org.opensaml.saml.common.profile.impl

Class AddNotOnOrAfterConditionToAssertions

java.lang.Object

net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

org.opensaml.profile.action.AbstractProfileAction<InboundMessageType,OutboundMessageType>

org.opensaml.profile.action.AbstractConditionalProfileAction

org.opensaml.saml.common.profile.impl.AddNotOnOrAfterConditionToAssertions

All Implemented Interfaces:

net.shibboleth.utilities.java.support.component.Component, net.shibboleth.utilities.java.support.component.DestructableComponent, net.shibboleth.utilities.java.support.component.InitializableComponent, ProfileAction

public class AddNotOnOrAfterConditionToAssertions
extends AbstractConditionalProfileAction

Action that adds the NotBefore attribute to every assertion in a SAML 1/2 response message. If the containing Conditions is not present, it will be created.

Field Summary

Fields

Modifier and Type	Field and Description
private com.google.common.base.Function<ProfileRequestContext,java.lang.Long>	assertionLifetimeStrategy Strategy to obtain assertion lifetime policy.
private long	defaultAssertionLifetime Default lifetime to use to establish timestamp.
private org.slf4j.Logger	log Class logger.
private SAMLObject	response Response to modify.
private com.google.common.base.Function<ProfileRequestContext,SAMLObject>	responseLookupStrategy Strategy used to locate the Response to operate on.

Constructor Summary

Constructors

Constructor and Description
AddNotOnOrAfterConditionToAssertions() Constructor.

Method Summary

Modifier and Type	Method and Description
protected void	doExecute(ProfileRequestContext profileRequestContext) Performs this action.
protected boolean	doPreExecute(ProfileRequestContext profileRequestContext) Called prior to execution, actions may override this method to perform pre-processing for a request.
void	setAssertionLifetimeStrategy(com.google.common.base.Function<ProfileRequestContext,java.lang.Long> strategy) Set strategy function to obtain assertion lifetime.
void	setDefaultAssertionLifetime(long lifetime) Set the default assertion lifetime in milliseconds.
void	setResponseLookupStrategy(com.google.common.base.Function<ProfileRequestContext,SAMLObject> strategy) Set the strategy used to locate the Response to operate on.

Methods inherited from class org.opensaml.profile.action.AbstractConditionalProfileAction

getActivationCondition, setActivationCondition

Methods inherited from class org.opensaml.profile.action.AbstractProfileAction

doPostExecute, doPostExecute, execute, getHttpServletRequest, getHttpServletResponse, getLogPrefix, setHttpServletRequest, setHttpServletResponse

Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent

destroy, doDestroy, doInitialize, initialize, isDestroyed, isInitialized

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface net.shibboleth.utilities.java.support.component.InitializableComponent

initialize, isInitialized

Field Detail

log

@Nonnull
private final org.slf4j.Logger log

Class logger.

responseLookupStrategy

@Nonnull
private com.google.common.base.Function<ProfileRequestContext,SAMLObject> responseLookupStrategy

Strategy used to locate the Response to operate on.

assertionLifetimeStrategy

@Nullable
private com.google.common.base.Function<ProfileRequestContext,java.lang.Long> assertionLifetimeStrategy

Strategy to obtain assertion lifetime policy.

defaultAssertionLifetime

@Duration
 @NonNegative
private long defaultAssertionLifetime

Default lifetime to use to establish timestamp.

response

@Nullable
private SAMLObject response

Response to modify.

Constructor Detail

AddNotOnOrAfterConditionToAssertions

public AddNotOnOrAfterConditionToAssertions()

Constructor.

Method Detail

setResponseLookupStrategy

public void setResponseLookupStrategy(@Nonnull
                                      com.google.common.base.Function<ProfileRequestContext,SAMLObject> strategy)

Set the strategy used to locate the Response to operate on.

Parameters:

strategy - lookup strategy

setAssertionLifetimeStrategy

public void setAssertionLifetimeStrategy(@Nullable
                                         com.google.common.base.Function<ProfileRequestContext,java.lang.Long> strategy)

Set strategy function to obtain assertion lifetime.

Parameters:

strategy - strategy function

setDefaultAssertionLifetime

public void setDefaultAssertionLifetime(@Duration @NonNegative
                                        long lifetime)

Set the default assertion lifetime in milliseconds.

Parameters:

lifetime - default lifetime in milliseconds

doPreExecute

protected boolean doPreExecute(@Nonnull
                               ProfileRequestContext profileRequestContext)

Called prior to execution, actions may override this method to perform pre-processing for a request.

If false is returned, execution will not proceed, and the action should attach an EventContext to the context tree to signal how to continue with overall workflow processing.

If returning successfully, the last step should be to return the result of the superclass version of this method.

Overrides:

doPreExecute in class AbstractConditionalProfileAction

Parameters:

profileRequestContext - the current IdP profile request context

Returns:

true iff execution should proceed

doExecute

protected void doExecute(@Nonnull
                         ProfileRequestContext profileRequestContext)

Performs this action. Actions must override this method to perform their work.

Overrides:

doExecute in class AbstractProfileAction

Parameters:

profileRequestContext - the current IdP profile request context