PopulateMultiFactorAuthenticationContext (Shibboleth IdP :: Authentication Implementation 3.4.1 API)

java.lang.Object
- net.shibboleth.utilities.java.support.component.AbstractInitializableComponent
- - org.opensaml.profile.action.AbstractProfileAction<InboundMessageType,OutboundMessageType>
  - - org.opensaml.profile.action.AbstractConditionalProfileAction<InboundMessageType,OutboundMessageType>
    - - net.shibboleth.idp.profile.AbstractProfileAction<InboundMessageType,OutboundMessageType>
      - net.shibboleth.idp.authn.AbstractAuthenticationAction
        
        net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext

All Implemented Interfaces:

Component, DestructableComponent, InitializableComponent, ProfileAction, org.springframework.beans.factory.Aware, org.springframework.context.MessageSource, org.springframework.context.MessageSourceAware, org.springframework.webflow.execution.Action
```
public class PopulateMultiFactorAuthenticationContext
extends AbstractAuthenticationAction
```
An action that creates and populates a MultiFactorAuthenticationContext with the set of transition rules to use for coordinating activity, the executing AuthenticationFlowDescriptor and with any active "factors" found, if an active result from the MFA flow is present in the AuthenticationContext.
If the lookup strategy supplies no transition rules to use, then the AuthnEventIds.RESELECT_FLOW event is signaled.
Event:

EventIds.PROCEED_EVENT_ID, EventIds.INVALID_PROFILE_CTX, AuthnEventIds.RESELECT_FLOW

Precondition:
```
ProfileRequestContext.getSubcontext(AuthenticationContext.class) != null
```
Postcondition:
```
ProfileRequestContext.getSubcontext(AuthenticationContext.class).getSubcontext(
  MultiFactorAuthenticationContext.class) != null
```

Nested Class Summary

Nested Classes
Modifier and Type	Class and Description
`private class`	`PopulateMultiFactorAuthenticationContext.DefaultResultLookupStrategy` Default strategy function to extract embedded `AuthenticationResult`s from inside the `AuthenticationResultPrincipal` collection of an active `AuthenticationResult` of the currently executing flow.

Field Summary

Fields
Modifier and Type	Field and Description
`private com.google.common.base.Function<ProfileRequestContext,Collection<AuthenticationResult>>`	`activeResultLookupStrategy` Lookup strategy for active "factors" that may already be usable.
`private org.slf4j.Logger`	`log` Class logger.
`private com.google.common.base.Function<ProfileRequestContext,MultiFactorAuthenticationContext>`	`multiFactorContextCreationStrategy` Lookup/creation function for the context to populate.
`private com.google.common.base.Function<ProfileRequestContext,Map<String,MultiFactorAuthenticationTransition>>`	`transitionMapLookupStrategy` Lookup strategy for obtaining the map of transition rules to use.

Constructor Summary

Constructors
Constructor and Description

PopulateMultiFactorAuthenticationContext()
Constructor.

Constructors
Constructor and Description
`PopulateMultiFactorAuthenticationContext()` Constructor.

Method Summary

Methods
Modifier and Type	Method and Description
`protected void`	`doExecute(ProfileRequestContext profileRequestContext, AuthenticationContext authenticationContext)`
`void`	`setActiveResultLookupStrategy(com.google.common.base.Function<ProfileRequestContext,Collection<AuthenticationResult>> strategy)` Set the lookup strategy for any active "factors" that may be reusable.
`void`	`setMultiFactorContextCreationStrategy(com.google.common.base.Function<ProfileRequestContext,MultiFactorAuthenticationContext> strategy)` Set the lookup/creation strategy to use for the context to populate.
`void`	`setTransitionMapLookupStrategy(com.google.common.base.Function<ProfileRequestContext,Map<String,MultiFactorAuthenticationTransition>> strategy)` Set the strategy to lookup the map of transition rules to apply.

Methods inherited from class net.shibboleth.idp.authn.AbstractAuthenticationAction
doExecute, doPreExecute, doPreExecute, setLookupStrategy

Methods inherited from class net.shibboleth.idp.profile.AbstractProfileAction
doExecute, execute, getMessage, getMessage, getMessage, getProfileContextLookupStrategy, getRequestContext, getResult, setMessageSource, setProfileContextLookupStrategy

Methods inherited from class org.opensaml.profile.action.AbstractConditionalProfileAction
getActivationCondition, setActivationCondition

Methods inherited from class org.opensaml.profile.action.AbstractProfileAction
doPostExecute, doPostExecute, execute, getHttpServletRequest, getHttpServletResponse, getLogPrefix, setHttpServletRequest, setHttpServletResponse

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent
destroy, doDestroy, doInitialize, initialize, isDestroyed, isInitialized

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface net.shibboleth.utilities.java.support.component.InitializableComponent
initialize, isInitialized

Field Detail

log

@Nonnull
private final org.slf4j.Logger log

Class logger.

transitionMapLookupStrategy

@Nonnull
private com.google.common.base.Function<ProfileRequestContext,Map<String,MultiFactorAuthenticationTransition>> transitionMapLookupStrategy

Lookup strategy for obtaining the map of transition rules to use.

multiFactorContextCreationStrategy

@Nonnull
private com.google.common.base.Function<ProfileRequestContext,MultiFactorAuthenticationContext> multiFactorContextCreationStrategy

Lookup/creation function for the context to populate.

activeResultLookupStrategy

@Nullable
private com.google.common.base.Function<ProfileRequestContext,Collection<AuthenticationResult>> activeResultLookupStrategy

Lookup strategy for active "factors" that may already be usable.

Constructor Detail
- PopulateMultiFactorAuthenticationContext
```
PopulateMultiFactorAuthenticationContext()
```
  Constructor.

Method Detail

setTransitionMapLookupStrategy

public void setTransitionMapLookupStrategy(@Nonnull
                                  com.google.common.base.Function<ProfileRequestContext,Map<String,MultiFactorAuthenticationTransition>> strategy)

Set the strategy to lookup the map of transition rules to apply.

Parameters:: strategy - lookup strategy

setMultiFactorContextCreationStrategy

public void setMultiFactorContextCreationStrategy(@Nonnull
                                         com.google.common.base.Function<ProfileRequestContext,MultiFactorAuthenticationContext> strategy)

Set the lookup/creation strategy to use for the context to populate.

Parameters:: strategy - lookup/creation strategy

setActiveResultLookupStrategy
```
public void setActiveResultLookupStrategy(@Nullable
                                 com.google.common.base.Function<ProfileRequestContext,Collection<AuthenticationResult>> strategy)
```
Set the lookup strategy for any active "factors" that may be reusable.
The default strategy is to look for an active AuthenticationResult of the flow currently being attempted, and check within it for AuthenticationResultPrincipal objects.

Parameters:
strategy - lookup strategy

doExecute

protected void doExecute(@Nonnull
             ProfileRequestContext profileRequestContext,
             @Nonnull
             AuthenticationContext authenticationContext)

Overrides:: doExecute in class AbstractAuthenticationAction

Class PopulateMultiFactorAuthenticationContext

Nested Class Summary

Field Summary

Constructor Summary

Method Summary

Methods inherited from class net.shibboleth.idp.authn.AbstractAuthenticationAction

Methods inherited from class net.shibboleth.idp.profile.AbstractProfileAction

Methods inherited from class org.opensaml.profile.action.AbstractConditionalProfileAction

Methods inherited from class org.opensaml.profile.action.AbstractProfileAction

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

Methods inherited from class java.lang.Object

Methods inherited from interface net.shibboleth.utilities.java.support.component.InitializableComponent