SAML2Configuration (pac4j for SAML protocol 3.6.1 API)

java.lang.Object
- org.pac4j.core.util.InitializableObject
- - org.pac4j.saml.config.SAML2Configuration

Direct Known Subclasses:

SAML2ClientConfiguration
```
public class SAML2Configuration
extends InitializableObject
```
The class is responsible for capturing client settings and passing them around.

Since:

1.7

Author:

Misagh Moayyed, Jerome Leleu

Field Summary

Fields
Modifier and Type	Field and Description
`protected static java.lang.String`	`CLASSPATH_PREFIX`
`protected static java.lang.String`	`DEFAULT_PROVIDER_NAME`
`protected static java.lang.String`	`FILE_PREFIX`
`protected static java.lang.String`	`RESOURCE_PREFIX`

Constructor Summary

Constructors
Modifier	Constructor and Description
	`SAML2Configuration()`
	`SAML2Configuration(org.springframework.core.io.Resource keystoreResource, java.lang.String keystorePassword, java.lang.String privateKeyPassword, org.springframework.core.io.Resource identityProviderMetadataResource)`
	`SAML2Configuration(org.springframework.core.io.Resource keystoreResource, java.lang.String keyStoreAlias, java.lang.String keyStoreType, java.lang.String keystorePassword, java.lang.String privateKeyPassword, org.springframework.core.io.Resource identityProviderMetadataResource)`
`protected`	SAML2Configuration(java.lang.String keyStoreAlias, java.lang.String keyStoreType, org.springframework.core.io.Resource keystoreResource, java.lang.String keystorePassword, java.lang.String privateKeyPassword, org.springframework.core.io.Resource identityProviderMetadataResource, java.lang.String identityProviderEntityId, java.lang.String serviceProviderEntityId, java.lang.String providerName, java.util.function.Supplier<java.util.List<org.opensaml.core.xml.schema.XSAny>> authnRequestExtensions, java.lang.String attributeAsId)
	`SAML2Configuration(java.lang.String keystorePath, java.lang.String keystorePassword, java.lang.String privateKeyPassword, java.lang.String identityProviderMetadataPath)`

