Package net.shibboleth.idp.cas.config
Class LoginConfiguration
- java.lang.Object
-
- net.shibboleth.utilities.java.support.component.AbstractInitializableComponent
-
- net.shibboleth.utilities.java.support.component.AbstractIdentifiedInitializableComponent
-
- net.shibboleth.utilities.java.support.component.AbstractIdentifiableInitializableComponent
-
- net.shibboleth.idp.profile.config.AbstractProfileConfiguration
-
- net.shibboleth.idp.profile.config.AbstractConditionalProfileConfiguration
-
- net.shibboleth.idp.cas.config.AbstractProtocolConfiguration
-
- net.shibboleth.idp.cas.config.LoginConfiguration
-
- All Implemented Interfaces:
AuthenticationProfileConfiguration,ConditionalProfileConfiguration,ProfileConfiguration,Component,DestructableComponent,IdentifiableComponent,IdentifiedComponent,InitializableComponent
public class LoginConfiguration extends AbstractProtocolConfiguration implements AuthenticationProfileConfiguration
CAS protocol configuration that applies to the/loginURI.
-
-
Field Summary
Fields Modifier and Type Field Description private Function<ProfileRequestContext,Set<String>>authenticationFlowsLookupStrategyLookup function to supply authenticationFlows property.static intDEFAULT_TICKET_LENGTHDefault ticket length (random part).static StringDEFAULT_TICKET_PREFIXDefault ticket prefix.private Function<ProfileRequestContext,Collection<AuthnContextClassRefPrincipal>>defaultAuthenticationContextsLookupStrategyLookup function to supply defaultAuthenticationContexts property.private Predicate<ProfileRequestContext>forceAuthnPredicateWhether to mandate forced authentication for the request.private Function<ProfileRequestContext,Collection<String>>postAuthenticationFlowsLookupStrategyLookup function to supply postAuthenticationFlows property.static StringPROFILE_IDProxy ticket profile URI.private Function<ProfileRequestContext,Integer>proxyCountLookupStrategyLookup function to supply proxyCount property.-
Fields inherited from class net.shibboleth.idp.cas.config.AbstractProtocolConfiguration
DEFAULT_TICKET_VALIDITY_PERIOD, PROTOCOL_URI
-
Fields inherited from class net.shibboleth.idp.profile.config.AbstractProfileConfiguration
DEFAULT_DISALLOWED_FEATURES
-
-
Constructor Summary
Constructors Constructor Description LoginConfiguration()Creates a new instance.
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description Set<String>getAuthenticationFlows(ProfileRequestContext profileRequestContext)List<Principal>getDefaultAuthenticationMethods(ProfileRequestContext profileRequestContext)protected intgetDefaultTicketLength()Get default ticket length.protected StringgetDefaultTicketPrefix()Get default ticket prefix.List<String>getPostAuthenticationFlows(ProfileRequestContext profileRequestContext)IntegergetProxyCount(ProfileRequestContext profileRequestContext)booleanisForceAuthn(ProfileRequestContext profileRequestContext)voidsetAuthenticationFlows(Collection<String> flows)Set the authentication flows to use.voidsetAuthenticationFlowsLookupStrategy(Function<ProfileRequestContext,Set<String>> strategy)Set a lookup strategy for the authentication flows to use.voidsetDefaultAuthenticationMethods(Collection<AuthnContextClassRefPrincipal> contexts)Set the default authentication contexts to use, expressed as custom principals.voidsetDefaultAuthenticationMethodsLookupStrategy(Function<ProfileRequestContext,Collection<AuthnContextClassRefPrincipal>> strategy)Set a lookup strategy for the default authentication contexts to use.voidsetForceAuthn(boolean flag)Set whether a fresh user presence proof should be required for this request.voidsetForceAuthnPredicate(Predicate<ProfileRequestContext> condition)Set a condition to determine whether a fresh user presence proof should be required for this request.voidsetPostAuthenticationFlows(Collection<String> flows)Set the ordered collection of post-authentication interceptor flows to