org.picketlink.identity.federation.bindings.jboss.auth
public abstract class SAMLTokenCertValidatingCommonLoginModule extends SAMLTokenFromHttpRequestAbstractLoginModule
Modifier and Type | Field and Description |
---|---|
protected org.picketlink.identity.federation.saml.v2.assertion.AssertionType |
assertion |
protected org.picketlink.identity.federation.core.wstrust.SamlCredential |
credential |
protected boolean |
enableCacheInvalidation |
static String |
ENDPOINT_ADDRESS
Key to specify the end point address
|
protected boolean |
localTestingOnly |
protected String |
localValidationSecurityDomain |
protected Map<String,Object> |
options
Options that are computed by this login module.
|
static String |
PASSWORD_KEY
Key to specify the password
|
static String |
PORT_NAME
Key to specify the port name
|
protected Principal |
principal |
protected Map<String,Object> |
rawOptions
Original Options that are sent by the JDK JAAS Framework
|
protected String |
roleKey |
protected String |
securityDomain |
static String |
SERVICE_NAME
Key to specify the service name
|
static String |
STS_CONFIG_FILE
This is an option that should identify the configuration file for WSTrustClient.
|
static String |
USERNAME_KEY
Key to specify the username
|
BASE64_TOKEN_ENCODING, GZIP_TOKEN_ENCODING, logger, NONE_TOKEN_ENCODING, REG_EX_GROUP_KEY, REG_EX_PATTERN_KEY, SAML_TOKEN_HTTP_HEADER_KEY, TOKEN_ENCODING_TYPE_KEY, tokenEncoding, WEB_REQUEST_KEY
Constructor and Description |
---|
SAMLTokenCertValidatingCommonLoginModule() |
Modifier and Type | Method and Description |
---|---|
boolean |
abort()
Called if the overall authentication failed (phase 2).
|
boolean |
commit() |
protected org.picketlink.identity.federation.core.factories.JBossAuthCacheInvalidationFactory.TimeCacheExpiry |
getCacheExpiry() |
protected Principal |
getIdentity() |
protected abstract KeyStore |
getKeyStore()
Binding dependent version of getting configured keyStore.
|
protected Group[] |
getRoleSets() |
void |
initialize(Subject subject,
CallbackHandler callbackHandler,
Map<String,?> sharedState,
Map<String,?> options) |
boolean |
login() |
boolean |
logout() |
protected void |
validateCertPath(X509Certificate certificate)
Validate certificate path against keystore specified as SecurityDomain in module-option.
|
getCredentialFromHttpRequest, getSamlTokenHttpHeader, getSamlTokenHttpHeaderRegEx, getSamlTokenHttpHeaderRegExGroup, getTokenEncoding
protected Principal principal
protected org.picketlink.identity.federation.core.wstrust.SamlCredential credential
protected org.picketlink.identity.federation.saml.v2.assertion.AssertionType assertion
protected boolean enableCacheInvalidation
protected String securityDomain
protected String localValidationSecurityDomain
protected String roleKey
protected Map<String,Object> options
protected Map<String,Object> rawOptions
public static final String STS_CONFIG_FILE
public static final String ENDPOINT_ADDRESS
public static final String PORT_NAME
public static final String SERVICE_NAME
public static final String USERNAME_KEY
public static final String PASSWORD_KEY
protected boolean localTestingOnly
public SAMLTokenCertValidatingCommonLoginModule()
public void initialize(Subject subject, CallbackHandler callbackHandler, Map<String,?> sharedState, Map<String,?> options)
initialize
in interface LoginModule
initialize
in class SAMLTokenFromHttpRequestAbstractLoginModule
public boolean login() throws LoginException
login
in interface LoginModule
login
in class org.jboss.security.auth.spi.AbstractServerLoginModule
LoginException
public boolean commit() throws LoginException
commit
in interface LoginModule
commit
in class org.jboss.security.auth.spi.AbstractServerLoginModule
LoginException
public boolean abort() throws LoginException
abort
in interface LoginModule
abort
in class org.jboss.security.auth.spi.AbstractServerLoginModule
LoginException
public boolean logout() throws LoginException
logout
in interface LoginModule
logout
in class org.jboss.security.auth.spi.AbstractServerLoginModule
LoginException
protected Principal getIdentity()
getIdentity
in class org.jboss.security.auth.spi.AbstractServerLoginModule
protected Group[] getRoleSets() throws LoginException
getRoleSets
in class org.jboss.security.auth.spi.AbstractServerLoginModule
LoginException
protected org.picketlink.identity.federation.core.factories.JBossAuthCacheInvalidationFactory.TimeCacheExpiry getCacheExpiry() throws Exception
Exception
protected void validateCertPath(X509Certificate certificate) throws LoginException
cert
- LoginException
Copyright © 2015 JBoss by Red Hat. All Rights Reserved.