Package com.yubico.fido.metadata
Class FidoMetadataService.Filters
- java.lang.Object
-
- com.yubico.fido.metadata.FidoMetadataService.Filters
-
- Enclosing class:
- FidoMetadataService
public static class FidoMetadataService.Filters extends java.lang.Object
Preconfigured filters and utilities for combining filters. See thefilter
setting.
-
-
Nested Class Summary
Nested Classes Modifier and Type Class Description static class
FidoMetadataService.Filters.AuthenticatorToBeFiltered
This class encapsulates parameters for filtering authenticators in thefilter
setting ofFidoMetadataService
.
-
Constructor Summary
Constructors Constructor Description Filters()
-
Method Summary
All Methods Static Methods Concrete Methods Modifier and Type Method Description static <T> java.util.function.Predicate<T>
allOf(java.util.function.Predicate<T>... filters)
Combine a set of filters into a filter that requires inputs to satisfy ALL of those filters.static java.util.function.Predicate<FidoMetadataService.Filters.AuthenticatorToBeFiltered>
noAttestationKeyCompromise()
Accept any authenticator whose matched metadata entry does NOT indicate a compromised attestation key.static java.util.function.Predicate<MetadataBLOBPayloadEntry>
notRevoked()
Include any metadata entry whosestatusReports
array contains no entry withREVOKED
status.
-
-
-
Method Detail
-
allOf
public static <T> java.util.function.Predicate<T> allOf(java.util.function.Predicate<T>... filters)
Combine a set of filters into a filter that requires inputs to satisfy ALL of those filters.If
filters
is empty, then all inputs will satisfy the resulting filter.- Parameters:
filters
- A set of filters.- Returns:
- A filter which only accepts inputs that satisfy ALL of the given
filters
.
-
notRevoked
public static java.util.function.Predicate<MetadataBLOBPayloadEntry> notRevoked()
Include any metadata entry whosestatusReports
array contains no entry withREVOKED
status.- See Also:
AuthenticatorStatus.REVOKED
-
noAttestationKeyCompromise
public static java.util.function.Predicate<FidoMetadataService.Filters.AuthenticatorToBeFiltered> noAttestationKeyCompromise()
Accept any authenticator whose matched metadata entry does NOT indicate a compromised attestation key.A metadata entry indicates a compromised attestation key if any of its
statusReports
entries hasATTESTATION_KEY_COMPROMISE
status and either an emptycertificate
field or acertificate
whose public key appears in the authenticator'sattestation certificate chain
.
-
-