A B C D E F G H I J K L M N O P R S T U V W X

A

AbstractMetadataDelegate - Class in org.springframework.security.saml.metadata

Class wraps an existing provider and delegates all method calls to it.

AbstractMetadataDelegate(MetadataProvider) - Constructor for class org.springframework.security.saml.metadata.AbstractMetadataDelegate

Default constructor assigning the delegate.

AbstractProfileBase - Class in org.springframework.security.saml.websso

Base superclass for classes implementing processing of SAML messages.

AbstractProfileBase() - Constructor for class org.springframework.security.saml.websso.AbstractProfileBase

AbstractProfileBase(SAMLProcessor, MetadataManager) - Constructor for class org.springframework.security.saml.websso.AbstractProfileBase

addMetadataProvider(MetadataProvider) - Method in class org.springframework.security.saml.metadata.MetadataManager

Adds a new metadata provider to the managed list.

addParameter(String, String) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

afterPropertiesSet() - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Verifies that required entities were autowired or set and initializes resolvers used to construct trust engines.

afterPropertiesSet() - Method in class org.springframework.security.saml.context.SAMLContextProviderLB

Verifies that required entities were autowired or set and initializes resolvers used to construct trust engines.

afterPropertiesSet() - Method in class org.springframework.security.saml.metadata.MetadataDisplayFilter

Verifies that required entities were autowired or set.

afterPropertiesSet() - Method in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

Verifies that required entities were autowired or set.

afterPropertiesSet() - Method in class org.springframework.security.saml.metadata.MetadataManager

Method must be called after provider construction.

afterPropertiesSet() - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

Verifies that required entities were autowired or set.

afterPropertiesSet() - Method in class org.springframework.security.saml.SAMLDiscovery

Verifies that required entities were autowired or set.

afterPropertiesSet() - Method in class org.springframework.security.saml.SAMLEntryPoint

Verifies that required entities were autowired or set.

afterPropertiesSet() - Method in class org.springframework.security.saml.SAMLLogoutFilter

Verifies that required entities were autowired or set.

afterPropertiesSet() - Method in class org.springframework.security.saml.SAMLLogoutProcessingFilter

Verifies that required entities were autowired or set.

afterPropertiesSet() - Method in class org.springframework.security.saml.SAMLProcessingFilter

Verifies that required entities were autowired or set.

afterPropertiesSet() - Method in class org.springframework.security.saml.websso.AbstractProfileBase

AllowAllSignatureTrustEngine - Class in org.springframework.security.saml.trust

Special type of trust engine which always trusts the credential and thus skips the verification.

AllowAllSignatureTrustEngine(KeyInfoCredentialResolver) - Constructor for class org.springframework.security.saml.trust.AllowAllSignatureTrustEngine

artifactMap - Variable in class org.springframework.security.saml.websso.AbstractProfileBase

ArtifactResolutionProfile - Interface in org.springframework.security.saml.websso

Implementations must load referenced artifact using SAML artifact resolution protocol.

ArtifactResolutionProfileBase - Class in org.springframework.security.saml.websso

Base implementation of the artifactResolution profile.

ArtifactResolutionProfileBase() - Constructor for class org.springframework.security.saml.websso.ArtifactResolutionProfileBase

ArtifactResolutionProfileImpl - Class in org.springframework.security.saml.websso

Implementation of the artifact resolution protocol which uses Apache HTTPClient for SOAP binding transport.

ArtifactResolutionProfileImpl(HttpClient) - Constructor for class org.springframework.security.saml.websso.ArtifactResolutionProfileImpl

attemptAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.saml.SAMLProcessingFilter

In case the login attribute is not present it is presumed that the call is made from the remote IDP and contains a SAML assertion which is processed and authenticated.

AUTH_N_REQUEST - Static variable in class org.springframework.security.saml.SAMLConstants

AUTH_N_RESPONSE - Static variable in class org.springframework.security.saml.SAMLConstants

authenticate(Authentication) - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

Attempts to perform authentication of an Authentication object.

B

bindings - Variable in class org.springframework.security.saml.processor.SAMLProcessorImpl

Bindings supported by this processor.

bootstrap() - Static method in class org.opensaml.PaosBootstrap

buildAuthnContext(AuthnRequest, WebSSOProfileOptions) - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

Fills the request with required AuthNContext according to selected options.

buildCommonAttributes(String, RequestAbstractType, Endpoint) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

Fills the request with version, issue instants and destination data.

builderFactory - Variable in class org.springframework.security.saml.metadata.MetadataGenerator

builderFactory - Variable in class org.springframework.security.saml.websso.AbstractProfileBase

buildExtensions(String, String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

buildIDPList(Set<String>, SingleSignOnService) - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

Builds an IdP List out of the idpEntityNames

buildObject() - Method in class org.opensaml.liberty.paos.impl.RequestBuilder

buildObject(String, String, String) - Method in class org.opensaml.liberty.paos.impl.RequestBuilder

buildObject() - Method in class org.opensaml.liberty.paos.impl.ResponseBuilder

buildObject(String, String, String) - Method in class org.opensaml.liberty.paos.impl.ResponseBuilder

buildPAOSMessage(SAMLObject, XMLObject) - Method in class org.opensaml.liberty.binding.encoding.HTTPPAOS11Encoder

buildReturnAddress(AuthnRequest, AssertionConsumerService) - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

Fills the request with assertion consumer service url and protocol binding based on assertionConsumer to be used to deliver response from the IDP.

buildScoping(AuthnRequest, SingleSignOnService, WebSSOProfileOptions) - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

Fills the request with information about scoping, including IDP in the scope IDP List.

buildSPSSODescriptor(String, String, boolean, boolean, Collection<String>) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

builNameIDPolicy(AuthnRequest, WebSSOProfileOptions) - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

Fills the request with required AuthNContext according to selected options.

C

cacheCredentials(PKIXInformationResolver.MetadataCacheKey, Collection<PKIXValidationInformation>) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

Adds resolved credentials to the cache.

CachingMetadataManager - Class in org.springframework.security.saml.metadata

Metadata manager caches all results of EntityDescriptors loaded from the providers.

CachingMetadataManager(List<MetadataProvider>) - Constructor for class org.springframework.security.saml.metadata.CachingMetadataManager

Creates caching metadata provider.

CertPathPKIXTrustEvaluator - Class in org.springframework.security.saml.trust

Customized PKIX trust evaluator which runs a CertPath verification after obtaining it.

CertPathPKIXTrustEvaluator() - Constructor for class org.springframework.security.saml.trust.CertPathPKIXTrustEvaluator

CertPathPKIXTrustEvaluator(PKIXValidationOptions) - Constructor for class org.springframework.security.saml.trust.CertPathPKIXTrustEvaluator

checkClientTrusted(X509Certificate[], String) - Method in class org.springframework.security.saml.trust.X509TrustManager

checkCriteriaRequirements(CriteriaSet) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

Check that all necessary credential criteria are available.

checkServerTrusted(X509Certificate[], String) - Method in class org.springframework.security.saml.trust.X509TrustManager

chooseClientAlias(String[], Principal[], Socket) - Method in class org.springframework.security.saml.trust.X509KeyManager

chooseServerAlias(String, Principal[], Socket) - Method in class org.springframework.security.saml.trust.X509KeyManager

clone() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Clones the existing metadata object.

clone() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

Clones the current object.

commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.saml.SAMLEntryPoint

Method starts a process used to ultimately authenticate user using WebSSO Profile.

compare(byte[], String) - Static method in class org.springframework.security.saml.util.SAMLUtil

Helper method compares whether SHA-1 hash of the entityId equals the hashID.

compareEndpointURIs(String, String) - Method in class org.opensaml.saml2.binding.decoding.HTTPSOAP11DecoderImpl

In case message destination is set (was included in the message) check is made against the endpoint.

consumer - Variable in class org.springframework.security.saml.SAMLAuthenticationProvider

contextProvider - Variable in class org.springframework.security.saml.metadata.MetadataDisplayFilter

Provider for context based on URL

contextProvider - Variable in class org.springframework.security.saml.SAMLDiscovery

Context provider.

contextProvider - Variable in class org.springframework.security.saml.SAMLEntryPoint

contextProvider - Variable in class org.springframework.security.saml.SAMLLogoutFilter

contextProvider - Variable in class org.springframework.security.saml.SAMLLogoutProcessingFilter

contextProvider - Variable in class org.springframework.security.saml.SAMLProcessingFilter

createArtifactResolve(SAMLMessageContext, String, Endpoint) - Method in class org.springframework.security.saml.websso.ArtifactResolutionProfileBase

criteriaSet - Variable in class org.springframework.security.saml.trust.X509TrustManager

D

DEFAULT_ELEMENT_LOCAL_NAME - Static variable in interface org.opensaml.liberty.paos.Request

Element local name.

DEFAULT_ELEMENT_LOCAL_NAME - Static variable in interface org.opensaml.liberty.paos.Response

Element local name.

DEFAULT_ELEMENT_NAME - Static variable in interface org.opensaml.liberty.paos.Request

Default element name.

DEFAULT_ELEMENT_NAME - Static variable in interface org.opensaml.liberty.paos.Response

Default element name.

defaultNameID - Static variable in class org.springframework.security.saml.metadata.MetadataGenerator

defaultOptions - Variable in class org.springframework.security.saml.SAMLEntryPoint

destroy() - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

Method destroys the metadata delegate.

destroy() - Method in class org.springframework.security.saml.metadata.MetadataManager

Stops and removes the timer in case it was started.

DISCOVERY_RESPONSE_PARAMETER - Static variable in class org.springframework.security.saml.SAMLEntryPoint

Parameter is used to indicate response from IDP discovery service.

displayFilter - Variable in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

Metadata display filter.

displayMetadata(String, PrintWriter) - Method in class org.springframework.security.saml.metadata.MetadataDisplayFilter

Method writes metadata document into given writer object.

doDecode(MessageContext) - Method in class org.opensaml.liberty.binding.decoding.HTTPPAOS11Decoder

doDecode(MessageContext) - Method in class org.opensaml.saml2.binding.decoding.HTTPArtifactDecoderImpl

doEncode(MessageContext) - Method in class org.opensaml.liberty.binding.encoding.HTTPPAOS11Encoder

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.saml.metadata.MetadataDisplayFilter

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.saml.SAMLDiscovery

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.saml.SAMLEntryPoint

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.saml.SAMLLogoutFilter

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.saml.SAMLLogoutProcessingFilter

doGetMetadata() - Method in class org.springframework.security.saml.metadata.MetadataMemoryProvider

E

EmptyStorageFactory - Class in org.springframework.security.saml.storage

Storage factory which doesn't return any storage implementation and disables the message storage mechanism.

EmptyStorageFactory() - Constructor for class org.springframework.security.saml.storage.EmptyStorageFactory

ENTITY_ID_PARAM - Static variable in class org.springframework.security.saml.SAMLDiscovery

Unique identifier of the party performing the request.

equals(Object) - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

Equality is based on the object this class delegates to.

equals(Object) - Method in class org.springframework.security.saml.parser.SAMLBase

equals(Object) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver.MetadataCacheKey

eraseCredentials() - Method in class org.springframework.security.providers.ExpiringUsernameAuthenticationToken

SAML credentials can be kept without clearing.

ExpiringUsernameAuthenticationToken - Class in org.springframework.security.providers

Authentication token with capability to disable itself after specific datetime.

ExpiringUsernameAuthenticationToken(Object, Object) - Constructor for class org.springframework.security.providers.ExpiringUsernameAuthenticationToken

ExpiringUsernameAuthenticationToken(Date, Object, Object, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.providers.ExpiringUsernameAuthenticationToken

Should only be used by authenticationManager as specified in UsernamePasswordAuthenticationToken.

ExtendedMetadata - Class in org.springframework.security.saml.metadata

Class contains additional information describing a SAML entity.

ExtendedMetadata() - Constructor for class org.springframework.security.saml.metadata.ExtendedMetadata

ExtendedMetadataDelegate - Class in org.springframework.security.saml.metadata

Class enables delegation of normal entity metadata loading to the selected provider while enhancing data with extended metadata.

ExtendedMetadataDelegate(MetadataProvider) - Constructor for class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

Uses provider for normal entity data, for each entity available in the delegate returns given defaults.

ExtendedMetadataDelegate(MetadataProvider, ExtendedMetadata) - Constructor for class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

Uses provider for normal entity data, for each entity available in the delegate returns given defaults.

ExtendedMetadataDelegate(MetadataProvider, Map<String, ExtendedMetadata>) - Constructor for class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

Uses provider for normal entity data, tries to locate extended metadata by search in the map.

ExtendedMetadataDelegate(MetadataProvider, ExtendedMetadata, Map<String, ExtendedMetadata>) - Constructor for class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

Uses provider for normal entity data, tries to locate extended metadata by search in the map, in case it's not found uses the default.

ExtendedMetadataProvider - Interface in org.springframework.security.saml.metadata

Provider capable of supplying metadata extensions including information about requirements of the given entity.

F

FAILURE - Static variable in class org.springframework.security.saml.SAMLConstants

FILTER_URL - Static variable in class org.springframework.security.saml.metadata.MetadataDisplayFilter

Default name of path suffix which will invoke this filter.

FILTER_URL - Static variable in class org.springframework.security.saml.SAMLDiscovery

Default name of path suffix which will invoke this filter.

FILTER_URL - Static variable in class org.springframework.security.saml.SAMLEntryPoint

Default name of path suffix which will invoke this filter.

FILTER_URL - Static variable in class org.springframework.security.saml.SAMLLogoutFilter

URL this filter processes

FILTER_URL - Static variable in class org.springframework.security.saml.SAMLLogoutProcessingFilter

Default processing URL.

FILTER_URL - Static variable in class org.springframework.security.saml.SAMLProcessingFilter

URL for Web SSO profile responses or unsolicited requests

filterProcessesUrl - Variable in class org.springframework.security.saml.metadata.MetadataDisplayFilter

Url this filter should get activated on.

filterProcessesUrl - Variable in class org.springframework.security.saml.SAMLDiscovery

Url this filter should get activated on.

filterProcessesUrl - Variable in class org.springframework.security.saml.SAMLEntryPoint

Url this filter should get activated on.

