org.aselect.server.request.handler.saml11
Class SAML11RequestHandler
java.lang.Object
org.aselect.server.request.handler.AbstractRequestHandler
org.aselect.server.request.handler.saml11.SAML11RequestHandler
- All Implemented Interfaces:
- IRequestHandler
public class SAML11RequestHandler
- extends AbstractRequestHandler
SAML 1.1 SSO request handler.
Description:
Request handler for the following SAML 1.1 SSO Requests.
Concurrency issues:
-
- Author:
- Alfa & Ariss
Method Summary |
void |
destroy()
Destroys all WebSSO profiles available in the _htWebSSOProfiles
Hashtable and destroys the Assertion Session Manager singleton. |
void |
init(javax.servlet.ServletConfig oServletConfig,
java.lang.Object oConfig)
Initializes the SAML 1.1 Request Handler. |
RequestState |
process(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response)
Processes a SAML Web SSO request. |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
SAML11RequestHandler
public SAML11RequestHandler()
init
public void init(javax.servlet.ServletConfig oServletConfig,
java.lang.Object oConfig)
throws ASelectException
- Initializes the SAML 1.1 Request Handler.
Description:
Reads the following configuration:
<handler>
<clientcommunicator>[clientcommunicator]</clientcommunicator>
<assertion expire='[expire]'>
<attribute namespace='[namespace]'>
<applications>
<application id='[id]' profile='[profile]'/>
...
</applications>
<websso default='[default]'>
...
</websso>
<storagemanager id='assertions'>
...
</storagemanager>
</handler>
- clientcommunicator - Client communicator used for
communicating to the A-Select Server for the verify_credentials request
(raw/soap11/soap12)
- expire - The assertion expire time that must be used when
creating new assertions
- namespace - The namespace that must be used when creating an
attribute statement
- id - The A-Select app_id
- profile - The profile that must be used for the specified
app_id
- default - The default web sso profile that will be used if an
application isn't mapped to a profile
- storage manager - The storage manager configuration is used by the A-Select Storage
Manager from the A-Select System Package
- Specified by:
init
in interface IRequestHandler
- Overrides:
init
in class AbstractRequestHandler
- Parameters:
oServletConfig
- Servlet Config of the Parent servletoConfig
- Object containing the RequestHandler configuration
- Throws:
ASelectException
- if initalization fails- See Also:
AbstractRequestHandler.init(javax.servlet.ServletConfig, java.lang.Object)
process
public RequestState process(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response)
throws ASelectException
- Processes a SAML Web SSO request.
- Reads an A-Select
authenticate
response
- Verifies if the following paramers are available in the response:
- Sends an A-Select
verify_credentials
API call request to
the A-Select Server
- Reads the SAML session (with id: saml11_[rid]) created by the
Shibboleth Authentication Profile
- Processes the request with the correct websso profile handler for the
specified application
- Parameters:
request
- HttpServletRequest containing the requestresponse
- HttpServletResponse containing the response
- Returns:
- RequestState containing the request handling state
- Throws:
ASelectException
- if the request couldn't be processed- See Also:
IRequestHandler.process(javax.servlet.http.HttpServletRequest, javax.servlet.http.HttpServletResponse)
destroy
public void destroy()
- Destroys all WebSSO profiles available in the
_htWebSSOProfiles
Hashtable and destroys the Assertion Session Manager singleton.
- See Also:
IRequestHandler.destroy()
Copyright © 2008 SURFnet BV. All Rights Reserved.