Index (Shibboleth IdP :: Plugins :: OIDC Common :: Profile Configuration API 2.2.0 API)

A B C D E F G H I J K L M N O P R S T U V
All Classes All Packages

A

AbstractOIDCEntityContext - Class in net.shibboleth.oidc.profile.messaging.context: Abstract base class for subcontexts that carry information about a OIDC entity.
AbstractOIDCEntityContext() - Constructor for class net.shibboleth.oidc.profile.messaging.context.AbstractOIDCEntityContext
AccessTokenClaimsSetManipulationStrategyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns (ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AccessTokenClaimsSetManipulationStrategyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AccessTokenClaimsSetManipulationStrategyLookupFunction
AccessTokenLifetimeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2AccessTokenProducingProfileConfiguration.getAccessTokenLifetime(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AccessTokenLifetimeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AccessTokenLifetimeLookupFunction
AccessTokenTypeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2AccessTokenProducingProfileConfiguration.getAccessTokenType(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AccessTokenTypeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AccessTokenTypeLookupFunction
ACR - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The authentication context reference value.
AcrClaimAlwaysEssentialLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A predicate that returns OIDCAuthorizationConfiguration.isAcrRequestAlwaysEssential(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AcrClaimAlwaysEssentialLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AcrClaimAlwaysEssentialLookupFunction
acrs - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: List of requested authentication context class reference values.
ACRS - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The authentication context class references for the authentication request.
activeProfileOnly - Variable in class net.shibboleth.oidc.profile.config.navigate.RevocationLifetimeLookupFunction: The flag whether to use active profile only.
adaptedFunction - Variable in class net.shibboleth.oidc.profile.config.navigate.MessageContextLookupFunctionAdaptor: The adapted function.
AllowPKCEPlainPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OIDCSSOProfileConfiguration.isAllowPKCEPlain(ProfileRequestContext).
AllowPKCEPlainPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.AllowPKCEPlainPredicate
AlwaysIncludedAttributesLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains OIDCIDTokenProducingProfileConfiguration.getAlwaysIncludedAttributes(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AlwaysIncludedAttributesLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AlwaysIncludedAttributesLookupFunction
apply(OIDCProviderMetadata) - Method in class net.shibboleth.oidc.profile.config.navigate.ProviderMetadataStringValuesLookupFunction
apply(OIDCClientInformation) - Method in class net.shibboleth.oidc.profile.config.navigate.ClientInformationStringValueLookupFunction
apply(Collection<String>) - Method in class net.shibboleth.oidc.profile.config.navigate.ProxyAwareDefaultOIDCAuthenticationContextClassResponseLookupFunction
apply(JSONSecurityConfiguration) - Method in class net.shibboleth.oidc.profile.config.navigate.JWKCredentialsToPublishLookupStrategy
apply(MessageContext) - Method in class net.shibboleth.oidc.profile.config.navigate.MessageContextLookupFunctionAdaptor
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AccessTokenClaimsSetManipulationStrategyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AccessTokenLifetimeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AccessTokenTypeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AlwaysIncludedAttributesLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AudienceRestrictionsLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AuthorizationCodeClaimsSetManipulationStrategyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AuthzCodeLifetimeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.ClaimsValidatorLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.DataEncryptionAlgorithmsLookupFunction: Deprecated.
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.DeniedUserInfoAttributesLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.EncodedAttributesLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.GrantTypesLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.IDTokenLifetimeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.IDTokenManipulationStrategyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.IssuedClaimsValidatorLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.JWEDataEncryptionAlgorithmsLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.JWEKeyTransportEncryptionAlgorithmsLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.JWSSignatureAlgorithmsLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.JWTDecryptionConfigurationLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.JWTEncryptionConfigurationLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.JWTSignatureSigningConfigurationLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.JWTSignatureValidationConfigurationLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.KeyTransportEncryptionAlgorithmsLookupFunction: Deprecated.
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.ProxyAwareDefaultOIDCAuthenticationContextClassRequestLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.ProxyAwareDefaultOIDCAuthenticationContextClassResponseLookupFunction.LookupFunctionWrapper
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RefreshTokenChainLifetimeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RefreshTokenClaimsSetManipulationStrategyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RefreshTokenLifetimeLookupFunction: Deprecated.
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RefreshTokenTimeoutLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RegistrationMetadataPolicyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RegistrationValidityPeriodLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RequestObjectDecryptionConfigurationLookupFunction: Deprecated.
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RequestObjectSignatureValidationConfigurationLookupFunction: Deprecated.
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RevocationLifetimeLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.RevocationMethodLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.SecretExpirationPeriodLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.SignatureAlgorithmsLookupFunction: Deprecated.
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.TokenEndpointAuthMethodLookupFunction
apply(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.TokenEndpointJwtSignatureValidationConfigurationLookupFunction: Deprecated.
AttributeConsentFlowEnabledPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that checks if attribute-release is included in the list of post authentication flows returned by PostAuthenticationFlowsLookupFunction.
AttributeConsentFlowEnabledPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.AttributeConsentFlowEnabledPredicate
AUDIENCE - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: Token audience.
AudienceRestrictionsLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns the effective audience restrictions to include in ID tokens, based on combining a relying party's entityID with the result of OIDCIDTokenProducingProfileConfiguration.getAdditionalAudiencesForIdToken(ProfileRequestContext), if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AudienceRestrictionsLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AudienceRestrictionsLookupFunction
AuditFields - Class in net.shibboleth.oidc.profile.audit: Constants to use for audit logging fields stored in an AuditContext.
AuditFields() - Constructor for class net.shibboleth.oidc.profile.audit.AuditFields: Constructor.
AUTHENTICATION_FLOW_STEP - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The authentication flow step e.g.
AUTHENTICATION_RESULT - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The authentication response result, including any error code if there are any.
AuthenticationContextClassReferencePrincipal - Class in net.shibboleth.oidc.authn.principal: Principal based on a OIDC Authentication Context Class Reference.
AuthenticationContextClassReferencePrincipal(String) - Constructor for class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal: Constructor.
AuthenticationContextClassReferenceSupport - Class in net.shibboleth.oidc.profile.encoding: Support class for ACR operations.
AuthenticationContextClassReferenceSupport() - Constructor for class net.shibboleth.oidc.profile.encoding.AuthenticationContextClassReferenceSupport: Private constructor.
AUTHN_INSTANT - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: auth_time value.
authnContextClassReference - Variable in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal: The class ref.
authnRequestTime - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: The time at which the RP made the authentication request to the OP.
AUTHORIZATION_ENDPOINT - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The authorization endpoint for the authentication request.
AuthorizationCodeClaimsSetManipulationStrategyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns (ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AuthorizationCodeClaimsSetManipulationStrategyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AuthorizationCodeClaimsSetManipulationStrategyLookupFunction
AuthorizationCodeFlowEnabledPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OAuth2FlowAwareProfileConfiguration.isAuthorizationCodeFlowEnabled(ProfileRequestContext).
AuthorizationCodeFlowEnabledPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.AuthorizationCodeFlowEnabledPredicate
AuthzCodeLifetimeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2AuthorizationCodeProducingProfileConfiguration.getAuthorizeCodeLifetime(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
AuthzCodeLifetimeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.AuthzCodeLifetimeLookupFunction

B

buildACRClaimsRequest(OIDCAuthenticationRequest) - Static method in class net.shibboleth.oidc.profile.encoding.AuthenticationContextClassReferenceSupport: Build an ID Token requested claims request with any ACR values in the authentication request.

