Tabnine Logo
AssertionUtil.asString
Code IndexAdd Tabnine to your IDE (free)

How to use
asString
method
in
org.picketlink.identity.federation.core.saml.v2.util.AssertionUtil

Best Java code snippets using org.picketlink.identity.federation.core.saml.v2.util.AssertionUtil.asString (Showing top 7 results out of 315)

origin: org.picketlink.distribution/picketlink-wildfly8

  @POST
  public Response generateAssertion(@Context HttpServletRequest httpServletRequest,
      @Context HttpServletResponse httpServletResponse) throws Exception {
    Principal principal = httpServletRequest.getUserPrincipal();
    if (principal == null) {
      // Send Error Response
      return Response.status(403).build();
    }
    SAMLProtocolContext samlProtocolContext = getSAMLProtocolContext(principal.getName());
    AssertionType assertionType = issueSAMLAssertion(samlProtocolContext);
    // TODO: sign/encrypt
    String base64EncodedAssertion = PostBindingUtil.base64Encode(AssertionUtil.asString(assertionType));

    return Response.status(200).entity(base64EncodedAssertion).build();
  }
}
origin: org.picketlink/picketlink-wildfly-common

  @POST
  public Response generateAssertion(@Context HttpServletRequest httpServletRequest,
      @Context HttpServletResponse httpServletResponse) throws Exception {
    Principal principal = httpServletRequest.getUserPrincipal();
    if (principal == null) {
      // Send Error Response
      return Response.status(403).build();
    }
    SAMLProtocolContext samlProtocolContext = getSAMLProtocolContext(principal.getName());
    AssertionType assertionType = issueSAMLAssertion(samlProtocolContext);
    // TODO: sign/encrypt
    String base64EncodedAssertion = PostBindingUtil.base64Encode(AssertionUtil.asString(assertionType));

    return Response.status(200).entity(base64EncodedAssertion).build();
  }
}
origin: org.overlord/overlord-commons-auth

/**
 * Creates a SAML Assertion that can be used as a bearer token when invoking REST
 * services.  The REST service must be configured to accept SAML Assertion bearer
 * tokens.
 *
 * In JBoss this means protecting the REST services with {@link org.overlord.commons.auth.jboss7.SAMLBearerTokenLoginModule}.
 * In Tomcat7 this means protecting the REST services with {@link org.overlord.commons.auth.tomcat7.SAMLBearerTokenAuthenticator}.
 *
 * @param principal
 * @param roles
 * @param issuerName
 * @param forService
 * @param timeValidInMillis
 */
public static String createSAMLAssertion(Principal principal, Set<String> roles, String issuerName,
    String forService, int timeValidInMillis) {
  try {
    NameIDType issuer = SAMLAssertionFactory.createNameID(null, null, issuerName);
    SubjectType subject = AssertionUtil.createAssertionSubject(principal.getName());
    AssertionType assertion = AssertionUtil.createAssertion(UUID.randomUUID().toString(), issuer);
    assertion.setSubject(subject);
    AssertionUtil.createTimedConditions(assertion, timeValidInMillis);
    ConditionAbstractType restriction = SAMLAssertionFactory.createAudienceRestriction(forService);
    assertion.getConditions().addCondition(restriction);
    addRoleStatements(roles, assertion, principal);
    return AssertionUtil.asString(assertion);
  } catch (Exception e) {
    throw new RuntimeException(e);
  }
}
origin: org.picketlink.distribution/picketlink-jbas5

@Override
protected Group[] getRoleSets() throws LoginException {
  if (this.assertion == null) {
    try {
      this.assertion = SAMLUtil.fromElement(this.credential.getAssertionAsElement());
    } catch (Exception e) {
      throw logger.authFailedToParseSAMLAssertion(e);
    }
  }
  if (logger.isTraceEnabled()) {
    try {
      logger.trace("Assertion from where roles will be sought = " + AssertionUtil.asString(assertion));
    } catch (ProcessingException ignore) {
    }
  }
  List<String> roleKeys = new ArrayList<String>();
  if (StringUtil.isNotNull(roleKey)) {
    roleKeys.addAll(StringUtil.tokenize(roleKey));
  }
  String groupName = SecurityConstants.ROLES_IDENTIFIER;
  Group rolesGroup = new PicketLinkGroup(groupName);
  List<String> roles = AssertionUtil.getRoles(assertion, roleKeys);
  for (String role : roles) {
    rolesGroup.addMember(new SimplePrincipal(role));
  }
  return new Group[]{rolesGroup};
}
origin: org.picketlink.distribution/picketlink-jbas7

@Override
protected Group[] getRoleSets() throws LoginException {
  if (this.assertion == null) {
    try {
      this.assertion = SAMLUtil.fromElement(this.credential.getAssertionAsElement());
    } catch (Exception e) {
      throw logger.authFailedToParseSAMLAssertion(e);
    }
  }
  if (logger.isTraceEnabled()) {
    try {
      logger.trace("Assertion from where roles will be sought = " + AssertionUtil.asString(assertion));
    } catch (ProcessingException ignore) {
    }
  }
  List<String> roleKeys = new ArrayList<String>();
  if (StringUtil.isNotNull(roleKey)) {
    roleKeys.addAll(StringUtil.tokenize(roleKey));
  }
  String groupName = SecurityConstants.ROLES_IDENTIFIER;
  Group rolesGroup = new PicketLinkGroup(groupName);
  List<String> roles = AssertionUtil.getRoles(assertion, roleKeys);
  for (String role : roles) {
    rolesGroup.addMember(new SimplePrincipal(role));
  }
  return new Group[]{rolesGroup};
}
origin: org.picketlink.distribution/picketlink-jbas7

