SamlResponse (OneLogin java-saml Toolkit Core 2.0.0 API)

java.lang.Object
- com.onelogin.saml2.authn.SamlResponse

```
public class SamlResponse
extends Object
```
SamlResponse class of OneLogin's Java Toolkit. A class that implements SAML 2 Authentication Response parser/validator

Constructor Summary

Constructors
Constructor and Description
`SamlResponse(Saml2Settings settings, HttpRequest request)` Constructor to have a Response object full builded and ready to validate the saml response

Method Summary

All Methods Static Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`Boolean`	`checkOneAuthnStatement()` Checks that the samlp:Response/saml:Assertion/saml:AuthnStatement element exists and is unique.
`Boolean`	`checkOneCondition()` Checks that the samlp:Response/saml:Assertion/saml:Conditions element exists and is unique.
`void`	`checkStatus()` Checks the Status
`String`	`getAssertionId()`
`List<org.joda.time.Instant>`	`getAssertionNotOnOrAfter()`
`HashMap<String,List<String>>`	`getAttributes()` Gets the Attributes from the AttributeStatement element.
`List<String>`	`getAudiences()` Gets the audiences.
`String`	`getError()` After execute a validation process, if fails this method returns the cause
`List<String>`	`getIssuers()` Gets the Issuers (from Response and Assertion).
`String`	`getNameId()` Gets the NameID value provided from the SAML Response String.
`HashMap<String,String>`	`getNameIdData()` Gets the NameID provided from the SAML Response Document.
`String`	`getSessionIndex()` Gets the SessionIndex from the AuthnStatement.
`org.joda.time.DateTime`	`getSessionNotOnOrAfter()` Gets the SessionNotOnOrAfter from the AuthnStatement.
`static SamlResponseStatus`	`getStatus(Document dom)` Get Status from a Response
`boolean`	`isValid()` Determines if the SAML Response is valid using the certificate.
`boolean`	`isValid(String requestId)` Determines if the SAML Response is valid using the certificate.
`void`	`loadXmlFromBase64(String responseStr)` Load a XML base64encoded SAMLResponse
`ArrayList<String>`	`processSignedElements()` Verifies the signature nodes: - Checks that are Response or Assertion - Check that IDs and reference URI are unique and consistent.
`void`	`setDestinationUrl(String urld)` Aux method to set the destination url
`Boolean`	`validateNumAssertions()` Verifies that the document only contains a single Assertion (encrypted or not).
`boolean`	`validateSignedElements(ArrayList<String> signedElements)` Verifies that the document has the expected signed nodes.
`boolean`	`validateTimestamps()` Verifies that the document is still valid according Conditions Element.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - SamlResponse
```
public SamlResponse(Saml2Settings settings,
                    HttpRequest request)
             throws Exception
```
    Constructor to have a Response object full builded and ready to validate the saml response
    
    Parameters:
    
    settings - Saml2Settings object. Setting data
    
    request - the HttpRequest object to be processed (Contains GET and POST parameters, request URL, ...).
    
    Throws:
    
    Exception
- Method Detail
  - loadXmlFromBase64
```
public void loadXmlFromBase64(String responseStr)
                       throws Exception
```
    Load a XML base64encoded SAMLResponse
    
    Parameters:
    
    responseStr - Saml2Settings object. Setting data
    
    Throws:
    
    Exception
  - isValid
```
public boolean isValid(String requestId)
```
    Determines if the SAML Response is valid using the certificate.
    
    Parameters:
    
    requestId - The ID of the AuthNRequest sent by this SP to the IdP
    
    Returns:
    
    if the response is valid or not
  - isValid
```
public boolean isValid()
```
    Determines if the SAML Response is valid using the certificate.
    
    Returns:
    
    if the response is valid or not
  - getNameIdData
```
public HashMap<String,String> getNameIdData()
                                     throws Exception
```
    Gets the NameID provided from the SAML Response Document.
    
    Returns:
    
    the Name ID Data (Value, Format, NameQualifier, SPNameQualifier)
    
    Throws:
    
    Exception
  - getNameId
```
public String getNameId()
                 throws Exception
```
    Gets the NameID value provided from the SAML Response String.
    
    Returns:
    
    string Name ID Value
    
    Throws:
    
    Exception
  - getAttributes
```
public HashMap<String,List<String>> getAttributes()
                                           throws Exception
```
    Gets the Attributes from the AttributeStatement element.
    
