Shibboleth Identity Provider 4.3.0 API
Packages
Package
Description
Classes in this package are to do with emulating the V2 scripted
attribute environment.
Root package for IdP, contains a couple base/utility classes.
Classes supporting administrative interface machinery.
Implementation classes for administrative profiles.
IdPAttributes are protocol-agnostic
units of information about some thing, usually a user.Context to do with Attribute Manipulation.
This package contains a filtering engine for a collection of
IdPAttributes.The contexts to do with attribute filtering.
Implementations of core attribute filter functionality.
Implementation of the various policy matchers.
Implementation of the logical attribute matchers.
This is where the attribute matchers that understand SAML live.
Implementation of the filter context matchers Matchers.
Classes which implement
PolicyRequirementRule.Implementation of the logical Policy Rules.
This is where the attribute policy rules that understand SAML live.
The base class for filter other parser is located here.
Parsers for the top level of the "urn:mace:shibboleth:2.0:afp:mf:basic" namespace.
Parsers for the top level of the "urn:mace:shibboleth:2.0:afp" namespace.
Base class for parsers parse beans which are natural "Matchers" (that is to say that
they look at attribute values).
Classes which parse beans which are natural "Matchers" (that is to say that they look at attribute values).
Base parser for filters that are natural policy rules (that is to make their
decisions based on the context, not the attribute values are implemented.
This is where the parsers for filters that are natural policy rules (that is to make their
decisions based on the context, not the attribute values are implemented.
Parsers for the top level of the "urn:mace:shibboleth:2.0:saml" namespace.
Implementations of general attribute functionality.
A system which is capable of retrieving a collection of
IdPAttributes from a variety of locations, transform them,
and associate a set of protocol-specific encoders to them.Implementations of various
AttributeDefinitions.A
DataConnector implementation that maps from a given set of
source value to an output value.The context to do with Attribute Resolution.
Functions for navigating attribute resolution contexts.
Interfaces supporting data connectors.
Package for http data connector configuration.
A
DataConnector implementation that
reads data from an HTTP web service.Common functionality used by data connectors.
Package for LDAP data connector configuration.
A
DataConnector implementation that reads data from an LDAP.Package for rdbms data connector configuration.
A
DataConnector implementation that reads data from a relational
database.StorageService-backed data connector APIs.
Implementation of StorageService-backed data connector.
Implementations of core resolver functionality.
Predicates related to attribute resolution.
This Package contains interface definitions exported to ECMAScript.
Classes in this package are to do with parsing the attribute resolver definitions
associated with schema urn\mace:shibboleth:2.0:resolver.
Classes in this package are to do with parsing the attribute resolver definitions
associated with schema urn\mace:shibboleth:2.0:resolver:ad.
Implementation of the Attribute Definition parsers.
Contains the parsers for the
MappedAttributeDefinition
and its child elements.Supported base class for the implementation of specific DataConnector parsers.
The parser for the HTTP Data connector.
Implementation of specific DataConnector parsers.
The parser for the LDAP Data connector.
The parser for the RDBMS Data connector.
Parser for StorageService data connector.
Parsers for the urn:mace:shibboleth:2.0:attribute:encoder namespace.
Implememtation of atttribute encoders.
Implementation of top level attribute resolvers.
APIs for transcoding of attributes.
Implementation classes for attribute transcoding.
APIs related to the authentication of a subject.
Audit implementation classes.
Configuration touchpoints for authentication flows.
Functions for traversing authentication configurations.
Context classes for managing authentication-related state.
Functions for traversing authentication contexts.
Public APIs related to Duo authentication.
Context classes related to Duo authentication.
Implementation of Duo authentication.
Implementation of various authentication actions.
Classes supporting Java
Principal usage.Implementation of functionality related to Java Principals.
Classes implementing proxied authentication flows.
Predicates related to authentication.
Implementation of SPNEGO authentication flow.
APIs for CAS attribute support.
Implementation classes for CAS attribute support.
CAS protocol audit implementations.
CAS protocol configuration implementations.
CAS protocol flow implementations.
APIs related to the CAS protocol.
APIs related to CAS proxies.
CAS protocol proxy implementations.
APIs related to CAS services.
CAS protocol service implementations.
CAS protocol session implementations.
APIs related to CAS tickets.
CAS protocol ticket implementations.
CAS protocol ticket serialization implementations.
Command line drivers and utilities.
Classed related to consent.
Classes implementing consent-specific audit log behavior.
Context classes related to consent flows.
Actions and flow descriptors related to attribute release consent.
Actions and flow descriptors related to consent.
Actions related to consent storage.
Predicates and functions related to attribute consent.
