|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectedu.internet2.middleware.shibboleth.common.profile.provider.AbstractRequestURIMappedProfileHandler<org.opensaml.ws.transport.http.HTTPInTransport,org.opensaml.ws.transport.http.HTTPOutTransport>
edu.internet2.middleware.shibboleth.common.profile.provider.AbstractShibbolethProfileHandler<edu.internet2.middleware.shibboleth.common.relyingparty.provider.SAMLMDRelyingPartyConfigurationManager,Session>
edu.internet2.middleware.shibboleth.idp.profile.AbstractSAMLProfileHandler
edu.internet2.middleware.shibboleth.idp.profile.saml2.AbstractSAML2ProfileHandler
edu.internet2.middleware.shibboleth.idp.profile.saml2.SSOProfileHandler
edu.internet2.middleware.shibboleth.idp.profile.saml2.SAML2ECPProfileHandler
public class SAML2ECPProfileHandler
SAML 2.0 ECP request profile handler.
Nested Class Summary | |
---|---|
protected class |
SAML2ECPProfileHandler.ECPRequestContext
In case we ever add something to the base context |
Nested classes/interfaces inherited from class edu.internet2.middleware.shibboleth.idp.profile.saml2.SSOProfileHandler |
---|
SSOProfileHandler.SSORequestContext |
Nested classes/interfaces inherited from class edu.internet2.middleware.shibboleth.idp.profile.saml2.AbstractSAML2ProfileHandler |
---|
AbstractSAML2ProfileHandler.SAML2AuditLogEntry |
Field Summary |
---|
Fields inherited from class edu.internet2.middleware.shibboleth.idp.profile.saml2.AbstractSAML2ProfileHandler |
---|
SAML_VERSION |
Constructor Summary | |
---|---|
SAML2ECPProfileHandler()
Constructor. |
Method Summary | |
---|---|
protected org.opensaml.saml2.core.AuthnContext |
buildAuthnContext(SSOProfileHandler.SSORequestContext requestContext)
Creates an AuthnContext for a successful authentication request. |
protected org.opensaml.saml2.core.AuthnStatement |
buildAuthnStatement(SSOProfileHandler.SSORequestContext requestContext)
Creates an authentication statement for the current request. |
protected org.opensaml.ws.message.handler.HandlerChain |
buildOutboundHandlerChain()
Build the outbound handler chain. |
protected org.opensaml.ws.message.handler.HandlerChain |
buildPostSecurityInboundHandlerChain()
Build the post-security inbound handler chain. |
protected org.opensaml.ws.message.handler.HandlerChain |
buildPreSecurityInboundHandlerChain()
Build the pre-security inbound handler chain. |
protected SAML2ECPProfileHandler.ECPRequestContext |
buildRequestContext(org.opensaml.ws.transport.http.HTTPInTransport in,
org.opensaml.ws.transport.http.HTTPOutTransport out)
Creates an authentication request context from the current environmental information. |
protected void |
decodeRequest(SAML2ECPProfileHandler.ECPRequestContext requestContext,
org.opensaml.ws.transport.http.HTTPInTransport inTransport,
org.opensaml.ws.transport.http.HTTPOutTransport outTransport)
Decodes an incoming request and stores the information in a created request context. |
String |
getAuthnContextClassRef()
Gets the AuthnContext class reference. |
protected org.opensaml.common.binding.decoding.SAMLMessageDecoder |
getInboundMessageDecoder(edu.internet2.middleware.shibboleth.common.profile.provider.BaseSAMLProfileRequestContext requestContext)
Get the inbound message decoder to use. |
protected org.opensaml.ws.message.handler.HandlerChainResolver |
getOutboundHandlerChainResolver()
Get the resolver used to resolve the outbound handler chain. |
protected org.opensaml.common.binding.encoding.SAMLMessageEncoder |
getOutboundMessageEncoder(edu.internet2.middleware.shibboleth.common.profile.provider.BaseSAMLProfileRequestContext requestContext)
Get the outbound message encoder to use. |
protected org.opensaml.ws.message.handler.HandlerChainResolver |
getPostSecurityInboundHandlerChainResolver()
