public abstract class AbstractSAMLTokenCallback extends PropertyCallback
Modifier and Type | Field and Description |
---|---|
static java.lang.String |
ADD_ASSERTION_TO_SUBJECT_PROPERTY
property name for adding assertion to the OPSS subject private credential sets.
|
static java.lang.String |
DN_MAPPING_ATTRIBUTE_PROPERTY
property name for determining which part of the DN is used to identify the user.
|
ADD_APPLICATION_ROLE_PROPERTY, ADD_AUTHENTICATED_ROLE_PROPERTY, REMOVE_ANONYMOUS_ROLE_PROPERTY
Constructor and Description |
---|
AbstractSAMLTokenCallback() |
Modifier and Type | Method and Description |
---|---|
java.util.List<java.lang.String> |
getAudienceUris()
Gets relying party URIs for validating SAML audience restriction condition.
|
long |
getClockSkew()
Gets the clock skew between the client and server machine for validating SAML NotBefore and NotOn condition.
|
java.util.List<java.lang.String> |
getTrustedIssuers()
Gets the trusted issuers for validating SAML assertion issuer.
|
java.lang.Boolean |
getVirtualUserAllowed()
Gets the value of property used to indicate whether to allow virtual user.
|
void |
setAudienceUris(java.util.List<java.lang.String> audienceUris)
Sets relying party URIs for validating SAML audience restriction condition.
|
void |
setClockSkew(long clockSkew)
Sets the clock skew between the client and server machine for validating SAML NotBefore and NotOn condition.
|
void |
setTrustedIssuers(java.util.List<java.lang.String> trustedIssuers)
Sets the trusted issuers for validating SAML assertion issuer.
|
void |
setVirtualUserAllowed(java.lang.Boolean virtualUserAllowed)
Sets the value of property used to indicate whether to allow virtual user.
|
getCallbackType, getProperties, setProperties
public static final java.lang.String DN_MAPPING_ATTRIBUTE_PROPERTY
public static final java.lang.String ADD_ASSERTION_TO_SUBJECT_PROPERTY
public java.util.List<java.lang.String> getAudienceUris()
public void setAudienceUris(java.util.List<java.lang.String> audienceUris)
The method is protected by code based permission oracle.security.jps.JpsPermission("IdentityAssertion", "execute").
audienceUris
- list of relying party URIs. Can be null or empty list.java.security.AccessControlException
- if required permission is not granted.public long getClockSkew()
public void setClockSkew(long clockSkew)
clockSkew
- in millisecondspublic java.util.List<java.lang.String> getTrustedIssuers()
public void setTrustedIssuers(java.util.List<java.lang.String> trustedIssuers)
The method is protected by code based permission oracle.security.jps.JpsPermission("IdentityAssertion", "execute").
trustedIssuers
- List of trusted issuers, can be nulljava.security.AccessControlException
- if required permission not granted.public java.lang.Boolean getVirtualUserAllowed()
public void setVirtualUserAllowed(java.lang.Boolean virtualUserAllowed)
virtualUserAllowed
- the value of property, can be nulljava.security.AccessControlException
- if required permission not granted