com.bea.security.saml2.providers.registry

Interface WebSSOIdPPartner

All Superinterfaces:

BindingClientPartner, IdPPartner, MetadataPartner, Partner, Serializable, WebSSOPartner

public interface WebSSOIdPPartner
extends WebSSOPartner, IdPPartner

Abstract representation of a SAML 2.0 Identity Provider partner for Web SSO profile.

Field Summary

Fields inherited from interface com.bea.security.saml2.providers.registry.Partner

ASSERTION_TYPE_BEARER, ASSERTION_TYPE_HOLDER_OF_KEY, ASSERTION_TYPE_SENDER_VOUCHES

Method Summary

Modifier and Type	Method and Description
String[]	getRedirectURIs() Gets the Redirect URIs.
Endpoint[]	getSingleSignOnService() Gets the Single Sign On Service end points for this partner.
boolean	isWantAuthnRequestsSigned() Gets the flag that indicates if this partner expects to receive signed <AuthnRequest> documents.
void	setRedirectURIs(String[] redirectURIs) Sets the Redirect URIs.
void	setSingleSignOnService(Endpoint[] endpoints) Sets the Single Sign On Service end points for this partner.
void	setWantAuthnRequestsSigned(boolean wantAuhtnRequestsSigned) Sets the want <AuthnRequest> signed flag.

Methods inherited from interface com.bea.security.saml2.providers.registry.WebSSOPartner

getArtifactBindingPostForm, getArtifactResolutionService, getPostBindingPostForm, getSSOSigningCert, isArtifactBindingUsePOSTMethod, isWantArtifactRequestSigned, setArtifactBindingPostForm, setArtifactBindingUsePOSTMethod, setArtifactResolutionService, setPostBindingPostForm, setSSOSigningCert, setWantArtifactRequestSigned

Methods inherited from interface com.bea.security.saml2.providers.registry.MetadataPartner

getContactPersonCompany, getContactPersonEmailAddress, getContactPersonGivenName, getContactPersonSurName, getContactPersonTelephoneNumber, getContactPersonType, getEntityID, getErrorURL, getOrganizationName, getOrganizationURL, setContactPersonCompany, setContactPersonEmailAddress, setContactPersonGivenName, setContactPersonSurName, setContactPersonTelephoneNumber, setContactPersonType, setEntityID, setErrorURL, setOrganizationName, setOrganizationURL

Methods inherited from interface com.bea.security.saml2.providers.registry.BindingClientPartner

getClientPasswordEncrypted, getClientUsername, getTransportLayerClientCert, isClientPasswordSet, setClientPassword, setClientUsername, setTransportLayerClientCert

Methods inherited from interface com.bea.security.saml2.providers.registry.Partner

getAudienceURIs, getDescription, getName, isEnabled, isNameModified, setAudienceURIs, setDescription, setEnabled, setName

Methods inherited from interface com.bea.security.saml2.providers.registry.IdPPartner

getIdentityProviderNameMapperClassname, getIssuerURI, isProcessAttributes, isVirtualUserEnabled, isWantAssertionsSigned, setIdentityProviderNameMapperClassname, setIssuerURI, setProcessAttributes, setVirtualUserEnabled, setWantAssertionsSigned

Method Detail

isWantAuthnRequestsSigned

boolean isWantAuthnRequestsSigned()

Gets the flag that indicates if this partner expects to receive signed <AuthnRequest> documents.

At SAML2 Service Provider site, <AuthnRequest> sent to this partner will be signed if this flag or local site SingleSignOnServicesMBean.SignAuthnRequest is set to true.

Returns:

true if this partner expects <AuthnRequest> documents to be signed

setWantAuthnRequestsSigned

void setWantAuthnRequestsSigned(boolean wantAuhtnRequestsSigned)

Sets the want <AuthnRequest> signed flag.

Parameters:

wantAuhtnRequestsSigned - the want <AuthnRequest> signed flag to set

See Also:

WebSSOIdPPartner.isWantAuthnRequestsSigned()

getRedirectURIs

String[] getRedirectURIs()

Gets the Redirect URIs. Unauthenticated users accessing these URIs are logged-in using SSO with this partner.

Returns:

the Redirect URIs

See Also:

WebSSOIdPPartner.setRedirectURIs(String[])

setRedirectURIs

void setRedirectURIs(String[] redirectURIs)

Sets the Redirect URIs. This is an array of URIs identifying resources on the server. The URIs must include the resource's application context. Unauthenticated users accessing these URIs will be logged-in using SSO with this partner.

The URI supports wildcard pattern. The URL mapping rules honor Servlet spec. All mapping rules are case-sensitive for string comparisons as default.

Specification of wildcard mapping:
1. A pattern node with a '/*' is used for path mapping.
2. A pattern node with a '*.' prefix is used as an extension mapping.
3. In a pattern, both wildcard path mapping and wildcard extension mapping are supported.

Parameters:

redirectURIs - the Redirect URIs to set

getSingleSignOnService

Endpoint[] getSingleSignOnService()

Gets the Single Sign On Service end points for this partner.

Returns:

the Single Sign On Service end points of this partner, which should not be null for a valid partner

setSingleSignOnService

void setSingleSignOnService(Endpoint[] endpoints)

Sets the Single Sign On Service end points for this partner.

Parameters:

endpoints - the Single Sign On Service end points to set

See Also:

Endpoint