Index (Shibboleth IdP :: Plugins :: OIDC Common :: Profile Configuration API 2.1.0 API)

A C D E F G H I K L M N O P R S T U V
All Classes All Packages

A

AbstractOAuth2ClientAuthenticableProfileConfiguration - Class in net.shibboleth.oidc.profile.oauth2.config: Base class for OAuth profile configurations that support OAuth-defined client authentication methods.
AbstractOAuth2ClientAuthenticableProfileConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Constructor.
AbstractOAuth2FlowAwareProfileConfiguration - Class in net.shibboleth.oidc.profile.oauth2.config: Base class for OIDC protocol configuration, containing configuration bits shared by all flow aware OIDC protocol configurations.
AbstractOAuth2FlowAwareProfileConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Constructor.
AbstractOAuth2TokenValidatingConfiguration - Class in net.shibboleth.oidc.profile.oauth2.config: Base class for profile configurations that validate previously issued OAuth2 tokens.
AbstractOAuth2TokenValidatingConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2TokenValidatingConfiguration: Creates a new configuration instance.
AbstractOIDCSSOConfiguration - Class in net.shibboleth.oidc.profile.config: Base class for profiles that support OIDC's concept of SSO, which spans multiple endpoints.
AbstractOIDCSSOConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Creates a new configuration instance.
AccessTokenClaimsSetManipulationStrategyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns AbstractOIDCSSOConfiguration.getAccessTokenClaimsSetManipulationStrategy(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AccessTokenClaimsSetManipulationStrategyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AccessTokenClaimsSetManipulationStrategyLookupFunction
accessTokenClaimsSetManipulationStrategyLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Lookup function to supply strategy bi-function for manipulating access token claims set.
AccessTokenLifetimeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2TokenAudienceConfiguration.getAccessTokenLifetime(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AccessTokenLifetimeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AccessTokenLifetimeLookupFunction
accessTokenLifetimeLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Lookup function to supply access token lifetime.
accessTokenLifetimeLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Lookup function to supply access token lifetime.
AccessTokenTypeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2TokenAudienceConfiguration.getAccessTokenType(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AccessTokenTypeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AccessTokenTypeLookupFunction
accessTokenTypeLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Lookup functioon to supply access token type.
accessTokenTypeLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Lookup functioon to supply access token type.
AcrClaimAlwaysEssentialLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A predicate that returns OIDCAuthorizationConfiguration.isAcrRequestAlwaysEssential(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AcrClaimAlwaysEssentialLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AcrClaimAlwaysEssentialLookupFunction
acrRequestAlwaysEssentialPredicate - Variable in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Whether all acr claim requests should be treated as Essential.
acrs - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: List of requested authentication context class reference values.
activeProfileOnly - Variable in class net.shibboleth.oidc.profile.config.navigate.RevocationLifetimeLookupFunction: The flag whether to use active profile only.
allowPKCEPlainPredicate - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Whether client is allowed to use PKCE code challenge method plain.
AllowPKCEPlainPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to AbstractOIDCSSOConfiguration.isAllowPKCEPlain(ProfileRequestContext).
AllowPKCEPlainPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.AllowPKCEPlainPredicate
AlwaysIncludedAttributesLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains AbstractOIDCSSOConfiguration.getAlwaysIncludedAttributes(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AlwaysIncludedAttributesLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AlwaysIncludedAttributesLookupFunction
alwaysIncludedAttributesLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Lookup function to supply attribute IDs to include in ID token regardless of response_type.
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AccessTokenClaimsSetManipulationStrategyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AccessTokenLifetimeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AccessTokenTypeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AlwaysIncludedAttributesLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AudienceRestrictionsLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AuthorizationCodeClaimsSetManipulationStrategyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AuthzCodeLifetimeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.ClaimsValidatorLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.DataEncryptionAlgorithmsLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.DeniedUserInfoAttributesLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.EncodedAttributesLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.GrantTypesLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.IDTokenLifetimeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.IDTokenManipulationStrategyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.IssuedClaimsValidatorLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.KeyTransportEncryptionAlgorithmsLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RefreshTokenClaimsSetManipulationStrategyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RefreshTokenLifetimeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RegistrationMetadataPolicyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RegistrationValidityPeriodLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RequestObjectDecryptionConfigurationLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RequestObjectSignatureValidationConfigurationLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RevocationLifetimeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RevocationMethodLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.SecretExpirationPeriodLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.SignatureAlgorithmsLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.TokenEndpointAuthMethodLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.TokenEndpointJwtSignatureValidationConfigurationLookupFunction
assertionAudiencesLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Lookup function to supply additional audiences for ID token.
AttributeConsentFlowEnabledPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that checks if attribute-release is included in the list of post authentication flows returned by PostAuthenticationFlowsLookupFunction.
AttributeConsentFlowEnabledPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.AttributeConsentFlowEnabledPredicate
AudienceRestrictionsLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns the effective audience restrictions to include in ID tokens, based on combining a relying party's entityID with the result of AbstractOIDCSSOConfiguration.getAdditionalAudiencesForIdToken(ProfileRequestContext), if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AudienceRestrictionsLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AudienceRestrictionsLookupFunction
AuthenticationContextClassReferencePrincipal - Class in net.shibboleth.oidc.authn.principal: Principal based on a OIDC Authentication Context Class Reference.
AuthenticationContextClassReferencePrincipal(String) - Constructor for class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal: Constructor.
authenticationFlowsLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Lookup function to supply authentication flows.
authnContextClassReference - Variable in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal: The class ref.
AuthorizationCodeClaimsSetManipulationStrategyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OIDCAuthorizationConfiguration.getAuthorizationCodeClaimsSetManipulationStrategy(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AuthorizationCodeClaimsSetManipulationStrategyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AuthorizationCodeClaimsSetManipulationStrategyLookupFunction
authorizationCodeClaimsSetManipulationStrategyLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Lookup function to supply strategy bi-function for manipulating authorization code claims set.
AuthorizationCodeFlowEnabledPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to AbstractOAuth2FlowAwareProfileConfiguration.isAuthorizationCodeFlowEnabled(ProfileRequestContext).
AuthorizationCodeFlowEnabledPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.AuthorizationCodeFlowEnabledPredicate
authorizationCodeFlowPredicate - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Predicate used to indicate whether authorization code flow is supported by this profile.
authorizeCodeLifetimeLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Lookup function to supply lifetime of authz code.
AuthzCodeLifetimeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OIDCAuthorizationConfiguration.getAuthorizeCodeLifetime(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AuthzCodeLifetimeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AuthzCodeLifetimeLookupFunction