@Override
protected Group[] getRoleSets() throws LoginException {
  if (this.assertion == null) {
    try {
      this.assertion = SAMLUtil.fromElement(this.credential.getAssertionAsElement());
    } catch (Exception e) {
      throw logger.authFailedToParseSAMLAssertion(e);
    }
  }
  if (logger.isTraceEnabled()) {
    try {
      logger.trace("Assertion from where roles will be sought = " + AssertionUtil.asString(assertion));
    } catch (ProcessingException ignore) {
    }
  }
  List<String> roleKeys = new ArrayList<String>();
  if (StringUtil.isNotNull(roleKey)) {
    roleKeys.addAll(StringUtil.tokenize(roleKey));
  }
  String groupName = SecurityConstants.ROLES_IDENTIFIER;
  Group rolesGroup = new PicketLinkGroup(groupName);
  List<String> roles = AssertionUtil.getRoles(assertion, roleKeys);
  for (String role : roles) {
    rolesGroup.addMember(new SimplePrincipal(role));
  }
  return new Group[]{rolesGroup};
}
origin: org.picketlink.distribution/picketlink-jbas5

@Override
protected Group[] getRoleSets() throws LoginException {
  if (this.assertion == null) {
    try {
      this.assertion = SAMLUtil.fromElement(this.credential.getAssertionAsElement());
    } catch (Exception e) {
      throw logger.authFailedToParseSAMLAssertion(e);
    }
  }
  if (logger.isTraceEnabled()) {
    try {
      logger.trace("Assertion from where roles will be sought = " + AssertionUtil.asString(assertion));
    } catch (ProcessingException ignore) {
    }
  }
  List<String> roleKeys = new ArrayList<String>();
  if (StringUtil.isNotNull(roleKey)) {
    roleKeys.addAll(StringUtil.tokenize(roleKey));
  }
  String groupName = SecurityConstants.ROLES_IDENTIFIER;
  Group rolesGroup = new PicketLinkGroup(groupName);
  List<String> roles = AssertionUtil.getRoles(assertion, roleKeys);
  for (String role : roles) {
    rolesGroup.addMember(new SimplePrincipal(role));
  }
  return new Group[]{rolesGroup};
}
org.picketlink.identity.federation.core.saml.v2.utilAssertionUtilasString

Javadoc

Given AssertionType, convert it into a String

Popular methods of AssertionUtil

  • hasExpired
    Verify whether the assertion has expired. You can add in a clock skew to adapt to conditions where i
  • getRoles
    Given an assertion, return the list of roles it may have
  • getExpiration
    Extract the expiration time from an AssertionType
  • createTimedConditions
    Add validity conditions to the SAML2 Assertion
  • createAssertion
    Create an assertion
  • createSAML11TimedConditions
    Add validity conditions to the SAML2 Assertion
  • isSignatureValid
    Given an assertion element, validate the signature
  • asDocument
    Given AssertionType, convert it into a DOM Document.
  • createAssertionSubject
    Given a user name, create a SubjectType that can then be inserted into an assertion
  • isAudience
    Checks whether the given assertion is intended for the given org.picketlink.config.federation.SPType

Popular in Java

  • Updating database using SQL prepared statement
  • addToBackStack (FragmentTransaction)
  • scheduleAtFixedRate (ScheduledExecutorService)
  • orElseThrow (Optional)
    Return the contained value, if present, otherwise throw an exception to be created by the provided s
  • Container (java.awt)
    A generic Abstract Window Toolkit(AWT) container object is a component that can contain other AWT co
  • Permission (java.security)
    Legacy security code; do not use.
  • Hashtable (java.util)
    A plug-in replacement for JDK1.5 java.util.Hashtable. This version is based on org.cliffc.high_scale
  • AtomicInteger (java.util.concurrent.atomic)
    An int value that may be updated atomically. See the java.util.concurrent.atomic package specificati
  • XPath (javax.xml.xpath)
    XPath provides access to the XPath evaluation environment and expressions. Evaluation of XPath Expr
  • Base64 (org.apache.commons.codec.binary)
    Provides Base64 encoding and decoding as defined by RFC 2045.This class implements section 6.8. Base
  • From CI to AI: The AI layer in your organization
Tabnine Logo

  • Products

    Search for Java codeSearch for JavaScript code

  • IDE Plugins

    IntelliJ IDEAWebStormVisual StudioAndroid StudioEclipseVisual Studio CodePyCharmSublime TextPhpStormVimGoLandRubyMineEmacsJupyter NotebookJupyter LabRiderDataGripAppCode

  • Company

    About UsContact UsCareers

  • Resources

    FAQBlogTabnine AcademyTerms of usePrivacy policyJava Code IndexJavascript Code Index
Get Tabnine for your IDE now