Package | Description |
---|---|
org.opensaml.common.binding |
Classes related to SAML binding operations.
|
org.opensaml.common.binding.decoding |
Classes used to decode SAML messages.
|
org.opensaml.common.binding.security |
Classes responsible for performing transport-related and basic message
validation of decoded SAML messages.
|
org.opensaml.saml1.binding |
Classes for working with SAML 1 bindings.
|
org.opensaml.saml1.binding.artifact |
Classes that may be used to create and manipulate SAML artifacts.
|
org.opensaml.saml1.binding.decoding |
Classes used to decode SAML messages.
|
org.opensaml.saml1.binding.encoding |
Classes used to encode SAML messages.
|
org.opensaml.saml2.binding |
Class for working with SAML 2 bindings.
|
org.opensaml.saml2.binding.artifact |
Classes that may be used to create and manipulate SAML 2 artifacts.
|
org.opensaml.saml2.binding.decoding |
Classes used to decode SAML 2 messages.
|
org.opensaml.saml2.binding.encoding |
Classes used to encode SAML 2 messages.
|
org.opensaml.saml2.binding.security |
Classes responsible for performing transport-related and basic message
validation of decoded SAML 2 messages.
|
Modifier and Type | Class and Description |
---|---|
class |
BasicSAMLMessageContext<InboundMessageType extends SAMLObject,OutboundMessageType extends SAMLObject,NameIdentifierType extends SAMLObject>
Base implemention of
SAMLMessageContext . |
Modifier and Type | Method and Description |
---|---|
protected void |
BaseSAMLMessageDecoder.checkEndpointURI(SAMLMessageContext messageContext)
Check the validity of the SAML protocol message receiver endpoint against
requirements indicated in the message.
|
protected String |
BaseSAMLMessageDecoder.getActualReceiverEndpointURI(SAMLMessageContext messageContext)
Extract the transport endpoint at which this message was received.
|
protected abstract String |
BaseSAMLMessageDecoder.getIntendedDestinationEndpointURI(SAMLMessageContext samlMsgCtx)
Extract the message information which indicates to what receiver endpoint URI the
SAML message was intended to be delivered.
|
protected abstract boolean |
BaseSAMLMessageDecoder.isIntendedDestinationEndpointURIRequired(SAMLMessageContext samlMsgCtx)
Determine whether the binding implemented by the decoder requires the presence within the message
of information indicating the intended message destination endpoint URI.
|
protected boolean |
BaseSAMLMessageDecoder.isMessageSigned(SAMLMessageContext messageContext)
Determine whether the SAML message represented by the message context is digitally signed.
|
Modifier and Type | Method and Description |
---|---|
protected org.opensaml.xml.security.CriteriaSet |
BaseSAMLSimpleSignatureSecurityPolicyRule.buildCriteriaSet(String entityID,
SAMLMessageContext samlContext)
Build a criteria set suitable for input to the trust engine.
|
protected String |
BaseSAMLSimpleSignatureSecurityPolicyRule.deriveSignerEntityID(SAMLMessageContext samlContext)
Derive the signer's entity ID from the message context.
|
protected void |
SAMLProtocolMessageXMLSignatureSecurityPolicyRule.doEvaluate(org.opensaml.xml.signature.Signature signature,
SignableSAMLObject signableObject,
SAMLMessageContext samlMsgCtx)
Perform cryptographic validation and trust evaluation on the Signature token using the configured Signature trust
engine.
|
protected List<org.opensaml.xml.security.credential.Credential> |
BaseSAMLSimpleSignatureSecurityPolicyRule.getRequestCredentials(javax.servlet.http.HttpServletRequest request,
SAMLMessageContext samlContext)
Extract any candidate validation credentials from the request and/or message context.
|
protected abstract boolean |
BaseSAMLSimpleSignatureSecurityPolicyRule.ruleHandles(javax.servlet.http.HttpServletRequest request,
SAMLMessageContext samlMsgCtx)
Determine whether the rule should handle the request, based on the unwrapped HTTP servlet request and/or message
context.
|
Modifier and Type | Interface and Description |
---|---|
interface |
SAML1ArtifactMessageContext<InboundMessageType extends SAMLObject,OutboundMessageType extends SAMLObject,NameIdentifierType extends SAMLObject>
Extensions to the base SAML message context that carries artifact related information.
