public class IdentityAssertion extends Object implements SecurityAssertion
Modifier and Type | Field and Description |
---|---|
static int |
NO_PROOF
Deprecated.
|
static int |
POSSESSION_PROOF
Deprecated.
An IdentityAssertion with proof type
POSSESSION_PROOF is one that is backed by proof of
possession of some unique identifying information. |
static int |
SHARED_SECRET_PROOF
Deprecated.
An IdentityAssertion with the proof type of
SHARED_SECRET_PROOF is one that is backed by the
presentation of a shared secret -- i.e. |
static String |
STRING_NO_PROOF
Deprecated.
|
static String |
STRING_POSSESSION_PROOF
Deprecated.
|
static String |
STRING_SHARED_SECRET_PROOF
Deprecated.
|
CONFIDENTIALITY_ASSERTION, CONFIDENTIALITY_CODE, IDENTITY_ASSERTION, IDENTITY_CODE, INTEGRITY_ASSERTION, INTEGRITY_CODE, TYPE_CONFIDENTIALITY_ASSERTION, TYPE_CONFIDENTIALITY_CODE, TYPE_INTEGRITY_ASSERTION, TYPE_INTEGRITY_CODE
Modifier and Type | Method and Description |
---|---|
String |
getAssertionType()
Deprecated.
getAssertionType returns the type of the assertion
(e.g. |
int |
getAssertionTypeCode()
Deprecated.
Returns an integer that uniquely identifies the type of assertion.
|
int |
getProofType()
Deprecated.
Returns the type of proof that was used to back this assertion.
|
UserInfo |
getUserInfo()
Deprecated.
If this is a proof based on a username / password (i.e.
|
X509Certificate |
getX509Certificate()
Deprecated.
If the proof is based on an X509Certificate (i.e.
|
boolean |
isAssertionType(String assertionType)
Deprecated.
isAssertionType tests to see whether the type of the
assertion matches the passed in type. |
String |
proofAsString()
Deprecated.
|
boolean |
repudiable()
Deprecated.
repudiable returns repudiablility of an assertion --
i.e. |
String |
toString()
Deprecated.
|
public static final int NO_PROOF
public static final String STRING_NO_PROOF
public static final int POSSESSION_PROOF
POSSESSION_PROOF
is one that is backed by proof of
possession of some unique identifying information. A most
common proof is a Digital Signature backed by a digital signature
-- the signature proves the sender has possession of the
associated private key. Another common proof of possession is a
a password digest, when computed with a nonce and/or timestamp.public static final String STRING_POSSESSION_PROOF
public static final int SHARED_SECRET_PROOF
SHARED_SECRET_PROOF
is one that is backed by the
presentation of a shared secret -- i.e. by the presentation of a
password.public static final String STRING_SHARED_SECRET_PROOF
public String getAssertionType()
SecurityAssertion
getAssertionType
returns the type of the assertion
(e.g. identity, integrity, confidentiality) as a string.getAssertionType
in interface SecurityAssertion
String
value representing the assertion typepublic int getAssertionTypeCode()
SecurityAssertion
getAssertionTypeCode
in interface SecurityAssertion
public boolean isAssertionType(String assertionType)
SecurityAssertion
isAssertionType
tests to see whether the type of the
assertion matches the passed in type.isAssertionType
in interface SecurityAssertion
assertionType
- a String
valueboolean
value indicating the match result.public boolean repudiable()
SecurityAssertion
repudiable
returns repudiablility of an assertion --
i.e. can the creator reasonably deny that they performed the
operation that backs this assertion. This is generally true for
public/private key based operations where the operation is
performed by the private key that is available only to a single
individual or entity.
True non-repudiation is only acheived in the context of solid
practices (e.g. secure storage of keys, regular updates of
revocation lists, certificate chain validation, etc.) and binding
agreements between parties. This property indicates only that
the backing operation supports non-repudiation.repudiable
in interface SecurityAssertion
boolean
valuepublic String proofAsString()
public int getProofType()
String
valueIdentityAssertion.POSSESSION_PROOF
,
IdentityAssertion.SHARED_SECRET_PROOF
public UserInfo getUserInfo()
UserInfo
valuepublic X509Certificate getX509Certificate()
UserInfo
value