No description provided.
If you use the getMBeanInfo
operation in MBeanTypeServiceMBean, supply the following value as this MBean's fully qualified interface name:
weblogic.security.providers.saml.SAMLIdentityAsserterMBean
No factory methods. Instances of this MBean are created automatically.
Because this MBean extends or implements AuthenticationProviderMBean, you can also access this MBean by retrieving AuthenticationProviderMBeans. The following attributes contain AuthenticationProviderMBeans and its subtypes:
|
This section describes attributes that contain child MBeans. For more information about the MBean hierarchy, refer to WebLogic Server MBean Data Model.
|
Returns the realm that contains this security provider. Returns null if this security provider is not contained by a realm.
Factory Methods | No explicit creator method. The child shares the lifecycle of its parent. |
Privileges | Read only |
Type | RealmMBean |
This section describes the following attributes:
The token types active for this SAML Identity Assertion provider.
Privileges | Read/Write |
Type | class java.lang.String[] |
Default Value | SAML.Assertion SAML.Assertion64 SAML.Assertion.DOM |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Enable ARTIFACT profile.
Privileges | Read/Write |
Type | boolean |
Configuration for assertions generated by this SAML authority.Assertions are configured in key=value format. You may find it convenient to write your assertion configuration in a text editor and paste it into the Assertion Configuration field.
Privileges | Read/Write |
Type | java.util.Properties |
Default Value | {} |
Consumer URIs to listen on.
Privileges | Read/Write |
Type | class java.lang.String[] |
Default Value | /samlacs/acs |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Base64 decoding is not required for the WebLogic SAML Identity Assertion provider.
Privileges | Read/Write |
Type | boolean |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
A short description of this SAML Identity Assertion provider.
Privileges | Read only |
Type | java.lang.String |
Default Value | WebLogic SAML Identity Assertion Provider. Supports Security Assertion Markup Language v1.1. |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Enforce a one-use policy for POST profile assertions.
Privileges | Read/Write |
Type | boolean |
The minimum number of parsers to maintain in the parser pool.
Privileges | Read/Write |
Type | int |
Default Value | 5 |
Minimum value | 0 |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Privileges | Read only |
Type | java.lang.String |
Default Value | SAMLIdentityAsserter |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
The name of the Java class that maps SAML Assertion name information to local Subjects. When no mapper is supplied the default mapper implemention is used.
Privileges | Read/Write |
Type | java.lang.String |
Default Value |
Enable POST profile.
Privileges | Read/Write |
Type | boolean |
The name of the Java class used to load the SAML Identity Assertion provider.
Privileges | Read only |
Type | java.lang.String |
Default Value | weblogic.security.providers.saml.SAMLIdentityAsserterProviderImpl |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
When true, the recipient of the SAML Response must match the URL in the HTTP Request
Privileges | Read/Write |
Type | boolean |
Default Value | true |
No description provided.
Privileges | Read/Write |
Type | java.util.Properties |
Default Value | {} |
A certificate registry always exports all the certificates in the registry thus does not support export constraints.
Privileges | Read only |
Type | class java.lang.String[] |
Default Value | |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
A certificate registry exports trusted CAs to a JKS keystore. The keystore must not already exist.
Privileges | Read only |
Type | class java.lang.String[] |
Default Value | JKS KeyStore |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
A certificate registry always imports all the certificates in a keystore (identities and trusted CAs) thus does not support export constraints.
Privileges | Read only |
Type | class java.lang.String[] |
Default Value | |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
A certificate registry imports trusted CAs from a JKS keystore.
Privileges | Read only |
Type | class java.lang.String[] |
Default Value | JKS KeyStore |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
The token types supported by this SAML Identity Assertion provider.
Privileges | Read only |
Type | class java.lang.String[] |
Default Value | SAML.Assertion SAML.Assertion64 SAML.Assertion.DOM |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
The class that implements persistent storage for the POST profile used assertion cache.The UsedAssertionCache class is used to enforce a one-use policy for POST profile assertions.
Privileges | Read/Write |
Type | java.lang.String |
Default Value | |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Properties passed to the UsedAssertionCache class init() method. This may be useful if you have implemented a custom UsedAssertionCache class.
Privileges | Read/Write |
Type | java.util.Properties |
Default Value | {} |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
The version number of this SAML Identity Assertion provider.
Privileges | Read only |
Type | java.lang.String |
Default Value | 1.0 |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
This section describes the following operations:
Advances the list to the next element in the list.
Operation Name | "advance" |
Parameters | Object [] {
cursor }
where:
|
Signature | String [] {
"java.lang.String" } |
Returns |
void
|
weblogic.management.utils.InvalidCursorException
Determines whether or not an alias exists in the registry. Throws InvalidParameterException if alias is empty or null.
