org.picketlink.identity.federation.bindings.tomcat.idp

Class AbstractIDPValve

java.lang.Object

org.apache.catalina.valves.ValveBase

org.picketlink.identity.federation.bindings.tomcat.idp.AbstractIDPValve

All Implemented Interfaces:

MBeanRegistration, org.apache.catalina.Contained, org.apache.catalina.Valve

public abstract class AbstractIDPValve
extends org.apache.catalina.valves.ValveBase

Base Class for the IDPWebBrowserSSOValve

Author:

anil saldhana

Field Summary

Fields

Modifier and Type	Field and Description
protected org.picketlink.identity.federation.core.audit.PicketLinkAuditHelper	auditHelper
protected org.picketlink.identity.federation.web.util.SAMLConfigurationProvider	configProvider The user can inject a fully qualified name of a SAMLConfigurationProvider
protected boolean	enableAudit
protected org.picketlink.config.federation.IDPType	idpConfiguration
protected org.picketlink.config.federation.PicketLinkType	picketLinkConfiguration
protected Timer	timer
protected int	timerInterval

Fields inherited from class org.apache.catalina.valves.ValveBase

container, containerLog, controller, domain, info, mserver, next, oname, sm

Constructor Summary

Constructors

Constructor and Description
AbstractIDPValve()

Method Summary

Methods

Modifier and Type	Method and Description
Principal	authenticateSSL(org.apache.catalina.connector.Request request, org.apache.catalina.connector.Response response)
protected void	cleanUpSessionNote(org.apache.catalina.connector.Request request)
protected String	determineLoginType(boolean isSecure)
org.picketlink.config.federation.PicketLinkType	getConfiguration() Returns the configurations used.
protected org.apache.catalina.Context	getContext()
protected abstract String	getContextPath()
protected String	getIdentityURL()
Boolean	getIgnoreIncomingSignatures() Deprecated.
org.picketlink.identity.federation.core.interfaces.TrustKeyManager	getKeyManager() Return the TrustKeyManager
Boolean	getSignOutgoingMessages() Deprecated.
protected void	handleSAML11(org.apache.catalina.connector.Request request, org.apache.catalina.connector.Response response)
protected void	initHandlersChain() Initialize the Handlers chain.
protected void	initIdentityServer() Initializes the IdentityServer.
protected void	initIDPConfiguration() Initializes the IDP configuration.
protected void	initKeyManager()
protected void	initSTSConfiguration() Initializes the STS configuration.
void	invoke(org.apache.catalina.connector.Request request, org.apache.catalina.connector.Response response)
protected void	processSAMLRequestMessage(org.apache.catalina.connector.Request request, org.apache.catalina.connector.Response response)
protected void	processSAMLResponseMessage(org.apache.catalina.connector.Request request, org.apache.catalina.connector.Response response)
protected void	recycle(org.apache.catalina.connector.Response response)
protected void	sendErrorResponseToSP(String referrer, org.apache.catalina.connector.Response response, String relayState, org.picketlink.identity.federation.web.util.IDPWebRequestUtil webRequestUtil)
void	setAttributeList(String attribList)
void	setAuditHelper(org.picketlink.identity.federation.core.audit.PicketLinkAuditHelper auditHelper)
void	setConfigFile(String configFile)
void	setConfigProvider(org.picketlink.identity.federation.web.util.SAMLConfigurationProvider configurationProvider)
void	setConfigProvider(String cp) Set the SAMLConfigurationProvider fqn
void	setIdentityParticipantStack(String fqn) Deprecated.
void	setIgnoreAttributesGeneration(Boolean ignoreAttributes) IDP should not do any attributes such as generation of roles etc
void	setIgnoreIncomingSignatures(Boolean ignoreIncomingSignature) Deprecated.
void	setRoleGenerator(String rgName) Deprecated.
void	setSamlHandlerChainClass(String samlHandlerChainClass) Deprecated.
void	setSignOutgoingMessages(Boolean signOutgoingMessages) Deprecated.
void	setStrictPostBinding(Boolean strictPostBinding) Deprecated.
void	setTimerInterval(String value) Set the Timer Value to reload the configuration
void	setValidatingAliasToTokenIssuer(Boolean validatingAliasToTokenIssuer) Deprecated.
protected void	startPicketLink()

Methods inherited from class org.apache.catalina.valves.ValveBase

backgroundProcess, createObjectName, event, getContainer, getContainerName, getController, getDomain, getInfo, getNext, getObjectName, getParentName, postDeregister, postRegister, preDeregister, preRegister, setContainer, setController, setNext, setObjectName, toString

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Field Detail

enableAudit

protected boolean enableAudit

auditHelper

protected org.picketlink.identity.federation.core.audit.PicketLinkAuditHelper auditHelper

idpConfiguration

protected org.picketlink.config.federation.IDPType idpConfiguration

picketLinkConfiguration

protected org.picketlink.config.federation.PicketLinkType picketLinkConfiguration

configProvider

protected org.picketlink.identity.federation.web.util.SAMLConfigurationProvider configProvider

The user can inject a fully qualified name of a SAMLConfigurationProvider

timerInterval

protected int timerInterval

timer

protected Timer timer

Constructor Detail

AbstractIDPValve

public AbstractIDPValve()

