net.shibboleth.idp.saml.idwsf.profile.config

Class SSOSProfileConfiguration

java.lang.Object

net.shibboleth.idp.profile.config.AbstractProfileConfiguration

net.shibboleth.idp.profile.config.AbstractConditionalProfileConfiguration

net.shibboleth.idp.saml.profile.config.AbstractSAMLProfileConfiguration

net.shibboleth.idp.saml.saml2.profile.config.AbstractSAML2ProfileConfiguration

net.shibboleth.idp.saml.saml2.profile.config.AbstractSAML2ArtifactAwareProfileConfiguration

net.shibboleth.idp.saml.saml2.profile.config.BrowserSSOProfileConfiguration

net.shibboleth.idp.saml.idwsf.profile.config.SSOSProfileConfiguration

All Implemented Interfaces:

AuthenticationProfileConfiguration, ConditionalProfileConfiguration, ProfileConfiguration, SAMLArtifactAwareProfileConfiguration, SAMLArtifactConsumerProfileConfiguration, SAMLProfileConfiguration, SAML2ProfileConfiguration, Component, IdentifiedComponent

public class SSOSProfileConfiguration
extends BrowserSSOProfileConfiguration

Configuration support for the Liberty ID-WSF SSOS profile.

Field Summary

Fields

Modifier and Type	Field and Description
private com.google.common.base.Predicate<ProfileRequestContext>	delegationPredicate Predicate used to determine if a token may be delegated to a relying party.
static String	PROFILE_ID ID for this profile configuration.

Fields inherited from class net.shibboleth.idp.saml.saml2.profile.config.BrowserSSOProfileConfiguration

FEATURE_AUTHNCONTEXT

Constructor Summary

Constructors

Modifier	Constructor and Description
	SSOSProfileConfiguration() Constructor.
protected	SSOSProfileConfiguration(String profileId) Constructor.

Method Summary

Methods

Modifier and Type	Method and Description
com.google.common.base.Predicate<ProfileRequestContext>	getDelegationPredicate() Gets the predicate used to determine whether a delegated token presented to the IdP by another non-user entity may be used to complete SAML 2 SSO to this relying party.
void	setDelegationPredicate(com.google.common.base.Predicate<ProfileRequestContext> predicate) Sets the predicate used to determine whether a delegated token presented to the IdP by another non-user entity may be used to complete SAML 2 SSO to this relying party.

Methods inherited from class net.shibboleth.idp.saml.saml2.profile.config.BrowserSSOProfileConfiguration

getAllowDelegation, getAllowingDelegation, getAuthenticationFlows, getDefaultAuthenticationMethods, getForceAuthnPredicate, getIncludeAttributeStatementPredicate, getMaximumSPSessionLifetime, getMaximumTokenDelegationChainLength, getNameIDFormatPrecedence, getPostAuthenticationFlows, getResolveAttributesPredicate, getSkipEndpointValidationWhenSignedPredicate, includeAttributeStatement, isAllowingDelegation, resolveAttributes, setAllowDelegation, setAllowingDelegation, setAuthenticationFlows, setAuthenticationFlowsLookupStrategy, setDefaultAuthenticationMethods, setDefaultAuthenticationMethodsLookupStrategy, setForceAuthn, setForceAuthnPredicate, setIncludeAttributeStatement, setIncludeAttributeStatementPredicate, setMaximumSPSessionLifetime, setMaximumSPSessionLifetimeLookupStrategy, setMaximumTokenDelegationChainLength, setMaximumTokenDelegationChainLengthLookupStrategy, setNameIDFormatPrecedence, setNameIDFormatPrecedenceLookupStrategy, setPostAuthenticationFlows, setPostAuthenticationFlowsLookupStrategy, setResolveAttributes, setResolveAttributesPredicate, setSkipEndpointValidationWhenSigned, setSkipEndpointValidationWhenSignedPredicate, skipEndpointValidationWhenSigned

