com.ibm.websphere.wssecurity.callbackhandler
Class SAMLGenerateCallback
- java.lang.Object
com.ibm.websphere.wssecurity.callbackhandler.SAMLGenerateCallback
All implemented interfaces:
javax.security.auth.callback.Callback
- public class SAMLGenerateCallback
- extends java.lang.Object
- implements javax.security.auth.callback.Callback
A SAML token remains valid in the process if it was valid at the time the process received that token.
See Also:
Constructor Summary
Constructor and Description |
---|
SAMLGenerateCallback()
|
Method Summary
Modifier and Type | Method and Description |
---|---|
|
cacheToken()
Returns the flag that indicates whether SAML should be cached.
|
|
getAlias()
Returns the alias name of the private key for the SAML token requester.
|
|
getAppliesTo()
Returns AppliesTo.
|
|
getAttributes()
Returns ArrayList
|
|
getAudienceRestriction()
|
|
getAuthenticationMethod()
Returns the AuthenticationMethod to be used when self-issuing a SAML token.
|
|
getCacheCushion()
Returns the value in milliseconds for the cacheCushion.
|
|
getCertStores()
Returns the list of certificate stores that are available.
|
|
getClockSkew()
Returns the time in milliseconds that is allowed for clock skew between the token
issuer and the consumer.
|
|
getConfirmationMethod()
Returns the ConfirmationMethod to be used when requesting/generating a SAML token.
|
|
getIssueMode()
|
|
getKeyName()
Returns the name of the key.
|
|
getKeyPassword()
Returns the password for recovering the key.
|
|
getKeySize()
Returns the key size for the SecretKey, "http://docs.oasis-open.org/ws-sx/ws-trust/200512/SymmetricKey"
|
|
getKeyStorePassword()
Returns the password used for the SAML token requester's keyStore.
|
|
getKeyStorePath()
Returns the file path from which the keyStore for the SAML token requester is loaded.
|
|
getKeyStoreReference()
Returns the reference name of the keyStore used by the requesting entity
for the creation of SAML tokens.
|
|
getKeyStoreType()
Returns the type of the keyStore used by the SAML token requester.
|
|
getKeyType()
Returns the name of Key Type to be used for the Subject confirmation for a SAML a SAML token
requester.
|
|
getNameId()
Return the specified SAML token name identifier to be generated
|
|
getRSTTProperties()
Return WS-Trust request parameters as defined in RSTT
|
|
getSSLConfigUrl()
Returns SSLConfiguration location .
|
|
getStsBinding()
Returns the name for the policySet binding used by the WS-Trust client
|
|
getStsBindingScope()
Return the binding scope for WS-Trust client, and it is either "domain" or "application".
|
|
getStsPolicy()
Returns the policySet name for WS-Trust client
|
|
getStsSoapVersion()
Returns the SOAP version for the WS-Trust client
|
|
getStsURI()
Returns the URL of SecurityTokenService (issuer of the SAML token)
|
|
getTargetServiceAlias()
Returns the target service's Cetificate alias
|
|
getTokenRequest()
Returns the name of the token request method.
|
|
getTokenType()
Return the required TokenType to be generated
|
|
getUsekeyType()
Returns the Usekey keyInfoType
|
getWSSConsumingContext()
Gets WSSConsumingContext object.
|
|
getWSSGenerationContext()
Returns WSSGenerationContext object.
|
|
|
getWSTrustNamespace()
Return the WS-Trust namespace used in the SOAP communication with the Security Token provider.
|
|
includeCredentialToken()
|
|
includeExpiration()
|
|
includeGroupIds()
|
|
includeHostName()
|
|
includeOID()
|
|
includePrimaryGroupId()
|
|
includeRealmName()
|
|
includeSecurityName()
|
|
includeUniqueSecurityName()
|
|
isCollectionRequest()
|
|
isFailOverToTokenRequest()
Returns an indication of whether to request a new SAML token if
the SAML token provided in the RequestContext is not valid.
|
|
isSignatureRequired()
Returns the flag that indicates whether SAML should be signed by SAML token provider
|
|
setAlias(java.lang.String alias)
Sets the alias of private key for the SAML token requester.
|
|
setAppliesTo(java.lang.String uri)
|
|
setAttributes(java.util.ArrayList<com.ibm.wsspi.wssecurity.saml.data.SAMLAttribute> attrs)
Sets ArrayList
|
|
setAudienceRestriction(boolean option)
|
|
setAuthenticationMethod(java.lang.String method)
Sets the AuthenticationMethod to be used when self-issuing a SAML token
|
|
setCacheCushion(long time)
Sets the value in milliseconds for the cacheCushion.
