Index

A B C D E F G H I L M N O P R S T U V W 
All Classes and Interfaces|All Packages|Constant Field Values|Serialized Form

A

aaguid - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
A unique identifier that conveys the authenticator's make and model, or the passkey's provider identity.
aaguid - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
AbstractDuoAuditExtractor<T> - Class in net.shibboleth.idp.plugin.authn.duo.audit
An abstract audit extractor function to extract values directly from the Duo context.
AbstractDuoAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.AbstractDuoAuditExtractor
 
AbstractDuoAuthenticationAction - Class in net.shibboleth.idp.plugin.authn.duo
A base class for Duo 2FA authentication related actions.
AbstractDuoAuthenticationAction() - Constructor for class net.shibboleth.idp.plugin.authn.duo.AbstractDuoAuthenticationAction
Constructor.
AbstractDuoAuthenticator - Class in net.shibboleth.idp.plugin.authn.duo.impl
A base class for authentication actions which call a Duo AuthAPI endpont.
AbstractDuoAuthenticator() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.AbstractDuoAuthenticator
 
AbstractDuoOIDCClient - Class in net.shibboleth.idp.plugin.authn.duo
Abstract base class for DuoOIDCClient implementations.
AbstractDuoOIDCClient() - Constructor for class net.shibboleth.idp.plugin.authn.duo.AbstractDuoOIDCClient
Constructor.
AbstractDuoTokenClaimsAuditExtractor<T> - Class in net.shibboleth.idp.plugin.authn.duo.audit
An extension of the AbstractDuoAuditExtractor that allows extraction of claims inside the Duo authentication token.
AbstractDuoTokenClaimsAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.AbstractDuoTokenClaimsAuditExtractor
 
accept(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoCleanupHook
accept(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims.DuoOIDAuthenticationContextCleanupHook
accessControlService - Variable in class net.shibboleth.idp.plugin.authn.duo.admin.impl.AdminAccessPredicate
Access control service.
accessControlService - Variable in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
Access control service.
accessToken - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
The access token issued by the authorization server.
accessToken - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
The access token.
active - Variable in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Flags whether the component is active or should no-op.
additionalProperties - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
Any additional properties not explicitly captured by this class are added to this map.
additionalProperties - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
additionalProperties - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Any additional properties not explicitly captured by this class are added to this map.
additionalProperties - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
AdminAccessPredicate - Class in net.shibboleth.idp.plugin.authn.duo.admin.impl
Wrapper predicate for implementing access control check for admin flow.
AdminAccessPredicate() - Constructor for class net.shibboleth.idp.plugin.authn.duo.admin.impl.AdminAccessPredicate
 
adminDuoIntegrationLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Lookup strategy for Duo integration for Admin API use.
AdminFlowDescriptor - Class in net.shibboleth.idp.plugin.authn.duo.admin.impl
Flow descriptor for Duo admin flow.
AdminFlowDescriptor(String) - Constructor for class net.shibboleth.idp.plugin.authn.duo.admin.impl.AdminFlowDescriptor
Constructor.
adminPolicyNameLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.admin.impl.AdminFlowDescriptor
Lookup strategy for access control policy to apply for determining admin vs.
allowedFactors - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
A set of 'allowed' factors.
allowedFactors - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultPasswordlessCondition
Allowed factors that qualify.
allowedOrigins - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
A set of 'allowed' origins that can be used as the scheme, host, and port portion of the redirectURI.
apiHost - Variable in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
API host.
apiHost - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
API host.
apiHost - Variable in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
API host.
applicationKey - Variable in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Application key.
apply(HealthCheckResponse) - Method in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor.DefaultHealthCheckResponseConverter
 
apply(Token, DuoOIDCIntegration) - Method in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor.DefaultTokenResponseConverter
 
apply(HttpServletRequest, DynamicDuoOIDCIntegration) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultRedirectURICreationStrategy
 
apply(DuoOIDCIntegration) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry.CreateNewClientMappingFunction
 
apply(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.AbstractDuoAuditExtractor
 
apply(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.AbstractDuoTokenClaimsAuditExtractor
apply(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.AttemptedAuthenticationFlowIdAuditExtractor
 
apply(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.FixedStringAuditExtractor
 
apply(ProfileRequestContext, JWTClaimsSet) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAudienceClaimLookupStrategy
 
apply(ProfileRequestContext, JWTClaimsSet) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoIssuerClaimLookupStrategy
apply(ProfileRequestContext, JWTClaimsSet) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoNonceClaimLookupStrategy
 
apply(ProfileRequestContext, JWTClaimsSet) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoUsernameClaimLookupStrategy
 
ATTEMPTED_AUTHN_FLOW_ID - Static variable in class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
The id of the currently attempted flow.
AttemptedAuthenticationFlowIdAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
An audit extractor to pull out the attempted authentication flow ID from the current authentication context.
AttemptedAuthenticationFlowIdAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.AttemptedAuthenticationFlowIdAuditExtractor
 
AuditFields - Class in net.shibboleth.idp.plugin.authn.duo.audit
Constants to use for Duo audit logging fields stored in an AuditContext.
AuditFields() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
Constructor.
authAuthenticator - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Implementation of Duo AuthApi /auth endpoint.
authCode - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
The authorization code return from the Duo authorization request.
authenticate(DuoAuthenticationContext, DuoIntegration) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthAuthenticator
Perform an authentication action via the Duo AuthApi /auth endpoint.
authenticate(DuoAuthenticationContext, DuoIntegration) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoPreauthAuthenticator
Perform an authentication action via the Duo AuthAPI /preauth endpoint.
authorizationCallback(HttpServletRequest, HttpServletResponse) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoOIDCAuthnController
The redirect_uri endpoint for accepting an authorization code and resuming the flow execution.
authorizationRequest(HttpServletRequest, HttpServletResponse) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoOIDCAuthnController
Start the Duo ODIC authorization code flow.
AUTHORIZE_PATH_SEGMENT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The final part of the IdP URL path which is called to begin authorization.
authorizeEndpoint - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
The URL path to the authorization endpoint.
authorizeEndpoint - Variable in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
The URL path to the authorization endpoint.
authToken - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
The JWT token received from Duo as a result of 2FA.
autoAuthenticationSupported - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Whether "auto" should be the default for factor and device.

B

backoffFactor - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Rate limiting backoff multiplier.
backupEligible - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
If true, this credential can be used from multiple devices.
backupEligible - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
backupStatus - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
If true, this credential has been backed up and can be used from multiple devices.
backupStatus - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
BasicDuoIntegration - Class in net.shibboleth.idp.authn.duo
Wrapper for use of Duo.
BasicDuoIntegration() - Constructor for class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Constructor.
blankState(DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoResponseState
Set the request and response states to null so they can't be reused.
build() - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
 
build() - Method in interface net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.IBuildStage
Build the health check response.
build() - Method in class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken.Builder
 
build() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
build() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
build() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
 
build() - Method in interface net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.IBuildStage
Do the build.
buildAuthenticationResult(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
buildAuthenticationResult(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
builder() - Static method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
Creates builder to build DuoHealthCheck.
builder() - Static method in class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken
Get the builder for this class.
builder() - Static method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get the builder for this class.
builder() - Static method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Get the builder for this class.
builder() - Static method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
Creates builder to build TokenResponse.
Builder() - Constructor for class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
Constructor.
Builder() - Constructor for class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken.Builder
Constructor.
Builder() - Constructor for class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
Constructor.
Builder() - Constructor for class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Constructor.
Builder() - Constructor for class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
Constructor.
buildOrigin(URI) - Static method in class net.shibboleth.idp.plugin.authn.duo.URISupport
Builds the 'origin' (see RFC 6454) from given URI.
buildRequest(ProfileRequestContext, String, Map<String, String>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Build the HTTP request from the given path and parameters.
buildURIIgnoreDefaultPorts(String, String, int, String) - Static method in class net.shibboleth.idp.plugin.authn.duo.URISupport
Build a URI from the given parameters.
bypassView - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoPasswordlessContext
Whether to bypass the passwordless view directly into Duo.

C

caCerts - Variable in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientFactory
List of CA Certificate pins.
CALLBACK_PATH_SEGMENT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The final part of the IdP URL path which is called after authorization.
callbackServletPath - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultRedirectURICreationStrategy
The path, excluding the context and servlet paths, to the Duo callback handler.
canonRequest(ClassicRequestBuilder, String, int) - Static method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoSupport
The signature requires that the request parameters being in a particular order as specified in the API.
capabilities - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoDevice
a List of Duo device capabilities.
claimSet - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenSignature
The parsed claimset.
claimsSet - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
The parsed claimset.
claimsSet - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims
The parsed claimset.
claimsValidator - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims
The JWT claims validator used to verify the claimsset.
cleanupHook - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
A cleanup hook to execute after processing.
cleanupHook - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims
A cleanup hook to execute after either a successful or unsuccessful claims validation.
clearCookie() - Method in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Unset the cookie.
ClearPasswordlessCookie - Class in net.shibboleth.idp.plugin.authn.duo.impl
A profile action to clear the passwordless guard cookie.
ClearPasswordlessCookie() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.ClearPasswordlessCookie
 
client - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
The Duo OIDC client to use for the lifetime of this authentication request.
client - Variable in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor
The wrapped Duo native client.
CLIENT_ASSERTION_TYPE - Static variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
The only supported client assertion type.
CLIENT_ID - Static variable in class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
The Duo client ID.
clientAddress - Variable in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Client address.
clientAddressTrusted - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Whether to trust, and extract, the client address.
clientFactory - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry
Factory to produce Duo clients.
clientId - Variable in class net.shibboleth.idp.plugin.authn.duo.AbstractDuoOIDCClient
The client instance UUID for identification.
clientId - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Integration key.
clientId - Variable in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Integration key.
clientRegistry - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry
Registry of Duo client to Duo integration.
clientRegistry - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
The registry for locating the DuoClient for the established integration.
clientRegistryMappingFunction - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry
Function for creating a DuoClient from a DuoIntegration.
clone() - Method in class net.shibboleth.idp.authn.duo.DuoFactorPrincipal
clone() - Method in class net.shibboleth.idp.authn.duo.DuoPrincipal
code - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoFailureResponse
the failure code.
code - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
The code.
code - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
The error response code.
CODE_PARAMETER - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoOIDCAuthnController
The name of the Http parameter that stores the authorisation code.
computeAndStoreRedirectURIIfSupported(DuoOIDCIntegration, HttpServletRequest, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
For DynamicDuoOIDCIntegrations, apply the redirect_uri creation strategy to compute a redirect_uri to use.
contextToPrincipalMappingStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Hook to map context information to principal collections.
contextToPrincipalMappingStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
Hook to map context information (often Duo factors in the Duo token) to principal collections.
cookieManager - Variable in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
Cookie manager to use.
cookieManager - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ClearPasswordlessCookie
Cookie manager to use.
cookieManager - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.CreatePasswordlessCookie
Cookie manager to use.
cookieManager - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulatePasswordlessContext
Optional cookie manager to use.
cookieManager - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Cookie manager to use.
cookieManager - Variable in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Optional cookie manager to use.
cookieName - Variable in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Passwordless cookie name.
createAuthUrl(String, String, String, String) - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCClient
Constructs an authorization redirection URL string with the query parameters required to initiate a Duo 2FA request.
createAuthUrl(String, String, String, String) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
 
createAuthUrl(String, String, String, String) - Method in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor
Constructs an authorization redirection URL string with the query parameters required to initiate a Duo 2FA request.
created - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
created - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
The user's creation date as a UNIX timestamp .
createInstance(DuoOIDCIntegration) - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCClientFactory
Create an DuoOIDCClient instance from the supplied integration.
createInstance(DuoOIDCIntegration) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
 
createInstance(DuoOIDCIntegration) - Method in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientFactory
 
createJWS(String, String, String) - Static method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientSupport
Create a signed JWT using the audience and client ID supplied.
createJWSRequestObject(String, String, String, String, String) - Static method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientSupport
Create a signed JWT Request object using the given parameters suitable for the Duo token endpoint.
CreateNewClientMappingFunction() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry.CreateNewClientMappingFunction
 
CreatePasswordlessCookie - Class in net.shibboleth.idp.plugin.authn.duo.impl
Finalization action that creates the passwordless guard cookkie based on the canonical principal name after the flow completes.
CreatePasswordlessCookie() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.CreatePasswordlessCookie
 
createQueryString(List<NameValuePair>) - Static method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoSupport
Builds a string representation of the query string with the parameter names is alphabetical order.
credentialName - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
credentialName - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Free-form label for the WebAuthn credential.
currentUsername - Variable in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
Currently authenticated user.

