Package net.shibboleth.idp.cas.config
Class ValidateConfiguration
java.lang.Object
net.shibboleth.shared.component.AbstractInitializableComponent
net.shibboleth.shared.component.AbstractIdentifiedInitializableComponent
net.shibboleth.shared.component.AbstractIdentifiableInitializableComponent
net.shibboleth.profile.config.AbstractProfileConfiguration
net.shibboleth.profile.config.AbstractConditionalProfileConfiguration
net.shibboleth.idp.profile.config.AbstractInterceptorAwareProfileConfiguration
net.shibboleth.idp.cas.config.AbstractProtocolConfiguration
net.shibboleth.idp.cas.config.ValidateConfiguration
- All Implemented Interfaces:
InterceptorAwareProfileConfiguration,AttributeResolvingProfileConfiguration,ConditionalProfileConfiguration,ProfileConfiguration,Component,DestructableComponent,IdentifiableComponent,IdentifiedComponent,InitializableComponent
CAS protocol configuration. Applies to the following ticket validation URIs:
/proxyValidate/serviceValidate
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic final intDefault ticket length (random part).static final StringDefault ticket prefix.static final DurationDefault ticket validity.private final IdentifierGenerationStrategyDefault PGTIOU ticket ID generator.Lookup strategy for PGTIOU ticket ID generator.static final StringTicket validation profile counter name.static final StringTicket validation profile ID.private Function<ProfileRequestContext,Comparator<String>> Lookup strategy for enforcing ticket requester matches ticket validator.private Function<ProfileRequestContext,String> Lookup strategy for Name of IdP attribute to use for user returned in CAS ticket validation response.Fields inherited from class net.shibboleth.idp.cas.config.AbstractProtocolConfiguration
PROTOCOL_COUNTER, PROTOCOL_URIFields inherited from interface net.shibboleth.profile.config.ProfileConfiguration
DEFAULT_DISALLOWED_FEATURES -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected intGet default ticket length.protected StringGet default ticket prefix.getPGTIOUGenerator(ProfileRequestContext profileRequestContext) Get the PGTIOU ticket ID generator.getServiceComparator(ProfileRequestContext profileRequestContext) Get component responsible for enforcing ticket requester matches ticket validator.getUserAttribute(ProfileRequestContext profileRequestContext) Get name of IdP attribute to use for username returned in CAS ticket validation response.voidsetPGTIOUGenerator(IdentifierGenerationStrategy generator) Set the PGTIOU ticket ID generator.voidsetPGTIOUGeneratorLookupStrategy(Function<ProfileRequestContext, IdentifierGenerationStrategy> strategy) Set the lookup strategy to use for the PGTIOU ticket ID generator.voidsetServiceComparator(Comparator<String> comparator) Set component responsible for enforcing ticket requester matches ticket validator.voidSet the lookup strategy to use for the component responsible for enforcing that the ticket requester matches the ticket validator.voidsetUserAttribute(String attribute) Set the name of IdP attribute to use for username returned in CAS ticket validation response.voidSet the lookup strategy to use for the name of the IdP attribute to use for username returned in CAS ticket validation response.Methods inherited from class net.shibboleth.idp.cas.config.AbstractProtocolConfiguration
getSecurityConfiguration, getTicketValidityPeriod, isResolveAttributes, setResolveAttributes, setResolveAttributesPredicate, setTicketValidityPeriod, setTicketValidityPeriodLookupStrategyMethods inherited from class net.shibboleth.idp.profile.config.AbstractInterceptorAwareProfileConfiguration
getInboundInterceptorFlows, getOutboundInterceptorFlows, setInboundInterceptorFlows, setInboundInterceptorFlowsLookupStrategy, setOutboundInterceptorFlows, setOutboundInterceptorFlowsLookupStrategyMethods inherited from class net.shibboleth.profile.config.AbstractConditionalProfileConfiguration
getActivationCondition, setActivationConditionMethods inherited from class net.shibboleth.profile.config.AbstractProfileConfiguration
equals, getDisallowedFeatures, hashCode, isFeatureDisallowed, setDisallowedFeatures, setDisallowedFeaturesLookupStrategy, setSecurityConfiguration, setSecurityConfigurationLookupStrategyMethods inherited from class net.shibboleth.shared.component.AbstractIdentifiableInitializableComponent
setIdMethods inherited from class net.shibboleth.shared.component.AbstractIdentifiedInitializableComponent
