Package net.shibboleth.idp.plugin.oidc.op.userinfo.profile.impl

Class SignUserInfoResponse

java.lang.Object

net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

org.opensaml.profile.action.AbstractProfileAction

org.opensaml.profile.action.AbstractConditionalProfileAction

net.shibboleth.idp.profile.AbstractProfileAction

net.shibboleth.idp.plugin.oidc.op.profile.impl.AbstractOIDCResponseAction

net.shibboleth.idp.plugin.oidc.op.profile.impl.AbstractOIDCSigningResponseAction

net.shibboleth.idp.plugin.oidc.op.profile.impl.AbstractSignJWTAction

net.shibboleth.idp.plugin.oidc.op.userinfo.profile.impl.SignUserInfoResponse

All Implemented Interfaces:

Component, DestructableComponent, InitializableComponent, ProfileAction, Aware, MessageSource, MessageSourceAware, Action

public class SignUserInfoResponse
extends AbstractSignJWTAction

Action that signs UserInfo and sets it to OIDCAuthenticationResponseContext.getProcessedToken(). Actions exits silently if signing is not requested.

Field Summary

Fields

Modifier and Type	Field	Description
private org.slf4j.Logger	log	Class logger.
private com.nimbusds.jwt.JWTClaimsSet	userInfoClaims	token claims set to sign.
private Function<ProfileRequestContext,com.nimbusds.jose.JWSAlgorithm>	userInfoSigAlgStrategy	Strategy used to determine user info response signing algorithm.

Constructor Summary

Constructors

Constructor	Description
SignUserInfoResponse()	Constructor.

Method Summary

Modifier and Type	Method	Description
protected boolean	doPreExecute(ProfileRequestContext profileRequestContext)
protected com.nimbusds.jwt.JWTClaimsSet	getClaimsSetToSign()	Sets user info claims as input for signing.
protected void	setSignedJWT(com.nimbusds.jwt.SignedJWT jwt)	Set signed user info to response context.
void	setUserInfoSigningAlgLookupStrategy(Function<ProfileRequestContext,com.nimbusds.jose.JWSAlgorithm> strategy)	Set the strategy used to user info signing algorithm lookup strategy.

Methods inherited from class net.shibboleth.idp.plugin.oidc.op.profile.impl.AbstractSignJWTAction

doExecute, resolveAlgorithm, setTypeHeader

Methods inherited from class net.shibboleth.idp.plugin.oidc.op.profile.impl.AbstractOIDCSigningResponseAction

getSignatureSigningParameters, setSecurityParametersLookupStrategy

Methods inherited from class net.shibboleth.idp.plugin.oidc.op.profile.impl.AbstractOIDCResponseAction

getMetadataContext, getOidcResponseContext

Methods inherited from class net.shibboleth.idp.profile.AbstractProfileAction

doExecute, execute, getMessage, getMessage, getMessage, getProfileContextLookupStrategy, getRequestContext, getResult, setMessageSource, setProfileContextLookupStrategy

Methods inherited from class org.opensaml.profile.action.AbstractConditionalProfileAction

getActivationCondition, setActivationCondition

Methods inherited from class org.opensaml.profile.action.AbstractProfileAction

doPostExecute, doPostExecute, execute, getHttpServletRequest, getHttpServletResponse, getLogPrefix, setHttpServletRequest, setHttpServletResponse

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

destroy, doDestroy, doInitialize, initialize, isDestroyed, isInitialized

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface net.shibboleth.utilities.java.support.component.InitializableComponent

initialize, isInitialized

Field Detail

log

@Nonnull
private org.slf4j.Logger log

Class logger.

userInfoClaims

@Nullable
private com.nimbusds.jwt.JWTClaimsSet userInfoClaims

token claims set to sign.

userInfoSigAlgStrategy

@Nonnull
private Function<ProfileRequestContext,com.nimbusds.jose.JWSAlgorithm> userInfoSigAlgStrategy

Strategy used to determine user info response signing algorithm.

Constructor Detail

SignUserInfoResponse

public SignUserInfoResponse()

Constructor.

Method Detail

setUserInfoSigningAlgLookupStrategy

public void setUserInfoSigningAlgLookupStrategy(@Nonnull
                                                Function<ProfileRequestContext,com.nimbusds.jose.JWSAlgorithm> strategy)

Set the strategy used to user info signing algorithm lookup strategy.

Parameters:

strategy - lookup strategy

doPreExecute

protected boolean doPreExecute(@Nonnull
                               ProfileRequestContext profileRequestContext)

Overrides:

doPreExecute in class AbstractSignJWTAction

getClaimsSetToSign

protected com.nimbusds.jwt.JWTClaimsSet getClaimsSetToSign()

Sets user info claims as input for signing.

Specified by:

getClaimsSetToSign in class AbstractSignJWTAction

Returns:

user info claims.

setSignedJWT

protected void setSignedJWT(com.nimbusds.jwt.SignedJWT jwt)

Set signed user info to response context.

Specified by:

setSignedJWT in class AbstractSignJWTAction

Parameters:

jwt - signed user info response.