D

dataSealer - Variable in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Optional data sealer to use.
dateAdded - Variable in class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken.Builder
 
dateAdded - Variable in class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken
The date the U2F token was registered in Duo.
dateAdded - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
dateAdded - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
The date the WebAuthn credential was registered in Duo.
dateLastUsed - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
dateLastUsed - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
The date the WebAuthn credential was last used.
DEFAULT_BACKOFF_FACTOR - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Default rate limiting backoff multiplier.
DEFAULT_INITIAL_BACKOFF_MS - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Default initial backoff delay.
DEFAULT_ISSUER_PATH - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoIssuerClaimLookupStrategy
The default issuer path, specific to the v1 Duo flow.
DEFAULT_MAX_BACKOFF_MS - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Default maximum backoff.
DEFAULT_METRIC_NAME - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Default prefix for metrics.
DEFAULT_METRIC_NAME - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
Default prefix for metrics.
DefaultDuoAdminClient - Class in net.shibboleth.idp.plugin.authn.duo.impl
The default implementation of the DuoAdminClient for looking up information from the DuoAdmin API.
DefaultDuoAdminClient() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Constructor.
DefaultDuoCleanupHook - Class in net.shibboleth.idp.plugin.authn.duo
A default cleanup hook for the DuoOIDC flow that handles both standard and passwordless scenarios, with configuration flexibility for the deployer.
DefaultDuoCleanupHook() - Constructor for class net.shibboleth.idp.plugin.authn.duo.DefaultDuoCleanupHook
Constructor.
DefaultDuoOIDCClientRegistry - Class in net.shibboleth.idp.plugin.authn.duo.impl
The default Duo Client registry for mapping a DuoOIDCIntegration to either a new or existing DuoOIDCClient (assumed thread-safe) singleton instance.
DefaultDuoOIDCClientRegistry() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry
Constructor.
DefaultDuoOIDCClientRegistry.CreateNewClientMappingFunction - Class in net.shibboleth.idp.plugin.authn.duo.impl
A function for creating a new Duo client from the configured client factory for the given Duo integration.
DefaultDuoOIDCIntegration - Class in net.shibboleth.idp.plugin.authn.duo
Data wrapper for use with Duo OIDC integrations.
DefaultDuoOIDCIntegration() - Constructor for class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Constructor.
DefaultHealthCheckResponseConverter() - Constructor for class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor.DefaultHealthCheckResponseConverter
 
DefaultPasswordlessCondition - Class in net.shibboleth.idp.plugin.authn.duo
A Predicate which determines whether a user/device should be allowed, on subsequent requests, to leverage passwordless authentication.
DefaultPasswordlessCondition() - Constructor for class net.shibboleth.idp.plugin.authn.duo.DefaultPasswordlessCondition
Constructor.
DefaultRedirectURICreationStrategy - Class in net.shibboleth.idp.plugin.authn.duo.impl
Constructive, pure, function that returns a redirect_uri from one of (ordered): A pre-registered redirect_uri on the Duo integration, DynamicDuoOIDCIntegration.getRegisteredRedirectURI().
DefaultRedirectURICreationStrategy(String) - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DefaultRedirectURICreationStrategy
Constructor.
DefaultTokenResponseConverter() - Constructor for class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor.DefaultTokenResponseConverter
Constructor.
detectUsernameMismatch - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Whether to detect mismatches between cookie and current username.
device - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoDevice
the Duo device identifier.
DEVICE_ID - Static variable in class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
Deprecated, for removal: This API element is subject to removal in a future version.
use AuthnAuditFields#DUO_DEVICE_ID
DEVICE_NAME - Static variable in class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
Duo Device friendly name (auth_device:name).
deviceHeaderName - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Header name for device.
deviceKey - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Device key used if available.
devices - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoPreauthResponse
the List of DuoDevices registered.
doAPIRequest(ClassicHttpRequest, TypeReference<T>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.AbstractDuoAuthenticator
Performs a call to the Duo AuthAPI.
doAPIRequest(ClassicHttpRequest, TypeReference<T>, int) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Performs a call to the Duo AdminAPI.
doExecute(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
doExecute(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ClearPasswordlessCookie
doExecute(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.CreatePasswordlessCookie
doExecute(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulatePasswordlessContext
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.AbstractDuoAuthenticationAction
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
doExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateExternalAuthenticationContext
doExecute(ProfileRequestContext, AuthenticationContext, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.AbstractDuoAuthenticationAction
Performs this Duo authentication action using the supplied Duo context.
doExecute(ProfileRequestContext, AuthenticationContext, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExchangeCodeForDuoToken
 
doExecute(ProfileRequestContext, AuthenticationContext, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.HealthCheckDuoOIDCAuthAPI
 
doExecute(ProfileRequestContext, AuthenticationContext, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoResponseState
Performs this Duo authentication action using the supplied Duo context.
doExecute(ProfileRequestContext, AuthenticationContext, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims
Performs this Duo authentication action using the supplied Duo context.
doExecute(ProfileRequestContext, AuthenticationContext, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenSignature
Performs this Duo authentication action using the supplied Duo context.
doInitialize() - Method in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.AbstractDuoAuthenticator
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ClearPasswordlessCookie
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.CreatePasswordlessCookie
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry
 
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulatePasswordlessContext
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
doInitialize() - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
doLookup(JWTClaimsSet, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.AbstractDuoTokenClaimsAuditExtractor
Implemented to perform the actual lookup.
doLookup(JWTClaimsSet, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoAuthnDeviceIdAuditExtractor
 
doLookup(JWTClaimsSet, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoAuthnDeviceNameAuditExtractor
 
doLookup(JWTClaimsSet, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoFactorAuditExtractor
 
doLookup(JWTClaimsSet, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoReasonAuditExtractor
 
doLookup(JWTClaimsSet, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoTransactionIdAuditExtractor
 
doLookup(DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.AbstractDuoAuditExtractor
Implemented to perform the actual lookup.
doLookup(DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.AbstractDuoTokenClaimsAuditExtractor
Implemented to perform the actual lookup.
doLookup(DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoClientIdAuditExtractor
 
doLookup(DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoRedirectUriAuditExtractor
 
doLookup(DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoRequestStateAuditExtractor
 
doLookup(DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoResponseStateAuditExtractor
 
doLookup(DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoUsernameAuditExtractor
 
doPasswordless(ProfileRequestContext, AuthenticationContext, DuoOIDCAuthenticationContext, DuoPasswordlessContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Perform standard context creation and lookups.
doPostExecute(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
doPreExecute(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
doPreExecute(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulatePasswordlessContext
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.AbstractDuoAuthenticationAction
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
doPreExecute(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateExternalAuthenticationContext
doPreExecute(ProfileRequestContext, AuthenticationContext, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.AbstractDuoAuthenticationAction
Performs this authentication action's pre-execute step.
doPreExecute(ProfileRequestContext, AuthenticationContext, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims
Performs this authentication action's pre-execute step.
doPreExecute(ProfileRequestContext, AuthenticationContext, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenSignature
 
doStandard(ProfileRequestContext, DuoOIDCAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Perform standard context creation and lookups.
DUO_AUTH_CONTEXT_JSON_OBJECT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The name of the JSON authentication context object.
DUO_AUTH_DEVICE_JSON_OBJECT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The name of the JSON authentication device object.
DUO_AUTH_DEVICE_KEY_JSON_OBJECT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The name of the JSON authenticating device key object.
DUO_AUTH_DEVICE_NAME_JSON_OBJECT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The name of the JSON authenticating device friendly name object.
DUO_AUTH_FACTOR_JSON_OBJECT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The name of the JSON authentication factor object.
DUO_AUTH_RESULT_ALLOW - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI auth "allow" result value.
DUO_AUTH_RESULT_ALLOW - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
Duo AuthAPI auth "allow" result value.
DUO_AUTH_RESULT_DENY - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI auth "deny" result value.
DUO_AUTH_RESULT_DENY - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
Duo AuthAPI auth "deny" result value.
DUO_AUTH_RESULT_JSON_OBJECT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The name of the JSON authentication result object.
DUO_AUTH_RESULT_STATUS_JSON_OBJECT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The name of the JSON result status property.
DUO_AUTH_RESULT_STATUS_MSG_JSON_OBJECT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The name of the JSON result status message property.
DUO_AUTH_STATUS_BYPASS - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI auth "bypass" result value.
DUO_AUTH_STATUS_BYPASS - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
Duo AuthAPI auth "bypass" result value.
DUO_AUTH_STATUS_LOCKED - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI auth "locked_out" result value.
DUO_AUTH_STATUS_LOCKED - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
Duo AuthAPI auth "locked_out" result value.
DUO_DEVICE - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI parameter name.
DUO_DEVICE_AUTO - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI device "auto" value.
DUO_DEVICE_HEADER_NAME - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo flow default header name for device ID.
DUO_FACTOR - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI parameter name.
DUO_FACTOR_AUTO - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI factor "auto" value.
DUO_FACTOR_HEADER_NAME - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo flow default header name for factor.
DUO_FACTOR_PASSCODE - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI factor "passcode" value.
DUO_FACTOR_PHONE - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI factor "enum" value.
DUO_FACTOR_PUSH - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI factor "push" value.
DUO_FACTOR_SMS - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI factor "sms" value.
DUO_IPADDR - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI parameter name.
DUO_PASSCODE - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI parameter name.
DUO_PASSCODE_HEADER_NAME - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo flow default header name for passcode.
DUO_PREAUTH_RESULT_ALLOW - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI preauth "allow" result value.
DUO_PREAUTH_RESULT_AUTH - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI preauth "auth" result value.
DUO_PREAUTH_RESULT_DENY - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI preauth "deny" result value.
DUO_PREAUTH_RESULT_ENROLL - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI preauth "enroll" result value.
DUO_PUSHINFO - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI parameter name.
DUO_REASON_JSON_OBJECT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The name of the JSON reason object.
DUO_RESPONSE_STATUS_FAIL - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
Duo response failure status.
DUO_RESPONSE_STATUS_OK - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
Duo response success status.
DUO_TXID_JSON_OBJECT - Static variable in class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
The name of the JSON transaction id object.
DUO_USER - Static variable in class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
Duo username used for 2FA.
DUO_USERNAME - Static variable in class net.shibboleth.idp.authn.duo.DuoAuthAPI
Duo AuthAPI parameter name.
DuoAdminClient - Interface in net.shibboleth.idp.plugin.authn.duo
A client that supports retrieval of information from the Duo Admin API.
DuoAdminListMapResponseWrapper - Class in net.shibboleth.idp.plugin.authn.duo
Handle the specific case of a List of Maps response from the Duo AdminAPI.
DuoAdminListMapResponseWrapper() - Constructor for class net.shibboleth.idp.plugin.authn.duo.DuoAdminListMapResponseWrapper
 