C

CHAIN - net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod: Revoke full chain of tokens (from authorization code (or initial access token) onwards).
ClaimsValidatorLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains AbstractOAuth2ClientAuthenticableProfileConfiguration.getClaimsValidator(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
ClaimsValidatorLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.ClaimsValidatorLookupFunction
claimsValidatorLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Validation of JWT claims for subset of client auth methods.
clientID - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The client identifier.
clone() - Method in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal
criteriaSetLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction: The lookup strategy for the criteria set used for the metadata policy resolver.

D

DataEncryptionAlgorithmsLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns EncryptionConfiguration.getDataEncryptionAlgorithms() if it is available in the security configuration of the profile configuration.
DataEncryptionAlgorithmsLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.DataEncryptionAlgorithmsLookupFunction
DEFAULT_OPENID_SCOPE - Static variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: The default OpenID scope.
defaultAuthenticationContextsLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Lookup function to supply default authentication methods.
DeniedUserInfoAttributesLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains OIDCAuthorizationConfiguration.getDeniedUserInfoAttributes(ProfileRequestContext) or OIDCUserInfoConfiguration.getDeniedUserInfoAttributes(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
DeniedUserInfoAttributesLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.DeniedUserInfoAttributesLookupFunction
deniedUserInfoAttributesLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Lookup function to supply attribute IDs to omit from UserInfo token.
deniedUserInfoAttributesLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Lookup function to supply attribute IDs to omit from UserInfo token.
display - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: ASCII string value that specifies how the Authorization Server displays the authentication and consent user interface pages to the End-User.

E

encodeConsentInTokensPredicate - Variable in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Whether to encode consent in authorization code and access/refresh tokens.
EncodeConsentPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OIDCAuthorizationConfiguration.isEncodeConsentInTokens(ProfileRequestContext).
EncodeConsentPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.EncodeConsentPredicate
EncodedAttributesLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains OIDCAuthorizationConfiguration.getEncodedAttributes(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
EncodedAttributesLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.EncodedAttributesLookupFunction
encodedAttributesLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Lookup function to supply attribute IDs to embed in authorization code or access token.
encryptionOptionalPredicate - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Whether encryption is optional in the face of no key, etc.
encryptionOptionalPredicate - Variable in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Whether encryption is optional in the face of no key, etc.
encryptionOptionalPredicate - Variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Whether encryption is optional in the face of no key, etc.
EncryptionOptionalPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to AbstractOIDCSSOConfiguration.isEncryptionOptional(ProfileRequestContext) or OIDCUserInfoConfiguration.isEncryptionOptional(ProfileRequestContext).
EncryptionOptionalPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.EncryptionOptionalPredicate
endpointURI - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The request endpoint.
enforceRefreshTokenRotationPredicate - Variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Whether always revoke the refresh_token after it's used.
EnforceRefreshTokenRotationPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OAuth2TokenConfiguration.isEnforceRefreshTokenRotation(ProfileRequestContext).
EnforceRefreshTokenRotationPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.EnforceRefreshTokenRotationPredicate
equals(Object) - Method in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal

F

forceAuthnPredicate - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Whether to mandate forced authentication for the request.
forcePKCEPredicate - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Whether client is required to use PKCE.
ForcePKCEPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to AbstractOIDCSSOConfiguration.isForcePKCE(ProfileRequestContext).
ForcePKCEPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.ForcePKCEPredicate

G

GET - net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration.OIDCHttpRequestMethod: HTTP GET.
getAccessTokenClaimsSetManipulationStrategy(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Get the bi-function for manipulating access token claims set.
getAccessTokenLifetime(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Get access token lifetime.
getAccessTokenLifetime(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Get access token lifetime.
getAccessTokenType(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Get access token type.
getAccessTokenType(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Get access token type.
getAcrs() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the ACRs.
getAdditionalAudiencesForIdToken(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Get the set of audiences, in addition to the relying party(ies) to which the IdP is issuing the ID Token, with which the token may be shared.
getAlwaysIncludedAttributes(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Get the set of attribute IDs which should be included in the ID token regardless of response_type.
getAuthenticationFlows(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration
getAuthorizationCodeClaimsSetManipulationStrategy(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get the bi-function for manipulating authorization code claims set.
getAuthorizeCodeLifetime(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get authz code lifetime.
getClaimsValidator(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Get the ClaimsValidator to apply to JWT-based client authentication.
getClientID() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the client ID.
getDefaultAuthenticationMethods(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration
getDeniedUserInfoAttributes(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get the set of attribute IDs which should be omitted from the UserInfo token.
getDeniedUserInfoAttributes(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Get the set of attribute IDs which should be omitted from the UserInfo token.
getDisplay() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the display.
getEncodedAttributes(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get the set of attribute IDs which should be encoded in encrypted form into the authorization code and/or access/refresh tokens to enable recovery on the back-channel.
getEndpointURI() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the endpoint_uri.
getGrantTypes(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Get the enabled grant types.
getHttpRequestMethod(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get the HTTP request method for an authentication request.
getIDTokenLifetime(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: /** Get ID token lifetime.
getIDTokenManipulationStrategy(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Get the bi-function for manipulating id_token claims.
getIssuedClaimsValidator(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2TokenValidatingConfiguration: Get the ClaimsValidator to apply to issued JWT-based tokens being validated by this profile.
getIssuer(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration
getIssuer(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration
getIssuer(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCProviderInformationConfiguration
getIssuer(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2TokenValidatingConfiguration
getIssuer(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration
getMaxAge() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the max age.
getMetadataPolicy(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Get the metadata policy.
getName() - Method in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal
getNonce() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the nonce.
getPostAuthenticationFlows(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration
getPrompt() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the prompt.
getProxyCount(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration
getRedirectURI() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the redirect_uri.
getRefreshTokenClaimsSetManipulationStrategy(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Get the bi-function for manipulating refresh token claims set.
getRefreshTokenLifetime(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Get refresh token lifetime.
getRegistrationValidityPeriod(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Get dynamic registration validity period.
getRequestObject() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the request object.
getRequestObjectDecryptionConfiguration() - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Get the configuration used when decrypting request object information.
getRequestObjectSignatureValidationConfiguration() - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Get the configuration used when validating request object information.
getRequestURI() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the URI to fetch the request object from.
getResponseMode() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the response mode.
getResponseType() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the response type.
getRevocationLifetime(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Get revocation lifetime.
getRevocationMethod(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Get the revocation method used when revoking a token.
getScope() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the scope.
getSecretExpirationPeriod(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Get client secret expiration period.
getState() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the state.
getTokenEndpointAuthMethods(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Get the enabled token endpoint authentication methods.
getTokenEndpointJwtSignatureValidationConfiguration() - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Get the configuration used when validating token endpoint authentication JWT signatures.
GrantTypesLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains OAuth2TokenConfiguration.getGrantTypes(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
GrantTypesLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.GrantTypesLookupFunction
grantTypesLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Enabled grant types.

