public List<EncryptionConfiguration> apply(final ProfileRequestContext input) { return Collections.singletonList(SecurityConfigurationSupport.getGlobalEncryptionConfiguration()); } };
public List<SignatureSigningConfiguration> apply(ProfileRequestContext input) { return Collections.singletonList( SecurityConfigurationSupport.getGlobalSignatureSigningConfiguration()); } };
public List<SignatureValidationConfiguration> apply(ProfileRequestContext input) { return Collections.singletonList( SecurityConfigurationSupport.getGlobalSignatureValidationConfiguration()); } };
public List<DecryptionConfiguration> apply(ProfileRequestContext input) { return Collections.singletonList(SecurityConfigurationSupport.getGlobalDecryptionConfiguration()); } };
/** {@inheritDoc} */ @Override @Nullable public List<DecryptionConfiguration> apply(@Nullable final ProfileRequestContext input) { final List<DecryptionConfiguration> configs = new ArrayList<>(); final RelyingPartyContext rpc = getRelyingPartyContextLookupStrategy().apply(input); if (rpc != null) { final ProfileConfiguration pc = rpc.getProfileConfig(); if (pc != null && pc.getSecurityConfiguration() != null) { configs.add(pc.getSecurityConfiguration().getDecryptionConfiguration()); } } // Check for a per-profile default (relying party independent) config. if (input != null && rpResolver != null) { final SecurityConfiguration defaultConfig = rpResolver.getDefaultSecurityConfiguration(input.getProfileId()); if (defaultConfig != null && defaultConfig.getDecryptionConfiguration() != null) { configs.add(defaultConfig.getDecryptionConfiguration()); } } configs.add(SecurityConfigurationSupport.getGlobalDecryptionConfiguration()); return configs; }
/** {@inheritDoc} */ @Override @Nullable public List<SignatureValidationConfiguration> apply(@Nullable final ProfileRequestContext input) { final List<SignatureValidationConfiguration> configs = new ArrayList<>(); final RelyingPartyContext rpc = getRelyingPartyContextLookupStrategy().apply(input); if (rpc != null) { final ProfileConfiguration pc = rpc.getProfileConfig(); if (pc != null && pc.getSecurityConfiguration() != null) { configs.add(pc.getSecurityConfiguration().getSignatureValidationConfiguration()); } } // Check for a per-profile default (relying party independent) config. if (input != null && rpResolver != null) { final SecurityConfiguration defaultConfig = rpResolver.getDefaultSecurityConfiguration(input.getProfileId()); if (defaultConfig != null && defaultConfig.getSignatureValidationConfiguration() != null) { configs.add(defaultConfig.getSignatureValidationConfiguration()); } } configs.add(SecurityConfigurationSupport.getGlobalSignatureValidationConfiguration()); return configs; }
/** * Resolve the list of effective base {@link EncryptionConfiguration} for self-encryption. * * @param profileRequestContext the current profile request context * * @return the resolved configurations */ @Nonnull protected List<EncryptionConfiguration> resolveBaseConfigurations( @Nonnull final ProfileRequestContext profileRequestContext) { List<EncryptionConfiguration> baseConfigs = null; if (configurationLookupStrategy != null) { log.debug("Self-encryption EncryptionConfiguration lookup strategy was non-null"); baseConfigs = configurationLookupStrategy.apply(profileRequestContext); } else { log.debug("Self-encryption EncryptionConfiguration lookup strategy was null"); } if (baseConfigs != null) { return baseConfigs; } else { log.debug("No self-encryption EncryptionConfigurations were resolved, returning global configuration"); return Collections.singletonList(SecurityConfigurationSupport.getGlobalEncryptionConfiguration()); } }
/** {@inheritDoc} */ @Override @Nullable public List<SignatureSigningConfiguration> apply(@Nullable final ProfileRequestContext input) { final List<SignatureSigningConfiguration> configs = new ArrayList<>(); final RelyingPartyContext rpc = getRelyingPartyContextLookupStrategy().apply(input); if (rpc != null) { final ProfileConfiguration pc = rpc.getProfileConfig(); if (pc != null && pc.getSecurityConfiguration() != null) { configs.add(pc.getSecurityConfiguration().getSignatureSigningConfiguration()); } } // Check for a per-profile default (relying party independent) config. if (input != null && rpResolver != null) { final SecurityConfiguration defaultConfig = rpResolver.getDefaultSecurityConfiguration(input.getProfileId()); if (defaultConfig != null && defaultConfig.getSignatureSigningConfiguration() != null) { configs.add(defaultConfig.getSignatureSigningConfiguration()); } } configs.add(SecurityConfigurationSupport.getGlobalSignatureSigningConfiguration()); return configs; }
