Index (Shibboleth IdP :: Authentication Implementation 4.2.1 API)

A B C D E F G H I J K L M N O P R S T U V W X
All Classes All Packages

A

AbstractDuoAuthenticator - Class in net.shibboleth.idp.authn.duo.impl: A base class for authentication actions which call a Duo AuthAPI endpont.
AbstractDuoAuthenticator() - Constructor for class net.shibboleth.idp.authn.duo.impl.AbstractDuoAuthenticator
accept(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.ValidateCredentials.UsernamePasswordCleanupHook
acceptFirstToken(byte[], int, int) - Method in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: Process the first inbound GSS token.
acceptSecContext(byte[], int, int) - Method in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: Process the inbound GSS token.
ActivationCondition() - Constructor for class net.shibboleth.idp.authn.impl.SimpleSubjectCanonicalization.ActivationCondition
ActivationCondition() - Constructor for class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization.ActivationCondition
activeFlowsLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: Lookup function for the flow IDs to activate from within the available set.
activeResultLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext: Lookup strategy for active "factors" that may already be usable.
ADDTL_DATA_FIELD - Static variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Field name of private credentials array.
allowedUsernames - Variable in class net.shibboleth.idp.authn.impl.ValidateRemoteUser: Usernames to accept.
APACHE_NULL - Static variable in class net.shibboleth.idp.authn.impl.X509ProxyFilter: Apache null indicator.
apply(Pair<RequestContext, ProfileRequestContext>) - Method in class net.shibboleth.idp.authn.proxy.impl.DiscoveryProfileRequestFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.audit.impl.AuthenticationFlowAuditExtractor
apply(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication.DefaultResultMergingStrategy
apply(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext.DefaultResultLookupStrategy
apply(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.RelyingPartyMapJAASLoginConfigStrategy
apply(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager.UsernameIPLockoutKeyStrategy
apply(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext.DefaultPRCCreationStrategy
apply(ProfileRequestContext, SubjectCanonicalizationContext, boolean) - Method in class net.shibboleth.idp.authn.impl.SimpleSubjectCanonicalization.ActivationCondition: Helper method that runs either as part of the Predicate or directly from the SimpleSubjectCanonicalization.doPreExecute(ProfileRequestContext, SubjectCanonicalizationContext) method above.
apply(ProfileRequestContext, SubjectCanonicalizationContext, boolean) - Method in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization.ActivationCondition: Helper method that runs either as part of the Predicate or directly from the X500SubjectCanonicalization.doPreExecute(ProfileRequestContext, SubjectCanonicalizationContext) method above.
attributeContext - Variable in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Context for externally supplied inbound attributes.
attributeContextLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Lookup strategy for AttributeContext to read from.
attributeCtx - Variable in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: The context to read from.
attributeFilterService - Variable in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Service used to get the engine used to filter attributes.
AttributeSourcedSubjectCanonicalization - Class in net.shibboleth.idp.authn.impl: An action that extracts a resolved IdPAttribute value from an AttributeContext child obtained via lookup function (by default a child of the SubjectCanonicalizationContext), and uses it as the result of subject canonicalization.
AttributeSourcedSubjectCanonicalization() - Constructor for class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Constructor.
attributeSourceIds - Variable in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Ordered list of attributes to look for and read from.
authAuthenticator - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Implementation of Duo AuthApi /auth endpoint.
authenticate(String, UsernamePasswordContext) - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Create a JAAS configuration and attempt a login with it.
authenticate(UsernamePasswordContext, String) - Method in class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator: Compare input password to stored value.
authenticate(DuoAuthenticationContext, DuoIntegration) - Method in class net.shibboleth.idp.authn.duo.impl.DuoAuthAuthenticator: Perform an authentication action via the Duo AuthApi /auth endpoint.
authenticate(DuoAuthenticationContext, DuoIntegration) - Method in class net.shibboleth.idp.authn.duo.impl.DuoPreauthAuthenticator: Perform an authentication action via the Duo AuthAPI /preauth endpoint.
authenticationCertificate - Variable in class net.shibboleth.idp.authn.impl.X509ResourceCredentialConfig: Name of the authentication certificate to use for the SSL connection.
AuthenticationFlowAuditExtractor - Class in net.shibboleth.idp.authn.audit.impl: Function that returns the authentication flow ID used to satisfy a request.
AuthenticationFlowAuditExtractor() - Constructor for class net.shibboleth.idp.authn.audit.impl.AuthenticationFlowAuditExtractor
AuthenticationFlowDescriptorManager - Class in net.shibboleth.idp.authn.impl: Manager of AuthenticationFlowDescriptor objects.
AuthenticationFlowDescriptorManager(List<AuthenticationFlowDescriptor>) - Constructor for class net.shibboleth.idp.authn.impl.AuthenticationFlowDescriptorManager: Constructor.
authenticationKey - Variable in class net.shibboleth.idp.authn.impl.X509ResourceCredentialConfig: Name of the key to use for the SSL connection.
authenticationKeyPassword - Variable in class net.shibboleth.idp.authn.impl.X509ResourceCredentialConfig: Password to decrypt the authentication key.
authenticationProfileConfig - Variable in class net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext: Profile configuration source for requested principals.
AuthenticationResultPrincipalSerializer - Class in net.shibboleth.idp.authn.principal.impl: Principal serializer for AuthenticationResultPrincipal.
AuthenticationResultPrincipalSerializer(StorageSerializer<AuthenticationResult>) - Constructor for class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer: Constructor.
authenticator - Variable in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator: LDAP authenticator.
AUTHN_AUTHORITY_HEADER_PARAM - Static variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Init parameter identifying a header to check for one or more proxied authenticating authority strings.
AUTHN_INSTANT_FIELD - Static variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Field name of authentication instant.
AUTHN_METHOD_HEADER_PARAM - Static variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Init parameter identifying a header to check for one or more authentication method strings.
authnAuthorityHeader - Variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Header to check for proxied authenticating authority strings.
authnMethodHeader - Variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Header to check for authentication method strings.
authnResultPrincipalSerializer - Variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Specialized serializer for AuthenticationResultPrincipal that requires a circular ref.
autoAuthenticationSupported - Variable in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Whether "auto" should be the default for factor and device.
AUTOLOGIN_COOKIE_NAME - Static variable in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Default name of the SPNEGO auto-login cookie.
AUTOLOGIN_COOKIE_VALUE_TRUE - Static variable in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: SPNEGO auto-login cookie value representing true.
AUTOLOGIN_PARAMETER_NAME - Static variable in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Name of the SPNEGO auto-login signaling parameter.
availableFlows - Variable in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: All of the known flows in the system.
availableFlows - Variable in class net.shibboleth.idp.authn.impl.PopulateSubjectCanonicalizationContext: The flows to make available for possible use.

B

browserProfile - Variable in class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext: Whether this is a browser-based profile request.
buildAuthenticationResult(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI
buildAuthenticationResult(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse

C

canonicalPrincipalName - Variable in class net.shibboleth.idp.authn.impl.FinalizeAuthentication: The principal name extracted from the context tree.
canonRequest(RequestBuilder, String, int) - Static method in class net.shibboleth.idp.authn.duo.impl.DuoSupport: The signature requires that the request parameters being in a particular order as specified in the API.
capabilities - Variable in class net.shibboleth.idp.authn.duo.impl.DuoDevice: a List of Duo device capabilities.
certContextLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.X509CertificateCredentialValidator: Lookup strategy for cert context.
certificate - Variable in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization: The certificate to operate on.
CHAIN_HEADERS_PARAM - Static variable in class net.shibboleth.idp.authn.impl.X509ProxyFilter: Init parameter controlling what headers to check for the chain certificates.
chainHeaders - Variable in class net.shibboleth.idp.authn.impl.X509ProxyFilter: Name of headers containing chain certificates.
check(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager
CHECK_ATTRIBUTES_PARAM - Static variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Init parameter controlling what attributes to check.
CHECK_HEADERS_PARAM - Static variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Init parameter controlling what headers to check.
CHECK_REMOTE_USER_PARAM - Static variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Init parameter controlling whether to check for REMOTE_USER.
checkAttributes - Variable in class net.shibboleth.idp.authn.impl.ExtractRemoteUser: List of request attributes to check for an identity.
checkAttributes - Variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: List of request attributes to check for an identity.
checkHeaders - Variable in class net.shibboleth.idp.authn.impl.ExtractRemoteUser: List of request headers to check for an identity.
checkHeaders - Variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: List of request headers to check for an identity.
checkProxyRestrictions(ProfileRequestContext, Subject) - Method in class net.shibboleth.idp.authn.impl.FinalizeAuthentication: Check for proxy restrictions and evaluate them against the request.
checkRemoteUser - Variable in class net.shibboleth.idp.authn.impl.ExtractRemoteUser: Whether to check REMOTE_USER for an identity.
checkRemoteUser - Variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Whether to check REMOTE_USER for an identity.
checkUsername(Subject) - Method in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Validate the username if necessary.
clear(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager
clientAddressTrusted - Variable in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Whether to trust, and extract, the client address.
clientOptions - Variable in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: JAAS options for client login.
CN_OID - Static variable in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization: Common Name (CN) OID.
code - Variable in class net.shibboleth.idp.authn.duo.impl.DuoFailureResponse: the failure code.
context - Variable in class net.shibboleth.idp.authn.impl.JAASCredentialValidator.SimpleCallbackHandler: Context for call.
context - Variable in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator.SimpleCallbackHandler: Context for call.
context - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: The GSSContext being established, or that was established.
contextAcceptor - Variable in class net.shibboleth.idp.authn.spnego.impl.SPNEGOContext: Utility class that manages credentials and state for GSS loop.
continueSPNEGO(String, String, HttpServletRequest, HttpServletResponse) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Process an input GSS token from the client and attempt to complete the context establishment process.
cookieManager - Variable in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Manages creation of cookies.
cookieName - Variable in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Auto-login cookie name.
counterIntervalLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Lookup function for interval after which counter is reset.
createGSSContext(KerberosRealmSettings) - Method in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: Establish initial server credentials and create a GSS acceptor context based on then.
createGSSContextAcceptor(SPNEGOContext) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Create a new GSSContextAcceptor object.
createModelAndView(ProfileRequestContext, HttpServletRequest, HttpServletResponse) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Create a ModelAndView object to return.
createQueryString(List<NameValuePair>) - Static method in class net.shibboleth.idp.authn.duo.impl.DuoSupport: Builds a string representation of the query string with the parameter names is alphabetical order.
createSSLContextInitializer() - Method in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig
createSSLContextInitializer() - Method in class net.shibboleth.idp.authn.impl.X509ResourceCredentialConfig
credentialMap - Variable in class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator: In-memory copy of entries.
credentialValidators - Variable in class net.shibboleth.idp.authn.impl.ValidateCredentials: Ordered list of validators.
currentValidator - Variable in class net.shibboleth.idp.authn.impl.ValidateCredentials: Currently executing validator.