H

hashCode() - Method in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal
httpRequestMethodLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Which HTTP method should be used to issue OIDC authentication requests.
HybridFlowEnabledPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to AbstractOAuth2FlowAwareProfileConfiguration.isHybridFlowEnabled(ProfileRequestContext).
HybridFlowEnabledPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.HybridFlowEnabledPredicate
hybridFlowPredicate - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Predicate used to indicate whether hybrid flow is supported by this profile.

I

IDTokenLifetimeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns AbstractOIDCSSOConfiguration.getIDTokenLifetime(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
IDTokenLifetimeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.IDTokenLifetimeLookupFunction
idTokenLifetimeLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Lookup function to supply ID token lifetime.
IDTokenManipulationStrategyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns AbstractOIDCSSOConfiguration.getIDTokenManipulationStrategy(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
IDTokenManipulationStrategyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.IDTokenManipulationStrategyLookupFunction
idTokenManipulationStrategyLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Lookup function to supply strategy bi-function for manipulating id_token claims.
ImplicitFlowEnabledPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to AbstractOAuth2FlowAwareProfileConfiguration.isImplicitFlowEnabled(ProfileRequestContext).
ImplicitFlowEnabledPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.ImplicitFlowEnabledPredicate
implicitFlowPredicate - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Predicate used to indicate whether implicit flow is supported by this profile.
IncludeIssuerInAuthenticationResponsePredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OIDCAuthorizationConfiguration.isIncludeIssuerInResponse(ProfileRequestContext).
IncludeIssuerInAuthenticationResponsePredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.IncludeIssuerInAuthenticationResponsePredicate
includeIssuerInResponsePredicate - Variable in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Whether to include iss parameter in the authentication response.
INVALID_ACCESS_TOKEN - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The id_token is invalid.
INVALID_GRANT - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The provided authorization grant is invalid.
INVALID_GRANT_TYPE - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The grant type in token request is not supported for RP.
INVALID_ID_TOKEN - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The id_token is invalid.
INVALID_PKCE_TRANSFORMATION_METHOD - Static variable in class net.shibboleth.oidc.profile.core.OidcError: The request contains an unsupported PKCE transform algorithm.
INVALID_PKCE_TRANSFORMATION_METHOD - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: ID of event returned if the PKCE code verifier transformation method is invalid.
INVALID_REDIRECT_URI - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The redirect_uri in request is invalid.
INVALID_REDIRECT_URIS - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: ID of event returned if the mandatory redirect_uris is invalid.
INVALID_REQUEST_OBJECT - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The request object cannot be validated.
INVALID_REQUEST_URI - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The request uri is invalid.
INVALID_RESPONSE_TYPE - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The response type in request is not supported for RP.
INVALID_SUBJECT - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The subject resolved is not the expected one.
INVALID_TARGET - Static variable in class net.shibboleth.oidc.profile.core.OidcError: The resource indicator is invalid.
INVALID_TARGET - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The resource indicator is invalid.
INVALID_TARGET_CODE - Static variable in class net.shibboleth.oidc.profile.core.OidcError: The resource indicator is invalid.
INVALID_USERINFO_CLAIMS - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The UserInfo claims are invalid.
isAcrRequestAlwaysEssential(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get whether all acr claim requests should be treated as Essential.
isAllowPKCEPlain(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Get whether client is allowed to use PKCE code challenge method plain.
isAuthorizationCodeFlowEnabled(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Get whether authorization code flow is supported by this profile.
isEncodeConsentInTokens(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get whether to encode consent in authorization code and access/refresh tokens.
isEncryptionOptional(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Get whether encryption is optional in the face of a missing key, etc.
isEncryptionOptional(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Get whether encryption is optional in the face of a missing key, etc.
isEncryptionOptional(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Get whether encryption is optional in the face of a missing key, etc.
isEnforceRefreshTokenRotation(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Get whether always revoke the refresh_token after it's used.
isForceAuthn(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration
isForcePKCE(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Get whether client is required to use PKCE.
isHybridFlowEnabled(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Get whether implicit flow is supported by this profile.
isImplicitFlowEnabled(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Get whether hybrid flow is supported by this profile.
isIncludeIssuerInResponse(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get whether to include iss parameter in the authentication response.
isRefreshTokensEnabled(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Get whether refresh tokens are supported by this profile.
isResolveAttributes(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration
isResolveAttributes(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration
isResolveAttributes(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration
IssuedClaimsValidatorLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains AbstractOAuth2TokenValidatingConfiguration.getIssuedClaimsValidator(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
IssuedClaimsValidatorLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.IssuedClaimsValidatorLookupFunction
issuedClaimsValidatorLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2TokenValidatingConfiguration: Validation of JWT claims for issued tokens.
issuerLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Lookup function to override issuer value.
issuerLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Lookup function to override issuer value.
issuerLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.OIDCProviderInformationConfiguration: Lookup function to override issuer value.
issuerLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2TokenValidatingConfiguration: Lookup function to override issuer value.
issuerLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Lookup function to override issuer value.
isUseRequestObject(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Should authentication request parameters should be passed in a single, self contained, JWT?