C

cacheControl - Variable in class net.shibboleth.oidc.profile.messaging.JSONErrorResponse: cache control value.
cacheControl - Variable in class net.shibboleth.oidc.profile.messaging.JSONSuccessResponse: cache control value.
CHAIN - net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod: Revoke full chain of tokens (from authorization code (or initial access token) onwards).
ClaimsValidatorLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains OAuth2ClientAuthenticableProfileConfiguration.getClaimsValidator(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
ClaimsValidatorLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.ClaimsValidatorLookupFunction
CLIENT_ID - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: OIDC client ID.
clientID - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The client identifier.
ClientInformationStringValueLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: Fetches the value for the configured key as String.
ClientInformationStringValueLookupFunction(String) - Constructor for class net.shibboleth.oidc.profile.config.navigate.ClientInformationStringValueLookupFunction: Constructor.
clone() - Method in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal
content - Variable in class net.shibboleth.oidc.profile.messaging.JSONSuccessResponse: JSON content.
createInstance() - Method in class net.shibboleth.oidc.profile.config.CredentialsListFactory
credentials - Variable in class net.shibboleth.oidc.profile.config.CredentialsListFactory: The credentials which may contain null elements.
CredentialsListFactory - Class in net.shibboleth.oidc.profile.config: A factory that returns a list of credentials which does not contain any null elements.
CredentialsListFactory(List<Credential>) - Constructor for class net.shibboleth.oidc.profile.config.CredentialsListFactory: Constructor.
criteriaSetLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction: The lookup strategy for the criteria set used for the metadata policy resolver.

D

DataEncryptionAlgorithmsLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: Deprecated, for removal: This API element is subject to removal in a future version.
DataEncryptionAlgorithmsLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.DataEncryptionAlgorithmsLookupFunction: Deprecated.
DEFAULT_OPENID_SCOPE - Static variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: The default OpenID scope.
defaultResponseMode - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The default response mode for the given response_type.
DeniedUserInfoAttributesLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains OIDCAuthorizationConfiguration.getDeniedUserInfoAttributes(ProfileRequestContext) or OIDCUserInfoConfiguration.getDeniedUserInfoAttributes(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
DeniedUserInfoAttributesLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.DeniedUserInfoAttributesLookupFunction
display - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: ASCII string value that specifies how the Authorization Server displays the authentication and consent user interface pages to the End-User.

E

EncodeConsentPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OIDCAuthorizationConfiguration.isEncodeConsentInTokens(ProfileRequestContext).
EncodeConsentPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.EncodeConsentPredicate
EncodedAttributesLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains OIDCAuthorizationConfiguration.getEncodedAttributes(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
EncodedAttributesLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.EncodedAttributesLookupFunction
ENCRYPTED_ID_TOKEN - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The flag whether the id_token is encrypted.
EncryptionOptionalPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OAuth2TokenEncryptionProfileConfiguration.isEncryptionOptional(ProfileRequestContext).
EncryptionOptionalPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.EncryptionOptionalPredicate
EncryptRequestObjectPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate that determines if the RequestObject JWT should be encrypted based on the profile configuration.
EncryptRequestObjectPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.EncryptRequestObjectPredicate
endpointURI - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The request endpoint.
EnforceRefreshTokenRotationPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OAuth2TokenConfiguration.isEnforceRefreshTokenRotation(ProfileRequestContext).
EnforceRefreshTokenRotationPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.EnforceRefreshTokenRotationPredicate
equals(Object) - Method in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal
error - Variable in class net.shibboleth.oidc.profile.messaging.JSONErrorResponse: Error object.

F

FORCE_AUTHN - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: prompt=login requested field.
ForcePKCEPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OIDCSSOProfileConfiguration.isForcePKCE(ProfileRequestContext).
ForcePKCEPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.ForcePKCEPredicate
function - Variable in class net.shibboleth.oidc.profile.config.navigate.ProxyAwareDefaultOIDCAuthenticationContextClassResponseLookupFunction.LookupFunctionWrapper: A function used to map OIDC ACR/AMRs to Principals.

