All Classes (Shibboleth IdP :: Plugins :: OIDC Common :: Profile Configuration API 2.2.0 API)

All Classes Interface Summary Class Summary Enum Summary
Class	Description
AbstractOIDCEntityContext	Abstract base class for subcontexts that carry information about a OIDC entity.
AccessTokenClaimsSetManipulationStrategyLookupFunction	A function that returns `(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
AccessTokenLifetimeLookupFunction	A function that returns `OAuth2AccessTokenProducingProfileConfiguration.getAccessTokenLifetime(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
AccessTokenTypeLookupFunction	A function that returns `OAuth2AccessTokenProducingProfileConfiguration.getAccessTokenType(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
AcrClaimAlwaysEssentialLookupFunction	A predicate that returns `OIDCAuthorizationConfiguration.isAcrRequestAlwaysEssential(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
AllowPKCEPlainPredicate	A predicate implementation that forwards to `OIDCSSOProfileConfiguration.isAllowPKCEPlain(ProfileRequestContext)`.
AlwaysIncludedAttributesLookupFunction	A function that obtains `OIDCIDTokenProducingProfileConfiguration.getAlwaysIncludedAttributes(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
AttributeConsentFlowEnabledPredicate	A predicate implementation that checks if attribute-release is included in the list of post authentication flows returned by `PostAuthenticationFlowsLookupFunction`.
AudienceRestrictionsLookupFunction	A function that returns the effective audience restrictions to include in ID tokens, based on combining a relying party's entityID with the result of `OIDCIDTokenProducingProfileConfiguration.getAdditionalAudiencesForIdToken(ProfileRequestContext)`, if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
AuditFields	Constants to use for audit logging fields stored in an `AuditContext`.
AuthenticationContextClassReferencePrincipal	Principal based on a OIDC Authentication Context Class Reference.
AuthenticationContextClassReferenceSupport	Support class for ACR operations.
AuthorizationCodeClaimsSetManipulationStrategyLookupFunction	A function that returns `(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
AuthorizationCodeFlowEnabledPredicate	A predicate implementation that forwards to `OAuth2FlowAwareProfileConfiguration.isAuthorizationCodeFlowEnabled(ProfileRequestContext)`.
AuthzCodeLifetimeLookupFunction	A function that returns `OAuth2AuthorizationCodeProducingProfileConfiguration.getAuthorizeCodeLifetime(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
ClaimsValidatorLookupFunction	A function that obtains `OAuth2ClientAuthenticableProfileConfiguration.getClaimsValidator(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
ClientInformationStringValueLookupFunction	Fetches the value for the configured key as `String`.
CredentialsListFactory	A factory that returns a list of credentials which does not contain any null elements.
DataEncryptionAlgorithmsLookupFunction	Deprecated, for removal: This API element is subject to removal in a future version.
DeniedUserInfoAttributesLookupFunction	A function that obtains `OIDCAuthorizationConfiguration.getDeniedUserInfoAttributes(ProfileRequestContext)` or `OIDCUserInfoConfiguration.getDeniedUserInfoAttributes(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
EncodeConsentPredicate	A predicate implementation that forwards to `OIDCAuthorizationConfiguration.isEncodeConsentInTokens(ProfileRequestContext)`.
EncodedAttributesLookupFunction	A function that obtains `OIDCAuthorizationConfiguration.getEncodedAttributes(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
EncryptionOptionalPredicate	A predicate implementation that forwards to `OAuth2TokenEncryptionProfileConfiguration.isEncryptionOptional(ProfileRequestContext)`.
EncryptRequestObjectPredicate	A predicate that determines if the RequestObject JWT should be encrypted based on the profile configuration.
EnforceRefreshTokenRotationPredicate	A predicate implementation that forwards to `OAuth2TokenConfiguration.isEnforceRefreshTokenRotation(ProfileRequestContext)`.
ForcePKCEPredicate	A predicate implementation that forwards to `OIDCSSOProfileConfiguration.isForcePKCE(ProfileRequestContext)`.
GrantTypesLookupFunction	A function that obtains `OAuth2TokenConfiguration.getGrantTypes(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
HybridFlowEnabledPredicate	A predicate implementation that forwards to `OIDCFlowAwareProfileConfiguration.isHybridFlowEnabled(ProfileRequestContext)`.
IDTokenLifetimeLookupFunction	A function that returns `OIDCIDTokenProducingProfileConfiguration.getIDTokenLifetime(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
IDTokenManipulationStrategyLookupFunction	A function that returns `OIDCIDTokenProducingProfileConfiguration.getIDTokenManipulationStrategy(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
ImplicitFlowEnabledPredicate	A predicate implementation that forwards to `OAuth2FlowAwareProfileConfiguration.isImplicitFlowEnabled(ProfileRequestContext)`.