G

generateExtendedMetadata() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

Generates extended metadata.

generateID() - Method in class org.springframework.security.saml.websso.AbstractProfileBase

Generates random ID to be used as Request/Response ID.

generateKeyInfoForCredential(Credential) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

generateMetadata() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

generator - Variable in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

Class capable of generating new metadata.

getAcceptedIssuers() - Method in class org.springframework.security.saml.trust.X509TrustManager

getActualReceiverEndpointURI(SAMLMessageContext) - Method in class org.opensaml.saml2.binding.decoding.HTTPSOAP11DecoderImpl

getAlias() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Returns alias.

getAllMessages() - Method in class org.springframework.security.saml.storage.HttpSessionStorage

getAllowedIDPs() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

getArtifactResolutionService(IDPSSODescriptor, int) - Static method in class org.springframework.security.saml.util.SAMLUtil

getArtifactResponse(String, SAMLMessageContext) - Method in class org.springframework.security.saml.websso.ArtifactResolutionProfileBase

Method is expected to send ArtifactRequest to the artifactResolution service and store the ArtifactResponse.

getArtifactResponse(String, SAMLMessageContext) - Method in class org.springframework.security.saml.websso.ArtifactResolutionProfileImpl

Uses HTTPClient to send and retrieve ArtifactMessages.

getAssertionConsumerIndex() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getAssertionConsumerIndex() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

getAssertionConsumerService(String, String, boolean, int, String, String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getAssertionConsumerService(WebSSOProfileOptions, IDPSSODescriptor, SPSSODescriptor) - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

Determines endpoint where should the identity provider return the SAML message.

getAttribute(String) - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getAttribute(String) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

getAttributeByName(String) - Method in class org.springframework.security.saml.SAMLCredential

Method searches for the first occurrence of the attribute with given name and returns it.

getAttributes() - Method in class org.springframework.security.saml.SAMLCredential

Unmodifiable list of all attributes loaded from the assertions received during SSO.

getAuthenticationAssertion() - Method in class org.springframework.security.saml.SAMLCredential

Assertion issued by IDP as part of the authentication process.

getAuthnContextComparison() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

getAuthnContexts() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

getAuthnRequest(SAMLMessageContext, WebSSOProfileOptions, AssertionConsumerService, SingleSignOnService) - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

Returns AuthnRequest SAML message to be used to demand authentication from an IDP described using idpEntityDescriptor, with an expected response to the assertionConsumer address.

getAvailableCredentials() - Method in class org.springframework.security.saml.key.JKSKeyManager

getAvailableCredentials() - Method in interface org.springframework.security.saml.key.KeyManager

Method provides list of all credentials available in the storage.

getAvailableProviders() - Method in class org.springframework.security.saml.metadata.MetadataManager

Method provides list of all available providers.

getBase64EncodeCertificates(KeyInfo) - Static method in class org.springframework.security.saml.util.SAMLUtil

Parses list of all Base64 encoded certificates found inside the KeyInfo element.

getBase64EncodedCertificates(X509Data) - Static method in class org.springframework.security.saml.util.SAMLUtil

Parses list of Base64 encoded certificates present in the X509Data element.

getBinding(InTransport) - Method in class org.springframework.security.saml.processor.SAMLProcessorImpl

Analyzes the transport object and returns the first binding capable of sending/extracting a SAML message from to/from it.

getBinding(Endpoint) - Method in class org.springframework.security.saml.processor.SAMLProcessorImpl

Determines binding to be used for the given endpoint.

getBinding(String) - Method in class org.springframework.security.saml.processor.SAMLProcessorImpl

Finds binding with the given name.

getBinding() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

getBindingForEndpoint(Endpoint) - Static method in class org.springframework.security.saml.util.SAMLUtil

Method determines binding supported by the given endpoint.

getBindingsHoKSSO() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getBindingsSLO() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getBindingsSSO() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getBindingURI() - Method in class org.opensaml.liberty.binding.encoding.HTTPPAOS11Encoder

getBindingURI() - Method in class org.opensaml.saml2.binding.decoding.HTTPArtifactDecoderImpl

getBindingURI() - Method in class org.springframework.security.saml.processor.HTTPArtifactBinding

getBindingURI() - Method in class org.springframework.security.saml.processor.HTTPPAOS11Binding

getBindingURI() - Method in class org.springframework.security.saml.processor.HTTPPostBinding

getBindingURI() - Method in class org.springframework.security.saml.processor.HTTPRedirectDeflateBinding

getBindingURI() - Method in class org.springframework.security.saml.processor.HTTPSOAP11Binding

getBindingURI() - Method in interface org.springframework.security.saml.processor.SAMLBinding

Binding identifier.

getCertificate(String) - Method in class org.springframework.security.saml.key.JKSKeyManager

Returns certificate with the given alias from the keystore.

getCertificate(String) - Method in interface org.springframework.security.saml.key.KeyManager

Returns certificate with the given alias from the keystore.

getCertificateChain(String) - Method in class org.springframework.security.saml.trust.X509KeyManager

getCharacterEncoding() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getCharacterEncoding() - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

getClientAliases(String, Principal[]) - Method in class org.springframework.security.saml.trust.X509KeyManager

getConsumerService(SPSSODescriptor, Integer) - Static method in class org.springframework.security.saml.util.SAMLUtil

Loads the assertionConsumerIndex designated by the index.

getContentLength() - Method in class org.opensaml.ws.transport.http.httpclient.OutputStreamRequestEntity

getContentType() - Method in class org.opensaml.ws.transport.http.httpclient.OutputStreamRequestEntity

getCredential(String) - Method in class org.springframework.security.saml.key.JKSKeyManager

Returns Credential object used to sign the messages issued by this entity.

getCredential(String) - Method in interface org.springframework.security.saml.key.KeyManager

Returns Credential object used to sign the messages issued by this entity.

getCredentials() - Method in class org.springframework.security.saml.SAMLAuthenticationToken

Returns the stored SAML context

getCustomDiscoveryResponseURL() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getCustomDiscoveryURL() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getDefaultBaseURL(HttpServletRequest) - Method in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

getDefaultBinding(IDPSSODescriptor) - Static method in class org.springframework.security.saml.util.SAMLUtil

Returns default binding supported by IDP.

getDefaultCredential() - Method in class org.springframework.security.saml.key.JKSKeyManager

Returns Credential object used to sign the messages issued by this entity.

getDefaultCredential() - Method in interface org.springframework.security.saml.key.KeyManager

Returns Credential object used to sign the messages issued by this entity.

getDefaultCredentialName() - Method in class org.springframework.security.saml.key.JKSKeyManager

getDefaultCredentialName() - Method in interface org.springframework.security.saml.key.KeyManager

Method provides name of the credential which should be used by default when no other is specified.

getDefaultEntityID(String, String) - Method in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

getDefaultExtendedMetadata() - Method in class org.springframework.security.saml.metadata.MetadataManager

getDefaultIDP() - Method in class org.springframework.security.saml.metadata.MetadataManager

Returns entity ID of the IDP to be used by default.

getDefaultReturnURL(SAMLMessageContext) - Method in class org.springframework.security.saml.SAMLDiscovery

Provides default return URL based on metadata in case none was supplied in the request.

getDelegate() - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

getDiscoveryService(String, String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getECPRequest(SAMLMessageContext, WebSSOProfileOptions) - Method in class org.springframework.security.saml.websso.WebSSOProfileECPImpl

getEncryptionKey() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Encryption key used for encrypting messages send to the remote entity or decrypting data sent to the local one.

getEndpoint(List<T>, String, String) - Static method in class org.springframework.security.saml.util.SAMLUtil

Method helps to identify which endpoint is used to process the current message.

getEndpointBinding(Endpoint) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

Method is expected to return binding used to transfer messages to this endpoint.

getEngine() - Static method in class org.springframework.security.saml.util.VelocityFactory

getEntitiesDescriptor(String) - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

getEntitlements(SAMLCredential, Object) - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

Method is responsible for returning collection of users entitlements.

getEntityAlias() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getEntityBaseURL() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getEntityDescriptor(String) - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

getEntityDescriptor(String) - Method in class org.springframework.security.saml.metadata.CachingMetadataManager

In case entity exists in the cache it is returned, otherwise mechanism from the super class is used to locate it.

getEntityDescriptor(byte[]) - Method in class org.springframework.security.saml.metadata.CachingMetadataManager

Locates entity descriptor whose entityId SHA-1 hash equals the one in the parameter.

getEntityDescriptor(byte[]) - Method in class org.springframework.security.saml.metadata.MetadataManager

Locates entity descriptor whose entityId SHA-1 hash equals the one in the parameter.

getEntityId() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getEntityIdForAlias(String) - Method in class org.springframework.security.saml.metadata.CachingMetadataManager

Locates name of the entity for the given alias.

getEntityIdForAlias(String) - Method in class org.springframework.security.saml.metadata.MetadataManager

Tries to load entityId for entity with the given alias.

getEnvelope() - Method in class org.springframework.security.saml.websso.WebSSOProfileECPImpl

getExpirationDate(SAMLCredential) - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

Parses the SAMLCredential for expiration time.

getExtendedMetadata(String) - Method in class org.springframework.security.saml.metadata.CachingMetadataManager

In case entity exists in the cache it is returned, otherwise mechanism from the super class is used to locate it.

getExtendedMetadata(String) - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

Tries to load extended metadata for the given entity.

getExtendedMetadata(String) - Method in interface org.springframework.security.saml.metadata.ExtendedMetadataProvider

Implementation should try to localize additional metadata for the given entity.

getExtendedMetadata() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getExtendedMetadata(String) - Method in class org.springframework.security.saml.metadata.MetadataManager

Tries to locate ExtendedMetadata by trying one provider after another.

getFilterProcessesUrl() - Method in class org.springframework.security.saml.metadata.MetadataDisplayFilter

getFilterProcessesUrl() - Method in class org.springframework.security.saml.SAMLDiscovery

getFilterProcessesUrl() - Method in class org.springframework.security.saml.SAMLEntryPoint

getFilterProcessesUrl() - Method in class org.springframework.security.saml.SAMLLogoutProcessingFilter

getForceAuthN() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

getHeaderValue(String) - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getHeaderValue(String) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

getHoKAssertionConsumerService(String, String, boolean, int, String, String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getHostConfiguration(URI, SAMLMessageContext) - Method in class org.springframework.security.saml.websso.ArtifactResolutionProfileImpl

Method is expected to determine hostConfiguration used to send request to the server by back-channel.

getHostedSPName() - Method in class org.springframework.security.saml.metadata.MetadataManager

The method returns name of SP running this application.

getHTTPMethod() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getHTTPMethod() - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

getIDPDescriptor(MetadataManager, String) - Static method in class org.springframework.security.saml.util.SAMLUtil

Loads IDP descriptor for entity with the given entityID.

getIdpDiscoveryResponseURL() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

getIdpDiscoveryURL() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

getIDPEntityNames() - Method in class org.springframework.security.saml.metadata.MetadataManager

Returns set of names of all IDPs available in the metadata

getIdpSelectionPath() - Method in class org.springframework.security.saml.SAMLDiscovery

Path used to forward request in order to enable target IDP selection

getIDPSSODescriptor(EntityDescriptor) - Static method in class org.springframework.security.saml.util.SAMLUtil

getInboundSAMLBinding() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Binding used to deliver the current message.

getIncomingStream() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getIssuer(String) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

getKeyDescriptor(UsageType, KeyInfo) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getKeyInfoGeneratorName() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

Name of the KeyInfoGenerator registered at default KeyInfoGeneratorManager.

getKeyInfoResolver() - Method in class org.springframework.security.saml.trust.AllowAllSignatureTrustEngine

getKeyStore() - Method in class org.springframework.security.saml.key.JKSKeyManager

getLocalAddress() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getLocalAddress() - Method in interface org.opensaml.ws.transport.http.LocationAwareInTransport

getLocalAndPeerEntity(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.saml.context.SAMLContextProvider

Creates a SAMLContext with local entity and peer values filled.

getLocalAndPeerEntity(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Creates a SAMLContext with local entity and peer values filled.

getLocalCredential() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getLocalCredential() - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

getLocalDecrypter() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Object capable of decrypting data signed for this entity.

getLocalEntity(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.saml.context.SAMLContextProvider

Creates a SAMLContext with local entity values filled.

getLocalEntity(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Creates a SAMLContext with local entity values filled.

getLocalEntityEndpoint() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Endpoint the incoming message (if any) was received at.

getLocalEntityID() - Method in class org.springframework.security.saml.SAMLCredential

Entity ID of the local actor.

getLocalExtendedMetadata() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Extended metadata of the local entity

getLocalSigningCredential() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Credential used to sign messages sent from this entity.

getLocalSSLCredential() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Credential used to authenticate this instance against peers using SSL/TLS .

getLocalSSLTrustEngine() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Trust engine used to verify server certificate in SSL/TLS connections.

getLocalTrustEngine() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Mechanism able to determine whether incoming message signature should be trusted.

getLogoutBinding(IDPSSODescriptor, SPSSODescriptor) - Static method in class org.springframework.security.saml.util.SAMLUtil

getLogoutRequest(SAMLMessageContext, SAMLCredential, Endpoint) - Method in class org.springframework.security.saml.websso.SingleLogoutProfileImpl

Returns logout request message ready to be sent to the IDP.

getLogoutServiceForBinding(SSODescriptor, String) - Static method in class org.springframework.security.saml.util.SAMLUtil

Returns Single logout service for given binding of the IDP.

getMaxAssertionTime() - Method in class org.springframework.security.saml.websso.AbstractProfileBase

Maximum time between assertion creation and current time when the assertion is usable in seconds.

getMaxAuthenticationAge() - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

Maximum time between authentication of user and processing of an authentication statement.

getMessage() - Method in exception org.springframework.security.saml.trust.UntrustedCertificateException

getMessageDecoder() - Method in interface org.springframework.security.saml.processor.SAMLBinding

Creates decoder capable of parsing message with the given binding

getMessageDecoder() - Method in class org.springframework.security.saml.processor.SAMLBindingImpl

getMessageEncoder() - Method in interface org.springframework.security.saml.processor.SAMLBinding

Creates encoder capable of creating messages to be sent using given bindidn.

getMessageEncoder() - Method in class org.springframework.security.saml.processor.SAMLBindingImpl

getMessageID() - Method in class org.opensaml.liberty.paos.impl.RequestImpl

Get the messageID attribute value.

