Package org.apache.syncope.core.logic

Class SAML2SP4UILogic

java.lang.Object

org.apache.syncope.core.logic.AbstractLogic<EntityTO>

org.apache.syncope.core.logic.AbstractTransactionalLogic<EntityTO>

org.apache.syncope.core.logic.SAML2SP4UILogic

public class SAML2SP4UILogic
extends AbstractTransactionalLogic<EntityTO>

Field Summary

Fields

Modifier and Type	Field	Description
protected final AccessTokenDataBinder	accessTokenDataBinder
protected final AuthDataAccessor	authDataAccessor
protected final EncryptorManager	encryptorManager
protected final SAML2SP4UIIdPDAO	idpDAO
protected static final String	JWT_CLAIM_IDP_ENTITYID
protected static final String	JWT_CLAIM_NAMEID_FORMAT
protected static final String	JWT_CLAIM_NAMEID_VALUE
protected static final String	JWT_CLAIM_SESSIONINDEX
protected final Map<String,String>	metadataCache
protected final Map<String,RequestedAuthnContextProvider>	perContextRACP
protected final SAML2SP4UIProperties	props
protected final ResourcePatternResolver	resourceResolver
protected final SAML2ClientCache	saml2ClientCacheLogin
protected final SAML2ClientCache	saml2ClientCacheLogout
protected final SAML2SP4UIUserManager	userManager

Fields inherited from class org.apache.syncope.core.logic.AbstractLogic

LOG

Constructor Summary

Constructors

Constructor	Description
SAML2SP4UILogic(SAML2SP4UIProperties props, ResourcePatternResolver resourceResolver, AccessTokenDataBinder accessTokenDataBinder, SAML2ClientCache saml2ClientCacheLogin, SAML2ClientCache saml2ClientCacheLogout, SAML2SP4UIUserManager userManager, SAML2SP4UIIdPDAO idpDAO, AuthDataAccessor authDataAccessor, EncryptorManager encryptorManager)

Method Summary

Modifier and Type	Method	Description
protected static SAML2Request	buildRequest(String idpEntityID, org.pac4j.core.exception.http.RedirectionAction action)
SAML2Request	createLoginRequest(String spEntityID, String urlContext, String idpEntityID, boolean reauth)
SAML2Request	createLogoutRequest(String accessToken, String spEntityID, String urlContext)
protected static String	getCallbackUrl(String spEntityID, String urlContext)
void	getMetadata(String spEntityID, String urlContext, OutputStream os)
protected Optional<RequestedAuthnContextProvider>	getRequestedAuthnContextProvider(SAML2SP4UIIdP idp)
protected org.pac4j.saml.client.SAML2Client	getSAML2Client(SAML2ClientCache saml2ClientCache, String idpEntityID, String spEntityID, String urlContext)
protected org.pac4j.saml.client.SAML2Client	getSAML2Client(SAML2ClientCache saml2ClientCache, SAML2SP4UIIdP idp, String spEntityID, String urlContext)
protected org.pac4j.saml.config.SAML2Configuration	newSAML2Configuration()
protected EntityTO	resolveReference(Method method, Object... args)
SAML2LoginResponse	validateLoginResponse(SAML2Response saml2Response)
void	validateLogoutResponse(SAML2Response saml2Response)
protected static String	validateUrl(String url)

Methods inherited from class org.apache.syncope.core.logic.AbstractLogic

resolveBeanReference

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

JWT_CLAIM_IDP_ENTITYID

protected static final String JWT_CLAIM_IDP_ENTITYID

See Also:

• Constant Field Values

JWT_CLAIM_NAMEID_FORMAT

protected static final String JWT_CLAIM_NAMEID_FORMAT

See Also:

• Constant Field Values

JWT_CLAIM_NAMEID_VALUE

protected static final String JWT_CLAIM_NAMEID_VALUE

See Also:

• Constant Field Values

JWT_CLAIM_SESSIONINDEX

protected static final String JWT_CLAIM_SESSIONINDEX

See Also:

• Constant Field Values

accessTokenDataBinder

protected final AccessTokenDataBinder accessTokenDataBinder

saml2ClientCacheLogin

protected final SAML2ClientCache saml2ClientCacheLogin

saml2ClientCacheLogout

protected final SAML2ClientCache saml2ClientCacheLogout

userManager

protected final SAML2SP4UIUserManager userManager

idpDAO

protected final SAML2SP4UIIdPDAO idpDAO

authDataAccessor

protected final AuthDataAccessor authDataAccessor

encryptorManager

protected final EncryptorManager encryptorManager

metadataCache

protected final Map<String,String> metadataCache

perContextRACP

protected final Map<String,RequestedAuthnContextProvider> perContextRACP

props

protected final SAML2SP4UIProperties props

resourceResolver

protected final ResourcePatternResolver resourceResolver

Constructor Details

SAML2SP4UILogic

public SAML2SP4UILogic(SAML2SP4UIProperties props,
 ResourcePatternResolver resourceResolver,
 AccessTokenDataBinder accessTokenDataBinder,
 SAML2ClientCache saml2ClientCacheLogin,
 SAML2ClientCache saml2ClientCacheLogout,
 SAML2SP4UIUserManager userManager,
 SAML2SP4UIIdPDAO idpDAO,
 AuthDataAccessor authDataAccessor,
 EncryptorManager encryptorManager)

Method Details

validateUrl

protected static String validateUrl(String url)

getCallbackUrl

protected static String getCallbackUrl(String spEntityID,
 String urlContext)

getMetadata

@PreAuthorize("isAuthenticated()")
public void getMetadata(String spEntityID,
 String urlContext,
 OutputStream os)

getSAML2Client

protected org.pac4j.saml.client.SAML2Client getSAML2Client(SAML2ClientCache saml2ClientCache,
 SAML2SP4UIIdP idp,
 String spEntityID,
 String urlContext)

getSAML2Client

protected org.pac4j.saml.client.SAML2Client getSAML2Client(SAML2ClientCache saml2ClientCache,
 String idpEntityID,
 String spEntityID,
 String urlContext)

buildRequest

protected static SAML2Request buildRequest(String idpEntityID,
 org.pac4j.core.exception.http.RedirectionAction action)

getRequestedAuthnContextProvider

protected Optional<RequestedAuthnContextProvider> getRequestedAuthnContextProvider(SAML2SP4UIIdP idp)

createLoginRequest

@PreAuthorize("hasRole(\'ANONYMOUS\')")
public SAML2Request createLoginRequest(String spEntityID,
 String urlContext,
 String idpEntityID,
 boolean reauth)

validateLoginResponse

@PreAuthorize("hasRole(\'ANONYMOUS\')")
public SAML2LoginResponse validateLoginResponse(SAML2Response saml2Response)

createLogoutRequest

@PreAuthorize("isAuthenticated() and not(hasRole(\'ANONYMOUS\'))")
public SAML2Request createLogoutRequest(String accessToken,
 String spEntityID,
 String urlContext)

validateLogoutResponse

@PreAuthorize("hasRole(\'ANONYMOUS\')")
public void validateLogoutResponse(SAML2Response saml2Response)

resolveReference

protected EntityTO resolveReference(Method method,
 Object... args)
                             throws UnresolvedReferenceException

Specified by:

resolveReference in class AbstractLogic<EntityTO>

Throws:

UnresolvedReferenceException

newSAML2Configuration

protected org.pac4j.saml.config.SAML2Configuration newSAML2Configuration()