Method Summary

All Methods Static Methods Instance Methods Concrete Methods Deprecated Methods
Modifier and Type	Method and Description
`LogoutHandler`	`findLogoutHandler()`
`int`	`getAcceptedSkew()`
`int`	`getAssertionConsumerServiceIndex()`
`java.lang.String`	`getAttributeAsId()`
`int`	`getAttributeConsumingServiceIndex()`
`java.lang.String`	`getAuthnContextClassRef()` Deprecated.
`java.util.List<java.lang.String>`	`getAuthnContextClassRefs()`
`java.lang.String`	`getAuthnRequestBindingType()`
`java.util.function.Supplier<java.util.List<org.opensaml.core.xml.schema.XSAny>>`	`getAuthnRequestExtensions()`
`java.util.Collection<java.lang.String>`	`getBlackListedSignatureSigningAlgorithms()`
`java.lang.String`	`getComparisonType()`
`java.lang.String`	`getDestinationBindingType()` Deprecated.
`java.lang.String`	`getIdentityProviderEntityId()`
`org.springframework.core.io.Resource`	`getIdentityProviderMetadataResource()`
`java.lang.String`	`getKeyStoreAlias()`
`java.lang.String`	`getKeystorePassword()`
`org.springframework.core.io.Resource`	`getKeystoreResource()`
`java.lang.String`	`getKeyStoreType()`
`LogoutHandler`	`getLogoutHandler()`
`java.util.Map<java.lang.String,java.lang.String>`	`getMappedAttributes()`
`int`	`getMaximumAuthenticationLifetime()`
`java.lang.String`	`getNameIdPolicyFormat()`
`java.lang.String`	`getPrivateKeyPassword()`
`java.lang.String`	`getProviderName()`
`java.util.List<SAML2ServiceProvicerRequestedAttribute>`	`getRequestedServiceProviderAttributes()`
`SAMLMessageStorageFactory`	`getSamlMessageStorageFactory()`
`java.lang.String`	`getServiceProviderEntityId()`
`org.springframework.core.io.WritableResource`	`getServiceProviderMetadataResource()`
`java.util.List<java.lang.String>`	`getSignatureAlgorithms()`
`java.lang.String`	`getSignatureCanonicalizationAlgorithm()`
`java.util.List<java.lang.String>`	`getSignatureReferenceDigestMethods()`
`java.io.File`	`getSigningBase64CertificatePath()`
`java.io.File`	`getSigningBinaryCertificatePath()`
`java.io.File`	`getSigningKeyFile()`
`java.lang.String`	`getSpLogoutRequestBindingType()`
`java.lang.String`	`getSpLogoutResponseBindingType()`
`void`	`init(java.lang.String clientName)` Initializes the configuration for a particular client.
`protected void`	`internalInit()`
`boolean`	`isAuthnRequestSigned()`
`boolean`	`isForceAuth()`
`boolean`	`isForceKeystoreGeneration()`
`boolean`	`isForceServiceProviderMetadataGeneration()`
`boolean`	`isPassive()`
`boolean`	`isSignMetadata()`
`boolean`	`isSpLogoutRequestSigned()`
`boolean`	`isUseNameQualifier()`
`boolean`	`isWantsAssertionsSigned()`
`protected static org.springframework.core.io.Resource`	`mapPathToResource(java.lang.String path)`
`protected static org.springframework.core.io.UrlResource`	`newUrlResource(java.lang.String url)`
`void`	`setAcceptedSkew(int acceptedSkew)`
`void`	`setAssertionConsumerServiceIndex(int assertionConsumerServiceIndex)`
`void`	`setAttributeAsId(java.lang.String attributeAsId)`
`void`	`setAttributeConsumingServiceIndex(int attributeConsumingServiceIndex)`
`void`	`setAuthnContextClassRef(java.lang.String authnContextClassRef)` Deprecated.
`void`	`setAuthnContextClassRefs(java.util.List<java.lang.String> authnContextClassRefs)`
`void`	`setAuthnRequestBindingType(java.lang.String authnRequestBindingType)`
`void`	`setAuthnRequestExtensions(java.util.function.Supplier<java.util.List<org.opensaml.core.xml.schema.XSAny>> authnRequestExtensions)`
`void`	`setAuthnRequestSigned(boolean authnRequestSigned)`
`void`	`setBlackListedSignatureSigningAlgorithms(java.util.Collection<java.lang.String> blackListedSignatureSigningAlgorithms)`
`void`	`setComparisonType(java.lang.String comparisonType)`
`void`	`setDestinationBindingType(java.lang.String destinationBindingType)` Deprecated.
`void`	`setForceAuth(boolean forceAuth)`
`void`	`setForceKeystoreGeneration(boolean forceKeystoreGeneration)`
`void`	`setForceServiceProviderMetadataGeneration(boolean forceServiceProviderMetadataGeneration)`
`void`	`setIdentityProviderEntityId(java.lang.String identityProviderEntityId)`
`void`	`setIdentityProviderMetadataPath(java.lang.String path)`
`void`	`setIdentityProviderMetadataResource(org.springframework.core.io.Resource identityProviderMetadataResource)`
`void`	`setIdentityProviderMetadataResourceClasspath(java.lang.String path)`
`void`	`setIdentityProviderMetadataResourceFilepath(java.lang.String path)`
`void`	`setIdentityProviderMetadataResourceUrl(java.lang.String url)`
`void`	`setKeystoreAlias(java.lang.String keyStoreAlias)`
`void`	`setKeystorePassword(java.lang.String keystorePassword)`
`void`	`setKeystorePath(java.lang.String path)`
`void`	`setKeystoreResource(org.springframework.core.io.Resource keystoreResource)`
`void`	`setKeystoreResourceClasspath(java.lang.String path)`
`void`	`setKeystoreResourceFilepath(java.lang.String path)`
`void`	`setKeystoreResourceUrl(java.lang.String url)`
`void`	`setKeystoreType(java.lang.String keyStoreType)`
`void`	`setLogoutHandler(LogoutHandler logoutHandler)`
`void`	`setMappedAttributes(java.util.Map<java.lang.String,java.lang.String> mappedAttributes)`
`void`	`setMaximumAuthenticationLifetime(int maximumAuthenticationLifetime)`
`void`	`setNameIdPolicyFormat(java.lang.String nameIdPolicyFormat)`
`void`	`setPassive(boolean passive)`
`void`	`setPrivateKeyPassword(java.lang.String privateKeyPassword)`
`void`	`setProviderName(java.lang.String providerName)`
`void`	`setSamlMessageStorageFactory(SAMLMessageStorageFactory samlMessageStorageFactory)`
`void`	`setServiceProviderEntityId(java.lang.String serviceProviderEntityId)`
`void`	`setServiceProviderMetadataPath(java.lang.String path)`
`void`	`setServiceProviderMetadataResource(org.springframework.core.io.WritableResource serviceProviderMetadataResource)`
`void`	`setServiceProviderMetadataResourceFilepath(java.lang.String path)`
`void`	`setSignatureAlgorithms(java.util.List<java.lang.String> signatureAlgorithms)`
`void`	`setSignatureCanonicalizationAlgorithm(java.lang.String signatureCanonicalizationAlgorithm)`
`void`	`setSignatureReferenceDigestMethods(java.util.List<java.lang.String> signatureReferenceDigestMethods)`
`void`	`setSignMetadata(boolean signMetadata)`
`void`	`setSpLogoutRequestBindingType(java.lang.String spLogoutRequestBindingType)`
`void`	`setSpLogoutRequestSigned(boolean spLogoutRequestSigned)`
`void`	`setSpLogoutResponseBindingType(java.lang.String spLogoutResponseBindingType)`
`void`	`setUseNameQualifier(boolean useNameQualifier)`
`void`	`setWantsAssertionsSigned(boolean wantsAssertionsSigned)`

