@Generated(value="OracleSDKGenerator", comments="API Version: v1") public final class ExtensionX509IdentityProvider extends com.oracle.bmc.http.client.internal.ExplicitlySetBmcModel
X509 Identity Provider Extension Schema
Note: Objects should always be created or deserialized using the ExtensionX509IdentityProvider.Builder
. This model
distinguishes fields that are null
because they are unset from fields that are explicitly
set to null
. This is done in the setter methods of the ExtensionX509IdentityProvider.Builder
, which maintain a
set of all explicitly set fields called ExtensionX509IdentityProvider.Builder.__explicitlySet__
. The hashCode()
and equals(Object)
methods are implemented to take the explicitly set
fields into account. The constructor, on the other hand, does not take the explicitly set fields
into account (since the constructor cannot distinguish explicit null
from unset null
).
Modifier and Type | Class and Description |
---|---|
static class |
ExtensionX509IdentityProvider.Builder |
static class |
ExtensionX509IdentityProvider.EkuValues |
EXPLICITLY_SET_FILTER_NAME, EXPLICITLY_SET_PROPERTY_NAME
Constructor and Description |
---|
ExtensionX509IdentityProvider(String certMatchAttribute,
String userMatchAttribute,
String otherCertMatchAttribute,
List<String> signingCertificateChain,
Boolean ocspEnabled,
String ocspServerName,
String ocspResponderURL,
Boolean ocspAllowUnknownResponseStatus,
Integer ocspRevalidateTime,
Boolean ocspEnableSignedResponse,
List<String> ocspTrustCertChain,
Boolean crlEnabled,
Boolean crlCheckOnOCSPFailureEnabled,
String crlLocation,
Integer crlReloadDuration,
Boolean ekuValidationEnabled,
List<ExtensionX509IdentityProvider.EkuValues> ekuValues)
Deprecated.
|
Modifier and Type | Method and Description |
---|---|
static ExtensionX509IdentityProvider.Builder |
builder()
Create a new builder.
|
boolean |
equals(Object o) |
String |
getCertMatchAttribute()
X509 Certificate Matching Attribute
|
Boolean |
getCrlCheckOnOCSPFailureEnabled()
Fallback on CRL Validation if OCSP fails.
|
Boolean |
getCrlEnabled()
Set to true to enable CRL Validation
|
String |
getCrlLocation()
CRL Location URL
|
Integer |
getCrlReloadDuration()
Fetch the CRL contents every X minutes
|
Boolean |
getEkuValidationEnabled()
Set to true to enable EKU Validation
|
List<ExtensionX509IdentityProvider.EkuValues> |
getEkuValues()
List of EKU which needs to be validated
|
Boolean |
getOcspAllowUnknownResponseStatus()
Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the
timeout duration
|
Boolean |
getOcspEnabled()
Set to true to enable OCSP Validation
|
Boolean |
getOcspEnableSignedResponse()
Describes if the OCSP response is signed
|
String |
getOcspResponderURL()
This property specifies OCSP Responder URL.
|
Integer |
getOcspRevalidateTime()
Revalidate OCSP status for user after X hours
|
String |
getOcspServerName()
This property specifies the OCSP Server alias name
|
List<String> |
getOcspTrustCertChain()
OCSP Trusted Certificate Chain
|
String |
getOtherCertMatchAttribute()
Check for specific conditions of other certificate attributes
|
List<String> |
getSigningCertificateChain()
Certificate alias list to create a chain for the incoming client certificate
|
String |
getUserMatchAttribute()
This property specifies the userstore attribute value that must match the incoming
certificate attribute.
|
int |
hashCode() |
ExtensionX509IdentityProvider.Builder |
toBuilder() |
String |
toString() |
String |
toString(boolean includeByteArrayContents)
Return a string representation of the object.
