edu.internet2.middleware.shibboleth.common.relyingparty.provider
Class AbstractSAMLProfileConfiguration

java.lang.Object
  extended by edu.internet2.middleware.shibboleth.common.relyingparty.provider.AbstractSAMLProfileConfiguration
All Implemented Interfaces:
ProfileConfiguration
Direct Known Subclasses:
AbstractSAML1ProfileConfiguration, AbstractSAML2ProfileConfiguration

public abstract class AbstractSAMLProfileConfiguration
extends Object
implements ProfileConfiguration

Profile settings common to SAML 1 and SAML 2.


Constructor Summary
protected AbstractSAMLProfileConfiguration()
          Constructor.
 
Method Summary
 Collection<String> getAssertionAudiences()
          Gets the list of audiences an assertion is intended for.
 long getAssertionLifetime()
          Gets the lifetime, in millisecond, for an issued assertion.
 byte[] getOutboundArtifactType()
          Gets the 2-byte artifact type used on outbound messages.
 org.opensaml.ws.security.SecurityPolicy getSecurityPolicy()
          Gets the security policy for this profile.
 CryptoOperationRequirementLevel getSignAssertions()
          Gets whether assertions should be signed.
 org.opensaml.xml.security.credential.Credential getSigningCredential()
          Gets the credential that should be used to sign a message.
 CryptoOperationRequirementLevel getSignRequests()
          Gets whether to sign protocol requests.
 CryptoOperationRequirementLevel getSignResponses()
          Gets whether to sign protocol responses.
 void setAssertionAudiences(Collection<String> audiences)
          Sets the list of audiences an assertion is intended for.
 void setAssertionLifetime(long lifetime)
          Sets the lifetime, in millisecond, for an issued assertion.
 void setOutboundArtifactType(byte[] type)
          Sets the 2-byte artifact type used on outbound messages.
 void setSecurityPolicy(org.opensaml.ws.security.SecurityPolicy policy)
          Sets the security policy for this profile.
 void setSignAssertions(CryptoOperationRequirementLevel sign)
          Sets whether assertions should be signed.
 void setSigningCredential(org.opensaml.xml.security.credential.Credential credential)
          Gets the credential that should be used for sign a message.
 void setSignRequests(CryptoOperationRequirementLevel sign)
          Sets whether to sign protocol requests.
 void setSignResponses(CryptoOperationRequirementLevel sign)
          Sets whether to sign protocol responses.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 
Methods inherited from interface edu.internet2.middleware.shibboleth.common.relyingparty.ProfileConfiguration
getProfileId
 

Constructor Detail

AbstractSAMLProfileConfiguration

protected AbstractSAMLProfileConfiguration()
Constructor.

Method Detail

getAssertionAudiences

public Collection<String> getAssertionAudiences()
Gets the list of audiences an assertion is intended for.

Returns:
list of audiences an assertion is intended for

getAssertionLifetime

public long getAssertionLifetime()
Gets the lifetime, in millisecond, for an issued assertion. This value should be used to compute the NotOnOrAfter condition.

Returns:
lifetime, in millisecond, for an issued assertion

getOutboundArtifactType

public byte[] getOutboundArtifactType()
Gets the 2-byte artifact type used on outbound messages.

Returns:
2-byte artifact type used on outbound messages

getSecurityPolicy

public org.opensaml.ws.security.SecurityPolicy getSecurityPolicy()
Gets the security policy for this profile.

Specified by:
getSecurityPolicy in interface ProfileConfiguration
Returns:
security policy for this profile

getSignAssertions

public CryptoOperationRequirementLevel getSignAssertions()
Gets whether assertions should be signed.

Returns:
whether assertions should be signed

getSigningCredential

public org.opensaml.xml.security.credential.Credential getSigningCredential()
Gets the credential that should be used to sign a message.

Returns:
credential that should be used to sign a message

getSignRequests

public CryptoOperationRequirementLevel getSignRequests()
Gets whether to sign protocol requests.

Returns:
whether to sign protocol requests

getSignResponses

public CryptoOperationRequirementLevel getSignResponses()
Gets whether to sign protocol responses.

Returns:
whether to sign protocol responses

setAssertionAudiences

public void setAssertionAudiences(Collection<String> audiences)
Sets the list of audiences an assertion is intended for.

Parameters:
audiences - list of audiences an assertion is intended for

setAssertionLifetime

public void setAssertionLifetime(long lifetime)
Sets the lifetime, in millisecond, for an issued assertion.

Parameters:
lifetime - lifetime, in millisecond, for an issued assertion

setOutboundArtifactType

public void setOutboundArtifactType(byte[] type)
Sets the 2-byte artifact type used on outbound messages.

Parameters:
type - 2-byte artifact type used on outbound messages.

setSecurityPolicy

public void setSecurityPolicy(org.opensaml.ws.security.SecurityPolicy policy)
Sets the security policy for this profile.

Parameters:
policy - security policy for this profile

setSignAssertions

public void setSignAssertions(CryptoOperationRequirementLevel sign)
Sets whether assertions should be signed.

Parameters:
sign - whether assertions should be signed

setSigningCredential

public void setSigningCredential(org.opensaml.xml.security.credential.Credential credential)
Gets the credential that should be used for sign a message. Credential MUST include a private key.

Parameters:
credential - credential that should be used for sign a message

setSignRequests

public void setSignRequests(CryptoOperationRequirementLevel sign)
Sets whether to sign protocol requests.

Parameters:
sign - whether to sign protocol requests

setSignResponses

public void setSignResponses(CryptoOperationRequirementLevel sign)
Sets whether to sign protocol responses.

Parameters:
sign - whether to sign protocol responses


Copyright © 2006-2011 Internet2. All Rights Reserved.