K

KeyTransportEncryptionAlgorithmsLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns EncryptionConfiguration.getKeyTransportEncryptionAlgorithms() if it is available in the security configuration of the profile configuration.
KeyTransportEncryptionAlgorithmsLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.KeyTransportEncryptionAlgorithmsLookupFunction

L

log - Variable in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction: Class logger.

M

maxAge - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Specifies the allowable elapsed time in seconds since the last time the End-User was actively authenticated by the OP.
metadataPolicyLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Lookup function to the default metadata policy.
metadataPolicyResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction: The metadata policy resolver.
MISSING_PKCE_CODE_CHALLENGE - Static variable in class net.shibboleth.oidc.profile.core.OidcError: The request is missing a required PKCE code challenge.
MISSING_PKCE_CODE_CHALLENGE - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: ID of event returned if the mandatory PKCE code challenge is missing.
MISSING_REDIRECT_URIS - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: ID of event returned if the mandatory redirect_uris is missing.

N

net.shibboleth.oidc.authn.principal - package net.shibboleth.oidc.authn.principal: OIDC-specific classes for integration with idp-authn-api packages.
net.shibboleth.oidc.profile.config - package net.shibboleth.oidc.profile.config: Profile configurations related to OIDC functionality.
net.shibboleth.oidc.profile.config.logic - package net.shibboleth.oidc.profile.config.logic: Configuration predicates.
net.shibboleth.oidc.profile.config.navigate - package net.shibboleth.oidc.profile.config.navigate: Navigation functions related to OIDC profile configurations.
net.shibboleth.oidc.profile.core - package net.shibboleth.oidc.profile.core: Core profile classes.
net.shibboleth.oidc.profile.decoding - package net.shibboleth.oidc.profile.decoding: OIDC message decoder API.
net.shibboleth.oidc.profile.encoder - package net.shibboleth.oidc.profile.encoder: OIDC message encoder API.
net.shibboleth.oidc.profile.oauth2.config - package net.shibboleth.oidc.profile.oauth2.config: OAuth2 profile configurations.
nonce - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The nonce.

O

OAuth2ProfileConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Marker interface for OAuth 2 profile configurations.
OAuth2TokenAudienceConfiguration - Class in net.shibboleth.oidc.profile.oauth2.config: Interface for OAuth 2 token "audience" profile configuration.
OAuth2TokenAudienceConfiguration() - Constructor for class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Constructor.
OAuth2TokenAudienceConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Creates a new configuration instance.
OAuth2TokenConfiguration - Class in net.shibboleth.oidc.profile.oauth2.config: OIDC-aware OAuth 2 token endpoint profile configuration.
OAuth2TokenConfiguration() - Constructor for class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Constructor.
OAuth2TokenConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Creates a new configuration instance.
OAuth2TokenIntrospectionConfiguration - Class in net.shibboleth.oidc.profile.oauth2.config: Profile configuration for the OAuth2 Token Introspection.
OAuth2TokenIntrospectionConfiguration() - Constructor for class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenIntrospectionConfiguration: Constructor.
OAuth2TokenIntrospectionConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenIntrospectionConfiguration: Creates a new configuration instance.
OAuth2TokenRevocationConfiguration - Class in net.shibboleth.oidc.profile.oauth2.config: Profile configuration for the OAuth2 Token Revocation.
OAuth2TokenRevocationConfiguration() - Constructor for class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Constructor.
OAuth2TokenRevocationConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Creates a new configuration instance.
OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod - Enum in net.shibboleth.oidc.profile.oauth2.config: Enumeration of the OAuth2 token revocation methods.
OAuth2TokenRevocationMethod() - Constructor for enum net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod
OAuthAuthorizationRequest - Class in net.shibboleth.oidc.profile.core: An OAuth 2.0 authorization request.
OAuthAuthorizationRequest(ClientID) - Constructor for class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Constructor.
OIDCAuthenticationRequest - Class in net.shibboleth.oidc.profile.core: OpenID Connect Authentication Request.
OIDCAuthenticationRequest(ClientID) - Constructor for class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Constructor.
OIDCAuthorizationConfiguration - Class in net.shibboleth.oidc.profile.config: Profile configuration for the OpenID Connect authorization endpoint.
OIDCAuthorizationConfiguration() - Constructor for class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Constructor.
OIDCAuthorizationConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Creates a new configuration instance.
OIDCAuthorizationConfiguration.OIDCHttpRequestMethod - Enum in net.shibboleth.oidc.profile.config: Enumeration of the HTTP methods used in OIDC authentication requests.
OIDCDynamicRegistrationConfiguration - Class in net.shibboleth.oidc.profile.config: Profile configuration for the OpenID Connect dynamic client registration.
OIDCDynamicRegistrationConfiguration() - Constructor for class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Constructor.
OIDCDynamicRegistrationConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Creates a new configuration instance.
OidcError - Class in net.shibboleth.oidc.profile.core: Supplemental error objects for any missing values in the Nimbus library.
OidcError() - Constructor for class net.shibboleth.oidc.profile.core.OidcError: Constructor.
OidcEventIds - Class in net.shibboleth.oidc.profile.core: OpenID Connect -specific constants to use for ProfileAction EventContexts.
OidcEventIds() - Constructor for class net.shibboleth.oidc.profile.core.OidcEventIds: Constructor.
OIDCHttpRequestMethod() - Constructor for enum net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration.OIDCHttpRequestMethod
OIDCMessageDecoder - Interface in net.shibboleth.oidc.profile.decoding: Marker interface for OIDC Message Decoders.
OIDCMessageEncoder - Interface in net.shibboleth.oidc.profile.encoder: An OIDC message encoder interface which requires implementations to test if the request method is supported by the encoder.
OIDCProfileConfiguration - Interface in net.shibboleth.oidc.profile.config: Marker interface for OIDC-specific profile configurations.
OIDCProviderInformationConfiguration - Class in net.shibboleth.oidc.profile.config: Profile configuration for the OpenID Connect Provider Configuration.
OIDCProviderInformationConfiguration() - Constructor for class net.shibboleth.oidc.profile.config.OIDCProviderInformationConfiguration: Constructor.
OIDCProviderInformationConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.config.OIDCProviderInformationConfiguration: Creates a new configuration instance.
OIDCPublishKeySetConfiguration - Class in net.shibboleth.oidc.profile.config: Profile configuration for publishing OP key set.
OIDCPublishKeySetConfiguration() - Constructor for class net.shibboleth.oidc.profile.config.OIDCPublishKeySetConfiguration: Constructor.
OIDCPublishKeySetConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.config.OIDCPublishKeySetConfiguration: Creates a new configuration instance.
OIDCSecurityConfiguration - Class in net.shibboleth.oidc.profile.config: Class extends SecurityConfiguration to support separate configuration for request object decryption and signature validation.
OIDCSecurityConfiguration() - Constructor for class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration
OIDCUserInfoConfiguration - Class in net.shibboleth.oidc.profile.config: Profile configuration for the OpenID Connect core protocol userinfo endpoint.
OIDCUserInfoConfiguration() - Constructor for class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Constructor.
OIDCUserInfoConfiguration(String) - Constructor for class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Creates a new configuration instance.

