler: Clone the handler.
CN_OID - Static variable in class org.opensaml.security.x509.X509Support: Common Name (CN) OID.
configs - Variable in class org.opensaml.security.httpclient.HttpClientSecurityConfigurationCriterion: The list of configuration instances.
configs - Variable in class org.opensaml.security.x509.tls.ClientTLSValidationConfigurationCriterion: The list of configuration instances.
CONTEXT_KEY_CLIENT_TLS_CREDENTIAL - Static variable in class org.opensaml.security.httpclient.HttpClientSecurityConstants: HttpContext key for the client TLS credential.
CONTEXT_KEY_CRITERIA_SET - Static variable in class org.opensaml.security.httpclient.HttpClientSecurityConstants: Context key for a criteria set instance supplied by an HttpClient caller.
CONTEXT_KEY_HOSTNAME_VERIFIER - Static variable in class org.opensaml.security.httpclient.HttpClientSecurityConstants: HttpContext key for an instance of X509HostnameVerifier.
CONTEXT_KEY_SERVER_TLS_CREDENTIAL_TRUSTED - Static variable in class org.opensaml.security.httpclient.HttpClientSecurityConstants: Context key for a server TLS credential evaluation result, populated by specialized instances of HttpClient socket factories.
CONTEXT_KEY_SERVER_TLS_FAILURE_IS_FATAL - Static variable in class org.opensaml.security.httpclient.HttpClientSecurityConstants: Context key for indicating whether server TLS evaluation failure should be treated as a fatal error.
CONTEXT_KEY_TLS_CIPHER_SUITES - Static variable in class org.opensaml.security.httpclient.HttpClientSecurityConstants: HttpContext key for a a list of TLS cipher suites to enable on the socket.
CONTEXT_KEY_TLS_PROTOCOLS - Static variable in class org.opensaml.security.httpclient.HttpClientSecurityConstants: HttpContext key for a a list of TLS protocols to enable on the socket.
CONTEXT_KEY_TRUST_ENGINE - Static variable in class org.opensaml.security.httpclient.HttpClientSecurityConstants: Context key for a trust engine instance supplied by an HttpClient caller.
convertAltNameType(Integer, ASN1Primitive) - Static method in class org.opensaml.security.x509.X509Support: Convert types returned by Bouncy Castle X509ExtensionUtil.getSubjectAlternativeNames(X509Certificate) to be consistent with what is documented for: java.security.cert.X509Certificate#getSubjectAlternativeNames.
Credential - Interface in org.opensaml.security.credential: A credential for an entity.
CredentialContext - Interface in org.opensaml.security.credential: Marker interface for implementations which hold information specific to a particular context within which a CredentialResolver resolves a Credential.
credentialContextSet - Variable in class org.opensaml.security.credential.AbstractCredential: Credential context of this credential.
CredentialContextSet - Class in org.opensaml.security.credential: This class holds instances of CredentialContext which represent information about the context in which a CredentialResolver has resolved a Credential.
CredentialContextSet() - Constructor for class org.opensaml.security.credential.CredentialContextSet
CredentialResolver - Interface in org.opensaml.security.credential: A resolver which uses Criterion to resolve and return instances of Credential.
credentialsProvider - Variable in class org.opensaml.security.httpclient.HttpClientSecurityParameters: HttpClient credentials provider.
CredentialSupport - Class in org.opensaml.security.credential: Helper methods for working with Credential instances.
CredentialSupport() - Constructor for class org.opensaml.security.credential.CredentialSupport: Constructor.
credUsage - Variable in class org.opensaml.security.criteria.UsageCriterion: Key usage type of resolved credentials.
criteriaSet - Variable in class org.opensaml.security.httpclient.TLSCriteriaSetCriterion: TLS CriteriaSet data.
crls - Variable in class org.opensaml.security.x509.BasicX509Credential: CRLs for this credential.

D

decodeCertificate(File) - Static method in class org.opensaml.security.x509.X509Support: Decodes a single X.509 certificate in DER or PEM format.
decodeCertificate(byte[]) - Static method in class org.opensaml.security.x509.X509Support: Decodes a single X.509 certificate in DER or PEM format.
decodeCertificate(String) - Static method in class org.opensaml.security.x509.X509Support: Decode a single Java certificate from base64 encoded form without PEM headers and footers.
decodeCertificates(File) - Static method in class org.opensaml.security.x509.X509Support: Decodes X.509 certificates in DER or PEM format.
decodeCertificates(InputStream) - Static method in class org.opensaml.security.x509.X509Support: Decodes X.509 certificates in DER or PEM format.
decodeCertificates(byte[]) - Static method in class org.opensaml.security.x509.X509Support: Decodes X.509 certificates in DER or PEM format.
decodeCRL(String) - Static method in class org.opensaml.security.x509.X509Support: Decode CRL in base64 encoded form without PEM headers and footers.
decodeCRLs(File) - Static method in class org.opensaml.security.x509.X509Support: Decodes CRLs in DER or PKCS#7 format.
decodeCRLs(InputStream) - Static method in class org.opensaml.security.x509.X509Support: Decodes CRLs in DER or PKCS#7 format.
decodeCRLs(byte[]) - Static method in class org.opensaml.security.x509.X509Support: Decodes CRLs in DER or PKCS#7 format.
decodePrivateKey(File, char[]) - Static method in class org.opensaml.security.crypto.KeySupport: Decodes RSA/DSA private keys in DER, PEM, or PKCS#8 (encrypted or unencrypted) formats.
decodePrivateKey(InputStream, char[]) - Static method in class org.opensaml.security.crypto.KeySupport: Decodes RSA/DSA private keys in DER, PEM, or PKCS#8 (encrypted or unencrypted) formats.
decodePrivateKey(byte[], char[]) - Static method in class org.opensaml.security.crypto.KeySupport: Decodes RSA/DSA private keys in DER, PEM, or PKCS#8 (encrypted or unencrypted) formats.
decodePublicKey(byte[]) - Static method in class org.opensaml.security.crypto.KeySupport: Decodes RSA/DSA public keys in DER-encoded "SubjectPublicKeyInfo" format.
decodeSecretKey(byte[], String) - Static method in class org.opensaml.security.crypto.KeySupport: Produces SecretKey instances specified as a raw byte[] plus a JCA key algorithm.
defaultVerificationDepth - Variable in class org.opensaml.security.x509.PKIXValidationOptions: Default verification depth.
derivePublicKey(PrivateKey) - Static method in class org.opensaml.security.crypto.KeySupport: Derives the public key from either a DSA or RSA private key.
determineEntityCertificate(Collection<X509Certificate>, PrivateKey) - Static method in class org.opensaml.security.x509.X509Support: Determines the certificate, from the collection, associated with the private key.
DIGEST_MD5 - Static variable in class org.opensaml.security.crypto.JCAConstants: Digest algorithm: "MD5".
DIGEST_RIPEMD160 - Static variable in class org.opensaml.security.crypto.JCAConstants: Digest algorithm: "RIPEMD160".
DIGEST_SHA1 - Static variable in class org.opensaml.security.crypto.JCAConstants: Digest algorithm: "SHA-1".
DIGEST_SHA224 - Static variable in class org.opensaml.security.crypto.JCAConstants: Digest algorithm: "SHA-224".
DIGEST_SHA256 - Static variable in class org.opensaml.security.crypto.JCAConstants: Digest algorithm: "SHA-256".
DIGEST_SHA384 - Static variable in class org.opensaml.security.crypto.JCAConstants: Digest algorithm: "SHA-384".
DIGEST_SHA512 - Static variable in class org.opensaml.security.crypto.JCAConstants: Digest algorithm: "SHA-512".
DIRECTORY_ALT_NAME - Static variable in class org.opensaml.security.x509.X509Support: RFC 2459 Directory Name Subject Alt Name type.
DNS_ALT_NAME - Static variable in class org.opensaml.security.x509.X509Support: RFC 2459 DNS Subject Alt Name type.

