public class SAMLRoleLoginModule extends AbstractServerLoginModule
A login module that extracts the roles from the SAML assertion that has been set in the Subject. This module is always a
follow up to other modules such as JBWSTokenIssuingLoginModule
This login module checks the Subject
for a SamlCredential
in the public credentials section. From the
credential, we extract the assertion. The assertion should contain the roles.
callbackHandler, jbossModuleName, log, loginOk, options, principalClassModuleName, principalClassName, sharedState, subject, unauthenticatedIdentity, useFirstPass
Constructor and Description |
---|
SAMLRoleLoginModule() |
Modifier and Type | Method and Description |
---|---|
boolean |
commit()
Method to commit the authentication process (phase 2).
|
protected Principal |
getIdentity()
We first check the shared state for the principal.
|
protected Group[] |
getRoleSets()
Overriden by subclasses to return the Groups that correspond to the
to the role sets assigned to the user.
|
abort, addValidOptions, checkOptions, createGroup, createIdentity, getCallerPrincipalGroup, getUnauthenticatedIdentity, getUseFirstPass, initialize, login, logout
public boolean commit() throws LoginException
AbstractServerLoginModule
commit
in interface LoginModule
commit
in class AbstractServerLoginModule
LoginException
Subject;
,
Group;
protected Principal getIdentity()
Group
PrincipalgetIdentity
in class AbstractServerLoginModule
protected Group[] getRoleSets() throws LoginException
AbstractServerLoginModule
getRoleSets
in class AbstractServerLoginModule
LoginException
Copyright © 2016 JBoss by Red Hat. All rights reserved.