|
|
setCacheToken(boolean option)
Sets the flag that indicates whether SAML should be cached
|
|
setCertStores(java.util.List<java.security.cert.CertStore> certStores)
Sets the list of certificate stores.
|
|
setClockSkew(long time)
Sets the time in milliseconds that is allowed for clock skew between the token
issuer and the consumer.
|
|
setCollectionRequest(boolean collectionRequest)
|
|
setConfirmationMethod(java.lang.String method)
Sets the type of Subject ConfirmationMethod to be used by the token requester.
|
|
setFailOverToTokenRequest(boolean option)
Sets the flag that indicates whether to request a new SAML token if SAMLToken
from RequestContext is invalid
|
|
setIncludeCredentialToken(boolean flag)
Sets boolean flag to assert CredentialToken from WSCredential as an SAML attribute.
|
|
setIncludeExpiration(boolean flag)
Sets boolean flag to assert Expiration from WSCredential as an SAML attribute.
|
|
setIncludeGroupIds(boolean flag)
Sets boolean flag to assert GroupIds from WSCredential as an SAML attribute.
|
|
setIncludeHostName(boolean flag)
Sets boolean flag to assert HostName from WSCredential as an SAML attribute.
|
|
setIncludeOID(boolean flag)
Sets boolean flag to assert OID from WSCredential as an SAML attribute.
|
|
setIncludePrimaryGroupId(boolean flag)
Sets boolean flag to assert PrimaryGroupId from WSCredential as an SAML attribute.
|
|
setIncludeRealmName(boolean flag)
Sets boolean flag to assert realm from WSCredential as an SAML attribute.
|
|
setIncludeSecurityName(boolean flag)
Sets boolean flag to assert SecurityName from WSCredential as an SAML attribute.
|
|
setIncludeUniqueSecurityName(boolean flag)
Sets boolean flag to assert UniqueSecurityName from WSCredential as an SAML attribute.
|
|
setIsSignatureRequired(boolean option)
Sets the flag that indicates whether SAML should be signed by SAML token provider
|
|
setIssueMode(com.ibm.wsspi.wssecurity.saml.config.RequesterConfig.requestMode mode)
|
|
setKeyName(java.lang.String keyName)
Sets the name of the key.
|
|
setKeyPassword(char[] keyPassword)
Sets the password for recovering the key.
|
|
setKeySize(java.lang.String size)
Sets the key size for the Secret Key
|
|
setKeyStorePassword(char[] storePassword)
Sets the password value for the keyStore used by the SAML token requester.
|
|
setKeyStorePath(java.lang.String storePath)
Sets the file path from which the keyStore for the SAML token requester is loaded.
|
|
setKeyStoreReference(java.lang.String storeRef)
Sets the reference name of the keyStore.
|
|
setKeyStoreType(java.lang.String storeType)
Sets the type of the keyStore to be used by the SAML token requester.
|
|
setKeyType(java.lang.String type)
Sets the name of key type.
|
|
setNameId(java.lang.String userid)
Set the SAML Token Name Identifier.
|
|
setRSTTProperties(java.util.Map<java.lang.String,java.lang.String> rstt)
Set RSTT for WS-Trust request
|
|
setSSLConfigUrl(java.lang.String location)
Sets SSLConfigUrl object.
|
|
setStsBinding(java.lang.String policySet)
Sets the name of WS-Trust client bindings.
|
|
setStsBindingScope(java.lang.String scope)
Sets the binding scope for WS-Trust client, and it could be set to "domain" or "application".
|
|
setStsPolicy(java.lang.String policySet)
Sets the name of WS-Trust client policy set.
|
|
setStsSoapVersion(java.lang.String version)
Sets the required SOAP version of WS-Trust client
|
|
setStsURI(java.lang.String uri)
Sets the URL name of SecurityTokenservice (token issuer).
|
|
setTargetserviceAlias(java.lang.String alias)
Set the target service's Cetificate alias
|
|
setTokenRequest(java.lang.String requestMode)
Sets the SAMLToken request method, "issue", "propagation", or "issueByWSPrincipal"
|
|
setTokenType(java.lang.String tokenType)
Set the required TokenType.
|
|
setUseKeyType(java.lang.String type)
Set the Usekey keyInfoType
|
|
setUseUniqueSecurityName(boolean flag)
Sets boolean flag to use UniqueSecurityName from WSCredential as NameID or NameIdentifier.