getMessageID() - Method in interface org.opensaml.liberty.paos.Request

Get the messageID attribute value.

getMessageStorage() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Storage messages sent during processing of this context.

getMessageStorage(HttpServletRequest) - Method in class org.springframework.security.saml.storage.EmptyStorageFactory

getMessageStorage(HttpServletRequest) - Method in class org.springframework.security.saml.storage.HttpSessionStorageFactory

getMessageStorage(HttpServletRequest) - Method in interface org.springframework.security.saml.storage.SAMLMessageStorageFactory

Provides message storage related to the given request.

getMetadata() - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

getMetadata() - Method in class org.springframework.security.saml.metadata.MetadataMemoryProvider

getMetadataFilter() - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

getMetadataTrustedKeys() - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

If set returns set of keys which can be used to verify whether signature of the metadata is trusted.

getNameID() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getNameID() - Method in class org.springframework.security.saml.SAMLCredential

NameID returned from IDP as part of the authentication process.

getNameID(SAMLMessageContext, LogoutRequest) - Method in class org.springframework.security.saml.websso.SingleLogoutProfileImpl

getNameID() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

NameID to used or null to omit NameIDPolicy from request.

getNameIDFormat(Collection<String>) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getObject() - Method in class org.springframework.security.saml.parser.SAMLBase

getObject() - Method in class org.springframework.security.saml.parser.SAMLCollection

getObject() - Method in class org.springframework.security.saml.parser.SAMLObject

getObservers() - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

getOrderedChildren() - Method in class org.opensaml.liberty.paos.impl.RequestImpl

getOrderedChildren() - Method in class org.opensaml.liberty.paos.impl.ResponseImpl

getOutgoingStream() - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

getPAOSRequest(AssertionConsumerService) - Method in class org.springframework.security.saml.websso.WebSSOProfileECPImpl

getParameterValue(String) - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getParameterValue(String) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

getParameterValues(String) - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getParameterValues(String) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

getPassive() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

Sets whether the IdP should refrain from interacting with the user during the authentication process.

getPassiveIDP(HttpServletRequest) - Method in class org.springframework.security.saml.SAMLDiscovery

Returns IDP to be used in passive mode.

getPeerAddress() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getPeerCredential() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getPeerCredential() - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

getPeerDomainName() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getPeerExtendedMetadata() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Extended metadata of the peer entity.

getPeerSSLCredential() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Certificate used the peer entity used to authenticate against our server as part of the SSL/TLS connection.

getPKIXDepth() - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

Allowed depth of PKIX trust path length.

getPKIXResolver(MetadataProvider, Set<String>, Set<String>) - Method in class org.springframework.security.saml.metadata.MetadataManager

Method is expected to construct information resolver with all trusted data available for the given provider.

getPool() - Static method in class org.springframework.security.saml.parser.ParserPoolHolder

getPrincipal(SAMLCredential, Object) - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

Method determines what will be stored as principal of the created Authentication object.

getPrincipal() - Method in class org.springframework.security.saml.SAMLAuthenticationToken

Always null

getPrivateKey(String) - Method in class org.springframework.security.saml.trust.X509KeyManager

getProfileIdentifier() - Method in class org.springframework.security.saml.websso.AbstractProfileBase

Implementation are expected to provide an unique identifier for the profile this class implements.

getProfileIdentifier() - Method in class org.springframework.security.saml.websso.ArtifactResolutionProfileBase

getProfileIdentifier() - Method in class org.springframework.security.saml.websso.SingleLogoutProfileImpl

getProfileIdentifier() - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerHoKImpl

getProfileIdentifier() - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

getProfileIdentifier() - Method in class org.springframework.security.saml.websso.WebSSOProfileECPImpl

getProfileIdentifier() - Method in class org.springframework.security.saml.websso.WebSSOProfileHoKImpl

getProfileIdentifier() - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

getProfileName() - Method in class org.springframework.security.saml.SAMLLogoutProcessingFilter

Name of the profile processed by this class.

getProfileName() - Method in class org.springframework.security.saml.SAMLProcessingFilter

Name of the profile this used for authentication.

getProfileName() - Method in class org.springframework.security.saml.SAMLWebSSOHoKProcessingFilter

Name of the WebSSO HoK profile this filter processes.

getProfileOptions(SAMLMessageContext, AuthenticationException) - Method in class org.springframework.security.saml.SAMLEntryPoint

Method is supposed to populate preferences used to construct the SAML message.

getProviderName() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

Human readable name of the local entity.

getProviders() - Method in class org.springframework.security.saml.metadata.MetadataManager

Method provides list of active providers - those which are valid and can be queried for metadata.

getProxyCount() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

getPublicKey(String) - Method in class org.springframework.security.saml.key.JKSKeyManager

Returns public key with the given alias

getReadWriteLock() - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

Get the lock instance used to synchronize access to the credential cache.

getRefToMessageID() - Method in class org.opensaml.liberty.paos.impl.ResponseImpl

Get the refToMessageID attribute value.

getRefToMessageID() - Method in interface org.opensaml.liberty.paos.Response

Get the refToMessageID attribute value.

getRelayState(String) - Method in class org.opensaml.liberty.binding.encoding.HTTPPAOS11Encoder

Method creates a relayState element usable with the ECP profile.

getRelayState() - Method in class org.springframework.security.saml.SAMLCredential

getRelayState() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

getRemoteEntityID() - Method in class org.springframework.security.saml.SAMLCredential

Entity ID of the IDP which issued the assertion.

getResponseConsumerURL() - Method in class org.opensaml.liberty.paos.impl.RequestImpl

Get the responseConsumerURL attribute value.

getResponseConsumerURL() - Method in interface org.opensaml.liberty.paos.Request

Get the responseConsumerURL attribute value.

getResponseSkew() - Method in class org.springframework.security.saml.websso.AbstractProfileBase

getRole(String, QName) - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

getRole(String, QName, String) - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

getSecurityPolicy(List<SecurityPolicyRule>, SAMLMessageContext) - Method in class org.springframework.security.saml.processor.HTTPArtifactBinding

getSecurityPolicy(List<SecurityPolicyRule>, SAMLMessageContext) - Method in class org.springframework.security.saml.processor.HTTPPostBinding

getSecurityPolicy(List<SecurityPolicyRule>, SAMLMessageContext) - Method in class org.springframework.security.saml.processor.HTTPRedirectDeflateBinding

getSecurityPolicy(List<SecurityPolicyRule>, SAMLMessageContext) - Method in class org.springframework.security.saml.processor.HTTPSOAP11Binding

getSecurityPolicy(List<SecurityPolicyRule>, SAMLMessageContext) - Method in interface org.springframework.security.saml.processor.SAMLBinding

Security rules to apply for incoming SAML messages received using the binding.

getSecurityPolicy(List<SecurityPolicyRule>, SAMLMessageContext) - Method in class org.springframework.security.saml.processor.SAMLBindingImpl

getSecurityProfile() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Security profile to use for this local entity - MetaIOP (default) or PKIX.

getServerAliases(String, Principal[]) - Method in class org.springframework.security.saml.trust.X509KeyManager

getServerKeyInfo(String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getService() - Method in class org.opensaml.liberty.paos.impl.RequestImpl

Get the service attribute value.

getService() - Method in interface org.opensaml.liberty.paos.Request

Get the service attribute value.

getSigningKey() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Signing key used for signing messages or verifying signatures of this entity.

getSingleLogoutService(String, String, String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getSingleSignOnService(WebSSOProfileOptions, IDPSSODescriptor, SPSSODescriptor) - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

Method determines SingleSignOn service (and thus binding) to be used to deliver AuthnRequest to the IDP.

getSOAP11Actor() - Method in class org.opensaml.liberty.paos.impl.RequestImpl

getSOAP11Actor() - Method in class org.opensaml.liberty.paos.impl.ResponseImpl

getSPEntityNames() - Method in class org.springframework.security.saml.metadata.MetadataManager

Returns set of names of all SPs entity names

getSPNameQualifier() - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

SAML-Core 2218, Specifies that returned subject identifier should be returned in the namespace of the given SP.

getSslSecurityProfile() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Security profile used for SSL/TLS connections of the local entity.

getStatus(String, String) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

getStatusCode() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getStatusCode() - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

getTargetURL(String) - Method in class org.springframework.security.saml.SAMLRelayStateSuccessHandler

Method is responsible for processing relayState and returning URL the system can redirect to.

getTlsKey() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Key used to authenticate instance against remote peers when specified on local entity.

getTlsKey() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

getTokenExpiration() - Method in class org.springframework.security.providers.ExpiringUsernameAuthenticationToken

getTrustedKeys() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Trusted keys usable for signature and server SSL/TLS verification for entities with PKIX verification enabled.

getTrustEngine(MetadataProvider) - Method in class org.springframework.security.saml.metadata.MetadataManager

Method is expected to create a trust engine used to verify signatures from this provider.

getUserAgentBase64Certificate(SAMLMessageContext) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerHoKImpl

Method locates user agent certificate used in SSL/TLS and encodes it using base64 for comparison in HoK subject confirmation.

getUserDetails(SAMLCredential) - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

Populates user data from SAMLCredential into UserDetails object.

getUserDetails() - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

Returns saml user details service used to load information about logged user from SAML data.

getVersion() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

getVersion() - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

getX509Certificates() - Method in exception org.springframework.security.saml.trust.UntrustedCertificateException

globalHandlers - Variable in class org.springframework.security.saml.SAMLLogoutFilter

Handlers to be invoked during logout.

H

hashCode() - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

hashCode() - Method in class org.springframework.security.saml.parser.SAMLBase

hashCode() - Method in class org.springframework.security.saml.trust.PKIXInformationResolver.MetadataCacheKey

hokConsumer - Variable in class org.springframework.security.saml.SAMLAuthenticationProvider

HTTPArtifactBinding - Class in org.springframework.security.saml.processor

Http artifact binding.

HTTPArtifactBinding(ParserPool, VelocityEngine, ArtifactResolutionProfile) - Constructor for class org.springframework.security.saml.processor.HTTPArtifactBinding

Creates default implementation of the binding.

HTTPArtifactBinding(MessageDecoder, MessageEncoder) - Constructor for class org.springframework.security.saml.processor.HTTPArtifactBinding

Implementation of the binding with custom encoder and decoder.

HTTPArtifactDecoderImpl - Class in org.opensaml.saml2.binding.decoding

Class to decode HTTP artifact binding and request the SAML message through the artifact request response protocol with an IDP.

HTTPArtifactDecoderImpl(ArtifactResolutionProfile, ParserPool) - Constructor for class org.opensaml.saml2.binding.decoding.HTTPArtifactDecoderImpl

HttpClientInTransport - Class in org.opensaml.ws.transport.http

Implementation of HTTPInTransport delegating to a HTTPClient postMethod object.

HttpClientInTransport(PostMethod, String) - Constructor for class org.opensaml.ws.transport.http.HttpClientInTransport

HttpClientOutTransport - Class in org.opensaml.ws.transport.http

Implementation of HTTPOutTransport delegating to a HTTPClient PortMethod object.

HttpClientOutTransport(PostMethod) - Constructor for class org.opensaml.ws.transport.http.HttpClientOutTransport

HTTPPAOS11Binding - Class in org.springframework.security.saml.processor

HTTPPAOS11Binding(ParserPool) - Constructor for class org.springframework.security.saml.processor.HTTPPAOS11Binding

HTTPPAOS11Binding(MessageDecoder, MessageEncoder) - Constructor for class org.springframework.security.saml.processor.HTTPPAOS11Binding

HTTPPAOS11Decoder - Class in org.opensaml.liberty.binding.decoding

HTTPPAOS11Decoder() - Constructor for class org.opensaml.liberty.binding.decoding.HTTPPAOS11Decoder

HTTPPAOS11Decoder(ParserPool) - Constructor for class org.opensaml.liberty.binding.decoding.HTTPPAOS11Decoder

HTTPPAOS11Encoder - Class in org.opensaml.liberty.binding.encoding

HTTPPAOS11Encoder() - Constructor for class org.opensaml.liberty.binding.encoding.HTTPPAOS11Encoder

HTTPPostBinding - Class in org.springframework.security.saml.processor

Http POST binding.

HTTPPostBinding(ParserPool, VelocityEngine) - Constructor for class org.springframework.security.saml.processor.HTTPPostBinding

Creates default implementation of the binding.

HTTPPostBinding(ParserPool, MessageDecoder, MessageEncoder) - Constructor for class org.springframework.security.saml.processor.HTTPPostBinding

Implementation of the binding with custom encoder and decoder.

HTTPRedirectDeflateBinding - Class in org.springframework.security.saml.processor

Http redirect binding.

HTTPRedirectDeflateBinding(ParserPool) - Constructor for class org.springframework.security.saml.processor.HTTPRedirectDeflateBinding

Creates binding with default encoder and decoder.

HTTPRedirectDeflateBinding(MessageDecoder, MessageEncoder) - Constructor for class org.springframework.security.saml.processor.HTTPRedirectDeflateBinding

Constructor with customized encoder and decoder

HttpSessionStorage - Class in org.springframework.security.saml.storage

Class implements storage of SAML messages and uses HttpSession as underlying dataStore.

HttpSessionStorage(HttpServletRequest) - Constructor for class org.springframework.security.saml.storage.HttpSessionStorage

Creates the storage object and initializes it to load SAML messages from Session found in the request object.

HttpSessionStorage(HttpSession) - Constructor for class org.springframework.security.saml.storage.HttpSessionStorage

HttpSessionStorageFactory - Class in org.springframework.security.saml.storage

Default storage factory which provides HTTP Session storage.

HttpSessionStorageFactory() - Constructor for class org.springframework.security.saml.storage.HttpSessionStorageFactory

HTTPSOAP11Binding - Class in org.springframework.security.saml.processor

Http SOAP 1.1 binding.

HTTPSOAP11Binding(ParserPool) - Constructor for class org.springframework.security.saml.processor.HTTPSOAP11Binding

Creates binding with default encoder and decoder.

HTTPSOAP11Binding(MessageDecoder, MessageEncoder) - Constructor for class org.springframework.security.saml.processor.HTTPSOAP11Binding

Constructor with customized encoder and decoder

HTTPSOAP11DecoderImpl - Class in org.opensaml.saml2.binding.decoding

Custom implementation of the decoder which takes into account user HTTPInput method for determining correct expected URI.

