TLSConfigurer (Spring Boot Security SAML 1.16 API)

java.lang.Object
- org.springframework.security.config.annotation.SecurityConfigurerAdapter<Void,ServiceProviderBuilder>
- - com.github.ulisesbocchio.spring.boot.security.saml.configurer.builder.TLSConfigurer

All Implemented Interfaces:

org.springframework.security.config.annotation.SecurityConfigurer<Void,ServiceProviderBuilder>
```
public class TLSConfigurer
extends org.springframework.security.config.annotation.SecurityConfigurerAdapter<Void,ServiceProviderBuilder>
```
Builder configurer that takes care of configuring/customizing the TLSProtocolConfigurer bean.

This configurer always instantiates its own TLSProtocolConfigurer.

This configurer also reads the values from SAMLSSOProperties#getTls() for some the DSL methods if they are not used. In other words, the user is able to configure the TLSProtocolConfigurer through the following properties:
```
     saml.sso.tls.protocol-name
     saml.sso.tls.protocol-port
     saml.sso.tls.key-manager
     saml.sso.tls.ssl-hostname-verification
     saml.sso.tls.trusted-keys
 
```
Author:

Ulises Bocchio

Constructor Summary

Constructors
Constructor and Description

TLSConfigurer()

Constructors
Constructor and Description
`TLSConfigurer()`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`void`	`configure(ServiceProviderBuilder builder)`
`protected org.springframework.security.saml.trust.httpclient.TLSProtocolConfigurer`	`createDefaultTlsProtocolConfigurer()`
`void`	`init(ServiceProviderBuilder builder)`
`TLSConfigurer`	`protocolName(String protocolName)` Name of protocol (ID) to register to HTTP Client, https by default.
`TLSConfigurer`	`protocolPort(int protocolPort)` Default port for protocol.
`TLSConfigurer`	`sslHostnameVerification(String sslHostnameVerification)` Hostname verifier to use for verification of SSL connections.
`TLSConfigurer`	`trustedKeys(String... trustedKeys)` When not set all certificates included in the keystore will be used as trusted certificate authorities.

Methods inherited from class org.springframework.security.config.annotation.SecurityConfigurerAdapter
addObjectPostProcessor, and, getBuilder, postProcess, setBuilder

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - TLSConfigurer
```
public TLSConfigurer()
```
- Method Detail
  - init
```
public void init(ServiceProviderBuilder builder)
          throws Exception
```
    Specified by:
    
    init in interface org.springframework.security.config.annotation.SecurityConfigurer<Void,ServiceProviderBuilder>
    
    Overrides:
    
    init in class org.springframework.security.config.annotation.SecurityConfigurerAdapter<Void,ServiceProviderBuilder>
    
    Throws:
    
    Exception
  - configure
```
public void configure(ServiceProviderBuilder builder)
               throws Exception
```
    Specified by:
    
    configure in interface org.springframework.security.config.annotation.SecurityConfigurer<Void,ServiceProviderBuilder>
    
    Overrides:
    
    configure in class org.springframework.security.config.annotation.SecurityConfigurerAdapter<Void,ServiceProviderBuilder>
    
    Throws:
    
    Exception
  - createDefaultTlsProtocolConfigurer
```
protected org.springframework.security.saml.trust.httpclient.TLSProtocolConfigurer createDefaultTlsProtocolConfigurer()
```
  - protocolName
```
public TLSConfigurer protocolName(String protocolName)
```
    Name of protocol (ID) to register to HTTP Client, https by default. Default is "https".
    Alternatively use property:
```
      saml.sso.tls.protocol-name
 
```
    Parameters:
    
    protocolName - the protocol
    
    Returns:
    
    this configurer for further customization
  - protocolPort
```
public TLSConfigurer protocolPort(int protocolPort)
```
    Default port for protocol. Default is 443.
    Alternatively use property:
```
      saml.sso.tls.protocol-port
 
```
    Parameters:
    
    protocolPort - the protocol port
    
    Returns:
    
    this configurer for further customization
  - sslHostnameVerification
```
public TLSConfigurer sslHostnameVerification(String sslHostnameVerification)
```
    Hostname verifier to use for verification of SSL connections. Default value is "default", other supported options are "defaultAndLocalhost", "strict" and "allowAll". Default is "default".
    Alternatively use property:
```
      saml.sso.tls.ssl-hostname-verification
 
```
    Parameters:
    
    sslHostnameVerification - hostname verification mode.
    
    Returns:
    
    this configurer for further customization
  - trustedKeys
```
public TLSConfigurer trustedKeys(String... trustedKeys)
```
    When not set all certificates included in the keystore will be used as trusted certificate authorities. When specified, only keys with the defined aliases will be used for trust evaluation.
    Alternatively use property:
```
      saml.sso.tls.trusted-keys
 
```
    Parameters:
    
    trustedKeys - trusted keys.
    
    Returns:
    
    this configurer for further customization

Class TLSConfigurer

Constructor Summary

Method Summary

Methods inherited from class org.springframework.security.config.annotation.SecurityConfigurerAdapter

Methods inherited from class java.lang.Object

Constructor Detail

TLSConfigurer

Method Detail

init

configure

createDefaultTlsProtocolConfigurer

protocolName

protocolPort

sslHostnameVerification

trustedKeys