DefaultRelyingPartyConfigurationResolver (Shibboleth IdP

java.lang.Object
- net.shibboleth.utilities.java.support.component.AbstractInitializableComponent
- - net.shibboleth.utilities.java.support.component.AbstractIdentifiedInitializableComponent
  - - net.shibboleth.ext.spring.service.AbstractServiceableComponent<RelyingPartyConfigurationResolver>
    - - net.shibboleth.idp.relyingparty.impl.DefaultRelyingPartyConfigurationResolver

All Implemented Interfaces:

RelyingPartyConfigurationResolver, Component, DestructableComponent, IdentifiableComponent, IdentifiedComponent, InitializableComponent, Resolver<RelyingPartyConfiguration,org.opensaml.profile.context.ProfileRequestContext>, ServiceableComponent<RelyingPartyConfigurationResolver>, org.springframework.beans.factory.Aware, org.springframework.context.ApplicationContextAware
```
public class DefaultRelyingPartyConfigurationResolver
extends AbstractServiceableComponent<RelyingPartyConfigurationResolver>
implements RelyingPartyConfigurationResolver, IdentifiableComponent
```
Retrieves a per-relying party configuration for a given profile request based on the request context.
Note that this resolver does not permit more than one RelyingPartyConfiguration with the same ID.

Field Summary

Fields
Modifier and Type	Field and Description
`private RelyingPartyConfiguration`	`defaultConfiguration` Default relying party configuration, used if no other verified configuration matches.
`private SecurityConfiguration`	`defaultSecurityConfiguration` A global default security configuration.
`private List<org.opensaml.security.credential.Credential>`	`encryptionCredentials` The global list of all configured encryption credentials.
`private org.slf4j.Logger`	`log` Class logger.
`private List<RelyingPartyConfiguration>`	`rpConfigurations` Registered relying party configurations.
`private Map<String,SecurityConfiguration>`	`securityConfigurationMap` The map from profile ID to `SecurityConfiguration`.
`private List<org.opensaml.security.credential.Credential>`	`signingCredentials` The global list of all configured signing credentials.
`private RelyingPartyConfiguration`	`unverifiedConfiguration` Unverified relying party configuration, used if the request is unverified.
`private Predicate<org.opensaml.profile.context.ProfileRequestContext>`	`verificationPredicate` The predicate which decides if this request is "verified".

Constructor Summary

Constructors
Constructor and Description

DefaultRelyingPartyConfigurationResolver()
Constructor.

Constructors
Constructor and Description
`DefaultRelyingPartyConfigurationResolver()` Constructor.

Method Summary

Methods
Modifier and Type	Method and Description
`protected void`	`doInitialize()`
`RelyingPartyConfigurationResolver`	`getComponent()`
`RelyingPartyConfiguration`	`getDefaultConfiguration()` Get the `RelyingPartyConfiguration` to use if no other verified configuration is acceptable.
`SecurityConfiguration`	`getDefaultSecurityConfiguration(String profileId)`
`List<org.opensaml.security.credential.Credential>`	`getEncryptionCredentials()` Get the list of all configured encryption credentials.
`List<RelyingPartyConfiguration>`	`getRelyingPartyConfigurations()` Get an unmodifiable list of verified relying party configurations.
`Map<String,SecurityConfiguration>`	`getSecurityConfigurationMap()` Get the map we use to look up default security configurations.
`List<org.opensaml.security.credential.Credential>`	`getSigningCredentials()` Get the list of all configured signing credentials.
`RelyingPartyConfiguration`	`getUnverifiedConfiguration()` Get the `RelyingPartyConfiguration` to use if the configuration is found to be "unverified" (via the call to the `verificationPredicate`.
`Predicate<org.opensaml.profile.context.ProfileRequestContext>`	`getVerificationPredicate()` Get the definition of what a verified request is.
`Iterable<RelyingPartyConfiguration>`	`resolve(org.opensaml.profile.context.ProfileRequestContext context)`
`RelyingPartyConfiguration`	`resolveSingle(org.opensaml.profile.context.ProfileRequestContext context)`
`void`	`setDefaultConfiguration(RelyingPartyConfiguration configuration)` Set the `RelyingPartyConfiguration` to use if no other verified configuration is acceptable.
`void`	`setDefaultSecurityConfiguration(SecurityConfiguration config)` Set the global default `SecurityConfiguration`.
`void`	`setEncryptionCredentials(List<org.opensaml.security.credential.Credential> credentials)` Set the list of all configured encryption credentials.
`void`	`setId(String componentId)`
`void`	`setRelyingPartyConfigurations(List<RelyingPartyConfiguration> configs)` Set the verified relying party configurations.
`void`	`setSecurityConfigurationMap(Map<String,SecurityConfiguration> map)` Set the map we use to look up default configuration.
`void`	`setSigningCredentials(List<org.opensaml.security.credential.Credential> credentials)` Set the list of all configured signing credentials.
`void`	`setUnverifiedConfiguration(RelyingPartyConfiguration configuration)` Set the `RelyingPartyConfiguration` to use if the configuration is found to be "unverified" (via the call to the `verificationPredicate`.
`void`	`setVerificationPredicate(Predicate<org.opensaml.profile.context.ProfileRequestContext> predicate)` Set the definition of what a verified request is.