E

EDI_PARTY_ALT_NAME - Static variable in class org.opensaml.security.x509.X509Support: RFC 2459 EDI Party Name Subject Alt Name type.
entityCert - Variable in class org.opensaml.security.x509.BasicX509Credential: Entity certificate.
entityCertChain - Variable in class org.opensaml.security.x509.BasicX509Credential: Entity certificate chain, must include entity certificate.
entityId - Variable in class org.opensaml.security.credential.AbstractCredential: ID of the entity owning this credential.
equals(Object) - Method in class org.opensaml.security.criteria.KeyAlgorithmCriterion
equals(Object) - Method in class org.opensaml.security.criteria.KeyLengthCriterion
equals(Object) - Method in class org.opensaml.security.criteria.KeyNameCriterion
equals(Object) - Method in class org.opensaml.security.criteria.PeerEntityIDCriterion
equals(Object) - Method in class org.opensaml.security.criteria.PublicKeyCriterion
equals(Object) - Method in class org.opensaml.security.criteria.UsageCriterion
equals(Object) - Method in class org.opensaml.security.httpclient.HttpClientSecurityConfigurationCriterion
equals(Object) - Method in class org.opensaml.security.httpclient.TLSCriteriaSetCriterion
equals(Object) - Method in class org.opensaml.security.x509.tls.ClientTLSValidationConfigurationCriterion
equals(Object) - Method in class org.opensaml.security.x509.TrustedNamesCriterion
equals(Object) - Method in class org.opensaml.security.x509.X509DigestCriterion
equals(Object) - Method in class org.opensaml.security.x509.X509IssuerSerialCriterion
equals(Object) - Method in class org.opensaml.security.x509.X509SubjectKeyIdentifierCriterion
equals(Object) - Method in class org.opensaml.security.x509.X509SubjectNameCriterion
evaluateClientCertificate - Variable in class org.opensaml.security.messaging.ClientTLSSecurityParametersContext: Flag indicating whether to evaluate the certificate presented by the TLS client.
evaluateSubjectCommonName - Variable in class org.opensaml.security.x509.tls.CertificateNameOptions: Evaluate the certificate subject DN's common name (CN) as a derived issuer entity ID.
evaluateSubjectCommonName() - Method in class org.opensaml.security.x509.tls.CertificateNameOptions: Get whether to evaluate the certificate subject DN's common name (CN) as a derived issuer entity ID.
evaluateSubjectDN - Variable in class org.opensaml.security.x509.tls.CertificateNameOptions: Evaluate the certificate subject DN as a derived issuer entity ID.
evaluateSubjectDN() - Method in class org.opensaml.security.x509.tls.CertificateNameOptions: Get whether to evaluate the certificate subject DN as a derived issuer entity ID.
extractDecryptionKey(Credential) - Static method in class org.opensaml.security.credential.CredentialSupport: Extract the decryption key from the credential.
extractEncryptionKey(Credential) - Static method in class org.opensaml.security.credential.CredentialSupport: Extract the encryption key from the credential.
extractSigningKey(Credential) - Static method in class org.opensaml.security.credential.CredentialSupport: Extract the signing key from the credential.
extractVerificationKey(Credential) - Static method in class org.opensaml.security.credential.CredentialSupport: Extract the verification key from the credential.

F

FORMAT_RFC1779 - Static variable in interface org.opensaml.security.x509.X500DNHandler: Specifies the string format specified in RFC 1779.
FORMAT_RFC2253 - Static variable in interface org.opensaml.security.x509.X500DNHandler: Specifies the string format specified in RFC 2253.

