Class SingleLogoutProfileConfiguration

All Implemented Interfaces:
ConditionalProfileConfiguration, ProfileConfiguration, SAMLArtifactAwareProfileConfiguration, SAMLArtifactConsumerProfileConfiguration, SAMLProfileConfiguration, SAML2ProfileConfiguration, Component, DestructableComponent, IdentifiableComponent, IdentifiedComponent, InitializableComponent

public class SingleLogoutProfileConfiguration
extends AbstractSAML2ArtifactAwareProfileConfiguration
Configuration support for SAML 2 Single Logout.
  • Field Details

    • PROFILE_ID

      @Nonnull @NotEmpty public static final String PROFILE_ID
      ID for this profile configuration.
      See Also:
      Constant Field Values
    • signSOAPRequestsPredicate

      @Nonnull private Predicate<MessageContext> signSOAPRequestsPredicate
      Predicate used to determine if SOAP-based requests should be signed.
    • clientTLSSOAPRequestsPredicate

      @Nonnull private Predicate<MessageContext> clientTLSSOAPRequestsPredicate
      Predicate used to determine if SOAP-based requests should use client TLS.
    • qualifiedNameIDFormatsLookupStrategy

      @Nonnull private Function<ProfileRequestContext,​Collection<String>> qualifiedNameIDFormatsLookupStrategy
      Lookup function to supply qualifiedNameIDFormats property.
  • Constructor Details

    • SingleLogoutProfileConfiguration

      public SingleLogoutProfileConfiguration()
      Constructor.
    • SingleLogoutProfileConfiguration

      protected SingleLogoutProfileConfiguration​(@Nonnull @NotEmpty String profileId)
      Constructor.
      Parameters:
      profileId - unique ID for this profile
  • Method Details

    • isSignSOAPRequests

      public boolean isSignSOAPRequests​(@Nullable MessageContext messageContext)
      Get whether SOAP-based requests should be signed.
      Parameters:
      messageContext - current message context
      Returns:
      whether SOAP-based requests should be signed
      Since:
      4.0.0
    • setSignSOAPRequests

      public void setSignSOAPRequests​(boolean flag)
      Set whether SOAP-based requests should be signed.
      Parameters:
      flag - flag to set
      Since:
      4.0.0
    • setSignSOAPRequestsPredicate

      public void setSignSOAPRequestsPredicate​(@Nonnull Predicate<MessageContext> predicate)
      Set the predicate used to determine if SOAP-based requests should be signed.
      Parameters:
      predicate - the predicate
      Since:
      4.0.0
    • isClientTLSSOAPRequests

      public boolean isClientTLSSOAPRequests​(@Nullable MessageContext messageContext)
      Get whether SOAP-based requests should use client TLS.
      Parameters:
      messageContext - current message context
      Returns:
      whether SOAP-based requests should use client TLS
      Since:
      4.0.0
    • setClientTLSSOAPRequests

      public void setClientTLSSOAPRequests​(boolean flag)
      Set whether SOAP-based requests should use client TLS.
      Parameters:
      flag - flag to set
      Since:
      4.0.0
    • setClientTLSSOAPRequestsPredicate

      public void setClientTLSSOAPRequestsPredicate​(@Nonnull Predicate<MessageContext> predicate)
      Set the predicate used to determine if SOAP-based requests should use client TLS.
      Parameters:
      predicate - the predicate
      Since:
      4.0.0
    • getQualifiedNameIDFormats

      @Nonnull @NonnullElements @NotLive public Collection<String> getQualifiedNameIDFormats​(@Nullable ProfileRequestContext profileRequestContext)
      Get a collection of NameID Format values for which the use of the NameQualifier and SPNameQualifier attributes is defined to allow default/implicit values derived from the asserting and relying parties.

      In the core standard, only the NameIDType.PERSISTENT and NameIDType.TRANSIENT Formats are defined in this manner. This setting identifies additional Formats that should be handled in this way.

      Parameters:
      profileRequestContext - current profile request context
      Returns:
      additional Formats for which defaulting of qualifiers is permissable
      Since:
      3.4.0
    • setQualifiedNameIDFormats

      public void setQualifiedNameIDFormats​(@Nullable @NonnullElements Collection<String> formats)
      Set a collection of NameID Format values for which the use of the NameQualifier and SPNameQualifier attributes is defined to allow default/implicit values derived from the asserting and relying parties.

      In the core standard, only the NameIDType.PERSISTENT and NameIDType.TRANSIENT Formats are defined in this manner. This setting identifies additional Formats that should be handled in this way.

      Parameters:
      formats - additional Formats for which defaulting of qualifiers is permissable
      Since:
      3.4.0
    • setQualifiedNameIDFormatsLookupStrategy

      public void setQualifiedNameIDFormatsLookupStrategy​(@Nonnull Function<ProfileRequestContext,​Collection<String>> strategy)
      Set a lookup strategy for the Format values for which the use of the NameQualifier and SPNameQualifier attributes is defined to allow default/implicit values derived from the asserting and relying parties.
      Parameters:
      strategy - lookup strategy
      Since:
      3.4.0