IncludeIssuerInAuthenticationResponsePredicate	A predicate implementation that forwards to `OIDCAuthorizationConfiguration.isIncludeIssuerInResponse(ProfileRequestContext)`.
IssuedClaimsValidatorLookupFunction	A function that obtains `OAuth2TokenValidatingProfileConfiguration.getIssuedClaimsValidator(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
IssueIdTokenViaRefreshTokenPredicate	A predicate implementation that forwards to `OAuth2TokenConfiguration.isIssueIdTokenViaRefreshToken(ProfileRequestContext)`.
JSONErrorResponse	Class for creating JSON Error response for requests expecting JSON response.
JSONSecurityConfiguration	Class extends SecurityConfiguration to support separate configuration for various encryption and signature validation operations.
JSONSuccessResponse	Class for creating JSON Success response.
JWEDataEncryptionAlgorithmsLookupFunction	A function that returns `EncryptionConfiguration.getDataEncryptionAlgorithms()` if it is available in the OIDC security configuration of the profile configuration.
JWEKeyTransportEncryptionAlgorithmsLookupFunction	A function that returns `EncryptionConfiguration.getKeyTransportEncryptionAlgorithms()` if it is available in the OIDC security configuration of the profile configuration.
JWKCredentialsToPublishLookupStrategy	Strategy to locate the set of JWK credentials to publish in a KeySet document.
JWSSignatureAlgorithmsLookupFunction	A function that returns `SignatureSigningConfiguration.getSignatureAlgorithms()` if it is available in the OIDC security configuration of the profile configuration.
JWTDecryptionConfigurationLookupFunction	A function that returns a `DecryptionConfiguration` list for JWE decrypting by way of various lookup strategies.
JWTEncryptionConfigurationLookupFunction	A function that returns an `EncryptionConfiguration` list for JWT encryption by way of various lookup strategies.
JWTSignatureSigningConfigurationLookupFunction	A function that returns a `SignatureSigningConfiguration` list for JWT signing by way of various lookup strategies.
JWTSignatureValidationConfigurationLookupFunction	A function that returns a `SignatureValidationConfiguration` list for JWS validation by way of various lookup strategies.
KeyTransportEncryptionAlgorithmsLookupFunction	Deprecated, for removal: This API element is subject to removal in a future version.
MessageContextLookupFunctionAdaptor<ResultType>	Adaptor function that allows a profile request context lookup function to work inside a message handler.
OAuth2AccessTokenProducingProfileConfiguration	Configuration common to OAuth 2.0 access token producing profiles.
OAuth2AuthorizationCodeProducingProfileConfiguration	Configuration common to authorizaton code producing profiles.
OAuth2AuthorizationProfileConfiguration	Configuration for a generic OAuth 2.0 authorization request.
OAuth2AuthorizationProfileConfiguration.HttpRequestMethod	Enumeration of the HTTP methods used in various OAuth requests.
OAuth2ClientAuthenticableClientProfileConfiguration	OAuth 2.0 profile configurations that support OAuth-defined client authentication methods.
OAuth2ClientAuthenticableProfileConfiguration	OAuth 2.0 profile configurations that support OAuth-defined client authentication methods.
OAuth2FlowAwareProfileConfiguration	Interface for profile configurations that understand OAuth 2.0 authorization grants corresponding to OIDC authentication flows.
OAuth2ProfileConfiguration	Common interface for OAuth 2.0 Profile Configurations.
OAuth2RefreshTokenProducingProfileConfiguration	Configuration common to OAuth 2.0 refresh token producing profiles.
OAuth2TokenAudienceConfiguration	Profile interface for OAuth 2 token "audience" profile configuration.
OAuth2TokenConfiguration	OIDC-aware OAuth 2.0 token endpoint profile configuration.
OAuth2TokenEncryptionProfileConfiguration	Profile configuration for token endpoints that deal with encryption.
OAuth2TokenIntrospectionConfiguration	Profile configuration for OAuth2 Token Introspection.
OAuth2TokenRevocationConfiguration	Configuration for the OAuth 2.0 Token Revocation profile.
OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod	Enumeration of the OAuth2 token revocation methods.
OAuth2TokenValidatingProfileConfiguration	Profile configuration for OIDC-aware OAuth 2.0 token endpoints.
OAuthAuthorizationRequest	An OAuth 2.0 authorization request.
OIDCAuthenticationProfileConfiguration	Generic configuration for an OIDC 1.0 authentication request.
OIDCAuthenticationRelyingPartyProfileConfiguration	Configuration of an OIDC 1.0 authentication request.
OIDCAuthenticationRequest	OpenID Connect Authentication Request.
OIDCAuthorizationConfiguration	Configuration of an OIDC 1.0 authentication request.
OIDCDynamicRegistrationConfiguration	Configuration of OpenID Connect Dynamic Client Registration 1.0.
OidcError	Supplemental error objects for any missing values in the Nimbus library.
