Package se.swedenconnect.opensaml.xmlsec.config

Class SAML2IntSecurityConfiguration

java.lang.Object

se.swedenconnect.opensaml.xmlsec.config.AbstractSecurityConfiguration

se.swedenconnect.opensaml.xmlsec.config.SAML2IntSecurityConfiguration

All Implemented Interfaces:

SecurityConfiguration

public class SAML2IntSecurityConfiguration
extends AbstractSecurityConfiguration

Security defaults according to Kantara's SAML2Int specification.

Author:

Martin Lindström (martin@idsec.se), Stefan Santesson (stefan@idsec.se)

Constructor Summary

Constructors

Constructor	Description
SAML2IntSecurityConfiguration()

Method Summary

Modifier and Type	Method	Description
protected org.opensaml.xmlsec.EncryptionConfiguration	createDefaultEncryptionConfiguration()	Builds an EncryptionConfiguration that is according to SAML2Int.
protected org.opensaml.xmlsec.SignatureSigningConfiguration	createDefaultSignatureSigningConfiguration()	Black-lists SHA-1 from use and adds RSA-PSS algos.
String	getProfileName()	Gets the profile name of this configuration setup.

Methods inherited from class se.swedenconnect.opensaml.xmlsec.config.AbstractSecurityConfiguration

createDefaultDecryptionConfiguration, createDefaultSignatureValidationConfiguration, getDecryptionConfiguration, getDefaultDecryptionConfiguration, getDefaultEncryptionConfiguration, getDefaultSignatureSigningConfiguration, getDefaultSignatureValidationConfiguration, getEncryptionConfiguration, getSignatureSigningConfiguration, getSignatureValidationConfiguration, initOpenSAML

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

SAML2IntSecurityConfiguration

public SAML2IntSecurityConfiguration()

Method Details

getProfileName

public String getProfileName()

Gets the profile name of this configuration setup.

Returns:

the profile name

createDefaultEncryptionConfiguration

protected org.opensaml.xmlsec.EncryptionConfiguration createDefaultEncryptionConfiguration()

Builds an EncryptionConfiguration that is according to SAML2Int.

Overrides:

createDefaultEncryptionConfiguration in class AbstractSecurityConfiguration

Returns:

default encryption configuration, or null if the security configuration object does not need to modify the system defaults

createDefaultSignatureSigningConfiguration

protected org.opensaml.xmlsec.SignatureSigningConfiguration createDefaultSignatureSigningConfiguration()

Black-lists SHA-1 from use and adds RSA-PSS algos.

Overrides:

createDefaultSignatureSigningConfiguration in class AbstractSecurityConfiguration

Returns:

default signature configuration, or null if the security configuration object does not need to modify the system defaults