HTTPSOAP11DecoderImpl(ParserPool) - Constructor for class org.opensaml.saml2.binding.decoding.HTTPSOAP11DecoderImpl

I

IDP_DISCO_PROTOCOL_SINGLE - Static variable in class org.springframework.security.saml.SAMLDiscovery

Default profile of the discovery service.

IDP_PARAMETER - Static variable in class org.springframework.security.saml.SAMLEntryPoint

Name of parameter of HttpRequest telling entry point that the login should use specified idp.

idpSelectionPath - Variable in class org.springframework.security.saml.SAMLDiscovery

In case this property is set to not null value the user will be redirected to this URL for selection of IDP to use for login.

init(RuntimeServices) - Method in class org.springframework.security.saml.util.SLF4JLogChute

initialize() - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

Method performs initialization of the provider it delegates to.

initializeDiscovery(SAMLMessageContext) - Method in class org.springframework.security.saml.SAMLEntryPoint

Method initializes IDP Discovery Profile as defined in http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-idp-discovery.pdf It is presumed that metadata of the local Service Provider contains discovery return address.

initializeECP(SAMLMessageContext, AuthenticationException) - Method in class org.springframework.security.saml.SAMLEntryPoint

Initializes ECP profile.

initializeProvider(ExtendedMetadataDelegate) - Method in class org.springframework.security.saml.metadata.MetadataManager

Method is expected to make sure that the provider is properly initialized.

initializeProviderData(ExtendedMetadataDelegate) - Method in class org.springframework.security.saml.metadata.MetadataManager

Method populates local storage of IDP and SP names and verifies any name conflicts which might arise.

initializeProviderFilters(ExtendedMetadataDelegate) - Method in class org.springframework.security.saml.metadata.MetadataManager

Method is automatically called during each attempt to initialize the provider data.

initializeSSO(SAMLMessageContext, AuthenticationException) - Method in class org.springframework.security.saml.SAMLEntryPoint

WebSSO profile or WebSSO Holder-of-Key profile.

isAllowCreate() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

isAuthenticated() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

isAuthenticated() - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

isAuthenticated() - Method in class org.springframework.security.providers.ExpiringUsernameAuthenticationToken

isConfidential() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

isConfidential() - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

isDateTimeSkewValid(int, DateTime) - Static method in class org.springframework.security.saml.util.SAMLUtil

Verifies that the current time is within skewInSec interval from the time value.

isDateTimeSkewValid(int, int, DateTime) - Static method in class org.springframework.security.saml.util.SAMLUtil

Verifies that the current time fits into interval defined by time minus backwardInterval minus skew and time plus forward interval plus skew.

isDiscovery(SAMLMessageContext) - Method in class org.springframework.security.saml.SAMLEntryPoint

Determines whether IDP Discovery should be initialized.

isECP(SAMLMessageContext) - Method in class org.springframework.security.saml.SAMLEntryPoint

Determines whether ECP profile should get initialized.

isEcpEnabled() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

isECPRequest(HttpServletRequest) - Static method in class org.springframework.security.saml.util.SAMLUtil

Analyzes the request headers in order to determine if it comes from an ECP-enabled client and based on this decides whether ECP profile will be used.

isEndpointMatching(Endpoint, String) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

Determines whether given endpoint can be used together with the specified binding.

isEndpointSupported(AssertionConsumerService) - Method in class org.springframework.security.saml.websso.WebSSOProfileECPImpl

isEndpointSupported(SingleSignOnService) - Method in class org.springframework.security.saml.websso.WebSSOProfileECPImpl

isEndpointSupported(SingleSignOnService) - Method in class org.springframework.security.saml.websso.WebSSOProfileHoKImpl

isEndpointSupported(AssertionConsumerService) - Method in class org.springframework.security.saml.websso.WebSSOProfileHoKImpl

isEndpointSupported(SingleSignOnService) - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

Determines whether given SingleSignOn service can be used together with this profile.

isEndpointSupported(AssertionConsumerService) - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

Determines whether given AssertionConsumerService can be used to deliver messages consumable by this profile.

isForceMetadataRevocationCheck() - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

isForcePrincipalAsString() - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

isGlobalLogout(HttpServletRequest, Authentication) - Method in class org.springframework.security.saml.SAMLLogoutFilter

Performs global logout in case current user logged in using SAML and user hasn't selected local logout only

isIdpDiscoveryEnabled() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

When true IDP discovery will be invoked before initializing WebSSO, unless IDP is already specified inside SAMLContext.

isIDPValid(String) - Method in class org.springframework.security.saml.metadata.MetadataManager

isIncludeDiscovery() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

isIncludeDiscoveryExtension() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

isIncludeScoping() - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

True if scoping element should be included in the requests sent to IDP.

isIntegrityProtected() - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

isIntegrityProtected() - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

isIntendedDestinationEndpointURIRequired(SAMLMessageContext) - Method in class org.opensaml.saml2.binding.decoding.HTTPArtifactDecoderImpl

isLevelEnabled(int) - Method in class org.springframework.security.saml.util.SLF4JLogChute

isLocal() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

isMetadataRequireSignature() - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

Flag indicating whether metadata must be signed.

isMetadataTrustCheck() - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

isNormalizeBaseUrl() - Method in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

isPeerUserSelected() - Method in class org.springframework.security.saml.context.SAMLMessageContext

Determines whether the peer entity was determined automatically (e.g.

isRefreshRequired() - Method in class org.springframework.security.saml.metadata.MetadataManager

Flag indicating whether configuration of the metadata should be reloaded.

isRepeatable() - Method in class org.opensaml.ws.transport.http.httpclient.OutputStreamRequestEntity

isRequestSigned() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

isRequireArtifactResolveSigned() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Flag indicating whether entity in question requires artifact resolve messages to be signed.

isRequireLogoutRequestSigned() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Flag indicating whether entity in question requires logout request to be signed.

isRequireLogoutResponseSigned() - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Flag indicating whether entity in question requires logout response to be signed.

isResponseURLValid(String, SAMLMessageContext) - Method in class org.springframework.security.saml.SAMLDiscovery

Verifies whether return URL supplied in the request is valid.

isSignMetadata() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

isSOAP11MustUnderstand() - Method in class org.opensaml.liberty.paos.impl.RequestImpl

isSOAP11MustUnderstand() - Method in class org.opensaml.liberty.paos.impl.ResponseImpl

isSOAP11MustUnderstandXSBoolean() - Method in class org.opensaml.liberty.paos.impl.RequestImpl

isSOAP11MustUnderstandXSBoolean() - Method in class org.opensaml.liberty.paos.impl.ResponseImpl

isSPValid(String) - Method in class org.springframework.security.saml.metadata.MetadataManager

isTrustFiltersInitialized() - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

isWantAssertionSigned() - Method in class org.springframework.security.saml.metadata.MetadataGenerator

J

JKSKeyManager - Class in org.springframework.security.saml.key

Class provides access to private and trusted keys for SAML Extension configuration.

JKSKeyManager(KeyStore, Map<String, String>, String) - Constructor for class org.springframework.security.saml.key.JKSKeyManager

Default constructor which uses an existing KeyStore instance for loading of credentials.

JKSKeyManager(Resource, String, Map<String, String>, String) - Constructor for class org.springframework.security.saml.key.JKSKeyManager

Default constructor which instantiates a new KeyStore used to load all credentials.

K

keyManager - Variable in class org.springframework.security.saml.context.SAMLContextProviderImpl

KeyManager - Interface in org.springframework.security.saml.key

Interface defines basic service required by the SAML Extension implementation.

keyManager - Variable in class org.springframework.security.saml.metadata.MetadataGenerator

keyManager - Variable in class org.springframework.security.saml.metadata.MetadataManager

keyManager - Variable in class org.springframework.security.saml.trust.MetadataCredentialResolver

Key manager.

L

loadUserBySAML(SAMLCredential) - Method in interface org.springframework.security.saml.userdetails.SAMLUserDetailsService

The method is supposed to identify local account of user referenced by data in the SAML assertion and return UserDetails object describing the user.

LOCAL_CONTEXT_PATH - Static variable in class org.springframework.security.saml.SAMLConstants

Used to store context path inside InTransport

LOCAL_ENTITY_ID - Static variable in class org.springframework.security.saml.SAMLConstants

Used as attribute inside HttpServletRequest to indicate required local entity id to the context provider.

LocationAwareInTransport - Interface in org.opensaml.ws.transport.http

Interface marks HTTP In Transports which can contain URL at which is the reception of data done.

log(String, String, SAMLMessageContext) - Method in class org.springframework.security.saml.log.SAMLDefaultLogger

log(String, String, SAMLMessageContext, Exception) - Method in class org.springframework.security.saml.log.SAMLDefaultLogger

log(String, String, SAMLMessageContext, Authentication, Exception) - Method in class org.springframework.security.saml.log.SAMLDefaultLogger

log(String, String, SAMLMessageContext) - Method in class org.springframework.security.saml.log.SAMLEmptyLogger

log(String, String, SAMLMessageContext, Exception) - Method in class org.springframework.security.saml.log.SAMLEmptyLogger

log(String, String, SAMLMessageContext, Authentication, Exception) - Method in class org.springframework.security.saml.log.SAMLEmptyLogger

log(String, String, SAMLMessageContext) - Method in interface org.springframework.security.saml.log.SAMLLogger

log(String, String, SAMLMessageContext, Exception) - Method in interface org.springframework.security.saml.log.SAMLLogger

log(String, String, SAMLMessageContext, Authentication, Exception) - Method in interface org.springframework.security.saml.log.SAMLLogger

log - Variable in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

log - Static variable in class org.springframework.security.saml.metadata.MetadataDisplayFilter

Class logger.

log - Static variable in class org.springframework.security.saml.metadata.MetadataGenerator

Class logger.

log - Static variable in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

Class logger.

log - Variable in class org.springframework.security.saml.metadata.MetadataManager

log - Static variable in class org.springframework.security.saml.parser.SAMLBase

log - Static variable in class org.springframework.security.saml.SAMLLogoutProcessingFilter

Class logger.

log - Static variable in class org.springframework.security.saml.SAMLRelayStateSuccessHandler

Class logger.

log(int, String) - Method in class org.springframework.security.saml.util.SLF4JLogChute

log(int, String, Throwable) - Method in class org.springframework.security.saml.util.SLF4JLogChute

log - Static variable in class org.springframework.security.saml.websso.AbstractProfileBase

Class logger.

logger - Static variable in class org.springframework.security.saml.context.SAMLContextProviderImpl

logger - Static variable in class org.springframework.security.saml.SAMLDiscovery

logger - Static variable in class org.springframework.security.saml.SAMLEntryPoint

logger - Static variable in class org.springframework.security.saml.SAMLProcessingFilter

LOGOUT_PARAMETER - Static variable in class org.springframework.security.saml.SAMLLogoutFilter

Name of parameter of HttpRequest indicating whether this call should perform only local logout.

LOGOUT_REQUEST - Static variable in class org.springframework.security.saml.SAMLConstants

LOGOUT_RESPONSE - Static variable in class org.springframework.security.saml.SAMLConstants

logoutProfile - Variable in class org.springframework.security.saml.SAMLLogoutProcessingFilter

M

manager - Variable in class org.springframework.security.saml.metadata.MetadataDisplayFilter

Class storing all SAML metadata documents

manager - Variable in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

Class storing all SAML metadata documents

manager - Variable in class org.springframework.security.saml.trust.MetadataCredentialResolver

Metadata manager.

mapAliases(Collection<String>) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

Method iterates all values in the input, for each tries to resolve correct alias.

marshallAttributes(XMLObject, Element) - Method in class org.opensaml.liberty.paos.impl.RequestMarshaller

marshallAttributes(XMLObject, Element) - Method in class org.opensaml.liberty.paos.impl.ResponseMarshaller

marshallMessage(XMLObject) - Static method in class org.springframework.security.saml.util.SAMLUtil

Helper method that marshals the given message.

MESSAGE_ID_ATTRIB_NAME - Static variable in interface org.opensaml.liberty.paos.Request

messageID attribute name.

metadata - Variable in class org.springframework.security.saml.context.SAMLContextProviderImpl

metadata - Variable in class org.springframework.security.saml.SAMLDiscovery

Metadata manager used to look up entity IDs and discovery URLs.

metadata - Variable in class org.springframework.security.saml.SAMLEntryPoint

metadata - Variable in class org.springframework.security.saml.websso.AbstractProfileBase

MetadataCredentialResolver - Class in org.springframework.security.saml.trust

Class customizes resolving from metadata by first using values present in the ExtenedeMetadata of an entity.

MetadataCredentialResolver(MetadataManager, KeyManager) - Constructor for class org.springframework.security.saml.trust.MetadataCredentialResolver

Creates new resolver.

MetadataDisplayFilter - Class in org.springframework.security.saml.metadata

The filter expects calls on configured URL and presents user with SAML2 metadata representing this application deployment.

MetadataDisplayFilter() - Constructor for class org.springframework.security.saml.metadata.MetadataDisplayFilter

MetadataGenerator - Class in org.springframework.security.saml.metadata

The class is responsible for generation of service provider metadata describing the application in the current deployment environment.

MetadataGenerator() - Constructor for class org.springframework.security.saml.metadata.MetadataGenerator

Default constructor.

MetadataGeneratorFilter - Class in org.springframework.security.saml.metadata

The filter expects calls on configured URL and presents user with SAML2 metadata representing this application deployment.

MetadataGeneratorFilter(MetadataGenerator) - Constructor for class org.springframework.security.saml.metadata.MetadataGeneratorFilter

Default constructor.

MetadataManager - Class in org.springframework.security.saml.metadata

Class offers extra services on top of the underlying chaining MetadataProviders.

MetadataManager(List<MetadataProvider>) - Constructor for class org.springframework.security.saml.metadata.MetadataManager

Creates new metadata manager, automatically registers itself for notifications from metadata changes and calls reload upon a change.

MetadataMemoryProvider - Class in org.springframework.security.saml.metadata

Class implements simple metadata provider which retrieves EntityDescriptor from preconfigured object.