Methods inherited from class net.shibboleth.ext.spring.service.AbstractServiceableComponent
doDestroy, getApplicationContext, pinComponent, setApplicationContext, unloadComponent, unpinComponent

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractIdentifiedInitializableComponent
getId

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent
destroy, initialize, isDestroyed, isInitialized

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface net.shibboleth.utilities.java.support.component.IdentifiedComponent
getId

Field Detail

log

@Nonnull
private final org.slf4j.Logger log

Class logger.

rpConfigurations

@Nonnull
private List<RelyingPartyConfiguration> rpConfigurations

Registered relying party configurations.

unverifiedConfiguration
```
@Nullable
private RelyingPartyConfiguration unverifiedConfiguration
```
Unverified relying party configuration, used if the request is unverified.

defaultConfiguration
```
@NonnullAfterInit
private RelyingPartyConfiguration defaultConfiguration
```
Default relying party configuration, used if no other verified configuration matches.

verificationPredicate

@NonnullAfterInit
private Predicate<org.opensaml.profile.context.ProfileRequestContext> verificationPredicate

The predicate which decides if this request is "verified".

securityConfigurationMap

@Nonnull
@NonnullElements
private Map<String,SecurityConfiguration> securityConfigurationMap

The map from profile ID to SecurityConfiguration.

defaultSecurityConfiguration

@Nullable
private SecurityConfiguration defaultSecurityConfiguration

A global default security configuration.

signingCredentials

@Nullable
private List<org.opensaml.security.credential.Credential> signingCredentials

The global list of all configured signing credentials.

encryptionCredentials

@Nullable
private List<org.opensaml.security.credential.Credential> encryptionCredentials

The global list of all configured encryption credentials.

Constructor Detail
- DefaultRelyingPartyConfigurationResolver
```
public DefaultRelyingPartyConfigurationResolver()
```
  Constructor.

Method Detail

getRelyingPartyConfigurations
```
@Nonnull
@NonnullElements
@Unmodifiable
@NotLive
public List<RelyingPartyConfiguration> getRelyingPartyConfigurations()
```
Get an unmodifiable list of verified relying party configurations.

Returns:
unmodifiable list of verified relying party configurations

setRelyingPartyConfigurations

public void setRelyingPartyConfigurations(@Nonnull@NonnullElements
                                 List<RelyingPartyConfiguration> configs)

Set the verified relying party configurations.

Parameters:: configs - list of verified relying party configurations

getDefaultConfiguration
```
@NonnullAfterInit
public RelyingPartyConfiguration getDefaultConfiguration()
```
Get the RelyingPartyConfiguration to use if no other verified configuration is acceptable.

Returns:
default verified configuration

setDefaultConfiguration
```
public void setDefaultConfiguration(@Nonnull
                           RelyingPartyConfiguration configuration)
```
Set the RelyingPartyConfiguration to use if no other verified configuration is acceptable.

Parameters:
configuration - default verified configuration

getUnverifiedConfiguration
```
@NonnullAfterInit
public RelyingPartyConfiguration getUnverifiedConfiguration()
```
Get the RelyingPartyConfiguration to use if the configuration is found to be "unverified" (via the call to the verificationPredicate.

Returns:
unverified configuration

setUnverifiedConfiguration
```
public void setUnverifiedConfiguration(@Nonnull
                              RelyingPartyConfiguration configuration)
```
Set the RelyingPartyConfiguration to use if the configuration is found to be "unverified" (via the call to the verificationPredicate.

Parameters:
configuration - unverified configuration

getVerificationPredicate
```
@Nonnull
public Predicate<org.opensaml.profile.context.ProfileRequestContext> getVerificationPredicate()
```
Get the definition of what a verified request is.

