Package org.pac4j.saml.logout.impl
Class SAML2LogoutValidator
java.lang.Object
org.pac4j.saml.profile.impl.AbstractSAML2ResponseValidator
org.pac4j.saml.logout.impl.SAML2LogoutValidator
- All Implemented Interfaces:
SAML2ResponseValidator
Validator for SAML logout requests/responses from the IdP.
- Since:
- 2.0.0
- Author:
- Matthieu Taggiasco, Jerome Leleu
-
Field Summary
Fields inherited from class org.pac4j.saml.profile.impl.AbstractSAML2ResponseValidator
acceptedSkew, decrypter, logger, logoutHandler, replayCache, signatureTrustEngineProvider, uriComparator
-
Constructor Summary
ConstructorDescriptionSAML2LogoutValidator
(SAML2SignatureTrustEngineProvider engine, org.opensaml.saml.saml2.encryption.Decrypter decrypter, org.pac4j.core.logout.handler.SessionLogoutHandler logoutHandler, ReplayCacheProvider replayCache, net.shibboleth.shared.net.URIComparator uriComparator) Constructor for SAML2LogoutValidator. -
Method Summary
Modifier and TypeMethodDescriptionorg.pac4j.core.credentials.Credentials
validate
(SAML2MessageContext context) Validates the SAML protocol response and the SAML SSO response.protected void
validateDestinationEndpoint
(org.opensaml.saml.saml2.core.StatusResponseType logoutResponse, SAML2MessageContext context) validateDestinationEndpoint.protected void
validateLogoutRequest
(org.opensaml.saml.saml2.core.LogoutRequest logoutRequest, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine) Validates the SAML logout request.protected void
validateLogoutResponse
(org.opensaml.saml.saml2.core.LogoutResponse logoutResponse, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine) Validates the SAML logout response.protected void
validateSuccess
(org.opensaml.saml.saml2.core.Status status) Validates that the response is a success.Methods inherited from class org.pac4j.saml.profile.impl.AbstractSAML2ResponseValidator
compareEndpoints, computeSloKey, decryptEncryptedId, isDateValid, isIssueInstantValid, setAcceptedSkew, validateIssueInstant, validateIssuer, validateIssuerIfItExists, validateSignature, validateSignatureIfItExists, verifyEndpoint, verifyMessageReplay
-
Constructor Details
-
Method Details
-
validate
Validates the SAML protocol response and the SAML SSO response. The method decrypt encrypted assertions if any. Validates the SAML protocol logout request/response.- Parameters:
context
- the context- Returns:
- the SAML credentials
-
validateLogoutRequest
protected void validateLogoutRequest(org.opensaml.saml.saml2.core.LogoutRequest logoutRequest, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine) Validates the SAML logout request.- Parameters:
logoutRequest
- the logout requestcontext
- the contextengine
- the signature engine
-
validateLogoutResponse
protected void validateLogoutResponse(org.opensaml.saml.saml2.core.LogoutResponse logoutResponse, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine) Validates the SAML logout response.- Parameters:
logoutResponse
- the logout responsecontext
- the contextengine
- the signature engine
-
validateDestinationEndpoint
protected void validateDestinationEndpoint(org.opensaml.saml.saml2.core.StatusResponseType logoutResponse, SAML2MessageContext context) validateDestinationEndpoint.
- Parameters:
logoutResponse
- aLogoutResponse
objectcontext
- aSAML2MessageContext
object
-
validateSuccess
protected void validateSuccess(org.opensaml.saml.saml2.core.Status status) Validates that the response is a success.- Overrides:
validateSuccess
in classAbstractSAML2ResponseValidator
- Parameters:
status
- the response status.
-