G

GET - net.shibboleth.oidc.profile.oauth2.config.OAuth2AuthorizationProfileConfiguration.HttpRequestMethod: HTTP GET.
getAccessTokenClaimsSetManipulationStrategy(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2AccessTokenProducingProfileConfiguration: Get the bi-function for manipulating access token claims set.
getAccessTokenLifetime(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2AccessTokenProducingProfileConfiguration: Get access token lifetime.
getAccessTokenType(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2AccessTokenProducingProfileConfiguration: Get access token type.
getAcrs() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the ACRs.
getAdditionalAudiencesForIdToken(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCIDTokenProducingProfileConfiguration: Get the set of audiences, in addition to the relying party(ies) to which the IdP is issuing the ID Token, with which the token may be shared.
getAlwaysIncludedAttributes(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCIDTokenProducingProfileConfiguration: Get the set of attribute IDs which should be included in the ID token regardless of response_type.
getAuthenticationContextClassReferenceTranslationStrategy(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationProfileConfiguration: Get the function used to translate ACRs in the id_token into an appropriate set of custom Principal objects to populate into the subject.
getAuthenticationMethodsReferencesTranslationStrategy(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationProfileConfiguration: Get the function used to translate AMRs in the id_token into an appropriate set of custom Principal objects to populate into the subject.
getAuthnRequestTime() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the time at which this RP sent this authentication request to the OP.
getAuthorizationCodeClaimsSetManipulationStrategy(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2AuthorizationCodeProducingProfileConfiguration: Get the bi-function for manipulating authorization code claims set.
getAuthorizeCodeLifetime(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2AuthorizationCodeProducingProfileConfiguration: Get authz code lifetime.
getClaimsValidator(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2ClientAuthenticableProfileConfiguration: Get the ClaimsValidator to apply to JWT-based client authentication.
getClientCredential(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2ClientAuthenticableClientProfileConfiguration: Get the client credential for the given context.
getClientId(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2ClientAuthenticableClientProfileConfiguration: Get the client_id appropriate for the given context.
getClientID() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the client ID.
getContent() - Method in class net.shibboleth.oidc.profile.messaging.JSONErrorResponse: Error content as json.
getDefaultResponseMode() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the response_mode to use with this authentication request.
getDeniedUserInfoAttributes(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get the set of attribute IDs which should be omitted from the UserInfo token.
getDeniedUserInfoAttributes(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: Get the set of attribute IDs which should be omitted from the UserInfo token.
getDisplay() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the display.
getEncodedAttributes(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get the set of attribute IDs which should be encoded in encrypted form into the authorization code and/or access/refresh tokens to enable recovery on the back-channel.
getEndpointURI() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the endpoint_uri.
getErrorObject() - Method in class net.shibboleth.oidc.profile.messaging.JSONErrorResponse
getGrantTypes(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Get the enabled grant types.
getHttpRequestMethod(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2AuthorizationProfileConfiguration: Get the HTTP request method for an authentication request.
getIdentifier() - Method in class net.shibboleth.oidc.profile.messaging.context.AbstractOIDCEntityContext: Gets the identifier of the OIDC entity.
getIDTokenLifetime(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCIDTokenProducingProfileConfiguration: Get ID token lifetime.
getIDTokenManipulationStrategy(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCIDTokenProducingProfileConfiguration: Get the bi-function for manipulating id_token claims.
getIssuedClaimsValidator(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenValidatingProfileConfiguration: Get the ClaimsValidator to apply to issued JWT-based tokens being validated by this profile.
getJwtDecryptionConfiguration() - Method in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Get the configuration used when decrypting JWE tokens.
getJwtEncryptionConfiguration() - Method in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Get the configuration used when encrypting JWE tokens.
getJwtSignatureSigningConfiguration() - Method in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Get the configuration used when signing JWS tokens.
getJwtSignatureValidationConfiguration() - Method in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Get the configuration used when validating JWS tokens.
getLoginHint() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the login_hint parameter.
getLoginHint(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationProfileConfiguration: Get the login_hint to use.
getMaxAge() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the max age.
getMaxAuthenticationAge(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationProfileConfiguration: Get the max authentication age.
getMetadataPolicy(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Get the metadata policy.
getName() - Method in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal
getNonce() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the nonce.
getObjectType() - Method in class net.shibboleth.oidc.profile.config.CredentialsListFactory
getProfileRequestContextLookupStrategy() - Method in class net.shibboleth.oidc.profile.config.navigate.MessageContextLookupFunctionAdaptor: Get the profile request context lookup strategy used to adapt the message context.
getPrompt() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the prompt.
getRedirectURI() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the redirect_uri.
getRedirectUriOverride(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationRelyingPartyProfileConfiguration: Get the redirect_uri override if set.
getRefreshTokenChainLifetime(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2RefreshTokenProducingProfileConfiguration: Get refresh token chain lifetime.
getRefreshTokenClaimsSetManipulationStrategy(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Get the bi-function for manipulating refresh token claims set.
getRefreshTokenLifetime(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2RefreshTokenProducingProfileConfiguration: Deprecated, for removal: This API element is subject to removal in a future version.
Use OAuth2RefreshTokenProducingProfileConfiguration.getRefreshTokenTimeout(ProfileRequestContext)
getRefreshTokenTimeout(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2RefreshTokenProducingProfileConfiguration: Get refresh token timeout.
getRegistrationValidityPeriod(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Get dynamic registration validity period.
getRequestedClaims() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the requested claims.
getRequestObject() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the request object.
getRequestObjectClaimsSet() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the request object claims set.
getRequestObjectDecryptionConfiguration() - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Deprecated, for removal: This API element is subject to removal in a future version.
getRequestObjectSignatureValidationConfiguration() - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Deprecated, for removal: This API element is subject to removal in a future version.
getRequestURI() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Get the URI to fetch the request object from.
getResponseMode() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the response mode.
getResponseMode(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2AuthorizationProfileConfiguration: Get the response_mode to use for authorization requests.
getResponseType() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the response type.
getResponseType(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2AuthorizationProfileConfiguration: Get the response_type to use for authorization requests.
getRevocationLifetime(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Get revocation lifetime.
getRevocationMethod(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: Get the revocation method used when revoking a token.
getScope() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the scope.
getScopes(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2AuthorizationProfileConfiguration: Get the scopes to use in authentication requests.
getSecretExpirationPeriod(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: Get client secret expiration period.
getState() - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Get the state.
getTokenEndpointAuthMethod(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2ClientAuthenticableClientProfileConfiguration: Get the token endpoint authentication method to use with an OpenID Provider.
getTokenEndpointAuthMethods(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2ClientAuthenticableProfileConfiguration: Get the enabled token endpoint authentication methods.
getTokenEndpointJwtSignatureValidationConfiguration() - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Deprecated, for removal: This API element is subject to removal in a future version.
getUserInfoHttpRequestMethod(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationRelyingPartyProfileConfiguration: Get the HTTP request method for the UserInfo request.
GrantTypesLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains OAuth2TokenConfiguration.getGrantTypes(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
GrantTypesLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.GrantTypesLookupFunction

H

hashCode() - Method in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal
HttpRequestMethod() - Constructor for enum net.shibboleth.oidc.profile.oauth2.config.OAuth2AuthorizationProfileConfiguration.HttpRequestMethod
HybridFlowEnabledPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OIDCFlowAwareProfileConfiguration.isHybridFlowEnabled(ProfileRequestContext).
HybridFlowEnabledPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.HybridFlowEnabledPredicate