P

POST - net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration.OIDCHttpRequestMethod: HTTP POST.
postAuthenticationFlowsLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Lookup function to supply post authentication flows.
PROFILE_ID - Static variable in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in class net.shibboleth.oidc.profile.config.OIDCProviderInformationConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in class net.shibboleth.oidc.profile.config.OIDCPublishKeySetConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenIntrospectionConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: ID for this profile configuration.
prompt - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Space delimited, case sensitive list of ASCII string values that specifies whether the Authorization Server prompts the End-User for reauthentication and consent.
PROTOCOL_URI - Static variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: OIDC base protocol URI.
PROTOCOL_URI - Static variable in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: OIDC base protocol URI.
PROTOCOL_URI - Static variable in class net.shibboleth.oidc.profile.config.OIDCProviderInformationConfiguration: OIDC base protocol URI.
PROTOCOL_URI - Static variable in class net.shibboleth.oidc.profile.config.OIDCPublishKeySetConfiguration: OIDC base protocol URI.
PROTOCOL_URI - Static variable in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: OIDC base protocol URI.
PROTOCOL_URI - Static variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: OAuth2 Token Revocation URI.
PROTOCOL_URI - Static variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenIntrospectionConfiguration: OAuth2 Token Revocation URI.
PROTOCOL_URI - Static variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: OAuth2 Token Revocation URI.
proxyCountLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Lookup function to supply proxyCount property.

R

redirectURI - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The redirect URI to which the response will be sent.
RefreshTokenClaimsSetManipulationStrategyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2TokenConfiguration.getRefreshTokenClaimsSetManipulationStrategy(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RefreshTokenClaimsSetManipulationStrategyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RefreshTokenClaimsSetManipulationStrategyLookupFunction
refreshTokenClaimsSetManipulationStrategyLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Lookup function to supply strategy bi-function for manipulating refresh token claims set.
RefreshTokenLifetimeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns AbstractOIDCSSOConfiguration.getRefreshTokenLifetime(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RefreshTokenLifetimeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RefreshTokenLifetimeLookupFunction
refreshTokenLifetimeLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Lookup function to supply refresh token lifetime.
RefreshTokensEnabledPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to AbstractOAuth2FlowAwareProfileConfiguration.isRefreshTokensEnabled(ProfileRequestContext).
RefreshTokensEnabledPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.RefreshTokensEnabledPredicate
refreshTokensPredicate - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Predicate used to indicate whether refresh tokens are supported by this profile.
RegistrationMetadataPolicyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OIDCDynamicRegistrationConfiguration.getMetadataPolicy(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RegistrationMetadataPolicyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RegistrationMetadataPolicyLookupFunction
RegistrationValidityPeriodLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OIDCDynamicRegistrationConfiguration.getRegistrationValidityPeriod(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RegistrationValidityPeriodLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RegistrationValidityPeriodLookupFunction
registrationValidityPeriodLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Lookup function to supply registration validity period.
REQUEST_OBJECT_AND_URI - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: Both request uri and request object in request.
requestObject - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: The request object.
requestObjectDecryptConfig - Variable in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Configuration used when decrypting request object information.
RequestObjectDecryptionConfigurationLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns a EncryptionConfiguration list for request object decryption by way of various lookup strategies.
RequestObjectDecryptionConfigurationLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RequestObjectDecryptionConfigurationLookupFunction
requestObjectSignatureValidationConfig - Variable in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Configuration used when validating request object information.
RequestObjectSignatureValidationConfigurationLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns a SignatureSigningConfiguration list for request object signature validation by way of various lookup strategies.
RequestObjectSignatureValidationConfigurationLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RequestObjectSignatureValidationConfigurationLookupFunction
requestURI - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: The request URI.
resolveAttributesPredicate - Variable in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Whether attributes should be resolved in the course of the profile.
resolveAttributesPredicate - Variable in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Whether attributes should be resolved in the course of the profile.
resolveAttributesPredicate - Variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Whether attributes should be resolved in the course of the profile.
ResolverBasedRegistrationMetadataPolicyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A lookup function for the map of MetadataPolicy objects, resolved via configurable MetadataPolicyResolver and optionally configurable CriteriaSet.
ResolverBasedRegistrationMetadataPolicyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction
responseMode - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The response mode.
responseType - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The authorization processing flow to use.
REVOCATION_FAILED - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The revocation attempt failed.
RevocationLifetimeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2TokenRevocationConfiguration.getRevocationLifetime(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RevocationLifetimeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RevocationLifetimeLookupFunction
revocationLifetimeLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Lookup function to supply revocation lifetime.
RevocationMethodLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2TokenRevocationConfiguration.getRevocationMethod(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RevocationMethodLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RevocationMethodLookupFunction
revocationMethodLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Which revocation method should be used when revoking a token.
rpResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.RequestObjectDecryptionConfigurationLookupFunction: A resolver for default security configurations.
rpResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.RequestObjectSignatureValidationConfigurationLookupFunction: A resolver for default security configurations.
rpResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.TokenEndpointJwtSignatureValidationConfigurationLookupFunction: A resolver for default security configurations.