    Returns:
    
    the attributes of the SAML Assertion
    
    Throws:
    
    Exception
  - checkStatus
```
public void checkStatus()
```
    Checks the Status
    
    Throws:
    
    IllegalArgumentException - If status is not success
  - getStatus
```
public static SamlResponseStatus getStatus(Document dom)
                                    throws IllegalArgumentException
```
    Get Status from a Response
    
    Parameters:
    
    dom - The Response as XML
    
    Returns:
    
    array with the code and a message
    
    Throws:
    
    IllegalArgumentException - if the response not contain status or if Unexpected XPath error
  - checkOneCondition
```
public Boolean checkOneCondition()
                          throws XPathExpressionException
```
    Checks that the samlp:Response/saml:Assertion/saml:Conditions element exists and is unique.
    
    Returns:
    
    true if the Conditions element exists and is unique
    
    Throws:
    
    XPathExpressionException
  - checkOneAuthnStatement
```
public Boolean checkOneAuthnStatement()
                               throws XPathExpressionException
```
    Checks that the samlp:Response/saml:Assertion/saml:AuthnStatement element exists and is unique.
    
    Returns:
    
    true if the AuthnStatement element exists and is unique
    
    Throws:
    
    XPathExpressionException
  - getAudiences
```
public List<String> getAudiences()
                          throws XPathExpressionException
```
    Gets the audiences.
    
    Returns:
    
    the audiences of the response
    
    Throws:
    
    XPathExpressionException
  - getIssuers
```
public List<String> getIssuers()
                        throws Exception
```
    Gets the Issuers (from Response and Assertion).
    
    Returns:
    
    the issuers of the assertion/response
    
    Throws:
    
    Exception
  - getSessionNotOnOrAfter
```
public org.joda.time.DateTime getSessionNotOnOrAfter()
                                              throws XPathExpressionException
```
    Gets the SessionNotOnOrAfter from the AuthnStatement. Could be used to set the local session expiration
    
    Returns:
    
    the SessionNotOnOrAfter value
    
    Throws:
    
    XPathExpressionException
  - getSessionIndex
```
public String getSessionIndex()
                       throws XPathExpressionException
```
    Gets the SessionIndex from the AuthnStatement. Could be used to be stored in the local session in order to be used in a future Logout Request that the SP could send to the SP, to set what specific session must be deleted
    
    Returns:
    
    the SessionIndex value
    
    Throws:
    
    XPathExpressionException
  - getAssertionId
```
public String getAssertionId()
                      throws XPathExpressionException
```
    Returns:
    
    the ID of the assertion in the Response
    
    Throws:
    
    XPathExpressionException
  - getAssertionNotOnOrAfter
```
public List<org.joda.time.Instant> getAssertionNotOnOrAfter()
                                                     throws XPathExpressionException
```
    Returns:
    
    a list of NotOnOrAfter values from SubjectConfirmationData nodes in this Response
    
    Throws:
    
    XPathExpressionException
  - validateNumAssertions
```
public Boolean validateNumAssertions()
                              throws IllegalArgumentException
```
    Verifies that the document only contains a single Assertion (encrypted or not).
    
    Returns:
    
    true if the document passes.
    
    Throws:
    
    IllegalArgumentException
  - processSignedElements
```
public ArrayList<String> processSignedElements()
                                        throws Exception
```
    Verifies the signature nodes: - Checks that are Response or Assertion - Check that IDs and reference URI are unique and consistent.
    
    Returns:
    
    array Signed element tags
    
    Throws:
    
    Exception
  - validateSignedElements
```
public boolean validateSignedElements(ArrayList<String> signedElements)
                               throws Exception
```
    Verifies that the document has the expected signed nodes.
    
    Parameters:
    
    signedElements - the elements to be validated
    
    Returns:
    
    true if is valid
    
    Throws:
    
    Exception
  - validateTimestamps
```
public boolean validateTimestamps()
```
    Verifies that the document is still valid according Conditions Element.
    
    Returns:
    
    true if still valid
  - setDestinationUrl
```
public void setDestinationUrl(String urld)
```
    Aux method to set the destination url
    
    Parameters:
    
    urld - the url to set as currentUrl
  - getError
```
public String getError()
```
    After execute a validation process, if fails this method returns the cause
    
    Returns:
    
    the cause of the validation error

Class SamlResponse

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

SamlResponse

Method Detail

loadXmlFromBase64

isValid

isValid

getNameIdData

getNameId

getAttributes

checkStatus

getStatus

checkOneCondition

checkOneAuthnStatement

getAudiences

getIssuers

getSessionNotOnOrAfter

getSessionIndex

getAssertionId

getAssertionNotOnOrAfter

validateNumAssertions

processSignedElements

validateSignedElements

validateTimestamps

setDestinationUrl

getError