|
Modifier and Type | Method and Description |
---|---|
SAML1ArtifactType0002 |
SAML1ArtifactType0002Builder.buildArtifact(SAMLMessageContext<RequestAbstractType,Response,NameIdentifier> requestContext,
Assertion assertion)
Builds an artifact, for the given assertion, destined for the outbound message recipient.
|
ArtifactType |
SAML1ArtifactBuilder.buildArtifact(SAMLMessageContext<RequestAbstractType,Response,NameIdentifier> requestContext,
Assertion assertion)
Builds an artifact, for the given assertion, destined for the outbound message recipient.
|
SAML1ArtifactType0001 |
SAML1ArtifactType0001Builder.buildArtifact(SAMLMessageContext<RequestAbstractType,Response,NameIdentifier> requestContext,
Assertion assertion)
Builds an artifact, for the given assertion, destined for the outbound message recipient.
|
protected String |
SAML1ArtifactType0002Builder.getSourceLocation(SAMLMessageContext<RequestAbstractType,Response,NameIdentifier> requestContext)
Gets the source location used to for the artifacts created by this encoder.
|
Modifier and Type | Method and Description |
---|---|
protected void |
HTTPArtifactDecoder.decodeTarget(SAMLMessageContext samlMsgCtx)
Decodes the TARGET parameter and adds it to the message context.
|
protected void |
BaseSAML1MessageDecoder.extractAssertionArtifactInfo(SAMLMessageContext messageContext,
List<AssertionArtifact> artifacts)
Extract the issuer, and populate message context, as the relying party corresponding to the first
AssertionArtifact in the message.
|
protected void |
BaseSAML1MessageDecoder.extractAttributeQueryInfo(SAMLMessageContext messageContext,
AttributeQuery query)
Extract the issuer, and populate message context, from the Resource attribute of the Attribute query if
BaseSAML1MessageDecoder.useQueryResourceAsEntityId is true. |
protected void |
BaseSAML1MessageDecoder.extractAuthorizationDecisionQueryInfo(SAMLMessageContext messageContext,
AuthorizationDecisionQuery query)
Extract the issuer, and populate message context, from the Resource attribute of the AuthorizationDecisionQuery
query if
BaseSAML1MessageDecoder.useQueryResourceAsEntityId is true. |
protected void |
BaseSAML1MessageDecoder.extractRequestInfo(SAMLMessageContext messageContext,
RequestAbstractType abstractRequest)
Extract information from a SAML RequestAbstractType message.
|
protected void |
BaseSAML1MessageDecoder.extractResponseInfo(SAMLMessageContext messageContext,
Response response)
Extract information from a SAML StatusResponse message.
|
protected String |
BaseSAML1MessageDecoder.getIntendedDestinationEndpointURI(SAMLMessageContext samlMsgCtx)
Extract the message information which indicates to what receiver endpoint URI the
SAML message was intended to be delivered.
|
protected String |
HTTPArtifactDecoder.getIntendedDestinationEndpointURI(SAMLMessageContext samlMsgCtx)
Extract the message information which indicates to what receiver endpoint URI the
SAML message was intended to be delivered.
|
protected boolean |
HTTPSOAP11Decoder.isIntendedDestinationEndpointURIRequired(SAMLMessageContext samlMsgCtx)
Determine whether the binding implemented by the decoder requires the presence within the message
of information indicating the intended message destination endpoint URI.
|
protected boolean |
HTTPArtifactDecoder.isIntendedDestinationEndpointURIRequired(SAMLMessageContext samlMsgCtx)
Determine whether the binding implemented by the decoder requires the presence within the message
of information indicating the intended message destination endpoint URI.
|
protected boolean |
HTTPPostDecoder.isIntendedDestinationEndpointURIRequired(SAMLMessageContext samlMsgCtx)
Determine whether the binding implemented by the decoder requires the presence within the message
of information indicating the intended message destination endpoint URI.
|
protected void |
BaseSAML1MessageDecoder.populateMessageContext(SAMLMessageContext messageContext)
Populates the message context with the message ID, issue instant, and issuer as well as the peer's entity
descriptor if a metadata provider is present in the message context and the peer's role descriptor if its entity
descriptor was retrieved and the message context has a populated peer role name.
|
protected void |
BaseSAML1MessageDecoder.populateMessageIdIssueInstantIssuer(SAMLMessageContext messageContext)
Extracts the message ID, issue instant, and issuer from the incoming SAML message and populates the message
context with it.
|
protected void |
BaseSAML1MessageDecoder.populateRelyingPartyMetadata(SAMLMessageContext messageContext)
Populates the peer's entity metadata if a metadata provide is present in the message context.