|
|
setWSSConsumingContext(WSSConsumingContext concont)
Sets WSSConsumingContext object.
|
|
setWSSGenerationContext(WSSGenerationContext gencont)
Sets WSSGenerationContext object.
|
|
setWSTrustNamespace(java.lang.String wstNamespace)
Set WS-Trust namespace used in the SOAP communication with the Security Token provider.
|
|
useUniqueSecurityName()
|
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail
SAMLGenerateCallback
- public SAMLGenerateCallback()
Method Detail
getKeyStoreReference
- public java.lang.String getKeyStoreReference( )
Returns the reference name of the keyStore used by the requesting entity
for the creation of SAML tokens.
Returns:
reference name of the keyStore
setKeyStoreReference
- public void setKeyStoreReference( java.lang.String storeRef)
Sets the reference name of the keyStore.
Parameters:
storeRef
- reference name of the keyStore used by the requesting entity
for the creation of SAML tokens. getKeyStorePath
- public java.lang.String getKeyStorePath( )
Returns the file path from which the keyStore for the SAML token requester is loaded.
Returns:
the file path from which the keyStore is loaded.
setKeyStorePath
- public void setKeyStorePath(java.lang.String storePath)
Sets the file path from which the keyStore for the SAML token requester is loaded.
Parameters:
storePath
- path of the keyStore. getKeyStoreType
- public java.lang.String getKeyStoreType( )
Returns the type of the keyStore used by the SAML token requester.
Returns:
a string indicating the type of the keyStore used.
setKeyStoreType
- public void setKeyStoreType(java.lang.String storeType)
Sets the type of the keyStore to be used by the SAML token requester.
Parameters:
storeType
- a string for the keyStore type used. getKeyStorePassword
- public char[] getKeyStorePassword( )
Returns the password used for the SAML token requester's keyStore.
Returns:
a character array for the password used to check the integrity of the keyStore or the
password used to unlock the keyStore
getConfirmationMethod
- public java.lang.String getConfirmationMethod( )
Returns the ConfirmationMethod to be used when requesting/generating a SAML token.
Returns:
the required Subject ConfirmationMethod. The valid values
are "holder-of-key", "bearer", or "sender-vouches"
getAuthenticationMethod
- public java.lang.String getAuthenticationMethod( )
Returns the AuthenticationMethod to be used when self-issuing a SAML token.
Returns:
the required AuthenticationMethod
getStsPolicy
- public java.lang.String getStsPolicy( )
Returns the policySet name for WS-Trust client
Returns:
the policySet name for WS-Trust client
getStsBinding
- public java.lang.String getStsBinding( )
Returns the name for the policySet binding used by the WS-Trust client
Returns:
the name of the policySet binding for the WS-Trust client
getStsURI
- public java.lang.String getStsURI( )
Returns the URL of SecurityTokenService (issuer of the SAML token)
Returns:
the URL of SecurityTokenService
getKeyType
- public java.lang.String getKeyType( )
Returns the name of Key Type to be used for the Subject confirmation for a SAML a SAML token
requester.
Returns:
the requested Key Type name, the valid values are
- "http://docs.oasis-open.org/ws-sx/ws-trust/200512/PublicKey", or
- "http://docs.oasis-open.org/ws-sx/ws-trust/200512/SymmetricKey", or
- "http://docs.oasis-open.org/ws-sx/ws-trust/200512/BearerKey"
getKeySize
- public java.lang.String getKeySize( )
Returns the key size for the SecretKey, "http://docs.oasis-open.org/ws-sx/ws-trust/200512/SymmetricKey"
Returns:
the key size for the SecretKey, "http://docs.oasis-open.org/ws-sx/ws-trust/200512/SymmetricKey"
getStsSoapVersion
- public java.lang.String getStsSoapVersion( )
Returns the SOAP version for the WS-Trust client
Returns:
the the SOAP version for the WS-Trust client, the valid values are 1.1 or 1.2
isFailOverToTokenRequest
- public boolean isFailOverToTokenRequest( )
Returns an indication of whether to request a new SAML token if
the SAML token provided in the RequestContext is not valid.
Returns:
a boolean flag that indicates whether to request a new SAML token if
the SAML token provided in the RequestContext is not valid. The default behavior
is to always request a new SAMLToken if incoming SAMLToken in RequestContext
is invalid.
setKeyStorePassword
- public void setKeyStorePassword( char[] storePassword)
Sets the password value for the keyStore used by the SAML token requester.
