public class SAML11AssertionTokenProvider extends AbstractSecurityTokenProvider implements SecurityTokenProvider
A SecurityTokenProvider
implementation for the SAML11 Specification.
This token provider does not handle the SAML20 Token Profile of the Oasis WS-Trust Specification.
SAML20TokenProvider}
Configurable Properties are:
ASSERTION_VALIDITY: specify the validity of the assertion in miliseconds. (Example: 5000 = 5secs)
CLOCK_SKEW: specify the clock skew of the conditions for assertion in miliseconds. (Example: 2000 = 2secs)
SecurityTokenProvider.FAMILY_TYPE
Modifier and Type | Field and Description |
---|---|
static String |
NS |
ATTRIBUTE_PROVIDER, logger, properties, REVOCATION_REGISTRY, REVOCATION_REGISTRY_FILE, REVOCATION_REGISTRY_JDBC_CONFIG, REVOCATION_REGISTRY_JPA_CONFIG, revocationRegistry, TOKEN_REGISTRY, TOKEN_REGISTRY_FILE, TOKEN_REGISTRY_JDBC, TOKEN_REGISTRY_JPA, tokenRegistry, USE_ABSOLUTE_KEYIDENTIFIER
Constructor and Description |
---|
SAML11AssertionTokenProvider() |
Modifier and Type | Method and Description |
---|---|
void |
cancelToken(ProtocolContext context)
Cancels the token contained in the specified request context.
|
String |
family()
The family where this security token provider belongs
|
QName |
getSupportedQName()
Provide an optional
QName for configuration |
void |
initialize(Map<String,String> props)
Initializes the
SecurityTokenProvider using the specified properties map. |
void |
issueToken(ProtocolContext context)
Generates a security token using the information contained in the specified request context and stores the
newly-created
token in the context itself.
|
void |
renewToken(ProtocolContext context)
Renews the security token contained in the specified request context.
|
boolean |
supports(String namespace)
Specify whether this token provider supports a particular namespace
|
String |
tokenType()
Token Type
|
void |
validateToken(ProtocolContext context)
Evaluates the validity of the token contained in the specified request context and sets the result in the context
itself.
|
adjustLifetimeForClockSkew, getClockSkewInMillis
public static final String NS
public void initialize(Map<String,String> props)
SecurityTokenProvider
Initializes the SecurityTokenProvider
using the specified properties map.
initialize
in interface SecurityTokenProvider
initialize
in class AbstractSecurityTokenProvider
props
- a Map<String, String>
that contains the properties that have been configured for this
SecurityTokenProvider
.public boolean supports(String namespace)
SecurityTokenProvider
supports
in interface SecurityTokenProvider
namespace
- a string value representing a namespaceSecurityTokenProvider.supports(java.lang.String)
public void issueToken(ProtocolContext context) throws ProcessingException
SecurityTokenProvider
Generates a security token using the information contained in the specified request context and stores the newly-created token in the context itself.
issueToken
in interface SecurityTokenProvider
context
- the ProtocolContext
to be used when generating the token.ProcessingException
SecurityTokenProvider.issueToken(org.picketlink.identity.federation.core.interfaces.ProtocolContext)
public void renewToken(ProtocolContext context) throws ProcessingException
SecurityTokenProvider
Renews the security token contained in the specified request context. This method is used when a previously generated token has expired, generating a new version of the same token with different expiration semantics.
renewToken
in interface SecurityTokenProvider
context
- the ProtocolContext
that contains the token to be renewed.ProcessingException
SecurityTokenProvider.renewToken(org.picketlink.identity.federation.core.interfaces.ProtocolContext)
public void cancelToken(ProtocolContext context) throws ProcessingException
SecurityTokenProvider
Cancels the token contained in the specified request context. A security token is usually canceled when one wants to make sure that the token will not be used anymore. A security token can't be renewed once it has been canceled.
cancelToken
in interface SecurityTokenProvider
context
- the ProtocolContext
that contains the token to be canceled.ProcessingException
SecurityTokenProvider.cancelToken(org.picketlink.identity.federation.core.interfaces.ProtocolContext)
public void validateToken(ProtocolContext context) throws ProcessingException
SecurityTokenProvider
Evaluates the validity of the token contained in the specified request context and sets the result in the context itself. The result can be a status, a new token, or both.
validateToken
in interface SecurityTokenProvider
context
- the ProtocolContext
that contains the token to be validated.ProcessingException
SecurityTokenProvider.validateToken(org.picketlink.identity.federation.core.interfaces.ProtocolContext)
public String tokenType()
SecurityTokenProvider
tokenType
in interface SecurityTokenProvider
SecurityTokenProvider.tokenType()
public QName getSupportedQName()
SecurityTokenProvider
QName
for configurationgetSupportedQName
in interface SecurityTokenProvider
SecurityTokenProvider.getSupportedQName()
public String family()
SecurityTokenProvider
family
in interface SecurityTokenProvider
SecurityTokenProvider.family()
Copyright © 2017 JBoss by Red Hat. All rights reserved.