G

generateKey(String, int, String) - Static method in class org.opensaml.security.crypto.KeySupport: Generate a random symmetric key.
generateKeyPair(String, int, String) - Static method in class org.opensaml.security.crypto.KeySupport: Generate a random asymmetric key pair.
getAlgorithm() - Method in class org.opensaml.security.x509.X509DigestCriterion: Get the digest algorithm.
getAltNames(X509Certificate, Integer[]) - Static method in class org.opensaml.security.x509.X509Support: Gets the list of alternative names of a given name type.
getAuthCache() - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Get an instance of AuthCache used for authentication by the HttpClient instance.
getCertificateNameOptions() - Method in interface org.opensaml.security.x509.tls.ClientTLSValidationConfiguration: Get a CertificateNameOptions instance to use when evaluating a client TLS X509Credential.
getCertificateNameOptions() - Method in class org.opensaml.security.x509.tls.ClientTLSValidationParameters: Get a CertificateNameOptions instance to use when evaluating a client TLS X509Credential.
getCertificates() - Method in interface org.opensaml.security.x509.PKIXValidationInformation: Gets the certificate trust anchors used during PKIX validation.
getClientTLSCredential() - Method in interface org.opensaml.security.httpclient.HttpClientSecurityConfiguration: Get the optional client TLS credential.
getClientTLSCredential() - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Get the optional client TLS credential.
getCommonNames(X500Principal) - Static method in class org.opensaml.security.x509.X509Support: Gets the commons names that appear within the given distinguished name.
getConfigurations() - Method in class org.opensaml.security.httpclient.HttpClientSecurityConfigurationCriterion: Get the list of configuration instances.
getConfigurations() - Method in class org.opensaml.security.x509.tls.ClientTLSValidationConfigurationCriterion: Get the list of configuration instances.
getCredentialContextSet() - Method in class org.opensaml.security.credential.AbstractCredential: Get the set of credential context information, which provides additional information specific to the contexts in which the credential was resolved.
getCredentialContextSet() - Method in interface org.opensaml.security.credential.Credential: Get the set of credential context information, which provides additional information specific to the contexts in which the credential was resolved.
getCredentialResolver() - Method in interface org.opensaml.security.trust.TrustedCredentialTrustEngine: Gets the credential resolver used to recover trusted credentials that may be used to validate tokens.
getCredentialsProvider() - Method in interface org.opensaml.security.httpclient.HttpClientSecurityConfiguration: Get an instance of CredentialsProvider used for authentication by the HttpClient instance.
getCredentialsProvider() - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Get an instance of CredentialsProvider used for authentication by the HttpClient instance.
getCredentialType() - Method in class org.opensaml.security.credential.BasicCredential: Get the primary type of the credential instance.
getCredentialType() - Method in interface org.opensaml.security.credential.Credential: Get the primary type of the credential instance.
getCredentialType() - Method in class org.opensaml.security.messaging.ServletRequestX509CredentialAdapter: Get the primary type of the credential instance.
getCredentialType() - Method in class org.opensaml.security.x509.BasicX509Credential: Get the primary type of the credential instance.
getCriteria() - Method in class org.opensaml.security.httpclient.TLSCriteriaSetCriterion: Get the key usage criteria.
getCRLs() - Method in class org.opensaml.security.messaging.ServletRequestX509CredentialAdapter: Gets a collection of CRLs associated with the credential.
getCRLs() - Method in class org.opensaml.security.x509.BasicX509Credential: Gets a collection of CRLs associated with the credential.
getCRLs() - Method in interface org.opensaml.security.x509.PKIXValidationInformation: Gets the CRLs used during PKIX validation.
getCRLs() - Method in interface org.opensaml.security.x509.X509Credential: Gets a collection of CRLs associated with the credential.
getDefaultVerificationDepth() - Method in class org.opensaml.security.x509.PKIXValidationOptions: The default PKIX maximum path verification depth, if not supplied in the PKIXValidationInformation being evaluated.
getDigest() - Method in class org.opensaml.security.x509.X509DigestCriterion: Get the certificate digest.
getEncoded(X500Principal) - Method in class org.opensaml.security.x509.InternalX500DNHandler: Returns the distinguished name in ASN.1 DER encoded form.
getEncoded(X500Principal) - Method in interface org.opensaml.security.x509.X500DNHandler: Returns the distinguished name in ASN.1 DER encoded form.
getEntityCertificate() - Method in class org.opensaml.security.messaging.ServletRequestX509CredentialAdapter: Gets the public key certificate for the entity.
getEntityCertificate() - Method in class org.opensaml.security.x509.BasicX509Credential: Gets the public key certificate for the entity.
getEntityCertificate() - Method in interface org.opensaml.security.x509.X509Credential: Gets the public key certificate for the entity.
getEntityCertificateChain() - Method in class org.opensaml.security.messaging.ServletRequestX509CredentialAdapter: Gets an immutable collection of certificates in the entity's trust chain.
getEntityCertificateChain() - Method in class org.opensaml.security.x509.BasicX509Credential: Gets an immutable collection of certificates in the entity's trust chain.
getEntityCertificateChain() - Method in interface org.opensaml.security.x509.X509Credential: Gets an immutable collection of certificates in the entity's trust chain.
getEntityId() - Method in class org.opensaml.security.credential.AbstractCredential: The unique ID of the entity this credential is for.
getEntityId() - Method in interface org.opensaml.security.credential.Credential: The unique ID of the entity this credential is for.
getGlobalHttpClientSecurityConfiguration() - Static method in class org.opensaml.security.httpclient.HttpClientSecuritySupport: Get the global HttpClientSecurityConfiguration instance.
getHostnameVerifier() - Method in interface org.opensaml.security.httpclient.HttpClientSecurityConfiguration: Get the optional hostname verifier.
getHostnameVerifier() - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Get the optional hostname verifier.
getHttpClientSecurityParameters() - Method in class org.opensaml.security.httpclient.HttpClientSecurityContextHandler: Get the optional client security parameters.
getIdentifiersToken(X509Credential, X500DNHandler) - Static method in class org.opensaml.security.x509.X509Support: Gets a formatted string representing identifier information from the supplied credential.
getIssuerName() - Method in class org.opensaml.security.x509.X509IssuerSerialCriterion: Get the issuer name.
getKeyAlgorithm() - Method in class org.opensaml.security.criteria.KeyAlgorithmCriterion: Get the key algorithm criteria.
getKeyLength() - Method in class org.opensaml.security.criteria.KeyLengthCriterion: Get the key length.
getKeyLength(Key) - Static method in class org.opensaml.security.crypto.KeySupport: Get the key length in bits of the specified key.
getKeyName() - Method in class org.opensaml.security.criteria.KeyNameCriterion: Get the key name criteria.
getKeyNames() - Method in class org.opensaml.security.credential.AbstractCredential: Gets key names for this credential.
getKeyNames() - Method in interface org.opensaml.security.credential.Credential: Gets key names for this credential.
getLogger() - Static method in class org.opensaml.security.crypto.KeySupport: Get an SLF4J Logger.
getLogger() - Static method in class org.opensaml.security.crypto.SigningUtil: Get an SLF4J Logger.
getLogger() - Static method in class org.opensaml.security.x509.X509Support: Get an SLF4J Logger.
getName(X500Principal) - Method in class org.opensaml.security.x509.InternalX500DNHandler: Returns a string representation of the X.500 distinguished name using the default format as defined in the underlying implementation.
getName(X500Principal, String) - Method in class org.opensaml.security.x509.InternalX500DNHandler: Returns a string representation of the X.500 distinguished name using the specified format.
getName(X500Principal) - Method in interface org.opensaml.security.x509.X500DNHandler: Returns a string representation of the X.500 distinguished name using the default format as defined in the underlying implementation.
getName(X500Principal, String) - Method in interface org.opensaml.security.x509.X500DNHandler: Returns a string representation of the X.500 distinguished name using the specified format.
getPeerID() - Method in class org.opensaml.security.criteria.PeerEntityIDCriterion: Get the entity ID which is the peer relative to a primary entity ID.
getPKIXResolver() - Method in interface org.opensaml.security.x509.PKIXTrustEngine: Get the resolver instance which will be used to resolve PKIX validation information.
getPKIXValidationOptions() - Method in interface org.opensaml.security.x509.PKIXTrustEvaluator: Get the PKIXValidationOptions instance that is in use.
getPrivateKey() - Method in class org.opensaml.security.credential.AbstractCredential: Gets the private key for the entity if there is one.
getPrivateKey() - Method in interface org.opensaml.security.credential.Credential: Gets the private key for the entity if there is one.
getPublicKey() - Method in class org.opensaml.security.credential.AbstractCredential: Gets the public key for the entity.
getPublicKey() - Method in interface org.opensaml.security.credential.Credential: Gets the public key for the entity.
getPublicKey() - Method in class org.opensaml.security.criteria.PublicKeyCriterion: Get the public key criteria.
getPublicKey() - Method in class org.opensaml.security.messaging.ServletRequestX509CredentialAdapter: Gets the public key for the entity.
getPublicKey() - Method in class org.opensaml.security.x509.BasicX509Credential: Gets the public key for the entity.
getSecretKey() - Method in class org.opensaml.security.credential.AbstractCredential: Gets the secret key for this entity.
getSecretKey() - Method in interface org.opensaml.security.credential.Credential: Gets the secret key for this entity.
getSecretKey() - Method in class org.opensaml.security.x509.BasicX509Credential: This operation is unsupported for X.509 credentials.
getSecurityParameters() - Method in class org.opensaml.security.messaging.HttpClientSecurityContext: Get the HttpClientSecurityParameters instance.
getSerialNumber() - Method in class org.opensaml.security.x509.X509IssuerSerialCriterion: Get the serial number.
getSimpleCredential(SecretKey) - Static method in class org.opensaml.security.credential.CredentialSupport: Get a simple, minimal credential containing a secret (symmetric) key.
getSimpleCredential(PublicKey, PrivateKey) - Static method in class org.opensaml.security.credential.CredentialSupport: Get a simple, minimal credential containing a public key, and optionally a private key.
getSimpleCredential(X509Certificate, PrivateKey) - Static method in class org.opensaml.security.credential.CredentialSupport: Get a simple, minimal credential containing an end-entity X.509 certificate, and optionally a private key.
getSubjectAltNames() - Method in class org.opensaml.security.x509.tls.CertificateNameOptions: Get the set of types of subject alternative names evaluate as derived issuer entity ID names, using integer constants defined in X509Support.
getSubjectKeyIdentifier() - Method in class org.opensaml.security.x509.X509SubjectKeyIdentifierCriterion: Get the subject key identifier.
getSubjectKeyIdentifier(X509Certificate) - Static method in class org.opensaml.security.x509.X509Support: Get the plain (non-DER encoded) value of the Subject Key Identifier extension of an X.509 certificate, if present.
getSubjectName() - Method in class org.opensaml.security.x509.X509SubjectNameCriterion: Get the subject name.
getSubjectNames(X509Certificate, Integer[]) - Static method in class org.opensaml.security.x509.X509Support: Gets the common name components of the issuer and all the subject alt names of a given type.
getTLSCipherSuites() - Method in interface org.opensaml.security.httpclient.HttpClientSecurityConfiguration: Get the optional list of TLS cipher suites.
getTLSCipherSuites() - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Get the optional list of TLS cipher suites.
getTLSCriteriaSet() - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Get the optional criteria set used in evaluating server TLS credentials.
getTLSCriteriaSetStrategy() - Method in class org.opensaml.security.messaging.HttpClientSecurityContext: Get the TLS criteria strategy function.
getTLSProtocols() - Method in interface org.opensaml.security.httpclient.HttpClientSecurityConfiguration: Get the optional list of TLS protocols.
getTLSProtocols() - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Get the optional list of TLS protocols.
getTLSTrustEngine() - Method in interface org.opensaml.security.httpclient.HttpClientSecurityConfiguration: Sets the optional trust engine used in evaluating server TLS credentials.
getTLSTrustEngine() - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Sets the optional trust engine used in evaluating server TLS credentials.
getTrustedNames() - Method in class org.opensaml.security.x509.TrustedNamesCriterion: Get the set of trusted names.
getUsage() - Method in class org.opensaml.security.criteria.UsageCriterion: Get the key usage criteria.
getUsageType() - Method in class org.opensaml.security.credential.AbstractCredential: Gets usage type of this credential.
getUsageType() - Method in interface org.opensaml.security.credential.Credential: Gets usage type of this credential.
getValidationParameters() - Method in class org.opensaml.security.messaging.ClientTLSSecurityParametersContext: Get an instance of ClientTLSValidationParameters.
getValue() - Method in enum org.opensaml.security.credential.UsageType: Get the enum string value.
getVerificationDepth() - Method in interface org.opensaml.security.x509.PKIXValidationInformation: Gets the maximum allowable trust chain verification depth.
getX500DNHandler() - Method in class org.opensaml.security.x509.tls.CertificateNameOptions: Get the handler responsible for serializing X.500 names to strings from certificate-derived X500Principal instances.
getX500SubjectDNFormat() - Method in class org.opensaml.security.x509.tls.CertificateNameOptions: Get the format specifier for serializing X.500 subject names to strings.
getX509Digest(X509Certificate, String) - Static method in class org.opensaml.security.x509.X509Support: Get the XML Signature-compliant digest of an X.509 certificate.
getX509TrustEngine() - Method in interface org.opensaml.security.x509.tls.ClientTLSValidationConfiguration: Get a TrustEngine instance used to validate a client TLS X509Credential.
getX509TrustEngine() - Method in class org.opensaml.security.x509.tls.ClientTLSValidationParameters: Get a TrustEngine instance used to validate a client TLS X509Credential.