Methods inherited from class org.pac4j.core.util.InitializableObject
init

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

RESOURCE_PREFIX

protected static final java.lang.String RESOURCE_PREFIX

See Also:: Constant Field Values

CLASSPATH_PREFIX

protected static final java.lang.String CLASSPATH_PREFIX

See Also:: Constant Field Values

FILE_PREFIX

protected static final java.lang.String FILE_PREFIX

See Also:: Constant Field Values

DEFAULT_PROVIDER_NAME

protected static final java.lang.String DEFAULT_PROVIDER_NAME

See Also:: Constant Field Values

Constructor Detail

SAML2Configuration
```
public SAML2Configuration()
```

SAML2Configuration

public SAML2Configuration(java.lang.String keystorePath,
                          java.lang.String keystorePassword,
                          java.lang.String privateKeyPassword,
                          java.lang.String identityProviderMetadataPath)

SAML2Configuration

public SAML2Configuration(org.springframework.core.io.Resource keystoreResource,
                          java.lang.String keystorePassword,
                          java.lang.String privateKeyPassword,
                          org.springframework.core.io.Resource identityProviderMetadataResource)

SAML2Configuration

public SAML2Configuration(org.springframework.core.io.Resource keystoreResource,
                          java.lang.String keyStoreAlias,
                          java.lang.String keyStoreType,
                          java.lang.String keystorePassword,
                          java.lang.String privateKeyPassword,
                          org.springframework.core.io.Resource identityProviderMetadataResource)

SAML2Configuration

protected SAML2Configuration(java.lang.String keyStoreAlias,
                             java.lang.String keyStoreType,
                             org.springframework.core.io.Resource keystoreResource,
                             java.lang.String keystorePassword,
                             java.lang.String privateKeyPassword,
                             org.springframework.core.io.Resource identityProviderMetadataResource,
                             java.lang.String identityProviderEntityId,
                             java.lang.String serviceProviderEntityId,
                             java.lang.String providerName,
                             java.util.function.Supplier<java.util.List<org.opensaml.core.xml.schema.XSAny>> authnRequestExtensions,
                             java.lang.String attributeAsId)

