Trusted ID evaluator
A trusted ID evaluator (com.ibm.wsspi.wssecurity.id.TrustedIDEvaluatorImpl) is an abstraction of the mechanism that evaluates whether the given ID name is trusted. Depending upon the implementation, you can use various types of infrastructure to store a list of the trusted IDs, such as:
- Plain text file
- Database
- LDAP server
The trusted ID evaluator is typically used by the eventual receiver in a multi-hop environment. The Web services security implementation invokes the trusted ID evaluator and passes the identity name of the intermediary as a parameter. If the identity is evaluated and deemed trustworthy, the procedure continues. Otherwise, an exception is created and the procedure is stopped.
Related concepts
Overview of platform configuration and default bindings
Related Reference
Trusted ID evaluator collection