H

hashCode() - Method in class org.opensaml.security.criteria.KeyAlgorithmCriterion
hashCode() - Method in class org.opensaml.security.criteria.KeyLengthCriterion
hashCode() - Method in class org.opensaml.security.criteria.KeyNameCriterion
hashCode() - Method in class org.opensaml.security.criteria.PeerEntityIDCriterion
hashCode() - Method in class org.opensaml.security.criteria.PublicKeyCriterion
hashCode() - Method in class org.opensaml.security.criteria.UsageCriterion
hashCode() - Method in class org.opensaml.security.httpclient.HttpClientSecurityConfigurationCriterion
hashCode() - Method in class org.opensaml.security.httpclient.TLSCriteriaSetCriterion
hashCode() - Method in class org.opensaml.security.x509.tls.ClientTLSValidationConfigurationCriterion
hashCode() - Method in class org.opensaml.security.x509.TrustedNamesCriterion
hashCode() - Method in class org.opensaml.security.x509.X509DigestCriterion
hashCode() - Method in class org.opensaml.security.x509.X509IssuerSerialCriterion
hashCode() - Method in class org.opensaml.security.x509.X509SubjectKeyIdentifierCriterion
hashCode() - Method in class org.opensaml.security.x509.X509SubjectNameCriterion
HMAC_MD5 - Static variable in class org.opensaml.security.crypto.JCAConstants: MAC algorithm: "HmacMD5".
HMAC_RIPEMD160 - Static variable in class org.opensaml.security.crypto.JCAConstants: MAC algorithm: "HMACRIPEMD160".
HMAC_SHA1 - Static variable in class org.opensaml.security.crypto.JCAConstants: MAC algorithm: "HmacSHA1".
HMAC_SHA224 - Static variable in class org.opensaml.security.crypto.JCAConstants: MAC algorithm: "HmacSHA224".
HMAC_SHA256 - Static variable in class org.opensaml.security.crypto.JCAConstants: MAC algorithm: "HmacSHA256".
HMAC_SHA384 - Static variable in class org.opensaml.security.crypto.JCAConstants: MAC algorithm: "HmacSHA384".
HMAC_SHA512 - Static variable in class org.opensaml.security.crypto.JCAConstants: MAC algorithm: "HmacSHA512".
hostnameVerifier - Variable in class org.opensaml.security.httpclient.HttpClientSecurityParameters: The hostname verifier.
HttpClientSecurityConfiguration - Interface in org.opensaml.security.httpclient: The security configuration information to use when performing HTTP client requests.
HttpClientSecurityConfigurationCriterion - Class in org.opensaml.security.httpclient: Criterion which holds one or more instances of HttpClientSecurityConfiguration.
HttpClientSecurityConfigurationCriterion(List<HttpClientSecurityConfiguration>) - Constructor for class org.opensaml.security.httpclient.HttpClientSecurityConfigurationCriterion: Constructor.
HttpClientSecurityConfigurationCriterion(HttpClientSecurityConfiguration...) - Constructor for class org.opensaml.security.httpclient.HttpClientSecurityConfigurationCriterion: Constructor.
HttpClientSecurityConstants - Class in org.opensaml.security.httpclient: Security-related constants for use with Apache HttpClient.
HttpClientSecurityConstants() - Constructor for class org.opensaml.security.httpclient.HttpClientSecurityConstants: Constructor.
HttpClientSecurityContext - Class in org.opensaml.security.messaging: A context implementation holding parameters related to HttpClient security features.
HttpClientSecurityContext() - Constructor for class org.opensaml.security.messaging.HttpClientSecurityContext
HttpClientSecurityContextHandler - Class in org.opensaml.security.httpclient: An HttpClientContextHandler that supports this package's security capabilities.
HttpClientSecurityContextHandler() - Constructor for class org.opensaml.security.httpclient.HttpClientSecurityContextHandler
httpClientSecurityParameters - Variable in class org.opensaml.security.httpclient.HttpClientSecurityContextHandler: HTTP client security parameters.
HttpClientSecurityParameters - Class in org.opensaml.security.httpclient: Parameters related to HttpClient request security features.
HttpClientSecurityParameters() - Constructor for class org.opensaml.security.httpclient.HttpClientSecurityParameters
HttpClientSecurityParametersResolver - Interface in org.opensaml.security.httpclient: An interface for components which resolve HttpClientSecurityParameters based on a CriteriaSet.
HttpClientSecuritySupport - Class in org.opensaml.security.httpclient: Support class for working with HttpClient security features.
HttpClientSecuritySupport() - Constructor for class org.opensaml.security.httpclient.HttpClientSecuritySupport: Constructor.