MetadataMemoryProvider(EntityDescriptor) - Constructor for class org.springframework.security.saml.metadata.MetadataMemoryProvider

Constructor settings descriptor in parameter as the only entity available from this provider.

metadataResolver - Variable in class org.springframework.security.saml.context.SAMLContextProviderImpl

N

normalizeBaseUrl - Variable in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

Flag indicates that in case generated base url is used (when value is not provided in the MetadataGenerator) it should be normalized.

O

object - Variable in class org.springframework.security.saml.parser.SAMLBase

Parsed instance.

onAuthenticationSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.saml.SAMLRelayStateSuccessHandler

Implementation tries to load RelayString from the SAMLCredential authentication object and in case the state is present uses it as the target URL.

onEvent(MetadataProvider) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver.MetadataProviderObserver

org.opensaml - package org.opensaml

org.opensaml.liberty.binding.decoding - package org.opensaml.liberty.binding.decoding

org.opensaml.liberty.binding.encoding - package org.opensaml.liberty.binding.encoding

org.opensaml.liberty.paos - package org.opensaml.liberty.paos

org.opensaml.liberty.paos.impl - package org.opensaml.liberty.paos.impl

org.opensaml.saml2.binding.decoding - package org.opensaml.saml2.binding.decoding

org.opensaml.ws.transport.http - package org.opensaml.ws.transport.http

org.opensaml.ws.transport.http.httpclient - package org.opensaml.ws.transport.http.httpclient

org.springframework.security.providers - package org.springframework.security.providers

org.springframework.security.saml - package org.springframework.security.saml

org.springframework.security.saml.context - package org.springframework.security.saml.context

org.springframework.security.saml.key - package org.springframework.security.saml.key

org.springframework.security.saml.log - package org.springframework.security.saml.log

org.springframework.security.saml.metadata - package org.springframework.security.saml.metadata

org.springframework.security.saml.parser - package org.springframework.security.saml.parser

org.springframework.security.saml.processor - package org.springframework.security.saml.processor

org.springframework.security.saml.storage - package org.springframework.security.saml.storage

org.springframework.security.saml.trust - package org.springframework.security.saml.trust

org.springframework.security.saml.userdetails - package org.springframework.security.saml.userdetails

org.springframework.security.saml.util - package org.springframework.security.saml.util

org.springframework.security.saml.websso - package org.springframework.security.saml.websso

OutputStreamRequestEntity - Class in org.opensaml.ws.transport.http.httpclient

OutputStreamRequestEntity(ByteArrayOutputStream) - Constructor for class org.opensaml.ws.transport.http.httpclient.OutputStreamRequestEntity

OutputStreamRequestEntity(ByteArrayOutputStream, String) - Constructor for class org.opensaml.ws.transport.http.httpclient.OutputStreamRequestEntity

P

PAOS_HTTP_ACCEPT_HEADER - Static variable in class org.springframework.security.saml.SAMLConstants

PAOS_HTTP_HEADER - Static variable in class org.springframework.security.saml.SAMLConstants

PaosBootstrap - Class in org.opensaml

PaosBootstrap() - Constructor for class org.opensaml.PaosBootstrap

parseProvider(MetadataProvider) - Method in class org.springframework.security.saml.metadata.MetadataManager

Parses the provider and returns set of entityIDs contained inside the provider.

parserPool - Variable in class org.springframework.security.saml.processor.HTTPPostBinding

Pool for message deserializers.

ParserPoolHolder - Class in org.springframework.security.saml.parser

Class is initialized from the Spring context and allows retrieval of the ParserPool for code not managed by Spring.

ParserPoolHolder() - Constructor for class org.springframework.security.saml.parser.ParserPoolHolder

PASSIVE_PARAM - Static variable in class org.springframework.security.saml.SAMLDiscovery

Request parameter indicating whether discovery service can interact with the user agent.

PEER_ENTITY_ID - Static variable in class org.springframework.security.saml.SAMLConstants

Used as attribute inside HttpServletRequest to indicate required peer entity id to the context provider.

PKIXInformationResolver - Class in org.springframework.security.saml.trust

Implementation resolves PKIX information based on extended metadata configuration and provider data.

PKIXInformationResolver(MetadataCredentialResolver, MetadataManager, KeyManager) - Constructor for class org.springframework.security.saml.trust.PKIXInformationResolver

Constructor.

PKIXInformationResolver.MetadataCacheKey - Class in org.springframework.security.saml.trust

A class which serves as the key into the cache of credentials previously resolved.

PKIXInformationResolver.MetadataCacheKey(String, QName, String, UsageType) - Constructor for class org.springframework.security.saml.trust.PKIXInformationResolver.MetadataCacheKey

Constructor.

PKIXInformationResolver.MetadataProviderObserver - Class in org.springframework.security.saml.trust

An observer that clears the credential cache if the underlying metadata changes.

PKIXInformationResolver.MetadataProviderObserver() - Constructor for class org.springframework.security.saml.trust.PKIXInformationResolver.MetadataProviderObserver

pkixResolver - Variable in class org.springframework.security.saml.context.SAMLContextProviderImpl

POLICY_PARAM - Static variable in class org.springframework.security.saml.SAMLDiscovery

Policy to use in order to determine IDP.

populateCredentials(CriteriaSet) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

Method responsible for loading of PKIX information.

populateDecrypter(SAMLMessageContext) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Populates a decrypter based on settings in the extended metadata or using a default credential when no encryption credential is specified in the extended metadata.

populateGenericContext(HttpServletRequest, HttpServletResponse, SAMLMessageContext) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

populateGenericContext(HttpServletRequest, HttpServletResponse, SAMLMessageContext) - Method in class org.springframework.security.saml.context.SAMLContextProviderLB

Method wraps the original request and provides values specified for load-balancer.

populateLocalContext(SAMLMessageContext) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

populateLocalEntity(SAMLMessageContext) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Method populates fields localEntityId, localEntityRole, localEntityMetadata, localEntityRoleMetadata and peerEntityRole.

populateLocalEntityId(SAMLMessageContext, String) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Method tries to load localEntityAlias and localEntityRole from the request path.

populateMetadataAnchors(CriteriaSet, Collection<X509Certificate>, Collection<X509CRL>) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

Method loads credentials satisfying the criteriaSet from the metadata of the related entity.

populatePeerContext(SAMLMessageContext) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Populates additional information about the peer based on the previously loaded peerEntityId.

populatePeerEntityId(SAMLMessageContext) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

First tries to find pre-configured IDP from the request attribute.

populatePeerSSLCredential(SAMLMessageContext) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Tries to load peer SSL certificate from the inbound message transport using attribute "javax.servlet.request.X509Certificate".

populateSecurityPolicy(SAMLMessageContext, SAMLBinding) - Method in class org.springframework.security.saml.processor.SAMLProcessorImpl

Populates security policy to use for the incoming message and sets it in the samlContext as securityPolicyResolver.

populateSSLCredential(SAMLMessageContext) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Populates X509 Credential used to authenticate this machine against peer servers.

populateSSLTrustEngine(SAMLMessageContext) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Based on the settings in the extended metadata either creates a PKIX trust engine with trusted keys specified in the extended metadata as anchors or (by default) an explicit trust engine using data from the metadata or from the values overridden in the ExtendedMetadata.

populateTrustedKeysAnchors(CriteriaSet, Collection<X509Certificate>, Collection<X509CRL>) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

Method add trusted anchors which include all trusted certificates configuration in the ExtendedMetadata.

populateTrustEngine(SAMLMessageContext) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Based on the settings in the extended metadata either creates a PKIX trust engine with trusted keys specified in the extended metadata as anchors or (by default) an explicit trust engine using data from the metadata or from the values overridden in the ExtendedMetadata.

postProcessBeanFactory(ConfigurableListableBeanFactory) - Method in class org.springframework.security.saml.SAMLBootstrap

Automatically called to initialize the whole module.

processAdditionalData(SAMLMessageContext) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

This is a hook method enabling subclasses to process additional data from the SAML exchange, like assertions with different confirmations or additional attributes.

processAttribute(XMLObject, Attr) - Method in class org.opensaml.liberty.paos.impl.RequestUnmarshaller

processAttribute(XMLObject, Attr) - Method in class org.opensaml.liberty.paos.impl.ResponseUnmarshaller

processAuthenticationResponse(SAMLMessageContext) - Method in interface org.springframework.security.saml.websso.WebSSOProfileConsumer

processAuthenticationResponse(SAMLMessageContext) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

The input context object must have set the properties related to the returned Response, which is validated and in case no errors are found the SAMLCredential is returned.

processDiscoveryRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.saml.SAMLDiscovery

Method processes IDP Discovery request, validates it for conformity and either sends a passive response with default IDP (when isPassive mode is requested) or forwards browser to the IDP selection.

processFilter(HttpServletRequest) - Method in class org.springframework.security.saml.metadata.MetadataDisplayFilter

The filter will be used in case the URL of the request contains the FILTER_URL.

processFilter(HttpServletRequest) - Method in class org.springframework.security.saml.SAMLDiscovery

The filter will be used in case the URL of the request contains the FILTER_URL.

processFilter(HttpServletRequest) - Method in class org.springframework.security.saml.SAMLEntryPoint

The filter will be used in case the URL of the request contains the DEFAULT_FILTER_URL.

processFilter(String, HttpServletRequest) - Static method in class org.springframework.security.saml.util.SAMLUtil

Determines whether filter with the given name should be invoked for the current request.

processLogout(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.springframework.security.saml.SAMLLogoutFilter

In case request parameter of name "local" is set to true or there is no authenticated user only local logout will be performed and user will be redirected to the success page.

processLogout(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.springframework.security.saml.SAMLLogoutProcessingFilter

Filter loads SAML message from the request object and processes it.

processLogoutRequest(SAMLMessageContext, SAMLCredential) - Method in interface org.springframework.security.saml.websso.SingleLogoutProfile

Implementer must ensure that the incoming LogoutRequest stored in the context is verified and return true if local logout should be executed.

processLogoutRequest(SAMLMessageContext, SAMLCredential) - Method in class org.springframework.security.saml.websso.SingleLogoutProfileImpl

processLogoutResponse(SAMLMessageContext) - Method in interface org.springframework.security.saml.websso.SingleLogoutProfile

Implementer is responsible for processing of LogoutResponse message present in the context.

processLogoutResponse(SAMLMessageContext) - Method in class org.springframework.security.saml.websso.SingleLogoutProfileImpl

processMetadataDisplay(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.saml.metadata.MetadataDisplayFilter

The filter attempts to generate application metadata (if configured so) and in case the call is made to the expected URL the metadata value is displayed and no further filters are invoked.

processMetadataInitialization(HttpServletRequest) - Method in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

Verifies whether generation is needed and if so the metadata document is created and stored in metadata manager.

processor - Variable in class org.springframework.security.saml.SAMLLogoutProcessingFilter

processor - Variable in class org.springframework.security.saml.SAMLProcessingFilter

processor - Variable in class org.springframework.security.saml.websso.AbstractProfileBase

profile - Variable in class org.springframework.security.saml.SAMLLogoutFilter

providesMessageConfidentiality(MessageContext) - Method in class org.opensaml.liberty.binding.encoding.HTTPPAOS11Encoder

providesMessageIntegrity(MessageContext) - Method in class org.opensaml.liberty.binding.encoding.HTTPPAOS11Encoder

R

REF_TO_MESSAGE_ID_ATTRIB_NAME - Static variable in interface org.opensaml.liberty.paos.Response

messageID attribute name.

refreshMetadata() - Method in class org.springframework.security.saml.metadata.CachingMetadataManager

Guaranteed to be called by the superclass as part of the initialization.

refreshMetadata() - Method in class org.springframework.security.saml.metadata.MetadataManager

Method can be repeatedly called to browse all configured providers and load SP and IDP names which are supported by them.

removeMetadataProvider(MetadataProvider) - Method in class org.springframework.security.saml.metadata.MetadataManager

Removes existing metadata provider from the availability list.

Request - Interface in org.opensaml.liberty.paos

Liberty Alliance PAOS Request header.

RequestBuilder - Class in org.opensaml.liberty.paos.impl

RequestBuilder() - Constructor for class org.opensaml.liberty.paos.impl.RequestBuilder

Constructor.

RequestImpl - Class in org.opensaml.liberty.paos.impl

RequestImpl(String, String, String) - Constructor for class org.opensaml.liberty.paos.impl.RequestImpl

Constructor.

RequestMarshaller - Class in org.opensaml.liberty.paos.impl

Marshaller for instances of Request.

RequestMarshaller() - Constructor for class org.opensaml.liberty.paos.impl.RequestMarshaller

RequestUnmarshaller - Class in org.opensaml.liberty.paos.impl

Unmarshaller for instances of Request.

RequestUnmarshaller() - Constructor for class org.opensaml.liberty.paos.impl.RequestUnmarshaller

requiresAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.saml.SAMLProcessingFilter

requiresLogout(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.saml.SAMLLogoutFilter

The filter will be used in case the URL of the request contains the DEFAULT_FILTER_URL.

requiresLogout(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.saml.SAMLLogoutProcessingFilter

The filter will be used in case the URL of the request contains the DEFAULT_FILTER_URL.

requireValidMetadata() - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

resolve(CriteriaSet) - Method in class org.springframework.security.saml.key.JKSKeyManager

resolve(CriteriaSet) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

resolveArtifact(SAMLMessageContext, String, String) - Method in interface org.springframework.security.saml.websso.ArtifactResolutionProfile

Implementation must resolve artifact with the given ID, locate endpoint usable for it resolution and load referenced SAML message.

resolveArtifact(SAMLMessageContext, String, String) - Method in class org.springframework.security.saml.websso.ArtifactResolutionProfileBase

Creates ArtifactResolve message based in the artifactId, locates ArtifactResolutionService, populates SAMLContext and performs artifact retrieval.

resolveFromSource(CriteriaSet) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

resolveSingle(CriteriaSet) - Method in class org.springframework.security.saml.key.JKSKeyManager

resolveSingle(CriteriaSet) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

Returns first found PKIX information satisfying the condition.

resolveTrustedNames(CriteriaSet) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

Response - Interface in org.opensaml.liberty.paos

Liberty Alliance PAOS Response header.

RESPONSE_CONSUMER_URL_ATTRIB_NAME - Static variable in interface org.opensaml.liberty.paos.Request

responseConsumerURL attribute name.

ResponseBuilder - Class in org.opensaml.liberty.paos.impl

ResponseBuilder() - Constructor for class org.opensaml.liberty.paos.impl.ResponseBuilder

Constructor.