Storage and serialization classes related to attribute consent.
Classes available for installation.
Targets for Ant.
Implementation classes for installation.
Package to contain classes to do with the one off metadata generation.
Classes for handling plugins.
IdP logging setup and management classes.
Classes supporting code instrumentation.
Implementation classes supporting code instrumentation.
APIs for representing units of IdP functionality as modules.
Administrative modules.
Authentication modules.
Implementation classes supporting module system.
Interceptor modules.
Profile modules.
Classes and interfaces related to the persistence of IdP data.
A set of APIs of general use in building IdP plugins.
Implementation classes for plugins.
Common APIs for handling profile requests.
Audit implementation classes.
Classes pertaining to request-time profile configuration options.
Predicates related to profile configuration.
Functions to navigate into profile configuration information.
Configuration navigation for IdP-specific messaging configuration.
Context classes for IdP-specific information needed by profile actions.
Functions dealing with traversing and extracting data from profile request contexts.
Context navigation for IdP-specific messaging contexts.
Functional classes for profile behavior.
Implementations of various profile actions.
Classes supporting profile interceptor machinery.
Implementation of a profile interceptor flow which executes other flows.
Functions and predicates supporting other profile components.
Predicates for IdP-specific messaging profiles.
Implementations of various message handlers.
IdP factory bean implementations.
Parsers for the urn:mace:shibboleth:2.0:metadata schema.
Implementations of MetadataProvider Filter Parsers.
Implementations of the MetadataProviderParsers.
Parsers and bean factories to deal with the parsing of <Credential> elements.
Basis of all parsers in the
{link
net.shibboleth.idp.profile.spring.relyingparty.metadata.AbstractMetadataProviderParser#SECURITY_NAMESPACE
} schema.
Parsers to deal with <security:TrustEngine>.
Spring parsers for legacy Classpath and SVN resources.
Support classes for profile behavior.
APIs for retrieving the per-relying party configuration for a given profile request.
Implementation of APIs for describing a relying party and its configuration.
Implementations of SAML related
AttributeDefinition
and DataConnector.Base classes for SAML
AttributeTranscoder classes.Implementations of SAML transcoders.
Classes implementing SAML-specific audit log behavior.
Context tree subtypes in support of SAML-related authentication.
SAML-specific classes for integration with idp-authn-api packages.
Implementation classes supporting SAML-related Principal objects.
Classes related to SAML bindings.
Profile configurations for Liberty ID-WSF profiles.
Message handlers common to SAML 1 and SAML 2 processing.
This package contains such public class definitions as are needed to
bridge between the relying-party.xml schema and OpenSAML.
This package contains such class definitions as are needed to
bridge between the relying-party.xml schema and OpenSAML.
Code for manipulating NameIDs and NameIdentifiers.
Implementation of SAML
NameID and
NameIdentifier generation and consumption.Common APIs for SAML profile actions.
Functionality and base classes common to both SAML 1 and 2 profile configuration.
Implementations of logic/conditional SAML profile configuration components.
Implementations of logic/conditional SAML profile configuration components.
Functions to navigate into profile configuration information.
Functions for navigating SAML profile context objects.
Functions for navigating SAML message context objects.
Actions common to SAML 1 and SAML 2 processing.
Functions and predicates supporting SAML profile behavior.
Helpers for constructing
RelyingPartyConfiguration objects
with SAML-specific predicates.Profile configurations for SAML 1 profiles.
Profile processing actions related to SAML 1 messages.
Profile configurations for SAML 2 profiles.
Predicates related to SAML 2.0 profile configurations.
Functions to navigate into SAML 2 profile configuration information.
Profile processing components related to SAML 2 delegation.
Profile processing components related to SAML 2 delegation.
Profile processing components related to SAML 2 delegation messaging.
Profile processing actions related to SAML 2 messages.
Classes related to SAML security extensions.
Implementation classes for SAML-specific security functionality.
Classes related to use of SAML with the session layer.
Implementation classes for SAML-specific session functionality.
Shibboleth-specfic classes used with SAML messages.
OpenSAML XMLObject extensions.
Implementations of the SAML XMLObject extensions.
Classes that support the internal security of the IdP.
APIs related to the construction and management of sessions.
Context classes for managing session-related state.
Functions for traversing session-related contexts.
Criterion classes for session lookup.
Implementations of session-related classes and interfaces.
Functions and Predicates related to the use of sessions.
Classes for extending, or supporting, Spring based configuration and object management.
Context classes for information needed by the UI.
APIs relating to cross-site request forgery mitigations.
Implementation classes for cross-site request forgery mitigation.
Implementation classes for information needed by the UI.
Contains the code for the jsp taglibs.