Class DecryptAssertions
java.lang.Object
net.shibboleth.shared.component.AbstractInitializableComponent
org.opensaml.profile.action.AbstractProfileAction
org.opensaml.saml.saml2.profile.impl.AbstractDecryptAction
org.opensaml.saml.saml2.profile.impl.DecryptAssertions
- All Implemented Interfaces:
Component,DestructableComponent,InitializableComponent,ProfileAction
Action to decrypt an
EncryptedAssertion element and replace it with the decrypted
Assertion in situ.
All of the built-in SAML message types that may include an EncryptedAssertion are
potentially handled, but the actual message to handle is obtained via strategy function, by
default the inbound message.
-
Field Summary
Fields -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected voiddoExecute(ProfileRequestContext profileRequestContext) Performs this action.private AssertionprocessEncryptedAssertion(ProfileRequestContext profileRequestContext, EncryptedAssertion encAssert) Decrypt anEncryptedAssertionand return the result.private voidprocessResponse(ProfileRequestContext profileRequestContext, Response response) Decrypt anyEncryptedAssertionfound in a response and replace it with the result.Methods inherited from class org.opensaml.saml.saml2.profile.impl.AbstractDecryptAction
doPreExecute, getDecrypter, getDecryptionPredicate, getSAMLObject, isErrorFatal, setDecryptionPredicate, setErrorFatal, setMessageLookupStrategy, setSecurityParametersContextLookupStrategyMethods inherited from class org.opensaml.profile.action.AbstractProfileAction
doPostExecute, doPostExecute, ensureHttpServletRequest, ensureHttpServletResponse, execute, getHttpServletRequest, getHttpServletRequestSupplier, getHttpServletResponse, getHttpServletResponseSupplier, getLogPrefix, isPreExecuteCalled, setHttpServletRequestSupplier, setHttpServletResponseSupplierMethods inherited from class net.shibboleth.shared.component.AbstractInitializableComponent
checkComponentActive, checkSetterPreconditions, destroy, doDestroy, doInitialize, ifDestroyedThrowDestroyedComponentException, ifInitializedThrowUnmodifiabledComponentException, ifNotInitializedThrowUninitializedComponentException, initialize, isDestroyed, isInitializedMethods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface net.shibboleth.shared.component.InitializableComponent
initialize, isInitialized
-
Field Details
-
log
@Nonnull private final org.slf4j.Logger logClass logger.
-
-
Constructor Details
-
DecryptAssertions
public DecryptAssertions()
-
-
Method Details
-
doExecute
Performs this action. Actions must override this method to perform their work.- Overrides:
doExecutein classAbstractProfileAction- Parameters:
profileRequestContext- the current IdP profile request context
-
processEncryptedAssertion
@Nullable private Assertion processEncryptedAssertion(@Nonnull ProfileRequestContext profileRequestContext, @Nonnull EncryptedAssertion encAssert) throws DecryptionException Decrypt anEncryptedAssertionand return the result.- Parameters:
profileRequestContext- current profile request contextencAssert- the encrypted object- Returns:
- the decrypted assertion, or null if the object did not need decryption
- Throws:
DecryptionException- if an error occurs during decryption
-
processResponse
private void processResponse(@Nonnull ProfileRequestContext profileRequestContext, @Nonnull Response response) throws DecryptionException Decrypt anyEncryptedAssertionfound in a response and replace it with the result.- Parameters:
profileRequestContext- current profile request contextresponse- response to operate on- Throws:
DecryptionException- if an error occurs
-