Package net.shibboleth.idp.plugin.oidc.op.profile.impl

Class ValidateRegistrationRequestMetadata

java.lang.Object

net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

org.opensaml.profile.action.AbstractProfileAction

org.opensaml.profile.action.AbstractConditionalProfileAction

net.shibboleth.idp.profile.AbstractProfileAction

net.shibboleth.idp.plugin.oidc.op.profile.impl.ValidateRegistrationRequestMetadata

All Implemented Interfaces:

Component, DestructableComponent, InitializableComponent, ProfileAction, Aware, MessageSource, MessageSourceAware, Action

public class ValidateRegistrationRequestMetadata
extends net.shibboleth.idp.profile.AbstractProfileAction

Validates the incoming dynamic client registration request against the metadata policy stored in the OIDCClientRegistrationMetadataPolicyContext. The policy-enforced request metadata is stored via OIDCClientRegistrationMetadataPolicyContext.setPolicyEnforcedMetadata(OIDCClientMetadata).

Field Summary

Fields

Modifier and Type	Field	Description
private org.slf4j.Logger	log	Class logger.
private Map<String,net.shibboleth.oidc.metadata.policy.MetadataPolicy>	metadataPolicy	The metadata policy used for validation.
private BiFunction<Object,net.shibboleth.oidc.metadata.policy.MetadataPolicy,Pair<Object,Boolean>>	metadataPolicyEnforcer	Function used for enforcing the metadata policy.
private OIDCClientRegistrationMetadataPolicyContext	registrationMetadataPolicyContext	The metadata policy context to operate on.
private Function<MessageContext,OIDCClientRegistrationMetadataPolicyContext>	registrationMetadataPolicyContextLookupStrategy	Strategy that will return OIDCClientRegistrationMetadataPolicyContext.
private com.nimbusds.openid.connect.sdk.rp.OIDCClientRegistrationRequest	request	The OIDCClientRegistrationRequest to validate.

Constructor Summary

Constructors

Constructor	Description
ValidateRegistrationRequestMetadata()	Constructor.

Method Summary

Modifier and Type	Method	Description
protected void	doExecute(ProfileRequestContext profileRequestContext)
protected boolean	doPreExecute(ProfileRequestContext profileRequestContext)
void	setMetadataPolicyEnforcer(BiFunction<Object,net.shibboleth.oidc.metadata.policy.MetadataPolicy,Pair<Object,Boolean>> function)	Set the function used for enforcing the metadata policy.
void	setRegistrationMetadataPolicyContextLookupStrategy(Function<MessageContext,OIDCClientRegistrationMetadataPolicyContext> strategy)	Set the strategy that will return OIDCClientRegistrationMetadataPolicyContext.

Methods inherited from class net.shibboleth.idp.profile.AbstractProfileAction

doExecute, execute, getMessage, getMessage, getMessage, getProfileContextLookupStrategy, getRequestContext, getResult, setMessageSource, setProfileContextLookupStrategy

Methods inherited from class org.opensaml.profile.action.AbstractConditionalProfileAction

getActivationCondition, setActivationCondition

Methods inherited from class org.opensaml.profile.action.AbstractProfileAction

doPostExecute, doPostExecute, execute, getHttpServletRequest, getHttpServletResponse, getLogPrefix, setHttpServletRequest, setHttpServletResponse

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

destroy, doDestroy, doInitialize, initialize, isDestroyed, isInitialized

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface net.shibboleth.utilities.java.support.component.InitializableComponent

initialize, isInitialized

Field Detail

log

@Nonnull
private final org.slf4j.Logger log

Class logger.

registrationMetadataPolicyContextLookupStrategy

@Nonnull
private Function<MessageContext,OIDCClientRegistrationMetadataPolicyContext> registrationMetadataPolicyContextLookupStrategy

Strategy that will return OIDCClientRegistrationMetadataPolicyContext.

metadataPolicyEnforcer

@Nonnull
private BiFunction<Object,net.shibboleth.oidc.metadata.policy.MetadataPolicy,Pair<Object,Boolean>> metadataPolicyEnforcer

Function used for enforcing the metadata policy.

request

@Nullable
private com.nimbusds.openid.connect.sdk.rp.OIDCClientRegistrationRequest request

The OIDCClientRegistrationRequest to validate.

registrationMetadataPolicyContext

@Nullable
private OIDCClientRegistrationMetadataPolicyContext registrationMetadataPolicyContext

The metadata policy context to operate on.

metadataPolicy

@Nullable
private Map<String,net.shibboleth.oidc.metadata.policy.MetadataPolicy> metadataPolicy

The metadata policy used for validation.

Constructor Detail

ValidateRegistrationRequestMetadata

public ValidateRegistrationRequestMetadata()

Constructor.

Method Detail

setRegistrationMetadataPolicyContextLookupStrategy

public void setRegistrationMetadataPolicyContextLookupStrategy(@Nonnull
                                                               Function<MessageContext,OIDCClientRegistrationMetadataPolicyContext> strategy)

Set the strategy that will return OIDCClientRegistrationMetadataPolicyContext.

Parameters:

strategy - Strategy that will return OIDCClientRegistrationMetadataPolicyContext.

setMetadataPolicyEnforcer

public void setMetadataPolicyEnforcer(@Nonnull
                                      BiFunction<Object,net.shibboleth.oidc.metadata.policy.MetadataPolicy,Pair<Object,Boolean>> function)

Set the function used for enforcing the metadata policy.

Parameters:

function - Function used for enforcing the metadata policy.

doPreExecute

protected boolean doPreExecute(@Nonnull
                               ProfileRequestContext profileRequestContext)

Overrides:

doPreExecute in class AbstractConditionalProfileAction

doExecute

protected void doExecute(@Nonnull
                         ProfileRequestContext profileRequestContext)

Overrides:

doExecute in class AbstractProfileAction