net.shibboleth.idp.authn.impl

Class InitializeRequestedPrincipalContext

java.lang.Object

net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

org.opensaml.profile.action.AbstractProfileAction<InboundMessageType,OutboundMessageType>

org.opensaml.profile.action.AbstractConditionalProfileAction<InboundMessageType,OutboundMessageType>

net.shibboleth.idp.profile.AbstractProfileAction<InboundMessageType,OutboundMessageType>

net.shibboleth.idp.authn.AbstractAuthenticationAction

net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext

All Implemented Interfaces:

Component, DestructableComponent, InitializableComponent, ProfileAction, org.springframework.beans.factory.Aware, org.springframework.context.MessageSource, org.springframework.context.MessageSourceAware, org.springframework.webflow.execution.Action

public class InitializeRequestedPrincipalContext
extends AbstractAuthenticationAction

An action that creates an RequestedPrincipalContext and attaches it to the current AuthenticationContext, if the profile request context contains a RelyingPartyContext with an AuthenticationProfileConfiguration containing one or more default authentication methods.

If such a context already exists, it is left in place unless the replaceExistingContext property is set.

Event:

EventIds.PROCEED_EVENT_ID, IdPEventIds.INVALID_RELYING_PARTY_CTX, IdPEventIds.INVALID_PROFILE_CONFIG

Postcondition:

See above.

Field Summary

Fields

Modifier and Type	Field and Description
private AuthenticationProfileConfiguration	authenticationProfileConfig Profile configuration source for requested principals.
private org.slf4j.Logger	log Class logger.
private com.google.common.base.Function<ProfileRequestContext,RelyingPartyContext>	relyingPartyContextLookupStrategy Strategy used to locate the RelyingPartyContext associated with a given ProfileRequestContext.
private boolean	replaceExistingContext Whether to replace an existing subcontext, if any.

Constructor Summary

Constructors

Constructor and Description
InitializeRequestedPrincipalContext() Constructor.

Method Summary

Methods

Modifier and Type	Method and Description
protected void	doExecute(ProfileRequestContext profileRequestContext, AuthenticationContext authenticationContext)
protected boolean	doPreExecute(ProfileRequestContext profileRequestContext, AuthenticationContext authenticationContext)
void	setRelyingPartyContextLookupStrategy(com.google.common.base.Function<ProfileRequestContext,RelyingPartyContext> strategy) Set the strategy used to locate the RelyingPartyContext associated with a given ProfileRequestContext.
void	setReplaceExistingContext(boolean flag) Whether any existing RequestedPrincipalContext should be replaced, defaults to "false".

Methods inherited from class net.shibboleth.idp.authn.AbstractAuthenticationAction

doExecute, doPreExecute, setLookupStrategy

Methods inherited from class net.shibboleth.idp.profile.AbstractProfileAction

doExecute, execute, getMessage, getMessage, getMessage, getProfileContextLookupStrategy, getRequestContext, getResult, setMessageSource, setProfileContextLookupStrategy

Methods inherited from class org.opensaml.profile.action.AbstractConditionalProfileAction

getActivationCondition, setActivationCondition

Methods inherited from class org.opensaml.profile.action.AbstractProfileAction

doPostExecute, doPostExecute, execute, getHttpServletRequest, getHttpServletResponse, getLogPrefix, setHttpServletRequest, setHttpServletResponse

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

destroy, doDestroy, doInitialize, initialize, isDestroyed, isInitialized

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface net.shibboleth.utilities.java.support.component.InitializableComponent

initialize, isInitialized

Field Detail

log

@Nonnull
private final org.slf4j.Logger log

Class logger.

replaceExistingContext

private boolean replaceExistingContext

Whether to replace an existing subcontext, if any.

relyingPartyContextLookupStrategy

@Nonnull
private com.google.common.base.Function<ProfileRequestContext,RelyingPartyContext> relyingPartyContextLookupStrategy

Strategy used to locate the RelyingPartyContext associated with a given ProfileRequestContext.

authenticationProfileConfig

@Nullable
private AuthenticationProfileConfiguration authenticationProfileConfig

Profile configuration source for requested principals.

Constructor Detail

InitializeRequestedPrincipalContext

public InitializeRequestedPrincipalContext()

Constructor.

Method Detail

setReplaceExistingContext

public void setReplaceExistingContext(boolean flag)

Whether any existing RequestedPrincipalContext should be replaced, defaults to "false".

Normally an existing context would indicate requirements that shouldn't be circumvented to comply with expected profile behavior.

Parameters:

flag - flag to set

setRelyingPartyContextLookupStrategy

public void setRelyingPartyContextLookupStrategy(@Nonnull
                                        com.google.common.base.Function<ProfileRequestContext,RelyingPartyContext> strategy)

Set the strategy used to locate the RelyingPartyContext associated with a given ProfileRequestContext.

Parameters:

strategy - strategy used to locate the RelyingPartyContext associated with a given ProfileRequestContext

doPreExecute

protected boolean doPreExecute(@Nonnull
                   ProfileRequestContext profileRequestContext,
                   @Nonnull
                   AuthenticationContext authenticationContext)

Overrides:

doPreExecute in class AbstractAuthenticationAction

doExecute

protected void doExecute(@Nonnull
             ProfileRequestContext profileRequestContext,
             @Nonnull
             AuthenticationContext authenticationContext)

Overrides:

doExecute in class AbstractAuthenticationAction