Interface AuthenticationProfileConfiguration

    • Method Detail

      • getDefaultAuthenticationMethods

        @Nonnull
        @NonnullElements
        @NotLive
        @Unmodifiable
        List<Principal> getDefaultAuthenticationMethods​(@Nullable
                                                        ProfileRequestContext profileRequestContext)
        Get the default authentication methods to use, expressed as custom principals.
        Parameters:
        profileRequestContext - current profile request context
        Returns:
        default authentication methods to use
      • isForceAuthn

        boolean isForceAuthn​(@Nullable
                             ProfileRequestContext profileRequestContext)
        Get whether the authentication process should include a proof of user presence.
        Parameters:
        profileRequestContext - current profile request context
        Returns:
        true iff authentication should require user presence
        Since:
        4.0.0
      • getProxyCount

        @NonNegative
        @Nullable
        Integer getProxyCount​(@Nullable
                              ProfileRequestContext profileRequestContext)
        Gets the maximum number of times an assertion may be proxied outbound and/or the maximum number of hops between the relying party and a proxied authentication authority inbound.
        Parameters:
        profileRequestContext - current profile request context
        Returns:
        maximum number of times an assertion or authentication may be proxied
        Since:
        4.0.0
      • isLocal

        default boolean isLocal()
        Get whether this profile is for functionality local to the IdP.

        Most authentication profiles are non-local, designed to issue security tokens to other systems, so this is generally false.

        Returns:
        true iff the use of the associated profile is local to the IdP