Class EncryptAttributes

All Implemented Interfaces:
Component, DestructableComponent, InitializableComponent, ProfileAction

public class EncryptAttributes
extends AbstractEncryptAction
Action that encrypts all attributes in a Response message obtained from a lookup strategy, by default the outbound message context.
All SAML attributes in any given statement in the response have been replaced with encrypted versions, or no changes are made to that statement. It's possible for some statements to be modified but others not if an error occurs.
  • Field Details

  • Constructor Details

    • EncryptAttributes

      public EncryptAttributes()
  • Method Details

    • setResponseLookupStrategy

      public void setResponseLookupStrategy​(@Nonnull Function<ProfileRequestContext,​StatusResponseType> strategy)
      Set the strategy used to locate the Response to operate on.
      strategy - strategy used to locate the Response to operate on
    • getApplicableParameters

      @Nullable protected EncryptionParameters getApplicableParameters​(@Nullable EncryptionContext ctx)
      Return the right set of parameters for the operation to be performed, or none if no encryption should occur.
      Specified by:
      getApplicableParameters in class AbstractEncryptAction
      ctx - possibly null input context to pull parameters from
      the right parameter set, or null for none
    • doPreExecute

      protected boolean doPreExecute​(@Nonnull ProfileRequestContext profileRequestContext)
      Called prior to execution, actions may override this method to perform pre-processing for a request.

      If false is returned, execution will not proceed, and the action should attach an EventContext to the context tree to signal how to continue with overall workflow processing.

      If returning successfully, the last step should be to return the result of the superclass version of this method.

      doPreExecute in class AbstractEncryptAction
      profileRequestContext - the current IdP profile request context
      true iff execution should proceed
    • doExecute

      protected void doExecute​(@Nonnull ProfileRequestContext profileRequestContext)
      Performs this action. Actions must override this method to perform their work.
      doExecute in class AbstractProfileAction
      profileRequestContext - the current IdP profile request context