Package net.shibboleth.idp.plugin.oidc.op.profile.impl

Class AddIDTokenShell

java.lang.Object

net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

org.opensaml.profile.action.AbstractProfileAction

org.opensaml.profile.action.AbstractConditionalProfileAction

net.shibboleth.idp.profile.AbstractProfileAction

net.shibboleth.idp.plugin.oidc.op.profile.impl.AbstractOIDCResponseAction

net.shibboleth.idp.plugin.oidc.op.profile.impl.AddIDTokenShell

All Implemented Interfaces:

Component, DestructableComponent, InitializableComponent, ProfileAction, Aware, MessageSource, MessageSourceAware, Action

public class AddIDTokenShell
extends AbstractOIDCResponseAction

Action that creates a IDTokenClaimsSet object shell, and sets it to work context OIDCAuthenticationResponseContext located under InOutOperationContext.getOutboundMessageContext().

Field Summary

Fields

Modifier and Type	Field	Description
private Function<ProfileRequestContext,Collection<String>>	audienceRestrictionsLookupStrategy	Strategy used to obtain the audiences to add.
private Collection<String>	audiences	Audiences to add.
private Function<ProfileRequestContext,Duration>	idTokenLifetimeLookupStrategy	Strategy used to obtain the ID token lifetime.
private String	issuerId	EntityID to populate into Issuer element.
private Function<ProfileRequestContext,String>	issuerLookupStrategy	Strategy used to obtain the response issuer value.
private Duration	lifetime	ID token lifetime.
private org.slf4j.Logger	log	Class logger.
private net.shibboleth.idp.profile.context.RelyingPartyContext	rpCtx	The RelyingPartyContext to operate on.

Constructor Summary

Constructors

Constructor	Description
AddIDTokenShell()	Constructor.

Method Summary

Modifier and Type	Method	Description
protected void	doExecute(ProfileRequestContext profileRequestContext)
protected boolean	doPreExecute(ProfileRequestContext profileRequestContext)
void	setAudienceRestrictionsLookupStrategy(Function<ProfileRequestContext,Collection<String>> strategy)	Set the strategy used to obtain the audience restrictions to apply.
void	setIDTokenLifetimeLookupStrategy(Function<ProfileRequestContext,Duration> strategy)	Set the strategy used to obtain the ID token lifetime.
void	setIssuerLookupStrategy(Function<ProfileRequestContext,String> strategy)	Set the strategy used to locate the issuer value to use.

Methods inherited from class net.shibboleth.idp.plugin.oidc.op.profile.impl.AbstractOIDCResponseAction

getMetadataContext, getOidcResponseContext

Methods inherited from class net.shibboleth.idp.profile.AbstractProfileAction

doExecute, execute, getMessage, getMessage, getMessage, getProfileContextLookupStrategy, getRequestContext, getResult, setMessageSource, setProfileContextLookupStrategy

Methods inherited from class org.opensaml.profile.action.AbstractConditionalProfileAction

getActivationCondition, setActivationCondition

Methods inherited from class org.opensaml.profile.action.AbstractProfileAction

doPostExecute, doPostExecute, execute, getHttpServletRequest, getHttpServletResponse, getLogPrefix, setHttpServletRequest, setHttpServletResponse

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

destroy, doDestroy, doInitialize, initialize, isDestroyed, isInitialized

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface net.shibboleth.utilities.java.support.component.InitializableComponent

initialize, isInitialized

Field Detail

log

@Nonnull
private org.slf4j.Logger log

Class logger.

issuerLookupStrategy

@Nonnull
private Function<ProfileRequestContext,String> issuerLookupStrategy

Strategy used to obtain the response issuer value.

audienceRestrictionsLookupStrategy

@Nonnull
private Function<ProfileRequestContext,Collection<String>> audienceRestrictionsLookupStrategy

Strategy used to obtain the audiences to add.

idTokenLifetimeLookupStrategy

@Nonnull
private Function<ProfileRequestContext,Duration> idTokenLifetimeLookupStrategy

Strategy used to obtain the ID token lifetime.

issuerId

@Nullable
private String issuerId

EntityID to populate into Issuer element.

rpCtx

@Nullable
private net.shibboleth.idp.profile.context.RelyingPartyContext rpCtx

The RelyingPartyContext to operate on.

audiences

@Nullable
private Collection<String> audiences

Audiences to add.

lifetime

@Nullable
private Duration lifetime

ID token lifetime.

Constructor Detail

AddIDTokenShell

public AddIDTokenShell()

Constructor.

Method Detail

setIssuerLookupStrategy

public void setIssuerLookupStrategy(@Nonnull
                                    Function<ProfileRequestContext,String> strategy)

Set the strategy used to locate the issuer value to use.

Parameters:

strategy - lookup strategy

setAudienceRestrictionsLookupStrategy

public void setAudienceRestrictionsLookupStrategy(@Nonnull
                                                  Function<ProfileRequestContext,Collection<String>> strategy)

Set the strategy used to obtain the audience restrictions to apply.

Parameters:

strategy - lookup strategy

setIDTokenLifetimeLookupStrategy

public void setIDTokenLifetimeLookupStrategy(@Nonnull
                                             Function<ProfileRequestContext,Duration> strategy)

Set the strategy used to obtain the ID token lifetime.

Parameters:

strategy - lookup strategy

doPreExecute

protected boolean doPreExecute(@Nonnull
                               ProfileRequestContext profileRequestContext)

Overrides:

doPreExecute in class AbstractOIDCResponseAction

doExecute

protected void doExecute(@Nonnull
                         ProfileRequestContext profileRequestContext)

Overrides:

doExecute in class AbstractProfileAction