D

decodeCredentials(String) - Method in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth: Decodes the credential string provided in the HTTP header, splits it in to a username and password, and returns them.
DEFAULT_METRIC_NAME - Static variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Default prefix for metrics.
DEFAULT_METRIC_NAME - Static variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Default prefix for metrics.
DEFAULT_METRIC_NAME - Static variable in class net.shibboleth.idp.authn.impl.ValidateCredentials: Default prefix for metrics.
DEFAULT_METRIC_NAME - Static variable in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Default prefix for metrics.
DEFAULT_METRIC_NAME - Static variable in class net.shibboleth.idp.authn.impl.ValidateFunctionResult: Default prefix for metrics.
DEFAULT_METRIC_NAME - Static variable in class net.shibboleth.idp.authn.impl.ValidateRemoteUser: Default prefix for metrics.
DEFAULT_METRIC_NAME - Static variable in class net.shibboleth.idp.authn.impl.ValidateUserAgentAddress: Default prefix for metrics.
DefaultAuthenticationResultSerializer - Class in net.shibboleth.idp.authn.impl: Handles serialization of results, delegating handling of Principal objects to one or more PrincipalSerializer plugins.
DefaultAuthenticationResultSerializer() - Constructor for class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Constructor.
DefaultAuthenticationResultSerializer(PrincipalServiceManager, GenericPrincipalSerializer) - Constructor for class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Constructor.
defaultConfigName - Variable in class net.shibboleth.idp.authn.impl.RelyingPartyMapJAASLoginConfigStrategy: The default JAAS config name to use when no specific mapping configured.
DefaultPRCCreationStrategy() - Constructor for class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext.DefaultPRCCreationStrategy
DefaultResultLookupStrategy() - Constructor for class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext.DefaultResultLookupStrategy
DefaultResultMergingStrategy() - Constructor for class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication.DefaultResultMergingStrategy
delimiter - Variable in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Delimiter to use for scoped attribute serialization.
deniedUsernames - Variable in class net.shibboleth.idp.authn.impl.ValidateRemoteUser: Usernames to deny.
deserialize(long, String, String, String, Long) - Method in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer
deserialize(String) - Method in class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer
deserialize(String) - Method in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer
deserialize(String) - Method in class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer
deserialize(String) - Method in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer
deserialize(String) - Method in class net.shibboleth.idp.authn.principal.impl.X500PrincipalSerializer
deserializePrincipal(JsonValue) - Method in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Attempt to deserialize a principal with the registered and default serializers.
deserializeValue(JsonObject) - Method in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Deserialize an attribute value from a JsonObject.
destroy() - Method in class net.shibboleth.idp.authn.impl.X509ProxyFilter
device - Variable in class net.shibboleth.idp.authn.duo.impl.DuoDevice: the Duo device identifier.
deviceHeaderName - Variable in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Header name for device.
devices - Variable in class net.shibboleth.idp.authn.duo.impl.DuoPreauthResponse: the List of DuoDevices registered.
digester - Variable in class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator: Digester for SHA-1.
disable() - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Disable auto-login.
DiscoveryProfileRequestFunction - Class in net.shibboleth.idp.authn.proxy.impl: A Function that produces a discovery request URL using the protocol defined in https://wiki.oasis-open.org/security/IdpDiscoSvcProtonProfile
DiscoveryProfileRequestFunction() - Constructor for class net.shibboleth.idp.authn.proxy.impl.DiscoveryProfileRequestFunction: Constructor.
discoveryURLLookupStrategy - Variable in class net.shibboleth.idp.authn.proxy.impl.DiscoveryProfileRequestFunction: Lookup strategy for determining the "base" discovery URL.
doAPIRequest(HttpUriRequest, TypeReference<T>) - Method in class net.shibboleth.idp.authn.duo.impl.AbstractDuoAuthenticator: Performs a call to the Duo AuthAPI.
doExecute(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation
doExecute(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ExtractKerberosTicketFromWSSToken
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ExtractRemoteUser
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ExtractUserAgentAddress
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ExtractUserAgentIdentifier
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromFormRequest
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromWSSToken
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ExtractX509CertificateFromRequest
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.FinalizeAuthentication
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.PreserveAuthenticationFlowState
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ValidateCredentials
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ValidateFunctionResult
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ValidateRemoteUser
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ValidateUserAgentAddress
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.proxy.impl.ExtractDiscoveryResponse
doExecute(ProfileRequestContext, SubjectCanonicalizationContext) - Method in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization
doExecute(ProfileRequestContext, SubjectCanonicalizationContext) - Method in class net.shibboleth.idp.authn.impl.PopulateSubjectCanonicalizationContext
doExecute(ProfileRequestContext, SubjectCanonicalizationContext) - Method in class net.shibboleth.idp.authn.impl.SelectSubjectCanonicalizationFlow
doExecute(ProfileRequestContext, SubjectCanonicalizationContext) - Method in class net.shibboleth.idp.authn.impl.SimpleSubjectCanonicalization
doExecute(ProfileRequestContext, SubjectCanonicalizationContext) - Method in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class net.shibboleth.idp.authn.impl.X509ProxyFilter
doFinish(HttpServletRequest, HttpServletResponse, ProfileRequestContext, ExternalAuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ExternalAuthenticationImpl
doIncrement(ProfileRequestContext, String, int) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Implement invalid login attempt counter via storage service, retrying as necessary.
doInitialize() - Method in class net.shibboleth.idp.authn.duo.impl.AbstractDuoAuthenticator
doInitialize() - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI
doInitialize() - Method in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization
doInitialize() - Method in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer
doInitialize() - Method in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation
doInitialize() - Method in class net.shibboleth.idp.authn.impl.ExtractRemoteUser
doInitialize() - Method in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication
doInitialize() - Method in class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator
doInitialize() - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator
doInitialize() - Method in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator
doInitialize() - Method in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator
doInitialize() - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager
doInitialize() - Method in class net.shibboleth.idp.authn.impl.ValidateFunctionResult
doInitialize() - Method in class net.shibboleth.idp.authn.proxy.impl.DiscoveryProfileRequestFunction
doInitialize() - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosRealmSettings
doInitialize() - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager
DoLockoutManagerOperation - Class in net.shibboleth.idp.authn.impl: Action that implements a JSON REST API for the AccountLockoutManager interface.
DoLockoutManagerOperation() - Constructor for class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation
doPreExecute(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromWSSToken
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.FinalizeAuthentication
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.PreserveAuthenticationFlowState
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ValidateRemoteUser
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ValidateUserAgentAddress
doPreExecute(ProfileRequestContext, SubjectCanonicalizationContext) - Method in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization
doPreExecute(ProfileRequestContext, SubjectCanonicalizationContext) - Method in class net.shibboleth.idp.authn.impl.SelectSubjectCanonicalizationFlow
doPreExecute(ProfileRequestContext, SubjectCanonicalizationContext) - Method in class net.shibboleth.idp.authn.impl.SimpleSubjectCanonicalization
doPreExecute(ProfileRequestContext, SubjectCanonicalizationContext) - Method in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization
doSelectNoRequestedPrincipals(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Executes the selection process in the absence of specific requested principals.
doSelectRequestedPrincipals(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Executes the selection process in the presence of specific requested Principals, requiring evaluation of potential flows and results for Principal-compatibility with request.
doSelectSignaledFlow(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Executes the selection process in the presence of an explicit flow signal.
doStart(HttpServletRequest, ProfileRequestContext, ExternalAuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.ExternalAuthenticationImpl
doTransition(ProfileRequestContext, AuthenticationContext, MultiFactorAuthenticationTransition) - Method in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication: Respond to a signal to transition the MFA process to a new flow.
doValidate(ProfileRequestContext, AuthenticationContext, UsernamePasswordContext, CredentialValidator.WarningHandler, CredentialValidator.ErrorHandler) - Method in class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator
doValidate(ProfileRequestContext, AuthenticationContext, UsernamePasswordContext, CredentialValidator.WarningHandler, CredentialValidator.ErrorHandler) - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator
doValidate(ProfileRequestContext, AuthenticationContext, UsernamePasswordContext, CredentialValidator.WarningHandler, CredentialValidator.ErrorHandler) - Method in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator
doValidate(ProfileRequestContext, AuthenticationContext, UsernamePasswordContext, CredentialValidator.WarningHandler, CredentialValidator.ErrorHandler) - Method in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator
doValidate(ProfileRequestContext, AuthenticationContext, CredentialValidator.WarningHandler, CredentialValidator.ErrorHandler) - Method in class net.shibboleth.idp.authn.impl.X509CertificateCredentialValidator
DuoAuthAPIResponse - Class in net.shibboleth.idp.authn.duo.impl: Describes the results of a Duo AuthAPI call, intended for use with a jackson ObjectMapper.
DuoAuthAPIResponse() - Constructor for class net.shibboleth.idp.authn.duo.impl.DuoAuthAPIResponse
DuoAuthAuthenticator - Class in net.shibboleth.idp.authn.duo.impl: Implementation of the the Duo AuthApi /v2/auth endpoint.
DuoAuthAuthenticator() - Constructor for class net.shibboleth.idp.authn.duo.impl.DuoAuthAuthenticator: Constructor.
DuoAuthResponse - Class in net.shibboleth.idp.authn.duo.impl: Describes the results of an authentication attempt via the Duo AuthAPI, intended for use with a jackson ObjectMapper.
DuoAuthResponse() - Constructor for class net.shibboleth.idp.authn.duo.impl.DuoAuthResponse
duoContext - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: DuoApi context for tokens.
DuoDevice - Class in net.shibboleth.idp.authn.duo.impl: Represents a Duo device, intended for use with a jackson ObjectMapper.
DuoDevice() - Constructor for class net.shibboleth.idp.authn.duo.impl.DuoDevice: Constructor.
DuoFailureResponse - Class in net.shibboleth.idp.authn.duo.impl: Describes the failure of a Duo AuthAPI call.
DuoFailureResponse() - Constructor for class net.shibboleth.idp.authn.duo.impl.DuoFailureResponse
duoIntegration - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Duo integration to use.
duoIntegration - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Duo integration to use.
duoIntegrationLookupStrategy - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Lookp strategy for Duo integration.
duoIntegrationLookupStrategy - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Lookp strategy for Duo integration.
DuoPreauthAuthenticator - Class in net.shibboleth.idp.authn.duo.impl: Implementation of the the Duo AuthAPI /v2/preauth endpoint.
DuoPreauthAuthenticator() - Constructor for class net.shibboleth.idp.authn.duo.impl.DuoPreauthAuthenticator: Constructor.
DuoPreauthResponse - Class in net.shibboleth.idp.authn.duo.impl: Describes the results of an pre-authentication attempt via the Duo AuthAPI.
DuoPreauthResponse() - Constructor for class net.shibboleth.idp.authn.duo.impl.DuoPreauthResponse
DuoResponseWrapper<T extends DuoAuthAPIResponse> - Class in net.shibboleth.idp.authn.duo.impl: Handle a generic object returned from the response that will come from the Duo AuthAPI.
DuoResponseWrapper() - Constructor for class net.shibboleth.idp.authn.duo.impl.DuoResponseWrapper
DuoSupport - Class in net.shibboleth.idp.authn.duo.impl: Helpers for DuoWeb and Duo AuthAPI operations.
DuoSupport() - Constructor for class net.shibboleth.idp.authn.duo.impl.DuoSupport: Constructor.