doInitialize, ensureId, getId, ifDestroyedThrowDestroyedComponentException, ifInitializedThrowUnmodifiabledComponentException, ifNotInitializedThrowUninitializedComponentExceptionMethods inherited from class net.shibboleth.shared.component.AbstractInitializableComponent
checkComponentActive, checkSetterPreconditions, destroy, doDestroy, initialize, isDestroyed, isInitializedMethods inherited from class java.lang.Object
clone, finalize, getClass, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface net.shibboleth.shared.component.IdentifiedComponent
getIdMethods inherited from interface net.shibboleth.shared.component.InitializableComponent
initialize, isInitializedMethods inherited from interface net.shibboleth.profile.config.ProfileConfiguration
getDisallowedFeatures, isFeatureDisallowed
-
Field Details
-
PROFILE_ID
Ticket validation profile ID.- See Also:
-
PROFILE_COUNTER
Ticket validation profile counter name.- See Also:
-
DEFAULT_TICKET_VALIDITY_PERIOD
Default ticket validity. -
DEFAULT_TICKET_PREFIX
Default ticket prefix.- See Also:
-
DEFAULT_TICKET_LENGTH
public static final int DEFAULT_TICKET_LENGTHDefault ticket length (random part).- See Also:
-
pgtIOUGeneratorLookupStrategy
@Nonnull private Function<ProfileRequestContext,IdentifierGenerationStrategy> pgtIOUGeneratorLookupStrategyLookup strategy for PGTIOU ticket ID generator. -
defaultPGTIOUGenerator
Default PGTIOU ticket ID generator. -
serviceComparatorLookupStrategy
Lookup strategy for enforcing ticket requester matches ticket validator. -
userAttributeLookupStrategy
Lookup strategy for Name of IdP attribute to use for user returned in CAS ticket validation response.
-
-
Constructor Details
-
ValidateConfiguration
public ValidateConfiguration()Creates a new instance.
-
-
Method Details
-
getPGTIOUGenerator
@ConfigurationSetting(name="pGTIOUGenerator") @Nonnull public IdentifierGenerationStrategy getPGTIOUGenerator(@Nullable ProfileRequestContext profileRequestContext) Get the PGTIOU ticket ID generator.- Parameters:
profileRequestContext- current profile request context- Returns:
- PGTIOU ticket ID generator
-
setPGTIOUGeneratorLookupStrategy
public void setPGTIOUGeneratorLookupStrategy(@Nonnull Function<ProfileRequestContext, IdentifierGenerationStrategy> strategy) Set the lookup strategy to use for the PGTIOU ticket ID generator.- Parameters:
strategy- lookup strategy- Since:
- 3.3.0
-
getServiceComparator
@ConfigurationSetting(name="serviceComparator") @Nonnull public Comparator<String> getServiceComparator(@Nullable ProfileRequestContext profileRequestContext) Get component responsible for enforcing ticket requester matches ticket validator.- Parameters:
profileRequestContext- current profile request context- Returns:
- ticket requester/validator comparator
-
setServiceComparator
Set component responsible for enforcing ticket requester matches ticket validator.- Parameters:
comparator- ticket requester/validator comparator
-
setServiceComparatorLookupStrategy
public void setServiceComparatorLookupStrategy(@Nonnull Function<ProfileRequestContext, Comparator<String>> strategy) Set the lookup strategy to use for the component responsible for enforcing that the ticket requester matches the ticket validator.- Parameters:
strategy- lookup strategy- Since:
- 3.3.0
-
getUserAttribute
@ConfigurationSetting(name="userAttribute") @Nullable public String getUserAttribute(@Nullable ProfileRequestContext profileRequestContext) Get name of IdP attribute to use for username returned in CAS ticket validation response.- Parameters:
profileRequestContext- current profile request context- Returns:
- attribute name
-
setUserAttribute
Set the name of IdP attribute to use for username returned in CAS ticket validation response.- Parameters:
attribute- attribute name to use
-
setUserAttributeLookupStrategy
public void setUserAttributeLookupStrategy(@Nonnull Function<ProfileRequestContext, String> strategy) Set the lookup strategy to use for the name of the IdP attribute to use for username returned in CAS ticket validation response.- Parameters:
strategy- lookup strategy- Since:
- 3.3.0
-
getDefaultTicketPrefix
Get default ticket prefix.- Specified by:
getDefaultTicketPrefixin classAbstractProtocolConfiguration- Returns:
- prefix
-
getDefaultTicketLength
protected int getDefaultTicketLength()Get default ticket length.- Specified by:
getDefaultTicketLengthin classAbstractProtocolConfiguration- Returns:
- length
-