edu.internet2.middleware.shibboleth.common.relyingparty.provider
Class AbstractSAMLProfileConfiguration

java.lang.Object
  extended by edu.internet2.middleware.shibboleth.common.relyingparty.provider.AbstractSAMLProfileConfiguration
All Implemented Interfaces:
ProfileConfiguration
Direct Known Subclasses:
AbstractSAML1ProfileConfiguration, AbstractSAML2ProfileConfiguration

public abstract class AbstractSAMLProfileConfiguration
extends Object
implements ProfileConfiguration

Profile settings common to SAML 1 and SAML 2.


Field Summary
private  Collection<String> assertionAudiences
          Audiences for the assertion.
private  long assertionLifetime
          Life of the assertion in milliseconds.
private  byte[] outboundArtifactType
          2-byte artifact type used on outbound messages.
private  org.opensaml.ws.security.SecurityPolicy profileSecurityPolicy
          Security policy for this profile.
private  CryptoOperationRequirementLevel signAssertions
          Whether to sign assertions.
private  Credential signingCredential
          Assertion signing credential.
private  CryptoOperationRequirementLevel signRequests
          Whether to sign protocol requests.
private  CryptoOperationRequirementLevel signResponses
          Whether to sign protocol responses.
 
Constructor Summary
protected AbstractSAMLProfileConfiguration()
          Constructor.
 
Method Summary
 Collection<String> getAssertionAudiences()
          Gets the list of audiences an assertion is intended for.
 long getAssertionLifetime()
          Gets the lifetime, in millisecond, for an issued assertion.
 byte[] getOutboundArtifactType()
          Gets the 2-byte artifact type used on outbound messages.
 org.opensaml.ws.security.SecurityPolicy getSecurityPolicy()
          Gets the security policy for this profile.
 CryptoOperationRequirementLevel getSignAssertions()
          Gets whether assertions should be signed.
 Credential getSigningCredential()
          Gets the credential that should be used to sign a message.
 CryptoOperationRequirementLevel getSignRequests()
          Gets whether to sign protocol requests.
 CryptoOperationRequirementLevel getSignResponses()
          Gets whether to sign protocol responses.
 void setAssertionAudiences(Collection<String> audiences)
          Sets the list of audiences an assertion is intended for.
 void setAssertionLifetime(long lifetime)
          Sets the lifetime, in millisecond, for an issued assertion.
 void setOutboundArtifactType(byte[] type)
          Sets the 2-byte artifact type used on outbound messages.
 void setSecurityPolicy(org.opensaml.ws.security.SecurityPolicy policy)
          Sets the security policy for this profile.
 void setSignAssertions(CryptoOperationRequirementLevel sign)
          Sets whether assertions should be signed.
 void setSigningCredential(Credential credential)
          Gets the credential that should be used for sign a message.
 void setSignRequests(CryptoOperationRequirementLevel sign)
          Sets whether to sign protocol requests.
 void setSignResponses(CryptoOperationRequirementLevel sign)
          Sets whether to sign protocol responses.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 
Methods inherited from interface edu.internet2.middleware.shibboleth.common.relyingparty.ProfileConfiguration
getProfileId
 

Field Detail

assertionAudiences

private Collection<String> assertionAudiences
Audiences for the assertion.


assertionLifetime

private long assertionLifetime
Life of the assertion in milliseconds.


outboundArtifactType

private byte[] outboundArtifactType
2-byte artifact type used on outbound messages.


profileSecurityPolicy

private org.opensaml.ws.security.SecurityPolicy profileSecurityPolicy
Security policy for this profile.


signAssertions

private CryptoOperationRequirementLevel signAssertions
Whether to sign assertions.


signingCredential

private Credential signingCredential
Assertion signing credential.


signRequests

private CryptoOperationRequirementLevel signRequests
Whether to sign protocol requests.


signResponses

private CryptoOperationRequirementLevel signResponses
Whether to sign protocol responses.

Constructor Detail

AbstractSAMLProfileConfiguration

protected AbstractSAMLProfileConfiguration()
Constructor.

Method Detail

getAssertionAudiences

public Collection<String> getAssertionAudiences()
Gets the list of audiences an assertion is intended for.

Returns:
list of audiences an assertion is intended for

getAssertionLifetime

public long getAssertionLifetime()
Gets the lifetime, in millisecond, for an issued assertion. This value should be used to compute the NotOnOrAfter condition.

Returns:
lifetime, in millisecond, for an issued assertion

getOutboundArtifactType

public byte[] getOutboundArtifactType()
Gets the 2-byte artifact type used on outbound messages.

Returns:
2-byte artifact type used on outbound messages

getSecurityPolicy

public org.opensaml.ws.security.SecurityPolicy getSecurityPolicy()
Gets the security policy for this profile.

Specified by:
getSecurityPolicy in interface ProfileConfiguration
Returns:
security policy for this profile

getSignAssertions

public CryptoOperationRequirementLevel getSignAssertions()
Gets whether assertions should be signed.

Returns:
whether assertions should be signed

getSigningCredential

public Credential getSigningCredential()
Gets the credential that should be used to sign a message.

Returns:
credential that should be used to sign a message

getSignRequests

public CryptoOperationRequirementLevel getSignRequests()
Gets whether to sign protocol requests.

Returns:
whether to sign protocol requests

getSignResponses

public CryptoOperationRequirementLevel getSignResponses()
Gets whether to sign protocol responses.

Returns:
whether to sign protocol responses

setAssertionAudiences

public void setAssertionAudiences(Collection<String> audiences)
Sets the list of audiences an assertion is intended for.

Parameters:
audiences - list of audiences an assertion is intended for

setAssertionLifetime

public void setAssertionLifetime(long lifetime)
Sets the lifetime, in millisecond, for an issued assertion.

Parameters:
lifetime - lifetime, in millisecond, for an issued assertion

setOutboundArtifactType

public void setOutboundArtifactType(byte[] type)
Sets the 2-byte artifact type used on outbound messages.

Parameters:
type - 2-byte artifact type used on outbound messages.

setSecurityPolicy

public void setSecurityPolicy(org.opensaml.ws.security.SecurityPolicy policy)
Sets the security policy for this profile.

Parameters:
policy - security policy for this profile

setSignAssertions

public void setSignAssertions(CryptoOperationRequirementLevel sign)
Sets whether assertions should be signed.

Parameters:
sign - whether assertions should be signed

setSigningCredential

public void setSigningCredential(Credential credential)
Gets the credential that should be used for sign a message. Credential MUST include a private key.

Parameters:
credential - credential that should be used for sign a message

setSignRequests

public void setSignRequests(CryptoOperationRequirementLevel sign)
Sets whether to sign protocol requests.

Parameters:
sign - whether to sign protocol requests

setSignResponses

public void setSignResponses(CryptoOperationRequirementLevel sign)
Sets whether to sign protocol responses.

Parameters:
sign - whether to sign protocol responses


Copyright © 1999-2012. All Rights Reserved.