org.picketlink.trust.jbossws.jaas
Class SAMLRoleLoginModule
java.lang.Object
org.jboss.security.auth.spi.AbstractServerLoginModule
org.picketlink.trust.jbossws.jaas.SAMLRoleLoginModule
- All Implemented Interfaces:
- LoginModule
public class SAMLRoleLoginModule
- extends org.jboss.security.auth.spi.AbstractServerLoginModule
A login module that extracts the roles from the SAML assertion that has been set in the Subject. This module is always a
follow up to other modules such as JBWSTokenIssuingLoginModule
This login module checks the Subject
for a SamlCredential
in the public credentials section. From the
credential, we extract the assertion. The assertion should contain the roles.
- Since:
- Jun 6, 2011
- Author:
- Anil.Saldhana@redhat.com
Fields inherited from class org.jboss.security.auth.spi.AbstractServerLoginModule |
callbackHandler, log, loginOk, options, principalClassName, sharedState, subject, unauthenticatedIdentity, useFirstPass |
Methods inherited from class org.jboss.security.auth.spi.AbstractServerLoginModule |
abort, addValidOptions, checkOptions, createGroup, createIdentity, getCallerPrincipalGroup, getUnauthenticatedIdentity, getUseFirstPass, initialize, login, logout |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
SAMLRoleLoginModule
public SAMLRoleLoginModule()
commit
public boolean commit()
throws LoginException
- Specified by:
commit
in interface LoginModule
- Overrides:
commit
in class org.jboss.security.auth.spi.AbstractServerLoginModule
- Throws:
LoginException
getIdentity
protected Principal getIdentity()
- We first check the shared state for the principal. If not, we look inside the subject for a non-
Group
Principal
- Specified by:
getIdentity
in class org.jboss.security.auth.spi.AbstractServerLoginModule
getRoleSets
protected Group[] getRoleSets()
throws LoginException
- Specified by:
getRoleSets
in class org.jboss.security.auth.spi.AbstractServerLoginModule
- Throws:
LoginException
Copyright © 2013 JBoss by Red Hat. All Rights Reserved.