I

InternalX500DNHandler - Class in org.opensaml.security.x509: Basic implementation of X500DNHandler which uses the internal built-in mechanisms provided by X500Principal directly.
InternalX500DNHandler() - Constructor for class org.opensaml.security.x509.InternalX500DNHandler
invokeAfter(HttpClientContext, HttpUriRequest) - Method in class org.opensaml.security.httpclient.HttpClientSecurityContextHandler
invokeBefore(HttpClientContext, HttpUriRequest) - Method in class org.opensaml.security.httpclient.HttpClientSecurityContextHandler
IP_ADDRESS_ALT_NAME - Static variable in class org.opensaml.security.x509.X509Support: RFC 2459 IP Address Subject Alt Name type.
isEvaluateClientCertificate() - Method in class org.opensaml.security.messaging.ClientTLSSecurityParametersContext: Determine whether to evaluate the certificate presented by the TLS client.
isProcessCredentialCRLs() - Method in class org.opensaml.security.x509.PKIXValidationOptions: Whether CRLs supplied within the untrusted X509Credential being evaluated should be processed.
isProcessEmptyCRLs() - Method in class org.opensaml.security.x509.PKIXValidationOptions: Whether empty CRLs should be processed.
isProcessExpiredCRLs() - Method in class org.opensaml.security.x509.PKIXValidationOptions: Whether expired CRLs should be processed.
isServerTLSFailureFatal() - Method in interface org.opensaml.security.httpclient.HttpClientSecurityConfiguration: Get the flag indicating whether failure of server TLS trust engine evaluation should be treated as a fatal error.
isServerTLSFailureFatal() - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Get the flag indicating whether failure of server TLS trust engine evaluation should be treated as a fatal error.
issuerName - Variable in class org.opensaml.security.x509.X509IssuerSerialCriterion: X.509 certificate issuer name.

J

JCAConstants - Class in org.opensaml.security.crypto: Various useful constants defined in and/or used with the Java Cryptography Architecture (JCA) specification.
JCAConstants() - Constructor for class org.opensaml.security.crypto.JCAConstants: Constructor.

K

KEY_ALGO_AES - Static variable in class org.opensaml.security.crypto.JCAConstants: Key algorithm: "AES".
KEY_ALGO_DES - Static variable in class org.opensaml.security.crypto.JCAConstants: Key algorithm: "DES".
KEY_ALGO_DESEDE - Static variable in class org.opensaml.security.crypto.JCAConstants: Key algorithm: "DESede".
KEY_ALGO_DSA - Static variable in class org.opensaml.security.crypto.JCAConstants: Key algorithm: "DSA".
KEY_ALGO_EC - Static variable in class org.opensaml.security.crypto.JCAConstants: Key algorithm: "EC".
KEY_ALGO_RSA - Static variable in class org.opensaml.security.crypto.JCAConstants: Key algorithm: "RSA".
KEY_FORMAT_RAW - Static variable in class org.opensaml.security.crypto.JCAConstants: Key format: "RAW".
keyAlgorithm - Variable in class org.opensaml.security.criteria.KeyAlgorithmCriterion: Key algorithm type of resolved credentials.
KeyAlgorithmCriterion - Class in org.opensaml.security.criteria: An implementation of Criterion which specifies key algorithm criteria.
KeyAlgorithmCriterion(String) - Constructor for class org.opensaml.security.criteria.KeyAlgorithmCriterion: Constructor.
keyLength - Variable in class org.opensaml.security.criteria.KeyLengthCriterion: Key length of resolved credentials.
KeyLengthCriterion - Class in org.opensaml.security.criteria: An implementation of Criterion which specifies key length criteria.
KeyLengthCriterion(Integer) - Constructor for class org.opensaml.security.criteria.KeyLengthCriterion: Constructor.
keyMatchAlgorithms - Static variable in class org.opensaml.security.crypto.KeySupport: Maps key algorithms to the signing algorithm used in the key matching function.
keyName - Variable in class org.opensaml.security.criteria.KeyNameCriterion: Key name of resolved credentials.
KeyNameCriterion - Class in org.opensaml.security.criteria: An implementation of Criterion which specifies key name criteria.
KeyNameCriterion(String) - Constructor for class org.opensaml.security.criteria.KeyNameCriterion: Constructor.
keyNames - Variable in class org.opensaml.security.credential.AbstractCredential: Key names for this credential.
KeySupport - Class in org.opensaml.security.crypto: Helper methods for cryptographic keys and key pairs.
KeySupport() - Constructor for class org.opensaml.security.crypto.KeySupport: Constructor.
KEYWRAP_ALGO_AES - Static variable in class org.opensaml.security.crypto.JCAConstants: Symmetric key wrap algorithm: "AESWrap".
KEYWRAP_ALGO_DESEDE - Static variable in class org.opensaml.security.crypto.JCAConstants: Symmetric key wrap algorithm: "DESedeWrap".

L

LOG - Static variable in class org.opensaml.security.httpclient.HttpClientSecuritySupport: Logger.

M

marshalSecurityParameters(HttpClientContext, HttpClientSecurityParameters) - Static method in class org.opensaml.security.httpclient.HttpClientSecuritySupport: Marshal the supplied HttpClientSecurityParameters to the supplied HttpClientContext.
marshalSecurityParameters(HttpClientContext, HttpClientSecurityParameters, boolean) - Static method in class org.opensaml.security.httpclient.HttpClientSecuritySupport: Marshal the supplied HttpClientSecurityParameters to the supplied HttpClientContext.
matchKeyPair(PublicKey, PrivateKey) - Static method in class org.opensaml.security.crypto.KeySupport: Compare the supplied public and private keys, and determine if they correspond to the same key pair.
MutableCredential - Interface in org.opensaml.security.credential: A specialization of Credential which supports mutation of its properties.

O

org.opensaml.security - package org.opensaml.security: Interfaces and classes used in representing cryptographic credentials, evaluating the trustworthiness of security of tokens, etc.
org.opensaml.security.credential - package org.opensaml.security.credential: Interfaces and classes related to credentials and ways to represent them.
org.opensaml.security.criteria - package org.opensaml.security.criteria: Classes which model lookup criteria used as input to a Resolver.
org.opensaml.security.crypto - package org.opensaml.security.crypto: General cryptographic functionality.
org.opensaml.security.httpclient - package org.opensaml.security.httpclient: Security API support for Apache HttpClient.
org.opensaml.security.messaging - package org.opensaml.security.messaging: Messaging-related security classes.
org.opensaml.security.trust - package org.opensaml.security.trust: Interfaces and classes used to evaluate the trustworthiness and validity of Credentials.
org.opensaml.security.x509 - package org.opensaml.security.x509: X.509-based credential and trust classes.
org.opensaml.security.x509.tls - package org.opensaml.security.x509.tls: TLS security functionality.
OTHER_ALT_NAME - Static variable in class org.opensaml.security.x509.X509Support: RFC 2459 Other Subject Alt Name type.