Methods inherited from class net.shibboleth.idp.saml.saml2.profile.config.AbstractSAML2ArtifactAwareProfileConfiguration

getArtifactConfiguration, getClientTLSArtifactRequests, getSignArtifactRequests, setArtifactConfiguration, setArtifactConfigurationLookupStrategy, setClientTLSArtifactRequests, setSignArtifactRequests

Methods inherited from class net.shibboleth.idp.saml.saml2.profile.config.AbstractSAML2ProfileConfiguration

getEncryptAssertions, getEncryptAttributes, getEncryptionOptionalPredicate, getEncryptNameIDs, getProxyAudiences, getProxyCount, isEncryptionOptional, setEncryptAssertions, setEncryptAttributes, setEncryptionOptional, setEncryptionOptionalPredicate, setEncryptNameIDs, setProxyAudiences, setProxyAudiencesLookupStrategy, setProxyCount, setProxyCountLookupStrategy

Methods inherited from class net.shibboleth.idp.saml.profile.config.AbstractSAMLProfileConfiguration

getAdditionalAudiencesForAssertion, getAssertionLifetime, getInboundInterceptorFlows, getIncludeConditionsNotBeforePredicate, getSignAssertions, getSignRequests, getSignResponses, includeConditionsNotBefore, setAdditionalAudienceForAssertion, setAdditionalAudiencesForAssertion, setAssertionAudiencesLookupStrategy, setAssertionLifetime, setAssertionLifetimeLookupStrategy, setIncludeConditionsNotBefore, setIncludeConditionsNotBeforePredicate, setSignAssertions, setSignRequests, setSignResponses

Methods inherited from class net.shibboleth.idp.profile.config.AbstractConditionalProfileConfiguration

getActivationCondition, setActivationCondition

Methods inherited from class net.shibboleth.idp.profile.config.AbstractProfileConfiguration

equals, getDisallowedFeatures, getId, getIndirectProperty, getOutboundInterceptorFlows, getProfileRequestContext, getSecurityConfiguration, hashCode, isFeatureDisallowed, setDisallowedFeatures, setDisallowedFeaturesLookupStrategy, setInboundFlowsLookupStrategy, setInboundInterceptorFlows, setOutboundFlowsLookupStrategy, setOutboundInterceptorFlows, setSecurityConfiguration, setSecurityConfigurationLookupStrategy, setServletRequest

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface net.shibboleth.idp.profile.config.ProfileConfiguration

getInboundInterceptorFlows, getOutboundInterceptorFlows, getSecurityConfiguration

Methods inherited from interface net.shibboleth.utilities.java.support.component.IdentifiedComponent

getId

Methods inherited from interface net.shibboleth.idp.saml.profile.config.SAMLProfileConfiguration

getAdditionalAudiencesForAssertion, getAssertionLifetime, getSignAssertions, getSignRequests, getSignResponses, includeConditionsNotBefore

Field Detail

PROFILE_ID

@Nonnull
@NotEmpty
public static final String PROFILE_ID

ID for this profile configuration.

See Also:

Constant Field Values

delegationPredicate

@Nonnull
private com.google.common.base.Predicate<ProfileRequestContext> delegationPredicate

Predicate used to determine if a token may be delegated to a relying party.

Constructor Detail

SSOSProfileConfiguration

public SSOSProfileConfiguration()

Constructor.

SSOSProfileConfiguration

protected SSOSProfileConfiguration(String profileId)

Constructor.

Parameters:

profileId - unique ID for this profile

Method Detail

getDelegationPredicate

@Nonnull
public com.google.common.base.Predicate<ProfileRequestContext> getDelegationPredicate()

Gets the predicate used to determine whether a delegated token presented to the IdP by another non-user entity may be used to complete SAML 2 SSO to this relying party.

Returns:

predicate the delegation predicate

setDelegationPredicate

public void setDelegationPredicate(@Nonnull
                          com.google.common.base.Predicate<ProfileRequestContext> predicate)

Sets the predicate used to determine whether a delegated token presented to the IdP by another non-user entity may be used to complete SAML 2 SSO to this relying party.

Parameters:

predicate - the new delegation predicate