SAML2\Signature\AbstractChainedValidator Class Reference

Inheritance diagram for SAML2\Signature\AbstractChainedValidator:

Collaboration diagram for SAML2\Signature\AbstractChainedValidator:

Public Member Functions
	__construct (LoggerInterface $logger)
Public Member Functions inherited from SAML2\Signature\ChainedValidator
	canValidate (SignedElement $signedElement, CertificateProvider $configuration)
	Test whether or not this link in the chain can validate the signedElement signature. More...
Public Member Functions inherited from SAML2\Signature\ValidatorInterface
	hasValidSignature (SignedElement $signedElement, CertificateProvider $configuration)
	Validate the signature of the signed Element based on the configuration. More...

Protected Member Functions
	validateElementWithKeys (SignedElement $element, $pemCandidates)
	BC compatible version of the signature check. More...

Protected Attributes
	$logger

Detailed Description

Definition at line 9 of file AbstractChainedValidator.php.

Constructor & Destructor Documentation

__construct()

SAML2\Signature\AbstractChainedValidator::__construct

(

LoggerInterface

$logger

)

Definition at line 16 of file AbstractChainedValidator.php.

    {
        $this->logger = $logger;
    }

References SAML2\Signature\AbstractChainedValidator\$logger.

Member Function Documentation

validateElementWithKeys()

SAML2\Signature\AbstractChainedValidator::validateElementWithKeys ( SignedElement  $element,   $pemCandidates  )

protected

BC compatible version of the signature check.

Parameters

\SAML2\SignedElement	$element
\SAML2\Certificate\X509[]	$pemCandidates

Exceptions

Exception

Returns

bool

Definition at line 31 of file AbstractChainedValidator.php.

    {
        $lastException = null;
        foreach ($pemCandidates as $index => $candidateKey) {
            $key = new XMLSecurityKey(XMLSecurityKey::RSA_SHA1, array('type' => 'public'));
            $key->loadKey($candidateKey->getCertificate());
 
            try {
                /*
                 * Make sure that we have a valid signature on either the response or the assertion.
                 */
                $result = $element->validate($key);
                if ($result) {
                    $this->logger->debug(sprintf('Validation with key "#%d" succeeded', $index));
                    return true;
                }
                $this->logger->debug(sprintf('Validation with key "#%d" failed without exception.', $index));
            } catch (\Exception $e) {
                $this->logger->debug(sprintf(
                    'Validation with key "#%d" failed with exception: %s',
                    $index,
                    $e->getMessage()
                ));
 
                $lastException = $e;
            }
        }
 
        if ($lastException !== null) {
            throw $lastException;
        } else {
            return false;
        }
    }

References $index, $key, $result, RobRichards\XMLSecLibs\XMLSecurityKey\RSA_SHA1, sprintf, and SAML2\SignedElement\validate().

Referenced by SAML2\Signature\PublicKeyValidator\hasValidSignature().

Here is the call graph for this function:

Here is the caller graph for this function:

Field Documentation

$logger

SAML2\Signature\AbstractChainedValidator::$logger

protected

Definition at line 14 of file AbstractChainedValidator.php.

Referenced by SAML2\Signature\AbstractChainedValidator\__construct(), SAML2\Signature\FingerprintValidator\__construct(), SAML2\Signature\PublicKeyValidator\__construct(), and SAML2\Signature\PublicKeyValidator\hasValidSignature().

---

The documentation for this class was generated from the following file:

• libs/composer/vendor/simplesamlphp/saml2/src/SAML2/Signature/AbstractChainedValidator.php