Parameters:
storePassword
- character array for the password used to check the integrity of the
keyStore or the password used to unlock the keyStore getAlias
- public java.lang.String getAlias( )
Returns the alias name of the private key for the SAML token requester.
Returns:
alias name of private key
setAlias
- public void setAlias(java.lang.String alias)
Sets the alias of private key for the SAML token requester.
getKeyPassword
- public char[] getKeyPassword()
Returns the password for recovering the key.
Returns:
password for recovering the key.
setKeyPassword
- public void setKeyPassword(char[] keyPassword)
Sets the password for recovering the key.
Parameters:
keyPassword
- character array for the password used to recover the key. getKeyName
- public java.lang.String getKeyName( )
Returns the name of the key.
Returns:
name of the key
setKeyName
- public void setKeyName(java.lang.String keyName)
Sets the name of the key.
Parameters:
keyName
- name of the key getCertStores
- public java.util.List<java.security.cert.CertStore> getCertStores( )
Returns the list of certificate stores that are available.
Returns:
list of certificate stores.
getTokenRequest
- public java.lang.String getTokenRequest( )
Returns the name of the token request method.
Returns:
name of the token request method, valid values are
"issue", "propagation", or "issueByWSPrincipal". The default behavior is "issue",
in which web service client will request a new SAML token either using ws-trust or self-issue.
The "propagation" means that web service client will use SAMLToken from RunAsSubject for downstream call.
The "issueByWSPrincipal" means that web service client will self-generate a SAMLToken based on principal
in RunAsSubject for downstream call.
setCertStores
- public void setCertStores(java.util.List<java.security.cert.CertStore> certStores)
Sets the list of certificate stores.
Parameters:
certStores
- list of certificate stores setConfirmationMethod
- public void setConfirmationMethod( java.lang.String method)
Sets the type of Subject ConfirmationMethod to be used by the token requester.
Parameters:
method
- a string identifying the Subject ConfirmationMethod. setAuthenticationMethod
- public void setAuthenticationMethod( java.lang.String method)
Sets the AuthenticationMethod to be used when self-issuing a SAML token
Parameters:
method
- a string identifying the AuthenticationMethod. setStsPolicy
- public void setStsPolicy(java.lang.String policySet)
Sets the name of WS-Trust client policy set.
setStsBinding
- public void setStsBinding(java.lang.String policySet)
Sets the name of WS-Trust client bindings.
Parameters:
policySet
- the name of WS-Trust client bindings. setStsURI
- public void setStsURI(java.lang.String uri)
Sets the URL name of SecurityTokenservice (token issuer).
Parameters:
uri
- the URI name of the Security Token Service (STS). setKeyType
- public void setKeyType(java.lang.String type)
Sets the name of key type.
setKeySize
- public void setKeySize(java.lang.String size)
Sets the key size for the Secret Key
Parameters:
size
- the key size of Secret Key. setStsSoapVersion
- public void setStsSoapVersion(java.lang.String version)
Sets the required SOAP version of WS-Trust client
Parameters:
version
- the required SOAP version for WS-Trust client setTokenRequest
- public void setTokenRequest(java.lang.String requestMode)
Sets the SAMLToken request method, "issue", "propagation", or "issueByWSPrincipal"
Parameters:
requestMode
- a string for the SAMLToken request mode. setStsBindingScope
- public void setStsBindingScope( java.lang.String scope)
Sets the binding scope for WS-Trust client, and it could be set to "domain" or "application".
A value of domain indicates that the specified binding is a general binding,
and a value of application indicates that the specified binding is an application specific binding.
Parameters:
scope
- the binding scope for WS-Trust client, and it is either "domain" or "application". getStsBindingScope
- public java.lang.String getStsBindingScope( )
Return the binding scope for WS-Trust client, and it is either "domain" or "application".
A value of domain indicates that the specifiied binding is a general binding,
and a value of application indicates that the specified binding is an application specific binding.
