Package net.shibboleth.idp.plugin.oidc.op.profile.config

Class OIDCSecurityConfiguration

java.lang.Object

net.shibboleth.idp.profile.config.SecurityConfiguration

net.shibboleth.idp.plugin.oidc.op.profile.config.OIDCSecurityConfiguration

public class OIDCSecurityConfiguration
extends net.shibboleth.idp.profile.config.SecurityConfiguration

Class extends SecurityConfiguration to support separate configuration for request object decryption and signature validation.

Field Summary

Fields

Modifier and Type	Field	Description
private EncryptionConfiguration	requestObjectDecryptConfig	Configuration used when decrypting request object information.
private SignatureSigningConfiguration	requestObjectSignatureValidationConfig	Configuration used when validating request object information.
private SignatureSigningConfiguration	tokenEndpointJwtSignatureValidationConfig	Configuration used when validating token endpoint authentication JWT signatures.

Constructor Summary

Constructors

Constructor	Description
OIDCSecurityConfiguration()

Method Summary

Modifier and Type	Method	Description
EncryptionConfiguration	getRequestObjectDecryptionConfiguration()	Get the configuration used when decrypting request object information.
SignatureSigningConfiguration	getRequestObjectSignatureValidationConfiguration()	Get the configuration used when validating request object information.
SignatureSigningConfiguration	getTokenEndpointJwtSignatureValidationConfiguration()	Get the configuration used when validating token endpoint authentication JWT signatures.
void	setRequestObjectDecryptionConfiguration(EncryptionConfiguration config)	Set the configuration used when decrypting request object information.
void	setRequestObjectSignatureValidationConfiguration(SignatureSigningConfiguration config)	Set the configuration used when validating request object information.
void	setTokenEndpointJwtSignatureValidationConfiguration(SignatureSigningConfiguration config)	Set the configuration used when validating token endpoint authentication JWT signatures.

Methods inherited from class net.shibboleth.idp.profile.config.SecurityConfiguration

getClientTLSValidationConfiguration, getClockSkew, getDecryptionConfiguration, getEncryptionConfiguration, getHttpClientSecurityConfiguration, getIdGenerator, getSignatureSigningConfiguration, getSignatureValidationConfiguration, setClientTLSValidationConfiguration, setDecryptionConfiguration, setEncryptionConfiguration, setHttpClientSecurityConfiguration, setSignatureSigningConfiguration, setSignatureValidationConfiguration

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

requestObjectDecryptConfig

@Nullable
private EncryptionConfiguration requestObjectDecryptConfig

Configuration used when decrypting request object information.

requestObjectSignatureValidationConfig

@Nullable
private SignatureSigningConfiguration requestObjectSignatureValidationConfig

Configuration used when validating request object information.

tokenEndpointJwtSignatureValidationConfig

@Nullable
private SignatureSigningConfiguration tokenEndpointJwtSignatureValidationConfig

Configuration used when validating token endpoint authentication JWT signatures.

Constructor Detail

OIDCSecurityConfiguration

public OIDCSecurityConfiguration()

Method Detail

getRequestObjectDecryptionConfiguration

@Nullable
public EncryptionConfiguration getRequestObjectDecryptionConfiguration()

Get the configuration used when decrypting request object information.

Returns:

configuration used when decrypting request object information, or null

setRequestObjectDecryptionConfiguration

public void setRequestObjectDecryptionConfiguration(@Nullable
                                                    EncryptionConfiguration config)

Set the configuration used when decrypting request object information.

Parameters:

config - configuration used when decrypting request object information, or null

getRequestObjectSignatureValidationConfiguration

@Nullable
public SignatureSigningConfiguration getRequestObjectSignatureValidationConfiguration()

Get the configuration used when validating request object information.

Returns:

configuration used when validating request object information, or null

setRequestObjectSignatureValidationConfiguration

public void setRequestObjectSignatureValidationConfiguration(@Nullable
                                                             SignatureSigningConfiguration config)

Set the configuration used when validating request object information.

Parameters:

config - used when validating request object information, or null

getTokenEndpointJwtSignatureValidationConfiguration

@Nullable
public SignatureSigningConfiguration getTokenEndpointJwtSignatureValidationConfiguration()

Get the configuration used when validating token endpoint authentication JWT signatures.

Returns:

configuration used when validating token endpoint authentication JWT signatures, or null

setTokenEndpointJwtSignatureValidationConfiguration

public void setTokenEndpointJwtSignatureValidationConfiguration(@Nullable
                                                                SignatureSigningConfiguration config)

Set the configuration used when validating token endpoint authentication JWT signatures.

Parameters:

config - used when validating token endpoint authentication JWT signatures, or null