I

ID_TOKEN_ISSUE_INSTANT - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: id_token issue instant.
identifer - Variable in class net.shibboleth.oidc.profile.messaging.context.AbstractOIDCEntityContext: The identifier of the OIDC peer entity e.g.
IDTokenLifetimeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OIDCIDTokenProducingProfileConfiguration.getIDTokenLifetime(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
IDTokenLifetimeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.IDTokenLifetimeLookupFunction
IDTokenManipulationStrategyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OIDCIDTokenProducingProfileConfiguration.getIDTokenManipulationStrategy(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
IDTokenManipulationStrategyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.IDTokenManipulationStrategyLookupFunction
ImplicitFlowEnabledPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OAuth2FlowAwareProfileConfiguration.isImplicitFlowEnabled(ProfileRequestContext).
ImplicitFlowEnabledPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.ImplicitFlowEnabledPredicate
INBOUND_MESSAGE_CLASS - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The inbound (Nimbus) message class.
IncludeIssuerInAuthenticationResponsePredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OIDCAuthorizationConfiguration.isIncludeIssuerInResponse(ProfileRequestContext).
IncludeIssuerInAuthenticationResponsePredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.IncludeIssuerInAuthenticationResponsePredicate
indicatesSuccess() - Method in class net.shibboleth.oidc.profile.messaging.JSONErrorResponse
indicatesSuccess() - Method in class net.shibboleth.oidc.profile.messaging.JSONSuccessResponse
INVALID_ACCESS_TOKEN - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The id_token is invalid.
INVALID_GRANT - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The provided authorization grant is invalid.
INVALID_GRANT_TYPE - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The grant type in token request is not supported for RP.
INVALID_ID_TOKEN - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The id_token is invalid.
INVALID_PKCE_TRANSFORMATION_METHOD - Static variable in class net.shibboleth.oidc.profile.core.OidcError: The request contains an unsupported PKCE transform algorithm.
INVALID_PKCE_TRANSFORMATION_METHOD - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: ID of event returned if the PKCE code verifier transformation method is invalid.
INVALID_REDIRECT_URI - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The redirect_uri in request is invalid.
INVALID_REDIRECT_URIS - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: ID of event returned if the mandatory redirect_uris is invalid.
INVALID_REQUEST_OBJECT - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The request object cannot be validated.
INVALID_REQUEST_URI - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The request uri is invalid.
INVALID_RESPONSE_TYPE - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The response type in request is not supported for RP.
INVALID_SCOPE - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The scope is invalid.
INVALID_SUBJECT - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The subject resolved is not the expected one.
INVALID_TARGET - Static variable in class net.shibboleth.oidc.profile.core.OidcError: The resource indicator is invalid.
INVALID_TARGET - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The resource indicator is invalid.
INVALID_TARGET_CODE - Static variable in class net.shibboleth.oidc.profile.core.OidcError: The resource indicator is invalid.
INVALID_TOKEN - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The token is invalid.
INVALID_USERINFO_CLAIMS - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The UserInfo claims are invalid.
IS_PASSIVE - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: prompt=none requested field.
isAcrRequestAlwaysEssential(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get whether all acr claim requests should be treated as Essential.
isAllowPKCEPlain(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCSSOProfileConfiguration: Get whether client is allowed to use PKCE code challenge method plain.
isAuthorizationCodeFlowEnabled(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2FlowAwareProfileConfiguration: Get whether authorization code flow is supported by this profile.
isEncodeConsentInTokens(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get whether to encode consent in authorization code and access/refresh tokens.
isEncryptionOptional(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenEncryptionProfileConfiguration: Get whether encryption is optional in the face of a missing key, etc.
isEncryptRequestObject(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationRelyingPartyProfileConfiguration: Should the RequestObject (if configured) be encrypted?
isEnforceRefreshTokenRotation(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Get whether always revoke the refresh_token after it's used.
isForcePKCE(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCSSOProfileConfiguration: Get whether client is required to use PKCE.
isHybridFlowEnabled(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCFlowAwareProfileConfiguration: Get whether the implicit flow is supported by this profile.
isImplicitFlowEnabled(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2FlowAwareProfileConfiguration: Get whether hybrid flow is supported by this profile.
isIncludeIssuerInResponse(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: Get whether to include iss parameter in the authentication response.
isIssueIdTokenViaRefreshToken(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: Get whether the id_token is issued when refresh token grant is used.
isProxiedAuthnInstant(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationRelyingPartyProfileConfiguration: Gets whether authentication results produced by use of this profile should carry the proxied assertion's auth_time from the id_token, rather than the current time.
isRefreshTokensEnabled(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2FlowAwareProfileConfiguration: Get whether refresh tokens are supported by this profile.
isRetrieveUserInfoEndpointClaims(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationRelyingPartyProfileConfiguration: Get whether to make a request to the UserInfo Endpoint to obtain authenticated End-User claims.
isSignRequestObject(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationRelyingPartyProfileConfiguration: Should the RequestObject (if configured) be signed?
IssuedClaimsValidatorLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains OAuth2TokenValidatingProfileConfiguration.getIssuedClaimsValidator(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
IssuedClaimsValidatorLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.IssuedClaimsValidatorLookupFunction
IssueIdTokenViaRefreshTokenPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OAuth2TokenConfiguration.isIssueIdTokenViaRefreshToken(ProfileRequestContext).
IssueIdTokenViaRefreshTokenPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.IssueIdTokenViaRefreshTokenPredicate
ISSUER - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: OIDC issuer.
isTlsServerValidationSufficient(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationRelyingPartyProfileConfiguration: Is TLS server validation of the token endpoint sufficient to verify an id_token without checking the id_token signature.
isUseRequestObject(ProfileRequestContext) - Method in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationProfileConfiguration: Should OpenID specific authentication request parameters should be passed in a single, self contained, JWT?

J

JSONErrorResponse - Class in net.shibboleth.oidc.profile.messaging: Class for creating JSON Error response for requests expecting JSON response.
JSONErrorResponse(ErrorObject) - Constructor for class net.shibboleth.oidc.profile.messaging.JSONErrorResponse: Constructor.
JSONErrorResponse(ErrorObject, String, String) - Constructor for class net.shibboleth.oidc.profile.messaging.JSONErrorResponse: Constructor.
JSONSecurityConfiguration - Class in net.shibboleth.oidc.profile.config: Class extends SecurityConfiguration to support separate configuration for various encryption and signature validation operations.
JSONSecurityConfiguration() - Constructor for class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration
JSONSuccessResponse - Class in net.shibboleth.oidc.profile.messaging: Class for creating JSON Success response.
JSONSuccessResponse(JSONObject) - Constructor for class net.shibboleth.oidc.profile.messaging.JSONSuccessResponse: Constructor.
JSONSuccessResponse(JSONObject, String, String) - Constructor for class net.shibboleth.oidc.profile.messaging.JSONSuccessResponse: Constructor.
JWEDataEncryptionAlgorithmsLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns EncryptionConfiguration.getDataEncryptionAlgorithms() if it is available in the OIDC security configuration of the profile configuration.
JWEDataEncryptionAlgorithmsLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.JWEDataEncryptionAlgorithmsLookupFunction
JWEKeyTransportEncryptionAlgorithmsLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns EncryptionConfiguration.getKeyTransportEncryptionAlgorithms() if it is available in the OIDC security configuration of the profile configuration.
JWEKeyTransportEncryptionAlgorithmsLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.JWEKeyTransportEncryptionAlgorithmsLookupFunction
JWKCredentialsToPublishLookupStrategy - Class in net.shibboleth.oidc.profile.config.navigate: Strategy to locate the set of JWK credentials to publish in a KeySet document.
JWKCredentialsToPublishLookupStrategy() - Constructor for class net.shibboleth.oidc.profile.config.navigate.JWKCredentialsToPublishLookupStrategy
JWSSignatureAlgorithmsLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns SignatureSigningConfiguration.getSignatureAlgorithms() if it is available in the OIDC security configuration of the profile configuration.
JWSSignatureAlgorithmsLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.JWSSignatureAlgorithmsLookupFunction
jwtDecryptConfig - Variable in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Configuration used when decrypting JWE tokens.
jwtDecryptConfig - Variable in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Deprecated.

