Skip navigation links

com.bea.security.saml2.providers.registry
Interface WebSSOIdPPartner

All Superinterfaces:

BindingClientPartner, IdPPartner, MetadataPartner, Partner, Serializable, WebSSOPartner

public interface WebSSOIdPPartner

extends WebSSOPartner, IdPPartner

Abstract representation of a SAML 2.0 Identity Provider partner for Web SSO profile.

Field Summary

Fields inherited from interface com.bea.security.saml2.providers.registry.Partner

ASSERTION_TYPE_BEARER, ASSERTION_TYPE_HOLDER_OF_KEY, ASSERTION_TYPE_SENDER_VOUCHES

Fields inherited from interface com.bea.security.saml2.providers.registry.Partner

ASSERTION_TYPE_BEARER, ASSERTION_TYPE_HOLDER_OF_KEY, ASSERTION_TYPE_SENDER_VOUCHES

Method Summary

abstract String[]	getRedirectURIs() Gets the Redirect URIs.
abstract Endpoint[]	getSingleSignOnService() Gets the Single Sign On Service end points for this partner.
abstract boolean	isWantAuthnRequestsSigned() Gets the flag that indicates if this partner expects to receive signed <AuthnRequest> documents.
abstract void	setRedirectURIs(String[] redirectURIs) Sets the Redirect URIs.
abstract void	setSingleSignOnService(Endpoint[] endpoints) Sets the Single Sign On Service end points for this partner.
abstract void	setWantAuthnRequestsSigned(boolean wantAuhtnRequestsSigned) Sets the want <AuthnRequest> signed flag.

Methods inherited from interface com.bea.security.saml2.providers.registry.WebSSOPartner

getArtifactBindingPostForm, getArtifactResolutionService, getPostBindingPostForm, getSSOSigningCert, isArtifactBindingUsePOSTMethod, isWantArtifactRequestSigned, setArtifactBindingPostForm, setArtifactBindingUsePOSTMethod, setArtifactResolutionService, setPostBindingPostForm, setSSOSigningCert, setWantArtifactRequestSigned

Methods inherited from interface com.bea.security.saml2.providers.registry.MetadataPartner

getContactPersonCompany, getContactPersonEmailAddress, getContactPersonGivenName, getContactPersonSurName, getContactPersonTelephoneNumber, getContactPersonType, getEntityID, getErrorURL, getOrganizationName, getOrganizationURL, setContactPersonCompany, setContactPersonEmailAddress, setContactPersonGivenName, setContactPersonSurName, setContactPersonTelephoneNumber, setContactPersonType, setEntityID, setErrorURL, setOrganizationName, setOrganizationURL

Methods inherited from interface com.bea.security.saml2.providers.registry.Partner

getAudienceURIs, getDescription, getName, isEnabled, isNameModified, setAudienceURIs, setDescription, setEnabled, setName

Methods inherited from interface com.bea.security.saml2.providers.registry.BindingClientPartner

getClientPasswordEncrypted, getClientUsername, getTransportLayerClientCert, isClientPasswordSet, setClientPassword, setClientUsername, setTransportLayerClientCert

Methods inherited from interface com.bea.security.saml2.providers.registry.Partner

getAudienceURIs, getDescription, getName, isEnabled, isNameModified, setAudienceURIs, setDescription, setEnabled, setName

Methods inherited from interface com.bea.security.saml2.providers.registry.IdPPartner

getIdentityProviderNameMapperClassname, getIssuerURI, isProcessAttributes, isVirtualUserEnabled, isWantAssertionsSigned, setIdentityProviderNameMapperClassname, setIssuerURI, setProcessAttributes, setVirtualUserEnabled, setWantAssertionsSigned

Method Detail

isWantAuthnRequestsSigned

boolean isWantAuthnRequestsSigned()

Gets the flag that indicates if this partner expects to receive signed <AuthnRequest> documents.

At SAML2 Service Provider site, <AuthnRequest> sent to this partner will be signed if this flag or local site SingleSignOnServicesMBean.SignAuthnRequest is set to true.

Returns:

true if this partner expects <AuthnRequest> documents to be signed

setWantAuthnRequestsSigned

void setWantAuthnRequestsSigned(boolean wantAuhtnRequestsSigned)

Sets the want <AuthnRequest> signed flag.

Parameters:

wantAuhtnRequestsSigned - the want <AuthnRequest> signed flag to set

See Also:

WebSSOIdPPartner.isWantAuthnRequestsSigned()

getRedirectURIs

String[] getRedirectURIs()

Gets the Redirect URIs. Unauthenticated users accessing these URIs are logged-in using SSO with this partner.

Returns:

the Redirect URIs

See Also:

WebSSOIdPPartner.setRedirectURIs(String[])

setRedirectURIs

void setRedirectURIs(String[] redirectURIs)

Sets the Redirect URIs. This is an array of URIs identifying resources on the server. The URIs must include the resource's application context. Unauthenticated users accessing these URIs will be logged-in using SSO with this partner.

The URI supports wildcard pattern. The URL mapping rules honor Servlet spec. All mapping rules are case-sensitive for string comparisons as default.

Specification of wildcard mapping:
1. A pattern node with a '/*' is used for path mapping.
2. A pattern node with a '*.' prefix is used as an extension mapping.
3. In a pattern, both wildcard path mapping and wildcard extension mapping are supported.

Parameters:

redirectURIs - the Redirect URIs to set

getSingleSignOnService

Endpoint[] getSingleSignOnService()

Gets the Single Sign On Service end points for this partner.

Returns:

the Single Sign On Service end points of this partner, which should not be null for a valid partner

setSingleSignOnService

void setSingleSignOnService(Endpoint[] endpoints)

Sets the Single Sign On Service end points for this partner.

Parameters:

endpoints - the Single Sign On Service end points to set

See Also:

Endpoint

Skip navigation links