DuoAdminResponseWrapper<T> - Class in net.shibboleth.idp.plugin.authn.duo
Handle a generic object returned from the response that will come from the Duo AdminAPI.
DuoAdminResponseWrapper() - Constructor for class net.shibboleth.idp.plugin.authn.duo.DuoAdminResponseWrapper
 
DuoAudienceClaimLookupStrategy - Class in net.shibboleth.idp.plugin.authn.duo.impl
Looks up the audience from the clientID in the DuoOIDCIntegration inside the context.
DuoAudienceClaimLookupStrategy() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoAudienceClaimLookupStrategy
 
DuoAuthAPI - Class in net.shibboleth.idp.authn.duo
Constants defined in the Duo AuthAPI.
DuoAuthAPI() - Constructor for class net.shibboleth.idp.authn.duo.DuoAuthAPI
Constructor.
DuoAuthAPIResponse - Class in net.shibboleth.idp.plugin.authn.duo.impl
Describes the results of a Duo AuthAPI call, intended for use with a jackson ObjectMapper.
DuoAuthAPIResponse() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthAPIResponse
 
DuoAuthAuthenticator - Class in net.shibboleth.idp.plugin.authn.duo.impl
Implementation of the the Duo AuthApi /v2/auth endpoint.
DuoAuthAuthenticator() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthAuthenticator
Constructor.
DuoAuthenticationContext - Class in net.shibboleth.idp.authn.duo.context
Context that carries Duo factor and device or passcode to be used in validation.
DuoAuthenticationContext() - Constructor for class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Constructor.
DuoAuthnDeviceIdAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
An audit extractor to extract the Duo 2FA device ID (Key) from the auth_device inside the Duo token response.
DuoAuthnDeviceIdAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoAuthnDeviceIdAuditExtractor
 
DuoAuthnDeviceNameAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
An audit extractor to extract the Duo 2FA device name from the auth_device in the Duo token response.
DuoAuthnDeviceNameAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoAuthnDeviceNameAuditExtractor
 
DuoAuthResponse - Class in net.shibboleth.idp.plugin.authn.duo.impl
Describes the results of an authentication attempt via the Duo AuthAPI, intended for use with a jackson ObjectMapper.
DuoAuthResponse() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthResponse
 
DuoClientException - Exception in net.shibboleth.idp.plugin.authn.duo
An exception to signal an error condition during execution of a Duo client.
DuoClientException() - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoClientException
Constructor.
DuoClientException(String) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoClientException
Constructor.
DuoClientException(String, Throwable) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoClientException
Constructor.
DuoClientException(Throwable) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoClientException
Constructor.
DuoClientIdAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
An audit extractor to extract the Duo Client ID from the Duo integration.
DuoClientIdAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoClientIdAuditExtractor
 
DuoClientInitializationException - Exception in net.shibboleth.idp.plugin.authn.duo
Indicates an error during registry processing.
DuoClientInitializationException() - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoClientInitializationException
Constructor.
DuoClientInitializationException(String) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoClientInitializationException
Constructor.
DuoClientInitializationException(String, Throwable) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoClientInitializationException
Constructor.
DuoClientInitializationException(Throwable) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoClientInitializationException
Constructor.
duoContext - Variable in class net.shibboleth.idp.plugin.authn.duo.AbstractDuoAuthenticationAction
The Duo authentication Context.
duoContext - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
DuoApi context for tokens.
duoContext - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
Duo authentiction context.
duoContextLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.AbstractDuoAuthenticationAction
Lookup strategy to locate the Duo authentication context.
duoContextLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoOIDCAuthnController
Lookup strategy to locate the Duo authentication context.
duoDevice - Variable in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Device ID.
DuoDevice - Class in net.shibboleth.idp.plugin.authn.duo.impl
Represents a Duo device, intended for use with a jackson ObjectMapper.
DuoDevice() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoDevice
Constructor.
DuoException - Exception in net.shibboleth.idp.plugin.authn.duo
An exception to signal a general Duo error.
DuoException() - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoException
Constructor.
DuoException(String) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoException
Constructor.
DuoException(String, Throwable) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoException
Constructor.
DuoException(Throwable) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoException
Constructor.
duoFactor - Variable in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Factor.
DuoFactorAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
An audit extractor to extract the Duo authentication factor from the Duo token response.
DuoFactorAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoFactorAuditExtractor
 
DuoFactorPrincipal - Class in net.shibboleth.idp.authn.duo
Principal based on the Duo authentication factor used for 2FA.
DuoFactorPrincipal(String) - Constructor for class net.shibboleth.idp.authn.duo.DuoFactorPrincipal
Constructor.
DuoFailureResponse - Class in net.shibboleth.idp.plugin.authn.duo.impl
Describes the failure of a Duo AuthAPI call.
DuoFailureResponse() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoFailureResponse
 
DuoHealthCheck - Class in net.shibboleth.idp.plugin.authn.duo.model
Represents a health check response from Duo's 2FA endpoint.
DuoHealthCheck(DuoHealthCheck.Builder) - Constructor for class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
Private constructor, can only be called by this builder.
DuoHealthCheck.Builder - Class in net.shibboleth.idp.plugin.authn.duo.model
Builder to build DuoHealthCheck.
DuoHealthCheck.IBuildStage - Interface in net.shibboleth.idp.plugin.authn.duo.model
Required fields builder.
DuoHealthCheck.IStatusStage - Interface in net.shibboleth.idp.plugin.authn.duo.model
Status builder.
DuoHealthCheckResponse - Class in net.shibboleth.idp.plugin.authn.duo.model
Represents part of the DuoHealthCheck response.
DuoHealthCheckResponse(Integer) - Constructor for class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheckResponse
Constructor.
DuoHttpClientFactoryBean - Class in net.shibboleth.idp.plugin.authn.duo.nimbus.impl
Factory bean customization for the Duo plugin.
DuoHttpClientFactoryBean() - Constructor for class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.DuoHttpClientFactoryBean
Constructor.
duoIntegration - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Duo integration to use.
duoIntegration - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
The Duo integration.
duoIntegration - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
The integration to help generate the JWT.
duoIntegration - Variable in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor
Save off the integration to help generate the JWT.
DuoIntegration - Interface in net.shibboleth.idp.authn.duo
Interface to a particular Duo AdminAPI or AuthAPI integration point.
duoIntegrationLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Lookp strategy for Duo integration.
DuoIssuerClaimLookupStrategy - Class in net.shibboleth.idp.plugin.authn.duo.impl
Find the issuer from the DuoOIDCIntegration.
DuoIssuerClaimLookupStrategy(String) - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoIssuerClaimLookupStrategy
Constructor.
DuoNonceClaimLookupStrategy - Class in net.shibboleth.idp.plugin.authn.duo.impl
Find the nonce from the DuoOIDCAuthenticationContext.
DuoNonceClaimLookupStrategy() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoNonceClaimLookupStrategy
 
DuoOIDAuthenticationContextCleanupHook() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims.DuoOIDAuthenticationContextCleanupHook
 
DuoOIDCAuthAPI - Class in net.shibboleth.idp.plugin.authn.duo
Constants defined in the Duo OIDC Auth API.
DuoOIDCAuthAPI() - Constructor for class net.shibboleth.idp.plugin.authn.duo.DuoOIDCAuthAPI
Constructor.
DuoOIDCAuthenticationContext - Class in net.shibboleth.idp.plugin.authn.duo.context
Mutable Context that carries the Duo integration, request-response state, authorization code, and Duo authentication result token.
DuoOIDCAuthenticationContext() - Constructor for class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Public no-arg constructor to allow auto-creation.
DuoOIDCAuthnController - Class in net.shibboleth.idp.plugin.authn.duo.impl
MVC controller for managing Duo 2FA exchanges implemented as an ExternalAuthentication mechanism.
DuoOIDCAuthnController() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoOIDCAuthnController
Constructor.
DuoOIDCClient - Interface in net.shibboleth.idp.plugin.authn.duo
A client for handling Duo OIDC 2FA interactions.
DuoOIDCClientCapabilities - Interface in net.shibboleth.idp.plugin.authn.duo
Exposes capabilities of a DuoOIDCClient.
DuoOIDCClientFactory - Interface in net.shibboleth.idp.plugin.authn.duo
Abstract factory for creating singleton DuoOIDCClient instances.
DuoOIDCClientRegistry - Interface in net.shibboleth.idp.plugin.authn.duo
A registry of DuoOIDCClients for DuoOIDCIntegrations.
DuoOIDCIntegration - Interface in net.shibboleth.idp.plugin.authn.duo
Interface to a particular Duo OIDC integration point.
DuoOIDCNimbusModule - Class in net.shibboleth.idp.plugin.authn.duo.nimbus
PluginIdPModule implementation using only Nimbus OIDC/JWT handling.
DuoOIDCNimbusModule() - Constructor for class net.shibboleth.idp.plugin.authn.duo.nimbus.DuoOIDCNimbusModule
Constructor.
DuoOIDCNimbusPlugin - Class in net.shibboleth.idp.plugin.authn.duo.nimbus
Details about the Duo OIDC 2FA plugin using only Nimbus OIDC/JWT handling.
DuoOIDCNimbusPlugin() - Constructor for class net.shibboleth.idp.plugin.authn.duo.nimbus.DuoOIDCNimbusPlugin
Constructor.
DuoOIDCWebSDKModule - Class in net.shibboleth.idp.plugin.authn.duo.sdk
PluginIdPModule implementation based on the Duo Web SDK v4.
DuoOIDCWebSDKModule() - Constructor for class net.shibboleth.idp.plugin.authn.duo.sdk.DuoOIDCWebSDKModule
Constructor.
DuoOIDCWebSDKPlugin - Class in net.shibboleth.idp.plugin.authn.duo.sdk
Details about the Duo OIDC 2FA plugin based on the Duo Web SDK v4.
DuoOIDCWebSDKPlugin() - Constructor for class net.shibboleth.idp.plugin.authn.duo.sdk.DuoOIDCWebSDKPlugin
Constructor.
duoPasscode - Variable in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Passcode.
DuoPasswordlessContext - Class in net.shibboleth.idp.plugin.authn.duo.context
Context that tracks username and signals usage of Duo in a passwordless mode.
DuoPasswordlessContext() - Constructor for class net.shibboleth.idp.plugin.authn.duo.context.DuoPasswordlessContext
 
duoPasswordlessContextLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulatePasswordlessContext
Strategy used to locate the DuoPasswordlessContext to operate on.
DuoPreauthAuthenticator - Class in net.shibboleth.idp.plugin.authn.duo.impl
Implementation of the the Duo AuthAPI /v2/preauth endpoint.
DuoPreauthAuthenticator() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoPreauthAuthenticator
Constructor.
DuoPreauthResponse - Class in net.shibboleth.idp.plugin.authn.duo.impl
Describes the results of an pre-authentication attempt via the Duo AuthAPI.
DuoPreauthResponse() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoPreauthResponse
 