OidcEventIds	OpenID Connect -specific constants to use for `ProfileAction` `EventContext`s.
OIDCFlowAwareProfileConfiguration	Interface for profile configurations that understand OIDC specific authentication flows in addition to the OAuth 2.0 flows described by `OAuth2FlowAwareProfileConfiguration`.
OIDCIDTokenProducingProfileConfiguration	Configuration common to ID Token producing profiles.
OIDCMessageDecoder	Marker interface for OIDC Message Decoders.
OIDCMessageEncoder	An OIDC message encoder interface which requires implementations to test if the request method is supported by the encoder.
OIDCPeerEntityContext	Lightweight subcontext that carries information about a OIDC peer entity.
OIDCProfileConfiguration	Common interface for OpenID Connect 1.0 Profile Configurations.
OIDCProviderInformationConfiguration	Profile configuration for an OpenID Connect Provider Configuration.
OIDCPublishKeySetConfiguration	Configuration of an OpenID published key set document.
OIDCSecurityConfiguration	Deprecated, for removal: This API element is subject to removal in a future version. use `JSONSecurityConfiguration`
OIDCSSOProfileConfiguration	Profile configuration generic to all OIDC SSO profiles.
OIDCSSOProviderConfiguration	Profile configuration for an OIDC SSO Provider.
OIDCSSORelyingPartyConfiguration	Profile configuration for an OIDC SSO Client or Relying Party.
OIDCUserInfoConfiguration	Configuration for an OpenID Connect core protocol UserInfo endpoint.
ProviderMetadataStringValuesLookupFunction	Fetches the values for the configured key as `String`.
ProxyAwareDefaultOIDCAuthenticationContextClassRequestLookupFunction	Implements a set of default logic for determining the custom principals to derive the OIDC ACRs from.
ProxyAwareDefaultOIDCAuthenticationContextClassResponseLookupFunction	Implements a set of logic for determining the principals to use from OIDC 'amr' or 'acr' claims.
ProxyAwareDefaultOIDCAuthenticationContextClassResponseLookupFunction.LookupFunctionWrapper	A simple lookup function that returns a singleton function.
RefreshTokenChainLifetimeLookupFunction	A function that returns `OAuth2RefreshTokenProducingProfileConfiguration.getRefreshTokenChainLifetime(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
RefreshTokenClaimsSetManipulationStrategyLookupFunction	A function that returns `OAuth2TokenConfiguration.getRefreshTokenClaimsSetManipulationStrategy(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
RefreshTokenLifetimeLookupFunction	Deprecated, for removal: This API element is subject to removal in a future version. use `RefreshTokenTimeoutLookupFunction`
RefreshTokensEnabledPredicate	A predicate implementation that forwards to `OAuth2FlowAwareProfileConfiguration.isRefreshTokensEnabled(ProfileRequestContext)`.
RefreshTokenTimeoutLookupFunction	A function that returns `OAuth2RefreshTokenProducingProfileConfiguration.getRefreshTokenTimeout(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
RegistrationMetadataPolicyLookupFunction	A function that returns `OIDCDynamicRegistrationConfiguration.getMetadataPolicy(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
RegistrationValidityPeriodLookupFunction	A function that returns `OIDCDynamicRegistrationConfiguration.getRegistrationValidityPeriod(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
RequestObjectDecryptionConfigurationLookupFunction	Deprecated, for removal: This API element is subject to removal in a future version.
RequestObjectSignatureValidationConfigurationLookupFunction	Deprecated, for removal: This API element is subject to removal in a future version.
ResolverBasedRegistrationMetadataPolicyLookupFunction	A lookup function for the map of `MetadataPolicy` objects, resolved via configurable `MetadataPolicyResolver` and optionally configurable `CriteriaSet`.
RevocationLifetimeLookupFunction	A function that returns `OAuth2TokenRevocationConfiguration.getRevocationLifetime(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
RevocationMethodLookupFunction	A function that returns `OAuth2TokenRevocationConfiguration.getRevocationMethod(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
SecretExpirationPeriodLookupFunction	A function that returns `OIDCDynamicRegistrationConfiguration.getSecretExpirationPeriod(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
SignatureAlgorithmsLookupFunction	Deprecated, for removal: This API element is subject to removal in a future version.
SignRequestObjectPredicate	A predicate that determines if the RequestObject JWT should be signed based on the profile configuration.
TokenEndpointAuthMethodLookupFunction	A function that obtains `OAuth2ClientAuthenticableProfileConfiguration.getTokenEndpointAuthMethods(ProfileRequestContext)` if such a profile is available from a `RelyingPartyContext` obtained via a lookup function, by default a child of the `ProfileRequestContext`.
TokenEndpointJwtSignatureValidationConfigurationLookupFunction	Deprecated, for removal: This API element is subject to removal in a future version.
UseRequestObjectPredicate	A predicate that determines if a RequestObject JWT should be used based on the profile configuration.