enable.voidsetPostAuthenticationFlowsLookupStrategy(Function<ProfileRequestContext,Collection<String>> strategy)Set a lookup strategy for the post-authentication interceptor flows to enable.voidsetProxyCount(Integer count)Sets the maximum number of times an assertion may be proxied outbound and/or the maximum number of hops between the relying party and a proxied authentication authority inbound.voidsetProxyCountLookupStrategy(Function<ProfileRequestContext,Integer> strategy)Set a lookup strategy for the maximum number of times an assertion may be proxied outbound and/or the maximum number of hops between the relying party and a proxied authentication authority inbound.-
Methods inherited from class net.shibboleth.idp.cas.config.AbstractProtocolConfiguration
getSecurityConfiguration, getTicketValidityPeriod, isResolveAttributes, setResolveAttributes, setResolveAttributesPredicate, setTicketValidityPeriod, setTicketValidityPeriodLookupStrategy
-
Methods inherited from class net.shibboleth.idp.profile.config.AbstractConditionalProfileConfiguration
getActivationCondition, setActivationCondition
-
Methods inherited from class net.shibboleth.idp.profile.config.AbstractProfileConfiguration
equals, getDisallowedFeatures, getInboundInterceptorFlows, getOutboundInterceptorFlows, hashCode, isFeatureDisallowed, setDisallowedFeatures, setDisallowedFeaturesLookupStrategy, setInboundFlowsLookupStrategy, setInboundInterceptorFlows, setOutboundFlowsLookupStrategy, setOutboundInterceptorFlows, setSecurityConfiguration, setSecurityConfigurationLookupStrategy
-
Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractIdentifiableInitializableComponent
setId
-
Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractIdentifiedInitializableComponent
doInitialize, getId
-
Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent
destroy, doDestroy, initialize, isDestroyed, isInitialized
-
Methods inherited from class java.lang.Object
clone, finalize, getClass, notify, notifyAll, toString, wait, wait, wait
-
Methods inherited from interface net.shibboleth.idp.authn.config.AuthenticationProfileConfiguration
isLocal
-
Methods inherited from interface net.shibboleth.utilities.java.support.component.IdentifiedComponent
getId
-
Methods inherited from interface net.shibboleth.utilities.java.support.component.InitializableComponent
initialize, isInitialized
-
Methods inherited from interface net.shibboleth.idp.profile.config.ProfileConfiguration
getInboundInterceptorFlows, getOutboundInterceptorFlows, getSecurityConfiguration
-
-
-
-
Field Detail
-
PROFILE_ID
@Nonnull @NotEmpty public static final String PROFILE_ID
Proxy ticket profile URI.- See Also:
- Constant Field Values
-
DEFAULT_TICKET_PREFIX
@Nonnull @NotEmpty public static final String DEFAULT_TICKET_PREFIX
Default ticket prefix.- See Also:
- Constant Field Values
-
DEFAULT_TICKET_LENGTH
public static final int DEFAULT_TICKET_LENGTH
Default ticket length (random part).- See Also:
- Constant Field Values
-
authenticationFlowsLookupStrategy
@Nonnull private Function<ProfileRequestContext,Set<String>> authenticationFlowsLookupStrategy
Lookup function to supply authenticationFlows property.
-
postAuthenticationFlowsLookupStrategy
@Nonnull private Function<ProfileRequestContext,Collection<String>> postAuthenticationFlowsLookupStrategy
Lookup function to supply postAuthenticationFlows property.
-
defaultAuthenticationContextsLookupStrategy
@Nonnull private Function<ProfileRequestContext,Collection<AuthnContextClassRefPrincipal>> defaultAuthenticationContextsLookupStrategy
Lookup function to supply defaultAuthenticationContexts property.
-
forceAuthnPredicate
@Nonnull private Predicate<ProfileRequestContext> forceAuthnPredicate
Whether to mandate forced authentication for the request.
-
proxyCountLookupStrategy
@Nonnull private Function<ProfileRequestContext,Integer> proxyCountLookupStrategy
Lookup function to supply proxyCount property.