Configuration used when decrypting JWE tokens.
JWTDecryptionConfigurationLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns a DecryptionConfiguration list for JWE decrypting by way of various lookup strategies.
JWTDecryptionConfigurationLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.JWTDecryptionConfigurationLookupFunction
jwtEncryptConfig - Variable in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Configuration used when encrypting JWE tokens.
JWTEncryptionConfigurationLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns an EncryptionConfiguration list for JWT encryption by way of various lookup strategies.
JWTEncryptionConfigurationLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.JWTEncryptionConfigurationLookupFunction
jwtSignatureSigningConfig - Variable in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Configuration used when JWS tokens.
JWTSignatureSigningConfigurationLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns a SignatureSigningConfiguration list for JWT signing by way of various lookup strategies.
JWTSignatureSigningConfigurationLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.JWTSignatureSigningConfigurationLookupFunction
jwtSignatureValidationConfig - Variable in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Configuration used when validating JWS signatures.
JWTSignatureValidationConfigurationLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns a SignatureValidationConfiguration list for JWS validation by way of various lookup strategies.
JWTSignatureValidationConfigurationLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.JWTSignatureValidationConfigurationLookupFunction

K

keyName - Variable in class net.shibboleth.oidc.profile.config.navigate.ClientInformationStringValueLookupFunction: The key for which to fetch the value for.
keyName - Variable in class net.shibboleth.oidc.profile.config.navigate.ProviderMetadataStringValuesLookupFunction: The key for which to fetch the value for.
KeyTransportEncryptionAlgorithmsLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: Deprecated, for removal: This API element is subject to removal in a future version.
KeyTransportEncryptionAlgorithmsLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.KeyTransportEncryptionAlgorithmsLookupFunction: Deprecated.

L

log - Variable in class net.shibboleth.oidc.profile.config.navigate.ClientInformationStringValueLookupFunction: Class logger.
log - Variable in class net.shibboleth.oidc.profile.config.navigate.JWKCredentialsToPublishLookupStrategy: Class logger.
log - Variable in class net.shibboleth.oidc.profile.config.navigate.ProviderMetadataStringValuesLookupFunction: Class logger.
log - Variable in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction: Class logger.
loginHint - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Hint to the Authorization Server about the login identifier the End-User might use to log in.
LookupFunctionWrapper(Function<Collection<String>, Collection<Principal>>) - Constructor for class net.shibboleth.oidc.profile.config.navigate.ProxyAwareDefaultOIDCAuthenticationContextClassResponseLookupFunction.LookupFunctionWrapper: Constructor.

M

maxAge - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Specifies the allowable elapsed time in seconds since the last time the End-User was actively authenticated by the OP.
MessageContextLookupFunctionAdaptor<ResultType> - Class in net.shibboleth.oidc.profile.config.navigate: Adaptor function that allows a profile request context lookup function to work inside a message handler.
MessageContextLookupFunctionAdaptor(Function<ProfileRequestContext, ResultType>) - Constructor for class net.shibboleth.oidc.profile.config.navigate.MessageContextLookupFunctionAdaptor: Constructor.
metadataPolicyResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction: The metadata policy resolver.
MISSING_MANDATORY_REQUEST_OBJECT - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The request object or uri is missing in request, even though it's mandatory.
MISSING_PKCE_CODE_CHALLENGE - Static variable in class net.shibboleth.oidc.profile.core.OidcError: The request is missing a required PKCE code challenge.
MISSING_PKCE_CODE_CHALLENGE - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: ID of event returned if the mandatory PKCE code challenge is missing.
MISSING_REDIRECT_URIS - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: ID of event returned if the mandatory redirect_uris is missing.

N

net.shibboleth.oidc.authn.principal - package net.shibboleth.oidc.authn.principal: OIDC-specific classes for integration with idp-authn-api packages.
net.shibboleth.oidc.profile.audit - package net.shibboleth.oidc.profile.audit: Audit logging related to OIDC functionality.
net.shibboleth.oidc.profile.config - package net.shibboleth.oidc.profile.config: Profile configurations related to OIDC functionality.
net.shibboleth.oidc.profile.config.logic - package net.shibboleth.oidc.profile.config.logic: Configuration predicates.
net.shibboleth.oidc.profile.config.navigate - package net.shibboleth.oidc.profile.config.navigate: Navigation functions related to OIDC profile configurations.
net.shibboleth.oidc.profile.core - package net.shibboleth.oidc.profile.core: Core profile classes.
net.shibboleth.oidc.profile.decoding - package net.shibboleth.oidc.profile.decoding: OIDC message decoder API.
net.shibboleth.oidc.profile.encoding - package net.shibboleth.oidc.profile.encoding: OIDC message encoder API.
net.shibboleth.oidc.profile.messaging - package net.shibboleth.oidc.profile.messaging: OIDC messaging interfaces and classes.
net.shibboleth.oidc.profile.messaging.context - package net.shibboleth.oidc.profile.messaging.context: OIDC messaging contexts.
net.shibboleth.oidc.profile.oauth2.config - package net.shibboleth.oidc.profile.oauth2.config: OAuth2 profile configurations.
nonce - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: The nonce.
NONCE - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: id_token nonce.

