| Package | Description |
|---|---|
| com.sun.identity.wsfederation.client | |
| com.sun.identity.wsfederation.common |
Defines common WS-Federation utilities and constants.
|
| com.sun.identity.wsfederation.meta | |
| com.sun.identity.wsfederation.plugins |
Defines WS-Federation Plugin SPIs
|
| com.sun.identity.wsfederation.profile | |
| com.sun.identity.wsfederation.servlet | |
| org.forgerock.openam.wsfederation.common |
| Modifier and Type | Method and Description |
|---|---|
static String |
WSFederationClient.getUserSAMLAssertion(String tokenID,
String entityID,
String entityRole)
Returns the user SAML Assertion for a given session established by
WS-Federation protocol.
|
static String |
WSFederationClient.getUserSAMLAssertion(String tokenID,
String url,
String entityID,
String entityRole)
Returns the user SAML Assertion for a given session established by
WS-Federation protocol.
|
| Modifier and Type | Method and Description |
|---|---|
static SAML11RequestedSecurityToken |
WSFederationUtils.createSAML11Token(String realm,
String idpEntityId,
String spEntityId,
Object session,
String spTokenIssuerName,
String authMethod,
boolean wantAssertionSigned)
Creates a SAML 1.1 token object based on the provided details.
|
static NameIDInfo |
AccountUtils.getAccountFederation(String userID,
String hostEntityID,
String remoteEntityID)
Returns the account federation information of a user for the given
identity provider and a service provider.
|
static boolean |
AccountUtils.removeAccountFederation(NameIDInfo info,
String userID)
Removes the account federation of a user.
|
static void |
AccountUtils.setAccountFederation(NameIDInfo info,
String userID)
Sets the account federation information in the datastore for a user.
|
static void |
WSFederationUtils.validateWReplyURL(String orgName,
String hostEntityId,
String wreply,
String role)
Validates the Wreply URL against a list of wreply State
URLs created on the hosted service provider.
|
| Modifier and Type | Class and Description |
|---|---|
class |
WSFederationMetaException
This class is an extension point for all WS-Federation metadata related
exceptions.
|
| Modifier and Type | Method and Description |
|---|---|
Map |
SPAttributeMapper.getAttributes(List attributes,
String userID,
String hostEntityID,
String remoteEntityID,
String realm)
Returns the map of user attribute values for the corresponding
SAML
Attributes. |
Map |
DefaultSPAttributeMapper.getAttributes(List attributes,
String userID,
String hostEntityID,
String remoteEntityID,
String realm)
Returns attribute map for the given list of
Attribute
objects. |
List |
IDPAttributeMapper.getAttributes(Object session,
String hostEntityID,
String remoteEntityID,
String realm)
Returns list of SAML
Attribute objects for an
authenticated user local attributes. |
List |
DefaultIDPAttributeMapper.getAttributes(Object session,
String hostEntityID,
String remoteEntityID,
String realm)
Returns list of SAML
Attribute objects for the
IDP framework to insert into the generated Assertion. |
Map |
DefaultAttributeMapper.getConfigAttributeMap(String realm,
String hostEntityID)
Returns the attribute map by parsing the configured map in hosted
provider configuration
|
String |
SPAccountMapper.getIdentity(RequestSecurityTokenResponse rstr,
String hostEntityID,
String targetURL)
Returns user's distinguished name or the universal ID for the
RSTR.
