SAMLAuthenticationProvider (Nuxeo ECM Projects 7.10 API)

java.lang.Object
- org.nuxeo.ecm.platform.auth.saml.SAMLAuthenticationProvider

All Implemented Interfaces:: NuxeoAuthenticationPlugin, NuxeoAuthenticationPluginLogoutExtension, LoginProviderLinkComputer

public class SAMLAuthenticationProvider
extends Object
implements NuxeoAuthenticationPlugin, LoginProviderLinkComputer, NuxeoAuthenticationPluginLogoutExtension

A SAML2 authentication provider.

Since:: 6.0

Constructor Summary

Constructors
Constructor and Description

SAMLAuthenticationProvider()

Constructors
Constructor and Description
`SAMLAuthenticationProvider()`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`String`	`computeUrl(javax.servlet.http.HttpServletRequest request, String requestedUrl)` Compute Url that should be used to login via this login provider.
`protected SAMLBinding`	`getBinding(org.opensaml.ws.transport.InTransport transport)`
`protected SAMLBinding`	`getBinding(String bindingURI)`
`protected AbstractSAMLProfile`	`getProcessor(org.opensaml.common.binding.SAMLMessageContext context)`
`protected String`	`getSLOUrl(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)` Returns a Logout URL to use with HTTP Redirect
`protected String`	`getSSOUrl(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)` Returns a Login URL to use with HTTP Redirect
`List<String>`	`getUnAuthenticatedURLPrefix()` Returns the list of prefix for unauthenticated URLs, typically the URLs associated to login prompt.
`Boolean`	`handleLoginPrompt(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, String baseURL)` Handles the Login Prompt.
`Boolean`	`handleLogout(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)` Handles logout operation.
`UserIdentificationInfo`	`handleRetrieveIdentity(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)` Retrieves user identification information from the request.
`void`	`initPlugin(Map<String,String> parameters)` Initializes the Plugin from parameters set in the XML descriptor.
`Boolean`	`needLoginPrompt(javax.servlet.http.HttpServletRequest httpRequest)` Defines if the authentication plugin needs to do a login prompt.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - SAMLAuthenticationProvider
```
public SAMLAuthenticationProvider()
```
- Method Detail
  - initPlugin
```
public void initPlugin(Map<String,String> parameters)
```
    Description copied from interface: NuxeoAuthenticationPlugin
    
    Initializes the Plugin from parameters set in the XML descriptor.
    
    Specified by:
    
    initPlugin in interface NuxeoAuthenticationPlugin
  - getSSOUrl
```
protected String getSSOUrl(javax.servlet.http.HttpServletRequest request,
                           javax.servlet.http.HttpServletResponse response)
```
    Returns a Login URL to use with HTTP Redirect
  - computeUrl
```
public String computeUrl(javax.servlet.http.HttpServletRequest request,
                         String requestedUrl)
```
    Description copied from interface: LoginProviderLinkComputer
    
    Compute Url that should be used to login via this login provider. Because the url can depend onb the context, it is computed by this method rather than using a static property
    
    Specified by:
    
    computeUrl in interface LoginProviderLinkComputer
    
    Returns:
  - handleLoginPrompt
```
public Boolean handleLoginPrompt(javax.servlet.http.HttpServletRequest request,
                                 javax.servlet.http.HttpServletResponse response,
                                 String baseURL)
```
    Description copied from interface: NuxeoAuthenticationPlugin
    
    Handles the Login Prompt.
    
    Specified by:
    
    handleLoginPrompt in interface NuxeoAuthenticationPlugin
    
    Parameters:
    
    request - the request
    
    response - the response
    
    Returns:
    
    true if AuthFilter must stop execution (ie: login prompt generated a redirect), false otherwise
  - handleRetrieveIdentity
```
public UserIdentificationInfo handleRetrieveIdentity(javax.servlet.http.HttpServletRequest request,
                                                     javax.servlet.http.HttpServletResponse response)
```
    Description copied from interface: NuxeoAuthenticationPlugin
    
    Retrieves user identification information from the request.
    
    Specified by:
    
    handleRetrieveIdentity in interface NuxeoAuthenticationPlugin
    
    Parameters:
    
    request - the request
    
    response - the response
  - getProcessor
```
protected AbstractSAMLProfile getProcessor(org.opensaml.common.binding.SAMLMessageContext context)
```
  - getBinding
```
protected SAMLBinding getBinding(String bindingURI)
```
  - getBinding
```
protected SAMLBinding getBinding(org.opensaml.ws.transport.InTransport transport)
```
  - needLoginPrompt
```
public Boolean needLoginPrompt(javax.servlet.http.HttpServletRequest httpRequest)
```
    Description copied from interface: NuxeoAuthenticationPlugin
    
    Defines if the authentication plugin needs to do a login prompt.
    
    Specified by:
    
    needLoginPrompt in interface NuxeoAuthenticationPlugin
    
    Returns:
    
    true if LoginPrompt is used
  - getUnAuthenticatedURLPrefix
```
public List<String> getUnAuthenticatedURLPrefix()
```
    Description copied from interface: NuxeoAuthenticationPlugin
    
    Returns the list of prefix for unauthenticated URLs, typically the URLs associated to login prompt.
    
    Specified by:
    
    getUnAuthenticatedURLPrefix in interface NuxeoAuthenticationPlugin
  - getSLOUrl
```
protected String getSLOUrl(javax.servlet.http.HttpServletRequest request,
                           javax.servlet.http.HttpServletResponse response)
```
    Returns a Logout URL to use with HTTP Redirect
  - handleLogout
```
public Boolean handleLogout(javax.servlet.http.HttpServletRequest request,
                            javax.servlet.http.HttpServletResponse response)
```
    Description copied from interface: NuxeoAuthenticationPluginLogoutExtension
    
    Handles logout operation.
    Generic logout (killing session and Seam objects) is done by LogoutActionBean This interface must be implemented by auth plugin when the target auth system needs a specific logout procedure.
    
    Specified by:
    
    handleLogout in interface NuxeoAuthenticationPluginLogoutExtension
    
    Returns:
    
    true if caller must stop execution (ie: logout generated a redirect), false otherwise

Class SAMLAuthenticationProvider

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

SAMLAuthenticationProvider

Method Detail

initPlugin

getSSOUrl

computeUrl

handleLoginPrompt

handleRetrieveIdentity

getProcessor

getBinding

getBinding

needLoginPrompt

getUnAuthenticatedURLPrefix

getSLOUrl

handleLogout