O

OAuth2AccessTokenProducingProfileConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Configuration common to OAuth 2.0 access token producing profiles.
OAuth2AuthorizationCodeProducingProfileConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Configuration common to authorizaton code producing profiles.
OAuth2AuthorizationProfileConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Configuration for a generic OAuth 2.0 authorization request.
OAuth2AuthorizationProfileConfiguration.HttpRequestMethod - Enum in net.shibboleth.oidc.profile.oauth2.config: Enumeration of the HTTP methods used in various OAuth requests.
OAuth2ClientAuthenticableClientProfileConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: OAuth 2.0 profile configurations that support OAuth-defined client authentication methods.
OAuth2ClientAuthenticableProfileConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: OAuth 2.0 profile configurations that support OAuth-defined client authentication methods.
OAuth2FlowAwareProfileConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Interface for profile configurations that understand OAuth 2.0 authorization grants corresponding to OIDC authentication flows.
OAuth2ProfileConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Common interface for OAuth 2.0 Profile Configurations.
OAuth2RefreshTokenProducingProfileConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Configuration common to OAuth 2.0 refresh token producing profiles.
OAuth2TokenAudienceConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Profile interface for OAuth 2 token "audience" profile configuration.
OAuth2TokenConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: OIDC-aware OAuth 2.0 token endpoint profile configuration.
OAuth2TokenEncryptionProfileConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Profile configuration for token endpoints that deal with encryption.
OAuth2TokenIntrospectionConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Profile configuration for OAuth2 Token Introspection.
OAuth2TokenRevocationConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Configuration for the OAuth 2.0 Token Revocation profile.
OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod - Enum in net.shibboleth.oidc.profile.oauth2.config: Enumeration of the OAuth2 token revocation methods.
OAuth2TokenRevocationMethod() - Constructor for enum net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod
OAuth2TokenValidatingProfileConfiguration - Interface in net.shibboleth.oidc.profile.oauth2.config: Profile configuration for OIDC-aware OAuth 2.0 token endpoints.
OAuthAuthorizationRequest - Class in net.shibboleth.oidc.profile.core: An OAuth 2.0 authorization request.
OAuthAuthorizationRequest(ClientID) - Constructor for class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Constructor.
OIDCAuthenticationProfileConfiguration - Interface in net.shibboleth.oidc.profile.config: Generic configuration for an OIDC 1.0 authentication request.
OIDCAuthenticationRelyingPartyProfileConfiguration - Interface in net.shibboleth.oidc.profile.config: Configuration of an OIDC 1.0 authentication request.
OIDCAuthenticationRequest - Class in net.shibboleth.oidc.profile.core: OpenID Connect Authentication Request.
OIDCAuthenticationRequest(ClientID) - Constructor for class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Constructor.
OIDCAuthorizationConfiguration - Interface in net.shibboleth.oidc.profile.config: Configuration of an OIDC 1.0 authentication request.
OIDCDynamicRegistrationConfiguration - Interface in net.shibboleth.oidc.profile.config: Configuration of OpenID Connect Dynamic Client Registration 1.0.
OidcError - Class in net.shibboleth.oidc.profile.core: Supplemental error objects for any missing values in the Nimbus library.
OidcError() - Constructor for class net.shibboleth.oidc.profile.core.OidcError: Constructor.
OidcEventIds - Class in net.shibboleth.oidc.profile.core: OpenID Connect -specific constants to use for ProfileAction EventContexts.
OidcEventIds() - Constructor for class net.shibboleth.oidc.profile.core.OidcEventIds: Constructor.
OIDCFlowAwareProfileConfiguration - Interface in net.shibboleth.oidc.profile.config: Interface for profile configurations that understand OIDC specific authentication flows in addition to the OAuth 2.0 flows described by OAuth2FlowAwareProfileConfiguration.
OIDCIDTokenProducingProfileConfiguration - Interface in net.shibboleth.oidc.profile.config: Configuration common to ID Token producing profiles.
OIDCMessageDecoder - Interface in net.shibboleth.oidc.profile.decoding: Marker interface for OIDC Message Decoders.
OIDCMessageEncoder - Interface in net.shibboleth.oidc.profile.encoding: An OIDC message encoder interface which requires implementations to test if the request method is supported by the encoder.
OIDCPeerEntityContext - Class in net.shibboleth.oidc.profile.messaging.context: Lightweight subcontext that carries information about a OIDC peer entity.
OIDCPeerEntityContext() - Constructor for class net.shibboleth.oidc.profile.messaging.context.OIDCPeerEntityContext
OIDCProfileConfiguration - Interface in net.shibboleth.oidc.profile.config: Common interface for OpenID Connect 1.0 Profile Configurations.
OIDCProviderInformationConfiguration - Interface in net.shibboleth.oidc.profile.config: Profile configuration for an OpenID Connect Provider Configuration.
OIDCPublishKeySetConfiguration - Interface in net.shibboleth.oidc.profile.config: Configuration of an OpenID published key set document.
OIDCSecurityConfiguration - Class in net.shibboleth.oidc.profile.config: Deprecated, for removal: This API element is subject to removal in a future version.
use JSONSecurityConfiguration
OIDCSecurityConfiguration() - Constructor for class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Deprecated.
OIDCSSOProfileConfiguration - Interface in net.shibboleth.oidc.profile.config: Profile configuration generic to all OIDC SSO profiles.
OIDCSSOProviderConfiguration - Interface in net.shibboleth.oidc.profile.config: Profile configuration for an OIDC SSO Provider.
OIDCSSORelyingPartyConfiguration - Interface in net.shibboleth.oidc.profile.config: Profile configuration for an OIDC SSO Client or Relying Party.
OIDCUserInfoConfiguration - Interface in net.shibboleth.oidc.profile.config: Configuration for an OpenID Connect core protocol UserInfo endpoint.
OUTBOUND_MESSAGE_CLASS - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The outbound (Nimbus) message class.

P

POST - net.shibboleth.oidc.profile.oauth2.config.OAuth2AuthorizationProfileConfiguration.HttpRequestMethod: HTTP POST.
pragma - Variable in class net.shibboleth.oidc.profile.messaging.JSONErrorResponse: pragma value.
pragma - Variable in class net.shibboleth.oidc.profile.messaging.JSONSuccessResponse: pragma value.
principalMappings - Variable in class net.shibboleth.oidc.profile.config.navigate.ProxyAwareDefaultOIDCAuthenticationContextClassRequestLookupFunction: Mappings to transform proxied Principals.
principalMappings - Variable in class net.shibboleth.oidc.profile.config.navigate.ProxyAwareDefaultOIDCAuthenticationContextClassResponseLookupFunction: Mappings to transform proxied Principals.
PROFILE_ID - Static variable in interface net.shibboleth.oidc.profile.config.OIDCAuthenticationProfileConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in interface net.shibboleth.oidc.profile.config.OIDCAuthorizationConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in interface net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in interface net.shibboleth.oidc.profile.config.OIDCProviderInformationConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in interface net.shibboleth.oidc.profile.config.OIDCPublishKeySetConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in interface net.shibboleth.oidc.profile.config.OIDCSSOProfileConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in interface net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenIntrospectionConfiguration: ID for this profile configuration.
PROFILE_ID - Static variable in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: ID for this profile configuration.
profileRequestContextLookupStrategy - Variable in class net.shibboleth.oidc.profile.config.navigate.MessageContextLookupFunctionAdaptor: Strategy used to locate the ProfileRequestContext associated with a given MessageContext.
prompt - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Space delimited, case sensitive list of ASCII string values that specifies whether the Authorization Server prompts the End-User for reauthentication and consent.
PROTOCOL_URI - Static variable in interface net.shibboleth.oidc.profile.config.OIDCDynamicRegistrationConfiguration: OIDC base protocol URI.
PROTOCOL_URI - Static variable in interface net.shibboleth.oidc.profile.config.OIDCProviderInformationConfiguration: OIDC base protocol URI.
PROTOCOL_URI - Static variable in interface net.shibboleth.oidc.profile.config.OIDCPublishKeySetConfiguration: OIDC base protocol URI.
PROTOCOL_URI - Static variable in interface net.shibboleth.oidc.profile.config.OIDCUserInfoConfiguration: OIDC base protocol URI.
PROTOCOL_URI - Static variable in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenAudienceConfiguration: OAuth2 Token Revocation URI.
PROTOCOL_URI - Static variable in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenIntrospectionConfiguration: OAuth2 Token Revocation URI.
PROTOCOL_URI - Static variable in interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration: OAuth2 Token Revocation URI.
ProviderMetadataStringValuesLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: Fetches the values for the configured key as String.
ProviderMetadataStringValuesLookupFunction(String) - Constructor for class net.shibboleth.oidc.profile.config.navigate.ProviderMetadataStringValuesLookupFunction: Constructor.
providerSupportsClaimsParameter - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Does the OpenID Provider support the claims parameter? Typically taken from its metadata.
providerSupportsClaimsParameter() - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Does the OpenID Provider support the claims parameter?
PROXY_CLIENT_ID - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: OIDC proxy client ID.
PROXY_ISSUER - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: OIDC proxy issuer.
ProxyAwareDefaultOIDCAuthenticationContextClassRequestLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: Implements a set of default logic for determining the custom principals to derive the OIDC ACRs from.
ProxyAwareDefaultOIDCAuthenticationContextClassRequestLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.ProxyAwareDefaultOIDCAuthenticationContextClassRequestLookupFunction: Constructor.
ProxyAwareDefaultOIDCAuthenticationContextClassResponseLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: Implements a set of logic for determining the principals to use from OIDC 'amr' or 'acr' claims.
ProxyAwareDefaultOIDCAuthenticationContextClassResponseLookupFunction(Map<String, Collection<Principal>>) - Constructor for class net.shibboleth.oidc.profile.config.navigate.ProxyAwareDefaultOIDCAuthenticationContextClassResponseLookupFunction: Constructor.
ProxyAwareDefaultOIDCAuthenticationContextClassResponseLookupFunction.LookupFunctionWrapper - Class in net.shibboleth.oidc.profile.config.navigate: A simple lookup function that returns a singleton function.

