public class STSIssuingLoginModule extends AbstractSTSLoginModule
<application-policy name="saml-issue-token">
<authentication>
<login-module code="org.picketlink.identity.federation.core.wstrust.auth.STSIssuingLoginModule" flag="required">
<module-option name="configFile">/sts-client.properties</module-option>
<module-option name="endpointURI"></module-option>
<module-option name="tokenType"></module-option>
</login-module>
</authentication>
</application-policy>
This login module expects to be created with a callback handler that can handle NameCallback
and a
PasswordCallback
, which should be match the username and password for whom a security token will be issued.
Modifier and Type | Field and Description |
---|---|
static String |
ENDPOINT_OPTION |
static String |
TOKEN_TYPE_OPTION |
callbackHandler, enableCacheInvalidation, ENDPOINT_ADDRESS, INITIAL_CLIENTS_IN_POOL, initialClientsInPool, injectCallerPrincipalGroup, IS_BATCH, isBatch, logger, options, OPTIONS_CREDENTIALS, OPTIONS_PW_STACKING, PASSWORD_KEY, passwordStacking, PORT_NAME, ROLE_KEY, roleKey, samlToken, securityDomain, SERVICE_NAME, SHARED_TOKEN, sharedState, STS_CONFIG_FILE, subject, success, useFirstPass, useOptionsCredentials, USERNAME_KEY
Constructor and Description |
---|
STSIssuingLoginModule() |
Modifier and Type | Method and Description |
---|---|
void |
initialize(Subject subject,
CallbackHandler callbackHandler,
Map<String,?> sharedState,
Map<String,?> options)
Initialized this login module.
|
Element |
invokeSTS(STSClient stsClient)
This method will issue a token for the configured user.
|
abort, commit, createBuilder, createWSTrustClient, getCallbackHandler, getConfiguration, getMappingManager, getOptions, getRequiredOption, getSharedPassword, getSharedToken, getSharedUsername, getSubject, isSuccess, isUseFirstPass, isUseOptionsConfig, isUsePasswordStacking, login, logout, populateSubject, removeAllSamlCredentials, setSamlToken, setSharedToken, setSuccess, useCredentialsFromCallback, useCredentialsFromOptions, useCredentialsFromSharedState
public static final String ENDPOINT_OPTION
public static final String TOKEN_TYPE_OPTION
public void initialize(Subject subject, CallbackHandler callbackHandler, Map<String,?> sharedState, Map<String,?> options)
AbstractSTSLoginModule
initialize
in interface LoginModule
initialize
in class AbstractSTSLoginModule
subject
- The subject to authenticate/populate.callbackHandler
- The callbackhandler that will gather information required by this login module.sharedState
- State that is shared with other login modules. Used when modules are chained/stacked.options
- The options that were specified for this login module.public Element invokeSTS(STSClient stsClient) throws WSTrustException
invokeSTS
in class AbstractSTSLoginModule
LoginException
- If an error occurs while trying to perform the authentication.WSTrustException
Copyright © 2021 JBoss by Red Hat. All rights reserved.