| Package | Description |
|---|---|
| org.opensaml.common.binding |
Classes related to SAML binding operations.
|
| org.opensaml.common.binding.security |
Classes responsible for performing transport-related and basic message
validation of decoded SAML messages.
|
| org.opensaml.saml1.binding |
Classes for working with SAML 1 bindings.
|
| org.opensaml.saml1.binding.decoding |
Classes used to decode SAML messages.
|
| org.opensaml.saml1.binding.encoding |
Classes used to encode SAML messages.
|
| org.opensaml.saml2.binding |
Class for working with SAML 2 bindings.
|
| org.opensaml.saml2.binding.decoding |
Classes used to decode SAML 2 messages.
|
| org.opensaml.saml2.binding.encoding |
Classes used to encode SAML 2 messages.
|
| org.opensaml.saml2.binding.security |
Classes responsible for performing transport-related and basic message
validation of decoded SAML 2 messages.
|
| org.opensaml.ws.message |
Objects related to messages received and sent by web services.
|
| org.opensaml.ws.message.decoder |
Messages decoders are responsible for extracting an incomming web serivce message from the inbound transport.
|
| org.opensaml.ws.message.encoder |
Messages encoders are responsible for encoding an outgoing web serivce message onto the outbound transport.
|
| org.opensaml.ws.message.handler | |
| org.opensaml.ws.security |
Provides interfaces that may be used to implement policies that are evaluated against incoming messages.
|
| org.opensaml.ws.security.provider |
Basic implementations of some security policies.
|
| org.opensaml.ws.soap.client | |
| org.opensaml.ws.soap.soap11.decoder | |
| org.opensaml.ws.soap.soap11.decoder.http | |
| org.opensaml.ws.soap.soap11.encoder | |
| org.opensaml.ws.soap.soap11.encoder.http | |
| org.opensaml.ws.soap.util |
General utility classes.
|
| Modifier and Type | Interface and Description |
|---|---|
interface |
SAMLMessageContext<InboundMessageType extends SAMLObject,OutboundMessageType extends SAMLObject,NameIdentifierType extends SAMLObject>
SAML specific extension to the more basic
MessageContext. |
| Modifier and Type | Class and Description |
|---|---|
class |
BasicSAMLMessageContext<InboundMessageType extends SAMLObject,OutboundMessageType extends SAMLObject,NameIdentifierType extends SAMLObject>
Base implemention of
SAMLMessageContext. |
| Modifier and Type | Method and Description |
|---|---|
protected CriteriaSet |
SAMLMDClientCertAuthRule.buildCriteriaSet(String entityID,
MessageContext messageContext)
Subclasses are required to implement this method to build a criteria set for the trust engine
according to trust engine and application-specific needs.
|
protected CriteriaSet |
BaseSAMLXMLSignatureSecurityPolicyRule.buildCriteriaSet(String entityID,
MessageContext messageContext)
Subclasses are required to implement this method to build a criteria set for the trust engine
according to trust engine and application-specific needs.
|
void |
SAMLProtocolMessageXMLSignatureSecurityPolicyRule.evaluate(MessageContext messageContext)
Evaluates the message context against the rule.
|
void |
MessageReplayRule.evaluate(MessageContext messageContext)
Evaluates the message context against the rule.
|
void |
IssueInstantRule.evaluate(MessageContext messageContext)
Evaluates the message context against the rule.
|
void |
BaseSAMLSimpleSignatureSecurityPolicyRule.evaluate(MessageContext messageContext)
Evaluates the message context against the rule.
|
| Modifier and Type | Interface and Description |
|---|---|
interface |
SAML1ArtifactMessageContext<InboundMessageType extends SAMLObject,OutboundMessageType extends SAMLObject,NameIdentifierType extends SAMLObject>
Extensions to the base SAML message context that carries artifact related information.
|
| Modifier and Type | Method and Description |
|---|---|
void |
BaseSAML1MessageDecoder.decode(MessageContext messageContext)
Decodes a message in a binding specific manner.
|
protected void |
HTTPSOAP11Decoder.doDecode(MessageContext messageContext)
Decodes a message, updating the message context.
|
protected void |
HTTPPostDecoder.doDecode(MessageContext messageContext)
Decodes a message, updating the message context.
|
protected void |
HTTPArtifactDecoder.doDecode(MessageContext messageContext)
Decodes a message, updating the message context.
|
| Modifier and Type | Method and Description |
|---|---|
protected void |
HTTPSOAP11Encoder.doEncode(MessageContext messageContext)
Encodes the outbound message onto the outbound transport.