R

REDIRECT_URI - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The authorization endpoint for the authentication request.
redirectURI - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The redirect URI to which the response will be sent.
RefreshTokenChainLifetimeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2RefreshTokenProducingProfileConfiguration.getRefreshTokenChainLifetime(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RefreshTokenChainLifetimeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RefreshTokenChainLifetimeLookupFunction
RefreshTokenClaimsSetManipulationStrategyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2TokenConfiguration.getRefreshTokenClaimsSetManipulationStrategy(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RefreshTokenClaimsSetManipulationStrategyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RefreshTokenClaimsSetManipulationStrategyLookupFunction
RefreshTokenLifetimeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: Deprecated, for removal: This API element is subject to removal in a future version.
use RefreshTokenTimeoutLookupFunction
RefreshTokenLifetimeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RefreshTokenLifetimeLookupFunction: Deprecated.
RefreshTokensEnabledPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate implementation that forwards to OAuth2FlowAwareProfileConfiguration.isRefreshTokensEnabled(ProfileRequestContext).
RefreshTokensEnabledPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.RefreshTokensEnabledPredicate
RefreshTokenTimeoutLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2RefreshTokenProducingProfileConfiguration.getRefreshTokenTimeout(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RefreshTokenTimeoutLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RefreshTokenTimeoutLookupFunction
RegistrationMetadataPolicyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OIDCDynamicRegistrationConfiguration.getMetadataPolicy(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RegistrationMetadataPolicyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RegistrationMetadataPolicyLookupFunction
RegistrationValidityPeriodLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OIDCDynamicRegistrationConfiguration.getRegistrationValidityPeriod(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RegistrationValidityPeriodLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RegistrationValidityPeriodLookupFunction
REQUEST_OBJECT_AND_URI - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: Both request uri and request object in request.
requestedClaims - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Individual requested claims.
requestObject - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: The request object.
requestObjectClaimsSet - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: The claims used to build a request object JWT.
requestObjectDecryptConfig - Variable in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Deprecated, for removal: This API element is subject to removal in a future version.
RequestObjectDecryptionConfigurationLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: Deprecated, for removal: This API element is subject to removal in a future version.
RequestObjectDecryptionConfigurationLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RequestObjectDecryptionConfigurationLookupFunction: Deprecated.
requestObjectSignatureValidationConfig - Variable in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Deprecated, for removal: This API element is subject to removal in a future version.
RequestObjectSignatureValidationConfigurationLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: Deprecated, for removal: This API element is subject to removal in a future version.
RequestObjectSignatureValidationConfigurationLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RequestObjectSignatureValidationConfigurationLookupFunction: Deprecated.
requestURI - Variable in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: The request URI.
ResolverBasedRegistrationMetadataPolicyLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A lookup function for the map of MetadataPolicy objects, resolved via configurable MetadataPolicyResolver and optionally configurable CriteriaSet.
ResolverBasedRegistrationMetadataPolicyLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction
RESPONSE_MODE - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The response_type of the authentication request.
RESPONSE_TYPE - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The response_type of the authentication request.
responseMode - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The response mode.
responseType - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The authorization processing flow to use.
REVOCATION_FAILED - Static variable in class net.shibboleth.oidc.profile.core.OidcEventIds: The revocation attempt failed.
RevocationLifetimeLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2TokenRevocationConfiguration.getRevocationLifetime(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RevocationLifetimeLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RevocationLifetimeLookupFunction
RevocationMethodLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OAuth2TokenRevocationConfiguration.getRevocationMethod(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
RevocationMethodLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.RevocationMethodLookupFunction
REVOKED_TOKEN - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: Revoked Token.
rpResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.JWTDecryptionConfigurationLookupFunction: A resolver for default security configurations.
rpResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.JWTEncryptionConfigurationLookupFunction: A resolver for default security configurations.
rpResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.JWTSignatureSigningConfigurationLookupFunction: A resolver for default security configurations.
rpResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.JWTSignatureValidationConfigurationLookupFunction: A resolver for default security configurations.
rpResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.RequestObjectDecryptionConfigurationLookupFunction: Deprecated.

A resolver for default security configurations.
rpResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.RequestObjectSignatureValidationConfigurationLookupFunction: Deprecated.

A resolver for default security configurations.
rpResolver - Variable in class net.shibboleth.oidc.profile.config.navigate.TokenEndpointJwtSignatureValidationConfigurationLookupFunction: Deprecated.

A resolver for default security configurations.

S

scope - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The requested scopes.
SCOPE - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: Token scope.
SecretExpirationPeriodLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that returns OIDCDynamicRegistrationConfiguration.getSecretExpirationPeriod(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
SecretExpirationPeriodLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.SecretExpirationPeriodLookupFunction
setAcrs(List<ACR>) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set the ACRs.
setAuthnRequestTime(Instant) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set the time at which this RP sent this authentication request to the OP.
setCriteriaSetLookupStrategy(Function<ProfileRequestContext, CriteriaSet>) - Method in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction: Set the lookup strategy for the criteria set used for the metadata policy resolver.
setDefaultResponseMode(ResponseMode) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the default response_mode for the given response_type.
setDisplay(Display) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set the display.
setEndpointURI(URI) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the endpoint_uri.
setIdentifier(String) - Method in class net.shibboleth.oidc.profile.messaging.context.AbstractOIDCEntityContext: Sets the identifier of the OIDC entity e.g.
setJwtDecryptionConfiguration(DecryptionConfiguration) - Method in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Set the configuration used to decrypt JWE tokens.
setJwtEncryptionConfiguration(EncryptionConfiguration) - Method in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Set the configuration used to encrypt JWE tokens.
setJwtSignatureSigningConfiguration(SignatureSigningConfiguration) - Method in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Set the configuration used when signing JWS tokens.
setJwtSignatureValidationConfiguration(SignatureValidationConfiguration) - Method in class net.shibboleth.oidc.profile.config.JSONSecurityConfiguration: Set the configuration used when validating JWS tokens.
setLoginHint(String) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Sets the login_hint authorisation request parameter.
setMappings(Map<Principal, Collection<Principal>>) - Method in class net.shibboleth.oidc.profile.config.navigate.ProxyAwareDefaultOIDCAuthenticationContextClassRequestLookupFunction: Sets the mappings from input/proxied Principals to zero or more equivalent values to use.
setMaxAge(Duration) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set the max age.
setMetadataPolicyResolver(MetadataPolicyResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.ResolverBasedRegistrationMetadataPolicyLookupFunction: Set the metadata policy resolver.
setNonce(Nonce) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set the nonce.
setProfileRequestContextLookupStrategy(Function<MessageContext, ProfileRequestContext>) - Method in class net.shibboleth.oidc.profile.config.navigate.MessageContextLookupFunctionAdaptor: Set the strategy used to locate the ProfileRequestContext associated with a given MessageContext.
setPrompt(Prompt) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set the prompt.
setProviderSupportsClaimsParameter(boolean) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Sets the support for the claims authorisation request parameter.
setRedirectURI(URI) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the redirect_uri.
setRelyingPartyConfigurationResolver(RelyingPartyConfigurationResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.JWTDecryptionConfigurationLookupFunction: Set the resolver for default security configurations.
setRelyingPartyConfigurationResolver(RelyingPartyConfigurationResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.JWTEncryptionConfigurationLookupFunction: Set the resolver for default security configurations.
setRelyingPartyConfigurationResolver(RelyingPartyConfigurationResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.JWTSignatureSigningConfigurationLookupFunction: Set the resolver for default security configurations.
setRelyingPartyConfigurationResolver(RelyingPartyConfigurationResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.JWTSignatureValidationConfigurationLookupFunction: Set the resolver for default security configurations.
setRelyingPartyConfigurationResolver(RelyingPartyConfigurationResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.RequestObjectDecryptionConfigurationLookupFunction: Deprecated.

