public interface CertificateMapperCfg extends Configuration
Certificate Mappers are responsible for establishing a mapping between a client certificate and the entry for the user that corresponds to that certificate.
Modifier and Type | Method and Description |
---|---|
void |
addChangeListener(ConfigurationChangeListener<CertificateMapperCfg> listener)
Register to be notified when this Certificate Mapper is changed.
|
Class<? extends CertificateMapperCfg> |
configurationClass()
Gets the configuration class associated with this Certificate Mapper.
|
AttributeType |
getIssuerAttribute()
Gets the "issuer-attribute" property.
|
String |
getJavaClass()
Gets the "java-class" property.
|
boolean |
isEnabled()
Gets the "enabled" property.
|
void |
removeChangeListener(ConfigurationChangeListener<CertificateMapperCfg> listener)
Deregister an existing Certificate Mapper configuration change listener.
|
dn, name
Class<? extends CertificateMapperCfg> configurationClass()
configurationClass
in interface Configuration
void addChangeListener(ConfigurationChangeListener<CertificateMapperCfg> listener)
listener
- The Certificate Mapper configuration change listener.void removeChangeListener(ConfigurationChangeListener<CertificateMapperCfg> listener)
listener
- The Certificate Mapper configuration change listener.boolean isEnabled()
Indicates whether the Certificate Mapper is enabled.
AttributeType getIssuerAttribute()
Specifies the name or OID of the attribute whose value should exactly match the certificate issuer DN.
Certificate issuer verification should be enabled whenever multiple CAs are trusted in order to prevent impersonation. In particular, it is possible for different CAs to issue certificates having the same subject DN.
String getJavaClass()
Specifies the fully-qualified name of the Java class that provides the Certificate Mapper implementation.
Copyright 2010-2018 ForgeRock AS.