PicketLink Federation Common Server Bindings for JBoss AS 2.1.6.Final-redhat-2

org.picketlink.trust.jbossws.jaas
Class SAMLRoleLoginModule

java.lang.Object
  extended by org.jboss.security.auth.spi.AbstractServerLoginModule
      extended by org.picketlink.trust.jbossws.jaas.SAMLRoleLoginModule
All Implemented Interfaces:
LoginModule

public class SAMLRoleLoginModule
extends org.jboss.security.auth.spi.AbstractServerLoginModule

A login module that extracts the roles from the SAML assertion that has been set in the Subject. This module is always a follow up to other modules such as JBWSTokenIssuingLoginModule

This login module checks the Subject for a SamlCredential in the public credentials section. From the credential, we extract the assertion. The assertion should contain the roles.

Since:
Jun 6, 2011
Author:
Anil.Saldhana@redhat.com

Field Summary
 
Fields inherited from class org.jboss.security.auth.spi.AbstractServerLoginModule
callbackHandler, log, loginOk, options, principalClassName, sharedState, subject, unauthenticatedIdentity, useFirstPass
 
Constructor Summary
SAMLRoleLoginModule()
           
 
Method Summary
 boolean commit()
           
protected  Principal getIdentity()
          We first check the shared state for the principal.
protected  Group[] getRoleSets()
           
 
Methods inherited from class org.jboss.security.auth.spi.AbstractServerLoginModule
abort, addValidOptions, checkOptions, createGroup, createIdentity, getCallerPrincipalGroup, getUnauthenticatedIdentity, getUseFirstPass, initialize, login, logout
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

SAMLRoleLoginModule

public SAMLRoleLoginModule()
Method Detail

commit

public boolean commit()
               throws LoginException
Specified by:
commit in interface LoginModule
Overrides:
commit in class org.jboss.security.auth.spi.AbstractServerLoginModule
Throws:
LoginException

getIdentity

protected Principal getIdentity()
We first check the shared state for the principal. If not, we look inside the subject for a non-Group Principal

Specified by:
getIdentity in class org.jboss.security.auth.spi.AbstractServerLoginModule

getRoleSets

protected Group[] getRoleSets()
                       throws LoginException
Specified by:
getRoleSets in class org.jboss.security.auth.spi.AbstractServerLoginModule
Throws:
LoginException

PicketLink Federation Common Server Bindings for JBoss AS 2.1.6.Final-redhat-2

Copyright © 2013 JBoss by Red Hat. All Rights Reserved.