ResponseImpl - Class in org.opensaml.liberty.paos.impl

ResponseImpl(String, String, String) - Constructor for class org.opensaml.liberty.paos.impl.ResponseImpl

Constructor.

ResponseMarshaller - Class in org.opensaml.liberty.paos.impl

Marshaller for instances of Response.

ResponseMarshaller() - Constructor for class org.opensaml.liberty.paos.impl.ResponseMarshaller

ResponseUnmarshaller - Class in org.opensaml.liberty.paos.impl

Unmarshaller for instances of Response.

ResponseUnmarshaller() - Constructor for class org.opensaml.liberty.paos.impl.ResponseUnmarshaller

retrieveFromCache(PKIXInformationResolver.MetadataCacheKey) - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

Retrieves pre-resolved credentials from the cache.

retrieveFromMetadata(String, QName, String, UsageType) - Method in class org.springframework.security.saml.trust.MetadataCredentialResolver

Method tries to resolve all credentials for the given entityID.

retrieveMessage(SAMLMessageContext, String) - Method in interface org.springframework.security.saml.processor.SAMLProcessor

retrieveMessage(SAMLMessageContext) - Method in interface org.springframework.security.saml.processor.SAMLProcessor

retrieveMessage(SAMLMessageContext, SAMLBinding) - Method in class org.springframework.security.saml.processor.SAMLProcessorImpl

Loads incoming SAML message using one of the configured bindings and populates the SAMLMessageContext object with it.

retrieveMessage(SAMLMessageContext, String) - Method in class org.springframework.security.saml.processor.SAMLProcessorImpl

Loads incoming SAML message using one of the configured bindings and populates the SAMLMessageContext object with it.

retrieveMessage(SAMLMessageContext) - Method in class org.springframework.security.saml.processor.SAMLProcessorImpl

Loads incoming SAML message using one of the configured bindings and populates the SAMLMessageContext object with it.

retrieveMessage(String) - Method in class org.springframework.security.saml.storage.HttpSessionStorage

Returns previously stored message with the given ID or null, if there is no message stored.

retrieveMessage(String) - Method in interface org.springframework.security.saml.storage.SAMLMessageStorage

Retrieves message stored under given ID.

RETURN_ID_PARAM - Static variable in class org.springframework.security.saml.SAMLDiscovery

Request parameter specifying which response attribute to use for conveying the determined IDP name.

RETURN_PARAM - Static variable in class org.springframework.security.saml.SAMLDiscovery

Used to store return parameter in the forwarded request object.

RETURN_URL - Static variable in class org.springframework.security.saml.SAMLDiscovery

Used to store return URL in the forwarded request object.

RETURN_URL_PARAM - Static variable in class org.springframework.security.saml.SAMLDiscovery

URL used by the discovery service to send the response.

S

SAML2_ARTIFACT_PROFILE_URI - Static variable in class org.springframework.security.saml.SAMLConstants

Identifier of the Artifact profile.

SAML2_ECP_PROFILE_URI - Static variable in class org.springframework.security.saml.SAMLConstants

Identifier of the ECP profile.

SAML2_HOK_WEBSSO_PROFILE_URI - Static variable in class org.springframework.security.saml.SAMLConstants

Identifier of the WebSSO HoK profile.

SAML2_SLO_PROFILE_URI - Static variable in class org.springframework.security.saml.SAMLConstants

Identifier of the Single Logout profile.

SAML2_WEBSSO_PROFILE_URI - Static variable in class org.springframework.security.saml.SAMLConstants

Identifier of the WebSSO profile.

SAML_METADATA_KEY_INFO_GENERATOR - Static variable in class org.springframework.security.saml.SAMLConstants

Constant identifying special version of the KeyInfoGenerator used to include credentials in generated metadata.

SAMLAuthenticationProvider - Class in org.springframework.security.saml

Authentication provider is capable of verifying validity of a SAMLAuthenticationToken and in case the token is valid to create an authenticated UsernamePasswordAuthenticationToken.

SAMLAuthenticationProvider() - Constructor for class org.springframework.security.saml.SAMLAuthenticationProvider

SAMLAuthenticationToken - Class in org.springframework.security.saml

SAML Token is used to pass SAMLContext object through to the SAML Authentication provider.

SAMLAuthenticationToken(SAMLMessageContext) - Constructor for class org.springframework.security.saml.SAMLAuthenticationToken

Default constructor initializing the context

SAMLBase<T extends org.opensaml.xml.XMLObject,U> - Class in org.springframework.security.saml.parser

Base class for implementing holders for XML objects capable of serialization.

SAMLBase(U) - Constructor for class org.springframework.security.saml.parser.SAMLBase

Default constructor.

SAMLBinding - Interface in org.springframework.security.saml.processor

Implementation describes a single binding usable for parsing of a SAML message.

SAMLBindingImpl - Class in org.springframework.security.saml.processor

Implementation contains a static decoder instance returned in case conditions specified in the subclass are satisfied.

SAMLBindingImpl(MessageDecoder, MessageEncoder) - Constructor for class org.springframework.security.saml.processor.SAMLBindingImpl

SAMLBootstrap - Class in org.springframework.security.saml

Initialization for SAML library.

SAMLBootstrap() - Constructor for class org.springframework.security.saml.SAMLBootstrap

SAMLCollection<T extends org.opensaml.xml.XMLObject> - Class in org.springframework.security.saml.parser

SAMLCollection is a wrapper around a collection od XMLObject instances of OpenSAML library As some collections of XMLObjects are stored inside the HttpSession (which could be potentially sent to another cluster member), we need mechanism to enable serialization of these instances.

SAMLCollection(List<T>) - Constructor for class org.springframework.security.saml.parser.SAMLCollection

Default constructor.

SAMLConstants - Class in org.springframework.security.saml

Constant values for SAML module.

SAMLConstants() - Constructor for class org.springframework.security.saml.SAMLConstants

SAMLContextProvider - Interface in org.springframework.security.saml.context

Implementation is supposed to provide SAMLContext by populating all data about the local entity related to an Request.

SAMLContextProviderImpl - Class in org.springframework.security.saml.context

Class is responsible for parsing HttpRequest/Response and determining which local entity (IDP/SP) is responsible for it's handling.

SAMLContextProviderImpl() - Constructor for class org.springframework.security.saml.context.SAMLContextProviderImpl

SAMLContextProviderLB - Class in org.springframework.security.saml.context

Context provider which overrides request attributes with values of the load-balancer or reverse-proxy in front of the local application.

SAMLContextProviderLB() - Constructor for class org.springframework.security.saml.context.SAMLContextProviderLB

SAMLCredential - Class in org.springframework.security.saml

Object is a storage for entities parsed from SAML2 response during it's authentication.

SAMLCredential(NameID, Assertion, String, String) - Constructor for class org.springframework.security.saml.SAMLCredential

Created unmodifiable SAML credential object.

SAMLCredential(NameID, Assertion, String, List<Attribute>, String) - Constructor for class org.springframework.security.saml.SAMLCredential

Created unmodifiable SAML credential object.

SAMLCredential(NameID, Assertion, String, String, List<Attribute>, String) - Constructor for class org.springframework.security.saml.SAMLCredential

Created unmodifiable SAML credential object.

SAMLCredential(NameID, Assertion, String, String, List<Attribute>, String, Serializable) - Constructor for class org.springframework.security.saml.SAMLCredential

Created unmodifiable SAML credential object which contains additional customer specified data.

SAMLDefaultLogger - Class in org.springframework.security.saml.log

Default Logger implementation sending message logs into standard Log4J logger.

SAMLDefaultLogger() - Constructor for class org.springframework.security.saml.log.SAMLDefaultLogger

samlDiscovery - Variable in class org.springframework.security.saml.metadata.MetadataGenerator

SAMLDiscovery - Class in org.springframework.security.saml

Filter implements Identity Provider Discovery Service as defined in initializes IDP Discovery Profile as defined in http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-idp-discovery.pdf.

SAMLDiscovery() - Constructor for class org.springframework.security.saml.SAMLDiscovery

samlDiscovery - Variable in class org.springframework.security.saml.SAMLEntryPoint

SAMLEmptyLogger - Class in org.springframework.security.saml.log

Logger implementation which ignores all values.

SAMLEmptyLogger() - Constructor for class org.springframework.security.saml.log.SAMLEmptyLogger

samlEntryPoint - Variable in class org.springframework.security.saml.metadata.MetadataGenerator

samlEntryPoint - Variable in class org.springframework.security.saml.SAMLDiscovery

Entry point dependency for loading of correct URL.

SAMLEntryPoint - Class in org.springframework.security.saml

Class initializes SAML WebSSO Profile, IDP Discovery or ECP Profile from the SP side.

SAMLEntryPoint() - Constructor for class org.springframework.security.saml.SAMLEntryPoint

SAMLLogger - Interface in org.springframework.security.saml.log

Implementations are supposed to log significant SAML operations.

samlLogger - Variable in class org.springframework.security.saml.SAMLAuthenticationProvider

samlLogger - Variable in class org.springframework.security.saml.SAMLEntryPoint

samlLogger - Variable in class org.springframework.security.saml.SAMLLogoutFilter

samlLogger - Variable in class org.springframework.security.saml.SAMLLogoutProcessingFilter

SAMLLogoutFilter - Class in org.springframework.security.saml

Logout filter leveraging SAML 2.0 Single Logout profile.

SAMLLogoutFilter(String, LogoutHandler[], LogoutHandler[]) - Constructor for class org.springframework.security.saml.SAMLLogoutFilter

Default constructor.

SAMLLogoutFilter(LogoutSuccessHandler, LogoutHandler[], LogoutHandler[]) - Constructor for class org.springframework.security.saml.SAMLLogoutFilter

Default constructor.

samlLogoutProcessingFilter - Variable in class org.springframework.security.saml.metadata.MetadataGenerator

SAMLLogoutProcessingFilter - Class in org.springframework.security.saml

Filter processes arriving SAML Single Logout messages by delegating to the LogoutProfile.

SAMLLogoutProcessingFilter(String, LogoutHandler...) - Constructor for class org.springframework.security.saml.SAMLLogoutProcessingFilter

Constructor defines URL to redirect to after successful logout and handlers.

SAMLLogoutProcessingFilter(LogoutSuccessHandler, LogoutHandler...) - Constructor for class org.springframework.security.saml.SAMLLogoutProcessingFilter

Constructor uses custom implementation for determining URL to redirect after successful logout.

SAMLMessageContext - Class in org.springframework.security.saml.context

Message context with Spring Extension SAML module specific values.

SAMLMessageContext() - Constructor for class org.springframework.security.saml.context.SAMLMessageContext

SAMLMessageStorage - Interface in org.springframework.security.saml.storage

Implementations serve as data stores for sent/received SAML messages.

SAMLMessageStorageFactory - Interface in org.springframework.security.saml.storage

Factories implementing this interface provide services for storage and retrieval of SAML messages for e.g.

SAMLObject<T extends org.opensaml.xml.XMLObject> - Class in org.springframework.security.saml.parser

SAMLObject is a wrapper around XMLObject instances of OpenSAML library As some XMLObjects are stored inside the HttpSession (which could be potentially sent to another cluster members), we need mechanism to enable serialization of these instances.

SAMLObject(T) - Constructor for class org.springframework.security.saml.parser.SAMLObject

Default constructor.

SAMLProcessingFilter - Class in org.springframework.security.saml

Filter processes arriving SAML messages by delegating to the WebSSOProfile.

SAMLProcessingFilter() - Constructor for class org.springframework.security.saml.SAMLProcessingFilter

SAMLProcessingFilter(String) - Constructor for class org.springframework.security.saml.SAMLProcessingFilter

SAMLProcessor - Interface in org.springframework.security.saml.processor

Implementation is responsible for sending and receiving SAML messages using any of the supported binding.

SAMLProcessorImpl - Class in org.springframework.security.saml.processor

Processor is capable of parsing SAML message from HttpServletRequest and populate the SAMLMessageContext for further validations.

SAMLProcessorImpl(SAMLBinding) - Constructor for class org.springframework.security.saml.processor.SAMLProcessorImpl

Creates a processor supporting a single binding.

SAMLProcessorImpl(Collection<SAMLBinding>) - Constructor for class org.springframework.security.saml.processor.SAMLProcessorImpl

Creates a processor supporting multiple bindings.

SAMLRelayStateSuccessHandler - Class in org.springframework.security.saml

Implementation of a success handler which interprets meaning of the RelayState inside SAMLCredential as an URL to redirect user to.

SAMLRelayStateSuccessHandler() - Constructor for class org.springframework.security.saml.SAMLRelayStateSuccessHandler

SAMLUserDetailsService - Interface in org.springframework.security.saml.userdetails

The SAMLUserDetailsService interface is similar to UserDetailsService with difference that SAML data is used in order obtain information about the user.

SAMLUtil - Class in org.springframework.security.saml.util

Utility class for SAML entities

SAMLUtil() - Constructor for class org.springframework.security.saml.util.SAMLUtil

samlWebSSOFilter - Variable in class org.springframework.security.saml.metadata.MetadataGenerator

Filters for loading of paths.

samlWebSSOHoKFilter - Variable in class org.springframework.security.saml.metadata.MetadataGenerator

SAMLWebSSOHoKProcessingFilter - Class in org.springframework.security.saml

Filter processes messages sent from IDP as part of the WebSSO Holder-of-Key profile.