E

embeddedPredicate - Variable in class net.shibboleth.idp.authn.impl.SimpleSubjectCanonicalization: Supplies logic for pre-execute test.
embeddedPredicate - Variable in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization: Supplies logic for pre-execute test.
EMPTY_VALUE_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Field name of type code of an EmptyAttributeValue.
enable() - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Enable auto-login, i.e.
enrollPortalURL - Variable in class net.shibboleth.idp.authn.duo.impl.DuoPreauthResponse: the URL for the self-enrollment portal.
errorSignaled - Variable in class net.shibboleth.idp.authn.impl.ValidateCredentials: Tracks whether an error event was signaled.
escaper - Variable in class net.shibboleth.idp.authn.proxy.impl.DiscoveryProfileRequestFunction: URL query parameter escaper.
evalRegistry - Variable in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: The registry of predicate factories for custom principal evaluation.
eventContextLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication: Lookup function for current event context.
ExactMatchPredicate(Principal) - Constructor for class net.shibboleth.idp.authn.principal.impl.ExactPrincipalEvalPredicateFactory.ExactMatchPredicate: Constructor.
ExactPrincipalEvalPredicateFactory - Class in net.shibboleth.idp.authn.principal.impl: PrincipalEvalPredicateFactory that implements exact matching of principals, and works for any type.
ExactPrincipalEvalPredicateFactory() - Constructor for class net.shibboleth.idp.authn.principal.impl.ExactPrincipalEvalPredicateFactory
ExactPrincipalEvalPredicateFactory.ExactMatchPredicate - Class in net.shibboleth.idp.authn.principal.impl: Implementation of an exact-matching predicate.
extContext - Variable in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Context containing the result to validate.
extendedFlow - Variable in class net.shibboleth.idp.authn.impl.ExternalAuthenticationImpl: Track whether we were invoked from within another login flow.
extendLockoutDuration - Variable in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Controls whether attempts against locked accounts extend duration.
ExternalAuthenticationImpl - Class in net.shibboleth.idp.authn.impl: Implementation of the ExternalAuthentication API that handles moving information in and out of request attributes.
ExternalAuthenticationImpl() - Constructor for class net.shibboleth.idp.authn.impl.ExternalAuthenticationImpl: Constructor.
ExternalAuthenticationImpl(boolean) - Constructor for class net.shibboleth.idp.authn.impl.ExternalAuthenticationImpl: Constructor.
extractCredentials(HttpServletRequest) - Method in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth: Gets the encoded credentials passed in via the HttpHeaders.AUTHORIZATION header.
ExtractDiscoveryResponse - Class in net.shibboleth.idp.authn.proxy.impl: An action that extracts a discovery service result and copies it to the AuthenticationContext.
ExtractDiscoveryResponse() - Constructor for class net.shibboleth.idp.authn.proxy.impl.ExtractDiscoveryResponse
ExtractDuoAuthenticationFromHeaders - Class in net.shibboleth.idp.authn.duo.impl: An action that extracts the Duo factor and device or passcode from HTTP request headers into a DuoAuthenticationContext, and attaches it to the AuthenticationContext.
ExtractDuoAuthenticationFromHeaders() - Constructor for class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Constructor.
extractHeaders(DuoAuthenticationContext) - Method in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Extracts the Duo API arguments passed in via the request headers.
ExtractKerberosTicketFromWSSToken - Class in net.shibboleth.idp.authn.impl: TODO.
ExtractKerberosTicketFromWSSToken() - Constructor for class net.shibboleth.idp.authn.impl.ExtractKerberosTicketFromWSSToken
ExtractRemoteUser - Class in net.shibboleth.idp.authn.impl: An action that extracts an asserted user identity from the incoming request, creates a UsernameContext, and attaches it to the AuthenticationContext.
ExtractRemoteUser() - Constructor for class net.shibboleth.idp.authn.impl.ExtractRemoteUser: Constructor.
ExtractUserAgentAddress - Class in net.shibboleth.idp.authn.impl: An action that extracts the user-agent's IP address from the incoming request, creates a UserAgentContext, and attaches it to the AuthenticationContext.
ExtractUserAgentAddress() - Constructor for class net.shibboleth.idp.authn.impl.ExtractUserAgentAddress
ExtractUserAgentIdentifier - Class in net.shibboleth.idp.authn.impl: An action that extracts the user-agent's identifier from the incoming request, creates a UserAgentContext, and attaches it to the AuthenticationContext.
ExtractUserAgentIdentifier() - Constructor for class net.shibboleth.idp.authn.impl.ExtractUserAgentIdentifier
extractUsernamePassword(Envelope) - Method in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromWSSToken: Extracts a username/password from the inbound message.
ExtractUsernamePasswordFromBasicAuth - Class in net.shibboleth.idp.authn.impl: /** An action that extracts a username and password from the HTTP HttpHeaders.AUTHORIZATION header, creates a UsernamePasswordContext, and attaches it to the AuthenticationContext.
ExtractUsernamePasswordFromBasicAuth() - Constructor for class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth
ExtractUsernamePasswordFromFormRequest - Class in net.shibboleth.idp.authn.impl: An action that extracts a username and password from an HTTP form body or query string, creates a UsernamePasswordContext, and attaches it to the AuthenticationContext.
ExtractUsernamePasswordFromFormRequest() - Constructor for class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromFormRequest: Constructor.
ExtractUsernamePasswordFromWSSToken - Class in net.shibboleth.idp.authn.impl: An authentication stage that extracts a username/password from the WSS Username/Password attached to a SOAP message.
ExtractUsernamePasswordFromWSSToken() - Constructor for class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromWSSToken
ExtractX509CertificateFromRequest - Class in net.shibboleth.idp.authn.impl: An action that extracts an X.509 certificate from the standard servlet request attribute, creates a CertificateContext, and attaches it to the AuthenticationContext.
ExtractX509CertificateFromRequest() - Constructor for class net.shibboleth.idp.authn.impl.ExtractX509CertificateFromRequest

F

factorHeaderName - Variable in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Header name for factor.
favorSSO - Variable in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Whether SSO trumps explicit relying party flow preference.
filterAttributes() - Method in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Check for inbound attributes and apply filtering.
FilterFlowsByForcedAuthn - Class in net.shibboleth.idp.authn.impl: An authentication action that filters out potential authentication flows if the request requires forced authentication or max age behavior and the flows don't support forced authentication.
FilterFlowsByForcedAuthn() - Constructor for class net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn
FilterFlowsByNonBrowserSupport - Class in net.shibboleth.idp.authn.impl: An authentication action that filters out potential authentication flows if the request requires non-browser support and the flows require a browser.
FilterFlowsByNonBrowserSupport() - Constructor for class net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport
FinalizeAuthentication - Class in net.shibboleth.idp.authn.impl: An authentication action that runs after a completed authentication flow (or the reuse of an active result) and transfers information from other contexts into a SubjectContext child of the ProfileRequestContext.
FinalizeAuthentication() - Constructor for class net.shibboleth.idp.authn.impl.FinalizeAuthentication
FinalizeMultiFactorAuthentication - Class in net.shibboleth.idp.authn.impl: An authentication action that completes MFA by producing a final AuthenticationResult out of whatever constituent parts and pieces exist, by means of an overridable function, storing it in the AuthenticationContext and preparing a fresh SubjectCanonicalizationContext to operate on.
FinalizeMultiFactorAuthentication() - Constructor for class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Constructor.
FinalizeMultiFactorAuthentication.DefaultResultMergingStrategy - Class in net.shibboleth.idp.authn.impl: Default merging strategy to combine individual AuthenticationResult objects into a single result.
findMatchingPrincipal(AuthenticationContext, RequestedPrincipalContext) - Method in class net.shibboleth.idp.authn.impl.FinalizeAuthentication: Evaluate request criteria and the AuthenticationResult to locate a Principal in the result that satisfies the request criteria.
findRDN(RDNSequence, String) - Method in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization: Find an RDN with the specified OID.
findValue(IdPAttribute) - Method in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Check for a compatible value in the input attribute.
finishWithError(String, HttpServletRequest, HttpServletResponse, String) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Finish the authentication process with an error.
finishWithException(String, HttpServletRequest, HttpServletResponse, Exception) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Finish the authentication process with an exception.
finishWithSuccess(String, HttpServletRequest, HttpServletResponse, KerberosPrincipal) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Finish the authentication process successfully.
fixedEventLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: Optional lookup strategy for triggering credential validators to return a fixed event for testing.
FLOW_ID_FIELD - Static variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Field name of Flow ID.

G

generateSignedRequestToken(DuoIntegration, String) - Static method in class net.shibboleth.idp.authn.duo.impl.DuoSupport: Created a signed request to Duo for a user.
generatorFactory - Variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: JSON generator factory.
genericSerializer - Variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Generic principal serializer for any unsupported principals.
getAuthenticationFlowDescriptor(String, HttpServletRequest) - Method in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Get the executing AuthenticationFlowDescriptor.
getAuthenticator() - Method in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator: Returns the authenticator.
getCapabilities() - Method in class net.shibboleth.idp.authn.duo.impl.DuoDevice: Get the device capabilities.
getCode() - Method in class net.shibboleth.idp.authn.duo.impl.DuoFailureResponse: Get the failure code.
getContext() - Method in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: Return the GSS security context.
getContextAcceptor() - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOContext: Get the context acceptor for the current request.
getCookieManager() - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Get the CookieManager.
getDevice() - Method in class net.shibboleth.idp.authn.duo.impl.DuoDevice: Get the device identifier.
getDevices() - Method in class net.shibboleth.idp.authn.duo.impl.DuoPreauthResponse: Get the Duo devices.
getEnrollPortalURL() - Method in class net.shibboleth.idp.authn.duo.impl.DuoPreauthResponse: Get the Duo enrollment portal URL.
getFavorSSO() - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Get whether SSO should trump explicit relying party requirements preference.
getGenericPrincipalSerializer() - Method in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Returns the GenericPrincipalSerializer used for any unsupported principals found in the AuthenticationResult.
getJsonArrayBuilder() - Method in class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer: Get a JsonArrayBuilder in a thread-safe manner.
getJsonArrayBuilder() - Method in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Get a JsonArrayBuilder in a thread-safe manner.
getJsonArrayBuilder() - Method in class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer: Get a JsonArrayBuilder in a thread-safe manner.
getJsonArrayBuilder() - Method in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer: Get a JsonArrayBuilder in a thread-safe manner.
getJsonArrayBuilder() - Method in class net.shibboleth.idp.authn.principal.impl.X500PrincipalSerializer: Get a JsonArrayBuilder in a thread-safe manner.
getJsonObjectBuilder() - Method in class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer: Get a JsonObjectBuilder in a thread-safe manner.
getJsonObjectBuilder() - Method in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Get a JsonObjectBuilder in a thread-safe manner.
getJsonObjectBuilder() - Method in class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer: Get a JsonObjectBuilder in a thread-safe manner.
getJsonObjectBuilder() - Method in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer: Get a JsonObjectBuilder in a thread-safe manner.
getJsonObjectBuilder() - Method in class net.shibboleth.idp.authn.principal.impl.X500PrincipalSerializer: Get a JsonObjectBuilder in a thread-safe manner.
getKerberosSettings() - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOContext: Get the Kerberos settings.
getKeytab() - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosRealmSettings: Get the keytab.
getLockoutManager(RequestContext) - Method in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation: Helper method to get the manager bean to operate on.
getLoginConfigParameters() - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Get the type-specific parameters of the JAAS Configuration to use.
getLoginConfigType() - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Get the type of JAAS Configuration to use.
getLoginModuleClassName() - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosSettings: Return name of the JAAS LoginModule to use to acquire Kerberos credentials.
getMatchingPrincipal() - Method in class net.shibboleth.idp.authn.principal.impl.ExactPrincipalEvalPredicateFactory.ExactMatchPredicate
getMatchingPrincipal() - Method in class net.shibboleth.idp.authn.principal.impl.InexactPrincipalEvalPredicateFactory.InexactMatchPredicate
getMatchingRules() - Method in class net.shibboleth.idp.authn.principal.impl.InexactPrincipalEvalPredicateFactory: Get the matching rules to apply.
getMessage() - Method in class net.shibboleth.idp.authn.duo.impl.DuoFailureResponse: Get the failure message.
getMessageDetail() - Method in class net.shibboleth.idp.authn.duo.impl.DuoFailureResponse: Get the failure message details.
getMetricName() - Method in class net.shibboleth.idp.authn.impl.ValidateCredentials
getName() - Method in class net.shibboleth.idp.authn.duo.impl.DuoDevice: Get the device name.
getNumber() - Method in class net.shibboleth.idp.authn.duo.impl.DuoDevice: Get the device number.
getPassword() - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosRealmSettings: Get the password.
getPredicate(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.ExactPrincipalEvalPredicateFactory
getPredicate(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.InexactPrincipalEvalPredicateFactory
getPrincipal(AuthenticationFlowDescriptor, String) - Method in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Locate a custom Principal matching a string, supported by the flow descriptor.
getPrincipalPredicateFactoryEvalRegistry() - Method in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: Get the registry of predicate factories for custom principal evaluation.
getRealms() - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosSettings: Get list of realms.
getRefreshKrb5Config() - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosSettings: Return whether to refresh the Kerberos configuration before running.
getResponse() - Method in class net.shibboleth.idp.authn.duo.impl.DuoResponseWrapper: Get the inner response.
getResult() - Method in class net.shibboleth.idp.authn.duo.impl.DuoAuthAPIResponse: Get the Duo result string.
getReturnAttributes() - Method in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator: Returns the return attributes.
getServerCredential(Subject) - Method in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: Create the credential for the GSS-API.
getServicePrincipal() - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosRealmSettings: Get the service principal name.
getSPNEGOContext(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Navigate to the SPNEGOContext in the context tree.
getStat() - Method in class net.shibboleth.idp.authn.duo.impl.DuoFailureResponse: Get the failure status.
getStat() - Method in class net.shibboleth.idp.authn.duo.impl.DuoResponseWrapper: Get the response status.
getStatus() - Method in class net.shibboleth.idp.authn.duo.impl.DuoAuthResponse: Get the Duo status string.
getStatusMessage() - Method in class net.shibboleth.idp.authn.duo.impl.DuoAuthAPIResponse: Get the Duo status message.
getTrustedDeviceToken() - Method in class net.shibboleth.idp.authn.duo.impl.DuoAuthResponse: Get the Duo trusted device token string.
getType() - Method in class net.shibboleth.idp.authn.duo.impl.DuoDevice: Get the device type.
getUnattemptedInactiveFlow(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Return the first inactive potential flow not found in the intermediate flows collection that applies to the request.
getUsernameToken(Envelope) - Method in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromWSSToken: Extracts the UsernameToken from the given Envelope.
GSSAcceptorLoginModule - Class in net.shibboleth.idp.authn.spnego.impl: Kerberos login utility for the context acceptor, encapsulates a number of special options used to create a security context for the GSS acceptor, usually based on a keytab file.
GSSAcceptorLoginModule(KerberosRealmSettings, boolean, String) - Constructor for class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule: Constructor.
GSSAcceptorLoginModule.UsernamePasswordCallbackHandler - Class in net.shibboleth.idp.authn.spnego.impl: A JAAS username and password CallbackHandler.
GSSContextAcceptor - Class in net.shibboleth.idp.authn.spnego.impl: Helper class that manages context establishment for the SPNEGO GSS-API mechanism.
GSSContextAcceptor(KerberosSettings) - Constructor for class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: Constructor.

