Package net.shibboleth.idp.plugin.oidc.op.profile.logic
Functions and predicates supporting common oidc profile behavior.
-
Class Summary Class Description AttributeConsentEnabledInTokenClaimsSetPredicate A predicate implementation that checks if attribute consent flag is enabled.AttributeResolutionSubjectLookupFunction A function that returns subject identifier from filtered claims.ClientIDFromOIDCMetadataContextLookupFunction Deprecated, for removal: This API element is subject to removal in a future version. As of 3.1.0, moved tonet.shibboleth.oidc.profile.logic.ClientIDFromOIDCMetadataContextLookupFunctionDefaultChainRevocationLifetimeLookupStrategy Default lookup function for fetching the chain revocation lifetime.DefaultMetadataPolicyCriteriaLookupFunction A function returning aCriteriaSetwhich contains the metadata policy document location asResourceLocationCriterion.DefaultMetadataPolicyMergingStrategy A function that merges two maps of metadata policies according to the rules specified in the OIDC federation spec (draft 17), section 5.1.3.1:DefaultRootTokenIdentifierLookupStrategy Default lookup function for fetching the root token identifier from the given claims set.DefaultSubjectTypeStrategy Function to decide on subject type.DefaultTokenRevocationLifetimeLookupStrategy Default lookup function for fetching the token revocation lifetime from the given claims set.IssueIDTokenCondition Activation condition returning true if validated scope contains 'openid' scope.PairwiseSubjectActivationCondition Activation condition returning true if pairwise subject is requested.PublicSubjectActivationCondition Activation condition returning true if public subject is requested.SubjectActivationCondition Activation condition returning true if subject cannot be located from oidc response context.