Returns:
the binding scope for WS-Trust client, and it is either "domain" or "application".
getWSTrustNamespace
- public java.lang.String getWSTrustNamespace( )
Return the WS-Trust namespace used in the SOAP communication with the Security Token provider.
wstNamespace is a String value that can be set to "http://schemas.xmlsoap.org/ws/2005/02/trust" for ws-trust 1.2,
or "http://docs.oasis-open.org/ws-sx/ws-trust/200512" for ws-trust 1.3
Returns:
the WS-Trust namespace
setWSTrustNamespace
- public void setWSTrustNamespace( java.lang.String wstNamespace)
Set WS-Trust namespace used in the SOAP communication with the Security Token provider.
wstNamespace is a String value that can be set to "http://schemas.xmlsoap.org/ws/2005/02/trust" for ws-trust 1.2,
or "http://docs.oasis-open.org/ws-sx/ws-trust/200512" for ws-trust 1.3
Parameters:
wstNamespace
- the WS-Trust NameSpace, it is "http://schemas.xmlsoap.org/ws/2005/02/trust" for ws-trust 1.2,
or "http://docs.oasis-open.org/ws-sx/ws-trust/200512" for ws-trust 1.3 isCollectionRequest
- public boolean isCollectionRequest( )
setCollectionRequest
- public void setCollectionRequest( boolean collectionRequest)
getRSTTProperties
- public java.util.Map<java.lang.String,java.lang.String> getRSTTProperties( )
Return WS-Trust request parameters as defined in RSTT
Returns:
WS-Trust RSTT parameters
setRSTTProperties
- public void setRSTTProperties(java.util.Map<java.lang.String,java.lang.String> rstt)
Set RSTT for WS-Trust request
setFailOverToTokenRequest
- public void setFailOverToTokenRequest( boolean option)
Sets the flag that indicates whether to request a new SAML token if SAMLToken
from RequestContext is invalid
Parameters:
option
- a flag that indicates whether to request a new SAML token if incoming SAMLToken becomes invalid. isSignatureRequired
- public boolean isSignatureRequired( )
Returns the flag that indicates whether SAML should be signed by SAML token provider
Returns:
the flag that indicates whether SAML should be signed by SAML provider
setIsSignatureRequired
- public void setIsSignatureRequired( boolean option)
Sets the flag that indicates whether SAML should be signed by SAML token provider
Parameters:
option
- a flag that indicates whether the SAML token should be signed by SAML token provider. cacheToken
- public boolean cacheToken()
Returns the flag that indicates whether SAML should be cached.
Returns:
the flag that indicates whether SAML should be cached.
getCacheCushion
- public long getCacheCushion()
Returns the value in milliseconds for the cacheCushion. Note that this value
is important in determining the expiration status of a token, see above.
Returns:
the token expiration time in milliseconds.
setCacheToken
- public void setCacheToken(boolean option)
Sets the flag that indicates whether SAML should be cached
Parameters:
option
- a flag that indicates whether the SAML token should be cached. setCacheCushion
- public void setCacheCushion(long time)
Sets the value in milliseconds for the cacheCushion. Note that this value
is important in determining the expiration status of a token, see above.
Parameters:
time
- the time limit in milliseconds. getTargetServiceAlias
- public java.lang.String getTargetServiceAlias( )
Returns the target service's Cetificate alias
Returns:
the target service's Cetificate alias.
setTargetserviceAlias
- public void setTargetserviceAlias( java.lang.String alias)
Set the target service's Cetificate alias
getUsekeyType
- public java.lang.String getUsekeyType( )
Returns the Usekey keyInfoType
Returns:
the Usekey keyInfoType
setUseKeyType
- public void setUseKeyType(java.lang.String type)
Set the Usekey keyInfoType
getClockSkew
- public long getClockSkew()
Returns the time in milliseconds that is allowed for clock skew between the token
issuer and the consumer. The clock skew is used when setting the expiration
of the token on an Outbound request. The expiration time of the token needs to be
above the current time plus the clock skew.
Returns:
the time in milliseconds allowed for clock skew. The default clock skew
is 0 minutes.
setClockSkew
- public void setClockSkew(long time)
Sets the time in milliseconds that is allowed for clock skew between the token
issuer and the consumer. The clock skew is used when setting the expiration
of the token on an Outbound request. The expiration time of the token needs to be
above the current time plus the clock skew.
Parameters:
time
- a long integer representing time for the clockSkew value in milliseconds. getTokenType
- public java.lang.String getTokenType( )
Return the required TokenType to be generated
Returns:
a String represents the TokenType
setTokenType
- public void setTokenType(java.lang.String tokenType)
Set the required TokenType.
Parameters:
tokenType
- which is a String represents the required TokenType getNameId
- public java.lang.String getNameId( )
Return the specified SAML token name identifier to be generated
Returns:
a String represents the SAML token user name identifier
setNameId
- public void setNameId(java.lang.String userid)
Set the SAML Token Name Identifier.