|
protected void |
HTTPPostEncoder.doEncode(MessageContext messageContext)
Encodes the outbound message onto the outbound transport.
|
protected void |
HTTPArtifactEncoder.doEncode(MessageContext messageContext)
Encodes the outbound message onto the outbound transport.
|
boolean |
HTTPSOAP11Encoder.providesMessageConfidentiality(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message confidentiality.
|
boolean |
HTTPPostEncoder.providesMessageConfidentiality(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message confidentiality.
|
boolean |
HTTPArtifactEncoder.providesMessageConfidentiality(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message confidentiality.
|
boolean |
HTTPSOAP11Encoder.providesMessageIntegrity(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message integrity.
|
boolean |
HTTPPostEncoder.providesMessageIntegrity(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message integrity.
|
boolean |
HTTPArtifactEncoder.providesMessageIntegrity(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message integrity.
|
protected void |
HTTPSOAP11Encoder.validateMessageContent(MessageContext messageContext)
Validates that the message context is a
SAMLMessageContext and that its outbound transport is HTTP. |
| Modifier and Type | Interface and Description |
|---|---|
interface |
SAML2ArtifactMessageContext<InboundMessageType extends SAMLObject,OutboundMessageType extends SAMLObject,NameIdentifierType extends SAMLObject>
Extensions to the base SAML message context that carries artifact related information.
|
| Modifier and Type | Method and Description |
|---|---|
void |
HandlerChainAwareHTTPSOAP11Decoder.decode(MessageContext messageContext)
Decodes a message in a binding specific manner.
|
void |
BaseSAML2MessageDecoder.decode(MessageContext messageContext)
Decodes a message in a binding specific manner.
|
protected void |
HTTPSOAP11Decoder.doDecode(MessageContext messageContext)
Decodes a message, updating the message context.
|
protected void |
HTTPRedirectDeflateDecoder.doDecode(MessageContext messageContext)
Decodes a message, updating the message context.
|
protected void |
HTTPPostDecoder.doDecode(MessageContext messageContext)
Decodes a message, updating the message context.
|
protected void |
HTTPArtifactDecoder.doDecode(MessageContext messageContext)
Decodes a message, updating the message context.
|
protected void |
HandlerChainAwareHTTPSOAP11Decoder.invokeHandlerChain(HandlerChain handlerChain,
MessageContext messageContext)
Invoke a handler chain on the specified message context.
|
protected void |
HandlerChainAwareHTTPSOAP11Decoder.processPostSecurityInboundHandlerChain(MessageContext messageContext)
Process the post-SecurityPolicy inbound
HandlerChain for the message context, if any. |
protected void |
HandlerChainAwareHTTPSOAP11Decoder.processPreSecurityInboundHandlerChain(MessageContext messageContext)
Process the pre-SecurityPolicy inbound
HandlerChain for the message context, if any. |
| Modifier and Type | Method and Description |
|---|---|
protected void |
HandlerChainAwareHTTPSOAP11Encoder.doEncode(MessageContext messageContext)
Encodes the outbound message onto the outbound transport.
|
protected void |
HTTPSOAP11Encoder.doEncode(MessageContext messageContext)
Encodes the outbound message onto the outbound transport.
|
protected void |
HTTPRedirectDeflateEncoder.doEncode(MessageContext messageContext)
Encodes the outbound message onto the outbound transport.
|
protected void |
HTTPPostEncoder.doEncode(MessageContext messageContext)
Encodes the outbound message onto the outbound transport.
|
protected void |
HTTPArtifactEncoder.doEncode(MessageContext messageContext)
Encodes the outbound message onto the outbound transport.
|
protected void |
HandlerChainAwareHTTPSOAP11Encoder.encodeToTransport(MessageContext messageContext)
Encode the message context to the transport.
|
protected void |
HandlerChainAwareHTTPSOAP11Encoder.invokeHandlerChain(HandlerChain handlerChain,
MessageContext messageContext)
Invoke a handler chain on the specified message context.
|
protected void |
HandlerChainAwareHTTPSOAP11Encoder.prepareMessageContext(MessageContext messageContext)
Perform final binding-specific processing of message context and prepare it for encoding
to the transport.