H

handle(Callback[]) - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator.SimpleCallbackHandler: Handle a callback.
handle(Callback[]) - Method in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator.SimpleCallbackHandler: Handle a callback.
handle(Callback[]) - Method in class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule.UsernamePasswordCallbackHandler
handleError(String, HttpServletRequest, HttpServletResponse) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Respond to a user signaling that an error occurred.
handleError(ProfileRequestContext, AuthenticationContext, Exception, String) - Method in class net.shibboleth.idp.authn.impl.ValidateCredentials
handleError(ProfileRequestContext, AuthenticationContext, String, String) - Method in class net.shibboleth.idp.authn.impl.ValidateCredentials
handleWarning(ProfileRequestContext, AuthenticationContext, String, String) - Method in class net.shibboleth.idp.authn.impl.ValidateCredentials
HTPasswdCredentialValidator - Class in net.shibboleth.idp.authn.impl: A password validator that authenticates against Apache htpasswd files.
HTPasswdCredentialValidator() - Constructor for class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator: Constructor.
htPasswdResource - Variable in class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator: Source of information.
httpClient - Variable in class net.shibboleth.idp.authn.duo.impl.AbstractDuoAuthenticator: HttpClient for contacting Duo.
httpClientSecurityParameters - Variable in class net.shibboleth.idp.authn.duo.impl.AbstractDuoAuthenticator: HTTP client security parameters.
httpRequest - Variable in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager.UsernameIPLockoutKeyStrategy: Servlet request to pull client ip from.

I

IdPAttributePrincipalSerializer - Class in net.shibboleth.idp.authn.principal.impl: Principal serializer for IdPAttributePrincipal.
IdPAttributePrincipalSerializer() - Constructor for class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Constructor.
inboundMessage - Variable in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromWSSToken: Inbound message to operate on.
increment(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager
InexactMatchPredicate(Principal) - Constructor for class net.shibboleth.idp.authn.principal.impl.InexactPrincipalEvalPredicateFactory.InexactMatchPredicate: Constructor.
InexactPrincipalEvalPredicateFactory - Class in net.shibboleth.idp.authn.principal.impl: PrincipalEvalPredicateFactory that implements inexact matching of principals, based on an arbitrary set of "matches" configured at runtime.
InexactPrincipalEvalPredicateFactory() - Constructor for class net.shibboleth.idp.authn.principal.impl.InexactPrincipalEvalPredicateFactory: Constructor.
InexactPrincipalEvalPredicateFactory.InexactMatchPredicate - Class in net.shibboleth.idp.authn.principal.impl: Implementation of an inexact-matching predicate.
init(FilterConfig) - Method in class net.shibboleth.idp.authn.impl.X509ProxyFilter
init(ServletConfig) - Method in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet
init(ServletConfig) - Method in class net.shibboleth.idp.authn.impl.X509AuthServlet
InitializeProxyProfileRequestContext - Class in net.shibboleth.idp.authn.proxy.impl: Action that creates a new ProfileRequestContext via a creation strategy, and sets the profile and logging IDs, if provided.
InitializeProxyProfileRequestContext() - Constructor for class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext: Constructor.
InitializeProxyProfileRequestContext.DefaultPRCCreationStrategy - Class in net.shibboleth.idp.authn.proxy.impl: Default strategy that nests the new PRC below the AC.
InitializeRequestedPrincipalContext - Class in net.shibboleth.idp.authn.impl: An action that creates an RequestedPrincipalContext and attaches it to the current AuthenticationContext, if the profile request context contains a RelyingPartyContext with an AuthenticationProfileConfiguration containing one or more default authentication methods.
InitializeRequestedPrincipalContext() - Constructor for class net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext: Constructor.
isAuthenticated(String) - Method in class net.shibboleth.idp.authn.impl.ValidateRemoteUser: Check whitelist, blacklist, and matching expression for acceptance.
isAuthenticated(InetAddress, Collection<IPRange>) - Method in class net.shibboleth.idp.authn.impl.ValidateUserAgentAddress: Checks whether the given IP address meets a set of IP range requirements.
isAutoAuthenticationSupported() - Method in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Get whether "auto" is the default setting.
isClientAddressTrusted() - Method in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Get whether the client address should be trusted for use in API calls.
isDisabled() - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Checks whether auto-login is disabled.
isEnabled() - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Checks whether auto-login is enabled.
isNTLMMechanism(byte[]) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Check if the GSS-API data represents an NTLM mechanism request.

J

JAASCredentialValidator - Class in net.shibboleth.idp.authn.impl: A password validator that authenticates against JAAS.
JAASCredentialValidator() - Constructor for class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Constructor.
JAASCredentialValidator.SimpleCallbackHandler - Class in net.shibboleth.idp.authn.impl: A callback handler that provides name and password data to a JAAS login process, along with other miscellany.
JSON_PATTERN - Static variable in class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer: Pattern used to determine if input is supported.
JSON_PATTERN - Static variable in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Pattern used to determine if input is supported.
JSON_PATTERN - Static variable in class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer: Pattern used to determine if input is supported.
JSON_PATTERN - Static variable in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer: Pattern used to determine if input is supported.
JSON_PATTERN - Static variable in class net.shibboleth.idp.authn.principal.impl.X500PrincipalSerializer: Pattern used to determine if input is supported.

K

KerberosCredentialValidator - Class in net.shibboleth.idp.authn.impl: A password validator that authenticates against Kerberos natively, with optional service ticket verification.
KerberosCredentialValidator() - Constructor for class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Constructor.
KerberosCredentialValidator.SimpleCallbackHandler - Class in net.shibboleth.idp.authn.impl: A callback handler that provides static name and password data to a JAAS login process.
KerberosRealmSettings - Class in net.shibboleth.idp.authn.spnego.impl: Kerberos realm settings for the SPNEGO authentication flow.
KerberosRealmSettings() - Constructor for class net.shibboleth.idp.authn.spnego.impl.KerberosRealmSettings
kerberosSettings - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: The Kerberos settings.
kerberosSettings - Variable in class net.shibboleth.idp.authn.spnego.impl.SPNEGOContext: The Kerberos settings.
KerberosSettings - Class in net.shibboleth.idp.authn.spnego.impl: Kerberos settings for the SPNEGO authentication flow.
KerberosSettings() - Constructor for class net.shibboleth.idp.authn.spnego.impl.KerberosSettings: Constructor.
key - Variable in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation: Account key to operate on.
KEY - Static variable in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation: Flow variable indicating ID of account key.
keystore - Variable in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Keystore resource.
keystoreAliases - Variable in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Keystore aliases to use.
keystorePassword - Variable in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Password for keystore.
keyStoreReader - Variable in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Handles loading keystores.
KeystoreResourceCredentialConfig - Class in net.shibboleth.idp.authn.impl: Implementation of CredentialConfig that loads keystore and truststore data using a Resource.
KeystoreResourceCredentialConfig() - Constructor for class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig
keystoreType - Variable in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Type of keystore.
keytab - Variable in class net.shibboleth.idp.authn.spnego.impl.KerberosRealmSettings: The keytab to use (keytab and password are mutually exclusive).
keytabPath - Variable in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Path to keytab for service principal.
krbLoginModule - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: The Kerberos login module and server login state.
krbModule - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule: The JAAS login module to use.

L

lastModified - Variable in class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator: File timestamp.
LDAPCredentialValidator - Class in net.shibboleth.idp.authn.impl: A password validator that authenticates against LDAP natively.
LDAPCredentialValidator() - Constructor for class net.shibboleth.idp.authn.impl.LDAPCredentialValidator
LDAPPrincipalSerializer - Class in net.shibboleth.idp.authn.principal.impl: Principal serializer for LdapPrincipal.
LDAPPrincipalSerializer() - Constructor for class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer: Constructor.
LEAF_HEADER_PARAM - Static variable in class net.shibboleth.idp.authn.impl.X509ProxyFilter: Init parameter controlling what headers to check for the leaf certificate.
leafHeader - Variable in class net.shibboleth.idp.authn.impl.X509ProxyFilter: Name of header containing end-entity certificate.
lockoutDurationLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Lookup function for duration of lockout.
lockoutKeyStrategy - Variable in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Lookup function to produce account lockout keys.
lockoutManager - Variable in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation: AccountLockoutManager to operate on.
lockoutManager - Variable in class net.shibboleth.idp.authn.impl.ValidateCredentials: Optional lockout management interface.
log - Variable in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Class logger.
log - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Class logger.
log - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ExtractRemoteUser: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ExtractUserAgentAddress: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ExtractUserAgentIdentifier: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromFormRequest: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromWSSToken: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ExtractX509CertificateFromRequest: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.FinalizeAuthentication: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.PopulateSubjectCanonicalizationContext: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.PreserveAuthenticationFlowState: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.RelyingPartyMapJAASLoginConfigStrategy: Logger.
log - Variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.SelectSubjectCanonicalizationFlow: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.SimpleSubjectCanonicalization: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ValidateCredentials: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ValidateFunctionResult: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ValidateRemoteUser: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.ValidateUserAgentAddress: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.X509AuthServlet: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.X509CertificateCredentialValidator: Class logger.
log - Variable in class net.shibboleth.idp.authn.impl.X509ProxyFilter: Class logger.
log - Variable in class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer: Class logger.
log - Variable in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Class logger.
log - Variable in class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer: Class logger.
log - Variable in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer: Class logger.
log - Variable in class net.shibboleth.idp.authn.principal.impl.X500PrincipalSerializer: Class logger.
log - Variable in class net.shibboleth.idp.authn.proxy.impl.DiscoveryProfileRequestFunction: Class logger.
log - Variable in class net.shibboleth.idp.authn.proxy.impl.ExtractDiscoveryResponse: Class logger.
log - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule: Class logger.
log - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: Class logger.
log - Variable in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Class logger.
log - Variable in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Class logger.
loggingId - Variable in class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext: The logging ID to initialize the context to.
login() - Method in class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule: Execute the login and return a Subject for the acceptor identity.
loginConfigNames - Variable in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Holder for simple configurations defined by name.
loginConfigParameters - Variable in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Type-specific configuration parameters.
loginConfigResource - Variable in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: JAAS configuration resource.
loginConfigStrategy - Variable in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Strategy function to dynamically derive the login config(s) to use.
loginConfigType - Variable in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Type of JAAS Configuration to instantiate.
loginConfigurations - Variable in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Application name(s) in JAAS configuration to use.
loginModuleClassName - Variable in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Class name of JAAS LoginModule to acquire Kerberos credentials.
loginModuleClassName - Variable in class net.shibboleth.idp.authn.spnego.impl.KerberosSettings: Class name of JAAS LoginModule to acquire Kerberos credentials.
logout() - Method in class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule: Perform a JAAS logout.
logout() - Method in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: Dispose of the context and the server's credentials, and do a logout of the Kerberos login module.