Method Detail

setAttributeList

public void setAttributeList(String attribList)

setTimerInterval

public void setTimerInterval(String value)

Set the Timer Value to reload the configuration

Parameters:

value - an integer value that represents timer value (in miliseconds)

setConfigProvider

public void setConfigProvider(String cp)

Set the SAMLConfigurationProvider fqn

Parameters:

cp - fqn of a SAMLConfigurationProvider

setConfigFile

public void setConfigFile(String configFile)

setConfigProvider

public void setConfigProvider(org.picketlink.identity.federation.web.util.SAMLConfigurationProvider configurationProvider)

setRoleGenerator

@Deprecated
public void setRoleGenerator(String rgName)

Deprecated.

setSamlHandlerChainClass

@Deprecated
public void setSamlHandlerChainClass(String samlHandlerChainClass)

Deprecated.

setIdentityParticipantStack

@Deprecated
public void setIdentityParticipantStack(String fqn)

Deprecated.

setStrictPostBinding

@Deprecated
public void setStrictPostBinding(Boolean strictPostBinding)

Deprecated.

getIgnoreIncomingSignatures

@Deprecated
public Boolean getIgnoreIncomingSignatures()

Deprecated.

setIgnoreIncomingSignatures

@Deprecated
public void setIgnoreIncomingSignatures(Boolean ignoreIncomingSignature)

Deprecated.

setValidatingAliasToTokenIssuer

@Deprecated
public void setValidatingAliasToTokenIssuer(Boolean validatingAliasToTokenIssuer)

Deprecated.

PLFED-248 Allows to validate the token's signature against the keystore using the token's issuer.

setIgnoreAttributesGeneration

public void setIgnoreAttributesGeneration(Boolean ignoreAttributes)

IDP should not do any attributes such as generation of roles etc

Parameters:

ignoreAttributes -

getSignOutgoingMessages

@Deprecated
public Boolean getSignOutgoingMessages()

Deprecated.

setSignOutgoingMessages

@Deprecated
public void setSignOutgoingMessages(Boolean signOutgoingMessages)

Deprecated.

getConfiguration

public org.picketlink.config.federation.PicketLinkType getConfiguration()

Returns the configurations used.

Returns:

getKeyManager

public org.picketlink.identity.federation.core.interfaces.TrustKeyManager getKeyManager()

Return the TrustKeyManager

Returns:

invoke

public void invoke(org.apache.catalina.connector.Request request,
          org.apache.catalina.connector.Response response)
            throws IOException,
                   javax.servlet.ServletException

Specified by:

invoke in interface org.apache.catalina.Valve

Specified by:

invoke in class org.apache.catalina.valves.ValveBase

Throws:

IOException

javax.servlet.ServletException

authenticateSSL

public Principal authenticateSSL(org.apache.catalina.connector.Request request,
                        org.apache.catalina.connector.Response response)
                          throws IOException

Throws:

IOException

handleSAML11

protected void handleSAML11(org.apache.catalina.connector.Request request,
                org.apache.catalina.connector.Response response)
                     throws javax.servlet.ServletException,
                            IOException

Throws:

javax.servlet.ServletException

IOException

processSAMLRequestMessage

protected void processSAMLRequestMessage(org.apache.catalina.connector.Request request,
                             org.apache.catalina.connector.Response response)
                                  throws IOException

Throws:

IOException

processSAMLResponseMessage

protected void processSAMLResponseMessage(org.apache.catalina.connector.Request request,
                              org.apache.catalina.connector.Response response)
                                   throws javax.servlet.ServletException,
                                          IOException

Throws:

javax.servlet.ServletException

IOException

cleanUpSessionNote

protected void cleanUpSessionNote(org.apache.catalina.connector.Request request)

sendErrorResponseToSP

protected void sendErrorResponseToSP(String referrer,
                         org.apache.catalina.connector.Response response,
                         String relayState,
                         org.picketlink.identity.federation.web.util.IDPWebRequestUtil webRequestUtil)
                              throws javax.servlet.ServletException,
                                     IOException,
                                     org.picketlink.common.exceptions.ConfigurationException

Throws:

javax.servlet.ServletException

IOException

org.picketlink.common.exceptions.ConfigurationException

initIdentityServer

protected void initIdentityServer()

Initializes the IdentityServer.

initHandlersChain

protected void initHandlersChain()
                          throws org.apache.catalina.LifecycleException

Initialize the Handlers chain.

Throws:

org.apache.catalina.LifecycleException

initKeyManager

protected void initKeyManager()
                       throws org.apache.catalina.LifecycleException

Throws:

org.apache.catalina.LifecycleException

initIDPConfiguration

protected void initIDPConfiguration()

Initializes the IDP configuration.

initSTSConfiguration

protected void initSTSConfiguration()

Initializes the STS configuration.

getIdentityURL

protected String getIdentityURL()

getContext

protected org.apache.catalina.Context getContext()

getContextPath

protected abstract String getContextPath()

recycle

protected void recycle(org.apache.catalina.connector.Response response)

determineLoginType

protected String determineLoginType(boolean isSecure)

startPicketLink

protected void startPicketLink()
                        throws org.apache.catalina.LifecycleException

Throws:

org.apache.catalina.LifecycleException

setAuditHelper

public void setAuditHelper(org.picketlink.identity.federation.core.audit.PicketLinkAuditHelper auditHelper)