Package net.shibboleth.idp.cas.flow.impl
Class GrantServiceTicketAction
java.lang.Object
net.shibboleth.shared.component.AbstractInitializableComponent
org.opensaml.profile.action.AbstractProfileAction
org.opensaml.profile.action.AbstractConditionalProfileAction
net.shibboleth.idp.profile.AbstractProfileAction
net.shibboleth.idp.cas.flow.impl.AbstractCASProtocolAction<ServiceTicketRequest,ServiceTicketResponse>
net.shibboleth.idp.cas.flow.impl.GrantServiceTicketAction
- All Implemented Interfaces:
Component,DestructableComponent,InitializableComponent,ProfileAction,Aware,MessageSource,MessageSourceAware,Action
public class GrantServiceTicketAction
extends AbstractCASProtocolAction<ServiceTicketRequest,ServiceTicketResponse>
Generates and stores a CAS protocol service ticket. Possible outcomes:
nullon successTicketCreationError
-
Field Summary
FieldsModifier and TypeFieldDescriptionStrategy used to locate theAttributeContextassociated with a givenProfileRequestContext.private AttributeContextAttributeContext to use.private final Function<ProfileRequestContext,AuthenticationContext> AuthenticationContext lookup function.private AuthenticationResultAuthentication result.private final TicketServiceManages CAS tickets.private final ConfigLookupFunction<LoginConfiguration>Profile configuration lookup function.private final org.slf4j.LoggerClass logger.private LoginConfigurationProfile config.private final Function<ProfileRequestContext,String> Function to retrieve subject principal name.private ServiceTicketRequestCAS request.private SecurityConfigurationSecurity config.private final Function<ProfileRequestContext,SessionContext> Looks up an IdP session context from IdP profile request context.private booleanWhether consent needs to be stored in ticket. -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected voiddoExecute(ProfileRequestContext profileRequestContext) protected booleandoPreExecute(ProfileRequestContext profileRequestContext) private IdPSessionGet the IdP session.private AuthenticationResultGets the most recent authentication result from the current IdP session.private StringGet the IdP subject principal name.voidSet the strategy used to locate theAttributeContextassociated with a givenProfileRequestContext.Methods inherited from class net.shibboleth.idp.cas.flow.impl.AbstractCASProtocolAction
getCASRequest, getCASResponse, getCASService, getCASTicket, getProtocolContext, setCASRequest, setCASResponse, setCASService, setCASTicketMethods inherited from class net.shibboleth.idp.profile.AbstractProfileAction
doExecute, execute, getBean, getBean, getMessage, getMessage, getMessage, getParameter, getParameter, getProfileContextLookupStrategy, getRequestContext, getResult, setMessageSource, setProfileContextLookupStrategyMethods inherited from class org.opensaml.profile.action.AbstractConditionalProfileAction
getActivationCondition, setActivationConditionMethods inherited from class org.opensaml.profile.action.AbstractProfileAction
doPostExecute, doPostExecute, ensureHttpServletRequest, ensureHttpServletResponse, execute, getHttpServletRequest, getHttpServletRequestSupplier, getHttpServletResponse, getHttpServletResponseSupplier, getLogPrefix, isPreExecuteCalled, setHttpServletRequestSupplier, setHttpServletResponseSupplierMethods inherited from class net.shibboleth.shared.component.AbstractInitializableComponent
checkComponentActive, checkSetterPreconditions, destroy, doDestroy, doInitialize, ifDestroyedThrowDestroyedComponentException, ifInitializedThrowUnmodifiabledComponentException, ifNotInitializedThrowUninitializedComponentException, initialize, isDestroyed, isInitializedMethods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface net.shibboleth.shared.component.InitializableComponent
initialize, isInitialized
-
Field Details
-
log
@Nonnull private final org.slf4j.Logger logClass logger. -
configLookupFunction
Profile configuration lookup function. -
sessionContextFunction
Looks up an IdP session context from IdP profile request context. -
authnCtxLookupFunction
AuthenticationContext lookup function. -
principalLookupFunction
Function to retrieve subject principal name. -
attributeContextLookupStrategy
Strategy used to locate theAttributeContextassociated with a givenProfileRequestContext. -
casTicketService
Manages CAS tickets. -
loginConfig
Profile config. -
securityConfig
Security config. -
authnResult
Authentication result. -
storeConsent
private boolean storeConsentWhether consent needs to be stored in ticket. -
attributeCtx
AttributeContext to use. -
request
CAS request.
-
-
Constructor Details
-
GrantServiceTicketAction
Constructor.- Parameters:
ticketService- Ticket service component.
-
-
Method Details
-
setAttributeContextLookupStrategy
public void setAttributeContextLookupStrategy(@Nonnull Function<ProfileRequestContext, AttributeContext> strategy) Set the strategy used to locate theAttributeContextassociated with a givenProfileRequestContext.- Parameters:
strategy- strategy used to locate theAttributeContextassociated with a givenProfileRequestContext- Since:
- 4.2.0
-
doPreExecute
- Overrides:
doPreExecutein classAbstractConditionalProfileAction
-
doExecute
- Overrides:
doExecutein classAbstractProfileAction
-
getIdPSession
Get the IdP session.- Parameters:
prc- profile request context- Returns:
- IdP session
-
getPrincipalName
Get the IdP subject principal name.- Parameters:
prc- profile request context.- Returns:
- Principal name.
-
getLatestAuthenticationResult
Gets the most recent authentication result from the current IdP session.- Parameters:
prc- Profile request context.- Returns:
- Latest authentication result.
- Throws:
IllegalStateException- If no authentication results are found.
-