-
-
Method Detail
-
getDefaultAuthenticationMethods
@Nonnull @NonnullElements @NotLive @Unmodifiable public List<Principal> getDefaultAuthenticationMethods(@Nullable ProfileRequestContext profileRequestContext)
- Specified by:
getDefaultAuthenticationMethodsin interfaceAuthenticationProfileConfiguration
-
setDefaultAuthenticationMethods
public void setDefaultAuthenticationMethods(@Nullable @NonnullElements Collection<AuthnContextClassRefPrincipal> contexts)
Set the default authentication contexts to use, expressed as custom principals.- Parameters:
contexts- default authentication contexts to use
-
setDefaultAuthenticationMethodsLookupStrategy
public void setDefaultAuthenticationMethodsLookupStrategy(@Nonnull Function<ProfileRequestContext,Collection<AuthnContextClassRefPrincipal>> strategy)Set a lookup strategy for the default authentication contexts to use.- Parameters:
strategy- lookup strategy
-
getAuthenticationFlows
@Nonnull @NonnullElements @NotLive @Unmodifiable public Set<String> getAuthenticationFlows(@Nullable ProfileRequestContext profileRequestContext)
- Specified by:
getAuthenticationFlowsin interfaceAuthenticationProfileConfiguration
-
setAuthenticationFlows
public void setAuthenticationFlows(@Nullable @NonnullElements Collection<String> flows)
Set the authentication flows to use.- Parameters:
flows- flow identifiers to use
-
setAuthenticationFlowsLookupStrategy
public void setAuthenticationFlowsLookupStrategy(@Nonnull Function<ProfileRequestContext,Set<String>> strategy)Set a lookup strategy for the authentication flows to use.- Parameters:
strategy- lookup strategy
-
getPostAuthenticationFlows
@Nonnull @NonnullElements @NotLive @Unmodifiable public List<String> getPostAuthenticationFlows(@Nullable ProfileRequestContext profileRequestContext)
- Specified by:
getPostAuthenticationFlowsin interfaceAuthenticationProfileConfiguration
-
setPostAuthenticationFlows
public void setPostAuthenticationFlows(@Nullable @NonnullElements Collection<String> flows)
Set the ordered collection of post-authentication interceptor flows to enable.- Parameters:
flows- flow identifiers to enable
-
setPostAuthenticationFlowsLookupStrategy
public void setPostAuthenticationFlowsLookupStrategy(@Nonnull Function<ProfileRequestContext,Collection<String>> strategy)Set a lookup strategy for the post-authentication interceptor flows to enable.- Parameters:
strategy- lookup strategy
-
isForceAuthn
public boolean isForceAuthn(@Nullable ProfileRequestContext profileRequestContext)- Specified by:
isForceAuthnin interfaceAuthenticationProfileConfiguration
-
setForceAuthn
public void setForceAuthn(boolean flag)
Set whether a fresh user presence proof should be required for this request.- Parameters:
flag- flag to set
-
setForceAuthnPredicate
public void setForceAuthnPredicate(@Nonnull Predicate<ProfileRequestContext> condition)Set a condition to determine whether a fresh user presence proof should be required for this request.- Parameters:
condition- condition to set
-
getProxyCount
@Nullable public Integer getProxyCount(@Nullable ProfileRequestContext profileRequestContext)
- Specified by:
getProxyCountin interfaceAuthenticationProfileConfiguration
-
setProxyCount
public void setProxyCount(@Nullable @NonNegative Integer count)
Sets the maximum number of times an assertion may be proxied outbound and/or the maximum number of hops between the relying party and a proxied authentication authority inbound.- Parameters:
count- proxy count- Since:
- 4.0.0
-
setProxyCountLookupStrategy
public void setProxyCountLookupStrategy(@Nonnull Function<ProfileRequestContext,Integer> strategy)Set a lookup strategy for the maximum number of times an assertion may be proxied outbound and/or the maximum number of hops between the relying party and a proxied authentication authority inbound.- Parameters:
strategy- lookup strategy- Since:
- 4.0.0
-
getDefaultTicketPrefix
@Nonnull @NotEmpty protected String getDefaultTicketPrefix()
Get default ticket prefix.- Specified by:
getDefaultTicketPrefixin classAbstractProtocolConfiguration- Returns:
- prefix
-
getDefaultTicketLength
protected int getDefaultTicketLength()
Get default ticket length.- Specified by:
getDefaultTicketLengthin classAbstractProtocolConfiguration- Returns:
- length
-
-