DuoPrincipal - Class in net.shibboleth.idp.authn.duo
Principal based on a Duo authentication.
DuoPrincipal(String) - Constructor for class net.shibboleth.idp.authn.duo.DuoPrincipal
Constructor.
DuoReasonAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
An audit extractor to extract the Duo authentication reason from the Duo token response.
DuoReasonAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoReasonAuditExtractor
 
DuoRedirectUriAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
An audit extractor to extract the Duo redirect URI from the Duo context.
DuoRedirectUriAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoRedirectUriAuditExtractor
 
DuoRegistryException - Exception in net.shibboleth.idp.plugin.authn.duo
Indicates an error during registry processing.
DuoRegistryException() - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoRegistryException
Constructor.
DuoRegistryException(String) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoRegistryException
Constructor.
DuoRegistryException(String, Throwable) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoRegistryException
Constructor.
DuoRegistryException(Throwable) - Constructor for exception net.shibboleth.idp.plugin.authn.duo.DuoRegistryException
Constructor.
DuoRequestStateAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
An audit extractor to extract the Duo request state OAuth 2.0 parameter from the Duo context.
DuoRequestStateAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoRequestStateAuditExtractor
 
DuoResponseStateAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
An audit extractor to extract the Duo response state OAuth 2.0 parameter from the Duo context.
DuoResponseStateAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoResponseStateAuditExtractor
 
DuoResponseWrapper<T extends DuoAuthAPIResponse> - Class in net.shibboleth.idp.plugin.authn.duo.impl
Handle a generic object returned from the response that will come from the Duo AuthAPI.
DuoResponseWrapper() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoResponseWrapper
 
DuoSDKClientAdaptor - Class in net.shibboleth.idp.plugin.authn.duo.sdk.impl
An Object Adaptor class for bridging between the Duo SDK implementation and the internal DuoOIDCClient interface.
DuoSDKClientAdaptor(DuoOIDCIntegration, List<String>) - Constructor for class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor
Package-private constructor.
DuoSDKClientAdaptor.DefaultHealthCheckResponseConverter - Class in net.shibboleth.idp.plugin.authn.duo.sdk.impl
Default health check response converter.
DuoSDKClientAdaptor.DefaultTokenResponseConverter - Class in net.shibboleth.idp.plugin.authn.duo.sdk.impl
Default Duo token converter.
DuoSDKClientFactory - Class in net.shibboleth.idp.plugin.authn.duo.sdk.impl
Abstract factory implementation for the DuoSDKClientAdaptor.
DuoSDKClientFactory() - Constructor for class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientFactory
 
DuoSupport - Class in net.shibboleth.idp.plugin.authn.duo.impl
Helper methods for Duo 2FA.
DuoSupport() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoSupport
Private Constructor.
DuoTransactionIdAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
An audit extractor to extract the Duo transaction ID from the Duo token response.
DuoTransactionIdAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoTransactionIdAuditExtractor
 
DuoUsernameAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
An audit extractor to extract the Duo username from the Duo context.
DuoUsernameAuditExtractor() - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.DuoUsernameAuditExtractor
 
DuoUsernameClaimLookupStrategy - Class in net.shibboleth.idp.plugin.authn.duo.impl
Find the authenticating principals username from the DuoOIDCAuthenticationContext.
DuoUsernameClaimLookupStrategy() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.DuoUsernameClaimLookupStrategy
 
DynamicDuoOIDCIntegration - Interface in net.shibboleth.idp.plugin.authn.duo
Specialised DuoOIDCIntegration that allows redirectURIs to be pre-registered or computed dynamically against a list of allowed origins.

E

email - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
email - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
The user's email address.
enrolled - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
enrolled - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
Is true if the user has a phone, hardware token, U2F token, WebAuthn security key, or other WebAuthn method available for authentication.
enrollPortalURL - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoPreauthResponse
the URL for the self-enrollment portal.
equals(Object) - Method in class net.shibboleth.idp.authn.duo.DuoFactorPrincipal
equals(Object) - Method in class net.shibboleth.idp.authn.duo.DuoPrincipal
equals(Object) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
equals(Object) - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
exchangeAuthorizationCodeFor2FAResult(String, String, String) - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCClient
Exchanges the authorizaton code for a signed Json Web Token (JWT) which contains information pertaining to the authentication.
exchangeAuthorizationCodeFor2FAResult(String, String, String) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
 
exchangeAuthorizationCodeFor2FAResult(String, String, String) - Method in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor
Exchanges the authorizaton code for a signed Json Web Token (JWT) which contains information pertaining to the authentication.
ExchangeCodeForDuoToken - Class in net.shibboleth.idp.plugin.authn.duo.impl
Action to exchange the authorization code in the Duo 2FA response for a Duo id_token that describes the result of 2FA.
ExchangeCodeForDuoToken() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.ExchangeCodeForDuoToken
 
executeRequest(ClassicHttpRequest, TypeReference<T>) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
Performs a call to a Duo OIDC endpoint.
expiresIn - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
The expiry.
expiresIn - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
The lifetime in seconds of the access token.
extContext - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateExternalAuthenticationContext
Context containing the result to examine.
extractClaims() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
Extract the second-factor used for authentication as taken from the auth_context and other details to be stored in the Duo context.
ExtractDuoAuthenticationFromHeaders - Class in net.shibboleth.idp.plugin.authn.duo.impl
An action that extracts the Duo factor and device or passcode from HTTP request headers into a DuoAuthenticationContext, and attaches it to the AuthenticationContext.
ExtractDuoAuthenticationFromHeaders() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Constructor.
extractHeaders(DuoAuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Extracts the Duo API arguments passed in via the request headers.
extractKeyFromState(String) - Static method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoSupport
Extract the key component from the state.
extractNonceFromState(String) - Static method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoSupport
Extract the nonce component from the state.

F

factor - Variable in class net.shibboleth.idp.authn.duo.DuoFactorPrincipal
The authentication factor used.
FACTOR - Static variable in class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
Deprecated, for removal: This API element is subject to removal in a future version.
use AuthnAuditFields#DUO_FACTOR
factorHeaderName - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Header name for factor.
factorUsed - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
The factor claim from the token.
factorUsed - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
Factor used.
firstname - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
firstname - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
The user's given name.
FixedStringAuditExtractor - Class in net.shibboleth.idp.plugin.authn.duo.audit.impl
A simple audit extractor that allows a fixed string to be logged.
FixedStringAuditExtractor(String) - Constructor for class net.shibboleth.idp.plugin.authn.duo.audit.impl.FixedStringAuditExtractor
Constructor.

G

generateJWTId(Integer) - Static method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientSupport
Generate a cryptographically strong random JWT identifier.
generateNonce(Integer) - Static method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoSupport
Generates a random identifier to be used as a nonce.
generateState(String, String) - Static method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoSupport
Generate a state parameter from a nonce component and an execution key component.
getAaguid() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Get the unique identifier that conveys the authenticator's make and model, or the passkey's provider identity.
getAccessToken() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
Get the access token.
getAdditionalProperties() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get any additional properties not explicitly captured by this class.
getAdditionalProperties() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Get any additional properties not explicitly captured by this class.
getAdminPolicyName(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.AdminFlowDescriptor
Get the access control policy name to apply for admin access.
getAllowedFactors() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Gets the set of allowable factors to enforce during validation.
getAllowedFactors() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCIntegration
Gets the set of allowable factors to enforce during validation.
getAllowedOrigins() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Get a list of URL origins that are allowed to appear in computed redirect URIs.
getAllowedOrigins() - Method in interface net.shibboleth.idp.plugin.authn.duo.DynamicDuoOIDCIntegration
Get a list of URL origins that are allowed to appear in computed redirect URIs.
getAPIHost() - Method in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Get the name of the API host to contact.
getAPIHost() - Method in interface net.shibboleth.idp.authn.duo.DuoIntegration
Get the name of the API host to contact.
getAPIHost() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Get the name of the API host to contact.
getAPIHost() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCIntegration
Get the name of the API host to contact.
getAPIHost() - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Get the name of the API host to contact.
getApplicationKey() - Method in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Get the application key.
getApplicationKey() - Method in interface net.shibboleth.idp.authn.duo.DuoIntegration
Get the application key.
getAuditFields(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
getAuthorizationCode() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Get the authorization code.
getAuthorizeEndpoint() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Get the path of the authorization endpoint.
getAuthorizeEndpoint() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCIntegration
Get the path of the authorization endpoint.
getAuthorizeEndpoint() - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Get the path of the authorization endpoint.
getAuthToken() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Get the Duo authentication token.
getCaCerts() - Method in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientFactory
Get the caCerts, guarded by this objects monitor.
getCapabilities() - Method in class net.shibboleth.idp.plugin.authn.duo.AbstractDuoOIDCClient
 
getCapabilities() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCClient
Returns the capabilities of the underlying client.
getCapabilities() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoDevice
Get the device capabilities.
getClient() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Get the client used to communicate with the Duo OIDC API.
getClientAddress() - Method in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Get the client address.
getClientFactory() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry
Internally synchronized method for obtaining the 'current' client factory.
getClientId() - Method in class net.shibboleth.idp.plugin.authn.duo.AbstractDuoOIDCClient
 
getClientId() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Get the clientId key.
getClientId() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCClient
Get an identifier for this client e.g.
getClientId() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCIntegration
Get the clientId key.
getClientId() - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Get the clientId key.
getClientOrCreate(DuoOIDCIntegration) - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCClientRegistry
Retrieve an existing, or create a new, Duo client for the given Duo integration.
getClientOrCreate(DuoOIDCIntegration) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry
 
