Class DecryptAttributes
java.lang.Object
net.shibboleth.shared.component.AbstractInitializableComponent
org.opensaml.profile.action.AbstractProfileAction
org.opensaml.saml.saml2.profile.impl.AbstractDecryptAction
org.opensaml.saml.saml2.profile.impl.DecryptAttributes
- All Implemented Interfaces:
Component,DestructableComponent,InitializableComponent,ProfileAction
Action to decrypt an
EncryptedAttribute element and replace it with the decrypted
Attribute in situ.
All of the built-in SAML message types that may include an EncryptedAttribute are
potentially handled, but the actual message to handle is obtained via strategy function, by
default the inbound message.
-
Field Summary
Fields -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected voiddoExecute(ProfileRequestContext profileRequestContext) Performs this action.private voidprocessAssertion(ProfileRequestContext profileRequestContext, Assertion assertion) Decrypt anyEncryptedAttributefound in an assertion and replace it with the result.private AttributeprocessEncryptedAttribute(ProfileRequestContext profileRequestContext, EncryptedAttribute encAttr) Decrypt anEncryptedAttributeand return the result.Methods inherited from class org.opensaml.saml.saml2.profile.impl.AbstractDecryptAction
doPreExecute, getDecrypter, getDecryptionPredicate, getSAMLObject, isErrorFatal, setDecryptionPredicate, setErrorFatal, setMessageLookupStrategy, setSecurityParametersContextLookupStrategyMethods inherited from class org.opensaml.profile.action.AbstractProfileAction
doPostExecute, doPostExecute, ensureHttpServletRequest, ensureHttpServletResponse, execute, getHttpServletRequest, getHttpServletRequestSupplier, getHttpServletResponse, getHttpServletResponseSupplier, getLogPrefix, isPreExecuteCalled, setHttpServletRequestSupplier, setHttpServletResponseSupplierMethods inherited from class net.shibboleth.shared.component.AbstractInitializableComponent
checkComponentActive, checkSetterPreconditions, destroy, doDestroy, doInitialize, ifDestroyedThrowDestroyedComponentException, ifInitializedThrowUnmodifiabledComponentException, ifNotInitializedThrowUninitializedComponentException, initialize, isDestroyed, isInitializedMethods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface net.shibboleth.shared.component.InitializableComponent
initialize, isInitialized
-
Field Details
-
log
@Nonnull private final org.slf4j.Logger logClass logger.
-
-
Constructor Details
-
DecryptAttributes
public DecryptAttributes()
-
-
Method Details
-
doExecute
Performs this action. Actions must override this method to perform their work.- Overrides:
doExecutein classAbstractProfileAction- Parameters:
profileRequestContext- the current IdP profile request context
-
processEncryptedAttribute
@Nullable private Attribute processEncryptedAttribute(@Nonnull ProfileRequestContext profileRequestContext, @Nonnull EncryptedAttribute encAttr) throws DecryptionException Decrypt anEncryptedAttributeand return the result.- Parameters:
profileRequestContext- current profile request contextencAttr- the encrypted object- Returns:
- the decrypted attribute, or null if the object did not need decryption
- Throws:
DecryptionException- if an error occurs during decryption
-
processAssertion
private void processAssertion(@Nonnull ProfileRequestContext profileRequestContext, @Nonnull Assertion assertion) throws DecryptionException Decrypt anyEncryptedAttributefound in an assertion and replace it with the result.- Parameters:
profileRequestContext- current profile request contextassertion- assertion to operate on- Throws:
DecryptionException- if an error occurs
-