P

parse(String) - Method in class org.opensaml.security.x509.InternalX500DNHandler: Parse the string representation of a name and build a new principal instance.
parse(byte[]) - Method in class org.opensaml.security.x509.InternalX500DNHandler: Parse the ASN.1 DER encoding representation of a name and build a new principal instance.
parse(String) - Method in interface org.opensaml.security.x509.X500DNHandler: Parse the string representation of a name and build a new principal instance.
parse(byte[]) - Method in interface org.opensaml.security.x509.X500DNHandler: Parse the ASN.1 DER encoding representation of a name and build a new principal instance.
PeerEntityIDCriterion - Class in org.opensaml.security.criteria: An implementation of Criterion which specifies criteria pertaining to peer entity IDs.
PeerEntityIDCriterion(String) - Constructor for class org.opensaml.security.criteria.PeerEntityIDCriterion: Constructor.
peerID - Variable in class org.opensaml.security.criteria.PeerEntityIDCriterion: Peer entity ID criteria.
PKIXTrustEngine<TokenType> - Interface in org.opensaml.security.x509: Trust engine that validates tokens using PKIX validation.
PKIXTrustEvaluator - Interface in org.opensaml.security.x509: An interface for classes which evaluate an X509Credential against a set of trusted PKIXValidationInformation, using PKIX validation rules.
PKIXValidationInformation - Interface in org.opensaml.security.x509: Source of PKIX validation information such as trust anchors and CRLs.
PKIXValidationInformationResolver - Interface in org.opensaml.security.x509: A resolver which uses Criterion to resolve PKIXValidationInformation, which will typically be used by PKIX-based trust engines.
PKIXValidationOptions - Class in org.opensaml.security.x509: Options which may be supplied to influence the processing behavior of a PKIXTrustEvaluator.
PKIXValidationOptions() - Constructor for class org.opensaml.security.x509.PKIXValidationOptions: Constructor.
privateKey - Variable in class org.opensaml.security.credential.AbstractCredential: Private key of this credential.
processCredentialCRLs - Variable in class org.opensaml.security.x509.PKIXValidationOptions: Flag as to whether CRLs supplied in the untrusted credential being evaluated will be processed.
processEmptyCRLs - Variable in class org.opensaml.security.x509.PKIXValidationOptions: Flag as to whether empty CRLs will be processed.
processExpiredCRLs - Variable in class org.opensaml.security.x509.PKIXValidationOptions: Flag as to whether expired CRLs will be processed.
publicKey - Variable in class org.opensaml.security.credential.AbstractCredential: Public key of this credential.
publicKey - Variable in class org.opensaml.security.criteria.PublicKeyCriterion: Specifier of public key associated with resolved credentials.
PublicKeyCriterion - Class in org.opensaml.security.criteria: An implementation of Criterion which specifies public key criteria.
PublicKeyCriterion(PublicKey) - Constructor for class org.opensaml.security.criteria.PublicKeyCriterion: Constructor.

R

REGISTERED_ID_ALT_NAME - Static variable in class org.opensaml.security.x509.X509Support: RFC 2459 Registered ID Subject Alt Name type.
resolveTrustedNames(CriteriaSet) - Method in interface org.opensaml.security.x509.PKIXValidationInformationResolver: Resolve a set of trusted names associated with the entity indicated by the criteria.
RFC822_ALT_NAME - Static variable in class org.opensaml.security.x509.X509Support: RFC 2459 RFC 822 (email address) Subject Alt Name type.

