Package com.sun.identity.federation.services.fednsso

Class FSAssertionArtifactHandler

    • Field Detail

      • request

        protected jakarta.servlet.http.HttpServletRequest request

      • response

        protected jakarta.servlet.http.HttpServletResponse response

      • idpDescriptor

        protected com.sun.identity.liberty.ws.meta.jaxb.IDPDescriptorType idpDescriptor

      • idpEntityId

        protected String idpEntityId

      • relayState

        protected String relayState

      • idTimeMap

        protected static Map idTimeMap

      • doFederate

        protected boolean doFederate

      • nameIDPolicy

        protected String nameIDPolicy

      • autoFedSearchMap

        protected Map autoFedSearchMap

      • securityAssertions

        protected List securityAssertions

      • ssoToken

        protected Object ssoToken

      • samlResponseElt

        protected Element samlResponseElt

      • attrStatements

        protected List attrStatements

      • hostDesc

        protected com.sun.identity.liberty.ws.meta.jaxb.SPDescriptorType hostDesc

      • hostConfig

        protected com.sun.identity.federation.jaxb.entityconfig.BaseConfigType hostConfig

      • realm

        protected String realm

      • hostEntityId

        protected String hostEntityId

      • hostMetaAlias

        protected String hostMetaAlias

      • ANONYMOUS_PRINCIPAL

        protected static String ANONYMOUS_PRINCIPAL

    • Constructor Detail

      • FSAssertionArtifactHandler

        protected FSAssertionArtifactHandler()
        Default constructor.

      • FSAssertionArtifactHandler

        public FSAssertionArtifactHandler​(jakarta.servlet.http.HttpServletRequest request,
                                  jakarta.servlet.http.HttpServletResponse response,
                                  com.sun.identity.liberty.ws.meta.jaxb.IDPDescriptorType idpDescriptor,
                                  String idpEntityId,
                                  boolean doFederate,
                                  String nameIDPolicy,
                                  String relayState)
        Constructs a FSAssertionArtifactHandler object.
        Parameters:
        request - HttpServletRequest object.
        response - HttpServletResponse object
        idpDescriptor - IDP provider descriptor
        idpEntityId - entity ID of the IDP
        doFederate - a flag indicating if it is a federation request
        nameIDPolicy - nameIDPolicy used
        relayState - RelayState url

      • FSAssertionArtifactHandler

        public FSAssertionArtifactHandler​(jakarta.servlet.http.HttpServletRequest request,
                                  jakarta.servlet.http.HttpServletResponse response,
                                  com.sun.identity.liberty.ws.meta.jaxb.IDPDescriptorType idpDescriptor,
                                  String idpEntityId,
                                  FSAuthnRequest authnRequest,
                                  boolean doFederate,
                                  String relayState)
        Constructs a FSAssertionArtifactHandler object.
        Parameters:
        request - HttpServletRequest object.
        response - HttpServletResponse object
        idpDescriptor - IDP provider descriptor
        idpEntityId - entity ID of the IDP
        authnRequest - FSAuthnRequest from soap
        doFederate - a flag indicating if it is a federation request
        relayState - RelayState url

    • Method Detail

      • setHostEntityId

        public void setHostEntityId​(String entityId)
        Sets hosted SP entity ID.
        Parameters:
        entityId - hosted SP's entity ID to be set

      • setHostDescriptor

        public void setHostDescriptor​(com.sun.identity.liberty.ws.meta.jaxb.SPDescriptorType desc)
        Sets hosted SP meta descriptor.
        Parameters:
        desc - SP's meta descriptor to be set.
        See Also:
        getHostEntityId()

      • setHostDescriptorConfig

        public void setHostDescriptorConfig​(com.sun.identity.federation.jaxb.entityconfig.BaseConfigType config)
        Sets hosted SP extended meta config.
        Parameters:
        config - SP's extended meta to be set.

      • setMetaAlias

        public void setMetaAlias​(String metaAlias)
        Sets hosted SP's meta alias.
        Parameters:
        metaAlias - SP's meta alias to be set

      • getRealm

        public String getRealm()
        Gets the realm under which the entity resides.
        Returns:
        the realm under which the entity resides.
        See Also:
        setRealm(String)

      • setRealm

        public void setRealm​(String realm)
        Sets the realm under which the entity resides.
        Parameters:
        realm - The realm under which the entity resides.
        See Also:
        getRealm()

      • setAuthnRequest

        public void setAuthnRequest​(FSAuthnRequest authnRequest)
        Sets FSAuthnRequest object.
        Parameters:
        authnRequest - FSAuthnRequest object to be set.
        See Also:
        getAuthnRequest()

      • processAuthnResponse

        public void processAuthnResponse​(FSAuthnResponse authnResponse)
        Processes FSAuthnResponse.
        Parameters:
        authnResponse - FSAuthnResponse objec to be processed

      • verifyResponseStatus

        protected boolean verifyResponseStatus​(Response resp)

      • validateAssertions

        protected Subject validateAssertions​(List assertions)

      • verifyAssertionSignature

        protected boolean verifyAssertionSignature​(FSAssertion assertion)

      • forThisServer

        protected boolean forThisServer​(Conditions conds)

      • processSAMLRequest

        protected void processSAMLRequest()

      • doAccountFederation

        protected int doAccountFederation​(NameIdentifier ni)

      • generateAnonymousToken

        protected Object generateAnonymousToken​(jakarta.servlet.http.HttpServletResponse response)
                                 throws SessionException
        Generates an anonymous token for onetime case.
        Throws:
        SessionException

      • getProvider

        protected String getProvider​(String requestID)

      • setProviderDescriptor

        public void setProviderDescriptor​(com.sun.identity.liberty.ws.meta.jaxb.IDPDescriptorType idpDescriptor)
        Sets IDP provider descriptor.
        Parameters:
        idpDescriptor - identity provider descriptor.

      • setProviderEntityId

        public void setProviderEntityId​(String idpEntityId)
        Sets IDP provider entity ID.
        Parameters:
        idpEntityId - identity provider entity id.

      • getAuthInstant

        public String getAuthInstant()
        Gets AuthInstant.
        Returns:
        AuthInstant in UTC date format.

      • isIDPProxyEnabled

        protected boolean isIDPProxyEnabled​(String requestID)
        Checks if the proxying is enabled. It will be checking if the proxy service provider descriptor is set in the session manager for the specific request ID.
        Parameters:
        requestID - authentication request id which is created by the proxying IDP to the authenticating IDP.
        Returns:
        true if the proxying is enabled.

      • sendProxyResponse

        protected void sendProxyResponse​(String requestID)
        Sends the proxy authentication response to the proxying service provider which has originally requested for the authentication.
        Parameters:
        requestID - authnRequest id that is sent to the authenticating Identity Provider.