Package org.pac4j.saml.logout.impl
Class SAML2LogoutValidator
- java.lang.Object
-
- org.pac4j.saml.profile.impl.AbstractSAML2ResponseValidator
-
- org.pac4j.saml.logout.impl.SAML2LogoutValidator
-
- All Implemented Interfaces:
SAML2ResponseValidator
public class SAML2LogoutValidator extends AbstractSAML2ResponseValidator
Validator for SAML logout requests/responses from the IdP.- Since:
- 2.0.0
- Author:
- Matthieu Taggiasco, Jerome Leleu
-
-
Field Summary
-
Fields inherited from class org.pac4j.saml.profile.impl.AbstractSAML2ResponseValidator
acceptedSkew, decrypter, logger, logoutHandler, replayCache, signatureTrustEngineProvider, uriComparator
-
-
Constructor Summary
Constructors Constructor Description SAML2LogoutValidator(SAML2SignatureTrustEngineProvider engine, org.opensaml.saml.saml2.encryption.Decrypter decrypter, LogoutHandler logoutHandler, String postLogoutURL, ReplayCacheProvider replayCache)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description protected HttpAction
handlePostLogoutResponse(SAML2MessageContext context)
void
setActionOnSuccess(boolean actionOnSuccess)
void
setMaximumAuthenticationLifetime(int maximumAuthenticationLifetime)
void
setPostLogoutURL(String postLogoutURL)
Credentials
validate(SAML2MessageContext context)
Validates the SAML protocol logout request/response.protected void
validateLogoutRequest(org.opensaml.saml.saml2.core.LogoutRequest logoutRequest, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine)
Validates the SAML logout request.protected void
validateLogoutResponse(org.opensaml.saml.saml2.core.LogoutResponse logoutResponse, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine)
Validates the SAML logout response.-
Methods inherited from class org.pac4j.saml.profile.impl.AbstractSAML2ResponseValidator
computeSloKey, decryptEncryptedId, isDateValid, isIssueInstantValid, setAcceptedSkew, validateIssueInstant, validateIssuer, validateIssuerIfItExists, validateSignature, validateSignatureIfItExists, validateSuccess, verifyEndpoint, verifyMessageReplay
-
-
-
-
Constructor Detail
-
SAML2LogoutValidator
public SAML2LogoutValidator(SAML2SignatureTrustEngineProvider engine, org.opensaml.saml.saml2.encryption.Decrypter decrypter, LogoutHandler logoutHandler, String postLogoutURL, ReplayCacheProvider replayCache)
-
-
Method Detail
-
validate
public Credentials validate(SAML2MessageContext context)
Validates the SAML protocol logout request/response.- Parameters:
context
- the context- Returns:
- the SAML credentials
-
handlePostLogoutResponse
protected HttpAction handlePostLogoutResponse(SAML2MessageContext context)
-
validateLogoutRequest
protected void validateLogoutRequest(org.opensaml.saml.saml2.core.LogoutRequest logoutRequest, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine)
Validates the SAML logout request.- Parameters:
logoutRequest
- the logout requestcontext
- the contextengine
- the signature engine
-
validateLogoutResponse
protected void validateLogoutResponse(org.opensaml.saml.saml2.core.LogoutResponse logoutResponse, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine)
Validates the SAML logout response.- Parameters:
logoutResponse
- the logout responsecontext
- the contextengine
- the signature engine
-
setActionOnSuccess
public void setActionOnSuccess(boolean actionOnSuccess)
-
setPostLogoutURL
public void setPostLogoutURL(String postLogoutURL)
-
setMaximumAuthenticationLifetime
public final void setMaximumAuthenticationLifetime(int maximumAuthenticationLifetime)
-
-