SAMLWebSSOHoKProcessingFilter() - Constructor for class org.springframework.security.saml.SAMLWebSSOHoKProcessingFilter

Default constructor.

sendAuthenticationRequest(SAMLMessageContext, WebSSOProfileOptions) - Method in interface org.springframework.security.saml.websso.WebSSOProfile

sendAuthenticationRequest(SAMLMessageContext, WebSSOProfileOptions) - Method in class org.springframework.security.saml.websso.WebSSOProfileECPImpl

sendAuthenticationRequest(SAMLMessageContext, WebSSOProfileOptions) - Method in class org.springframework.security.saml.websso.WebSSOProfileImpl

Initializes SSO by creating AuthnRequest assertion and sending it to the IDP using the default binding.

sendIDPSelection(HttpServletRequest, HttpServletResponse, String, String) - Method in class org.springframework.security.saml.SAMLDiscovery

Forward the request to a page which renders IDP selection page for the user.

sendLogoutRequest(SAMLMessageContext, SAMLCredential) - Method in interface org.springframework.security.saml.websso.SingleLogoutProfile

Call to the method must ensure that LogoutRequest SAML message is sent to the IDP requesting global logout of all known sessions.

sendLogoutRequest(SAMLMessageContext, SAMLCredential) - Method in class org.springframework.security.saml.websso.SingleLogoutProfileImpl

sendLogoutResponse(Status, SAMLMessageContext) - Method in class org.springframework.security.saml.websso.SingleLogoutProfileImpl

sendMessage(SAMLMessageContext, boolean, String) - Method in interface org.springframework.security.saml.processor.SAMLProcessor

sendMessage(SAMLMessageContext, boolean) - Method in interface org.springframework.security.saml.processor.SAMLProcessor

sendMessage(SAMLMessageContext, boolean) - Method in class org.springframework.security.saml.processor.SAMLProcessorImpl

Method sends SAML message contained in the context to the specified peerEntityEnpoint.

sendMessage(SAMLMessageContext, boolean, String) - Method in class org.springframework.security.saml.processor.SAMLProcessorImpl

sendMessage(SAMLMessageContext, boolean, SAMLBinding) - Method in class org.springframework.security.saml.processor.SAMLProcessorImpl

Sends SAML message using the given binding.

sendMessage(SAMLMessageContext, boolean) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

Method calls the processor and sends the message contained in the context.

sendMessage(SAMLMessageContext, boolean, String) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

Method calls the processor and sends the message contained in the context.

sendPassiveResponse(HttpServletRequest, HttpServletResponse, String, String, String) - Method in class org.springframework.security.saml.SAMLDiscovery

Creates a URL to be used for returning of the selected IDP and sends a redirect.

sendRedirect(String) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

serializedObject - Variable in class org.springframework.security.saml.parser.SAMLBase

Version of the value stored within object transferable during serialization.

SERVICE_ATTRIB_NAME - Static variable in interface org.opensaml.liberty.paos.Request

service attribute name.

setAlias(String) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Alias is used to identify a destination entity as part of the URL.

setAllowCreate(Boolean) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

Flag indicating whether IDP can create new user based on the current authentication request.

setAllowedIDPs(Set<String>) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

List of IDPs which are allowed to process the created AuthnRequest.

setArtifactMap(SAMLArtifactMap) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

setAssertionConsumerIndex(int) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

Generated assertion consumer service with the index equaling set value will be marked as default.

setAssertionConsumerIndex(Integer) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

When set determines assertionConsumerService and binding to which should IDP send response.

setAttribute(String, Object) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

setAuthenticated(boolean) - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

setAuthenticated(boolean) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

setAuthenticated(boolean) - Method in class org.springframework.security.saml.SAMLAuthenticationToken

This object can never be authenticated, call with true result in exception.

setAuthnContextComparison(AuthnContextComparisonTypeEnumeration) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

Sets comparison to use for WebSSO requests.

setAuthnContexts(Collection<String>) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

setBinding(String) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

Sets binding to be used for for sending SAML message to IDP.

setBindingsHoKSSO(Collection<String>) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setBindingsSLO(Collection<String>) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setBindingsSSO(Collection<String>) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setCharacterEncoding(String) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

setConfidential(boolean) - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

setConfidential(boolean) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

setConsumer(WebSSOProfileConsumer) - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

Profile for consumption of processed messages, must be set.

setContextPath(String) - Method in class org.springframework.security.saml.context.SAMLContextProviderLB

Context path of the LB, must be starting with slash, e.g.

setContextProvider(SAMLContextProvider) - Method in class org.springframework.security.saml.metadata.MetadataDisplayFilter

setContextProvider(SAMLContextProvider) - Method in class org.springframework.security.saml.SAMLDiscovery

Sets entity responsible for populating local entity context data.

setContextProvider(SAMLContextProvider) - Method in class org.springframework.security.saml.SAMLEntryPoint

Sets entity responsible for populating local entity context data.

setContextProvider(SAMLContextProvider) - Method in class org.springframework.security.saml.SAMLLogoutFilter

Sets entity responsible for populating local entity context data.

setContextProvider(SAMLContextProvider) - Method in class org.springframework.security.saml.SAMLLogoutProcessingFilter

Sets entity responsible for populating local entity context data.

setContextProvider(SAMLContextProvider) - Method in class org.springframework.security.saml.SAMLProcessingFilter

Sets entity responsible for populating local entity context data.

setCustomDiscoveryResponseURL(String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

Custom value of IDP Discovery response URL to be included in the SP metadata as extension and in extended metadata.

setCustomDiscoveryURL(String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

Custom value of IDP Discovery request URL to be included in the extended metadata.

setDefaultExtendedMetadata(ExtendedMetadata) - Method in class org.springframework.security.saml.metadata.MetadataManager

Sets default extended metadata to be used in case no version specific is available.

setDefaultIDP(String) - Method in class org.springframework.security.saml.metadata.MetadataManager

Sets name of IDP to be used as default.

setDefaultProfileOptions(WebSSOProfileOptions) - Method in class org.springframework.security.saml.SAMLEntryPoint

Sets object which determines default values to be used as basis for construction during getProfileOptions call.

setDefaultTargetUrl(String) - Method in class org.springframework.security.saml.SAMLProcessingFilter

Deprecated.

setDisplayFilter(MetadataDisplayFilter) - Method in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

setEcpEnabled(boolean) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

setEncryptionKey(String) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Sets encryption key to be used for interaction with the current entity.

setEncryptionKey(String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setEntityAlias(String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setEntityBaseURL(String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setEntityId(String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setExtendedMetadata(ExtendedMetadata) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

Default value for generation of extended metadata.

setFilterProcessesUrl(String) - Method in class org.springframework.security.saml.metadata.MetadataDisplayFilter

Custom filter URL which overrides the default.

setFilterProcessesUrl(String) - Method in class org.springframework.security.saml.SAMLDiscovery

Custom filter URL which overrides the default.

setFilterProcessesUrl(String) - Method in class org.springframework.security.saml.SAMLEntryPoint

Custom filter URL which overrides the default.

setForceAuthN(Boolean) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

setForceMetadataRevocationCheck(boolean) - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

Determines whether check for certificate revocation should always be done as part of the PKIX validation.

setForcePrincipalAsString(boolean) - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

setHeader(String, String) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

setHokConsumer(WebSSOProfileConsumer) - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

Profile for consumption of processed messages using the Holder-of-Key profile, must be set.

setHostedSPName(String) - Method in class org.springframework.security.saml.metadata.MetadataManager

Sets nameID of SP hosted on this machine.

setIdpDiscoveryEnabled(boolean) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

setIdpDiscoveryResponseURL(String) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

When set our local IDP Discovery implementation will send response back to Service Provider on this address.

setIdpDiscoveryURL(String) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

URL to invoke while initializing IDP Discovery protocol for the local SP.

setIdpSelectionPath(String) - Method in class org.springframework.security.saml.SAMLDiscovery

Sets path where request dispatcher will send user for IDP selection.

setInboundSAMLBinding(String) - Method in class org.springframework.security.saml.context.SAMLMessageContext

Binding used to deliver the current message.

setIncludeDiscovery(boolean) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

When true system will also automatically generate discoveryRequest and discoveryResponse addresses or use values provided as customDiscoveryUrl and customDiscoveryResponseUrl and store them to the extended metadata.

setIncludeDiscoveryExtension(boolean) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

When true discovery profile extension metadata pointing to the default SAMLEntryPoint will be generated and stored in the generated metadata document.

setIncludeScoping(Boolean) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

setIncludeServerPortInRequestURL(boolean) - Method in class org.springframework.security.saml.context.SAMLContextProviderLB

When true serverPort will be used in construction of LB requestURL.

setIntegrityProtected(boolean) - Method in class org.opensaml.ws.transport.http.HttpClientInTransport

setIntegrityProtected(boolean) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

setKeyManager(KeyManager) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

setKeyManager(KeyManager) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setKeyManager(KeyManager) - Method in class org.springframework.security.saml.metadata.MetadataManager

setLocal(boolean) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

When set to true entity is treated as locally deployed and will be able to accepte messages on endpoints determined by the selected alias.

setLocalDecrypter(Decrypter) - Method in class org.springframework.security.saml.context.SAMLMessageContext

setLocalEntityEndpoint(Endpoint) - Method in class org.springframework.security.saml.context.SAMLMessageContext

setLocalExtendedMetadata(ExtendedMetadata) - Method in class org.springframework.security.saml.context.SAMLMessageContext

setLocalSigningCredential(Credential) - Method in class org.springframework.security.saml.context.SAMLMessageContext

setLocalSSLCredential(X509Credential) - Method in class org.springframework.security.saml.context.SAMLMessageContext

setLocalSSLTrustEngine(TrustEngine<X509Credential>) - Method in class org.springframework.security.saml.context.SAMLMessageContext

setLocalTrustEngine(SignatureTrustEngine) - Method in class org.springframework.security.saml.context.SAMLMessageContext

setLogErrors(boolean) - Method in class org.springframework.security.saml.log.SAMLDefaultLogger

setLogMessages(boolean) - Method in class org.springframework.security.saml.log.SAMLDefaultLogger

setLogoutProfile(SingleLogoutProfile) - Method in class org.springframework.security.saml.SAMLLogoutProcessingFilter

Profile for consumption of processed messages, must be set.

setManager(MetadataManager) - Method in class org.springframework.security.saml.metadata.MetadataDisplayFilter

setManager(MetadataManager) - Method in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

setMaxAssertionTime(int) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

Customizes max assertion time between assertion creation and it's usability.

setMaxAuthenticationAge(int) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

Sets maximum time between users authentication and processing of an authentication statement.

setMessageID(String) - Method in class org.opensaml.liberty.paos.impl.RequestImpl

Set the messageID attribute value.

setMessageID(String) - Method in interface org.opensaml.liberty.paos.Request

Set the messageID attribute value.

setMessageStorage(SAMLMessageStorage) - Method in class org.springframework.security.saml.context.SAMLMessageContext

Sets message storage for this context.

setMetadata(MetadataManager) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

setMetadata(MetadataManager) - Method in class org.springframework.security.saml.SAMLDiscovery

Metadata manager, cannot be null, must be set.

setMetadata(MetadataManager) - Method in class org.springframework.security.saml.SAMLEntryPoint

Metadata manager, cannot be null, must be set.

setMetadata(MetadataManager) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

setMetadataFilter(MetadataFilter) - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

setMetadataKeyInfoGenerator() - Method in class org.springframework.security.saml.SAMLBootstrap

Method registers extension specific KeyInfoGenerator which emits .

setMetadataRequireSignature(boolean) - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

When set to true metadata from this provider should only be accepted when correctly signed and verified.

setMetadataTrustCheck(boolean) - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

setMetadataTrustedKeys(Set<String>) - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

Set of aliases of keys present in the KeyManager which can be used to verify whether signature on metadata entity is trusted.

setNameID(Collection<String>) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setNameID(String) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

When set determines which NameIDPolicy will be requested as part of the AuthnRequest sent to the IDP.

setNormalizeBaseUrl(boolean) - Method in class org.springframework.security.saml.metadata.MetadataGeneratorFilter

When true flag indicates that in case generated base url is used (when value is not provided in the MetadataGenerator) it should be normalized.

setParserPool(ParserPool) - Method in class org.springframework.security.saml.parser.ParserPoolHolder

Initializes the static parserPool property and makes it available for getPool calls.

setPassive(Boolean) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

Sets whether the IdP should refrain from interacting with the user during the authentication process.

setPeerExtendedMetadata(ExtendedMetadata) - Method in class org.springframework.security.saml.context.SAMLMessageContext

setPeerSSLCredential(X509Credential) - Method in class org.springframework.security.saml.context.SAMLMessageContext

setPeerUserSelected(boolean) - Method in class org.springframework.security.saml.context.SAMLMessageContext

setProcessor(SAMLProcessor) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

setProfile(SingleLogoutProfile) - Method in class org.springframework.security.saml.SAMLLogoutFilter

Profile for consumption of processed messages, cannot be null, must be set.

setProviderName(String) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

Sets human readable name of the local entity used in ECP profile.

setProviders(List<MetadataProvider>) - Method in class org.springframework.security.saml.metadata.MetadataManager

setProxyCount(Integer) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

Determines value to be used in the proxyCount attribute of the scope in the AuthnRequest.

setRefreshCheckInterval(long) - Method in class org.springframework.security.saml.metadata.MetadataManager

Interval in milliseconds used for re-verification of metadata and their reload.

setRefreshRequired(boolean) - Method in class org.springframework.security.saml.metadata.MetadataManager

Indicates that the metadata should be reloaded as the provider configuration has changed.

setRefToMessageID(String) - Method in class org.opensaml.liberty.paos.impl.ResponseImpl

Set the refToMessageID attribute value.

setRefToMessageID(String) - Method in interface org.opensaml.liberty.paos.Response

Set the refToMessageID attribute value.

setRelayState(String) - Method in class org.springframework.security.saml.websso.WebSSOProfileOptions

Relay state sent to the IDP as part of the authentication request.

setRequestSigned(boolean) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setRequireArtifactResolveSigned(boolean) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

If true received artifactResolve messages will require a signature, sent artifactResolve will be signed.

setRequireLogoutRequestSigned(boolean) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

If true logoutRequests received will require a signature, sent logoutRequests will be signed.

setRequireLogoutResponseSigned(boolean) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

If true logoutResponses received will require a signature, sent logoutResponses will be signed.

setRequireValidMetadata(boolean) - Method in class org.springframework.security.saml.metadata.AbstractMetadataDelegate

setResponseConsumerURL(String) - Method in class org.opensaml.liberty.paos.impl.RequestImpl

Set the responseConsumerURL attribute value.

setResponseConsumerURL(String) - Method in interface org.opensaml.liberty.paos.Request

Set the responseConsumerURL attribute value.

setResponseSkew(int) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

Sets maximum difference between local time and time of the assertion creation which still allows message to be processed.

setSamlDiscovery(SAMLDiscovery) - Method in class org.springframework.security.saml.SAMLEntryPoint

Dependency for loading of discovery URL

setSamlEntryPoint(SAMLEntryPoint) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setSamlEntryPoint(SAMLEntryPoint) - Method in class org.springframework.security.saml.SAMLDiscovery