Returns:
predicate for determination whether request is verified

setVerificationPredicate

public void setVerificationPredicate(@Nonnull
                            Predicate<org.opensaml.profile.context.ProfileRequestContext> predicate)

Set the definition of what a verified request is.

Parameters:: predicate - predicate to set

getSecurityConfigurationMap

@Nonnull
@NonnullElements
@Unmodifiable
@NotLive
public Map<String,SecurityConfiguration> getSecurityConfigurationMap()

Get the map we use to look up default security configurations.

Returns:: Returns the Map.

setSecurityConfigurationMap

public void setSecurityConfigurationMap(@Nonnull@NonnullElements
                               Map<String,SecurityConfiguration> map)

Set the map we use to look up default configuration.

Parameters:: map - what to set.

setDefaultSecurityConfiguration

public void setDefaultSecurityConfiguration(@Nullable
                                   SecurityConfiguration config)

Set the global default SecurityConfiguration.

Parameters:: config - global default

doInitialize
```
protected void doInitialize()
                     throws ComponentInitializationException
```
Overrides:

doInitialize in class AbstractServiceableComponent<RelyingPartyConfigurationResolver>

Throws:

ComponentInitializationException

resolve

@Nonnull
@NonnullElements
public Iterable<RelyingPartyConfiguration> resolve(@Nullable
                                                                  org.opensaml.profile.context.ProfileRequestContext context)
                                            throws ResolverException

Specified by:: resolve in interface Resolver<RelyingPartyConfiguration,org.opensaml.profile.context.ProfileRequestContext>
Throws:: ResolverException

resolveSingle

@Nullable
public RelyingPartyConfiguration resolveSingle(@Nullable
                                               org.opensaml.profile.context.ProfileRequestContext context)
                                        throws ResolverException

Specified by:: resolveSingle in interface Resolver<RelyingPartyConfiguration,org.opensaml.profile.context.ProfileRequestContext>
Throws:: ResolverException

getDefaultSecurityConfiguration

@Nullable
public SecurityConfiguration getDefaultSecurityConfiguration(@Nonnull@NotEmpty
                                                             String profileId)

Specified by:: getDefaultSecurityConfiguration in interface RelyingPartyConfigurationResolver

getSigningCredentials

@Nonnull
@NonnullElements
@Unmodifiable
@NotLive
public List<org.opensaml.security.credential.Credential> getSigningCredentials()

Get the list of all configured signing credentials.

Returns:: the list of signing credentials

setSigningCredentials

public void setSigningCredentials(@Nullable
                         List<org.opensaml.security.credential.Credential> credentials)

Set the list of all configured signing credentials.

Parameters:: credentials - the list of signing credentials, may be null

getEncryptionCredentials

@Nonnull
@NonnullElements
@Unmodifiable
@NotLive
public List<org.opensaml.security.credential.Credential> getEncryptionCredentials()

Get the list of all configured encryption credentials.

Returns:: the list of encryption credentials

setEncryptionCredentials

public void setEncryptionCredentials(@Nullable
                            List<org.opensaml.security.credential.Credential> credentials)

Set the list of all configured encryption credentials.

Parameters:: credentials - the list of encryption credentials, may be null

setId
```
public void setId(@Nonnull
         String componentId)
```
Specified by:

setId in interface IdentifiableComponent

Overrides:

setId in class AbstractIdentifiedInitializableComponent

getComponent
```
@Nonnull
public RelyingPartyConfigurationResolver getComponent()
```
Specified by:

getComponent in interface ServiceableComponent<RelyingPartyConfigurationResolver>

Specified by:

getComponent in class AbstractServiceableComponent<RelyingPartyConfigurationResolver>

Class DefaultRelyingPartyConfigurationResolver

Field Summary

Constructor Summary

Method Summary

Methods inherited from class net.shibboleth.ext.spring.service.AbstractServiceableComponent

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractIdentifiedInitializableComponent

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

Methods inherited from class java.lang.Object

Methods inherited from interface net.shibboleth.utilities.java.support.component.IdentifiedComponent

Field Detail

log

rpConfigurations

unverifiedConfiguration

defaultConfiguration

verificationPredicate

securityConfigurationMap

defaultSecurityConfiguration

signingCredentials

encryptionCredentials

Constructor Detail

DefaultRelyingPartyConfigurationResolver

Method Detail

getRelyingPartyConfigurations

setRelyingPartyConfigurations

getDefaultConfiguration

setDefaultConfiguration

getUnverifiedConfiguration

setUnverifiedConfiguration

getVerificationPredicate