getCode() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoFailureResponse
Get the failure code.
getCode() - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
Get the response code.
getContextToPrincipalMappingStrategy() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Get the context to principal mapping strategy for mapping context information into principal collections.
getContextToPrincipalMappingStrategy() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCIntegration
Get a context to principal mapping strategy for mapping context information into principal collections to insert into Subject.
getContextToPrincipalMappingStrategy() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
Get the context to principal mapping strategy for mapping context information into principal collections e.g.
getCreated() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get the user's creation date as a UNIX timestamp.
getCredentialName() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Get the free-form label for the WebAuthn credential.
getDateAdded() - Method in class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken
The date the U2F token was registered in Duo.
getDateAdded() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Get the date the WebAuthn credential was registered in Duo.
getDateLastUsed() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Get the date the WebAuthn credential was last used
getDevice() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoDevice
Get the device identifier.
getDeviceID() - Method in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Get the device ID.
getDeviceKey() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Get the device key used if available from the token.
getDevices() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoPreauthResponse
Get the Duo devices.
getDuoContextLookupStrategy() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoOIDCAuthnController
Internally synchronized method for accessing the Duo context lookup strategy.
getEmail() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get the user's email address.
getEnrollPortalURL() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoPreauthResponse
Get the Duo enrollment portal URL.
getExpiresIn() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
Get how long the access token is valid for in seconds.
getFactor() - Method in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Get the factor to use.
getFactorUsed() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Get the factor claim from the token.
getFirstname() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get The user's given name.
getHealthCheckEndpoint() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Get the path of the health check endpoint.
getHealthCheckEndpoint() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCIntegration
Get the path of the health check endpoint.
getHealthCheckEndpoint() - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Get the path of the health check endpoint.
getHttpClient() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
Internally synchronized method for returning the HttpClient.
getHttpClientSecurityParameters() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
Internally synchronized method for returning the http client security parameters.
getIdToken() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
Get the ID token.
getIntegration() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Get the Duo integration.
getIntegrationAndCheckComponentActive(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Check the component is active and if it is get the DuoIntegration to use.
getIntegrationKey() - Method in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Get the integration key.
getIntegrationKey() - Method in interface net.shibboleth.idp.authn.duo.DuoIntegration
Get the integration key.
getLabel() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Get the type of WebAuthn credential.
getLastDirectorySync() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get an integer indicating the last update to the user via directory sync as a Unix timestamp, or null if the user has never synced with an external directory or if the directory that originally created the user has been deleted from Duo.
getLastLogin() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get an integer indicating the last time this user logged in, as a Unix timestamp, or null if the user has not logged in.
getLastname() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get the user's surname.
getLockoutReason() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get the user's lockout_reason.
getMessage() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoFailureResponse
Get the failure message.
getMessage() - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
Get the response message.
getMessageDetail() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoFailureResponse
Get the failure message details.
getMessageDetail() - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
Get a detailed response message.
getMetadata() - Method in class net.shibboleth.idp.plugin.authn.duo.DuoAdminResponseWrapper
Get the metadata associated with this response.
getName() - Method in class net.shibboleth.idp.authn.duo.DuoFactorPrincipal
getName() - Method in class net.shibboleth.idp.authn.duo.DuoPrincipal
getName() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoDevice
Get the device name.
getNonce() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Get the nonce.
getNotes() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get notes about this user.
getNumber() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoDevice
Get the device number.
getObjectMapper() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
Internally synchronized method for returning the object mapper.
getPasscode() - Method in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Get the passcode.
getPushInfo() - Method in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Get the pushinfo.
getRealname() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get the user's real name (or full name).
getRedirectURI() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Get the runtime redirectURI to direct the client to after authorisation.
getRedirectURI() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCIntegration
Get the runtime redirectURI to direct the client to after authorisation.
getRedirectURI() - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Get the runtime redirectURI to direct the client to after authorisation.
getRedirectURIOverride() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Get the override redirect URI.
getRefreshToken() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
Get the refresh token.
getRegisteredAs() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
The registration flow that was used to register this WebAuthn credential.
getRegisteredRedirectURI() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Get the static pre-registered redirect_uri.
getRegisteredRedirectURI() - Method in interface net.shibboleth.idp.plugin.authn.duo.DynamicDuoOIDCIntegration
Get the static pre-registered redirect_uri.
getRegistrationId() - Method in class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken
Get the U2F token's registration identifier.
getRequestState() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Get the request state.
getResponse() - Method in class net.shibboleth.idp.plugin.authn.duo.DuoAdminListMapResponseWrapper
Get the inner response.
getResponse() - Method in class net.shibboleth.idp.plugin.authn.duo.DuoAdminResponseWrapper
Get the inner response.
getResponse() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoResponseWrapper
Get the inner response.
getResponse() - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
Get the response object.
getResponseState() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Get the response state.
getResult() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthAPIResponse
Get the Duo result string.
getScope() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
Get the requested scope.
getSecretKey() - Method in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Get the secret key.
getSecretKey() - Method in interface net.shibboleth.idp.authn.duo.DuoIntegration
Get the secret key.
getSecretKey() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Get the secret key.
getSecretKey() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCIntegration
Get the secret key.
getSecretKey() - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Get the secret key.
getStat() - Method in class net.shibboleth.idp.plugin.authn.duo.DuoAdminResponseWrapper
Get the response status.
getStat() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoFailureResponse
Get the failure status.
getStat() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoResponseWrapper
Get the response status.
getStatus() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthResponse
Get the Duo status string.
getStatus() - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
Get the health status of the 2FA endpoint.
getStatus() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get the user's status.
getStatusMessage() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthAPIResponse
Get the Duo status message.
getSupportedPrincipals(Class<T>) - Method in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
getSupportedPrincipals(Class<T>) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
getSupportedPrincipals(Class<T>) - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
getTimestamp() - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
Get the timestamp!!
getTimestamp() - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheckResponse
Get the response timestamp.
getTokenEndpoint() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Get the path of the token endpoint.
getTokenEndpoint() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCIntegration
Get the path of the token endpoint.
getTokenEndpoint() - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Get the path of the token endpoint.
getTokenType() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
Get the token type.
getTransports() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Get the transports the authenticator can use to communicate with a client.
getTrustedDeviceToken() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthResponse
Get the Duo trusted device token string.
getType() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoDevice
Get the device type.
getU2ftokens() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get a list of U2F tokens that this user can use.
getUser(ProfileRequestContext, String) - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoAdminClient
Get the User that corresponds to the given username from the Duo Admin API.
getUser(ProfileRequestContext, String) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Get the User that corresponds to the given username from the Duo Admin API.
getUserId() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get the user's ID.
getUsername() - Method in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Get the username.
getUsername() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Get the username.
getUsername() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoPasswordlessContext
Get the username.
getUsername() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get the user's username.
getUsername(ProfileRequestContext, AuthenticationContext) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Gets the username associated with this Duo run.
getVersion() - Static method in class net.shibboleth.idp.plugin.authn.duo.Version
Get the version of the IdP.
getWebAuthnCredentials() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Get a list of WebAuthn authenticators that this user can use.
getWebauthnkey() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Get the WebAuthn credential's registration identifier.

H

hashCode() - Method in class net.shibboleth.idp.authn.duo.DuoFactorPrincipal
hashCode() - Method in class net.shibboleth.idp.authn.duo.DuoPrincipal
hashCode() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
hashCode() - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
healthCheck() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCClient
Check the health of the Duo 2FA endpoint and the clients configuration.
healthCheck() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
 
healthCheck() - Method in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor
Check the health of the Duo 2FA endpoint and the clients configuration.
HealthCheckDuoOIDCAuthAPI - Class in net.shibboleth.idp.plugin.authn.duo.impl
An action that checks the health of the Duo 2FA endpoint for the established Duo integration.
HealthCheckDuoOIDCAuthAPI() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.HealthCheckDuoOIDCAuthAPI
 
healthCheckResponseConverter - Variable in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor
Function to map the native Duo HealthCheckResponse object to the interface DuoHealthCheck object.
healthEndpoint - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
The URL path to the health endpoint.
healthEndpoint - Variable in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
The URL path to the health endpoint.
httpClient - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.AbstractDuoAuthenticator
HttpClient for contacting Duo.
httpClient - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
HttpClient for contacting Duo.
httpClient - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
HttpClient for contacting Duo.
httpClient - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
HttpClient for contacting Duo.
httpClientSecurityParameters - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.AbstractDuoAuthenticator
HTTP client security parameters.
httpClientSecurityParameters - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
HTTP client security parameters.
httpClientSecurityParameters - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
HTTP client security parameters.
httpClientSecurityParameters - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
HTTP client security parameters.
HTTPS - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoIssuerClaimLookupStrategy
HTTPS scheme protocol.
HTTPS - Static variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
The HTTPS scheme.

I

idToken - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
The id token.
idToken - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
The OIDC ID token string base64 encoded.
initialBackoff - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Initial rate limiting delay.
integration - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
The selected Duo integration to use for the lifetime of this request.
integration - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenSignature
The Duo integration appropriate for this request.
integrationKey - Variable in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Integration key.
isAdminAllowed(ProfileRequestContext, String) - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
Tests whether an admin operation (on a different user than is accessing the flow) should be permitted.
isAutoAuthenticationSupported() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Get whether "auto" is the default setting.
isBackupEligible() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
If true, this credential can be used from multiple devices.
isBackupStatus() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
If true, this credential has been backed up and can be used from multiple devices.
isBypassView() - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoPasswordlessContext
Get whether to bypass the view in favor of directly invoking the service.
isClientAddressTrusted() - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Get whether the client address should be trusted for use in API calls.
isEnrolled() - Method in class net.shibboleth.idp.plugin.authn.duo.model.User
Is true if the user has a phone, hardware token, U2F token, WebAuthn security key, or other WebAuthn method available for authentication.
isOptOut() - Method in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Tests whether the cookie's value indicates a cached negative response.
isPasswordless() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Gets whether the integration is suitable for use as a passwordless single factor.
isPasswordless() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCIntegration
Gets whether the integration is suitable for use as a passwordless single factor.
isPasswordless() - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Gets whether the integration is suitable for use as a passwordless single factor.
isPasswordlessAuthorized() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
If true, this credential can be used for both MFA and Passwordless authentication.
isRedirectURIPreregistered() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Has a redirectURI been pre-registered i.e.
isRedirectURIPreregistered() - Method in interface net.shibboleth.idp.plugin.authn.duo.DynamicDuoOIDCIntegration
Has a redirectURI been pre-registered i.e.
issuerPath - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoIssuerClaimLookupStrategy
The URL path component of the issuer.
isSupportsNonce() - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoOIDCClientCapabilities
Does this client support the OIDC nonce parameter.
isSupportsNonce() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
 
isSupportsNonce() - Method in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor
 
isUvCapable() - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Is the WebAuthn authenticator associated with this credential capable of identifying a user via a suitable authorization gesture.

L

label - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
label - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Indicates the type of WebAuthn credential.
lastDirectorySync - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
lastDirectorySync - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
An integer indicating the last update to the user via directory sync as a Unix timestamp, or null if the user has never synced with an external directory or if the directory that originally created the user has been deleted from Duo.
lastLogin - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
lastLogin - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
An integer indicating the last time this user logged in, as a Unix timestamp, or null if the user has not logged in.
lastname - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
lastname - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
The user's surname.
lockoutReason - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
lockoutReason - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
The user's lockout_reason.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.AbstractDuoAuthenticationAction
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ClearPasswordlessCookie
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.CreatePasswordlessCookie
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry.CreateNewClientMappingFunction
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultRedirectURICreationStrategy
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoOIDCAuthnController
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ExchangeCodeForDuoToken
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.HealthCheckDuoOIDCAuthAPI
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulatePasswordlessContext
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoResponseState
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateExternalAuthenticationContext
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenSignature
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Class logger.
log - Variable in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor
Class logger.
logDecodedTokenPayload(JWT) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExchangeCodeForDuoToken
If the token is not encrypted, and the original parsed parts exist, log the payload base64url decoded.