M

MANAGER_ID - Static variable in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation: Flow variable indicating ID of manager bean to access.
managerId - Variable in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation: Manager ID to operate on.
mappings - Variable in class net.shibboleth.idp.authn.impl.ValidateUserAgentAddress: Map of IP ranges to principal names.
matchExpression - Variable in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: A regular expression to apply for acceptance testing.
matchExpression - Variable in class net.shibboleth.idp.authn.impl.ValidateRemoteUser: A regular expression to apply for acceptance testing.
matchingRules - Variable in class net.shibboleth.idp.authn.principal.impl.InexactPrincipalEvalPredicateFactory: Rules for matching.
maxAttemptsLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Lookup function for maximum failed attempts within window.
message - Variable in class net.shibboleth.idp.authn.duo.impl.DuoFailureResponse: the failure message.
messageDetail - Variable in class net.shibboleth.idp.authn.duo.impl.DuoFailureResponse: the failure message detail.
metadataResolver - Variable in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Optional supplemental metadata source for filtering.
mfaContext - Variable in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: A subordinate MultiFactorAuthenticationContext, if any.
mfaContext - Variable in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication: A subordinate MultiFactorAuthenticationContext, if any.
multiFactorContextCreationStrategy - Variable in class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext: Lookup/creation function for the context to populate.
multiFactorContextLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Lookup function for the context to evaluate.
multiFactorContextLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication: Lookup function for the context to evaluate.

N

name - Variable in class net.shibboleth.idp.authn.duo.impl.DuoDevice: the Duo device name.
name - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule.UsernamePasswordCallbackHandler: The name to use.
net.shibboleth.idp.authn.audit.impl - package net.shibboleth.idp.authn.audit.impl: Audit implementation classes.
net.shibboleth.idp.authn.duo.impl - package net.shibboleth.idp.authn.duo.impl: Implementation of Duo authentication.
net.shibboleth.idp.authn.impl - package net.shibboleth.idp.authn.impl: Implementation of various authentication actions.
net.shibboleth.idp.authn.principal.impl - package net.shibboleth.idp.authn.principal.impl: Implementation of functionality related to Java Principals.
net.shibboleth.idp.authn.proxy.impl - package net.shibboleth.idp.authn.proxy.impl: Classes implementing proxied authentication flows.
net.shibboleth.idp.authn.spnego.impl - package net.shibboleth.idp.authn.spnego.impl: Implementation of SPNEGO authentication flow.
noProxying - Variable in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Tracks a proxy count of zero for the request.
NTLM_UNSUPPORTED - Static variable in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Event ID indicating that NTLM was attempted by the client.
number - Variable in class net.shibboleth.idp.authn.duo.impl.DuoDevice: the Duo device number.

O

objectBuilderFactory - Variable in class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer: JSON object bulder factory.
objectBuilderFactory - Variable in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: JSON object bulder factory.
objectBuilderFactory - Variable in class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer: JSON object bulder factory.
objectBuilderFactory - Variable in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer: JSON object bulder factory.
objectBuilderFactory - Variable in class net.shibboleth.idp.authn.principal.impl.X500PrincipalSerializer: JSON object bulder factory.
objectIds - Variable in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization: OIDs to search for.
objectMapper - Variable in class net.shibboleth.idp.authn.duo.impl.AbstractDuoAuthenticator: JSON object mapper.
objectMapper - Variable in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation: JSON object mapper.
options - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule: Options for the JAAS login module.

P

paramEscaper - Variable in class net.shibboleth.idp.authn.duo.impl.DuoAuthAuthenticator: pushinfo escaper.
parameterNames - Variable in class net.shibboleth.idp.authn.impl.PreserveAuthenticationFlowState: Parameter names to look for.
passcodeHeaderName - Variable in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Header name for passcode.
PASSTHROUGH_PARAM - Static variable in class net.shibboleth.idp.authn.impl.X509AuthServlet: Parameter/cookie for bypassing prompt page.
password - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule.UsernamePasswordCallbackHandler: The password to use.
password - Variable in class net.shibboleth.idp.authn.spnego.impl.KerberosRealmSettings: The password to use (keytab and password are mutually exclusive).
passwordFieldName - Variable in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromFormRequest: Parameter name for password.
passwordLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator: Optional strategy for obtaining/transforming the password.
PopulateAuthenticationContext - Class in net.shibboleth.idp.authn.impl: An action that populates an AuthenticationContext with the AuthenticationFlowDescriptor objects configured into the IdP, potential flows filtered by flow IDs from a lookup function.
PopulateAuthenticationContext() - Constructor for class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: Constructor.
populateFilterContext(AttributeFilterContext) - Method in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Fill in the filter context data.
PopulateMultiFactorAuthenticationContext - Class in net.shibboleth.idp.authn.impl: An action that creates and populates a MultiFactorAuthenticationContext with the set of transition rules to use for coordinating activity, the executing AuthenticationFlowDescriptor and with any active "factors" found, if an active result from the MFA flow is present in the AuthenticationContext.
PopulateMultiFactorAuthenticationContext() - Constructor for class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext: Constructor.
PopulateMultiFactorAuthenticationContext.DefaultResultLookupStrategy - Class in net.shibboleth.idp.authn.impl: Default strategy function to extract embedded AuthenticationResults from inside the AuthenticationResultPrincipal collection of an active AuthenticationResult of the currently executing flow.
populateSubject(X509Certificate) - Method in class net.shibboleth.idp.authn.impl.X509CertificateCredentialValidator: Builds a subject with "standard" content from the validation.
populateSubject(Subject) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI
populateSubject(Subject) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse
populateSubject(Subject) - Method in class net.shibboleth.idp.authn.impl.ValidateCredentials
populateSubject(Subject) - Method in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication
populateSubject(Subject) - Method in class net.shibboleth.idp.authn.impl.ValidateFunctionResult
populateSubject(Subject) - Method in class net.shibboleth.idp.authn.impl.ValidateRemoteUser
populateSubject(Subject) - Method in class net.shibboleth.idp.authn.impl.ValidateUserAgentAddress
populateSubject(Subject, Subject, UsernamePasswordContext) - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Finish decorating the result.
populateSubject(Subject, UsernamePasswordContext) - Method in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator
populateSubject(UsernamePasswordContext, AuthenticationResponse) - Method in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator: Builds a new Subject populated with the necessary data.
PopulateSubjectCanonicalizationContext - Class in net.shibboleth.idp.authn.impl: An action that populates a SubjectCanonicalizationContext with the SubjectCanonicalizationFlowDescriptor objects configured into the IdP.
PopulateSubjectCanonicalizationContext() - Constructor for class net.shibboleth.idp.authn.impl.PopulateSubjectCanonicalizationContext: Constructor.
potentialFlowsLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: Lookup function for the flows to make available for possible use.
preauthAuthenticator - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Implementation of Duo AuthApi /preauth enpoint.
preferredPrincipalCtx - Variable in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: A subordinate PreferredPrincipalContext, if any.
PreserveAuthenticationFlowState - Class in net.shibboleth.idp.authn.impl: An action that extracts configured parameters from a servlet request and populates AuthenticationContext.getAuthenticationStateMap() with the data.
PreserveAuthenticationFlowState() - Constructor for class net.shibboleth.idp.authn.impl.PreserveAuthenticationFlowState: Constructor.
preserveTicket - Variable in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Save the TGT in the resulting Subject?
previousEvent - Variable in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication: Holds the last event processed by the system.
principal - Variable in class net.shibboleth.idp.authn.principal.impl.ExactPrincipalEvalPredicateFactory.ExactMatchPredicate: The principal object to compare against.
principal - Variable in class net.shibboleth.idp.authn.principal.impl.InexactPrincipalEvalPredicateFactory.InexactMatchPredicate: The principal object to compare against.
PRINCIPAL_ARRAY_FIELD - Static variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Field name of principal array.
PRINCIPAL_ENTRY_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Field name of principal entry.
PRINCIPAL_ENTRY_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer: Field name of principal entry.
PRINCIPAL_NAME_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer: Field name of principal name.
PRINCIPAL_NAME_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Field name of principal name.
PRINCIPAL_NAME_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer: Field name of principal name.
principalName - Variable in class net.shibboleth.idp.authn.impl.ValidateUserAgentAddress: The principal name established by the action, if any.
principalSerializers - Variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Principal serializers.
principalServiceManager - Variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Manager for principal services.
PRIV_CREDS_ARRAY_FIELD - Static variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Field name of private credentials array.
processActiveResult(ProfileRequestContext, AuthenticationContext, Collection<AuthenticationResult>, AuthenticationResult) - Method in class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext.DefaultResultLookupStrategy: Check an active result for possible inclusion in the returned collection.
profileId - Variable in class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext: The profile ID to initialize the context to.
profileRequestContextCreationStrategy - Variable in class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext: Context creation strategy.
PROXY_AUD_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer: Field name of proxy audiences.
PROXY_AUTH_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer: Field name of authority content.
PROXY_COUNT_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer: Field name of proxy count.
ProxyAuthenticationPrincipalSerializer - Class in net.shibboleth.idp.authn.principal.impl: Principal serializer for ProxyAuthenticationPrincipal.
ProxyAuthenticationPrincipalSerializer() - Constructor for class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer: Constructor.
PUB_CREDS_ARRAY_FIELD - Static variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Field name of public credentials array.
pushInfoLookupStrategy - Variable in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Strategy function for populating pushinfo AuthAPI parameter.