/** {@inheritDoc} */ @Override @Nullable public List<SignatureValidationConfiguration> apply(@Nullable final MessageContext input) { final List<SignatureValidationConfiguration> configs = new ArrayList<>(); final RelyingPartyContext rpc = getRelyingPartyContextLookupStrategy().apply(input); if (rpc != null) { final ProfileConfiguration pc = rpc.getProfileConfig(); if (pc != null && pc.getSecurityConfiguration() != null) { configs.add(pc.getSecurityConfiguration().getSignatureValidationConfiguration()); } // Check for a per-profile default (relying party independent) config. if (pc != null && rpResolver != null) { final SecurityConfiguration defaultConfig = rpResolver.getDefaultSecurityConfiguration(pc.getId()); if (defaultConfig != null && defaultConfig.getSignatureValidationConfiguration() != null) { configs.add(defaultConfig.getSignatureValidationConfiguration()); } } } configs.add(SecurityConfigurationSupport.getGlobalSignatureValidationConfiguration()); return configs; }
/** {@inheritDoc} */ @Override @Nullable public List<EncryptionConfiguration> apply(@Nullable final ProfileRequestContext input) { final List<EncryptionConfiguration> configs = new ArrayList<>(); if (selfConfig != null) { configs.add(selfConfig); } // Check for a per-profile default config. if (includeProfileDefaultConfiguration && input != null && rpResolver != null) { final SecurityConfiguration defaultConfig = rpResolver.getDefaultSecurityConfiguration(input.getProfileId()); if (defaultConfig != null && defaultConfig.getEncryptionConfiguration() != null) { configs.add(defaultConfig.getEncryptionConfiguration()); } } configs.add(SecurityConfigurationSupport.getGlobalEncryptionConfiguration()); return configs; }
/** {@inheritDoc} */ @Override @Nullable public List<SignatureSigningConfiguration> apply(@Nullable final MessageContext input) { final List<SignatureSigningConfiguration> configs = new ArrayList<>(); final RelyingPartyContext rpc = getRelyingPartyContextLookupStrategy().apply(input); if (rpc != null) { final ProfileConfiguration pc = rpc.getProfileConfig(); if (pc != null && pc.getSecurityConfiguration() != null) { configs.add(pc.getSecurityConfiguration().getSignatureSigningConfiguration()); } // Check for a per-profile default (relying party independent) config. if (pc != null && rpResolver != null) { final SecurityConfiguration defaultConfig = rpResolver.getDefaultSecurityConfiguration(pc.getId()); if (defaultConfig != null && defaultConfig.getSignatureSigningConfiguration() != null) { configs.add(defaultConfig.getSignatureSigningConfiguration()); } } } configs.add(SecurityConfigurationSupport.getGlobalSignatureSigningConfiguration()); return configs; }
sigConfigs.add(SecurityConfigurationSupport.getGlobalSignatureValidationConfiguration());
/** {@inheritDoc} */ @Override @Nullable public List<EncryptionConfiguration> apply(@Nullable final ProfileRequestContext input) { final List<EncryptionConfiguration> configs = new ArrayList<>(); final RelyingPartyContext rpc = getRelyingPartyContextLookupStrategy().apply(input); if (rpc != null) { final ProfileConfiguration pc = rpc.getProfileConfig(); if (pc != null && pc.getSecurityConfiguration() != null) { configs.add(pc.getSecurityConfiguration().getEncryptionConfiguration()); } } // Check for a per-profile default (relying party independent) config. if (input != null && rpResolver != null) { final SecurityConfiguration defaultConfig = rpResolver.getDefaultSecurityConfiguration(input.getProfileId()); if (defaultConfig != null && defaultConfig.getEncryptionConfiguration() != null) { configs.add(defaultConfig.getEncryptionConfiguration()); } } configs.add(SecurityConfigurationSupport.getGlobalEncryptionConfiguration()); return configs; }
log.debug("signature algorithm {} selected from credential+digest", signatureAlgorithm); final SignatureSigningConfiguration securityConfig = SecurityConfigurationSupport.getGlobalSignatureSigningConfiguration(); final boolean hmac = AlgorithmSupport.isHMAC(signatureAlgorithm); final Integer hmacOutputLength = securityConfig.getSignatureHMACOutputLength();