public interface CertificateMapperCfgClient extends ConfigurationClient
Certificate Mappers are responsible for establishing a mapping between a client certificate and the entry for the user that corresponds to that certificate.
Modifier and Type | Method and Description |
---|---|
ManagedObjectDefinition<? extends CertificateMapperCfgClient,? extends CertificateMapperCfg> |
definition()
Get the configuration definition associated with this Certificate Mapper.
|
ValueOrExpression<AttributeType> |
getIssuerAttribute()
Gets the "issuer-attribute" property.
|
ValueOrExpression<String> |
getJavaClass()
Gets the "java-class" property.
|
ValueOrExpression<Boolean> |
isEnabled()
Gets the "enabled" property.
|
void |
setEnabled(ValueOrExpression<Boolean> value)
Sets the "enabled" property.
|
void |
setIssuerAttribute(ValueOrExpression<AttributeType> value)
Sets the "issuer-attribute" property.
|
void |
setJavaClass(ValueOrExpression<String> value)
Sets the "java-class" property.
|
commit, properties
ManagedObjectDefinition<? extends CertificateMapperCfgClient,? extends CertificateMapperCfg> definition()
definition
in interface ConfigurationClient
ValueOrExpression<Boolean> isEnabled()
Indicates whether the Certificate Mapper is enabled.
void setEnabled(ValueOrExpression<Boolean> value) throws PropertyException
Indicates whether the Certificate Mapper is enabled.
value
- The value of the "enabled" property.PropertyException
- If the new value is invalid.ValueOrExpression<AttributeType> getIssuerAttribute()
Specifies the name or OID of the attribute whose value should exactly match the certificate issuer DN.
Certificate issuer verification should be enabled whenever multiple CAs are trusted in order to prevent impersonation. In particular, it is possible for different CAs to issue certificates having the same subject DN.
void setIssuerAttribute(ValueOrExpression<AttributeType> value) throws PropertyException
Specifies the name or OID of the attribute whose value should exactly match the certificate issuer DN.
Certificate issuer verification should be enabled whenever multiple CAs are trusted in order to prevent impersonation. In particular, it is possible for different CAs to issue certificates having the same subject DN.
value
- The value of the "issuer-attribute" property.PropertyException
- If the new value is invalid.ValueOrExpression<String> getJavaClass()
Specifies the fully-qualified name of the Java class that provides the Certificate Mapper implementation.
void setJavaClass(ValueOrExpression<String> value) throws PropertyException
Specifies the fully-qualified name of the Java class that provides the Certificate Mapper implementation.
value
- The value of the "java-class" property.PropertyException
- If the new value is invalid.Copyright 2010-2018 ForgeRock AS.