public class SignerRole extends XAdESBaseElement
While the name of the signer is important, the position of the signer within a company or an organization can be even more important. Some contracts may only be valid if signed by a user in a particular role, e.g. a Sales Director. In many cases who the sales Director really is, is not that important but being sure that the signer is empowered by his company to be the Sales Director is fundamental.
The present document defines two different ways for providing this feature:
The signer MAY state his own role without any certificate to corroborate this claim, in which case the claimed role can be added to the signature as a signed qualifying property.
Unlike public key certificates that bind an identifier to a public key, Attribute Certificates bind the identifier of a certificate to some attributes of its owner, like a role. The Attribute Authority will be most of the time under the control of an organization or a company that is best placed to know which attributes are relevant for which individual. The Attribute Authority MAY use or point to public key certificates issued by any CA, provided that the appropriate trust may be placed in that CA. Attribute Certificates MAY have various periods of validity. That period may be quite short, e.g. one day. While this requires that a new Attribute Certificate is obtained every day, valid for that day, this can be advantageous since revocation of such certificates may not be needed. When signing, the signer will have to specify which Attribute Certificate it selects.
This is an optional signed property that qualifies the signer. There SHALL be at most one occurence of this property in the signature.
The following schema fragment specifies the expected content contained within this class.
<xsd:element name="SignerRole" type="SignerRoleType"/>
<xsd:complexType name="SignerRoleType">
<xsd:sequence>
<xsd:element name="ClaimedRoles" type="ClaimedRolesListType" minOccurs="0"/>
<xsd:element name="CertifiedRoles" type="CertifiedRolesListType" minOccurs="0"/>
</xsd:sequence>
</xsd:complexType>
<xsd:complexType name="ClaimedRolesListType">
<xsd:sequence>
<xsd:element name="ClaimedRole" type="AnyType" maxOccurs="unbounded"/>
</xsd:sequence>
</xsd:complexType>
<xsd:complexType name="CertifiedRolesListType">
<xsd:sequence>
<xsd:element name="CertifiedRole" type="EncapsulatedPKIDataType" maxOccurs="unbounded"/>
</xsd:sequence>
</xsd:complexType>
mContext, mElement, mId| Constructor and Description |
|---|
SignerRole(Context aContext,
CertifiedRole[] aCertifiedRoles) |
SignerRole(Context aContext,
ClaimedRole[] aClaimedRoles) |
SignerRole(Context aContext,
ClaimedRole[] aClaimedRoles,
CertifiedRole[] aCertifiedRoles) |
SignerRole(org.w3c.dom.Element aElement,
Context aContext)
Construct SignerRole from existing
|
| Modifier and Type | Method and Description |
|---|---|
java.util.List<CertifiedRole> |
getCertifiedRoles() |
java.util.List<ClaimedRole> |
getClaimedRoles() |
java.lang.String |
getLocalName() |
getNamespaceaddBigIntegerElement, addLineBreak, addLineBreak, checkNamespace, createElement, generateAndSetId, getAttribute, getBigIntegerFromElement, getChildText, getContext, getDocument, getElement, getId, insertBase64EncodedElement, insertElement, insertTextElement, selectChildElement, selectChildren, setIdpublic SignerRole(Context aContext, ClaimedRole[] aClaimedRoles) throws XMLSignatureException
XMLSignatureExceptionpublic SignerRole(Context aContext, CertifiedRole[] aCertifiedRoles) throws XMLSignatureException
XMLSignatureExceptionpublic SignerRole(Context aContext, ClaimedRole[] aClaimedRoles, CertifiedRole[] aCertifiedRoles) throws XMLSignatureException
XMLSignatureExceptionpublic SignerRole(org.w3c.dom.Element aElement,
Context aContext)
throws XMLSignatureException
aElement - xml elementaContext - according to contextXMLSignatureException - when structure is invalid or can not be
resolved appropriatelypublic java.util.List<ClaimedRole> getClaimedRoles()
public java.util.List<CertifiedRole> getCertifiedRoles()
public java.lang.String getLocalName()
getLocalName in class BaseElementCopyright © 2025. All rights reserved.