X-Git-Url: http://www.project-moonshot.org/gitweb/?a=blobdiff_plain;f=saml%2Fsaml2%2Fcore%2FAssertions.h;h=febf744a25fb5fcabaeb88b5b8320b122b6b5eb6;hb=b1614d3c1fc1f4230ab2a123f43994127c25462c;hp=31d11cff069a8229e1c9b00a6bf95b55d265340e;hpb=c77019168bb64c2a5271f55e76addc508e94948f;p=shibboleth%2Fcpp-opensaml.git diff --git a/saml/saml2/core/Assertions.h b/saml/saml2/core/Assertions.h index 31d11cf..febf744 100644 --- a/saml/saml2/core/Assertions.h +++ b/saml/saml2/core/Assertions.h @@ -28,6 +28,7 @@ #include #include +#include #include #include #include @@ -61,17 +62,19 @@ namespace opensaml { static const XMLCh TYPE_NAME[]; /** - * Decrypts the element using a standard approach based on a wrapped decryption key - * inside the message. The key decryption key should be supplied using the provided - * resolver. The recipient name may be used when multiple encrypted keys are found. - * The object returned will be unmarshalled around the decrypted DOM element, but the + * Decrypts the element using the supplied CredentialResolver. + * + *

The object returned will be unmarshalled around the decrypted DOM element, but the * DOM itself will be released. * - * @param KEKresolver locked resolver supplying key decryption key + * @param credResolver locked resolver supplying decryption keys * @param recipient identifier naming the recipient (the entity performing the decryption) + * @param criteria optional external criteria to use with resolver * @return the decrypted and unmarshalled object */ - virtual xmltooling::XMLObject* decrypt(const xmltooling::CredentialResolver* KEKresolver, const XMLCh* recipient) const=0; + virtual xmltooling::XMLObject* decrypt( + const xmltooling::CredentialResolver& credResolver, const XMLCh* recipient, xmltooling::CredentialCriteria* criteria=NULL + ) const=0; END_XMLOBJECT; BEGIN_XMLOBJECT(SAML_API,EncryptedID,EncryptedElementType,SAML 2.0 EncryptedID element);