public class XMLSecurityProperties extends Object
| Modifier | Constructor and Description |
|---|---|
|
XMLSecurityProperties() |
protected |
XMLSecurityProperties(XMLSecurityProperties xmlSecurityProperties) |
| Modifier and Type | Method and Description |
|---|---|
void |
addAction(XMLSecurityConstants.Action action) |
void |
addEncryptionPart(SecurePart securePart)
Adds a part which must be encrypted by the framework
|
void |
addInputProcessor(InputProcessor inputProcessor)
Add an additional, non standard, InputProcessor to the chain
|
void |
addKeyNameMapping(String keyname,
Key key) |
void |
addSignaturePart(SecurePart securePart) |
List<XMLSecurityConstants.Action> |
getActions()
Returns the actual set actions
|
AlgorithmParameterSpec |
getAlgorithmParameterSpec() |
Key |
getDecryptionKey() |
Key |
getEncryptionKey() |
SecurityTokenConstants.KeyIdentifier |
getEncryptionKeyIdentifier()
returns the KeyIdentifierType which will be used in the secured document
|
String |
getEncryptionKeyName() |
String |
getEncryptionKeyTransportAlgorithm()
Returns the encryption key transport algorithm
|
String |
getEncryptionKeyTransportDigestAlgorithm() |
String |
getEncryptionKeyTransportMGFAlgorithm() |
byte[] |
getEncryptionKeyTransportOAEPParams() |
List<SecurePart> |
getEncryptionSecureParts()
Returns the encryption parts which are actually set
|
String |
getEncryptionSymAlgorithm()
Returns the Encryption-Algo
|
Key |
getEncryptionTransportKey() |
X509Certificate |
getEncryptionUseThisCertificate() |
QName |
getIdAttributeNS()
Return the qualified name of the ID attribute used to sign the document.
|
List<InputProcessor> |
getInputProcessorList()
Returns the currently registered additional InputProcessors
|
Map<String,Key> |
getKeyNameMap()
returns an immutable instance of the map that links KeyName values to actual keys
|
String |
getSignatureAlgorithm() |
String |
getSignatureCanonicalizationAlgorithm() |
X509Certificate[] |
getSignatureCerts() |
String |
getSignatureDigestAlgorithm() |
Key |
getSignatureKey() |
SecurityTokenConstants.KeyIdentifier |
getSignatureKeyIdentifier()
Deprecated.
|
List<SecurityTokenConstants.KeyIdentifier> |
getSignatureKeyIdentifiers() |
String |
getSignatureKeyName() |
int |
getSignaturePosition()
returns the position of the signature.
|
QName |
getSignaturePositionQName() |
List<SecurePart> |
getSignatureSecureParts() |
Key |
getSignatureVerificationKey() |
boolean |
isAddExcC14NInclusivePrefixes() |
boolean |
isDisableSchemaValidation() |
boolean |
isSignatureGenerateIds() |
boolean |
isSignatureIncludeDigestTransform() |
boolean |
isSignaturePositionStart() |
boolean |
isSkipDocumentEvents()
Returns if the framework is skipping document-events
|
boolean |
isUseSingleCert() |
void |
setActions(List<XMLSecurityConstants.Action> actions)
Specifies how to secure the document eg.