|
String |
DefaultLibrarySPAccountMapper.getIdentity(RequestSecurityTokenResponse rstr,
String hostEntityID,
String realm)
Returns the user's disntinguished name or the universal ID for the
corresponding
SAML Assertion. |
IDPAuthenticationTypeInfo |
IDPAuthenticationMethodMapper.getIDPAuthnContextInfo(String authenticationType,
String idpEntityID,
String realm)
Returns an
IDPAuthenticationTypeInfo object. |
IDPAuthenticationTypeInfo |
DefaultIDPAuthenticationMethodMapper.getIDPAuthnContextInfo(String authenticationType,
String idpEntityID,
String realm)
Returns an
IDPAuthenticationTypeInfo object. |
NameIdentifier |
DefaultIDPAccountMapper.getNameID(Object session,
String realm,
String hostEntityID,
String remoteEntityID)
Returns the user's
NameIDinformation that contains
account federation with the corresponding remote and local entities. |
NameIdentifier |
IDPAccountMapper.getNameID(Object session,
String realm,
String hostEntityID,
String remoteEntityID)
Returns the user's
NameIDinformation that contains
account federation with the corresponding remote and local entities. |
protected Attribute |
DefaultIDPAttributeMapper.getSAMLAttribute(String namespace,
String name,
Set<String> values)
Returns the SAML
Attribute object. |
protected Map |
DefaultADFSPartnerAccountMapper.getSearchParameters(NameIdentifier nameID,
String realm,
String hostEntityID,
String remoteEntityID)
This method simply extracts the NameIDValue and constructs a search map
according to the configuration.
|
protected Map |
DefaultAccountMapper.getSearchParameters(NameIdentifier nameID,
String realm,
String hostEntityID,
String remoteEntityID)
Returns the
NameIDInfoKey key value pair that can
be used for searching the user. |
| Modifier and Type | Method and Description |
|---|---|
static RequestedSecurityToken |
RequestedSecurityTokenFactory.createToken(Node element)
Creates a RequestedSecurityToken based on the supplied DOM Node.
|
static RequestSecurityTokenResponse |
RequestSecurityTokenResponse.parseXML(InputStream is)
Returns RequestSecurityTokenResponse object based on the data in the
input stream.
|
static RequestSecurityTokenResponse |
RequestSecurityTokenResponse.parseXML(String xml)
Returns RequestSecurityTokenResponse object based on the XML document
received from server.
|
Map<String,Object> |
RequestedSecurityToken.verifyToken(String realm,
String hostEntityId,
int timeskew)
Verifies the token's validity, checking the signature, validity period
etc.
|
Map<String,Object> |
SAML11RequestedSecurityToken.verifyToken(String realm,
String hostEntityId,
int timeskew)
Verifies the token's validity, checking the signature, validity period
etc.
|
| Constructor and Description |
|---|
RequestSecurityTokenResponse(Element root)
Creates a new instance of RequestSecurityTokenResponse (RSTR) from a DOM
Element
|
SAML11RequestedSecurityToken(Node token)
Creates a SAML11RequestedSecurityToken given a DOM Node
|
SAML11RequestedSecurityToken(String realm,
String spTokenIssuerName,
String idpEntityId,
int notBeforeSkew,
int effectiveTime,
String certAlias,
String authMethod,
Date authInstant,
NameIdentifier ni,
List attributes)
Creates a SAML11RequestedSecurityToken.
|
| Modifier and Type | Method and Description |
|---|---|
void |
IPSigninRequest.process()
Processes the sign-in request, returning a response via the
HttpServletResponse passed to the constructor.
|
void |
MexRequest.process()
Currently two kind of requests are supported:
GET requests: The plain old WSDL is returned to the remote clients.
|
void |
RPSigninRequest.process()
Processes the sign-in request, redirecting the browser to the identity
provider via the HttpServletResponse passed to the constructor.
|
void |
IPRPSignoutRequest.process()
Processes the sign-out request, returning a response via the
HttpServletResponse passed to the constructor.
|
void |
ActiveRequest.process()
Processes the incoming SOAP request
parsing
and validating the request, and then authenticating the end-user using a customizable WsFedAuthenticator
implementation. |
void |
RPSigninResponse.process()
Processes the sign-in response, redirecting the browser wreply URL
supplied in the sign-in request via the HttpServletResponse passed to
the constructor.
|
void |
MetadataRequest.process() |
abstract void |
WSFederationAction.process()
Processes the sign-out request, returning a response via the
HttpServletResponse passed to the constructor.
|
| Modifier and Type | Class and Description |
|---|---|
class |
ActiveRequestorException
A
WSFederationException type that specifically handles error situations corresponding to WS-Federation Active
Requestor Profile. |
Copyright © 2010–2025 Open Identity Platform Community. All rights reserved.