Class ValidateDuoWebResponse

All Implemented Interfaces:
PrincipalSupportingComponent, Component, DestructableComponent, InitializableComponent, ProfileAction, Aware, MessageSource, MessageSourceAware, Action

public class ValidateDuoWebResponse
extends AbstractValidationAction
An action that validates a DuoWeb response message and produces an AuthenticationResult or records error state.

The username to cross-check comes from a lookup strategy, by default a CanonicalUsernameLookupStrategy that returns a username produced by an earlier authentication flow, and on success the same name is populated into a SubjectCanonicalizationContext as a pre-established result for the login flow.

Since:
3.3.0
Event:
EventIds.PROCEED_EVENT_ID, EventIds.INVALID_PROFILE_CTX, AuthnEventIds.INVALID_CREDENTIALS, AuthnEventIds.NO_CREDENTIALS
Postcondition:
ProfileRequestContext.getSubcontext(SubjectCanonicalizationContext.class).getPrincipalName() != null
  • Field Details

  • Constructor Details

    • ValidateDuoWebResponse

      public ValidateDuoWebResponse()
      Constructor.
  • Method Details