Raw signature trust support, Redirect binding, "simple" signing rule.

[shibboleth/cpp-opensaml.git] / saml / security / impl / ChainingTrustEngine.cpp

diff --git a/saml/security/impl/ChainingTrustEngine.cpp b/saml/security/impl/ChainingTrustEngine.cpp
index f6b95cb..4d61107 100644 (file)
--- a/saml/security/impl/ChainingTrustEngine.cpp
+++ b/saml/security/impl/ChainingTrustEngine.cpp
@@ -84,6 +84,23 @@ bool ChainingTrustEngine::validate(
 }
 
 bool ChainingTrustEngine::validate(
+    const XMLCh* sigAlgorithm,
+    const char* sig,
+    KeyInfo* keyInfo,
+    const char* in,
+    unsigned int in_len,
+    const RoleDescriptor& role,
+    const KeyResolver* keyResolver
+    ) const
+{
+    for (vector<X509TrustEngine*>::const_iterator i=m_engines.begin(); i!=m_engines.end(); ++i) {
+        if (static_cast<TrustEngine*>(*i)->validate(sigAlgorithm, sig, keyInfo, in, in_len, role, keyResolver))
+            return true;
+    }
+    return false;
+}
+
+bool ChainingTrustEngine::validate(
     XSECCryptoX509* certEE,
     const vector<XSECCryptoX509*>& certChain,
     const RoleDescriptor& role,