com.sun.identity.wsfederation.profile

Interface RequestedSecurityToken

All Known Implementing Classes:

SAML11RequestedSecurityToken

public interface RequestedSecurityToken

This interface encapsulates the WS-Trust <RequestedSecurityToken> element

Method Summary

Modifier and Type	Method and Description
List	getAttributes()
String	getIssuer()
String	getTokenId()
Map<String,Object>	verifyToken(String realm, String hostEntityId, int timeskew) Verifies the token's validity, checking the signature, validity period etc.

Method Detail

getAttributes

List getAttributes()

Returns:

a list of attributes in the RequestedSecurityToken. The type of the List content is dependent on the implementation.

getIssuer

String getIssuer()

Returns:

the issuer of the RequestedSecurityToken.

getTokenId

String getTokenId()

Returns:

the unique identifier of the RequestedSecurityToken.

verifyToken

Map<String,Object> verifyToken(String realm,
                               String hostEntityId,
                               int timeskew)
                        throws WSFederationException

Verifies the token's validity, checking the signature, validity period etc.

Parameters:

realm - the realm of the local entity

hostEntityId - the local entity ID

timeskew - permitted skew between service provider and identity provider clocks, in seconds

Returns:

a Map of relevant data including Subject and the List of Assertions.

Throws:

WSFederationException - in case of any error - invalid token signature, token expired etc.