Set the resolver for default security configurations.
setRelyingPartyConfigurationResolver(RelyingPartyConfigurationResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.RequestObjectSignatureValidationConfigurationLookupFunction: Deprecated.

Set the resolver for default security configurations.
setRelyingPartyConfigurationResolver(RelyingPartyConfigurationResolver) - Method in class net.shibboleth.oidc.profile.config.navigate.TokenEndpointJwtSignatureValidationConfigurationLookupFunction: Deprecated.

Set the resolver for default security configurations.
setRequestedClaims(OIDCClaimsRequest) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set any individual requested claims.
setRequestObject(JWT) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set the request object.
setRequestObjectClaimsSet(ClaimsSet) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set the request object claims set.
setRequestObjectDecryptionConfiguration(EncryptionConfiguration) - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Deprecated, for removal: This API element is subject to removal in a future version.
setRequestObjectSignatureValidationConfiguration(SignatureSigningConfiguration) - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Deprecated, for removal: This API element is subject to removal in a future version.
setRequestURI(URI) - Method in class net.shibboleth.oidc.profile.core.OIDCAuthenticationRequest: Set the URI to fetch the request object from.
setResponseMode(ResponseMode) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the response mode to be used with the ongoing authentication request.
setResponseType(ResponseType) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the response type.
setState(State) - Method in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: Set the state.
setTokenEndpointJwtSignatureValidationConfiguration(SignatureSigningConfiguration) - Method in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Deprecated, for removal: This API element is subject to removal in a future version.
setUseActiveProfileOnly(boolean) - Method in class net.shibboleth.oidc.profile.config.navigate.RevocationLifetimeLookupFunction: Set the flag for using active profile only.
SignatureAlgorithmsLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: Deprecated, for removal: This API element is subject to removal in a future version.
SignatureAlgorithmsLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.SignatureAlgorithmsLookupFunction: Deprecated.
SignRequestObjectPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate that determines if the RequestObject JWT should be signed based on the profile configuration.
SignRequestObjectPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.SignRequestObjectPredicate
state - Variable in class net.shibboleth.oidc.profile.core.OAuthAuthorizationRequest: The state.
SUB_FORMAT - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The subject format (public/pairwise).
SUB_VALUE - Static variable in class net.shibboleth.oidc.profile.audit.AuditFields: The subject value.

T

test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.AllowPKCEPlainPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.AttributeConsentFlowEnabledPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.AuthorizationCodeFlowEnabledPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.EncodeConsentPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.EncryptionOptionalPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.EncryptRequestObjectPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.EnforceRefreshTokenRotationPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.ForcePKCEPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.HybridFlowEnabledPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.ImplicitFlowEnabledPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.IncludeIssuerInAuthenticationResponsePredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.IssueIdTokenViaRefreshTokenPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.RefreshTokensEnabledPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.SignRequestObjectPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.logic.UseRequestObjectPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.oidc.profile.config.navigate.AcrClaimAlwaysEssentialLookupFunction
toHTTPResponse() - Method in class net.shibboleth.oidc.profile.messaging.JSONErrorResponse
toHTTPResponse() - Method in class net.shibboleth.oidc.profile.messaging.JSONSuccessResponse
TOKEN - net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod: Revoke single access or refresh token.
TokenEndpointAuthMethodLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: A function that obtains OAuth2ClientAuthenticableProfileConfiguration.getTokenEndpointAuthMethods(ProfileRequestContext) if such a profile is available from a RelyingPartyContext obtained via a lookup function, by default a child of the ProfileRequestContext.
TokenEndpointAuthMethodLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.TokenEndpointAuthMethodLookupFunction
tokenEndpointJwtSignatureValidationConfig - Variable in class net.shibboleth.oidc.profile.config.OIDCSecurityConfiguration: Deprecated, for removal: This API element is subject to removal in a future version.
TokenEndpointJwtSignatureValidationConfigurationLookupFunction - Class in net.shibboleth.oidc.profile.config.navigate: Deprecated, for removal: This API element is subject to removal in a future version.
TokenEndpointJwtSignatureValidationConfigurationLookupFunction() - Constructor for class net.shibboleth.oidc.profile.config.navigate.TokenEndpointJwtSignatureValidationConfigurationLookupFunction: Deprecated.
toString() - Method in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal
toString() - Method in class net.shibboleth.oidc.profile.messaging.JSONSuccessResponse

U

UNSPECIFIED - Static variable in class net.shibboleth.oidc.authn.principal.AuthenticationContextClassReferencePrincipal: unspecified auth ctx class.
UseRequestObjectPredicate - Class in net.shibboleth.oidc.profile.config.logic: A predicate that determines if a RequestObject JWT should be used based on the profile configuration.
UseRequestObjectPredicate() - Constructor for class net.shibboleth.oidc.profile.config.logic.UseRequestObjectPredicate

V

valueOf(String) - Static method in enum net.shibboleth.oidc.profile.oauth2.config.OAuth2AuthorizationProfileConfiguration.HttpRequestMethod: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod: Returns the enum constant of this type with the specified name.
values() - Static method in enum net.shibboleth.oidc.profile.oauth2.config.OAuth2AuthorizationProfileConfiguration.HttpRequestMethod: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenRevocationConfiguration.OAuth2TokenRevocationMethod: Returns an array containing the constants of this enum type, in the order they are declared.

A B C D E F G H I J K L M N O P R S T U V
All Classes All Packages