org.overlord.commons.auth.util

Class SAMLAssertionUtil

java.lang.Object

org.overlord.commons.auth.util.SAMLAssertionUtil

public class SAMLAssertionUtil
extends Object

A single entry point for creating SAML assertions. This class delegates to the appropriate util depending on the current system.

Author:

eric.wittmann@redhat.com

Constructor Summary

Constructors

Constructor and Description
SAMLAssertionUtil()

Method Summary

Methods

Modifier and Type	Method and Description
static String	createSAMLAssertion(String issuerName, String forService) Create a SAML assertion that is good for 10s.
static String	createSAMLAssertion(String issuerName, String forService, int timeValidInMillis) Creates a SAML Assertion that can be used as a bearer token when invoking REST services.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

SAMLAssertionUtil

public SAMLAssertionUtil()

Method Detail

createSAMLAssertion

public static String createSAMLAssertion(String issuerName,
                         String forService)

Create a SAML assertion that is good for 10s.

Parameters:

issuerName -

forService -

createSAMLAssertion

public static String createSAMLAssertion(String issuerName,
                         String forService,
                         int timeValidInMillis)

Creates a SAML Assertion that can be used as a bearer token when invoking REST services. The REST service must be configured to accept SAML Assertion bearer tokens. In JBoss this means protecting the REST services with SAMLBearerTokenLoginModule. In Tomcat7 this means protecting the REST services with SAMLBearerTokenAuthenticator.

Parameters:

issuerName - the issuer name (typically the context of the calling web app)

forService - the web context of the REST service being invoked

timeValidInMillis - how long the saml assertion should be valid for (in milliseconds)