S

scope - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The requested scopes.
SecretExpirationPeriodLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OIDCDynamicRegistrationConfiguration.getSecretExpirationPeriod(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
SecretExpirationPeriodLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.SecretExpirationPeriodLookupFunction
secretExpirationPeriodLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Lookup function to supply client secret expiration period.
setAccessTokenClaimsSetManipulationStrategy(BiFunction<ProfileRequestContext, Map<String, Object>, Map<String, Object>>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set the bi-function for manipulating access token claims set.
setAccessTokenClaimsSetManipulationStrategyLookupStrategy(Function<ProfileRequestContext, BiFunction<ProfileRequestContext, Map<String, Object>, Map<String, Object>>>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set a lookup strategy for the bi-function for manipulating access token claims set.
setAccessTokenLifetime(Duration) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set the lifetime of an access token.
setAccessTokenLifetime(Duration) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Set the lifetime of an access token.
setAccessTokenLifetimeLookupStrategy(Function<ProfileRequestContext, Duration>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set a lookup strategy for the access token lifetime.
setAccessTokenLifetimeLookupStrategy(Function<ProfileRequestContext, Duration>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Set a lookup strategy for the access token lifetime.
setAccessTokenType(String) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set access token type.
setAccessTokenType(String) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Set access token type.
setAccessTokenTypeLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set lookup strategy for access token type.
setAccessTokenTypeLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Set lookup strategy for access token type.
setAcrRequestAlwaysEssential(boolean) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set whether all acr claim requests should be treated as Essential.
setAcrRequestAlwaysEssentialPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set condition for whether all acr claim requests should be treated as Essential.
setAcrs(List<ACR>) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the ACRs.
setAdditionalAudiencesForIdToken(Collection<String>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set the set of audiences, in addition to the relying party(ies) to which the IdP is issuing the ID Token, with which the token may be shared.
setAdditionalAudiencesForIdTokenLookupStrategy(Function<ProfileRequestContext, Set<String>>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set a lookup strategy for the set of audiences, in addition to the relying party(ies) to which the IdP is issuing the ID Token, with which the token may be shared.
setAllowPKCEPlain(boolean) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set whether client is allowed to use PKCE code challenge method plain.
setAllowPKCEPlainPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set condition for whether client is allowed to use PKCE code challenge method plain.
setAlwaysIncludedAttributes(Collection<String>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set the set of attribute IDs which should be included in the ID token regardless of response_type.
setAlwaysIncludedAttributesLookupStrategy(Function<ProfileRequestContext, Set<String>>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set a lookup strategy for the attribute IDs which should be included in the ID token regardless of response_type.
setAuthenticationFlows(Collection<String>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set the authentication flows to use.
setAuthenticationFlowsLookupStrategy(Function<ProfileRequestContext, Set<String>>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set a lookup strategy for the authentication flows to use.
setAuthorizationCodeClaimsSetManipulationStrategy(BiFunction<ProfileRequestContext, Map<String, Object>, Map<String, Object>>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set the bi-function for manipulating authorization code claims set.
setAuthorizationCodeClaimsSetManipulationStrategyLookupStrategy(Function<ProfileRequestContext, BiFunction<ProfileRequestContext, Map<String, Object>, Map<String, Object>>>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set a lookup strategy for the bi-function for manipulating authorization code claims set.
setAuthorizationCodeFlowEnabled(boolean) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Set whether authorization code flow is supported by this profile.
setAuthorizationCodeFlowEnabledPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Set condition used to indicate whether authorization code flow is supported by this profile.
setAuthorizeCodeLifetime(Duration) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set the lifetime of authz code.
setAuthorizeCodeLifetimeLookupStrategy(Function<ProfileRequestContext, Duration>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set a lookup strategy for the authz code lifetime.
setClaimsValidator(ClaimsValidator) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set the ClaimsValidator to apply to JWT-based client authentication.
setClaimsValidatorLookupStrategy(Function<ProfileRequestContext, ClaimsValidator>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set a lookup strategy for the ClaimsValidator to apply to JWT-based client authentication.
setCriteriaSetLookupStrategy(Function<ProfileRequestContext, CriteriaSet>) - Method in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction: Set the lookup strategy for the criteria set used for the metadata policy resolver.
setDefaultAuthenticationMethods(Collection<AuthenticationContextClassReferencePrincipal>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set the default authentication contexts to use, expressed as custom principals.
setDefaultAuthenticationMethodsLookupStrategy(Function<ProfileRequestContext, Collection<AuthenticationContextClassReferencePrincipal>>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set a lookup strategy for the authentication contexts to use, expressed as custom principals.
setDeniedUserInfoAttributes(Collection<String>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set the set of attribute IDs which should be omitted from the UserInfo token.
setDeniedUserInfoAttributes(Collection<String>) - Method in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Set the set of attribute IDs which should be omitted from the UserInfo token.
setDeniedUserInfoAttributesLookupStrategy(Function<ProfileRequestContext, Set<String>>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set a lookup strategy for the set of attribute IDs which should be omitted from the UserInfo token.
setDeniedUserInfoAttributesLookupStrategy(Function<ProfileRequestContext, Set<String>>) - Method in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Set a lookup strategy for the set of attribute IDs which should be omitted from the UserInfo token.
setDisplay(Display) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the display.
setEncodeConsentInTokens(boolean) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set whether to encode consent in authorization code and access/refresh tokens.
setEncodeConsentInTokensPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set condition for whether to encode consent in authorization code and access/refresh tokens.
setEncodedAttributes(Collection<String>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set the set of attribute IDs which should be encoded in encrypted form into the authorization code and/or access/refresh tokens to enable recovery on the back-channel.
setEncodedAttributesLookupStrategy(Function<ProfileRequestContext, Set<String>>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set a lookup strategy for the attribute IDs which should be encoded in encrypted form into the authorization code and/or access/refresh tokens to enable recovery on the back-channel.
setEncryptionOptional(boolean) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set whether encryption is optional in the face of a missing key, etc.
setEncryptionOptional(boolean) - Method in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Set whether encryption is optional in the face of a missing key, etc.
setEncryptionOptional(boolean) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Set whether encryption is optional in the face of a missing key, etc.
setEncryptionOptionalPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set a condition to determine whether encryption is optional in the face of a missing key, etc.
setEncryptionOptionalPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Set a condition to determine whether encryption is optional in the face of a missing key, etc.
setEncryptionOptionalPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Set a condition to determine whether encryption is optional in the face of a missing key, etc.
setEndpointURI(URI) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the endpoint_uri.
setEnforceRefreshTokenRotation(boolean) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Set whether always revoke the refresh_token after it's used.
setEnforceRefreshTokenRotationPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Set condition for whether always revoke the refresh_token after it's used.
setForceAuthn(boolean) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set whether a fresh user presence proof should be required for this request.
setForceAuthnPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set a condition to determine whether a fresh user presence proof should be required for this request.
setForcePKCE(boolean) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set whether client is required to use PKCE.
setForcePKCEPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set condition for whether client is required to use PKCE.
setGrantTypes(Collection<String>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Set the enabled grant types.
setGrantTypesLookupStrategy(Function<ProfileRequestContext, Set<String>>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Set a lookup strategy for the enabled grant types.
setHttpRequestMethod(OIDCAuthorizationConfiguration.OIDCHttpRequestMethod) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set the HTTP request method for an authentication request.
setHttpRequestMethodLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set a lookup strategy to determine the HTTP request method for an authentication request.
setHybridFlowEnabled(boolean) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Set whether implicit flow is supported by this profile.
setHybridFlowEnabledPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Set condition used to indicate whether implicit flow is supported by this profile.
setIDTokenLifetime(Duration) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set the lifetime of an id token.