S

secretKey - Variable in class org.opensaml.security.credential.AbstractCredential: Secret key for this credential.
SecurityException - Exception in org.opensaml.security: Base exception for security related errors.
SecurityException() - Constructor for exception org.opensaml.security.SecurityException: Constructor.
SecurityException(String) - Constructor for exception org.opensaml.security.SecurityException: Constructor.
SecurityException(Exception) - Constructor for exception org.opensaml.security.SecurityException: Constructor.
SecurityException(String, Exception) - Constructor for exception org.opensaml.security.SecurityException: Constructor.
securityParameters - Variable in class org.opensaml.security.messaging.HttpClientSecurityContext: The HttpClient security parameters instance.
serialNumber - Variable in class org.opensaml.security.x509.X509IssuerSerialCriterion: X.509 certificate serial number.
serialVersionUID - Static variable in exception org.opensaml.security.SecurityException: Serial version UID.
serverTLSFailureFatal - Variable in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Flag indicating whether failure of server TLS trust engine evaluation should be treated as a fatal error.
ServletRequestX509CredentialAdapter - Class in org.opensaml.security.messaging: An adapter that exposes the X.509 certificates contained in the servlet request attribute.
ServletRequestX509CredentialAdapter(ServletRequest) - Constructor for class org.opensaml.security.messaging.ServletRequestX509CredentialAdapter: Constructor.
setAlgorithm(String) - Method in class org.opensaml.security.x509.X509DigestCriterion: Set the digest algorithm.
setAuthCache(AuthCache) - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Set an instance of AuthCache used for authentication by the HttpClient instance.
setBasicCredentials(UsernamePasswordCredentials) - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: A convenience method to set a (single) username and password used for BASIC authentication.
setBasicCredentialsWithScope(UsernamePasswordCredentials, AuthScope) - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: A convenience method to set a (single) username and password used for BASIC authentication.
setCertificateNameOptions(CertificateNameOptions) - Method in class org.opensaml.security.x509.tls.ClientTLSValidationParameters: Set a CertificateNameOptions instance to use when evaluating a client TLS X509Credential.
setClientTLSCredential(X509Credential) - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Set the optional client TLS credential.
setContextValue(HttpClientContext, String, Object, boolean) - Static method in class org.opensaml.security.httpclient.HttpClientSecuritySupport: Set the supplied attribute value in the client context.
setCredentialsProvider(CredentialsProvider) - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Set an instance of CredentialsProvider used for authentication by the HttpClient instance.
setCRLs(Collection<X509CRL>) - Method in class org.opensaml.security.x509.BasicX509Credential: Sets the CRLs for this credential.
setDefaultVerificationDepth(Integer) - Method in class org.opensaml.security.x509.PKIXValidationOptions: The default PKIX maximum path verification depth, if not supplied in the PKIXValidationInformation being evaluated.
setDigest(byte[]) - Method in class org.opensaml.security.x509.X509DigestCriterion: Set the certificate digest.
setEntityCertificate(X509Certificate) - Method in class org.opensaml.security.x509.BasicX509Credential: Sets the entity certificate for this credential.
setEntityCertificateChain(Collection<X509Certificate>) - Method in class org.opensaml.security.x509.BasicX509Credential: Sets the entity certificate chain for this credential.
setEntityId(String) - Method in class org.opensaml.security.credential.AbstractCredential: Sets the ID of the entity this credential is for.
setEntityId(String) - Method in class org.opensaml.security.credential.BasicCredential: Sets the ID of the entity this credential is for.
setEntityId(String) - Method in interface org.opensaml.security.credential.MutableCredential: Sets the ID of the entity this credential is for.
setEvaluateClientCertificate(boolean) - Method in class org.opensaml.security.messaging.ClientTLSSecurityParametersContext: Set whether to evaluate the certificate presented by the TLS client.
setEvaluateSubjectCommonName(boolean) - Method in class org.opensaml.security.x509.tls.CertificateNameOptions: Set whether to evaluate the certificate subject DN's common name (CN) as a derived issuer entity ID.
setEvaluateSubjectDN(boolean) - Method in class org.opensaml.security.x509.tls.CertificateNameOptions: Set whether to evaluate the certificate subject DN as a derived issuer entity ID.
setHostnameVerifier(X509HostnameVerifier) - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Set the optional hostname verifier.
setHttpClientSecurityParameters(HttpClientSecurityParameters) - Method in class org.opensaml.security.httpclient.HttpClientSecurityContextHandler: Set the optional client security parameters.
setIssuerName(X500Principal) - Method in class org.opensaml.security.x509.X509IssuerSerialCriterion: Set the issuer name.
setKeyAlgorithm(String) - Method in class org.opensaml.security.criteria.KeyAlgorithmCriterion: Set the key algorithm criteria.
setKeyLength(Integer) - Method in class org.opensaml.security.criteria.KeyLengthCriterion: Set the key length.
setKeyName(String) - Method in class org.opensaml.security.criteria.KeyNameCriterion: Set the key name criteria.
setPeerID(String) - Method in class org.opensaml.security.criteria.PeerEntityIDCriterion: Set the entity ID which is the peer relative to a primary entity ID.
setPrivateKey(PrivateKey) - Method in class org.opensaml.security.credential.AbstractCredential: Sets the private key for this credential.
setPrivateKey(PrivateKey) - Method in class org.opensaml.security.credential.BasicCredential: Sets the private key for this credential.
setPrivateKey(PrivateKey) - Method in interface org.opensaml.security.credential.MutableCredential: Sets the private key for this credential.
setProcessCredentialCRLs(boolean) - Method in class org.opensaml.security.x509.PKIXValidationOptions: Whether CRLs supplied within the untrusted X509Credential being evaluated should be processed.
setProcessEmptyCRLs(boolean) - Method in class org.opensaml.security.x509.PKIXValidationOptions: Whether empty CRLs should be processed.
setProcessExpiredCRLs(boolean) - Method in class org.opensaml.security.x509.PKIXValidationOptions: Whether expired CRLs should be processed.
setPublicKey(PublicKey) - Method in class org.opensaml.security.credential.AbstractCredential: Sets the public key for this credential.
setPublicKey(PublicKey) - Method in class org.opensaml.security.credential.BasicCredential: Sets the public key for this credential.
setPublicKey(PublicKey) - Method in interface org.opensaml.security.credential.MutableCredential: Sets the public key for this credential.
setPublicKey(PublicKey) - Method in class org.opensaml.security.criteria.PublicKeyCriterion: Set the public key criteria.
setPublicKey(PublicKey) - Method in class org.opensaml.security.x509.BasicX509Credential: This operation is unsupported for X.509 credentials.
setSecretKey(SecretKey) - Method in class org.opensaml.security.credential.AbstractCredential: Sets the secret key for this credential.
setSecretKey(SecretKey) - Method in class org.opensaml.security.credential.BasicCredential: Sets the secret key for this credential.
setSecretKey(SecretKey) - Method in interface org.opensaml.security.credential.MutableCredential: Sets the secret key for this credential.
setSecretKey(SecretKey) - Method in class org.opensaml.security.x509.BasicX509Credential: This operation is unsupported for X.509 credentials.
setSecurityParameters(HttpClientSecurityParameters) - Method in class org.opensaml.security.messaging.HttpClientSecurityContext: Set the HttpClientSecurityParameters instance.
setSerialNumber(BigInteger) - Method in class org.opensaml.security.x509.X509IssuerSerialCriterion: Set the serial number.
setServerTLSFailureFatal(Boolean) - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Set the flag indicating whether failure of server TLS trust engine evaluation should be treated as a fatal error.
setSubjectAltNames(Set<Integer>) - Method in class org.opensaml.security.x509.tls.CertificateNameOptions: Set the set of types of subject alternative names evaluate as derived issuer entity ID names, using integer constants defined in X509Support.
setSubjectKeyIdentifier(byte[]) - Method in class org.opensaml.security.x509.X509SubjectKeyIdentifierCriterion: Set the subject key identifier.
setSubjectName(X500Principal) - Method in class org.opensaml.security.x509.X509SubjectNameCriterion: Set the subject name.
setTLSCipherSuites(Collection<String>) - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Set the optional list of TLS cipher suites.
setTLSCriteriaSet(CriteriaSet) - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Set the optional criteria set used in evaluating server TLS credentials.
setTLSCriteriaSetStrategy(Function<MessageContext<?>, CriteriaSet>) - Method in class org.opensaml.security.messaging.HttpClientSecurityContext: Set the TLS criteria strategy function.
setTLSProtocols(Collection<String>) - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Set the optional list of TLS protocols.
setTLSTrustEngine(TrustEngine<? super X509Credential>) - Method in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Sets the optional trust engine used in evaluating server TLS credentials.
setTrustedNames(Set<String>) - Method in class org.opensaml.security.x509.TrustedNamesCriterion: Set the set of trusted names.
setUsage(UsageType) - Method in class org.opensaml.security.criteria.UsageCriterion: Set the key usage criteria.
setUsageType(UsageType) - Method in class org.opensaml.security.credential.AbstractCredential: Sets the usage type for this credential.
setUsageType(UsageType) - Method in class org.opensaml.security.credential.BasicCredential: Sets the usage type for this credential.
setUsageType(UsageType) - Method in interface org.opensaml.security.credential.MutableCredential: Sets the usage type for this credential.
setValidationParameters(ClientTLSValidationParameters) - Method in class org.opensaml.security.messaging.ClientTLSSecurityParametersContext: Set an instance of ClientTLSValidationParameters.
setX500DNHandler(X500DNHandler) - Method in class org.opensaml.security.x509.tls.CertificateNameOptions: Set the handler responsible for serializing X.500 names to strings from certificate-derived X500Principal instances.
setX500SubjectDNFormat(String) - Method in class org.opensaml.security.x509.tls.CertificateNameOptions: Set the format specifier for serializing X.500 subject names to strings.
setX509TrustEngine(TrustEngine<? super X509Credential>) - Method in class org.opensaml.security.x509.tls.ClientTLSValidationParameters: Set a TrustEngine instance used to validate a client TLS X509Credential.
sign(Credential, String, boolean, byte[]) - Static method in class org.opensaml.security.crypto.SigningUtil: Compute the signature or MAC value over the supplied input.
sign(PrivateKey, String, byte[]) - Static method in class org.opensaml.security.crypto.SigningUtil: Compute the raw signature value over the supplied input.
SIGNATURE_DSA_SHA1 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA1withDSA".
SIGNATURE_DSA_SHA224 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA224withDSA".
SIGNATURE_DSA_SHA256 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA256withDSA".
SIGNATURE_ECDSA_SHA1 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA1withECDSA".
SIGNATURE_ECDSA_SHA224 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA224withECDSA".
SIGNATURE_ECDSA_SHA256 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA256withECDSA".
SIGNATURE_ECDSA_SHA384 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA384withECDSA".
SIGNATURE_ECDSA_SHA512 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA512withECDSA".
SIGNATURE_RSA_MD5 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "MD5withRSA".
SIGNATURE_RSA_RIPEMD160 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "RIPEMD160withRSA".
SIGNATURE_RSA_SHA1 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA1withRSA".
SIGNATURE_RSA_SHA224 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA224withRSA".
SIGNATURE_RSA_SHA256 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA256withRSA".
SIGNATURE_RSA_SHA384 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA384withRSA".
SIGNATURE_RSA_SHA512 - Static variable in class org.opensaml.security.crypto.JCAConstants: Signature algorithm: "SHA512withRSA".
SigningUtil - Class in org.opensaml.security.crypto: A utility class for computing and verifying raw signatures and MAC values.
SigningUtil() - Constructor for class org.opensaml.security.crypto.SigningUtil: Constructor.
signMAC(Key, String, byte[]) - Static method in class org.opensaml.security.crypto.SigningUtil: Compute the Message Authentication Code (MAC) value over the supplied input.
SKI_OID - Static variable in class org.opensaml.security.x509.X509Support: Subject Key Identifier (SKI) OID.
subjectAltNames - Variable in class org.opensaml.security.x509.tls.CertificateNameOptions: The set of types of subject alternative names evaluate as derived issuer entity ID names.
subjectKeyIdentifier - Variable in class org.opensaml.security.x509.X509SubjectKeyIdentifierCriterion: X.509 certificate subject key identifier.
subjectName - Variable in class org.opensaml.security.x509.X509SubjectNameCriterion: X.509 certificate subject name.
supportsTrustedNameResolution() - Method in interface org.opensaml.security.x509.PKIXValidationInformationResolver: Check whether resolution of trusted names is supported.