Operation Name | "aliasExists" |
Parameters | Object [] {
alias }
where:
|
Signature | String [] {
"java.lang.String" } |
Returns |
boolean
|
weblogic.management.utils.InvalidParameterException
Indicates that the caller is finished using the list, and that the resources held on behalf of the list may be released. If the caller traverses through all the elements in the list, the caller need not call this method. In other words, it is used to let the caller close the list without reading each element that is returned.
Operation Name | "close" |
Parameters | Object [] {
cursor }
where:
|
Signature | String [] {
"java.lang.String" } |
Returns |
void
|
weblogic.management.utils.InvalidCursorException
writes a certificate in the registry to a file in DER binary format. Throws InvalidParameterException if alias or certificateFile is empty or null or if the file cannot be written to.
Operation Name | "copyToDER" |
Parameters | Object [] {
alias, certificateFile }
where:
|
Signature | String [] {
"java.lang.String",
"java.lang.String" } |
Returns |
void
|
weblogic.management.utils.NotFoundException
weblogic.management.utils.InvalidParameterException
writes a certificate in the registry to a file in PEM base64 encoded format. Throws InvalidParameterException if alias or certificateFile is empty or null or if the file cannot be written to.
Operation Name | "copyToPEM" |
Parameters | Object [] {
alias, certificateFile }
where:
|
Signature | String [] {
"java.lang.String",
"java.lang.String" } |
Returns |
void
|
weblogic.management.utils.NotFoundException
weblogic.management.utils.InvalidParameterException
Exports provider specific data in a specified format. When
errors occur, the MBean throws an ErrorCollectionException
containing a list of java.lang.Exceptions
, where the
text of each exception describes the error.
Operation Name | "exportData" |
Parameters | Object [] {
format, filename, constraints }
where:
|
Signature | String [] {
"java.lang.String",
"java.lang.String",
"java.util.Properties" } |
Returns |
void
|
weblogic.management.utils.InvalidParameterException
weblogic.management.utils.ErrorCollectionException
Retrieves a certificate from the registry.Throws NotFoundException if alias does not exist in the registry.
Operation Name | "getCertificate" |
Parameters | Object [] {
alias }
where:
|
Signature | String [] {
"java.lang.String" } |
Returns | X509Certificate
|
weblogic.management.utils.NotFoundException
weblogic.management.utils.InvalidParameterException
The name of the current item in the list. Returns null if there is no current item.
Operation Name | "getCurrentName" |
Parameters | Object [] {
cursor }
where:
|
Signature | String [] {
"java.lang.String" } |
Returns | String
|
weblogic.management.utils.InvalidCursorException
Returns true if there are more objects in the list, and false otherwise.
Operation Name | "haveCurrent" |
Parameters | Object [] {
cursor }
where:
|
Signature | String [] {
"java.lang.String" } |
Returns |
boolean
|
weblogic.management.utils.InvalidCursorException
Imports provider specific data from a specified format. When
errors occur, the MBean throws an ErrorCollectionException
containing a list of java.lang.Exceptions
, where the
text of each exception describes the error.
Operation Name | "importData" |
Parameters | Object [] {
format, filename, constraints }
where:
|
Signature | String [] {
"java.lang.String",
"java.lang.String",
"java.util.Properties" } |
Returns |
void
|
weblogic.management.utils.InvalidParameterException
weblogic.management.utils.ErrorCollectionException
Lists the registered aliases that match a wild card.Returns a String containing a cursor that may be passed into the NameListerMBean methods to read the list. The getCurrentName method returns the current alias on the list.
Operation Name | "listAliases" |
Parameters | Object [] {
aliasWildcard, maxToReturn }
where:
|
Signature | String [] {
"java.lang.String",
"java.lang.Integer" } |
Returns | String
|
weblogic.management.utils.InvalidCursorException
weblogic.management.utils.InvalidParameterException
Registers an end certificate in the registry under an alias. Throws InvalidParameterException if the alias or certificateFile is empty or null or if the file does not exist or cannot be read.
Operation Name | "registerCertificate" |
Parameters | Object [] {
alias, certificateFile }
where:
|
Signature | String [] {
"java.lang.String",
"java.lang.String" } |
Returns |
void
|
weblogic.management.utils.AlreadyExistsException
weblogic.management.utils.InvalidParameterException
Unregisters an end certificate from the registry. Throws InvalidParameterException if alias is empty or null.
Operation Name | "unregisterCertificate" |
Parameters | Object [] {
alias }
where:
|
Signature | String [] {
"java.lang.String" } |
Returns |
void
|
weblogic.management.utils.NotFoundException
weblogic.management.utils.InvalidParameterException
Operation Name | "wls_getDisplayName" |
Parameters | null |
Signature | null |
Returns | String
|