Class DecryptAttributes
- java.lang.Object
-
- net.shibboleth.utilities.java.support.component.AbstractInitializableComponent
-
- org.opensaml.profile.action.AbstractProfileAction
-
- org.opensaml.saml.saml2.profile.impl.AbstractDecryptAction
-
- org.opensaml.saml.saml2.profile.impl.DecryptAttributes
-
- All Implemented Interfaces:
net.shibboleth.utilities.java.support.component.Component,net.shibboleth.utilities.java.support.component.DestructableComponent,net.shibboleth.utilities.java.support.component.InitializableComponent,org.opensaml.profile.action.ProfileAction
public class DecryptAttributes extends AbstractDecryptAction
Action to decrypt anEncryptedAttributeelement and replace it with the decryptedAttributein situ.All of the built-in SAML message types that may include an
EncryptedAttributeare potentially handled, but the actual message to handle is obtained via strategy function, by default the inbound message.- Event:
EventIds.PROCEED_EVENT_ID,SAMLEventIds.DECRYPT_ATTRIBUTE_FAILED
-
-
Field Summary
Fields Modifier and Type Field Description private org.slf4j.LoggerlogClass logger.
-
Constructor Summary
Constructors Constructor Description DecryptAttributes()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description protected voiddoExecute(org.opensaml.profile.context.ProfileRequestContext profileRequestContext)private voidprocessAssertion(org.opensaml.profile.context.ProfileRequestContext profileRequestContext, org.opensaml.saml.saml2.core.Assertion assertion)Decrypt anyEncryptedAttributefound in an assertion and replace it with the result.private org.opensaml.saml.saml2.core.AttributeprocessEncryptedAttribute(org.opensaml.profile.context.ProfileRequestContext profileRequestContext, org.opensaml.saml.saml2.core.EncryptedAttribute encAttr)Decrypt anEncryptedAttributeand return the result.-
Methods inherited from class org.opensaml.saml.saml2.profile.impl.AbstractDecryptAction
doPreExecute, getDecrypter, getDecryptionPredicate, getSAMLObject, isErrorFatal, setDecryptionPredicate, setErrorFatal, setMessageLookupStrategy, setSecurityParametersContextLookupStrategy
-
Methods inherited from class org.opensaml.profile.action.AbstractProfileAction
doPostExecute, doPostExecute, execute, getHttpServletRequest, getHttpServletResponse, getLogPrefix, setHttpServletRequest, setHttpServletResponse
-
Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent
destroy, doDestroy, doInitialize, initialize, isDestroyed, isInitialized
-
-
-
-
Method Detail
-
doExecute
protected void doExecute(@Nonnull org.opensaml.profile.context.ProfileRequestContext profileRequestContext)- Overrides:
doExecutein classorg.opensaml.profile.action.AbstractProfileAction
-
processEncryptedAttribute
@Nullable private org.opensaml.saml.saml2.core.Attribute processEncryptedAttribute(@Nonnull org.opensaml.profile.context.ProfileRequestContext profileRequestContext, @Nonnull org.opensaml.saml.saml2.core.EncryptedAttribute encAttr) throws org.opensaml.xmlsec.encryption.support.DecryptionExceptionDecrypt anEncryptedAttributeand return the result.- Parameters:
profileRequestContext- current profile request contextencAttr- the encrypted object- Returns:
- the decrypted attribute, or null if the object did not need decryption
- Throws:
org.opensaml.xmlsec.encryption.support.DecryptionException- if an error occurs during decryption
-
processAssertion
private void processAssertion(@Nonnull org.opensaml.profile.context.ProfileRequestContext profileRequestContext, @Nonnull org.opensaml.saml.saml2.core.Assertion assertion) throws org.opensaml.xmlsec.encryption.support.DecryptionExceptionDecrypt anyEncryptedAttributefound in an assertion and replace it with the result.- Parameters:
profileRequestContext- current profile request contextassertion- assertion to operate on- Throws:
org.opensaml.xmlsec.encryption.support.DecryptionException- if an error occurs
-
-