T

tlsCipherSuites - Variable in class org.opensaml.security.httpclient.HttpClientSecurityParameters: TLS cipher suites.
tlsCriteriaSet - Variable in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Optional criteria set used in evaluating server TLS credentials.
TLSCriteriaSetCriterion - Class in org.opensaml.security.httpclient: An implementation of Criterion which specifies criteria pertaining usage of the resolved credential.
TLSCriteriaSetCriterion(CriteriaSet) - Constructor for class org.opensaml.security.httpclient.TLSCriteriaSetCriterion: Constructor.
tlsCriteriaSetStrategy - Variable in class org.opensaml.security.messaging.HttpClientSecurityContext: TLS criteria strategy function.
tlsProtocols - Variable in class org.opensaml.security.httpclient.HttpClientSecurityParameters: TLS Protocols.
tlsTrustEngine - Variable in class org.opensaml.security.httpclient.HttpClientSecurityParameters: Optional trust engine used in evaluating server TLS credentials.
toString() - Method in class org.opensaml.security.criteria.KeyAlgorithmCriterion
toString() - Method in class org.opensaml.security.criteria.KeyLengthCriterion
toString() - Method in class org.opensaml.security.criteria.KeyNameCriterion
toString() - Method in class org.opensaml.security.criteria.PeerEntityIDCriterion
toString() - Method in class org.opensaml.security.criteria.PublicKeyCriterion
toString() - Method in class org.opensaml.security.criteria.UsageCriterion
toString() - Method in class org.opensaml.security.httpclient.HttpClientSecurityConfigurationCriterion
toString() - Method in class org.opensaml.security.httpclient.TLSCriteriaSetCriterion
toString() - Method in class org.opensaml.security.x509.tls.ClientTLSValidationConfigurationCriterion
toString() - Method in class org.opensaml.security.x509.TrustedNamesCriterion
toString() - Method in class org.opensaml.security.x509.X509DigestCriterion
toString() - Method in class org.opensaml.security.x509.X509IssuerSerialCriterion
toString() - Method in class org.opensaml.security.x509.X509SubjectKeyIdentifierCriterion
toString() - Method in class org.opensaml.security.x509.X509SubjectNameCriterion
TrustedCredentialTrustEngine<TokenType> - Interface in org.opensaml.security.trust: Evaluates the trustworthiness and validity of a token against implementation-specific requirements based on trusted credentials obtained via a credential resolver.
trustedNames - Variable in class org.opensaml.security.x509.TrustedNamesCriterion: The set of trusted names.
TrustedNamesCriterion - Class in org.opensaml.security.x509: A criterion implementation for conveying a dynamically-generated set of trusted names for PKIX validation purposes.
TrustedNamesCriterion(Set<String>) - Constructor for class org.opensaml.security.x509.TrustedNamesCriterion: Constructor.
TrustEngine<TokenType> - Interface in org.opensaml.security.trust: Evaluates the trustworthiness and validity of a token against implementation-specific requirements.

U

URI_ALT_NAME - Static variable in class org.opensaml.security.x509.X509Support: RFC 2459 URI Subject Alt Name type.
UsageCriterion - Class in org.opensaml.security.criteria: An implementation of Criterion which specifies criteria pertaining usage of the resolved credential.
UsageCriterion(UsageType) - Constructor for class org.opensaml.security.criteria.UsageCriterion: Constructor.
usageType - Variable in class org.opensaml.security.credential.AbstractCredential: Usage type of this credential.
UsageType - Enum in org.opensaml.security.credential: Credential usage types.
UsageType(String) - Constructor for enum org.opensaml.security.credential.UsageType: Constructor.

V

validate(TokenType, CriteriaSet) - Method in interface org.opensaml.security.trust.TrustEngine: Validates the token against trusted information obtained in an implementation-specific manner.
validate(PKIXValidationInformation, X509Credential) - Method in interface org.opensaml.security.x509.PKIXTrustEvaluator: Validate the specified credential against the specified set of trusted validation information.
validationParameters - Variable in class org.opensaml.security.messaging.ClientTLSSecurityParametersContext: A ClientTLSValidationParameters instance.
value - Variable in enum org.opensaml.security.credential.UsageType: Enum string value.
valueOf(String) - Static method in enum org.opensaml.security.credential.UsageType: Returns the enum constant of this type with the specified name.
values() - Static method in enum org.opensaml.security.credential.UsageType: Returns an array containing the constants of this enum type, in the order they are declared.
verify(Credential, String, boolean, byte[], byte[]) - Static method in class org.opensaml.security.crypto.SigningUtil: Verify the signature value computed over the supplied input against the supplied signature value.
verify(PublicKey, String, byte[], byte[]) - Static method in class org.opensaml.security.crypto.SigningUtil: Verify the signature value computed over the supplied input against the supplied signature value.
verifyMAC(Key, String, byte[], byte[]) - Static method in class org.opensaml.security.crypto.SigningUtil: Verify the Message Authentication Code (MAC) value computed over the supplied input against the supplied MAC value.

X

X400ADDRESS_ALT_NAME - Static variable in class org.opensaml.security.x509.X509Support: RFC 2459 X.400 Address Subject Alt Name type.
x500DNHandler - Variable in class org.opensaml.security.x509.tls.CertificateNameOptions: Responsible for serializing X.500 names to strings from certificate-derived X500Principal instances.
X500DNHandler - Interface in org.opensaml.security.x509: Interface for implementations which handle parsing and serialization of X.500 names represented by X500Principal.
x500SubjectDNFormat - Variable in class org.opensaml.security.x509.tls.CertificateNameOptions: The format specifier for serializing X.500 subject names to strings.
X509_CERT_REQUEST_ATTRIBUTE - Static variable in class org.opensaml.security.messaging.ServletRequestX509CredentialAdapter: Servlet request attribute to pull certificate info from.
X509Credential - Interface in org.opensaml.security.x509: An entity credential based on key material and other information (e.g.
x509digest - Variable in class org.opensaml.security.x509.X509DigestCriterion: X.509 certificate digest.
X509DigestCriterion - Class in org.opensaml.security.x509: An implementation of Criterion which specifies criteria based on the digest of an X.509 certificate.
X509DigestCriterion(String, byte[]) - Constructor for class org.opensaml.security.x509.X509DigestCriterion: Constructor.
X509IssuerSerialCriterion - Class in org.opensaml.security.x509: An implementation of Criterion which specifies criteria based on X.509 certificate issuer name and serial number.
X509IssuerSerialCriterion(X500Principal, BigInteger) - Constructor for class org.opensaml.security.x509.X509IssuerSerialCriterion: Constructor.
X509SubjectKeyIdentifierCriterion - Class in org.opensaml.security.x509: An implementation of Criterion which specifies criteria based on X.509 certificate subject key identifier.
X509SubjectKeyIdentifierCriterion(byte[]) - Constructor for class org.opensaml.security.x509.X509SubjectKeyIdentifierCriterion: Constructor.
X509SubjectNameCriterion - Class in org.opensaml.security.x509: An implementation of Criterion which specifies criteria based on X.509 certificate subject name.
X509SubjectNameCriterion(X500Principal) - Constructor for class org.opensaml.security.x509.X509SubjectNameCriterion: Constructor.
X509Support - Class in org.opensaml.security.x509: Utility class for working with X509 objects.
X509Support() - Constructor for class org.opensaml.security.x509.X509Support: Constructed.
x509TrustEngine - Variable in class org.opensaml.security.x509.tls.ClientTLSValidationParameters: A TrustEngine instance used to validate a client TLS X509Credential.

A B C D E F G H I J K L M O P R S T U V X