public final class SubjectAttributeToUserAttributeCertificateMapperCfgDefn extends ManagedObjectDefinition<SubjectAttributeToUserAttributeCertificateMapperCfgClient,SubjectAttributeToUserAttributeCertificateMapperCfg>
The Subject Attribute To User Attribute Certificate Mapper maps client certificates to user entries by mapping the values of attributes contained in the certificate subject to attributes contained in user entries.
getAggregationPropertyDefinition, getAggregationPropertyDefinitions, getAllAggregationPropertyDefinitions, getAllChildren, getAllConstraints, getAllPropertyDefinitions, getAllRelationDefinitions, getAllReverseAggregationPropertyDefinitions, getAllReverseRelationDefinitions, getAllTags, getChild, getChildren, getConstraints, getDescription, getDescription, getName, getParent, getPropertyDefinition, getPropertyDefinitions, getRelationDefinition, getRelationDefinitions, getReverseAggregationPropertyDefinitions, getReverseRelationDefinitions, getSynopsis, getSynopsis, getUserFriendlyName, getUserFriendlyName, getUserFriendlyPluralName, getUserFriendlyPluralName, hasChildren, hasOption, hasTag, initialize, isChildOf, isParentOf, isTop, registerConstraint, registerOption, registerPropertyDefinition, registerRelationDefinition, registerTag, resolveManagedObjectDefinition, toString, toString
public static SubjectAttributeToUserAttributeCertificateMapperCfgDefn getInstance()
public SubjectAttributeToUserAttributeCertificateMapperCfgClient createClientConfiguration(ManagedObject<? extends SubjectAttributeToUserAttributeCertificateMapperCfgClient> impl)
ManagedObjectDefinition
createClientConfiguration
in class ManagedObjectDefinition<SubjectAttributeToUserAttributeCertificateMapperCfgClient,SubjectAttributeToUserAttributeCertificateMapperCfg>
impl
- The managed object.public SubjectAttributeToUserAttributeCertificateMapperCfg createServerConfiguration(ServerManagedObject<? extends SubjectAttributeToUserAttributeCertificateMapperCfg> impl)
ManagedObjectDefinition
createServerConfiguration
in class ManagedObjectDefinition<SubjectAttributeToUserAttributeCertificateMapperCfgClient,SubjectAttributeToUserAttributeCertificateMapperCfg>
impl
- The server managed object.public Class<SubjectAttributeToUserAttributeCertificateMapperCfg> getServerConfigurationClass()
ManagedObjectDefinition
getServerConfigurationClass
in class ManagedObjectDefinition<SubjectAttributeToUserAttributeCertificateMapperCfgClient,SubjectAttributeToUserAttributeCertificateMapperCfg>
public BooleanPropertyDefinition getEnabledPropertyDefinition()
Indicates whether the Subject Attribute To User Attribute Certificate Mapper is enabled.
public AttributeTypePropertyDefinition getIssuerAttributePropertyDefinition()
Specifies the name or OID of the attribute whose value should exactly match the certificate issuer DN.
Certificate issuer verification should be enabled whenever multiple CAs are trusted in order to prevent impersonation. In particular, it is possible for different CAs to issue certificates having the same subject DN.
public ClassPropertyDefinition getJavaClassPropertyDefinition()
Specifies the fully-qualified name of the Java class that provides the Subject Attribute To User Attribute Certificate Mapper implementation.
public StringPropertyDefinition getSubjectAttributeMappingPropertyDefinition()
Specifies a mapping between certificate attributes and user attributes.
Each value should be in the form "certattr:userattr" where certattr is the name of the attribute in the certificate subject and userattr is the name of the corresponding attribute in user entries. There may be multiple mappings defined, and when performing the mapping values for all attributes present in the certificate subject that have mappings defined must be present in the corresponding user entries.
public DnPropertyDefinition getUserBaseDnPropertyDefinition()
Specifies the base DNs that should be used when performing searches to map the client certificate to a user entry.
Copyright 2010-2018 ForgeRock AS.