Dependency for loading of entry point URL

setSamlLogger(SAMLLogger) - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

Logger for SAML events, cannot be null, must be set.

setSamlLogger(SAMLLogger) - Method in class org.springframework.security.saml.SAMLEntryPoint

Logger for SAML events, cannot be null, must be set.

setSamlLogger(SAMLLogger) - Method in class org.springframework.security.saml.SAMLLogoutFilter

Logger for SAML events, cannot be null, must be set.

setSamlLogger(SAMLLogger) - Method in class org.springframework.security.saml.SAMLLogoutProcessingFilter

Logger for SAML events, must be set.

setSamlLogoutProcessingFilter(SAMLLogoutProcessingFilter) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setSAMLProcessor(SAMLProcessor) - Method in class org.springframework.security.saml.SAMLLogoutProcessingFilter

Object capable of parse SAML messages from requests, must be set.

setSAMLProcessor(SAMLProcessor) - Method in class org.springframework.security.saml.SAMLProcessingFilter

Object capable of parse SAML messages from requests, must be set.

setSamlWebSSOFilter(SAMLProcessingFilter) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setSamlWebSSOHoKFilter(SAMLWebSSOHoKProcessingFilter) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setScheme(String) - Method in class org.springframework.security.saml.context.SAMLContextProviderLB

Scheme of the LB server - either http or https

setSecurityProfile(String) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Sets profile used for verification of signatures and encryption.

setServerName(String) - Method in class org.springframework.security.saml.context.SAMLContextProviderLB

Server name of the LB, e.g.

setServerPort(int) - Method in class org.springframework.security.saml.context.SAMLContextProviderLB

Port of the server, in case value is <= 0 port will not be included in the requestURL and port from the original request will be used for getServerPort calls.

setService(String) - Method in class org.opensaml.liberty.paos.impl.RequestImpl

Set the service attribute value.

setService(String) - Method in interface org.opensaml.liberty.paos.Request

Set the service attribute value.

setSigningKey(String) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Sets signing key to be used for interaction with the current entity.

setSigningKey(String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setSignMetadata(boolean) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setSOAP11Actor(String) - Method in class org.opensaml.liberty.paos.impl.RequestImpl

setSOAP11Actor(String) - Method in class org.opensaml.liberty.paos.impl.ResponseImpl

setSOAP11MustUnderstand(Boolean) - Method in class org.opensaml.liberty.paos.impl.RequestImpl

setSOAP11MustUnderstand(XSBooleanValue) - Method in class org.opensaml.liberty.paos.impl.RequestImpl

setSOAP11MustUnderstand(Boolean) - Method in class org.opensaml.liberty.paos.impl.ResponseImpl

setSOAP11MustUnderstand(XSBooleanValue) - Method in class org.opensaml.liberty.paos.impl.ResponseImpl

setSslSecurityProfile(String) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Sets profile used for verification of SSL/TLS connections.

setStatusCode(int) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

setStorageFactory(SAMLMessageStorageFactory) - Method in class org.springframework.security.saml.context.SAMLContextProviderImpl

Implementation of the SAML message storage factory providing custom mechanism for storage of SAML messages such as http session, cookies or no storage at all.

setTlsKey(String) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

For local entities denotes alias of the key used to authenticate this instance against peer servers using SSL/TLS connections.

setTlsKey(String) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setTrustedKeys(Set<String>) - Method in class org.springframework.security.saml.metadata.ExtendedMetadata

Set of keys used as anchors for PKIX verification of messages coming from this entity.

setTrustFiltersInitialized(boolean) - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

setUserDetails(SAMLUserDetailsService) - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

The user details can be optionally set and is automatically called while user SAML assertion is validated.

setVersion(HTTPTransport.HTTP_VERSION) - Method in class org.opensaml.ws.transport.http.HttpClientOutTransport

setWantAssertionSigned(boolean) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

setWebSSOprofile(WebSSOProfile) - Method in class org.springframework.security.saml.SAMLEntryPoint

Profile for consumption of processed messages, cannot be null, must be set.

setWebSSOprofileECP(WebSSOProfile) - Method in class org.springframework.security.saml.SAMLEntryPoint

setWebSSOprofileHoK(WebSSOProfile) - Method in class org.springframework.security.saml.SAMLEntryPoint

signSAMLObject(SAMLObject, Credential) - Method in class org.springframework.security.saml.metadata.MetadataGenerator

Signs the given SAML message if it a SignableSAMLObject and this encoder has signing credentials.

SingleLogoutProfile - Interface in org.springframework.security.saml.websso

Implementing class must contain SAML Single Logout functionality according to SAML 2.0 Profiles specification.

SingleLogoutProfileImpl - Class in org.springframework.security.saml.websso

Implementation of the SAML 2.0 Single Logout profile.

SingleLogoutProfileImpl() - Constructor for class org.springframework.security.saml.websso.SingleLogoutProfileImpl

SLF4JLogChute - Class in org.springframework.security.saml.util

Implementation of a simple SLF4J system that will either latch onto an existing category, or just do a simple rolling file log.

SLF4JLogChute() - Constructor for class org.springframework.security.saml.util.SLF4JLogChute

storageFactory - Variable in class org.springframework.security.saml.context.SAMLContextProviderImpl

storeMessage(String, XMLObject) - Method in class org.springframework.security.saml.storage.HttpSessionStorage

Stores a request message into the repository.

storeMessage(String, XMLObject) - Method in interface org.springframework.security.saml.storage.SAMLMessageStorage

Stores given message in the data store.

SUCCESS - Static variable in class org.springframework.security.saml.SAMLConstants

supports(InTransport) - Method in class org.springframework.security.saml.processor.HTTPArtifactBinding

supports(OutTransport) - Method in class org.springframework.security.saml.processor.HTTPArtifactBinding

supports(InTransport) - Method in class org.springframework.security.saml.processor.HTTPPAOS11Binding

supports(InTransport) - Method in class org.springframework.security.saml.processor.HTTPPostBinding

supports(OutTransport) - Method in class org.springframework.security.saml.processor.HTTPPostBinding

supports(InTransport) - Method in class org.springframework.security.saml.processor.HTTPRedirectDeflateBinding

supports(OutTransport) - Method in class org.springframework.security.saml.processor.HTTPRedirectDeflateBinding

supports(InTransport) - Method in class org.springframework.security.saml.processor.HTTPSOAP11Binding

supports(OutTransport) - Method in class org.springframework.security.saml.processor.HTTPSOAP11Binding

supports(InTransport) - Method in interface org.springframework.security.saml.processor.SAMLBinding

Checks whether current binding can be used to extract SAML message from the request.

supports(OutTransport) - Method in interface org.springframework.security.saml.processor.SAMLBinding

Checks whether current binding can be used to send a message using given transport.

supports(Class) - Method in class org.springframework.security.saml.SAMLAuthenticationProvider

SAMLAuthenticationToken is the only supported token.

supportsTrustedNameResolution() - Method in class org.springframework.security.saml.trust.PKIXInformationResolver

T

toString() - Method in class org.springframework.security.saml.metadata.ExtendedMetadataDelegate

toString() - Method in class org.springframework.security.saml.trust.PKIXInformationResolver.MetadataCacheKey

trustEngine - Variable in class org.springframework.security.saml.trust.X509TrustManager

TYPE_LOCAL_NAME - Static variable in interface org.opensaml.liberty.paos.Request

Local name of the XSI type.

TYPE_LOCAL_NAME - Static variable in interface org.opensaml.liberty.paos.Response

Local name of the XSI type.

TYPE_NAME - Static variable in interface org.opensaml.liberty.paos.Request

QName of the XSI type.

TYPE_NAME - Static variable in interface org.opensaml.liberty.paos.Response

QName of the XSI type.

U

unmarshallMessage(Reader) - Method in class org.springframework.security.saml.parser.SAMLBase

Helper method that deserializes and unmarshalls the message from the given stream.

UntrustedCertificateException - Exception in org.springframework.security.saml.trust

Exception indicates that verification failed due to the provided chain not being trusted.

UntrustedCertificateException(String, X509Certificate[]) - Constructor for exception org.springframework.security.saml.trust.UntrustedCertificateException

userDetails - Variable in class org.springframework.security.saml.SAMLAuthenticationProvider

V

validate(byte[], byte[], String, CriteriaSet, Credential) - Method in class org.springframework.security.saml.trust.AllowAllSignatureTrustEngine

validate(Signature, CriteriaSet) - Method in class org.springframework.security.saml.trust.AllowAllSignatureTrustEngine

validate(PKIXValidationInformation, X509Credential) - Method in class org.springframework.security.saml.trust.CertPathPKIXTrustEvaluator

VelocityFactory - Class in org.springframework.security.saml.util

Factory class for creating VelocityEngine instance.

VelocityFactory() - Constructor for class org.springframework.security.saml.util.VelocityFactory

verifyAlias(String, String) - Static method in class org.springframework.security.saml.util.SAMLUtil

Verifies that the alias is valid.

verifyAssertion(Assertion, AuthnRequest, SAMLMessageContext) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

verifyAssertionConditions(Conditions, SAMLMessageContext, boolean) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

verifyAssertionSignature(Signature, SAMLMessageContext) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

Verifies signature of the assertion.

verifyAuthenticationStatement(AuthnStatement, RequestedAuthnContext, SAMLMessageContext) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

Verifies that authentication statement is valid.

verifyAuthnContext(RequestedAuthnContext, AuthnContext, SAMLMessageContext) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

Implementation is expected to verify that the requested authentication context corresponds with the received value.

verifyConditions(SAMLMessageContext, List<Condition>) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

Verifies conditions of the assertion which were are not understood.

verifyContext(SAMLMessageContext) - Method in class org.springframework.security.saml.processor.SAMLProcessorImpl

Verifies that context contains all the required information related to the local entity.

verifyEndpoint(Endpoint, String) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

Verifies that the destination URL intended in the message matches with the endpoint address.

verifyIssuer(Issuer, SAMLMessageContext) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

verifySignature(Signature, String, SignatureTrustEngine) - Method in class org.springframework.security.saml.websso.AbstractProfileBase

verifySubject(Subject, AuthnRequest, SAMLMessageContext) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerHoKImpl

Verifies validity of Subject element as per http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml2-holder-of-key-cs-02.pdf and http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-holder-of-key-browser-sso-cs-02.pdf.

verifySubject(Subject, AuthnRequest, SAMLMessageContext) - Method in class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

Verifies validity of Subject element, only bearer confirmation is validated.

W

WEBSSO_HOK_METADATA_ATT_NAME - Static variable in class org.springframework.security.saml.SAMLConstants

Qualified name of the attribute used to convey binding information in the Holder of Key metadata endpoint.

WEBSSO_HOK_URL - Static variable in class org.springframework.security.saml.SAMLWebSSOHoKProcessingFilter

URL for Web SSO HoK profile responses or unsolicited requests

webSSOprofile - Variable in class org.springframework.security.saml.SAMLEntryPoint

WebSSOProfile - Interface in org.springframework.security.saml.websso

WebSSOProfileConsumer - Interface in org.springframework.security.saml.websso

WebSSOProfileConsumerHoKImpl - Class in org.springframework.security.saml.websso

Class implements processing of the SAML Holder-of-Key Browser SSO profile as per http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-holder-of-key-browser-sso-cs-02.pdf.

WebSSOProfileConsumerHoKImpl() - Constructor for class org.springframework.security.saml.websso.WebSSOProfileConsumerHoKImpl

WebSSOProfileConsumerImpl - Class in org.springframework.security.saml.websso

Class is able to process Response objects returned from the IDP after SP initialized SSO or unsolicited response from IDP.

WebSSOProfileConsumerImpl() - Constructor for class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

WebSSOProfileConsumerImpl(SAMLProcessor, MetadataManager) - Constructor for class org.springframework.security.saml.websso.WebSSOProfileConsumerImpl

webSSOprofileECP - Variable in class org.springframework.security.saml.SAMLEntryPoint

WebSSOProfileECPImpl - Class in org.springframework.security.saml.websso

Class implementing the SAML ECP Profile and offers capabilities for SP initialized SSO and process Response coming from IDP or IDP initialized SSO.

WebSSOProfileECPImpl() - Constructor for class org.springframework.security.saml.websso.WebSSOProfileECPImpl

webSSOprofileHoK - Variable in class org.springframework.security.saml.SAMLEntryPoint

WebSSOProfileHoKImpl - Class in org.springframework.security.saml.websso

Class implements WebSSO profile and offers capabilities for SP initialized SSO and process Response coming from IDP or IDP initialized SSO.

WebSSOProfileHoKImpl() - Constructor for class org.springframework.security.saml.websso.WebSSOProfileHoKImpl

WebSSOProfileImpl - Class in org.springframework.security.saml.websso

Class implements WebSSO profile and offers capabilities for SP initialized SSO and process Response coming from IDP or IDP initialized SSO.

WebSSOProfileImpl() - Constructor for class org.springframework.security.saml.websso.WebSSOProfileImpl

WebSSOProfileImpl(SAMLProcessor, MetadataManager) - Constructor for class org.springframework.security.saml.websso.WebSSOProfileImpl

WebSSOProfileOptions - Class in org.springframework.security.saml.websso

JavaBean contains properties allowing customization of SAML request message sent to the IDP.

WebSSOProfileOptions() - Constructor for class org.springframework.security.saml.websso.WebSSOProfileOptions

WebSSOProfileOptions(String) - Constructor for class org.springframework.security.saml.websso.WebSSOProfileOptions

writeRequest(OutputStream) - Method in class org.opensaml.ws.transport.http.httpclient.OutputStreamRequestEntity

X

X509KeyManager - Class in org.springframework.security.saml.trust

Class can be used to initialize new SSL/TLS connections with client/server authentication.

X509KeyManager(X509Credential) - Constructor for class org.springframework.security.saml.trust.X509KeyManager

Credential used for authentication of the server/client.

X509TrustManager - Class in org.springframework.security.saml.trust

Trust engine for verification of X509 certificates.

X509TrustManager(CriteriaSet, TrustEngine<X509Credential>) - Constructor for class org.springframework.security.saml.trust.X509TrustManager

Creates an X509 trust engine which delegates trust verification to the supplied trust engine.

A B C D E F G H I J K L M N O P R S T U V W X