Package com.sun.identity.saml2.plugins
Interface IDPAuthnContextMapper
- All Superinterfaces:
SAMLPlugin
The interface
IDPAuthnContextMapper creates an
IDPAuthnContextInfo based on the RequestAuthnContext from
the AuthnRequest sent by a Service Provider and the AuthnContext
configuration at the IDP entity config.
The implementation of this class will be used by the IDP to find out
the authentication mechaism and set the AuthnContext in the Assertion.-
Field Summary
Fields inherited from interface org.forgerock.openam.saml2.plugins.SAMLPlugin
HOSTED_ENTITY_ID, REALM -
Method Summary
Modifier and TypeMethodDescriptiongetAuthnContextFromAuthLevel(String authLevel, String realm, String idpEntityID) ReturnsAuthnContextthat matches the authenticated level.getIDPAuthnContextInfo(AuthnRequest authnRequest, String idpEntityID, String realm) Deprecated.default IDPAuthnContextInfogetIDPAuthnContextInfo(AuthnRequest authnRequest, String idpEntityID, String realm, String spEntityID) Returns anIDPAuthnContextInfoobject.booleanisAuthnContextMatching(List requestedACClassRefs, String acClassRef, String comparison, String realm, String idpEntityID) Returns true if the specified AuthnContextClassRef matches a list of requested AuthnContextClassRef.
-
Method Details
-
getIDPAuthnContextInfo
@Deprecated IDPAuthnContextInfo getIDPAuthnContextInfo(AuthnRequest authnRequest, String idpEntityID, String realm) throws com.sun.identity.saml2.common.SAML2Exception Deprecated.Returns anIDPAuthnContextInfoobject.- Parameters:
authnRequest- theAuthnRequestfrom the Service ProvideridpEntityID- the Entity ID of the Identity Providerrealm- the realm to which the Identity Provider belongs- Returns:
- an
IDPAuthnContextInfoobject - Throws:
com.sun.identity.saml2.common.SAML2Exception- if an error occurs.
-
getIDPAuthnContextInfo
default IDPAuthnContextInfo getIDPAuthnContextInfo(AuthnRequest authnRequest, String idpEntityID, String realm, String spEntityID) throws com.sun.identity.saml2.common.SAML2Exception Returns anIDPAuthnContextInfoobject.- Parameters:
authnRequest- theAuthnRequestfrom the Service ProvideridpEntityID- the Entity ID of the Identity Providerrealm- the realm to which the Identity Provider belongsspEntityID- the Entity ID of the Service Provider- Returns:
- an
IDPAuthnContextInfoobject - Throws:
com.sun.identity.saml2.common.SAML2Exception- if an error occurs.
-
isAuthnContextMatching
boolean isAuthnContextMatching(List requestedACClassRefs, String acClassRef, String comparison, String realm, String idpEntityID) Returns true if the specified AuthnContextClassRef matches a list of requested AuthnContextClassRef.- Parameters:
requestedACClassRefs- a list of requested AuthnContextClassRef'sacClassRef- AuthnContextClassRefcomparison- the type of comparisonrealm- the realm to which the Identity Provider belongsidpEntityID- the Entity ID of the Identity Provider- Returns:
- true if the specified AuthnContextClassRef matches a list of requested AuthnContextClassRef
-
getAuthnContextFromAuthLevel
AuthnContext getAuthnContextFromAuthLevel(String authLevel, String realm, String idpEntityID) throws com.sun.identity.saml2.common.SAML2Exception ReturnsAuthnContextthat matches the authenticated level.- Parameters:
authLevel- user authenticated levelrealm- the realm to which the Identity Provider belongsidpEntityID- the Entity ID of the Identity Provider- Returns:
AuthnContextobject that matches authenticated level.- Throws:
com.sun.identity.saml2.common.SAML2Exception- if an error occurs.
-
getIDPAuthnContextInfo(AuthnRequest, String, String, String)instead