R

readCredentials(InputStream) - Method in class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator: Reads the credentials from stream.
readerFactory - Variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: JSON reader factory.
realm - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule: The realm settings.
realmSettings - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: The realm in use.
realmSettings - Variable in class net.shibboleth.idp.authn.spnego.impl.KerberosSettings: List of realms (KerberosRealmSettings objects).
recordSuccess(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.ValidateCredentials: Record a successful authentication attempt against the configured counter, optionally clearing account lockout state.
refreshCredentials() - Method in class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator: Check for file refresh.
refreshKrb5Config - Variable in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Refresh the Kerberos config before running?
refreshKrb5Config - Variable in class net.shibboleth.idp.authn.spnego.impl.KerberosSettings: Refresh the Kerberos config before running?
relyingPartyContextLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.ExternalAuthenticationImpl: Lookup function for relying party context.
relyingPartyContextLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext: Strategy used to locate the RelyingPartyContext associated with a given ProfileRequestContext.
relyingPartyContextLookupStrategy - Variable in class net.shibboleth.idp.authn.proxy.impl.DiscoveryProfileRequestFunction: Lookup strategy for locating RelyingPartyContext.
relyingPartyMap - Variable in class net.shibboleth.idp.authn.impl.RelyingPartyMapJAASLoginConfigStrategy: Map holding the relying party to JAAS config name mappings.
RelyingPartyMapJAASLoginConfigStrategy - Class in net.shibboleth.idp.authn.impl: An implementation of the loginConfigStrategy for JAASCredentialValidator which uses a supplied map to resolve the JAAS config to use.
RelyingPartyMapJAASLoginConfigStrategy(Map<String, String>) - Constructor for class net.shibboleth.idp.authn.impl.RelyingPartyMapJAASLoginConfigStrategy: Constructor.
RemoteUserAuthServlet - Class in net.shibboleth.idp.authn.impl: Extracts authentication information from the request and returns it via the IdP's external authentication interface.
RemoteUserAuthServlet() - Constructor for class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Constructor.
replaceExistingContext - Variable in class net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext: Whether to replace an existing subcontext, if any.
replyUnauthorizedNegotiate(ProfileRequestContext, HttpServletRequest, HttpServletResponse) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Send back an empty Negotiate challenge.
replyUnauthorizedNegotiate(ProfileRequestContext, HttpServletRequest, HttpServletResponse, String) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Send back a Negotiate challenge token.
requestedPrincipalCtx - Variable in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: A subordinate RequestedPrincipalContext, if any.
requesterLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Function used to obtain the requester ID.
requireAll - Variable in class net.shibboleth.idp.authn.impl.ValidateCredentials: Whether all validators must succeed.
resolveFromSubject - Variable in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Whether to also check the original Subject for IdPAttributePrincipals.
responderLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Function used to obtain the responder ID.
response - Variable in class net.shibboleth.idp.authn.duo.impl.DuoResponseWrapper: the inner response.
RESPONSE_PARAM - Static variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Signed response parameter name.
result - Variable in class net.shibboleth.idp.authn.duo.impl.DuoAuthAPIResponse: the result.
result - Variable in class net.shibboleth.idp.authn.impl.ValidateFunctionResult: Authentication result.
resultCachingPredicate - Variable in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Predicate to apply when setting AuthenticationResult cacheability.
resultLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.ValidateFunctionResult: Function to evaluate.
resultMergingStrategy - Variable in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Strategy function to produce a final, merged result.
results - Variable in class net.shibboleth.idp.authn.impl.ValidateCredentials: Results from successful validators.
resultSerializer - Variable in class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer: Circular reference back to the parent serializer.
returnAttributes - Variable in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator: Attributes to return from authentication.
RFC_2822_DATE_FORMAT - Static variable in class net.shibboleth.idp.authn.duo.impl.DuoSupport: RFC 2822 formatter for date/time.

