Class SingleLogoutProfileConfiguration
java.lang.Object
net.shibboleth.shared.component.AbstractInitializableComponent
net.shibboleth.shared.component.AbstractIdentifiedInitializableComponent
net.shibboleth.shared.component.AbstractIdentifiableInitializableComponent
net.shibboleth.profile.config.AbstractProfileConfiguration
net.shibboleth.profile.config.AbstractConditionalProfileConfiguration
net.shibboleth.idp.profile.config.AbstractInterceptorAwareProfileConfiguration
net.shibboleth.idp.saml.profile.config.impl.AbstractSAMLProfileConfiguration
net.shibboleth.idp.saml.saml2.profile.config.impl.AbstractSAML2ProfileConfiguration
net.shibboleth.idp.saml.saml2.profile.config.impl.AbstractSAML2ArtifactAwareProfileConfiguration
net.shibboleth.idp.saml.saml2.profile.config.impl.SingleLogoutProfileConfiguration
- All Implemented Interfaces:
InterceptorAwareProfileConfiguration,SAMLProfileConfiguration,ConditionalProfileConfiguration,ProfileConfiguration,SAMLArtifactAwareProfileConfiguration,SAMLArtifactConsumerProfileConfiguration,SAMLProfileConfiguration,SAML2ProfileConfiguration,SingleLogoutProfileConfiguration,Component,DestructableComponent,IdentifiableComponent,IdentifiedComponent,InitializableComponent
public class SingleLogoutProfileConfiguration
extends AbstractSAML2ArtifactAwareProfileConfiguration
implements SingleLogoutProfileConfiguration
Configuration support for IdP SAML 2 Single Logout.
-
Field Summary
FieldsModifier and TypeFieldDescriptionprivate Predicate<MessageContext>Predicate used to determine if SOAP-based requests should use client TLS.static final StringName of profile counter.private Function<ProfileRequestContext,Collection<String>> Lookup function to supply qualifiedNameIDFormats property.private Predicate<MessageContext>Predicate used to determine if SOAP-based requests should be signed.Fields inherited from interface net.shibboleth.profile.config.ProfileConfiguration
DEFAULT_DISALLOWED_FEATURESFields inherited from interface net.shibboleth.saml.saml2.profile.config.SingleLogoutProfileConfiguration
PROFILE_ID -
Constructor Summary
ConstructorsModifierConstructorDescriptionConstructor.protectedSingleLogoutProfileConfiguration(String profileId) Constructor. -
Method Summary
Modifier and TypeMethodDescriptiongetQualifiedNameIDFormats(ProfileRequestContext profileRequestContext) booleanisClientTLSSOAPRequests(MessageContext messageContext) booleanisSignSOAPRequests(MessageContext messageContext) voidsetClientTLSSOAPRequests(boolean flag) Set whether SOAP-based requests should use client TLS.voidsetClientTLSSOAPRequestsPredicate(Predicate<MessageContext> predicate) Set the predicate used to determine if SOAP-based requests should use client TLS.voidsetQualifiedNameIDFormats(Collection<String> formats) Set a collection ofNameIDFormat values for which the use of the NameQualifier and SPNameQualifier attributes is defined to allow default/implicit values derived from the asserting and relying parties.voidsetQualifiedNameIDFormatsLookupStrategy(Function<ProfileRequestContext, Collection<String>> strategy) Set a lookup strategy for the Format values for which the use of the NameQualifier and SPNameQualifier attributes is defined to allow default/implicit values derived from the asserting and relying parties.voidsetSignSOAPRequests(boolean flag) Set whether SOAP-based requests should be signed.voidsetSignSOAPRequestsPredicate(Predicate<MessageContext> predicate) Set the predicate used to determine if SOAP-based requests should be signed.Methods inherited from class net.shibboleth.idp.saml.saml2.profile.config.impl.AbstractSAML2ArtifactAwareProfileConfiguration
getArtifactConfiguration, isClientTLSArtifactRequests, isSignArtifactRequests, setArtifactConfiguration, setArtifactConfigurationLookupStrategy, setClientTLSArtifactRequests, setClientTLSArtifactRequestsPredicate, setSignArtifactRequests, setSignArtifactRequestsPredicateMethods inherited from class net.shibboleth.idp.saml.saml2.profile.config.impl.AbstractSAML2ProfileConfiguration
isEncryptionOptional, isEncryptNameIDs, isIgnoreRequestSignatures, setEncryptionOptional, setEncryptionOptionalPredicate, setEncryptNameIDs, setEncryptNameIDsPredicate, setIgnoreRequestSignatures, setIgnoreRequestSignaturesPredicateMethods inherited from class net.shibboleth.idp.saml.profile.config.impl.AbstractSAMLProfileConfiguration
getMessageHandler, isSignRequests, isSignResponses, setMessageDecorator, setMessageHandler, setMessageHandlerLookupStrategy, setSignRequests, setSignRequestsPredicate, setSignResponses, setSignResponsesPredicateMethods inherited from class net.shibboleth.idp.profile.config.AbstractInterceptorAwareProfileConfiguration
getInboundInterceptorFlows, getOutboundInterceptorFlows, setInboundInterceptorFlows, setInboundInterceptorFlowsLookupStrategy, setOutboundInterceptorFlows, setOutboundInterceptorFlowsLookupStrategyMethods inherited from class net.shibboleth.profile.config.AbstractConditionalProfileConfiguration