setIDTokenLifetimeLookupStrategy(Function<ProfileRequestContext, Duration>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set a lookup strategy for the ID token lifetime.
setIDTokenManipulationStrategy(BiFunction<ProfileRequestContext, Map<String, Object>, Map<String, Object>>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set the bi-function for manipulating id_token claims.
setIDTokenManipulationStrategyLookupStrategy(Function<ProfileRequestContext, BiFunction<ProfileRequestContext, Map<String, Object>, Map<String, Object>>>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set a lookup strategy for the bi-function for manipulating id_token claims.
setImplicitFlowEnabled(boolean) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Set whether hybrid flow is supported by this profile.
setImplicitFlowEnabledPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Set condition used to indicate whether hybrid flow is supported by this profile.
setIncludeIssuerInResponse(boolean) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set whether to include iss parameter in the authentication response.
setIncludeIssuerInResponsePredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set condition for whether to include iss parameter in the authentication response.
setIssuedClaimsValidator(ClaimsValidator) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2TokenValidatingConfiguration: Set the ClaimsValidator to apply to issued JWT-based tokens being validated by this profile.
setIssuedClaimsValidatorLookupStrategy(Function<ProfileRequestContext, ClaimsValidator>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2TokenValidatingConfiguration: Set a lookup strategy for the ClaimsValidator to apply to issued JWT-based tokens being validated by this profile.
setIssuer(String) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set overridden issuer value.
setIssuer(String) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Set overridden issuer value.
setIssuer(String) - Method in class net.shibboleth.oidc.profile.config.OIDCProviderInformationConfiguration: Set overridden issuer value.
setIssuer(String) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2TokenValidatingConfiguration: Set overridden issuer value.
setIssuer(String) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Set overridden issuer value.
setIssuerLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Sets lookup strategy for overridden issuer value.
setIssuerLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Sets lookup strategy for overridden issuer value.
setIssuerLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.oidc.profile.config.OIDCProviderInformationConfiguration: Sets lookup strategy for overridden issuer value.
setIssuerLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2TokenValidatingConfiguration: Sets lookup strategy for overridden issuer value.
setIssuerLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Sets lookup strategy for overridden issuer value.
setMaxAge(Duration) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the max age.
setMetadataPolicy(Map<String, MetadataPolicy>) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Sets the metadata policy.
setMetadataPolicyLookupStrategy(Function<ProfileRequestContext, Map<String, MetadataPolicy>>) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Set a lookup strategy for the metadata policy.
setMetadataPolicyResolver(MetadataPolicyResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction: Set the metadata policy resolver.
setNonce(Nonce) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the nonce.
setPostAuthenticationFlows(Collection<String>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set the ordered collection of post-authentication interceptor flows to enable.
setPostAuthenticationFlowsLookupStrategy(Function<ProfileRequestContext, Collection<String>>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set a lookup strategy for the post-authentication interceptor flows to enable.
setPrompt(Prompt) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the prompt.
setProxyCount(Integer) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Sets the maximum number of times an assertion may be proxied outbound and/or the maximum number of hops between the relying party and a proxied authentication authority inbound.
setProxyCountLookupStrategy(Function<ProfileRequestContext, Integer>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set a lookup strategy for the maximum number of times an assertion may be proxied outbound and/or the maximum number of hops between the relying party and a proxied authentication authority inbound.
setRedirectURI(URI) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the redirect_uri.
setRefreshTokenClaimsSetManipulationStrategy(BiFunction<ProfileRequestContext, Map<String, Object>, Map<String, Object>>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Set the bi-function for manipulating refresh token claims set.
setRefreshTokenClaimsSetManipulationStrategyLookupStrategy(Function<ProfileRequestContext, BiFunction<ProfileRequestContext, Map<String, Object>, Map<String, Object>>>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Set a lookup strategy for the bi-function for manipulating refresh token claims set.
setRefreshTokenLifetime(Duration) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set the lifetime of refresh token.
setRefreshTokenLifetimeLookupStrategy(Function<ProfileRequestContext, Duration>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set a lookup strategy for the refresh token lifetime.
setRefreshTokensEnabled(boolean) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Set whether refresh tokens are supported by this profile.
setRefreshTokensEnabledPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2FlowAwareProfileConfiguration: Set condition used to indicate whether refresh tokens are supported by this profile.
setRegistrationValidityPeriod(Duration) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Sets the registration validity period.
setRegistrationValidityPeriodLookupStrategy(Function<ProfileRequestContext, Duration>) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Set a lookup strategy for the registration validity period.
setRelyingPartyConfigurationResolver(RelyingPartyConfigurationResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.RequestObjectDecryptionConfigurationLookupFunction: Set the resolver for default security configurations.
setRelyingPartyConfigurationResolver(RelyingPartyConfigurationResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.RequestObjectSignatureValidationConfigurationLookupFunction: Set the resolver for default security configurations.
setRelyingPartyConfigurationResolver(RelyingPartyConfigurationResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.TokenEndpointJwtSignatureValidationConfigurationLookupFunction: Set the resolver for default security configurations.
setRequestObject(JWT) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set the request object.
setRequestObjectDecryptionConfiguration(EncryptionConfiguration) - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Set the configuration used when decrypting request object information.
setRequestObjectSignatureValidationConfiguration(SignatureSigningConfiguration) - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Set the configuration used when validating request object information.
setRequestURI(URI) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set the URI to fetch the request object from.
setResolveAttributes(boolean) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set whether attributes should be resolved during the profile.
setResolveAttributes(boolean) - Method in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Set whether attributes should be resolved during the profile.
setResolveAttributes(boolean) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Set whether attributes should be resolved during the profile.
setResolveAttributesPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.config.AbstractOIDCSSOConfiguration: Set a condition to determine whether attributes should be resolved during the profile.
setResolveAttributesPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Set a condition to determine whether attributes should be resolved during the profile.
setResolveAttributesPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: Set a condition to determine whether attributes should be resolved during the profile.
setResponseMode(ResponseMode) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the response mode.
setResponseType(ResponseType) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the response type.
setRevocationLifetime(Duration) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Set the lifetime of revocation.
setRevocationLifetimeLookupStrategy(Function<ProfileRequestContext, Duration>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Set a lookup strategy for the revocation lifetime.
setRevocationMethod(OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Set which revocation method should be used when revoking a token.
setRevocationMethodLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Set strategy for looking up which revocation method should be used when revoking a token.
setSecretExpirationPeriod(Duration) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Sets the client secret expiration period.
setSecretExpirationPeriodLookupStrategy(Function<ProfileRequestContext, Duration>) - Method in class net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Set a lookup strategy for the client secret expiration period.
setState(State) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the state.
setTokenEndpointAuthMethods(Collection<String>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set the enabled token endpoint authentication methods.
setTokenEndpointAuthMethodsLookupStrategy(Function<ProfileRequestContext, Set<String>>) - Method in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Set a lookup strategy for the enabled token endpoint authentication methods.
setTokenEndpointJwtSignatureValidationConfiguration(SignatureSigningConfiguration) - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Set the configuration used when validating token endpoint authentication JWT signatures.
setUseActiveProfileOnly(boolean) - Method in class net.shibboleth.oidc.profile.config.navigate.RevocationLifetimeLookupFunction: Set the flag for using active profile only.
setUseRequestObject(boolean) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set whether the authentication request parameters should be passed in a single, self contained, JWT.
setUseRequestObjectPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Set condition for whether the authentication request parameters should be passed in a single, self contained, JWT.
SignatureAlgorithmsLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns SignatureSigningConfiguration.getSignatureAlgorithms() if it is available in the security configuration of the profile configuration.
SignatureAlgorithmsLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.SignatureAlgorithmsLookupFunction
state - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The state.

