Package | Description |
---|---|
org.opensaml.messaging.handler |
Interfaces and classes for message context handlers.
|
org.opensaml.messaging.handler.impl |
Implementations of message context handlers.
|
org.opensaml.saml.common.binding.impl |
Implementation of SAML binding-level functionality, such as MessageHandlers.
|
org.opensaml.saml.common.binding.security.impl |
Classes responsible for performing transport-related and basic message
validation of decoded SAML messages.
|
org.opensaml.saml.saml1.binding.impl |
General message handlers for SAML 1.x.
|
org.opensaml.saml.saml2.binding.impl |
General message handlers for SAML 2.
|
org.opensaml.saml.saml2.binding.security.impl |
Security-related message handlers for SAML 2.
|
org.opensaml.security.messaging.impl |
Message handler implementations.
|
org.opensaml.soap.soap11.decoder.http.impl |
SOAP over HTTP 1.1 message decoder and handlers.
|
Modifier and Type | Method and Description |
---|---|
protected abstract void |
AbstractMessageHandler.doInvoke(MessageContext<MessageType> messageContext)
Performs the handler logic.
|
protected boolean |
AbstractMessageHandler.doPreInvoke(MessageContext<MessageType> messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
void |
MessageHandler.invoke(MessageContext<MessageType> messageContext)
Invoke the handler on the specified message context.
|
void |
AbstractMessageHandler.invoke(MessageContext<MessageType> messageContext)
Invoke the handler on the specified message context.
|
Modifier and Type | Method and Description |
---|---|
protected void |
CheckMandatoryAuthentication.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
HTTPRequestValidationHandler.doInvoke(MessageContext messageContext)
Evaluates whether the specified HTTP servlet request meets all requirements.
|
protected void |
CheckMandatoryIssuer.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
SchemaValidateXMLMessage.doInvoke(MessageContext<MessageType> messageContext)
Performs the handler logic.
|
void |
BasicMessageHandlerChain.doInvoke(MessageContext<MessageType> msgContext)
Performs the handler logic.
|
protected boolean |
SchemaValidateXMLMessage.doPreInvoke(MessageContext<MessageType> messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
protected void |
HTTPRequestValidationHandler.evaluateContentType(javax.servlet.http.HttpServletRequest request)
Checks if the request is of the correct content type.
|
protected void |
HTTPRequestValidationHandler.evaluateRequestMethod(javax.servlet.http.HttpServletRequest request)
Checks if the request contains the correct request method.
|
protected void |
HTTPRequestValidationHandler.evaluateSecured(javax.servlet.http.HttpServletRequest request)
Checks if the request is secured.
|
Modifier and Type | Method and Description |
---|---|
protected void |
SAMLSOAPDecoderBodyHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
SAMLOutboundDestinationHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
CheckMessageVersionHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
SAMLProtocolAndRoleHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
SAMLAddAttributeConsumingServiceHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
SAMLMetadataLookupHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
AddChannelBindingsHeaderHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected boolean |
SAMLAddAttributeConsumingServiceHandler.doPreInvoke(MessageContext messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
protected boolean |
AddChannelBindingsHeaderHandler.doPreInvoke(MessageContext messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
Modifier and Type | Method and Description |
---|---|
protected net.shibboleth.utilities.java.support.resolver.CriteriaSet |
BaseSAMLSimpleSignatureSecurityHandler.buildCriteriaSet(String entityID,
MessageContext messageContext)
Build a criteria set suitable for input to the trust engine.
|
protected net.shibboleth.utilities.java.support.resolver.CriteriaSet |
BaseSAMLXMLSignatureSecurityHandler.buildCriteriaSet(String entityID,
MessageContext messageContext)
Subclasses are required to implement this method to build a criteria set for the trust engine
according to trust engine and application-specific needs.
|
protected net.shibboleth.utilities.java.support.resolver.CriteriaSet |
SAMLMDClientCertAuthSecurityHandler.buildCriteriaSet(String entityID,
MessageContext messageContext)
Subclasses are required to implement this method to build a criteria set for the trust engine
according to trust engine and application-specific needs.