M

main(String[]) - Static method in class net.shibboleth.idp.plugin.authn.duo.Version
Main entry point to program.
ManagePasswordlessCookie - Class in net.shibboleth.idp.plugin.authn.duo.admin.impl
Administrative management of passwordless cookie by end-user or administrator.
ManagePasswordlessCookie() - Constructor for class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
 
maxBackoff - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Maximum backoff delay.
message - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoFailureResponse
the failure message.
message - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
The message.
message - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
The error response message.
messageDetail - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoFailureResponse
the failure message detail.
messageDetail - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
The message detail.
messageDetail - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
The error response detailed message.
metadata - Variable in class net.shibboleth.idp.plugin.authn.duo.DuoAdminResponseWrapper
Paging metadata.

N

name - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoDevice
the Duo device name.
NEGATIVE_VALUE - Static variable in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
A negative signal to allow caching opt-out.
net.shibboleth.idp.authn.duo - package net.shibboleth.idp.authn.duo
Public APIs related to Duo v2 AuthAPI authentication.
net.shibboleth.idp.authn.duo.context - package net.shibboleth.idp.authn.duo.context
Context classes related to Duo v2 AuthAPI authentication.
net.shibboleth.idp.plugin.authn.duo - package net.shibboleth.idp.plugin.authn.duo
Duo OIDC 2FA login flow API classes.
net.shibboleth.idp.plugin.authn.duo.admin.impl - package net.shibboleth.idp.plugin.authn.duo.admin.impl
Duo OIDC 2FA login flow admin implementation classes.
net.shibboleth.idp.plugin.authn.duo.audit - package net.shibboleth.idp.plugin.authn.duo.audit
 
net.shibboleth.idp.plugin.authn.duo.audit.impl - package net.shibboleth.idp.plugin.authn.duo.audit.impl
Duo OIDC 2FA login flow audit implementation classes.
net.shibboleth.idp.plugin.authn.duo.context - package net.shibboleth.idp.plugin.authn.duo.context
Duo OIDC 2FA login flow API context classes.
net.shibboleth.idp.plugin.authn.duo.impl - package net.shibboleth.idp.plugin.authn.duo.impl
Duo OIDC 2FA login flow implementation classes.
net.shibboleth.idp.plugin.authn.duo.model - package net.shibboleth.idp.plugin.authn.duo.model
Duo OIDC 2FA login flow API model classes.
net.shibboleth.idp.plugin.authn.duo.nimbus - package net.shibboleth.idp.plugin.authn.duo.nimbus
Native Nimbus based Duo OIDC integration plugin.
net.shibboleth.idp.plugin.authn.duo.nimbus.impl - package net.shibboleth.idp.plugin.authn.duo.nimbus.impl
Native Nimbus based Duo OIDC 2FA client adaptor implementation classes.
net.shibboleth.idp.plugin.authn.duo.sdk - package net.shibboleth.idp.plugin.authn.duo.sdk
Duo WebSDK v4 OIDC integration plugin.
net.shibboleth.idp.plugin.authn.duo.sdk.impl - package net.shibboleth.idp.plugin.authn.duo.sdk.impl
Duo WebSDK v4 OIDC 2FA client adaptor implementation classes.
NimbusClient - Class in net.shibboleth.idp.plugin.authn.duo.nimbus.impl
A Duo client using the Nimbus OIDC library.
NimbusClient(DuoOIDCIntegration, HttpClient, HttpClientSecurityParameters, ObjectMapper) - Constructor for class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
Package-private Constructor.
NimbusClientFactory - Class in net.shibboleth.idp.plugin.authn.duo.nimbus.impl
Abstract factory implementation for creating new NimbusClients.
NimbusClientFactory() - Constructor for class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
 
NimbusClientSupport - Class in net.shibboleth.idp.plugin.authn.duo.nimbus.impl
Helper methods for working with Duo using Nimbus.
NimbusClientSupport() - Constructor for class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientSupport
private constructor.
nonce - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
String value used to associate a Client session with an ID Token to mitigate replay attacks.
notes - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
notes - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
Notes about this user.
number - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoDevice
the Duo device number.

O

objectMapper - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.AbstractDuoAuthenticator
JSON object mapper.
objectMapper - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
JSON object mapper.
objectMapper - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClient
JSON object mapper.
objectMapper - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
JSON object mapper.
objectMapper - Variable in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor.DefaultTokenResponseConverter
Thread-safe JSON object mapper.
OPERATION_FIELD_NAME - Static variable in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
Name of form field signalling the operation to perform.
OPTIN_FIELD_NAME - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.CreatePasswordlessCookie
Name of form field signalling yes/no to opt-in.

P

paramEscaper - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthAuthenticator
pushinfo escaper.
passcodeHeaderName - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Header name for passcode.
passwordless - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Passwordless indicator.
passwordless - Variable in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Passwordless indicator.
passwordlessAuthorized - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
passwordlessAuthorized - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
If true, this credential can be used for both MFA and Passwordless authentication.
passwordlessCondition - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Condition governing "new" eligibility.
passwordlessContext - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulatePasswordlessContext
Context to populate.
passwordlessContextLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Strategy used to locate a DuoPasswordlessContext if present.
PasswordlessCookieManager - Class in net.shibboleth.idp.plugin.authn.duo
Wrapper for managing the passwordless guard cookie, allowing read/write with less explicit code, error handling, etc.
PasswordlessCookieManager() - Constructor for class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
 
passwordlessDuoIntegrationLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Lookup strategy for Duo integration for passwordless use.
PopulateDuoAuthenticationContext - Class in net.shibboleth.idp.plugin.authn.duo.impl
An action to create (or lookup) and populate the DuoOIDCAuthenticationContext with the username, chosen DuoOIDCIntegration, and DuoOIDCClient appropriate for this request.
PopulateDuoAuthenticationContext() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Constructor.
PopulatePasswordlessContext - Class in net.shibboleth.idp.plugin.authn.duo.impl
A profile action to extract passwordless username from a sealed cookie and populate it into an existing DuoPasswordlessContext.
PopulatePasswordlessContext() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.PopulatePasswordlessContext
Constructor.
populateSubject(Subject) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
populateSubject(Subject) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
PostValidatePasswordlessEvaluation - Class in net.shibboleth.idp.plugin.authn.duo.impl
This is a convoluted step that implements some of the cookie management logic needed after second-factor use, but before the possible opt-in to passwordless.
PostValidatePasswordlessEvaluation() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Constructor.
prc - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
The profile request context.
preauthAuthenticator - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Implementation of Duo AuthApi /preauth enpoint.
PROMPT_USER_EVENT - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Custom event to signal that a prompt to opt into passwordless should be presented.
pushInfo - Variable in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
PushInfo data.
pushInfoLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Strategy function for populating pushinfo AuthAPI parameter.

R

random - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Generates random backoff delay.
RATE_LIMIT_ERROR_CODE - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
The error returned for rate limiting rejection.
readCookie() - Method in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Read back existing cookie and return the username embedded in it, if any.
realname - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
realname - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
The user's real name (or full name).
REASON - Static variable in class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
Duo reason.
REDIRECT_URI - Static variable in class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
The redirect URI sent to Duo.
redirectURI - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
The used (by clients) redirect_uri to send the client after authorisation .
redirectURI - Variable in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
The used (by clients) redirect_uri to send the client after authorisation .
redirectURICreationStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Strategy used to compute the redirectURI from the given Duo integration if supported.
redirectURIOverride - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
A request-bound redirect URI that was determined at runtime.
refreshCookie() - Method in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
For a non-negative cookie, this recreates the cookie using the current default key to ensure it can continue to be read.
refreshToken - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
The refresh token - not supported by Duo.
refreshToken - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
The refresh token, which can be used to obtain new access tokens using the same authorization grant.
registeredAs - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
registeredAs - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
The registration flow that was used to register this WebAuthn credential.
registeredRedirectURI - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
A statically set (pre-registered) redirectURI to send the client to after authorisation.
registrationId - Variable in class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken.Builder
 
registrationId - Variable in class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken
The U2F token's registration identifier.
removePasswordlessContext - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoCleanupHook
Whether to remove a DuoPasswordlessContext if present.
REQ_STATE - Static variable in class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
The request state value sent to the Duo 2FA authz endpoint.
requestState - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
A randomly generated 32 character minimum String sent in the Duo 2FA authorization request.
requestSupplier - Variable in class net.shibboleth.idp.plugin.authn.duo.admin.impl.AdminAccessPredicate
ServletRequest supplier.
requireResultCacheable - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Whether to require the authentication be cacheable to allow this.
RESP_STATE - Static variable in class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
The response state value received from the Duo 2FA authz endpoint.
response - Variable in class net.shibboleth.idp.plugin.authn.duo.DuoAdminListMapResponseWrapper
the inner response.
response - Variable in class net.shibboleth.idp.plugin.authn.duo.DuoAdminResponseWrapper
the inner response.
response - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoResponseWrapper
the inner response.
response - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
The response.
response - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
When a successful response was issued, as seconds since Unix EPOCH.
responseState - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
A randomly generated 32 character minimum String returned in the Duo 2FA authorization response.
result - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthAPIResponse
the result.
retrieve(ProfileRequestContext, String, Map<String, String>) - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoAdminClient
Generic method for returning a DuoAdminListMapResponseWrapper response from the given path and parameters.
retrieve(ProfileRequestContext, String, Map<String, String>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Generic method for returning a DuoAdminListMapResponseWrapper response from the given path and parameters.
retrieve(ProfileRequestContext, String, Map<String, String>, TypeReference<T>) - Method in interface net.shibboleth.idp.plugin.authn.duo.DuoAdminClient
Generic method for returning a type of DuoAdminResponseWrapper response from the given path and parameters.
retrieve(ProfileRequestContext, String, Map<String, String>, TypeReference<T>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Generic method for returning a type of DuoAdminResponseWrapper response from the given path and parameters.
RFC_2822_DATE_FORMAT - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoSupport
RFC 2822 formatter for date/time.

