Package org.geant.idpextension.oidc.profile.api

Class OIDCSecurityConfiguration

java.lang.Object

net.shibboleth.idp.profile.config.SecurityConfiguration

org.geant.idpextension.oidc.profile.api.OIDCSecurityConfiguration

public class OIDCSecurityConfiguration
extends net.shibboleth.idp.profile.config.SecurityConfiguration

Class extends SecurityConfiguration to support separate configuration for request object decryption and signature validation.

Field Summary

Fields

Modifier and Type	Field	Description
private org.opensaml.xmlsec.EncryptionConfiguration	requestObjectDecryptConfig	Configuration used when decrypting request object information.
private org.opensaml.xmlsec.SignatureSigningConfiguration	requestObjectSignatureValidationConfig	Configuration used when validating request object information.
private org.opensaml.xmlsec.SignatureSigningConfiguration	tokenEndpointJwtSignatureValidationConfig	Configuration used when validating token endpoint authentication JWT signatures.

Constructor Summary

Constructors

Constructor	Description
OIDCSecurityConfiguration()

Method Summary

Modifier and Type	Method	Description
org.opensaml.xmlsec.EncryptionConfiguration	getRequestObjectDecryptionConfiguration()	Get the configuration used when decrypting request object information.
org.opensaml.xmlsec.SignatureSigningConfiguration	getRequestObjectSignatureValidationConfiguration()	Get the configuration used when validating request object information.
org.opensaml.xmlsec.SignatureSigningConfiguration	getTokenEndpointJwtSignatureValidationConfiguration()	Get the configuration used when validating token endpoint authentication JWT signatures.
void	setRequestObjectDecryptionConfiguration(org.opensaml.xmlsec.EncryptionConfiguration config)	Set the configuration used when decrypting request object information.
void	setRequestObjectSignatureValidationConfiguration(org.opensaml.xmlsec.SignatureSigningConfiguration config)	Set the configuration used when validating request object information.
void	setTokenEndpointJwtSignatureValidationConfiguration(org.opensaml.xmlsec.SignatureSigningConfiguration config)	Set the configuration used when validating token endpoint authentication JWT signatures.

Methods inherited from class net.shibboleth.idp.profile.config.SecurityConfiguration

getClientTLSValidationConfiguration, getClockSkew, getDecryptionConfiguration, getEncryptionConfiguration, getHttpClientSecurityConfiguration, getIdGenerator, getSignatureSigningConfiguration, getSignatureValidationConfiguration, setClientTLSValidationConfiguration, setDecryptionConfiguration, setEncryptionConfiguration, setHttpClientSecurityConfiguration, setSignatureSigningConfiguration, setSignatureValidationConfiguration

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

requestObjectDecryptConfig

@Nullable
private org.opensaml.xmlsec.EncryptionConfiguration requestObjectDecryptConfig

Configuration used when decrypting request object information.

requestObjectSignatureValidationConfig

@Nullable
private org.opensaml.xmlsec.SignatureSigningConfiguration requestObjectSignatureValidationConfig

Configuration used when validating request object information.

tokenEndpointJwtSignatureValidationConfig

@Nullable
private org.opensaml.xmlsec.SignatureSigningConfiguration tokenEndpointJwtSignatureValidationConfig

Configuration used when validating token endpoint authentication JWT signatures.

Constructor Detail

OIDCSecurityConfiguration

public OIDCSecurityConfiguration()

Method Detail

getRequestObjectDecryptionConfiguration

@Nullable
public org.opensaml.xmlsec.EncryptionConfiguration getRequestObjectDecryptionConfiguration()

Get the configuration used when decrypting request object information.

Returns:

configuration used when decrypting request object information, or null

setRequestObjectDecryptionConfiguration

public void setRequestObjectDecryptionConfiguration(@Nullable
                                                    org.opensaml.xmlsec.EncryptionConfiguration config)

Set the configuration used when decrypting request object information.

Parameters:

config - configuration used when decrypting request object information, or null

getRequestObjectSignatureValidationConfiguration

@Nullable
public org.opensaml.xmlsec.SignatureSigningConfiguration getRequestObjectSignatureValidationConfiguration()

Get the configuration used when validating request object information.

Returns:

configuration used when validating request object information, or null

setRequestObjectSignatureValidationConfiguration

public void setRequestObjectSignatureValidationConfiguration(@Nullable
                                                             org.opensaml.xmlsec.SignatureSigningConfiguration config)

Set the configuration used when validating request object information.

Parameters:

config - used when validating request object information, or null

getTokenEndpointJwtSignatureValidationConfiguration

@Nullable
public org.opensaml.xmlsec.SignatureSigningConfiguration getTokenEndpointJwtSignatureValidationConfiguration()

Get the configuration used when validating token endpoint authentication JWT signatures.

Returns:

configuration used when validating token endpoint authentication JWT signatures, or null

setTokenEndpointJwtSignatureValidationConfiguration

public void setTokenEndpointJwtSignatureValidationConfiguration(@Nullable
                                                                org.opensaml.xmlsec.SignatureSigningConfiguration config)

Set the configuration used when validating token endpoint authentication JWT signatures.

Parameters:

config - used when validating token endpoint authentication JWT signatures, or null