S

SAVECERT_ENGINE_PARAM - Static variable in class net.shibboleth.idp.authn.impl.X509AuthServlet: Init parameter controlling certificate preservation.
saveCertificateToCredentialSet - Variable in class net.shibboleth.idp.authn.impl.X509AuthServlet: Whether to save the certificate to the Java Subject's public credentials.
saveCertificateToCredentialSet - Variable in class net.shibboleth.idp.authn.impl.X509CertificateCredentialValidator: Whether to save the certificate in the Java Subject's public credentials.
SCOPED_VALUE_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Field name of type code of an ScopedStringAttributeValue.
selectActiveResult(ProfileRequestContext, AuthenticationContext, AuthenticationResult) - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Selects an active result and completes processing.
SelectAuthenticationFlow - Class in net.shibboleth.idp.authn.impl: An authentication action that selects an authentication flow to invoke, or re-uses an existing result for SSO.
SelectAuthenticationFlow() - Constructor for class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow
selectInactiveFlow(ProfileRequestContext, AuthenticationContext, AuthenticationFlowDescriptor) - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Selects an inactive flow and completes processing.
selectRequestedFlow(ProfileRequestContext, AuthenticationContext, Map<String, AuthenticationResult>) - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Selects a flow or an active result in the presence of specific requested Principals and completes processing.
selectRequestedInactiveFlow(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Selects an inactive flow in the presence of specific requested Principals, and completes processing.
SelectSubjectCanonicalizationFlow - Class in net.shibboleth.idp.authn.impl: A canonicalization action that selects a canonicalization flow to invoke.
SelectSubjectCanonicalizationFlow() - Constructor for class net.shibboleth.idp.authn.impl.SelectSubjectCanonicalizationFlow
selectUnattemptedFlow(ProfileRequestContext, SubjectCanonicalizationContext) - Method in class net.shibboleth.idp.authn.impl.SelectSubjectCanonicalizationFlow: Select the first potential flow not found in the intermediate flows collection, and that is applicable to the context.
sendError(int, String, String) - Method in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation: Output an error object.
serialize(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer
serialize(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer
serialize(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer
serialize(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer
serialize(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.X500PrincipalSerializer
serialize(AuthenticationResult) - Method in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer
serializePrincipal(JsonGenerator, Principal) - Method in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Attempt to serialize a principal with the registered and default serializers.
serializeValue(IdPAttributeValue) - Method in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Serialize an attribute value and produce a JsonObject.
serialVersionUID - Static variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Serial UID.
serialVersionUID - Static variable in class net.shibboleth.idp.authn.impl.X509AuthServlet: Serial UUID.
serverCreds - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: Server credentials used during context establishment.
serverOptions - Variable in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: JAAS options for server login.
service(HttpServletRequest, HttpServletResponse) - Method in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet
service(HttpServletRequest, HttpServletResponse) - Method in class net.shibboleth.idp.authn.impl.X509AuthServlet
servicePrincipal - Variable in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Service principal to acquire a ticket for to verify KDC.
servicePrincipal - Variable in class net.shibboleth.idp.authn.spnego.impl.KerberosRealmSettings: The service's principal.
setActiveFlowsLookupStrategy(Function<ProfileRequestContext, Collection<String>>) - Method in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: Set the lookup strategy to use for the authentication flows to activate.
setActiveResultLookupStrategy(Function<ProfileRequestContext, Collection<AuthenticationResult>>) - Method in class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext: Set the lookup strategy for any active "factors" that may be reusable.
setAllowedUsernames(Collection<String>) - Method in class net.shibboleth.idp.authn.impl.ValidateRemoteUser: Set the allowed usernames.
setAttributeContextLookupStrategy(Function<ProfileRequestContext, AttributeContext>) - Method in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Set the lookup strategy for the AttributeContext to read from.
setAttributeSourceIds(List<String>) - Method in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Set the attribute IDs to read from in order of preference.
setAuthAuthenticator(DuoAuthAuthenticator) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Set the DuoAuthAuthenticator.
setAuthenticationCertificate(Resource) - Method in class net.shibboleth.idp.authn.impl.X509ResourceCredentialConfig: Set the authentication certificate resource.
setAuthenticationKey(Resource) - Method in class net.shibboleth.idp.authn.impl.X509ResourceCredentialConfig: Set the authentication key resource.
setAuthenticationKeyPassword(String) - Method in class net.shibboleth.idp.authn.impl.X509ResourceCredentialConfig: Set the authentication key password.
setAuthenticator(Authenticator) - Method in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator: Sets the authenticator.
setAuthnAuthorityHeader(String) - Method in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Set the name of a request header to check for authenticating authority strings.
setAuthnMethodHeader(String) - Method in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Set the name of a request header to check for authentication method strings.
setAutoAuthenticationSupported(boolean) - Method in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Set whether "auto" is the default setting.
setAvailableFlows(Collection<AuthenticationFlowDescriptor>) - Method in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: Set the flows known to the system.
setAvailableFlows(Collection<SubjectCanonicalizationFlowDescriptor>) - Method in class net.shibboleth.idp.authn.impl.PopulateSubjectCanonicalizationContext: Set the flows available for possible use.
setBrowserProfile(boolean) - Method in class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext: Set whether the request is browser-based, defaults to false.
setCertificateContextLookupStrategy(Function<AuthenticationContext, CertificateContext>) - Method in class net.shibboleth.idp.authn.impl.X509CertificateCredentialValidator: Set the lookup strategy to locate the UsernamePasswordContext.
setCheckAttributes(Collection<String>) - Method in class net.shibboleth.idp.authn.impl.ExtractRemoteUser: Set the list of request attributes to check for an identity.
setCheckAttributes(Collection<String>) - Method in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Set the list of request attributes to check for an identity.
setCheckHeaders(Collection<String>) - Method in class net.shibboleth.idp.authn.impl.ExtractRemoteUser: Set the list of request headers to check for an identity.
setCheckHeaders(Collection<String>) - Method in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Set the list of request headers to check for an identity.
setCheckRemoteUser(boolean) - Method in class net.shibboleth.idp.authn.impl.ExtractRemoteUser: Set whether to check REMOTE_USER for an identity.
setCheckRemoteUser(boolean) - Method in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Set whether to check REMOTE_USER for an identity.
setClientAdddressTrusted(boolean) - Method in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Set whether the client address should be trusted for use in API calls.
setContextAcceptor(GSSContextAcceptor) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOContext: Set the context acceptor for the current request.
setCookieManager(CookieManager) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Set the CookieManager to use.
setCookieName(String) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Set the auto-login cookie name.
setCounterInterval(Duration) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Set interval after which counter is reset.
setCounterIntervalLookupStrategy(Function<ProfileRequestContext, Duration>) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Set lookup function for interval after which counter is reset.
setDefaultConfigName(String) - Method in class net.shibboleth.idp.authn.impl.RelyingPartyMapJAASLoginConfigStrategy: Set the default JAAS config name returned when no specific one is configured for a particular relying party.
setDeniedUsernames(Collection<String>) - Method in class net.shibboleth.idp.authn.impl.ValidateRemoteUser: Set the denied usernames.
setDeviceHeader(String) - Method in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Set the device header name.
setDiscoveryURLLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.idp.authn.proxy.impl.DiscoveryProfileRequestFunction: Set the lookup strategy for the "base" discovery service URL to use.
setDuoIntegration(DuoIntegration) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Set DuoIntegration details to use directly.
setDuoIntegration(DuoIntegration) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Set DuoIntegration details to use directly.
setDuoIntegrationLookupStrategy(Function<ProfileRequestContext, DuoIntegration>) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Set DuoIntegration lookup strategy to use.
setDuoIntegrationLookupStrategy(Function<ProfileRequestContext, DuoIntegration>) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Set DuoIntegration lookup strategy to use.
setEventContextLookupStrategy(Function<ProfileRequestContext, EventContext>) - Method in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication: Set the lookup strategy to use for the current event context.
setExtendLockoutDuration(boolean) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Set whether to extend the lockout duration on attempts during lockout.
setFactorHeader(String) - Method in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Set the factor header name.
setFavorSSO(boolean) - Method in class net.shibboleth.idp.authn.impl.SelectAuthenticationFlow: Set whether SSO should trump explicit relying party requirements preference.
setFixedEventLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: Set optional lookup strategy to return a fixed event to return from credential validation to exercise error and warning logic.
setHttpClient(HttpClient) - Method in class net.shibboleth.idp.authn.duo.impl.AbstractDuoAuthenticator: Set the HttpClient to use for contacting Duo.
setHttpClientSecurityParameters(HttpClientSecurityParameters) - Method in class net.shibboleth.idp.authn.duo.impl.AbstractDuoAuthenticator: Set the optional client security parameters.
setHttpServletRequest(HttpServletRequest) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager.UsernameIPLockoutKeyStrategy: Set the servlet request to read from.
setKerberosSettings(KerberosSettings) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOContext: Set the Kerberos settings.
setKeystore(Resource) - Method in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Set the keystore resource.
setKeystoreAliases(String[]) - Method in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Set the keystore aliases.
setKeystorePassword(String) - Method in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Set the keystore password.
setKeystoreType(String) - Method in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Set the keystore type.
setKeytab(String) - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosRealmSettings: Set the keytab to use.
setKeytabPath(String) - Method in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Provides a keytab for the service principal to use to verify the KDC.
setLockoutDuration(Duration) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Set lockout duration.
setLockoutDurationLookupStrategy(Function<ProfileRequestContext, Duration>) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Set lookup function for lockout duration.
setLockoutKeyStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Set the strategy function to compute the account lockout key.
setLockoutManager(AccountLockoutManager) - Method in class net.shibboleth.idp.authn.impl.ValidateCredentials: Set an account lockout management component.
setLoggingId(String) - Method in class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext: Set the logging ID to populate into the context.
setLoginConfigNames(Collection<String>) - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Set the JAAS application name(s) to use.
setLoginConfigParameters(URI) - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Set a URI to use as a JAAS configuration parameter.
setLoginConfigResource(Resource) - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Set a login configuration resource to use.
setLoginConfigStrategy(Function<ProfileRequestContext, Collection<Pair<String, Subject>>>) - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Set the strategy function to use to obtain the JAAS application configuration(s) to use.
setLoginConfigType(String) - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Set the type of JAAS Configuration to use.
setLoginConfigurations(Collection<Pair<String, Collection<Principal>>>) - Method in class net.shibboleth.idp.authn.impl.JAASCredentialValidator: Set the JAAS application name(s) to use, along with an optional collection of custom principals to apply to the result.
setLoginModuleClassName(String) - Method in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Set the name of the JAAS LoginModule to use to acquire Kerberos credentials.
setLoginModuleClassName(String) - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosSettings: Set the name of the JAAS LoginModule to use to acquire Kerberos credentials.
setMappings(Map<String, Collection<IPRange>>) - Method in class net.shibboleth.idp.authn.impl.ValidateUserAgentAddress: Set the IP range(s) to authenticate as particular principals.
setMatchExpression(Pattern) - Method in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Set a matching expression to apply for username acceptance.
setMatchExpression(Pattern) - Method in class net.shibboleth.idp.authn.impl.ValidateRemoteUser: Set a matching expression to apply for acceptance.
setMatchingRules(Map<String, Collection<String>>) - Method in class net.shibboleth.idp.authn.principal.impl.InexactPrincipalEvalPredicateFactory: Set the matching rules to apply.
setMaxAttempts(int) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Set the maximum failed attempts within window.
setMaxAttemptsLookupStrategy(Function<ProfileRequestContext, Integer>) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Set lookup function for maximum failed attempts within window.
setMetadataResolver(MetadataResolver) - Method in class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Set a metadata source to use during filtering.
setMultiFactorContextCreationStrategy(Function<ProfileRequestContext, MultiFactorAuthenticationContext>) - Method in class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext: Set the lookup/creation strategy to use for the context to populate.
setMultiFactorContextLookupStrategy(Function<ProfileRequestContext, MultiFactorAuthenticationContext>) - Method in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Set the lookup strategy to use for the context to evaluate.
setMultiFactorContextLookupStrategy(Function<ProfileRequestContext, MultiFactorAuthenticationContext>) - Method in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication: Set the lookup strategy to use for the context to evaluate.
setObjectIds(List<String>) - Method in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization: Set the OIDs to search for, in order of preference.
setObjectMapper(ObjectMapper) - Method in class net.shibboleth.idp.authn.duo.impl.AbstractDuoAuthenticator: Set the JSON ObjectMapper.
setObjectMapper(ObjectMapper) - Method in class net.shibboleth.idp.authn.impl.DoLockoutManagerOperation: Set the JSON ObjectMapper to use for serialization.
setParameterNames(Collection<String>) - Method in class net.shibboleth.idp.authn.impl.PreserveAuthenticationFlowState: Set the parameter names to look for.
setPasscodeHeader(String) - Method in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Set the passcode header name.
setPassword(String) - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosRealmSettings: Set the password to use.
setPasswordFieldName(String) - Method in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromFormRequest: Set the password parameter name.
setPasswordLookupStrategy(Function<ProfileRequestContext, char[]>) - Method in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator: Set a strategy function to produce the password to bind with.
setPotentialFlowsLookupStrategy(Function<ProfileRequestContext, Collection<AuthenticationFlowDescriptor>>) - Method in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: Set the lookup strategy for the flows to make available for use (a subset of the available ones).
setPreauthAuthenticator(DuoPreauthAuthenticator) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Set the DuoPreauthAuthenticator.
setPreserveTicket(boolean) - Method in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Set whether to save the TGT in the Subject.
setPrincipalEvalPredicateFactoryRegistry(PrincipalEvalPredicateFactoryRegistry) - Method in class net.shibboleth.idp.authn.impl.PopulateAuthenticationContext: Set the registry of predicate factories for custom principal evaluation.
setProfileId(String) - Method in class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext: Set the profile ID to populate into the context.
setProfileRequestContextCreationStrategy(Function<ProfileRequestContext, ProfileRequestContext>) - Method in class net.shibboleth.idp.authn.proxy.impl.InitializeProxyProfileRequestContext: Set the strategy to use to locate/create the ProfileRequestContext to operate on.
setPushInfoLookupStrategy(Function<ProfileRequestContext, Map<String, String>>) - Method in class net.shibboleth.idp.authn.duo.impl.ExtractDuoAuthenticationFromHeaders: Set lookup strategy for AuthAPI pushinfo parameter.
setRealms(Collection<KerberosRealmSettings>) - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosSettings: Collection of realms (KerberosRealmSettings objects).
setRefreshKrb5Config(boolean) - Method in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Set whether to refresh the Kerberos configuration before running.
setRefreshKrb5Config(boolean) - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosSettings: Set whether to refresh the Kerberos configuration before running.
setRelyingPartyContextLookupStrategy(Function<ProfileRequestContext, RelyingPartyContext>) - Method in class net.shibboleth.idp.authn.impl.ExternalAuthenticationImpl: Set lookup strategy for relying party context.
setRelyingPartyContextLookupStrategy(Function<ProfileRequestContext, RelyingPartyContext>) - Method in class net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext: Set the strategy used to locate the RelyingPartyContext associated with a given ProfileRequestContext.
setRelyingPartyContextLookupStrategy(Function<ProfileRequestContext, RelyingPartyContext>) - Method in class net.shibboleth.idp.authn.proxy.impl.DiscoveryProfileRequestFunction: Set the lookup strategy for the RelyingPartyContext.
setReplaceExistingContext(boolean) - Method in class net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext: Whether any existing RequestedPrincipalContext should be replaced, defaults to "false".
setRequesterLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Set the strategy used to locate the requester ID for canonicalization.
setRequireAll(boolean) - Method in class net.shibboleth.idp.authn.impl.ValidateCredentials: Set whether to execute and require success from all configured validators, or stop at the first successful result.
setResolveFromSubject(boolean) - Method in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Whether to include any IdPAttributePrincipal objects found in the input Subject when searching for a matching attribute ID.
setResource(Resource) - Method in class net.shibboleth.idp.authn.impl.HTPasswdCredentialValidator: Set the resource to use.
setResponderLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Set the strategy used to locate the responder ID for canonicalization.
setResultCachingPredicate(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Set predicate to apply to determine cacheability of AuthenticationResult.
setResultLookupStrategy(Function<ProfileRequestContext, ?>) - Method in class net.shibboleth.idp.authn.impl.ValidateFunctionResult: Set the function to execute to produce the authentication result.
setResultMergingStrategy(Function<ProfileRequestContext, AuthenticationResult>) - Method in class net.shibboleth.idp.authn.impl.FinalizeMultiFactorAuthentication: Set the result merging strategy to use.
setReturnAttributes(String...) - Method in class net.shibboleth.idp.authn.impl.LDAPCredentialValidator: Sets the return attributes.
setSaveCertificateToCredentialSet(boolean) - Method in class net.shibboleth.idp.authn.impl.X509AuthServlet: Set whether to save the certificate in the Java Subject's public credentials.
setSaveCertificateToCredentialSet(boolean) - Method in class net.shibboleth.idp.authn.impl.X509CertificateCredentialValidator: Set whether to save the certificate in the Java Subject's public credentials.
setScopedDelimiter(char) - Method in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Set the delimiter to use for serializing scoped attribute values.
setServicePrincipal(String) - Method in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Set the name of a service principal to use to verify the KDC.
setServicePrincipal(String) - Method in class net.shibboleth.idp.authn.spnego.impl.KerberosRealmSettings: Set the service principal name.
setSSOBypassFieldName(String) - Method in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromFormRequest: Set the SSO bypass parameter name.
setStorageService(StorageService) - Method in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Set the StorageService back-end to use.
setSubjectAltNameTypes(List<Integer>) - Method in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization: Set the subjectAltName types to search for, in order of preference.
setSubjectAttribute(String) - Method in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Set the name of a request attribute to check for a Subject.
setTransitionMapLookupStrategy(Function<ProfileRequestContext, Map<String, MultiFactorAuthenticationTransition>>) - Method in class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext: Set the strategy to lookup the map of transition rules to apply.
setTrustCertificates(Resource) - Method in class net.shibboleth.idp.authn.impl.X509ResourceCredentialConfig: Set the trust certificates resource.
setTrustEngine(TrustEngine<? super X509Credential>) - Method in class net.shibboleth.idp.authn.impl.X509AuthServlet: Set the TrustEngine to use.
setTrustEngine(TrustEngine<? super X509Credential>) - Method in class net.shibboleth.idp.authn.impl.X509CertificateCredentialValidator: Set a TrustEngine to use.
setTruststore(Resource) - Method in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Set the truststore resource.
setTruststoreAliases(String[]) - Method in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Set the truststore aliases.
setTruststorePassword(String) - Method in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Set the truststore password.
setTruststoreType(String) - Method in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Set the truststore type.
setUsernameFieldName(String) - Method in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromFormRequest: Set the username parameter name.
setUsernameLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Set the lookup strategy to use for the username to match against Duo identity.
setUsernameLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Set the lookup strategy to use for the username to match against Duo identity.
setValidateLoginTransitions(boolean) - Method in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication: Set whether to validate transitions to a new login flow by evaluating the request and ensuring options like IsPassive and ForceAuthn are compatible with the flow.
setValidators(List<CredentialValidator>) - Method in class net.shibboleth.idp.authn.impl.ValidateCredentials: Set the list of validators to use.
signedResponse - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Signed response string.
signRequest(RequestBuilder, DuoIntegration) - Static method in class net.shibboleth.idp.authn.duo.impl.DuoSupport: Sign a Duo AuthAPI request.
SimpleCallbackHandler(UsernamePasswordContext) - Constructor for class net.shibboleth.idp.authn.impl.JAASCredentialValidator.SimpleCallbackHandler: Constructor.
SimpleCallbackHandler(UsernamePasswordContext) - Constructor for class net.shibboleth.idp.authn.impl.KerberosCredentialValidator.SimpleCallbackHandler: Constructor.
SimpleSubjectCanonicalization - Class in net.shibboleth.idp.authn.impl: An action that operates on a SubjectCanonicalizationContext child of the current ProfileRequestContext, and transforms the input Subject into a principal name by searching for one and only one UsernamePrincipal custom principal.
SimpleSubjectCanonicalization() - Constructor for class net.shibboleth.idp.authn.impl.SimpleSubjectCanonicalization: Constructor.
SimpleSubjectCanonicalization.ActivationCondition - Class in net.shibboleth.idp.authn.impl: A predicate that determines if this action can run or not.
SPNEGO_NOT_AVAILABLE - Static variable in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Event ID indicating that SPNEGO is not supported by the client or is not available for other reasons.
SPNEGOAuthnController - Class in net.shibboleth.idp.authn.spnego.impl: MVC controller for managing the SPNEGO exchanges implemented as an ExternalAuthentication mechanism.
SPNEGOAuthnController() - Constructor for class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController
SPNEGOAutoLoginManager - Class in net.shibboleth.idp.authn.spnego.impl: Component managing the auto-login state via cookie.
SPNEGOAutoLoginManager() - Constructor for class net.shibboleth.idp.authn.spnego.impl.SPNEGOAutoLoginManager: Constructor.
SPNEGOContext - Class in net.shibboleth.idp.authn.spnego.impl: Context, usually attached to AuthenticationContext, that carries configuration data and request state for SPNEGO authentication.
SPNEGOContext() - Constructor for class net.shibboleth.idp.authn.spnego.impl.SPNEGOContext
spnegoOid - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSContextAcceptor: The OID representing the SPNEGO pseudo-mechanism.
ssoBypassFieldName - Variable in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromFormRequest: Parameter name for SSO bypass.
startSPNEGO(String, HttpServletRequest, HttpServletResponse) - Method in class net.shibboleth.idp.authn.spnego.impl.SPNEGOAuthnController: Handle initial request that starts SPNEGO.
stat - Variable in class net.shibboleth.idp.authn.duo.impl.DuoFailureResponse: the failure status.
stat - Variable in class net.shibboleth.idp.authn.duo.impl.DuoResponseWrapper: the response status.
state - Variable in class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule: Hashtable to hold state of the JAAS login module.
status - Variable in class net.shibboleth.idp.authn.duo.impl.DuoAuthResponse: the status string.
statusMessage - Variable in class net.shibboleth.idp.authn.duo.impl.DuoAuthAPIResponse: the status message.
StorageBackedAccountLockoutManager - Class in net.shibboleth.idp.authn.impl: Implementation of AccountLockoutManager interface that relies on a StorageService to track lockout state.
StorageBackedAccountLockoutManager() - Constructor for class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Constructor.
StorageBackedAccountLockoutManager.UsernameIPLockoutKeyStrategy - Class in net.shibboleth.idp.authn.impl: A function to generate a key for lockout storage.
storageService - Variable in class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager: Backing service.
STRING_VALUE_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer: Field name of type code of an StringAttributeValue.
SUBJECT_ATTRIBUTE_PARAM - Static variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Init parameter identifying an attribute to check for a Subject.
subjectAltNameTypes - Variable in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization: subjectAltName types to search for.
subjectAttribute - Variable in class net.shibboleth.idp.authn.impl.RemoteUserAuthServlet: Request attribute to check for a Subject.
subjectSourcedAttributes - Variable in class net.shibboleth.idp.authn.impl.AttributeSourcedSubjectCanonicalization: Indexed attributes pulled from subject.
supports(String) - Method in class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer
supports(String) - Method in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer
supports(String) - Method in class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer
supports(String) - Method in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer
supports(String) - Method in class net.shibboleth.idp.authn.principal.impl.X500PrincipalSerializer
supports(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.AuthenticationResultPrincipalSerializer
supports(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.IdPAttributePrincipalSerializer
supports(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.LDAPPrincipalSerializer
supports(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.ProxyAuthenticationPrincipalSerializer
supports(Principal) - Method in class net.shibboleth.idp.authn.principal.impl.X500PrincipalSerializer