Method Detail

internalInit
```
protected void internalInit()
```
Specified by:

internalInit in class InitializableObject

getRequestedServiceProviderAttributes

public java.util.List<SAML2ServiceProvicerRequestedAttribute> getRequestedServiceProviderAttributes()

setIdentityProviderMetadataResource

public void setIdentityProviderMetadataResource(org.springframework.core.io.Resource identityProviderMetadataResource)

setIdentityProviderMetadataResourceFilepath

public void setIdentityProviderMetadataResourceFilepath(java.lang.String path)

setIdentityProviderMetadataResourceClasspath

public void setIdentityProviderMetadataResourceClasspath(java.lang.String path)

setIdentityProviderMetadataResourceUrl

public void setIdentityProviderMetadataResourceUrl(java.lang.String url)

setIdentityProviderMetadataPath

public void setIdentityProviderMetadataPath(java.lang.String path)

getAssertionConsumerServiceIndex

public int getAssertionConsumerServiceIndex()

setAssertionConsumerServiceIndex

public void setAssertionConsumerServiceIndex(int assertionConsumerServiceIndex)

isForceKeystoreGeneration

public boolean isForceKeystoreGeneration()

setForceKeystoreGeneration

public void setForceKeystoreGeneration(boolean forceKeystoreGeneration)

newUrlResource

protected static org.springframework.core.io.UrlResource newUrlResource(java.lang.String url)

mapPathToResource

protected static org.springframework.core.io.Resource mapPathToResource(java.lang.String path)

getAcceptedSkew
```
public int getAcceptedSkew()
```

setAcceptedSkew

public void setAcceptedSkew(int acceptedSkew)

getIdentityProviderMetadataResource

public org.springframework.core.io.Resource getIdentityProviderMetadataResource()

setIdentityProviderEntityId

public void setIdentityProviderEntityId(java.lang.String identityProviderEntityId)

getIdentityProviderEntityId

public java.lang.String getIdentityProviderEntityId()

setKeystoreAlias

public void setKeystoreAlias(java.lang.String keyStoreAlias)

setKeystoreType

public void setKeystoreType(java.lang.String keyStoreType)

setKeystoreResource

public void setKeystoreResource(org.springframework.core.io.Resource keystoreResource)

setKeystoreResourceFilepath

public void setKeystoreResourceFilepath(java.lang.String path)

setKeystoreResourceClasspath

public void setKeystoreResourceClasspath(java.lang.String path)

setKeystoreResourceUrl

public void setKeystoreResourceUrl(java.lang.String url)

setKeystorePath

public void setKeystorePath(java.lang.String path)

setKeystorePassword

public void setKeystorePassword(java.lang.String keystorePassword)

setPrivateKeyPassword

public void setPrivateKeyPassword(java.lang.String privateKeyPassword)

getKeyStoreAlias

public java.lang.String getKeyStoreAlias()

getKeyStoreType

public java.lang.String getKeyStoreType()

getKeystoreResource

public org.springframework.core.io.Resource getKeystoreResource()

getKeystorePassword

public java.lang.String getKeystorePassword()

getPrivateKeyPassword

public java.lang.String getPrivateKeyPassword()

setServiceProviderMetadataResource

public void setServiceProviderMetadataResource(org.springframework.core.io.WritableResource serviceProviderMetadataResource)

setServiceProviderMetadataResourceFilepath

public void setServiceProviderMetadataResourceFilepath(java.lang.String path)

setServiceProviderMetadataPath

public void setServiceProviderMetadataPath(java.lang.String path)

setForceServiceProviderMetadataGeneration

public void setForceServiceProviderMetadataGeneration(boolean forceServiceProviderMetadataGeneration)

getServiceProviderMetadataResource

public org.springframework.core.io.WritableResource getServiceProviderMetadataResource()

setServiceProviderEntityId

public void setServiceProviderEntityId(java.lang.String serviceProviderEntityId)

getServiceProviderEntityId

public java.lang.String getServiceProviderEntityId()

isPassive
```
public boolean isPassive()
```

setPassive

public void setPassive(boolean passive)

isForceAuth
```
public boolean isForceAuth()
```

setForceAuth

public void setForceAuth(boolean forceAuth)

getComparisonType

public java.lang.String getComparisonType()

setComparisonType

public void setComparisonType(java.lang.String comparisonType)

getDestinationBindingType
```
@Deprecated
public java.lang.String getDestinationBindingType()
```
Deprecated.

Use getAuthnRequestBindingType().

Returns:

the authn request binding type

setDestinationBindingType
```
@Deprecated
public void setDestinationBindingType(java.lang.String destinationBindingType)
```
Deprecated.

Use setAuthnRequestBindingType(String).