|
protected void |
HandlerChainAwareHTTPSOAP11Encoder.preprocessTransport(MessageContext messageContext)
This implementation performs the following actions on the context's
HTTPOutTransport:
Adds the HTTP header: "Cache-control: no-cache, no-store"
Adds the HTTP header: "Pragma: no-cache"
Sets the character encoding to: "UTF-8"
Sets the content type to: "text/xml"
Sets the SOAPAction HTTP header
|
protected void |
HandlerChainAwareHTTPSOAP11Encoder.processOutboundHandlerChain(MessageContext messageContext)
Process the outbound
HandlerChain for the message context, if any. |
boolean |
HandlerChainAwareHTTPSOAP11Encoder.providesMessageConfidentiality(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message confidentiality.
|
boolean |
HTTPSOAP11Encoder.providesMessageConfidentiality(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message confidentiality.
|
boolean |
HTTPRedirectDeflateEncoder.providesMessageConfidentiality(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message confidentiality.
|
boolean |
HTTPPostEncoder.providesMessageConfidentiality(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message confidentiality.
|
boolean |
HTTPArtifactEncoder.providesMessageConfidentiality(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message confidentiality.
|
boolean |
HandlerChainAwareHTTPSOAP11Encoder.providesMessageIntegrity(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message integrity.
|
boolean |
HTTPSOAP11Encoder.providesMessageIntegrity(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message integrity.
|
boolean |
HTTPRedirectDeflateEncoder.providesMessageIntegrity(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message integrity.
|
boolean |
HTTPPostEncoder.providesMessageIntegrity(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message integrity.
|
boolean |
HTTPArtifactEncoder.providesMessageIntegrity(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message integrity.
|
| Modifier and Type | Method and Description |
|---|---|
void |
SAML2AuthnRequestsSignedRule.evaluate(MessageContext messageContext)
Evaluates the message context against the rule.
|
| Modifier and Type | Class and Description |
|---|---|
class |
BaseMessageContext
Base class for message context implementations.
|
| Modifier and Type | Method and Description |
|---|---|
T |
MessageContextEvaluatingFunctor.evaluate(MessageContext msgContext)
Using the specified MessageContext as the evaluation context,
produce a data value product of the appropriate type.
|
void |
MessageContextMutatingFunctor.mutate(MessageContext msgContext,
T input)
Mutate the specified message context based on the supplied input value.
|
| Modifier and Type | Method and Description |
|---|---|
void |
MessageDecoder.decode(MessageContext messageContext)
Decodes a message in a binding specific manner.
|
void |
BaseMessageDecoder.decode(MessageContext messageContext)
Decodes a message in a binding specific manner.
|
protected abstract void |
BaseMessageDecoder.doDecode(MessageContext messageContext)
Decodes a message, updating the message context.
|
protected void |
BaseMessageDecoder.logDecodedMessage(MessageContext messageContext)
Log the decoded message to the protocol message logger.
|
protected void |
BaseMessageDecoder.processSecurityPolicy(MessageContext messageContext)
Process any
SecurityPolicys which can be resolved for the message context. |
| Modifier and Type | Method and Description |
|---|---|
protected abstract void |
BaseMessageEncoder.doEncode(MessageContext messageContext)
Encodes the outbound message onto the outbound transport.
|
void |
MessageEncoder.encode(MessageContext messageContext)
Encodes the message in the binding specific manner.
|
void |
BaseMessageEncoder.encode(MessageContext messageContext)
Encodes the message in the binding specific manner.
|
protected void |
BaseMessageEncoder.logEncodedMessage(MessageContext messageContext)
Log the encoded message to the protocol message logger.
|
boolean |
MessageEncoder.providesMessageConfidentiality(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message confidentiality.
|
boolean |
MessageEncoder.providesMessageIntegrity(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message integrity.
|
| Modifier and Type | Method and Description |
|---|---|
void |
BaseHandlerChainAwareMessageDecoder.decode(MessageContext messageContext)
Decodes a message in a binding specific manner.
|
protected void |
BaseHandlerChainAwareMessageEncoder.doEncode(MessageContext messageContext)
Encodes the outbound message onto the outbound transport.
|
protected abstract void |
BaseHandlerChainAwareMessageEncoder.encodeToTransport(MessageContext messageContext)
Encode the message context to the transport.
|
void |
HandlerChain.invoke(MessageContext msgContext)
Invoke the handler chain on the specified message context.
|
void |
Handler.invoke(MessageContext msgContext)
Invoke the handler on the specified message context.
|
void |
BasicHandlerChain.invoke(MessageContext msgContext)
Invoke the handler chain on the specified message context.
|
protected void |
BaseHandlerChainAwareMessageEncoder.invokeHandlerChain(HandlerChain handlerChain,
MessageContext messageContext)
Invoke a handler chain on the specified message context.
