Package org.nuxeo.ecm.platform.auth.saml
Class AbstractSAMLProfile
- java.lang.Object
-
- org.nuxeo.ecm.platform.auth.saml.AbstractSAMLProfile
-
- Direct Known Subclasses:
SLOProfileImpl,WebSSOProfileImpl
public abstract class AbstractSAMLProfile extends Object
Base abstract class for SAML profile processors.- Since:
- 6.0
-
-
Field Summary
Fields Modifier and Type Field Description protected org.opensaml.xml.XMLObjectBuilderFactorybuilderFactoryprotected static Loglogprotected org.opensaml.xml.signature.SignatureTrustEnginetrustEngine
-
Constructor Summary
Constructors Constructor Description AbstractSAMLProfile(org.opensaml.saml2.metadata.Endpoint endpoint)
-
Method Summary
All Methods Instance Methods Abstract Methods Concrete Methods Modifier and Type Method Description protected <T extends org.opensaml.common.SAMLObject>
Tbuild(QName qName)protected StringgetBaseURL(javax.servlet.ServletRequest request)org.opensaml.saml2.encryption.DecryptergetDecrypter()org.opensaml.saml2.metadata.EndpointgetEndpoint()abstract StringgetProfileIdentifier()intgetSkewTimeMillis()protected StringgetStartPageURL(javax.servlet.ServletRequest request)org.opensaml.xml.signature.SignatureTrustEnginegetTrustEngine()protected StringnewUUID()protected org.opensaml.saml2.core.AuthnRequestretrieveRequest(org.opensaml.saml2.core.Response response)voidsetDecrypter(org.opensaml.saml2.encryption.Decrypter decrypter)voidsetSkewTimeMillis(int skewTimeMillis)voidsetTrustEngine(org.opensaml.xml.signature.SignatureTrustEngine trustEngine)protected voidvalidateAssertion(org.opensaml.saml2.core.Assertion assertion, org.opensaml.common.binding.SAMLMessageContext context)protected voidvalidateEndpoint(org.opensaml.saml2.core.Response response, org.opensaml.saml2.metadata.Endpoint endpoint)protected voidvalidateIssuer(org.opensaml.saml2.core.Issuer issuer, org.opensaml.common.binding.SAMLMessageContext context)protected voidvalidateSignature(org.opensaml.xml.signature.Signature signature, String IDPEntityID)
-
-
-
Field Detail
-
log
protected static final Log log
-
builderFactory
protected final org.opensaml.xml.XMLObjectBuilderFactory builderFactory
-
trustEngine
protected org.opensaml.xml.signature.SignatureTrustEngine trustEngine
-
-
Method Detail
-
getProfileIdentifier
public abstract String getProfileIdentifier()
- Returns:
- the profile identifier (Uri).
-
build
protected <T extends org.opensaml.common.SAMLObject> T build(QName qName)
-
validateSignature
protected void validateSignature(org.opensaml.xml.signature.Signature signature, String IDPEntityID) throws org.opensaml.common.SAMLException- Throws:
org.opensaml.common.SAMLException
-
validateIssuer
protected void validateIssuer(org.opensaml.saml2.core.Issuer issuer, org.opensaml.common.binding.SAMLMessageContext context) throws org.opensaml.common.SAMLException- Throws:
org.opensaml.common.SAMLException
-
validateEndpoint
protected void validateEndpoint(org.opensaml.saml2.core.Response response, org.opensaml.saml2.metadata.Endpoint endpoint) throws org.opensaml.common.SAMLException- Throws:
org.opensaml.common.SAMLException
-
validateAssertion
protected void validateAssertion(org.opensaml.saml2.core.Assertion assertion, org.opensaml.common.binding.SAMLMessageContext context) throws org.opensaml.common.SAMLException- Throws:
org.opensaml.common.SAMLException
-
retrieveRequest
protected org.opensaml.saml2.core.AuthnRequest retrieveRequest(org.opensaml.saml2.core.Response response) throws org.opensaml.common.SAMLException- Throws:
org.opensaml.common.SAMLException
-
getEndpoint
public org.opensaml.saml2.metadata.Endpoint getEndpoint()
-
getTrustEngine
public org.opensaml.xml.signature.SignatureTrustEngine getTrustEngine()
-
setTrustEngine
public void setTrustEngine(org.opensaml.xml.signature.SignatureTrustEngine trustEngine)
-
getDecrypter
public org.opensaml.saml2.encryption.Decrypter getDecrypter()
-
setDecrypter
public void setDecrypter(org.opensaml.saml2.encryption.Decrypter decrypter)
-
getSkewTimeMillis
public int getSkewTimeMillis()
-
setSkewTimeMillis
public void setSkewTimeMillis(int skewTimeMillis)
-
newUUID
protected String newUUID()
-
getBaseURL
protected String getBaseURL(javax.servlet.ServletRequest request)
-
getStartPageURL
protected String getStartPageURL(javax.servlet.ServletRequest request)
-
-