Parameters:

destinationBindingType - the authn request binding type

getAuthnRequestBindingType

public java.lang.String getAuthnRequestBindingType()

setAuthnRequestBindingType

public void setAuthnRequestBindingType(java.lang.String authnRequestBindingType)

getSpLogoutRequestBindingType

public java.lang.String getSpLogoutRequestBindingType()

setSpLogoutRequestBindingType

public void setSpLogoutRequestBindingType(java.lang.String spLogoutRequestBindingType)

getSpLogoutResponseBindingType

public java.lang.String getSpLogoutResponseBindingType()

setSpLogoutResponseBindingType

public void setSpLogoutResponseBindingType(java.lang.String spLogoutResponseBindingType)

getAuthnContextClassRef
```
@Deprecated
public java.lang.String getAuthnContextClassRef()
```
Deprecated.

Use getAuthnContextClassRefs().

Returns:

the authn context class ref

setAuthnContextClassRef
```
@Deprecated
public void setAuthnContextClassRef(java.lang.String authnContextClassRef)
```
Deprecated.

Use setAuthnContextClassRefs(List).

Parameters:

authnContextClassRef - the authn context class ref

getAuthnContextClassRefs

public java.util.List<java.lang.String> getAuthnContextClassRefs()

setAuthnContextClassRefs

public void setAuthnContextClassRefs(java.util.List<java.lang.String> authnContextClassRefs)

getNameIdPolicyFormat

public java.lang.String getNameIdPolicyFormat()

setNameIdPolicyFormat

public void setNameIdPolicyFormat(java.lang.String nameIdPolicyFormat)

getMaximumAuthenticationLifetime

public int getMaximumAuthenticationLifetime()

setMaximumAuthenticationLifetime

public void setMaximumAuthenticationLifetime(int maximumAuthenticationLifetime)

isForceServiceProviderMetadataGeneration

public boolean isForceServiceProviderMetadataGeneration()

getSamlMessageStorageFactory

public SAMLMessageStorageFactory getSamlMessageStorageFactory()

setSamlMessageStorageFactory

public void setSamlMessageStorageFactory(SAMLMessageStorageFactory samlMessageStorageFactory)

getBlackListedSignatureSigningAlgorithms

public java.util.Collection<java.lang.String> getBlackListedSignatureSigningAlgorithms()

setBlackListedSignatureSigningAlgorithms

public void setBlackListedSignatureSigningAlgorithms(java.util.Collection<java.lang.String> blackListedSignatureSigningAlgorithms)

getSignatureAlgorithms

public java.util.List<java.lang.String> getSignatureAlgorithms()

setSignatureAlgorithms

public void setSignatureAlgorithms(java.util.List<java.lang.String> signatureAlgorithms)

getSignatureReferenceDigestMethods

public java.util.List<java.lang.String> getSignatureReferenceDigestMethods()

setSignatureReferenceDigestMethods

public void setSignatureReferenceDigestMethods(java.util.List<java.lang.String> signatureReferenceDigestMethods)

getSignatureCanonicalizationAlgorithm

public java.lang.String getSignatureCanonicalizationAlgorithm()

setSignatureCanonicalizationAlgorithm

public void setSignatureCanonicalizationAlgorithm(java.lang.String signatureCanonicalizationAlgorithm)

isWantsAssertionsSigned

public boolean isWantsAssertionsSigned()

setWantsAssertionsSigned

public void setWantsAssertionsSigned(boolean wantsAssertionsSigned)

isAuthnRequestSigned
```
public boolean isAuthnRequestSigned()
```

setAuthnRequestSigned

public void setAuthnRequestSigned(boolean authnRequestSigned)

isSpLogoutRequestSigned

public boolean isSpLogoutRequestSigned()

setSpLogoutRequestSigned

public void setSpLogoutRequestSigned(boolean spLogoutRequestSigned)

getAttributeConsumingServiceIndex

public int getAttributeConsumingServiceIndex()

setAttributeConsumingServiceIndex

public void setAttributeConsumingServiceIndex(int attributeConsumingServiceIndex)

getProviderName

public java.lang.String getProviderName()

setProviderName

public void setProviderName(java.lang.String providerName)