|
protected void |
BaseHandlerChainAwareMessageDecoder.invokeHandlerChain(HandlerChain handlerChain,
MessageContext messageContext)
Invoke a handler chain on the specified message context.
|
protected abstract void |
BaseHandlerChainAwareMessageEncoder.prepareMessageContext(MessageContext messageContext)
Perform final binding-specific processing of message context and prepare it for encoding
to the transport.
|
protected void |
BaseHandlerChainAwareMessageEncoder.processOutboundHandlerChain(MessageContext messageContext)
Process the outbound
HandlerChain for the message context, if any. |
protected void |
BaseHandlerChainAwareMessageDecoder.processPostSecurityInboundHandlerChain(MessageContext messageContext)
Process the post-SecurityPolicy inbound
HandlerChain for the message context, if any. |
protected void |
BaseHandlerChainAwareMessageDecoder.processPreSecurityInboundHandlerChain(MessageContext messageContext)
Process the pre-SecurityPolicy inbound
HandlerChain for the message context, if any. |
Iterable<HandlerChain> |
StaticHandlerChainResolver.resolve(MessageContext messageContext)
Resolve handler chain instances based on the message context.
|
Iterable<HandlerChain> |
HandlerChainResolver.resolve(MessageContext messageContext)
Resolve handler chain instances based on the message context.
|
| Modifier and Type | Method and Description |
|---|---|
void |
SecurityPolicyRule.evaluate(MessageContext messageContext)
Evaluates the message context against the rule.
|
void |
SecurityPolicy.evaluate(MessageContext messageContext)
Evaluates this policy.
|
| Modifier and Type | Method and Description |
|---|---|
protected CriteriaSet |
ClientCertAuthRule.buildCriteriaSet(String entityID,
MessageContext messageContext)
Subclasses are required to implement this method to build a criteria set for the trust engine
according to trust engine and application-specific needs.
|
protected abstract CriteriaSet |
BaseTrustEngineRule.buildCriteriaSet(String entityID,
MessageContext messageContext)
Subclasses are required to implement this method to build a criteria set for the trust engine
according to trust engine and application-specific needs.
|
protected void |
HTTPRule.doEvaluate(MessageContext messageContext)
Evaluates if the message context transport, guaranteed to be of type
HTTPTransport, meets all
requirements. |
protected void |
ClientCertAuthRule.doEvaluate(X509Credential requestCredential,
MessageContext messageContext)
Evaluate the request credential.
|
void |
MandatoryIssuerRule.evaluate(MessageContext messageContext)
Evaluates the message context against the rule.
|
void |
MandatoryAuthenticatedMessageRule.evaluate(MessageContext messageContext)
Evaluates the message context against the rule.
|
void |
HTTPRule.evaluate(MessageContext messageContext)
Evaluates the message context against the rule.
|
void |
ClientCertAuthRule.evaluate(MessageContext messageContext)
Evaluates the message context against the rule.
|
void |
BasicSecurityPolicy.evaluate(MessageContext messageContext)
Evaluates this policy.
|
protected boolean |
BaseTrustEngineRule.evaluate(TokenType token,
String entityID,
MessageContext messageContext)
Evaluate the token using the configured trust engine against criteria built using
the specified candidate issuer entity ID and message context information.
|
protected String |
ClientCertAuthRule.evaluateCertificateNameDerivedIssuers(X509Credential requestCredential,
MessageContext messageContext)
Deprecated.
|
protected String |
ClientCertAuthRule.evaluateCertificateNameDerivedPresenters(X509Credential requestCredential,
MessageContext messageContext)
Evaluate candidate presenter entity ID's which may be derived from the request credential's entity certificate
according to the options supplied via
CertificateNameOptions. |
protected String |
ClientCertAuthRule.evaluateDerivedIssuers(X509Credential requestCredential,
MessageContext messageContext)
Deprecated.
|
protected String |
ClientCertAuthRule.evaluateDerivedPresenters(X509Credential requestCredential,
MessageContext messageContext)
Evaluate any candidate presenter entity ID's which may be derived from the credential or other message context
information.
|
protected String |
ClientCertAuthRule.evaluateSubjectAltNames(X509Credential requestCredential,
MessageContext messageContext)
Evaluate the presenter entity ID as derived from the cert subject alternative names specified by types enumerated
in
CertificateNameOptions.getSubjectAltNames(). |
protected String |
ClientCertAuthRule.evaluateSubjectCommonName(X509Credential requestCredential,
MessageContext messageContext)
Evaluate the presenter entity ID as derived from the cert subject common name (CN).