Get the resolver used to resolve the post-security inbound handler chain. |
protected org.opensaml.ws.message.handler.HandlerChainResolver |
getPreSecurityInboundHandlerChainResolver()
Get the resolver used to resolve the pre-security inbound handler chain. |
String |
getProfileId()
|
void |
initialize()
Initialize the profile handler. |
protected void |
populateSAMLMessageInformation(edu.internet2.middleware.shibboleth.common.profile.provider.BaseSAMLProfileRequestContext requestContext)
Populates the request context with information from the inbound SAML message. |
void |
processRequest(org.opensaml.ws.transport.http.HTTPInTransport inTransport,
org.opensaml.ws.transport.http.HTTPOutTransport outTransport)
|
void |
setAuthnContextClassRef(String ref)
Sets the AuthnContext class reference. |
Methods inherited from class edu.internet2.middleware.shibboleth.idp.profile.saml2.SSOProfileHandler |
---|
buildNameId, buildRequestContext, buildSubjectLocality, checkNameIDPolicy, completeAuthenticationRequest, decodeRequest, deserializeRequest, getRequiredNameIDFormat, performAuthentication, populateAssertingPartyInformation, populateRelyingPartyInformation, postProcessAssertion, postProcessResponse, selectEndpoint |
Methods inherited from class edu.internet2.middleware.shibboleth.idp.profile.saml2.AbstractSAML2ProfileHandler |
---|
buildAssertion, buildAttributeStatement, buildConditions, buildEntityIssuer, buildErrorResponse, buildResponse, buildStatus, buildSubject, buildSubjectConfirmation, checkSamlVersion, getEncrypter, getKeyEncryptionCredential, isEncryptAssertion, isEncryptNameID, isRequestRequiresEncryptNameID, isSignAssertion, populateRequestContext, populateStatusResponse, populateUserInformation, resolveAttributes, resolvePrincipal, signAssertion, writeAuditLogEntry |
Methods inherited from class edu.internet2.middleware.shibboleth.common.profile.provider.AbstractShibbolethProfileHandler |
---|
getBuilderFactory, getParserPool, getProfileConfiguration, getRelyingPartyConfigurationManager, getSessionManager, getStorageService, setParserPool, setRelyingPartyConfigurationManager, setSessionManager, setStorageService |
Methods inherited from class edu.internet2.middleware.shibboleth.common.profile.provider.AbstractRequestURIMappedProfileHandler |
---|
getRequestPaths, setRequestPaths |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public SAML2ECPProfileHandler()
Method Detail |
---|
public void initialize()
public String getProfileId()
getProfileId
in class SSOProfileHandler
public void setAuthnContextClassRef(String ref)
ref
- AuthnContext class reference to setpublic String getAuthnContextClassRef()
public void processRequest(org.opensaml.ws.transport.http.HTTPInTransport inTransport, org.opensaml.ws.transport.http.HTTPOutTransport outTransport) throws edu.internet2.middleware.shibboleth.common.profile.ProfileException
processRequest
in interface edu.internet2.middleware.shibboleth.common.profile.ProfileHandler<org.opensaml.ws.transport.http.HTTPInTransport,org.opensaml.ws.transport.http.HTTPOutTransport>
processRequest
in class SSOProfileHandler
edu.internet2.middleware.shibboleth.common.profile.ProfileException
protected void decodeRequest(SAML2ECPProfileHandler.ECPRequestContext requestContext, org.opensaml.ws.transport.http.HTTPInTransport inTransport, org.opensaml.ws.transport.http.HTTPOutTransport outTransport) throws edu.internet2.middleware.shibboleth.common.profile.ProfileException
inTransport
- inbound transportoutTransport
- outbound transportrequestContext
- request context to which decoded information should be added
edu.internet2.middleware.shibboleth.common.profile.ProfileException