Parameters:
userid
- which is a String represents the SAML Token name identifier getWSSConsumingContext
- public WSSConsumingContext getWSSConsumingContext( )
Gets WSSConsumingContext object.
Returns:
WSSConsumingContext object
setWSSConsumingContext
- public void setWSSConsumingContext( WSSConsumingContext concont)
Sets WSSConsumingContext object.
Parameters:
concont
- WSSConsumingContext object getWSSGenerationContext
- public WSSGenerationContext getWSSGenerationContext( )
Returns WSSGenerationContext object.
Returns:
WSSGenerationContext object
setWSSGenerationContext
- public void setWSSGenerationContext( WSSGenerationContext gencont)
Sets WSSGenerationContext object.
Parameters:
gencont
- WSSGenerationContext object getSSLConfigUrl
- public java.lang.String getSSLConfigUrl( )
Returns SSLConfiguration location .
Returns:
WSSLConfiguration location.
setSSLConfigUrl
- public void setSSLConfigUrl(java.lang.String location)
Sets SSLConfigUrl object.
getAppliesTo
- public java.lang.String getAppliesTo( )
Returns AppliesTo.
Returns:
AppliesTo.
setAppliesTo
- public void setAppliesTo(java.lang.String uri)
getAttributes
- public java.util.ArrayList<com.ibm.wsspi.wssecurity.saml.data.SAMLAttribute> getAttributes( )
Returns ArrayList.
Returns:
ArrayList.
setAttributes
- public void setAttributes(java.util.ArrayList<com.ibm.wsspi.wssecurity.saml.data.SAMLAttribute> attrs)
Sets ArrayList object via WSSAPI.
includeRealmName
- public boolean includeRealmName( )
setIncludeRealmName
- public void setIncludeRealmName( boolean flag)
Sets boolean flag to assert realm from WSCredential as an SAML attribute.
includeSecurityName
- public boolean includeSecurityName( )
setIncludeSecurityName
- public void setIncludeSecurityName( boolean flag)
Sets boolean flag to assert SecurityName from WSCredential as an SAML attribute.
includeUniqueSecurityName
- public boolean includeUniqueSecurityName( )
setIncludeUniqueSecurityName
- public void setIncludeUniqueSecurityName( boolean flag)
Sets boolean flag to assert UniqueSecurityName from WSCredential as an SAML attribute.
includeCredentialToken
- public boolean includeCredentialToken( )
setIncludeCredentialToken
- public void setIncludeCredentialToken( boolean flag)
Sets boolean flag to assert CredentialToken from WSCredential as an SAML attribute.
includeOID
- public boolean includeOID()
setIncludeOID
- public void setIncludeOID(boolean flag)
Sets boolean flag to assert OID from WSCredential as an SAML attribute.
includeExpiration
- public boolean includeExpiration( )
setIncludeExpiration
- public void setIncludeExpiration( boolean flag)
Sets boolean flag to assert Expiration from WSCredential as an SAML attribute.
includePrimaryGroupId
- public boolean includePrimaryGroupId( )
setIncludePrimaryGroupId
- public void setIncludePrimaryGroupId( boolean flag)
Sets boolean flag to assert PrimaryGroupId from WSCredential as an SAML attribute.
includeGroupIds
- public boolean includeGroupIds( )
setIncludeGroupIds
- public void setIncludeGroupIds( boolean flag)
Sets boolean flag to assert GroupIds from WSCredential as an SAML attribute.
includeHostName
- public boolean includeHostName( )
setIncludeHostName
- public void setIncludeHostName( boolean flag)
Sets boolean flag to assert HostName from WSCredential as an SAML attribute.
useUniqueSecurityName
- public boolean useUniqueSecurityName( )
setUseUniqueSecurityName
- public void setUseUniqueSecurityName( boolean flag)
Sets boolean flag to use UniqueSecurityName from WSCredential as NameID or NameIdentifier.
getIssueMode
- public com.ibm.wsspi.wssecurity.saml.config.RequesterConfig.requestMode getIssueMode( )
setIssueMode
- public void setIssueMode(com.ibm.wsspi.wssecurity.saml.config.RequesterConfig.requestMode mode)
getAudienceRestriction
- public boolean getAudienceRestriction( )
Returns:
audience restriction
setAudienceRestriction
- public void setAudienceRestriction( boolean option)
Parameters:
option
- a flag that indicates whether udience restriction should be created in a
self issued SAML token.