|
protected void |
HTTPArtifactDecoder.processArtifacts(SAMLMessageContext samlMsgCtx)
Process the incoming artifacts by decoding the artifacts, dereferencing them from the artifact source and
storing the resulting response (with assertions) in the message context.
|
Modifier and Type | Method and Description |
---|---|
protected org.opensaml.util.URLBuilder |
BaseSAML1MessageEncoder.getEndpointURL(SAMLMessageContext messageContext)
Gets the response URL from the relying party endpoint.
|
protected void |
HTTPPostEncoder.postEncode(SAMLMessageContext messageContext,
String endpointURL)
Base64 and POST encodes the outbound message and writes it to the outbound transport.
|
protected void |
BaseSAML1MessageEncoder.signMessage(SAMLMessageContext messageContext)
Signs the given SAML message if it a
SignableSAMLObject and this encoder has signing credentials. |
Modifier and Type | Interface and Description |
---|---|
interface |
SAML2ArtifactMessageContext<InboundMessageType extends SAMLObject,OutboundMessageType extends SAMLObject,NameIdentifierType extends SAMLObject>
Extensions to the base SAML message context that carries artifact related information.
|
Modifier and Type | Method and Description |
---|---|
ArtifactType |
SAML2ArtifactBuilder.buildArtifact(SAMLMessageContext<SAMLObject,SAMLObject,NameID> requestContext)
Builds an artifact, for the given assertion, destined for the outbound message recipient.
|
SAML2ArtifactType0004 |
SAML2ArtifactType0004Builder.buildArtifact(SAMLMessageContext<SAMLObject,SAMLObject,NameID> requestContext)
Builds an artifact, for the given assertion, destined for the outbound message recipient.
|
protected Endpoint |
SAML2ArtifactType0004Builder.getAcsEndpoint(SAMLMessageContext<SAMLObject,SAMLObject,NameID> requestContext)
Gets the source location used to for the artifacts created by this encoder.
|
Modifier and Type | Method and Description |
---|---|
protected void |
BaseSAML2MessageDecoder.extractRequestInfo(SAMLMessageContext messageContext,
RequestAbstractType request)
Extract information from a SAML RequestAbstractType message.
|
protected void |
BaseSAML2MessageDecoder.extractResponseInfo(SAMLMessageContext messageContext,
StatusResponseType statusResponse)
Extract information from a SAML StatusResponse message.
|
protected String |
BaseSAML2MessageDecoder.getIntendedDestinationEndpointURI(SAMLMessageContext samlMsgCtx)
Extract the message information which indicates to what receiver endpoint URI the
SAML message was intended to be delivered.
|
protected String |
HTTPArtifactDecoder.getIntendedDestinationEndpointURI(SAMLMessageContext samlMsgCtx)
Extract the message information which indicates to what receiver endpoint URI the
SAML message was intended to be delivered.
|
protected boolean |
HTTPPostDecoder.isIntendedDestinationEndpointURIRequired(SAMLMessageContext samlMsgCtx)
Determine whether the binding implemented by the decoder requires the presence within the message
of information indicating the intended message destination endpoint URI.
|
protected boolean |
HTTPSOAP11Decoder.isIntendedDestinationEndpointURIRequired(SAMLMessageContext samlMsgCtx)
Determine whether the binding implemented by the decoder requires the presence within the message
of information indicating the intended message destination endpoint URI.
|
protected boolean |
HTTPArtifactDecoder.isIntendedDestinationEndpointURIRequired(SAMLMessageContext samlMsgCtx)
Determine whether the binding implemented by the decoder requires the presence within the message
of information indicating the intended message destination endpoint URI.
|
protected boolean |
HTTPRedirectDeflateDecoder.isIntendedDestinationEndpointURIRequired(SAMLMessageContext samlMsgCtx)
Determine whether the binding implemented by the decoder requires the presence within the message
of information indicating the intended message destination endpoint URI.
|
protected boolean |
HTTPRedirectDeflateDecoder.isMessageSigned(SAMLMessageContext messageContext)
Determine whether the SAML message represented by the message context is digitally signed.
|
protected boolean |
HTTPPostSimpleSignDecoder.isMessageSigned(SAMLMessageContext messageContext)
Determine whether the SAML message represented by the message context is digitally signed.
|
protected void |
BaseSAML2MessageDecoder.populateMessageContext(SAMLMessageContext messageContext)
Populates the message context with the message ID, issue instant, and issuer as well as the peer's entity
descriptor if a metadata provider is present in the message context and the peer's role descriptor if its entity
descriptor was retrieved and the message context has a populated peer role name.
