Package se.swedenconnect.opensaml.saml2.response.replay

Interface MessageReplayChecker

All Known Implementing Classes:
InMemoryReplayChecker, MessageReplayCheckerImpl
public interface MessageReplayChecker
Interface for protecting against SAML message replay attacks.
Author:
Martin Lindström (martin@idsec.se)

  • Method Summary

    Modifier and Type
    Method
    Description
    void
    checkReplay(String id)
    Checks if the supplied message ID already has been processed within the time the replay checker keeps the processed items in its cache.
    void
    checkReplay(org.opensaml.saml.common.SAMLObject object)
    Checks if the supplied message contains an ID that already has been processed within the time the replay checker keeps the processed items in its cache.

  • Method Details

    • checkReplay

      void checkReplay(String id) throws MessageReplayException
      Checks if the supplied message ID already has been processed within the time the replay checker keeps the processed items in its cache.
      Parameters:
      id - the message ID
      Throws:
      MessageReplayException - if there is a replay attack

    • checkReplay

      void checkReplay(org.opensaml.saml.common.SAMLObject object) throws MessageReplayException, IllegalArgumentException
      Checks if the supplied message contains an ID that already has been processed within the time the replay checker keeps the processed items in its cache.
      Parameters:
      object - the SAML message object
      Throws:
      MessageReplayException - if there is a replay attack
      IllegalArgumentException - if the supplied object is not supported by the checker