|
protected String |
ClientCertAuthRule.evaluateSubjectDN(X509Credential requestCredential,
MessageContext messageContext)
Evaluate the presenter entity ID as derived from the cert subject DN.
|
protected String |
ClientCertAuthRule.getCertificatePresenterEntityID(MessageContext messageContext)
Get the entity ID of the presenter of the client TLS certificate, as will be used for trust evaluation purposes.
|
Iterable<SecurityPolicy> |
StaticSecurityPolicyResolver.resolve(MessageContext criteria)
Process the specified criteria and return the resulting instances the the product type
which satisfy the criteria.
|
SecurityPolicy |
StaticSecurityPolicyResolver.resolveSingle(MessageContext criteria)
Process the specified criteria and return a single instance of the product type
which satisfies the criteria.
|
protected void |
ClientCertAuthRule.setAuthenticatedCertificatePresenterEntityID(MessageContext messageContext,
String entityID)
Store the sucessfully authenticated derived entity ID of the certificate presenter in the message context.
|
| Modifier and Type | Interface and Description |
|---|---|
interface |
SOAPMessageContext
Message context for SOAP messages.
|
| Modifier and Type | Class and Description |
|---|---|
class |
BasicSOAPMessageContext
Basic
SOAPMessageContext implementation. |
| Modifier and Type | Method and Description |
|---|---|
void |
SOAP11Decoder.decode(MessageContext messageContext)
Decodes a message in a binding specific manner.
|
protected void |
SOAP11Decoder.doDecode(MessageContext messageContext)
Decodes a message, updating the message context.
|
| Modifier and Type | Method and Description |
|---|---|
protected void |
HTTPSOAP11Decoder.doDecode(MessageContext messageContext)
Decodes a message, updating the message context.
|
| Modifier and Type | Method and Description |
|---|---|
protected Envelope |
SOAP11Encoder.buildSOAPEnvelope(MessageContext messageContext)
Builds the SOAP envelope and body skeleton to be encoded.
|
protected void |
SOAP11Encoder.encodeToTransport(MessageContext messageContext)
Encode the message context to the transport.
|
protected void |
SOAP11Encoder.prepareMessageContext(MessageContext messageContext)
Perform final binding-specific processing of message context and prepare it for encoding
to the transport.
|
protected void |
SOAP11Encoder.preprocessTransport(MessageContext messageContext)
Perform any processing or fixup on the message context's outbound transport, prior to encoding the actual
message.
|
boolean |
SOAP11Encoder.providesMessageConfidentiality(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message confidentiality.
|
boolean |
SOAP11Encoder.providesMessageIntegrity(MessageContext messageContext)
Indicates whether this encoder, given the current message context, provides end-to-end message integrity.
|
| Modifier and Type | Method and Description |
|---|---|
protected void |
HTTPSOAP11Encoder.doEncode(MessageContext messageContext)
Encodes the outbound message onto the outbound transport.
|
protected String |
HTTPSOAP11Encoder.getSOAPAction(MessageContext messageContext)
Determine the value of the SOAPAction HTTP header to send.
|
protected void |
HTTPSOAP11Encoder.preprocessTransport(MessageContext messageContext)
This implementation performs the following actions on the context's
HTTPOutTransport:
Adds the HTTP header: "Cache-control: no-cache, no-store"
Adds the HTTP header: "Pragma: no-cache"
Sets the character encoding to: "UTF-8"
Sets the content type to: "text/xml"
Sets the SOAPAction HTTP header the value returned by HTTPSOAP11Encoder.getSOAPAction(MessageContext), if
that returns non-null.
|
| Modifier and Type | Method and Description |
|---|---|
static void |
SOAPHelper.addHeaderBlock(MessageContext messageContext,
XMLObject headerBlock)
Add a header block to the SOAP envelope contained within the specified message context's
getOutboundMessage(). |
static List<XMLObject> |
SOAPHelper.getInboundHeaderBlock(MessageContext msgContext,
QName headerName,
Set<String> targetNodes,
boolean isFinalDestination)
Get a header block from the SOAP envelope contained within the specified message context's
getInboundMessage(). |
static List<XMLObject> |
SOAPHelper.getOutboundHeaderBlock(MessageContext msgContext,
QName headerName,
Set<String> targetNodes,
boolean isFinalDestination)
Get a header block from the SOAP envelope contained within the specified message context's
getOutboundMessage(). |
static boolean |
SOAPHelper.isInboundSOAPMessage(MessageContext messageContext)
Determine whether the inbound message represented by the message context
contains a SOAP Envelope.
|
Copyright © 2018 JBoss by Red Hat. All rights reserved.