Serialized Form

Package org.springframework.security.providers

Class org.springframework.security.providers.ExpiringUsernameAuthenticationToken extends org.springframework.security.authentication.UsernamePasswordAuthenticationToken implements Serializable

Serialized Fields

tokenExpiration

Date tokenExpiration

Package org.springframework.security.saml

Class org.springframework.security.saml.SAMLAuthenticationToken extends org.springframework.security.authentication.AbstractAuthenticationToken implements Serializable

serialVersionUID:

1L

Class org.springframework.security.saml.SAMLCredential extends Object implements Serializable

Serialized Fields

nameID

SAMLObject<T extends org.opensaml.xml.XMLObject> nameID

authenticationAssertion

SAMLObject<T extends org.opensaml.xml.XMLObject> authenticationAssertion

localEntityID

String localEntityID

remoteEntityID

String remoteEntityID

relayState

String relayState

additionalData

Serializable additionalData

attributes

SAMLCollection<T extends org.opensaml.xml.XMLObject> attributes

Collection of attributes received from assertions.

Class org.springframework.security.saml.SAMLStatusException extends org.opensaml.common.SAMLException implements Serializable

Serialized Fields

statusCode

String statusCode

statusMessage

String statusMessage

Package org.springframework.security.saml.metadata

Class org.springframework.security.saml.metadata.ExtendedMetadata extends Object implements Serializable

Serialized Fields

local

boolean local

Setting of the value determines whether the entity is deployed locally (hosted on the current installation) or whether it's an entity deployed elsewhere.

alias

String alias

Local alias of the entity used for construction of well-known metadata address and determining target entity from incoming requests.

idpDiscoveryEnabled

boolean idpDiscoveryEnabled

When true IDP discovery will be invoked before SSO. Only valid for local entities.

idpDiscoveryURL

String idpDiscoveryURL

URL of the IDP Discovery service user should be redirected to upon request to determine which IDP to use. Value can override settings in the local SP metadata. Only valid for local entities.

idpDiscoveryResponseURL

String idpDiscoveryResponseURL

URL where the discovery service should send back response to our discovery request. Only valid for local entities.

ecpEnabled

boolean ecpEnabled

Indicates whether Enhanced Client/Proxy profile should be used for requests which support it. Only valid for local entities.

securityProfile

String securityProfile

Profile used for trust verification, MetaIOP by default. Only relevant for local entities.

sslSecurityProfile

String sslSecurityProfile

Profile used for SSL/TLS trust verification, PKIX by default. Only relevant for local entities.

sslHostnameVerification

String sslHostnameVerification

Hostname verifier to use for verification of SSL connections, e.g. for ArtifactResolution.

signingKey

String signingKey

Key (stored in the local keystore) used for signing/verifying signature of messages sent/coming from this entity. For local entities private key must be available, for remote entities only public key is required.

signingAlgorithm

String signingAlgorithm

Algorithm used for creation of digital signatures of this entity. At the moment only used for metadata signatures. Only valid for local entities.

signMetadata

boolean signMetadata

Flag indicating whether to sign metadata for this entity. Only valid for local entities.

keyInfoGeneratorName

String keyInfoGeneratorName

Name of generator for KeyInfo elements in metadata and signatures. At the moment only used for metadata signatures. Only valid for local entities.

encryptionKey

String encryptionKey

Key (stored in the local keystore) used for encryption/decryption of messages coming/sent from this entity. For local entities private key must be available, for remote entities only public key is required.

tlsKey

String tlsKey

Key used for verification of SSL/TLS connections. For local entities key is included in the generated metadata when specified. For remote entities key is used to for server authentication of SSL/TLS when specified and when MetaIOP security profile is used.

trustedKeys

Set<E> trustedKeys

Keys used as anchors for trust verification when PKIX mode is enabled for the local entity. In case value is null all keys in the keyStore will be treated as trusted.

requireLogoutRequestSigned

boolean requireLogoutRequestSigned

SAML specification mandates that incoming LogoutRequests must be authenticated.

requireLogoutResponseSigned

boolean requireLogoutResponseSigned

Flag indicating whether incoming LogoutResposne messages must be authenticated.

requireArtifactResolveSigned

boolean requireArtifactResolveSigned

If true received artifactResolve messages will require a signature, sent artifactResolve will be signed.

supportUnsolicitedResponse

boolean supportUnsolicitedResponse

Flag indicating whether to support unsolicited responses (IDP-initialized SSO). Only valid for remote entities.

digestMethodAlgorithm

String digestMethodAlgorithm

Algorithm used for creation of digest method of this entity. At the moment only used for metadata signatures. Only valid for local entities.

Package org.springframework.security.saml.parser

Class org.springframework.security.saml.parser.SAMLBase extends Object implements Serializable

Serialized Fields

serializedObject

Serializable serializedObject

Version of the value stored within object transferable during serialization.

hashCode

int hashCode

Hash of the object.

Class org.springframework.security.saml.parser.SAMLCollection extends SAMLBase<T extends org.opensaml.xml.XMLObject,List<T extends org.opensaml.xml.XMLObject>> implements Serializable

Serialization Methods

readObject

private void readObject(ObjectInputStream in)
                 throws IOException,
                        ClassNotFoundException

Deserializes List of XMLObjects from the stream. Parsing of the content is done lazily upon access to the object. The reason for this is the fact that parser pool may not be initialized during system startup and the object may be stored in a serialized session.

Throws:

IOException - error deserializing String to XMLObject

ClassNotFoundException - class not found

writeObject

private void writeObject(ObjectOutputStream out)
                  throws IOException

Custom serialization logic which transform List of XMLObject into List of Strings.

Throws:

IOException - error performing XMLObject serialization

Class org.springframework.security.saml.parser.SAMLObject extends SAMLBase<T extends org.opensaml.xml.XMLObject,T extends org.opensaml.xml.XMLObject> implements Serializable

Serialization Methods

readObject

private void readObject(ObjectInputStream in)
                 throws IOException,
                        ClassNotFoundException

Deserializes XMLObject from the stream. Parsing of the content is done lazily upon access to the object. The reason for this is the fact that parser pool may not be initialized during system startup and the object may be stored in a serialized session.

Throws:

IOException - error deserializing String to XMLObject

ClassNotFoundException - class not found

writeObject

private void writeObject(ObjectOutputStream out)
                  throws IOException

Custom serialization logic which transform XMLObject into String.

Throws:

IOException - error performing XMLObject serialization

Package org.springframework.security.saml.trust

Class org.springframework.security.saml.trust.UntrustedCertificateException extends CertificateException implements Serializable

Serialized Fields

x509Certificates

X509Certificate[] x509Certificates

Untrusted chain.

Package org.springframework.security.saml.websso

Class org.springframework.security.saml.websso.WebSSOProfileOptions extends Object implements Serializable

Serialized Fields

binding

String binding

allowedIDPs

Set<E> allowedIDPs

providerName

String providerName

assertionConsumerIndex

Integer assertionConsumerIndex

nameID

String nameID

allowCreate

Boolean allowCreate

passive

Boolean passive

forceAuthn

Boolean forceAuthn

includeScoping

Boolean includeScoping

proxyCount

Integer proxyCount

relayState

String relayState

authnContexts

Collection<E> authnContexts

authnContextComparison

org.opensaml.saml2.core.AuthnContextComparisonTypeEnumeration authnContextComparison

requesterIds

Set<E> requesterIds