S

scope - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
The scope.
scope - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
The scope requested by the client.
secretKey - Variable in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Secret key.
secretKey - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Secret key.
secretKey - Variable in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Secret key.
serialVersionUID - Static variable in exception net.shibboleth.idp.plugin.authn.duo.DuoClientException
Serial UID.
serialVersionUID - Static variable in exception net.shibboleth.idp.plugin.authn.duo.DuoClientInitializationException
Default serialUID.
serialVersionUID - Static variable in exception net.shibboleth.idp.plugin.authn.duo.DuoException
Serial UID.
serialVersionUID - Static variable in exception net.shibboleth.idp.plugin.authn.duo.DuoRegistryException
Default serialUID.
serialVersionUID - Static variable in class net.shibboleth.idp.plugin.authn.duo.model.User
Generated serialUID.
setAccessControlService(AccessControlService) - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.AdminAccessPredicate
Sets AccessControlService to use for guarding admin access to cookie.
setAccessControlService(AccessControlService) - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
Sets AccessControlService to use for guarding admin access to cookie.
setAdminDuoIntegrationLookupStrategy(Function<ProfileRequestContext, DuoIntegration>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Set the lookup strategy to use to locate the Duo Admin API integration.
setAdminPolicyName(String) - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.AdminFlowDescriptor
Set the explicit access control policy name to apply for admin access.
setAdminPolicyNameLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.AdminFlowDescriptor
Set a lookup strategy to use to obtain the admin-level access control policy for this flow.
setAllowedFactors(Collection<String>) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set the allowable factors.
setAllowedFactors(Collection<String>) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultPasswordlessCondition
Sets the allowable Duo factors that qualify for the condition.
setAllowedOrigins(Collection<String>) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set the origins that are allowed to form the scheme, host, and port part of a computed redirect_uri.
setAPIHost(String) - Method in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Set the API host to use.
setAPIHost(String) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set the API host to use.
setAPIHost(String) - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Set the API host to use.
setApplicationKey(String) - Method in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Set the application key to use.
setAuthAuthenticator(DuoAuthAuthenticator) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
setAuthorizationCode(String) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Set the authorization code.
setAuthorizeEndpoint(String) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set the authorize endpoint URL path.
setAuthorizeEndpoint(String) - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Set the authorize endpoint URL path.
setAuthToken(JWT) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Set the Duo authentication token.
setAutoAuthenticationSupported(boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Set whether "auto" is the default setting.
setBackoffFactor(int) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Set the rate limiting multipler factor.
setBypassView(boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoPasswordlessContext
Set whether to bypass the view in favor of directly invoking the service.
setCaCerts(List<String>) - Method in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientFactory
Sets the list of CA certificate pins used to verify the Duo client connection to the API host.
setClaimsValidator(ClaimsValidator) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims
Set the JWT claims verifier to use.
setCleanupHook(Consumer<ProfileRequestContext>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Set the cleanup hook to execute after processing.
setCleanupHook(Consumer<ProfileRequestContext>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims
Set the cleanup hook to execute after either a successful or unsuccessful claims validation.
setClient(DuoOIDCClient) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Set the client used to communicate with the Duo OIDC API.
setClientAdddressTrusted(boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Set whether the client address should be trusted for use in API calls.
setClientAddress(String) - Method in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Set the client address.
setClientFactory(DuoOIDCClientFactory) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoOIDCClientRegistry
Set the client factory to use.
setClientId(String) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set the client ID to use.
setClientId(String) - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Set the client ID to use.
setClientRegistry(DuoOIDCClientRegistry) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Set the Duo client registry.
setContextToPrincipalMappingStrategy(Function<ProfileRequestContext, Collection<Principal>>) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set the context to principal mapping strategy for mapping context information into principal collections.
setContextToPrincipalMappingStrategy(Function<ProfileRequestContext, Collection<Principal>>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
Set the context to principal mapping strategy for mapping context information into principal collections e.g.
setCookieManager(PasswordlessCookieManager) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ClearPasswordlessCookie
setCookieManager(PasswordlessCookieManager) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.CreatePasswordlessCookie
setCookieManager(PasswordlessCookieManager) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulatePasswordlessContext
setCookieManager(PasswordlessCookieManager) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
setCookieManager(CookieManager) - Method in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Sets CookieManager to use.
setCookieName(String) - Method in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Set cookie name to use for "authorizing" passwordless use.
setDataSealer(DataSealer) - Method in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Sets DataSealer to use.
setDetectUsernameMismatch(boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Sets whether to detect a mismatch between the passwordless cookie and the current username.
setDeviceHeader(String) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Set the device header name.
setDeviceID(String) - Method in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Set the device ID.
setDeviceKey(String) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Set the device key used if available from the token.
setDuoContextLookupStrategy(Function<ProfileRequestContext, DuoOIDCAuthenticationContext>) - Method in class net.shibboleth.idp.plugin.authn.duo.AbstractDuoAuthenticationAction
Set Duo authentication context lookup strategy to use.
setDuoContextLookupStrategy(Function<ProfileRequestContext, DuoOIDCAuthenticationContext>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoOIDCAuthnController
Set Duo authentication context lookup strategy to use.
setDuoIntegration(DuoIntegration) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Set DuoIntegration details to use directly.
setDuoIntegrationLookupStrategy(Function<ProfileRequestContext, DuoIntegration>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Set DuoIntegration lookup strategy to use.
setDuoPasswordlessContextLookupStrategy(Function<ProfileRequestContext, DuoPasswordlessContext>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulatePasswordlessContext
Set the strategy used to locate the DuoPasswordlessContext to operate on.
setFactor(String) - Method in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Set the factor to use.
setFactorHeader(String) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Set the factor header name.
setFactorUsed(String) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Set the factor claim from the token.
setHealthCheckEndpoint(String) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set the health check endpoint URL path.
setHealthCheckEndpoint(String) - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Set the health check endpoint URL path.
setHttpClient(HttpClient) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.AbstractDuoAuthenticator
Set the HttpClient to use for contacting Duo.
setHttpClient(HttpClient) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Set the HttpClient to use for contacting Duo.
setHttpClient(HttpClient) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
Set the HttpClient to use for contacting Duo.
setHttpClientSecurityParameters(HttpClientSecurityParameters) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.AbstractDuoAuthenticator
Set the optional client security parameters.
setHttpClientSecurityParameters(HttpClientSecurityParameters) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Set the optional client security parameters.
setHttpClientSecurityParameters(HttpClientSecurityParameters) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
Set the optional client security parameters.
setHttpServletRequestSupplier(Supplier<HttpServletRequest>) - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.AdminAccessPredicate
Sets the supplier of the active HttpServletRequest.
setInitialBackoff(int) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Set the initial backoff delay.
setIntegration(DuoOIDCIntegration) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Set the Duo integration.
setIntegrationKey(String) - Method in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Set the integration key to use.
setMaxBackoff(int) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Set the maximum backoff delay.
setNonce(String) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Set the OIDC nonce.
setObjectMapper(ObjectMapper) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.AbstractDuoAuthenticator
Set the JSON ObjectMapper.
setObjectMapper(ObjectMapper) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Set the JSON ObjectMapper.
setObjectMapper(ObjectMapper) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.NimbusClientFactory
Set the JSON ObjectMapper.
setPasscode(String) - Method in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Set the passcode.
setPasscodeHeader(String) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Set the passcode header name.
setPasswordless(boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Sets whether this integration is suitable for use as a single factor.
setPasswordless(boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Sets whether this integration is suitable for use as a single factor.
setPasswordlessCondition(Predicate<ProfileRequestContext>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Set condition governing eligibility for passwordless opt-in.
setPasswordlessContextLookupStrategy(Function<ProfileRequestContext, DuoPasswordlessContext>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Set the strategy used to locate the DuoPasswordlessContext to operate on.
setPasswordlessCookieManager(PasswordlessCookieManager) - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
setPasswordlessDuoIntegrationLookupStrategy(Function<ProfileRequestContext, DuoOIDCIntegration>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Set passwordless DuoIntegration lookup strategy to use.
setPreauthAuthenticator(DuoPreauthAuthenticator) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
setPushInfoLookupStrategy(Function<ProfileRequestContext, Map<String, String>>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ExtractDuoAuthenticationFromHeaders
Set lookup strategy for AuthAPI pushinfo parameter.
setRedirectURI(String) - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Set the redirect URI.
setRedirectURICreationStrategy(BiFunction<HttpServletRequest, DynamicDuoOIDCIntegration, String>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Set the redirect URI creation strategy.
setRedirectURIIfAbsent(String) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set the redirectURI from the one given in a thread-safe way.
setRedirectURIIfAbsent(String) - Method in interface net.shibboleth.idp.plugin.authn.duo.DynamicDuoOIDCIntegration
Set the redirectURI from the one given in a thread-safe way.
setRedirectURIOverride(String) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Set the override redirect URI.
setRegisteredRedirectURI(String) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set the redirect_uri to use.
setRemovePasswordlessContext(boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoCleanupHook
Sets whether to remove a DuoPasswordlessContext if present.
setRequestState(String) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Set the request state.
setRequireResultCacheable(boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PostValidatePasswordlessEvaluation
Sets whether a non-cacheable result should force the condition to return false.
setResponseState(String) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Set the response state.
setSecretKey(String) - Method in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Set the secret key to use.
setSecretKey(String) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set the secret key to use.
setSecretKey(String) - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Set the secret key to use.
setSignatureAlgorithm(JWSAlgorithm) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenSignature
Set the signature algorithm to use.
setSSOBypassFieldName(String) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Set the SSO bypass parameter name.
setStandardDuoIntegrationLookupStrategy(Function<ProfileRequestContext, DuoOIDCIntegration>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Set standard DuoIntegration lookup strategy to use.
setSupportedPrincipals(Collection<T>) - Method in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Set supported non-user-specific principals that the action will include in the subjects it generates, in place of any default principals from the flow.
setSupportedPrincipals(Collection<T>) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set supported non-user-specific principals that the action will include in the subjects it generates, in place of any default principals from the flow.
setSupportedPrincipals(Collection<T>) - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Set supported non-user-specific principals that the action will include in the subjects it generates, in place of any default principals from the flow.
setTokenEndpoint(String) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Set the token endpoint URL path.
setTokenEndpoint(String) - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Set the token endpoint URL path.
setUsername(String) - Method in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Set the username.
setUsername(String) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Set the username.
setUsername(String) - Method in class net.shibboleth.idp.plugin.authn.duo.context.DuoPasswordlessContext
Set the username.
setUsernameLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Set the lookup strategy to use for the username to match against Duo identity.
setUsernameLookupStrategy(Function<ProfileRequestContext, String>) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Set the lookup strategy to use for the username to match against Duo identity.
setUsersAdminEndpoint(String) - Method in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
Set the /users admin endpoint.
signatureAlgorithm - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenSignature
The signature algorithm used.
signRequest(ClassicRequestBuilder, DuoIntegration) - Static method in class net.shibboleth.idp.plugin.authn.duo.impl.DuoSupport
Sign a Duo AuthAPI request.
SimpleDuoOIDCIntegration - Class in net.shibboleth.idp.plugin.authn.duo
Deprecated, for removal: This API element is subject to removal in a future version. 
SimpleDuoOIDCIntegration() - Constructor for class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Constructor.
ssoBypassFieldName - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Parameter name for SSO bypass.
standardDuoIntegrationLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Lookup strategy for Duo integration.
stat - Variable in class net.shibboleth.idp.plugin.authn.duo.DuoAdminResponseWrapper
the response status.
stat - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoFailureResponse
the failure status.
stat - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoResponseWrapper
the response status.
STATE_PARAMETER - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoOIDCAuthnController
The name of the Http parameter that stores the state value.
status - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthResponse
the status string.
status - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
The status.
status - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
A successful 'OK' or unsuccessful 'FAIL' response.
status - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
status - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
The user's status.
statusMessage - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthAPIResponse
the status message.
SUPPORTED_SIGNATURE_FAMILY - Static variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenSignature
The HMAC 'family' of signature algorithms is the only supported, based on the shared secret in the client integration.
supportedPrincipals - Variable in class net.shibboleth.idp.authn.duo.BasicDuoIntegration
Container for supported principals.
supportedPrincipals - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
Container for supported principals.
supportedPrincipals - Variable in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
Container for supported principals.