|
protected void |
ReceivedEndpointSecurityHandler.checkEndpointURI(MessageContext<SAMLObject> messageContext,
net.shibboleth.utilities.java.support.net.URIComparator comparator)
Check the validity of the SAML protocol message receiver endpoint against
requirements indicated in the message.
|
protected String |
BaseSAMLSimpleSignatureSecurityHandler.deriveSignerEntityID(MessageContext messageContext)
Derive the signer's entity ID from the message context.
|
protected void |
SAMLProtocolMessageXMLSignatureSecurityHandler.doEvaluate(Signature signature,
SignableSAMLObject signableObject,
MessageContext messageContext)
Perform cryptographic validation and trust evaluation on the Signature token using the configured Signature
trust engine.
|
protected void |
BaseSAMLSimpleSignatureSecurityHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
void |
SAMLProtocolMessageXMLSignatureSecurityHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
MessageReplaySecurityHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
SAMLOutboundProtocolMessageSigningHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
EndpointURLSchemeSecurityHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
void |
MessageLifetimeSecurityHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
ReceivedEndpointSecurityHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected boolean |
BaseSAMLSimpleSignatureSecurityHandler.doPreInvoke(MessageContext messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
protected boolean |
BaseSAMLXMLSignatureSecurityHandler.doPreInvoke(MessageContext messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
protected List<Credential> |
BaseSAMLSimpleSignatureSecurityHandler.getRequestCredentials(MessageContext messageContext)
Extract any candidate validation credentials from the request and/or message context.
|
protected byte[] |
BaseSAMLSimpleSignatureSecurityHandler.getSignature()
Extract the signature value from the request, in the form suitable for input into
SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential) . |
protected String |
BaseSAMLSimpleSignatureSecurityHandler.getSignatureAlgorithm()
Extract the signature algorithm URI value from the request.
|
protected abstract byte[] |
BaseSAMLSimpleSignatureSecurityHandler.getSignedContent()
Get the content over which to validate the signature, in the form suitable for input into
SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential) . |
protected void |
SAMLProtocolMessageXMLSignatureSecurityHandler.performPrevalidation(Signature signature)
Perform pre-validation on the Signature token.
|
protected abstract boolean |
BaseSAMLSimpleSignatureSecurityHandler.ruleHandles(MessageContext messageContext)
Determine whether the rule should handle the request, based on the unwrapped HTTP servlet request and/or message
context.
|
protected boolean |
BaseSAMLSimpleSignatureSecurityHandler.validateSignature(byte[] signature,
byte[] signedContent,
String algorithmURI,
net.shibboleth.utilities.java.support.resolver.CriteriaSet criteriaSet,
List<Credential> candidateCredentials)
Validate the simple signature.
|
Modifier and Type | Method and Description |
---|---|
protected void |
SAML1ArtifactRequestIssuerHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
Modifier and Type | Method and Description |
---|---|
protected void |
AddRequestAuthenticatedHeaderHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
AddGeneratedKeyHeaderHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
AddConsentToResponseHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
AddECPResponseHeaderHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
AddRelayStateHeaderHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
ExtractConsentFromRequestHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected boolean |
AddRequestAuthenticatedHeaderHandler.doPreInvoke(MessageContext messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
protected boolean |
AddGeneratedKeyHeaderHandler.doPreInvoke(MessageContext messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
protected boolean |
AddECPResponseHeaderHandler.doPreInvoke(MessageContext messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
protected boolean |
AddRelayStateHeaderHandler.doPreInvoke(MessageContext messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
Modifier and Type | Method and Description |
---|---|
protected void |
ExtractChannelBindingsHeadersHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
ExtractChannelBindingsExtensionsHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
void |
SAML2AuthnRequestsSignedSecurityHandler.doInvoke(MessageContext<SAMLObject> messageContext)
Performs the handler logic.
|
protected boolean |
ExtractChannelBindingsExtensionsHandler.doPreInvoke(MessageContext messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
protected List<Credential> |
SAML2HTTPPostSimpleSignSecurityHandler.getRequestCredentials(MessageContext samlContext)
Extract any candidate validation credentials from the request and/or message context.