|
markPropertyAsExplicitlySet, wasPropertyExplicitlySet
@Deprecated @ConstructorProperties(value={"certMatchAttribute","userMatchAttribute","otherCertMatchAttribute","signingCertificateChain","ocspEnabled","ocspServerName","ocspResponderURL","ocspAllowUnknownResponseStatus","ocspRevalidateTime","ocspEnableSignedResponse","ocspTrustCertChain","crlEnabled","crlCheckOnOCSPFailureEnabled","crlLocation","crlReloadDuration","ekuValidationEnabled","ekuValues"}) public ExtensionX509IdentityProvider(String certMatchAttribute, String userMatchAttribute, String otherCertMatchAttribute, List<String> signingCertificateChain, Boolean ocspEnabled, String ocspServerName, String ocspResponderURL, Boolean ocspAllowUnknownResponseStatus, Integer ocspRevalidateTime, Boolean ocspEnableSignedResponse, List<String> ocspTrustCertChain, Boolean crlEnabled, Boolean crlCheckOnOCSPFailureEnabled, String crlLocation, Integer crlReloadDuration, Boolean ekuValidationEnabled, List<ExtensionX509IdentityProvider.EkuValues> ekuValues)
public static ExtensionX509IdentityProvider.Builder builder()
Create a new builder.
public ExtensionX509IdentityProvider.Builder toBuilder()
public String getCertMatchAttribute()
X509 Certificate Matching Attribute
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: true - returned: default - type: string - uniqueness: none
public String getUserMatchAttribute()
This property specifies the userstore attribute value that must match the incoming certificate attribute.
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: true - returned: default - type: string - uniqueness: none
public String getOtherCertMatchAttribute()
Check for specific conditions of other certificate attributes
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none
public List<String> getSigningCertificateChain()
Certificate alias list to create a chain for the incoming client certificate
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: true - mutability: readWrite - required: true - returned: default - type: string - uniqueness: none
public Boolean getOcspEnabled()
Set to true to enable OCSP Validation
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: boolean - uniqueness: none
public String getOcspServerName()
This property specifies the OCSP Server alias name
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none
public String getOcspResponderURL()
This property specifies OCSP Responder URL.
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none
public Boolean getOcspAllowUnknownResponseStatus()
Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the timeout duration
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: boolean - uniqueness: none
public Integer getOcspRevalidateTime()
Revalidate OCSP status for user after X hours
*Added In:** 2010242156
*SCIM++ Properties:** - idcsMaxValue: 24 - idcsMinValue: 0 - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: integer - uniqueness: none
public Boolean getOcspEnableSignedResponse()
Describes if the OCSP response is signed
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: boolean - uniqueness: none
public List<String> getOcspTrustCertChain()
OCSP Trusted Certificate Chain
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: true - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none
public Boolean getCrlEnabled()
Set to true to enable CRL Validation
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: boolean - uniqueness: none
public Boolean getCrlCheckOnOCSPFailureEnabled()
Fallback on CRL Validation if OCSP fails.
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: boolean - uniqueness: none
public String getCrlLocation()
CRL Location URL
*Added In:** 2010242156
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none
public Integer getCrlReloadDuration()
Fetch the CRL contents every X minutes
*Added In:** 2010242156
*SCIM++ Properties:** - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: integer - uniqueness: none
public Boolean getEkuValidationEnabled()
Set to true to enable EKU Validation
*Added In:** 2304270343
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: false - mutability: readWrite - required: false - returned: default - type: boolean - uniqueness: none
public List<ExtensionX509IdentityProvider.EkuValues> getEkuValues()
List of EKU which needs to be validated
*Added In:** 2304270343
*SCIM++ Properties:** - caseExact: false - idcsSearchable: false - multiValued: true - mutability: readWrite - required: false - returned: default - type: string - uniqueness: none
public String toString()
toString
in class com.oracle.bmc.http.client.internal.ExplicitlySetBmcModel
public String toString(boolean includeByteArrayContents)
Return a string representation of the object.
includeByteArrayContents
- true to include the full contents of byte arrayspublic boolean equals(Object o)
equals
in class com.oracle.bmc.http.client.internal.ExplicitlySetBmcModel
public int hashCode()
hashCode
in class com.oracle.bmc.http.client.internal.ExplicitlySetBmcModel
Copyright © 2016–2025. All rights reserved.