|
void |
setAddExcC14NInclusivePrefixes(boolean addExcC14NInclusivePrefixes) |
void |
setAlgorithmParameterSpec(AlgorithmParameterSpec algorithmParameterSpec) |
void |
setDecryptionKey(Key decryptionKey) |
void |
setDisableSchemaValidation(boolean disableSchemaValidation) |
void |
setEncryptionKey(Key encryptionKey) |
void |
setEncryptionKeyIdentifier(SecurityTokenConstants.KeyIdentifier encryptionKeyIdentifier)
Specifies the KeyIdentifierType to use in the secured document
|
void |
setEncryptionKeyName(String encryptionKeyName)
specifies the contents of the KeyInfo/KeyName element for encryption
|
void |
setEncryptionKeyTransportAlgorithm(String encryptionKeyTransportAlgorithm)
Specifies the encryption key transport algorithm
|
void |
setEncryptionKeyTransportDigestAlgorithm(String encryptionKeyTransportDigestAlgorithm) |
void |
setEncryptionKeyTransportMGFAlgorithm(String encryptionKeyTransportMGFAlgorithm) |
void |
setEncryptionKeyTransportOAEPParams(byte[] encryptionKeyTransportOAEPParams) |
void |
setEncryptionSymAlgorithm(String encryptionSymAlgorithm)
Specifies the encryption algorithm
|
void |
setEncryptionTransportKey(Key encryptionTransportKey) |
void |
setEncryptionUseThisCertificate(X509Certificate encryptionUseThisCertificate) |
void |
setIdAttributeNS(QName idAttributeNS)
Sets the qualified name of the ID attribute used to sign the document.
|
void |
setSignatureAlgorithm(String signatureAlgorithm) |
void |
setSignatureCanonicalizationAlgorithm(String signatureCanonicalizationAlgorithm) |
void |
setSignatureCerts(X509Certificate[] signatureCerts) |
void |
setSignatureDigestAlgorithm(String signatureDigestAlgorithm) |
void |
setSignatureGenerateIds(boolean signatureGenerateIds)
specifies if Id attributes should be generated for the document element, the Signature element and KeyInfo structures
|
void |
setSignatureIncludeDigestTransform(boolean signatureIncludeDigestTransform)
specifies if the transform set with signatureDigestAlgorithm should be included in the Reference/Transforms
list
|
void |
setSignatureKey(Key signatureKey) |
void |
setSignatureKeyIdentifier(SecurityTokenConstants.KeyIdentifier signatureKeyIdentifier) |
void |
setSignatureKeyIdentifiers(List<SecurityTokenConstants.KeyIdentifier> signatureKeyIdentifiers) |
void |
setSignatureKeyName(String signatureKeyName)
specifies the contents of the KeyInfo/KeyName element for signing
|
void |
setSignaturePosition(int signaturePosition)
Specifies the position of the signature
|
void |
setSignaturePositionQName(QName signaturePositionQName) |
void |
setSignaturePositionStart(boolean signaturePositionStart) |
void |
setSignatureVerificationKey(Key signatureVerificationKey) |
void |
setSkipDocumentEvents(boolean skipDocumentEvents)
specifies if the framework should forward Document-Events or not
|
void |
setUseSingleCert(boolean useSingleCert) |
public XMLSecurityProperties()
protected XMLSecurityProperties(XMLSecurityProperties xmlSecurityProperties)
public boolean isSignaturePositionStart()
public void setSignaturePositionStart(boolean signaturePositionStart)
@Deprecated public SecurityTokenConstants.KeyIdentifier getSignatureKeyIdentifier()
public List<SecurityTokenConstants.KeyIdentifier> getSignatureKeyIdentifiers()
public void setSignatureKeyIdentifier(SecurityTokenConstants.KeyIdentifier signatureKeyIdentifier)
public void setSignatureKeyIdentifiers(List<SecurityTokenConstants.KeyIdentifier> signatureKeyIdentifiers)
public int getSignaturePosition()
public void setSignaturePosition(int signaturePosition)
signaturePosition - Position of the signature (by default: 0)public QName getIdAttributeNS()
public void setIdAttributeNS(QName idAttributeNS)
idAttributeNS - Qualified Name of the ID attribute to usepublic SecurityTokenConstants.KeyIdentifier getEncryptionKeyIdentifier()
public void setEncryptionKeyIdentifier(SecurityTokenConstants.KeyIdentifier encryptionKeyIdentifier)
encryptionKeyIdentifier - public void addInputProcessor(InputProcessor inputProcessor)
