public class MetadataGeneratorConfigurer extends org.springframework.security.config.annotation.SecurityConfigurerAdapter<Void,ServiceProviderBuilder>
Builder configurer that takes care of configuring/customizing the MetadataGenerator,
MetadataDisplayFilter, and MetadataGeneratorFilter bean.
This configurer always instantiates its own MetadataGenerator,
MetadataDisplayFilter, and MetadataGeneratorFilter based on the specified configuration.
This configurer also reads the values from SAMLSSOProperties#getMetadataGenerator() for some DSL methods if
they are not used. In other words, the user is able to configure the filters through the following properties:
saml.sso.metadata-generator.metadata-url
saml.sso.metadata-generator.entity-id
saml.sso.metadata-generator.want-assertion-signed
saml.sso.metadata-generator.request-signed
saml.sso.metadata-generator.name-id
saml.sso.metadata-generator.entity-base-url
saml.sso.metadata-generator.bindings-sso
saml.sso.metadata-generator.bindings-hok-sso
saml.sso.metadata-generator.bindings-slo
saml.sso.metadata-generator.assertion-consumer-index
saml.sso.metadata-generator.include-discovery-extension
| Constructor and Description |
|---|
MetadataGeneratorConfigurer() |
MetadataGeneratorConfigurer(org.springframework.security.saml.metadata.MetadataGenerator metadataGenerator) |
| Modifier and Type | Method and Description |
|---|---|
MetadataGeneratorConfigurer |
assertionConsumerIndex(Integer assertionConsumerIndex)
Generated assertion consumer service with the index equaling set value will be marked as default.
|
MetadataGeneratorConfigurer |
bindingsHoKSSO(String... bindingsHoKSSO)
List of bindings to be included in the generated metadata for Web Single Sign-On Holder of Key.
|
MetadataGeneratorConfigurer |
bindingsSLO(String... bindingsSLO)
List of bindings to be included in the generated metadata for Single Logout.
|
MetadataGeneratorConfigurer |
bindingsSSO(String... bindingsSSO)
List of bindings to be included in the generated metadata for Web Single Sign-On.
|
void |
configure(ServiceProviderBuilder builder) |
MetadataGeneratorConfigurer |
entityBaseURL(String entityBaseURL)
This Service Provider's entity base URL.
|
MetadataGeneratorConfigurer |
entityId(String entityId)
This Service Provider's SAML Entity ID.
|
MetadataGeneratorConfigurer |
id(String id)
This Service Provider's SAML ID.
|
MetadataGeneratorConfigurer |
includeDiscoveryExtension(Boolean includeDiscoveryExtension)
When true discovery profile extension metadata pointing to the default SAMLEntryPoint will be generated and
stored in the generated metadata document.
|
void |
init(ServiceProviderBuilder builder) |
MetadataGeneratorConfigurer |
metadataURL(String metadataURL)
MetadataDisplayFilter processing URL. |
MetadataGeneratorConfigurer |
nameId(String... nameId)
NameIDs to be included in generated metadata.
|
MetadataGeneratorConfigurer |
requestSigned(Boolean requestSigned)
Whether Authentication Requests should be signed by this Service Provider or not.
|
MetadataGeneratorConfigurer |
wantAssertionSigned(Boolean wantAssertionSigned)
Whether incoming SAML assertions should be signed or not.
|
public MetadataGeneratorConfigurer()
public MetadataGeneratorConfigurer(org.springframework.security.saml.metadata.MetadataGenerator metadataGenerator)
public void init(ServiceProviderBuilder builder) throws Exception
init in interface org.springframework.security.config.annotation.SecurityConfigurer<Void,ServiceProviderBuilder>init in class org.springframework.security.config.annotation.SecurityConfigurerAdapter<Void,ServiceProviderBuilder>Exceptionpublic void configure(ServiceProviderBuilder builder) throws Exception
configure in interface org.springframework.security.config.annotation.SecurityConfigurer<Void,ServiceProviderBuilder>configure in class org.springframework.security.config.annotation.SecurityConfigurerAdapter<Void,ServiceProviderBuilder>Exceptionpublic MetadataGeneratorConfigurer metadataURL(String metadataURL)
MetadataDisplayFilter processing URL. Defines which URL will display the Service Provider Metadata.
Default is "/saml/metadata".
Alternatively use property:
saml.sso.metadata-generator.metadata-url
metadataURL - the metadata display filter processing URL.public MetadataGeneratorConfigurer entityId(String entityId)
"localhost".
Alternatively use property:
saml.sso.metadata-generator.entity-id
entityId - the entity id of this Service Provider.public MetadataGeneratorConfigurer id(String id)
EntityDescriptor managed by MetadataGenerator.
Default is null.
Alternatively use property:
saml.sso.metadata-generator.id
id - the id.public MetadataGeneratorConfigurer wantAssertionSigned(Boolean wantAssertionSigned)
true.
Alternatively use property:
saml.sso.metadata-generator.want-assertion-signed
wantAssertionSigned - true if assertions are wanted signed.public MetadataGeneratorConfigurer requestSigned(Boolean requestSigned)
Alternatively use property:
saml.sso.metadata-generator.request-signed
requestSigned - true if authentication requests should be signed.public MetadataGeneratorConfigurer nameId(String... nameId)
Alternatively use property:
saml.sso.metadata-generator.name-id
nameId - the name IDs to be included in generated metadata.public MetadataGeneratorConfigurer entityBaseURL(String entityBaseURL)
Alternatively use property:
saml.sso.metadata-generator.entity-base-url
entityBaseURL - the Service Provider base URL.public MetadataGeneratorConfigurer bindingsHoKSSO(String... bindingsHoKSSO)
Alternatively use property:
saml.sso.metadata-generator.bindings-hok-sso
bindingsHoKSSO - bindings for web single sign-on holder-of-keypublic MetadataGeneratorConfigurer bindingsSLO(String... bindingsSLO)
Alternatively use property:
saml.sso.metadata-generator.bindings-slo
bindingsSLO - bindings for single logoutpublic MetadataGeneratorConfigurer bindingsSSO(String... bindingsSSO)
Alternatively use property:
saml.sso.metadata-generator.bindings-sso
bindingsSSO - bindings for web single sign-onpublic MetadataGeneratorConfigurer assertionConsumerIndex(Integer assertionConsumerIndex)
0.
Alternatively use property:
saml.sso.metadata-generator.assertion-consumer-index
assertionConsumerIndex - assertion consumer index of service to mark as defaultpublic MetadataGeneratorConfigurer includeDiscoveryExtension(Boolean includeDiscoveryExtension)
Alternatively use property:
saml.sso.metadata-generator.include-discovery-extension
includeDiscoveryExtension - flag indicating whether IDP discovery should be enabledCopyright © 2018. All rights reserved.