Package se.swedenconnect.spring.saml.idp.config.configurers

Class Saml2UserAuthenticationConfigurer

java.lang.Object

se.swedenconnect.spring.saml.idp.config.configurers.Saml2UserAuthenticationConfigurer

public class Saml2UserAuthenticationConfigurer
extends Object

A configurer for handling user authentication and issuance of SAML Assertions.

Author:

Martin Lindström

Method Summary

Modifier and Type	Method	Description
Saml2UserAuthenticationConfigurer	assertionCustomizer(org.springframework.security.config.Customizer<org.opensaml.saml.saml2.core.Assertion> assertionCustomizer)	By assigning a Customizer the Assertion object that is built can be modified.
Saml2UserAuthenticationConfigurer	attributeProducers(org.springframework.security.config.Customizer<List<AttributeProducer>> customizer)	Customizes the list of AttributeProducers that will later be installed to the AttributeReleaseManager and SAML attribute builder.
Saml2UserAuthenticationConfigurer	attributeReleaseVoters(org.springframework.security.config.Customizer<List<AttributeReleaseVoter>> customizer)	Customizes the list of AttributeReleaseVoters that will later be installed to the AttributeReleaseManager and SAML attribute builder.
Saml2UserAuthenticationConfigurer	authenticationTokenRepository(FilterAuthenticationTokenRepository authenticationTokenRepository)	Assigns a FilterAuthenticationTokenRepository instance for storing Authentication objects when external authentication is used.
protected final org.springframework.security.config.annotation.ObjectPostProcessor<Object>	getObjectPostProcessor()	Gets the object post processor.
Saml2UserAuthenticationConfigurer	idGenerator(Saml2MessageIDGenerator idGenerator)	Assigns a custom Saml2MessageIDGenerator to be used by the assertion builder.
protected void	init(org.springframework.security.config.annotation.web.builders.HttpSecurity httpSecurity)
Saml2UserAuthenticationConfigurer	postAuthenticationProcessors(org.springframework.security.config.Customizer<List<PostAuthenticationProcessor>> customizer)	Customizes the list of PostAuthenticationProcessors.
protected final <T> T	postProcess(T object)	Post processes the supplied object.
Saml2UserAuthenticationConfigurer	resumeAuthnPath(String path)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Details

resumeAuthnPath

public Saml2UserAuthenticationConfigurer resumeAuthnPath(String path)

authenticationTokenRepository

public Saml2UserAuthenticationConfigurer authenticationTokenRepository(FilterAuthenticationTokenRepository authenticationTokenRepository)

Assigns a FilterAuthenticationTokenRepository instance for storing Authentication objects when external authentication is used. The default is SessionBasedExternalAuthenticationRepository.

Note: Ensure that the ExternalAuthenticatorTokenRepository assigned to the AbstractUserRedirectAuthenticationProvider is using the same persistence strategy as the assigned repository bean.

Parameters:

authenticationTokenRepository - the repository to use

Returns:

the Saml2UserAuthenticationConfigurer for further configuration

assertionCustomizer

public Saml2UserAuthenticationConfigurer assertionCustomizer(org.springframework.security.config.Customizer<org.opensaml.saml.saml2.core.Assertion> assertionCustomizer)

By assigning a Customizer the Assertion object that is built can be modified. The customizer is invoked when the Assertion object has been completely built, but before it is signed.

Parameters:

assertionCustomizer - a Customizer

Returns:

the Saml2UserAuthenticationConfigurer for further configuration

idGenerator

public Saml2UserAuthenticationConfigurer idGenerator(Saml2MessageIDGenerator idGenerator)

Assigns a custom Saml2MessageIDGenerator to be used by the assertion builder.

Parameters:

idGenerator - the Saml2MessageIDGenerator

Returns:

the Saml2UserAuthenticationConfigurer for further configuration

attributeProducers

public Saml2UserAuthenticationConfigurer attributeProducers(org.springframework.security.config.Customizer<List<AttributeProducer>> customizer)

Customizes the list of AttributeProducers that will later be installed to the AttributeReleaseManager and SAML attribute builder.

Parameters:

customizer - a Customizer

Returns:

the Saml2UserAuthenticationConfigurer for further configuration

attributeReleaseVoters

public Saml2UserAuthenticationConfigurer attributeReleaseVoters(org.springframework.security.config.Customizer<List<AttributeReleaseVoter>> customizer)

Customizes the list of AttributeReleaseVoters that will later be installed to the AttributeReleaseManager and SAML attribute builder.

Parameters:

customizer - a Customizer

Returns:

the Saml2UserAuthenticationConfigurer for further configuration

postAuthenticationProcessors

public Saml2UserAuthenticationConfigurer postAuthenticationProcessors(org.springframework.security.config.Customizer<List<PostAuthenticationProcessor>> customizer)

Customizes the list of PostAuthenticationProcessors.

Parameters:

customizer - a Customizer

Returns:

the Saml2UserAuthenticationConfigurer for further configuration

init

protected void init(org.springframework.security.config.annotation.web.builders.HttpSecurity httpSecurity)

postProcess

protected final <T> T postProcess(T object)

Post processes the supplied object.

Type Parameters:

T - the type

Parameters:

object - the object to process

Returns:

the processed object

getObjectPostProcessor

protected final org.springframework.security.config.annotation.ObjectPostProcessor<Object> getObjectPostProcessor()

Gets the object post processor.

Returns:

the object post processor