- thrown if the incoming message failed decodingprotected SAML2ECPProfileHandler.ECPRequestContext buildRequestContext(org.opensaml.ws.transport.http.HTTPInTransport in, org.opensaml.ws.transport.http.HTTPOutTransport out) throws edu.internet2.middleware.shibboleth.common.profile.ProfileException
in
- inbound transportout
- outbount transport
edu.internet2.middleware.shibboleth.common.profile.ProfileException
- thrown if there is a problem creating the contextprotected void populateSAMLMessageInformation(edu.internet2.middleware.shibboleth.common.profile.provider.BaseSAMLProfileRequestContext requestContext) throws edu.internet2.middleware.shibboleth.common.profile.ProfileException
populateSAMLMessageInformation
in class SSOProfileHandler
requestContext
- current request context
edu.internet2.middleware.shibboleth.common.profile.ProfileException
- thrown if the inbound SAML message or subject identifier is nullprotected org.opensaml.saml2.core.AuthnStatement buildAuthnStatement(SSOProfileHandler.SSORequestContext requestContext)
buildAuthnStatement
in class SSOProfileHandler
requestContext
- current request context
protected org.opensaml.saml2.core.AuthnContext buildAuthnContext(SSOProfileHandler.SSORequestContext requestContext)
AuthnContext
for a successful authentication request.
buildAuthnContext
in class SSOProfileHandler
requestContext
- current request
protected org.opensaml.ws.message.handler.HandlerChain buildPreSecurityInboundHandlerChain()
protected org.opensaml.ws.message.handler.HandlerChain buildPostSecurityInboundHandlerChain()
protected org.opensaml.ws.message.handler.HandlerChainResolver getPreSecurityInboundHandlerChainResolver()
protected org.opensaml.ws.message.handler.HandlerChainResolver getPostSecurityInboundHandlerChainResolver()
protected org.opensaml.ws.message.handler.HandlerChain buildOutboundHandlerChain()
protected org.opensaml.ws.message.handler.HandlerChainResolver getOutboundHandlerChainResolver()
protected org.opensaml.common.binding.encoding.SAMLMessageEncoder getOutboundMessageEncoder(edu.internet2.middleware.shibboleth.common.profile.provider.BaseSAMLProfileRequestContext requestContext) throws edu.internet2.middleware.shibboleth.common.profile.ProfileException
The default implementation uses the binding URI from the
SAMLMessageContext.getPeerEntityEndpoint()
to lookup the encoder from the
supported message encoders defined in AbstractSAMLProfileHandler.getMessageEncoders()
.
Subclasses may override to implement a different mechanism to determine the encoder to use, such as for example cases where an active intermediary actor sits between this provider and the peer entity endpoint (e.g. the SAML 2 ECP case).
getOutboundMessageEncoder
in class AbstractSAMLProfileHandler
requestContext
- current request context
edu.internet2.middleware.shibboleth.common.profile.ProfileException
- if the encoder to use can not be resolved based on the request contextprotected org.opensaml.common.binding.decoding.SAMLMessageDecoder getInboundMessageDecoder(edu.internet2.middleware.shibboleth.common.profile.provider.BaseSAMLProfileRequestContext requestContext) throws edu.internet2.middleware.shibboleth.common.profile.ProfileException
The default implementation uses the binding URI from AbstractSAMLProfileHandler.getInboundBinding()
to lookup the decoder from the
supported message decoders defined in AbstractSAMLProfileHandler.getMessageDecoders()
.
Subclasses may override to implement a different mechanism to determine the decoder to use.
getInboundMessageDecoder
in class AbstractSAMLProfileHandler
requestContext
- current request context
edu.internet2.middleware.shibboleth.common.profile.ProfileException
- if the decoder to use can not be resolved based on the request context
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |