OIDCUserInfoConfiguration (Shibboleth IdP :: Plugins :: OIDC Common :: Profile Configuration API 2.2.0 API)

All Superinterfaces:

net.shibboleth.idp.profile.config.AttributeResolvingProfileConfiguration, net.shibboleth.idp.authn.config.AuthenticationProfileConfiguration, Component, net.shibboleth.idp.profile.config.ConditionalProfileConfiguration, IdentifiedComponent, OAuth2ClientAuthenticableProfileConfiguration, OAuth2ProfileConfiguration, OAuth2TokenEncryptionProfileConfiguration, OAuth2TokenValidatingProfileConfiguration, OIDCProfileConfiguration, net.shibboleth.idp.profile.config.OverriddenIssuerProfileConfiguration, net.shibboleth.idp.profile.config.ProfileConfiguration
```
public interface OIDCUserInfoConfiguration
extends net.shibboleth.idp.profile.config.AttributeResolvingProfileConfiguration, OAuth2TokenEncryptionProfileConfiguration, OAuth2TokenValidatingProfileConfiguration
```
Configuration for an OpenID Connect core protocol UserInfo endpoint.

Field Summary

Fields
Modifier and Type Field Description

static String PROFILE_ID
ID for this profile configuration.

static String PROTOCOL_URI
OIDC base protocol URI.

Method Summary

All Methods Instance Methods Abstract Methods
Modifier and Type	Method	Description
`Set<String>`	`getDeniedUserInfoAttributes(ProfileRequestContext profileRequestContext)`	Get the set of attribute IDs which should be omitted from the UserInfo token.

Methods inherited from interface net.shibboleth.idp.profile.config.AttributeResolvingProfileConfiguration
isResolveAttributes

Methods inherited from interface net.shibboleth.idp.authn.config.AuthenticationProfileConfiguration
getAuthenticationFlows, getDefaultAuthenticationMethods, getPostAuthenticationFlows, getProxyCount, isForceAuthn, isLocal

Methods inherited from interface net.shibboleth.idp.profile.config.ConditionalProfileConfiguration
getActivationCondition

Methods inherited from interface net.shibboleth.utilities.java.support.component.IdentifiedComponent
getId

Methods inherited from interface net.shibboleth.oidc.profile.oauth2.config.OAuth2ClientAuthenticableProfileConfiguration
getClaimsValidator, getTokenEndpointAuthMethods

Methods inherited from interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenEncryptionProfileConfiguration
isEncryptionOptional

Methods inherited from interface net.shibboleth.oidc.profile.oauth2.config.OAuth2TokenValidatingProfileConfiguration
getIssuedClaimsValidator

Methods inherited from interface net.shibboleth.idp.profile.config.OverriddenIssuerProfileConfiguration
getIssuer

Methods inherited from interface net.shibboleth.idp.profile.config.ProfileConfiguration
getInboundInterceptorFlows, getOutboundInterceptorFlows, getSecurityConfiguration

- Field Detail
  - PROTOCOL_URI
```
@Nonnull
@NotEmpty
static final String PROTOCOL_URI
```
    OIDC base protocol URI.
    
    See Also:
    
    Constant Field Values
  - PROFILE_ID
```
@Nonnull
@NotEmpty
static final String PROFILE_ID
```
    ID for this profile configuration.
    
    See Also:
    
    Constant Field Values
- Method Detail
  - getDeniedUserInfoAttributes
```
@Nonnull
@NonnullElements
@NotLive
Set<String> getDeniedUserInfoAttributes(@Nullable
                                        ProfileRequestContext profileRequestContext)
```
    Get the set of attribute IDs which should be omitted from the UserInfo token.
    Default behavior is to include all claims, but omiited claims also affect the set that may need to be embedded for recovery into the access/refresh tokens.
    
    Parameters:
    
    profileRequestContext - profile request context
    
    Returns:
    
    the attribute IDs to omit from UserInfo token