T

test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.AllowPKCEPlainPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.AttributeConsentFlowEnabledPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.AuthorizationCodeFlowEnabledPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.EncodeConsentPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.EncryptionOptionalPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.EnforceRefreshTokenRotationPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.ForcePKCEPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.HybridFlowEnabledPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.ImplicitFlowEnabledPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.IncludeIssuerInAuthenticationResponsePredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.RefreshTokensEnabledPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AcrClaimAlwaysEssentialLookupFunction
TOKEN - net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod: Revoke single access or refresh token.
TokenEndpointAuthMethodLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains AbstractOAuth2ClientAuthenticableProfileConfiguration.getTokenEndpointAuthMethods(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
TokenEndpointAuthMethodLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.TokenEndpointAuthMethodLookupFunction
tokenEndpointAuthMethodsLookupStrategy - Variable in class net.shibboleth.oidc.profile.oauth2.config.AbstractOAuth2ClientAuthenticableProfileConfiguration: Enabled token endpoint authentication methods.
tokenEndpointJwtSignatureValidationConfig - Variable in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Configuration used when validating token endpoint authentication JWT signatures.
TokenEndpointJwtSignatureValidationConfigurationLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns a SignatureSigningConfiguration list for token endpoint JWT signature validation by way of various lookup strategies.
TokenEndpointJwtSignatureValidationConfigurationLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.TokenEndpointJwtSignatureValidationConfigurationLookupFunction
toString() - Method in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal

U

UNSPECIFIED - Static variable in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal: unspecified auth ctx class.
useRequestObjectPredicate - Variable in class net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Whether to encode authentication request parameters inside a JWT request object .

V

valueOf(String) - Static method in enum net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration.OIDCHttpRequestMethod: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod: Returns the enum constant of this type with the specified name.
values() - Static method in enum net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration.OIDCHttpRequestMethod: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod: Returns an array containing the constants of this enum type, in the order they are declared.

A C D E F G H I K L M N O P R S T U V
All Classes All Packages