local interface TargetCredentials
inherits from SecurityLevel3::Credentials
The TargetCredentials object is created as the result of accepting a
security context for a target. It represents that context.
It contains only the information used from the OwnCredentials
that was pertinent in establishing the context.
There is a pointer back to that OwnCredentials object.
Once this context is created, its attributes are guaranteed
not to change.
TRUE if the client
believes that the target has authenticated the client, either
over the transport, or at the CSIv2 Client Authentication layer.
TRUE if the context is
providing confidentiality protection.
TRUE if the context is providing
integrity protection.
TRUE if the client has
authenticated the target over the transport.
TRUE if the security service
believes that the target is embodied to impersonate the client
side principal.
TRUE if the security service
believes that the target is endorsed to act on behalf of the
client side principal.
readonly attribute boolean client_authentication;The client_authentication attribute is
TRUE if the client
believes that the target has authenticated the client, either
over the transport, or at the CSIv2 Client Authentication layer.
readonly attribute Principal client_principal;The client_principal attribute contains the principal that the security service believe is the target's ClientCredentials client_principal attribute.
readonly attribute ResourceNameList client_restricted_resources;The client_restricted_resources attribute contains names of resources on which the client believes the client is restricted. This information may be derived from newly acquired endorsement information.
readonly attribute StatementList client_supporting_statements;The client_supporting_statements attribute contains the statements that support the deduction of the client principal.
readonly attribute boolean confidentiality;The confidentiality attribute is
TRUE if the context is
providing confidentiality protection.
readonly attribute ContextId context_id;The context_id attribute contains a system generated unique identifier for the context.
readonly attribute boolean integrity;The integrity attribute is
TRUE if the context is providing
integrity protection.
readonly attribute OwnCredentials parent_credentials;The parent_credentials attribute refers to the OwnCredentials that were used in establishing the security context.
readonly attribute boolean target_authentication;The target_authentication attribute is
TRUE if the client has
authenticated the target over the transport.
readonly attribute boolean target_embodied;The target_embodied attribute is
TRUE if the security service
believes that the target is embodied to impersonate the client
side principal.
readonly attribute boolean target_endorsed;The target_endorsed attribute is
TRUE if the security service
believes that the target is endorsed to act on behalf of the
client side principal.
readonly attribute Principal target_principal;The target_principal attribute contains the exact principal that the security service deduces to be the target.
readonly attribute ResourceNameList target_restricted_resources;The target_restricted_resources attribute contains names of resources on which the target is restricted. This information may not be available.
readonly attribute StatementList target_supporting_statements;The target_supporting_statements attribute contains the statements that support the deduction of the target principal.
void release();The release operation indicates to the CSIv2 protocol, that if state is being retained for these credentials, they will be discarded with the pending next request that may have not yet gone out.
Any objects references that are binded to these credentials after you release them will become unusable. This operation is experimental.