T

test(PrincipalSupportingComponent) - Method in class net.shibboleth.idp.authn.principal.impl.ExactPrincipalEvalPredicateFactory.ExactMatchPredicate
test(PrincipalSupportingComponent) - Method in class net.shibboleth.idp.authn.principal.impl.InexactPrincipalEvalPredicateFactory.InexactMatchPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.SimpleSubjectCanonicalization.ActivationCondition
test(ProfileRequestContext) - Method in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization.ActivationCondition
theMatch - Variable in class net.shibboleth.idp.authn.principal.impl.InexactPrincipalEvalPredicateFactory.InexactMatchPredicate: The principal object that matched.
transitionMapLookupStrategy - Variable in class net.shibboleth.idp.authn.impl.PopulateMultiFactorAuthenticationContext: Lookup strategy for obtaining the map of transition rules to use.
TransitionMultiFactorAuthentication - Class in net.shibboleth.idp.authn.impl: An authentication action that acts as the driver regulating execution of transitions between MFA stages.
TransitionMultiFactorAuthentication() - Constructor for class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication: Constructor.
TRUST_ENGINE_PARAM - Static variable in class net.shibboleth.idp.authn.impl.X509AuthServlet: Init parameter identifying optional TrustEngine bean name.
trustCertificates - Variable in class net.shibboleth.idp.authn.impl.X509ResourceCredentialConfig: Name of the trust certificates to use for the SSL connection.
trustedDeviceToken - Variable in class net.shibboleth.idp.authn.duo.impl.DuoAuthResponse: the trusted device token string.
trustEngine - Variable in class net.shibboleth.idp.authn.impl.X509AuthServlet: Trust engine.
trustEngine - Variable in class net.shibboleth.idp.authn.impl.X509CertificateCredentialValidator: Optional trust engine to validate certificates against.
truststore - Variable in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Truststore resource.
truststoreAliases - Variable in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Truststore aliases to use.
truststorePassword - Variable in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Password for truststore.
truststoreType - Variable in class net.shibboleth.idp.authn.impl.KeystoreResourceCredentialConfig: Type of truststore.
type - Variable in class net.shibboleth.idp.authn.duo.impl.DuoDevice: the Duo device type.

U

uaContext - Variable in class net.shibboleth.idp.authn.impl.ValidateUserAgentAddress: User Agent context containing address to evaluate.
username - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Attempted username.
username - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Attempted username.
usernameContext - Variable in class net.shibboleth.idp.authn.impl.ValidateRemoteUser: Username context identifying identity to validate.
usernameFieldName - Variable in class net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromFormRequest: Parameter name for username.
UsernameIPLockoutKeyStrategy() - Constructor for class net.shibboleth.idp.authn.impl.StorageBackedAccountLockoutManager.UsernameIPLockoutKeyStrategy
usernameLookupStrategy - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Lookup strategy for username to match against Duo identity.
usernameLookupStrategy - Variable in class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Lookup strategy for username to match against Duo identity.
UsernamePasswordCallbackHandler(String, String) - Constructor for class net.shibboleth.idp.authn.spnego.impl.GSSAcceptorLoginModule.UsernamePasswordCallbackHandler: Constructor.
UsernamePasswordCleanupHook() - Constructor for class net.shibboleth.idp.authn.impl.ValidateCredentials.UsernamePasswordCleanupHook
usernamePrincipal - Variable in class net.shibboleth.idp.authn.impl.SimpleSubjectCanonicalization: The custom Principal to operate on.

V

ValidateCredentials - Class in net.shibboleth.idp.authn.impl: An action that processes a list of CredentialValidator objects to produce an AuthenticationResult.
ValidateCredentials() - Constructor for class net.shibboleth.idp.authn.impl.ValidateCredentials: Constructor.
ValidateCredentials.UsernamePasswordCleanupHook - Class in net.shibboleth.idp.authn.impl: A default cleanup hook that removes the UsernamePasswordContext from the tree.
ValidateDuoAuthAPI - Class in net.shibboleth.idp.authn.duo.impl: An action that checks for a DuoAuthenticationContext and directly produces an AuthenticationResult based on that identity by authenticating against the Duo AuthAPI.
ValidateDuoAuthAPI() - Constructor for class net.shibboleth.idp.authn.duo.impl.ValidateDuoAuthAPI: Constructor.
ValidateDuoWebResponse - Class in net.shibboleth.idp.authn.duo.impl: An action that validates a DuoWeb response message and produces an AuthenticationResult or records error state.
ValidateDuoWebResponse() - Constructor for class net.shibboleth.idp.authn.duo.impl.ValidateDuoWebResponse: Constructor.
ValidateExternalAuthentication - Class in net.shibboleth.idp.authn.impl: An action that checks for an ExternalAuthenticationContext and directly produces an AuthenticationResult or records error state based on the contents.
ValidateExternalAuthentication() - Constructor for class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Constructor.
ValidateExternalAuthentication(ReloadableService<AttributeFilter>) - Constructor for class net.shibboleth.idp.authn.impl.ValidateExternalAuthentication: Constructor.
ValidateFunctionResult - Class in net.shibboleth.idp.authn.impl: An action that executes a deployer-supplied function and produces an AuthenticationResult based on the function result.
ValidateFunctionResult() - Constructor for class net.shibboleth.idp.authn.impl.ValidateFunctionResult: Constructor.
validateLoginTransitions - Variable in class net.shibboleth.idp.authn.impl.TransitionMultiFactorAuthentication: Perform IsPassive, ForceAuthn, and non-browser checks when running login flows.
ValidateRemoteUser - Class in net.shibboleth.idp.authn.impl: An action that checks for a UsernameContext and directly produces an AuthenticationResult based on that identity.
ValidateRemoteUser() - Constructor for class net.shibboleth.idp.authn.impl.ValidateRemoteUser: Constructor.
validateSignedResponseToken(DuoIntegration, String) - Static method in class net.shibboleth.idp.authn.duo.impl.DuoSupport: Verify a signed response from Duo and extract the username.
ValidateUserAgentAddress - Class in net.shibboleth.idp.authn.impl: An action that ensures that a user-agent address found within a UserAgentContext is within a given range and generates an AuthenticationResult.
ValidateUserAgentAddress() - Constructor for class net.shibboleth.idp.authn.impl.ValidateUserAgentAddress: Constructor.
verifyKDC(Subject) - Method in class net.shibboleth.idp.authn.impl.KerberosCredentialValidator: Use credentials to acquire and verify a service ticket.

W

warningSignaled - Variable in class net.shibboleth.idp.authn.impl.ValidateCredentials: Tracks whether a warning event was signaled.
wrapperTypeRef - Variable in class net.shibboleth.idp.authn.duo.impl.DuoAuthAuthenticator: a TypeReference for the repsonse generated by the endpoint.
wrapperTypeRef - Variable in class net.shibboleth.idp.authn.duo.impl.DuoPreauthAuthenticator: TypeReference for the response generated by the endpoint.

X

X500_NAME_FIELD - Static variable in class net.shibboleth.idp.authn.principal.impl.X500PrincipalSerializer: Field name of X.500 name.
x500Principal - Variable in class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization: The subject DN to operate on.
X500PrincipalSerializer - Class in net.shibboleth.idp.authn.principal.impl: Principal serializer for X500Principal.
X500PrincipalSerializer() - Constructor for class net.shibboleth.idp.authn.principal.impl.X500PrincipalSerializer: Constructor.
X500SubjectCanonicalization - Class in net.shibboleth.idp.authn.impl: An action that operates on a SubjectCanonicalizationContext child of the current ProfileRequestContext, and transforms the input Subject into a principal name by searching for one and only one X509Certificate public credential, or in its absence one and only one X500Principal.
X500SubjectCanonicalization() - Constructor for class net.shibboleth.idp.authn.impl.X500SubjectCanonicalization: Constructor.
X500SubjectCanonicalization.ActivationCondition - Class in net.shibboleth.idp.authn.impl: A predicate that determines if this action can run or not.
X509_CREDS_ARRAY_FIELD - Static variable in class net.shibboleth.idp.authn.impl.DefaultAuthenticationResultSerializer: Field name of X.509 certificates array.
X509AuthServlet - Class in net.shibboleth.idp.authn.impl: Servlet compatible with the ExternalAuthentication interface that extracts and validates an X.509 client certificate for user authentication.
X509AuthServlet() - Constructor for class net.shibboleth.idp.authn.impl.X509AuthServlet: Constructor.
X509CertificateCredentialValidator - Class in net.shibboleth.idp.authn.impl: A credential validator that validates an X.509 certificate.
X509CertificateCredentialValidator() - Constructor for class net.shibboleth.idp.authn.impl.X509CertificateCredentialValidator: Constructor.
X509ProxyFilter - Class in net.shibboleth.idp.authn.impl: Servlet filter to translate Apache mod_ssl certificate variables into Java servlet attributes.
X509ProxyFilter() - Constructor for class net.shibboleth.idp.authn.impl.X509ProxyFilter: Constructor.
X509ResourceCredentialConfig - Class in net.shibboleth.idp.authn.impl: Implementation of CredentialConfig that loads trust and key material using a Resource.
X509ResourceCredentialConfig() - Constructor for class net.shibboleth.idp.authn.impl.X509ResourceCredentialConfig

A B C D E F G H I J K L M N O P R S T U V W X
All Classes All Packages