|
protected byte[] |
SAML2HTTPPostSimpleSignSecurityHandler.getSignedContent()
Get the content over which to validate the signature, in the form suitable for input into
SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential) . |
protected byte[] |
SAML2HTTPRedirectDeflateSignatureSecurityHandler.getSignedContent()
Get the content over which to validate the signature, in the form suitable for input into
SignatureTrustEngine.validate(byte[], byte[], String, CriteriaSet, Credential) . |
protected boolean |
SAML2HTTPRedirectDeflateSignatureSecurityHandler.ruleHandles(MessageContext messgaeContext)
Determine whether the rule should handle the request, based on the unwrapped HTTP servlet request and/or message
context.
|
Modifier and Type | Method and Description |
---|---|
protected net.shibboleth.utilities.java.support.resolver.CriteriaSet |
BaseClientCertAuthSecurityHandler.buildCriteriaSet(String entityID,
MessageContext messageContext)
Subclasses are required to implement this method to build a criteria set for the trust engine
according to trust engine and application-specific needs.
|
protected abstract net.shibboleth.utilities.java.support.resolver.CriteriaSet |
BaseTrustEngineSecurityHandler.buildCriteriaSet(String entityID,
MessageContext messageContext)
Subclasses are required to implement this method to build a criteria set for the trust engine
according to trust engine and application-specific needs.
|
protected void |
BaseClientCertAuthSecurityHandler.doEvaluate(X509Credential requestCredential,
MessageContext messageContext)
Evaluate the request credential.
|
protected void |
BaseClientCertAuthSecurityHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected boolean |
BaseClientCertAuthSecurityHandler.doPreInvoke(MessageContext messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
protected boolean |
BaseTrustEngineSecurityHandler.doPreInvoke(MessageContext messageContext)
Called prior to execution, handlers may override this method to perform pre-processing for a request.
|
protected boolean |
BaseTrustEngineSecurityHandler.evaluate(TokenType token,
net.shibboleth.utilities.java.support.resolver.CriteriaSet criteriaSet)
Evaluate the token against the specified criteria using the configured trust engine.
|
protected boolean |
BaseTrustEngineSecurityHandler.evaluate(TokenType token,
String entityID,
MessageContext messageContext)
Evaluate the token using the configured trust engine against criteria built using
the specified candidate issuer entity ID and message context information.
|
protected String |
BaseClientCertAuthSecurityHandler.evaluateCertificateNameDerivedPresenters(X509Credential requestCredential,
MessageContext messageContext)
Evaluate candidate presenter entity ID's which may be derived from the request credential's entity certificate
according to the options supplied via
CertificateNameOptions . |
protected String |
BaseClientCertAuthSecurityHandler.evaluateDerivedPresenters(X509Credential requestCredential,
MessageContext messageContext)
Evaluate any candidate presenter entity ID's which may be derived from the credential or other message context
information.
|
protected String |
BaseClientCertAuthSecurityHandler.evaluateSubjectAltNames(X509Credential requestCredential,
MessageContext messageContext)
Evaluate the presenter entity ID as derived from the cert subject alternative names specified by types enumerated
in
CertificateNameOptions.getSubjectAltNames() . |
protected String |
BaseClientCertAuthSecurityHandler.evaluateSubjectCommonName(X509Credential requestCredential,
MessageContext messageContext)
Evaluate the presenter entity ID as derived from the cert subject common name (CN).
|
protected String |
BaseClientCertAuthSecurityHandler.evaluateSubjectDN(X509Credential requestCredential,
MessageContext messageContext)
Evaluate the presenter entity ID as derived from the cert subject DN.
|
Modifier and Type | Method and Description |
---|---|
protected void |
SimplePayloadBodyHandler.doInvoke(MessageContext messageContext)
Performs the handler logic.
|
protected void |
EnvelopeBodyHandler.doInvoke(MessageContext<Envelope> messageContext)
Performs the handler logic.
|
Copyright © 2017. All rights reserved.