getActivationCondition, setActivationConditionMethods inherited from class net.shibboleth.profile.config.AbstractProfileConfiguration
equals, getDisallowedFeatures, getSecurityConfiguration, hashCode, isFeatureDisallowed, setDisallowedFeatures, setDisallowedFeaturesLookupStrategy, setSecurityConfiguration, setSecurityConfigurationLookupStrategyMethods inherited from class net.shibboleth.shared.component.AbstractIdentifiableInitializableComponent
setIdMethods inherited from class net.shibboleth.shared.component.AbstractIdentifiedInitializableComponent
doInitialize, ensureId, getId, ifDestroyedThrowDestroyedComponentException, ifInitializedThrowUnmodifiabledComponentException, ifNotInitializedThrowUninitializedComponentExceptionMethods inherited from class net.shibboleth.shared.component.AbstractInitializableComponent
checkComponentActive, checkSetterPreconditions, destroy, doDestroy, initialize, isDestroyed, isInitializedMethods inherited from class java.lang.Object
clone, finalize, getClass, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface net.shibboleth.shared.component.IdentifiedComponent
getIdMethods inherited from interface net.shibboleth.idp.profile.config.InterceptorAwareProfileConfiguration
getInboundInterceptorFlows, getOutboundInterceptorFlowsMethods inherited from interface net.shibboleth.profile.config.ProfileConfiguration
getDisallowedFeatures, getSecurityConfiguration, isFeatureDisallowedMethods inherited from interface net.shibboleth.saml.saml2.profile.config.SAML2ProfileConfiguration
isEncryptionOptional, isEncryptNameIDs, isIgnoreRequestSignaturesMethods inherited from interface net.shibboleth.saml.profile.config.SAMLArtifactConsumerProfileConfiguration
isClientTLSArtifactRequests, isSignArtifactRequestsMethods inherited from interface net.shibboleth.saml.profile.config.SAMLProfileConfiguration
getMessageHandler, isSignRequests, isSignResponses
-
Field Details
-
PROFILE_COUNTER
Name of profile counter.- See Also:
-
signSOAPRequestsPredicate
Predicate used to determine if SOAP-based requests should be signed. -
clientTLSSOAPRequestsPredicate
Predicate used to determine if SOAP-based requests should use client TLS. -
qualifiedNameIDFormatsLookupStrategy
@Nonnull private Function<ProfileRequestContext,Collection<String>> qualifiedNameIDFormatsLookupStrategyLookup function to supply qualifiedNameIDFormats property.
-
-
Constructor Details
-
SingleLogoutProfileConfiguration
public SingleLogoutProfileConfiguration()Constructor. -
SingleLogoutProfileConfiguration
Constructor.- Parameters:
profileId- unique ID for this profile
-
-
Method Details
-
isSignSOAPRequests
- Specified by:
isSignSOAPRequestsin interfaceSingleLogoutProfileConfiguration
-
setSignSOAPRequests
public void setSignSOAPRequests(boolean flag) Set whether SOAP-based requests should be signed.- Parameters:
flag- flag to set- Since:
- 4.0.0
-
setSignSOAPRequestsPredicate
Set the predicate used to determine if SOAP-based requests should be signed.- Parameters:
predicate- the predicate- Since:
- 4.0.0
-
isClientTLSSOAPRequests
- Specified by:
isClientTLSSOAPRequestsin interfaceSingleLogoutProfileConfiguration
-
setClientTLSSOAPRequests
public void setClientTLSSOAPRequests(boolean flag) Set whether SOAP-based requests should use client TLS.- Parameters:
flag- flag to set- Since:
- 4.0.0
-
setClientTLSSOAPRequestsPredicate
Set the predicate used to determine if SOAP-based requests should use client TLS.- Parameters:
predicate- the predicate- Since:
- 4.0.0
-
getQualifiedNameIDFormats
@Nonnull @NotLive public Collection<String> getQualifiedNameIDFormats(@Nullable ProfileRequestContext profileRequestContext) - Specified by:
getQualifiedNameIDFormatsin interfaceSingleLogoutProfileConfiguration
-
setQualifiedNameIDFormats
Set a collection ofNameIDFormat values for which the use of the NameQualifier and SPNameQualifier attributes is defined to allow default/implicit values derived from the asserting and relying parties.In the core standard, only the
NameIDType.PERSISTENTandNameIDType.TRANSIENTFormats are defined in this manner. This setting identifies additional Formats that should be handled in this way.- Parameters:
formats- additional Formats for which defaulting of qualifiers is permissable- Since:
- 3.4.0
-
setQualifiedNameIDFormatsLookupStrategy
public void setQualifiedNameIDFormatsLookupStrategy(@Nonnull Function<ProfileRequestContext, Collection<String>> strategy) Set a lookup strategy for the Format values for which the use of the NameQualifier and SPNameQualifier attributes is defined to allow default/implicit values derived from the asserting and relying parties.- Parameters:
strategy- lookup strategy- Since:
- 3.4.0
-