getAuthnRequestExtensions

public java.util.function.Supplier<java.util.List<org.opensaml.core.xml.schema.XSAny>> getAuthnRequestExtensions()

setAuthnRequestExtensions

public void setAuthnRequestExtensions(java.util.function.Supplier<java.util.List<org.opensaml.core.xml.schema.XSAny>> authnRequestExtensions)

getAttributeAsId

public java.lang.String getAttributeAsId()

setAttributeAsId

public void setAttributeAsId(java.lang.String attributeAsId)

isUseNameQualifier
```
public boolean isUseNameQualifier()
```

setUseNameQualifier

public void setUseNameQualifier(boolean useNameQualifier)

isSignMetadata
```
public boolean isSignMetadata()
```

setSignMetadata

public void setSignMetadata(boolean signMetadata)

getMappedAttributes

public java.util.Map<java.lang.String,java.lang.String> getMappedAttributes()

setMappedAttributes

public void setMappedAttributes(java.util.Map<java.lang.String,java.lang.String> mappedAttributes)

getLogoutHandler

public LogoutHandler getLogoutHandler()

setLogoutHandler

public void setLogoutHandler(LogoutHandler logoutHandler)

findLogoutHandler

public LogoutHandler findLogoutHandler()

init
```
public void init(java.lang.String clientName)
```
Initializes the configuration for a particular client.

Parameters:

clientName - Name of the client. The configuration can use the value or not.

getSigningBinaryCertificatePath

public java.io.File getSigningBinaryCertificatePath()
                                             throws java.io.IOException

Throws:: java.io.IOException

getSigningBase64CertificatePath

public java.io.File getSigningBase64CertificatePath()
                                             throws java.io.IOException

Throws:: java.io.IOException

getSigningKeyFile

public java.io.File getSigningKeyFile()
                               throws java.io.IOException

Throws:: java.io.IOException

Class SAML2Configuration

Field Summary

Constructor Summary

Method Summary

Methods inherited from class org.pac4j.core.util.InitializableObject

Methods inherited from class java.lang.Object

Field Detail

RESOURCE_PREFIX

CLASSPATH_PREFIX

FILE_PREFIX

DEFAULT_PROVIDER_NAME

Constructor Detail

SAML2Configuration

SAML2Configuration

SAML2Configuration

SAML2Configuration

SAML2Configuration

Method Detail

internalInit

getRequestedServiceProviderAttributes

setIdentityProviderMetadataResource

setIdentityProviderMetadataResourceFilepath

setIdentityProviderMetadataResourceClasspath

setIdentityProviderMetadataResourceUrl

setIdentityProviderMetadataPath

getAssertionConsumerServiceIndex

setAssertionConsumerServiceIndex

isForceKeystoreGeneration

setForceKeystoreGeneration

newUrlResource

mapPathToResource

getAcceptedSkew

setAcceptedSkew

getIdentityProviderMetadataResource

setIdentityProviderEntityId

getIdentityProviderEntityId

setKeystoreAlias

setKeystoreType

setKeystoreResource

setKeystoreResourceFilepath

setKeystoreResourceClasspath

setKeystoreResourceUrl

setKeystorePath

setKeystorePassword

setPrivateKeyPassword

getKeyStoreAlias

getKeyStoreType

getKeystoreResource

getKeystorePassword

getPrivateKeyPassword

setServiceProviderMetadataResource

setServiceProviderMetadataResourceFilepath

setServiceProviderMetadataPath

setForceServiceProviderMetadataGeneration

getServiceProviderMetadataResource

setServiceProviderEntityId

getServiceProviderEntityId

isPassive

setPassive

isForceAuth

setForceAuth

getComparisonType

setComparisonType

getDestinationBindingType

setDestinationBindingType

getAuthnRequestBindingType

setAuthnRequestBindingType

getSpLogoutRequestBindingType

setSpLogoutRequestBindingType

getSpLogoutResponseBindingType

setSpLogoutResponseBindingType

getAuthnContextClassRef

setAuthnContextClassRef

getAuthnContextClassRefs

setAuthnContextClassRefs

getNameIdPolicyFormat

setNameIdPolicyFormat

getMaximumAuthenticationLifetime

setMaximumAuthenticationLifetime

isForceServiceProviderMetadataGeneration