Package org.pac4j.saml.logout.impl
Class SAML2LogoutValidator
java.lang.Object
org.pac4j.saml.profile.impl.AbstractSAML2ResponseValidator
org.pac4j.saml.logout.impl.SAML2LogoutValidator
- All Implemented Interfaces:
SAML2ResponseValidator
Validator for SAML logout requests/responses from the IdP.
- Since:
- 2.0.0
- Author:
- Matthieu Taggiasco, Jerome Leleu
-
Field Summary
Fields inherited from class org.pac4j.saml.profile.impl.AbstractSAML2ResponseValidator
acceptedSkew, decrypter, logger, logoutHandler, replayCache, signatureTrustEngineProvider, uriComparator -
Constructor Summary
ConstructorsConstructorDescriptionSAML2LogoutValidator(SAML2SignatureTrustEngineProvider engine, org.opensaml.saml.saml2.encryption.Decrypter decrypter, org.pac4j.core.logout.handler.SessionLogoutHandler logoutHandler, ReplayCacheProvider replayCache, net.shibboleth.shared.net.URIComparator uriComparator) Constructor for SAML2LogoutValidator. -
Method Summary
Modifier and TypeMethodDescriptionorg.pac4j.core.credentials.Credentialsvalidate(SAML2MessageContext context) Validates the SAML protocol response and the SAML SSO response.protected voidvalidateDestinationEndpoint(org.opensaml.saml.saml2.core.StatusResponseType logoutResponse, SAML2MessageContext context) validateDestinationEndpoint.protected voidvalidateLogoutRequest(org.opensaml.saml.saml2.core.LogoutRequest logoutRequest, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine) Validates the SAML logout request.protected voidvalidateLogoutResponse(org.opensaml.saml.saml2.core.LogoutResponse logoutResponse, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine) Validates the SAML logout response.protected voidvalidateSuccess(org.opensaml.saml.saml2.core.Status status) Validates that the response is a success.Methods inherited from class org.pac4j.saml.profile.impl.AbstractSAML2ResponseValidator
compareEndpoints, computeSloKey, decryptEncryptedId, isDateValid, isIssueInstantValid, setAcceptedSkew, validateIssueInstant, validateIssuer, validateIssuerIfItExists, validateSignature, validateSignatureIfItExists, verifyEndpoint, verifyMessageReplay
-
Constructor Details
-
Method Details
-
validate
Validates the SAML protocol response and the SAML SSO response. The method decrypt encrypted assertions if any. Validates the SAML protocol logout request/response.- Parameters:
context- the context- Returns:
- the SAML credentials
-
validateLogoutRequest
protected void validateLogoutRequest(org.opensaml.saml.saml2.core.LogoutRequest logoutRequest, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine) Validates the SAML logout request.- Parameters:
logoutRequest- the logout requestcontext- the contextengine- the signature engine
-
validateLogoutResponse
protected void validateLogoutResponse(org.opensaml.saml.saml2.core.LogoutResponse logoutResponse, SAML2MessageContext context, org.opensaml.xmlsec.signature.support.SignatureTrustEngine engine) Validates the SAML logout response.- Parameters:
logoutResponse- the logout responsecontext- the contextengine- the signature engine
-
validateDestinationEndpoint
protected void validateDestinationEndpoint(org.opensaml.saml.saml2.core.StatusResponseType logoutResponse, SAML2MessageContext context) validateDestinationEndpoint.
- Parameters:
logoutResponse- aLogoutResponseobjectcontext- aSAML2MessageContextobject
-
validateSuccess
protected void validateSuccess(org.opensaml.saml.saml2.core.Status status) Validates that the response is a success.- Overrides:
validateSuccessin classAbstractSAML2ResponseValidator- Parameters:
status- the response status.
-