inputProcessor - The InputProcessor to addpublic List<InputProcessor> getInputProcessorList()
public void setDecryptionKey(Key decryptionKey)
public Key getDecryptionKey()
public void setEncryptionTransportKey(Key encryptionTransportKey)
public Key getEncryptionTransportKey()
public void setEncryptionKey(Key encryptionKey)
public Key getEncryptionKey()
public void addEncryptionPart(SecurePart securePart)
securePart - public List<SecurePart> getEncryptionSecureParts()
public String getEncryptionSymAlgorithm()
public void setEncryptionSymAlgorithm(String encryptionSymAlgorithm)
encryptionSymAlgorithm - The algo to use for encryptionpublic String getEncryptionKeyTransportAlgorithm()
public void setEncryptionKeyTransportAlgorithm(String encryptionKeyTransportAlgorithm)
encryptionKeyTransportAlgorithm - the encryption key transport algorithm as stringpublic String getEncryptionKeyTransportDigestAlgorithm()
public void setEncryptionKeyTransportDigestAlgorithm(String encryptionKeyTransportDigestAlgorithm)
public String getEncryptionKeyTransportMGFAlgorithm()
public void setEncryptionKeyTransportMGFAlgorithm(String encryptionKeyTransportMGFAlgorithm)
public byte[] getEncryptionKeyTransportOAEPParams()
public void setEncryptionKeyTransportOAEPParams(byte[] encryptionKeyTransportOAEPParams)
public X509Certificate getEncryptionUseThisCertificate()
public void setEncryptionUseThisCertificate(X509Certificate encryptionUseThisCertificate)
public X509Certificate[] getSignatureCerts()
public void setSignatureCerts(X509Certificate[] signatureCerts)
public void addSignaturePart(SecurePart securePart)
public List<SecurePart> getSignatureSecureParts()
public String getSignatureAlgorithm()
public void setSignatureAlgorithm(String signatureAlgorithm)
public String getSignatureDigestAlgorithm()
public void setSignatureDigestAlgorithm(String signatureDigestAlgorithm)
public void setSignatureKey(Key signatureKey)
public Key getSignatureKey()
public boolean isUseSingleCert()
public void setUseSingleCert(boolean useSingleCert)
public boolean isAddExcC14NInclusivePrefixes()
public void setAddExcC14NInclusivePrefixes(boolean addExcC14NInclusivePrefixes)
public List<XMLSecurityConstants.Action> getActions()
public void setActions(List<XMLSecurityConstants.Action> actions)
actions - public void addAction(XMLSecurityConstants.Action action)
public String getSignatureCanonicalizationAlgorithm()
public void setSignatureCanonicalizationAlgorithm(String signatureCanonicalizationAlgorithm)
public Key getSignatureVerificationKey()
public void setSignatureVerificationKey(Key signatureVerificationKey)
public boolean isSkipDocumentEvents()
public void setSkipDocumentEvents(boolean skipDocumentEvents)
skipDocumentEvents - set to true when document events should be discarded, false otherwisepublic boolean isDisableSchemaValidation()
public void setDisableSchemaValidation(boolean disableSchemaValidation)
public String getSignatureKeyName()
public void setSignatureKeyName(String signatureKeyName)
signatureKeyName - set to a String that will be passed as contents of the KeyName elementpublic String getEncryptionKeyName()
public void setEncryptionKeyName(String encryptionKeyName)
encryptionKeyName - set to a String that will be passed as contents of the KeyName elementpublic Map<String,Key> getKeyNameMap()
public boolean isSignatureGenerateIds()
public void setSignatureGenerateIds(boolean signatureGenerateIds)
signatureGenerateIds - set to true (default) to generate Id attributespublic boolean isSignatureIncludeDigestTransform()
public void setSignatureIncludeDigestTransform(boolean signatureIncludeDigestTransform)
signatureIncludeDigestTransform - set to true (default) to include the transform in the listpublic QName getSignaturePositionQName()
public void setSignaturePositionQName(QName signaturePositionQName)
public AlgorithmParameterSpec getAlgorithmParameterSpec()
public void setAlgorithmParameterSpec(AlgorithmParameterSpec algorithmParameterSpec)
Copyright © 2000–2020 The Apache Software Foundation. All rights reserved.