Skip to main content

This version of the product is no longer supported, and this documentation is no longer updated regularly. See the latest version of this content.Opens in a new tab

Ens.Util.XML.SecuritySignature

class Ens.Util.XML.SecuritySignature extends %XML.Security.Signature

Subclass of %XML.Security.Signature for use outside of a SOAP Envelope context

Method Inventory

Methods

classmethod FindFirstElementByName(pDocument As %XML.Document, pElementSought As %String = "") as %String
classmethod GetAssertionAttribute(pSAMLDoc, pNSP As %String = "", pSAMLVersion As %Integer = 2, pAssertAttribName As %String, ByRef pAssertAttribValues) as %Status
Retrieves SAML Assertion AttributeValue(s) from a SAML XPATH Doc for a given pAssertAttribName
classmethod ValidateSAML(pSAML As %GlobalCharacterStream, pValSpec As %String, pTrustedX509File As %String, pClockSkew As %String, ByRef pAttributes As %String, ByRef pAssertionAttributes As %String) as %Status
Check signatures and expiration as specified by pValSpec.
pValSpec Specifies types of Assertion validation to perform:
  • t - must contain a signed token
  • a - token must contain an Assertion
  • r - require Assertions to contain NotBefore/NotOnOrAfter time conditions
  • v - verify Assertion signature and, if present, NotBefore/NotOnOrAfter conditions
  • o - validate other signed nodes such as TimeStamp
  • Set pClockSkew to the desired number of seconds or to -1 to prevent NotOnOrAfter condition checking.

Inherited Members

Inherited Methods

FeedbackOpens in a new tab