|
protected void |
BaseSAML2MessageDecoder.populateMessageIdIssueInstantIssuer(SAMLMessageContext messageContext)
Extracts the message ID, issue instant, and issuer from the incoming SAML message and populates the message
context with it.
|
protected void |
BaseSAML2MessageDecoder.populateRelyingPartyMetadata(SAMLMessageContext messageContext)
Populates the peer's entity metadata if a metadata provide is present in the message context.
|
protected void |
HTTPArtifactDecoder.processArtifact(SAMLMessageContext samlMsgCtx)
Process the incoming artifact by decoding the artifacts, dereferencing it from the artifact issuer and
storing the resulting protocol message in the message context.
|
Modifier and Type | Method and Description |
---|---|
protected AbstractSAML2Artifact |
HTTPArtifactEncoder.buildArtifact(SAMLMessageContext artifactContext)
Builds the SAML 2 artifact for the outgoing message.
|
protected String |
HTTPPostSimpleSignEncoder.buildFormDataToSign(org.apache.velocity.VelocityContext velocityContext,
SAMLMessageContext messageContext,
String sigAlgURI)
Build the form control data string over which the signature is computed.
|
protected String |
HTTPRedirectDeflateEncoder.buildRedirectURL(SAMLMessageContext messagesContext,
String endpointURL,
String message)
Builds the URL to redirect the client to.
|
protected void |
HTTPArtifactEncoder.getEncode(SAMLMessageContext artifactContext,
org.opensaml.ws.transport.http.HTTPOutTransport outTransport)
Performs HTTP GET based encoding.
|
protected org.opensaml.util.URLBuilder |
BaseSAML2MessageEncoder.getEndpointURL(SAMLMessageContext messageContext)
Gets the response URL from the relying party endpoint.
|
protected void |
HTTPPostEncoder.populateVelocityContext(org.apache.velocity.VelocityContext velocityContext,
SAMLMessageContext messageContext,
String endpointURL)
Populate the Velocity context instance which will be used to render the POST body.
|
protected void |
HTTPPostSimpleSignEncoder.populateVelocityContext(org.apache.velocity.VelocityContext velocityContext,
SAMLMessageContext messageContext,
String endpointURL)
Populate the Velocity context instance which will be used to render the POST body.
|
protected void |
HTTPArtifactEncoder.postEncode(SAMLMessageContext artifactContext,
org.opensaml.ws.transport.http.HTTPOutTransport outTransport)
Performs HTTP POST based encoding.
|
protected void |
HTTPPostEncoder.postEncode(SAMLMessageContext messageContext,
String endpointURL)
Base64 and POST encodes the outbound message and writes it to the outbound transport.
|
protected void |
HTTPRedirectDeflateEncoder.removeSignature(SAMLMessageContext messageContext)
Removes the signature from the protocol message.
|
protected void |
BaseSAML2MessageEncoder.signMessage(SAMLMessageContext messageContext)
Signs the given SAML message if it a
SignableSAMLObject and this encoder has signing credentials. |
protected void |
HTTPPostSimpleSignEncoder.signMessage(SAMLMessageContext messageContext)
Signs the given SAML message if it a
SignableSAMLObject and this encoder has signing credentials. |
Modifier and Type | Method and Description |
---|---|
protected List<org.opensaml.xml.security.credential.Credential> |
SAML2HTTPPostSimpleSignRule.getRequestCredentials(javax.servlet.http.HttpServletRequest request,
SAMLMessageContext samlContext)
Extract any candidate validation credentials from the request and/or message context.
|
protected boolean |
SAML2AuthnRequestsSignedRule.isMessageSigned(SAMLMessageContext messageContext)
Determine whether the inbound message is signed.
|
protected boolean |
SAML2HTTPPostSimpleSignRule.ruleHandles(javax.servlet.http.HttpServletRequest request,
SAMLMessageContext samlMsgCtx)
Determine whether the rule should handle the request, based on the unwrapped HTTP servlet request and/or message
context.
|
protected boolean |
SAML2HTTPRedirectDeflateSignatureRule.ruleHandles(javax.servlet.http.HttpServletRequest request,
SAMLMessageContext samlMsgCtx)
Determine whether the rule should handle the request, based on the unwrapped HTTP servlet request and/or message
context.
|
Copyright © 1999-2013. All Rights Reserved.