T

test(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.admin.impl.AdminAccessPredicate
test(ProfileRequestContext) - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultPasswordlessCondition
timestamp - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
The timestamp.
timestamp - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
When an unsuccessful response was issued, as seconds since Unix EPOCH.
timestamp - Variable in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheckResponse
The response timestamp in seconds since Unix EPOCH.
token - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenSignature
The Duo authentication token.
tokenEndpoint - Variable in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
The URL path to the token endpoint.
tokenEndpoint - Variable in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
The URL path to the token endpoint.
TokenResponse - Class in net.shibboleth.idp.plugin.authn.duo.nimbus.impl
A token response, see RFC6749 section 5.1.
TokenResponse(TokenResponse.Builder) - Constructor for class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
Constructor.
TokenResponse.Builder - Class in net.shibboleth.idp.plugin.authn.duo.nimbus.impl
Builder to build TokenResponse.
TokenResponse.IAccessTokenStage - Interface in net.shibboleth.idp.plugin.authn.duo.nimbus.impl
Access token stage interface.
TokenResponse.IBuildStage - Interface in net.shibboleth.idp.plugin.authn.duo.nimbus.impl
Build stage interface.
TokenResponse.IIdTokenStage - Interface in net.shibboleth.idp.plugin.authn.duo.nimbus.impl
Token stage interface.
TokenResponse.ITokenTypeStage - Interface in net.shibboleth.idp.plugin.authn.duo.nimbus.impl
Token type stage interface.
tokenResponseConverter - Variable in class net.shibboleth.idp.plugin.authn.duo.sdk.impl.DuoSDKClientAdaptor
Function to map the native Duo Token object to the interface JWT object.
tokenType - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
The token type.
tokenType - Variable in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
The token type e.g.
toString() - Method in class net.shibboleth.idp.authn.duo.DuoFactorPrincipal
toString() - Method in class net.shibboleth.idp.authn.duo.DuoPrincipal
toString() - Method in class net.shibboleth.idp.plugin.authn.duo.DefaultDuoOIDCIntegration
toString() - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck
toString() - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheckResponse
 
toString() - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse
 
toString() - Method in class net.shibboleth.idp.plugin.authn.duo.SimpleDuoOIDCIntegration
Deprecated.
transports - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
transports - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
The transports the authenticator can use to communicate with a client.
trustedDeviceToken - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthResponse
the trusted device token string.
TXID - Static variable in class net.shibboleth.idp.plugin.authn.duo.audit.AuditFields
Duo Transaction ID.
type - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoDevice
the Duo device type.

U

U2ftoken - Class in net.shibboleth.idp.plugin.authn.duo.model
A U2F token.
U2ftoken(U2ftoken.Builder) - Constructor for class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken
Constructor.
U2ftoken.Builder - Class in net.shibboleth.idp.plugin.authn.duo.model
Builder used to build an instance of this class.
u2ftokens - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
u2ftokens - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
A list of U2F tokens that this user can use.
URISupport - Class in net.shibboleth.idp.plugin.authn.duo
URL support class.
URISupport() - Constructor for class net.shibboleth.idp.plugin.authn.duo.URISupport
Private constructor.
User - Class in net.shibboleth.idp.plugin.authn.duo.model
A model object to hold the response from the Users Duo Admin API.
User(User.Builder) - Constructor for class net.shibboleth.idp.plugin.authn.duo.model.User
Constructor.
User.Builder - Class in net.shibboleth.idp.plugin.authn.duo.model
The builder used to create a threadsafe instance of this class.
userId - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
userId - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
The user's ID.
username - Variable in class net.shibboleth.idp.authn.duo.context.DuoAuthenticationContext
Username.
username - Variable in class net.shibboleth.idp.authn.duo.DuoPrincipal
The username.
username - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoOIDCAuthenticationContext
Username.
username - Variable in class net.shibboleth.idp.plugin.authn.duo.context.DuoPasswordlessContext
Username.
username - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Attempted username.
username - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
Attempted username.
username - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
username - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
The user's username.
USERNAME_FIELD_NAME - Static variable in class net.shibboleth.idp.plugin.authn.duo.admin.impl.ManagePasswordlessCookie
Name of form field signalling username to operate with.
usernameLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.PopulateDuoAuthenticationContext
Lookup strategy for username to match against Duo identity.
usernameLookupStrategy - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Lookup strategy for username to match against Duo identity.
usersAdminEndpoint - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DefaultDuoAdminClient
The location of the users admin endpoint.
uvCapable - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
uvCapable - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Is the WebAuthn authenticator associated with this credential capable of identifying a user via a suitable authorization gesture (User Verification).

V

ValidateDuoAuthAPI - Class in net.shibboleth.idp.plugin.authn.duo.impl
An action that checks for a DuoAuthenticationContext and directly produces an AuthenticationResult based on that identity by authenticating against the Duo AuthAPI.
ValidateDuoAuthAPI() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoAuthAPI
Constructor.
ValidateDuoResponseState - Class in net.shibboleth.idp.plugin.authn.duo.impl
Authentication action that validates the Duo response state parameter (which is required in the Duo flow) matches that in the 2FA request.
ValidateDuoResponseState() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoResponseState
 
ValidateDuoTokenAuthenticationResult - Class in net.shibboleth.idp.plugin.authn.duo.impl
A validation action that checks for a valid Duo authentication token and directly produces an AuthenticationResult based on the identity described by the token.
ValidateDuoTokenAuthenticationResult() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.ValidateDuoTokenAuthenticationResult
Constructor.
ValidateExternalAuthenticationContext - Class in net.shibboleth.idp.plugin.authn.duo.impl
An action that checks for an ExternalAuthenticationContext for a signaled event via the ExternalAuthenticationContext.getAuthnError() method.
ValidateExternalAuthenticationContext() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.ValidateExternalAuthenticationContext
 
ValidateTokenClaims - Class in net.shibboleth.idp.plugin.authn.duo.impl
Action that validates the claims of the Duo id_token using the supplied ClaimsValidator.
ValidateTokenClaims() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenClaims
 
ValidateTokenClaims.DuoOIDAuthenticationContextCleanupHook - Class in net.shibboleth.idp.plugin.authn.duo.impl
A cleanup hook that removes the 'nonce' parameter from the DuoOIDCAuthenticationContext so it could not be reused.
ValidateTokenSignature - Class in net.shibboleth.idp.plugin.authn.duo.impl
Action to validate the JWT signature.
ValidateTokenSignature() - Constructor for class net.shibboleth.idp.plugin.authn.duo.impl.ValidateTokenSignature
Constructor.
value - Variable in class net.shibboleth.idp.plugin.authn.duo.audit.impl.FixedStringAuditExtractor
The fixed string to log.
Version - Class in net.shibboleth.idp.plugin.authn.duo
Class for getting and printing the version of the plugin.
Version() - Constructor for class net.shibboleth.idp.plugin.authn.duo.Version
Constructor.
VERSION - Static variable in class net.shibboleth.idp.plugin.authn.duo.Version
Plugin version.

W

WebAuthnCredential - Class in net.shibboleth.idp.plugin.authn.duo.model
A WebAuthn credential registered to a User.
WebAuthnCredential(WebAuthnCredential.Builder) - Constructor for class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
Constructor.
WebAuthnCredential.Builder - Class in net.shibboleth.idp.plugin.authn.duo.model
Builder for this class.
webAuthnCredentials - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
webAuthnCredentials - Variable in class net.shibboleth.idp.plugin.authn.duo.model.User
The list of WebAuthn authenticators that this user can use.
webauthnkey - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
 
webauthnkey - Variable in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential
The WebAuthn credential's registration identifier.
withAaguid(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build a unique identifier that conveys the authenticator's make and model, or the passkey's provider identity.
withAccessToken(String) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
 
withAccessToken(String) - Method in interface net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.IAccessTokenStage
Supply the access token.
withAdditionalProperty(String, Object) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withAdditionalProperty(String, Object) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build any additional property not explicitly listed.
withBackupEligible(Boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build if this credential can be used from multiple devices.
withBackupStatus(Boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build if this credential has been backed up and can be used from multiple devices.
withCode(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
 
withCode(String) - Method in interface net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.IBuildStage
Set the code.
withCreated(Integer) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withCredentialName(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build the credential name
withDateAdded(Integer) - Method in class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken.Builder
 
withDateAdded(Integer) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build the date the WebAuthn credential was last used
withEmail(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withExpiresIn(Integer) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
 
withExpiresIn(Integer) - Method in interface net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.IBuildStage
Supply the expiration.
withFirstname(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withIdToken(String) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
 
withIdToken(String) - Method in interface net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.IIdTokenStage
Supply the ID token.
withIsEnrolled(Boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withLabel(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build the type of WebAuthn credential.
withLastDirectorySync(Object) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withLastLogin(Integer) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withLastname(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withLockoutReason(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withMessage(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
 
withMessage(String) - Method in interface net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.IBuildStage
Set the message.
withMessageDetail(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
 
withMessageDetail(String) - Method in interface net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.IBuildStage
Set the messageDetail.
withNotes(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withPasswordlessAuthorized(Boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build if this credential can be used for both MFA and Passwordless authentication.
withRealname(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withRefreshToken(String) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
 
withRefreshToken(String) - Method in interface net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.IBuildStage
Supply the refresh token.
withRegisteredAs(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build the registration flow that was used to register this WebAuthn credential.
withRegistrationId(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.U2ftoken.Builder
 
withResponse(DuoHealthCheckResponse) - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
 
withResponse(DuoHealthCheckResponse) - Method in interface net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.IBuildStage
Set the response.
withScope(String) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
 
withScope(String) - Method in interface net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.IBuildStage
Supply the scope.
withStatus(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
 
withStatus(String) - Method in interface net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.IStatusStage
Set the status.
withStatus(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withTimestamp(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.Builder
 
withTimestamp(String) - Method in interface net.shibboleth.idp.plugin.authn.duo.model.DuoHealthCheck.IBuildStage
Set the timestamp.
withTokenType(String) - Method in class net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.Builder
 
withTokenType(String) - Method in interface net.shibboleth.idp.plugin.authn.duo.nimbus.impl.TokenResponse.ITokenTypeStage
Supply the token type.
withTransports(List<String>) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build the transports the authenticator can use to communicate with a client.
withU2ftokens(List<U2ftoken>) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withUserId(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withUsername(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withUvCapable(Boolean) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build if the WebAuthn authenticator associated with this credential is capable of identifying a user via a suitable authorization gesture.
withWebAuthnCredentials(List<WebAuthnCredential>) - Method in class net.shibboleth.idp.plugin.authn.duo.model.User.Builder
 
withWebauthnkey(String) - Method in class net.shibboleth.idp.plugin.authn.duo.model.WebAuthnCredential.Builder
Build the WebAuthn credential's registration identifier.
wrapperTypeRef - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoAuthAuthenticator
a TypeReference for the repsonse generated by the endpoint.
wrapperTypeRef - Variable in class net.shibboleth.idp.plugin.authn.duo.impl.DuoPreauthAuthenticator
TypeReference for the response generated by the endpoint.
writeCookie(String) - Method in class net.shibboleth.idp.plugin.authn.duo.PasswordlessCookieManager
Creates a fresh cookie for a given username (or a placeholder if null to indicate the negative).
A B C D E F G H I L M N O P R S T U V W 
All Classes and Interfaces|All Packages|Constant Field Values|Serialized Form