PicketLink Federation Common Server Bindings for JBoss AS 2.1.6.Final-redhat-2

org.picketlink.identity.federation.bindings.jboss.auth
Class SAML20TokenRoleAttributeProvider

java.lang.Object
  extended by org.picketlink.identity.federation.bindings.jboss.auth.SAML20CommonTokenRoleAttributeProvider
      extended by org.picketlink.identity.federation.bindings.jboss.auth.SAML20TokenRoleAttributeProvider
All Implemented Interfaces:
SAML20TokenAttributeProvider

public class SAML20TokenRoleAttributeProvider
extends SAML20CommonTokenRoleAttributeProvider

An implementation of the SAML20TokenAttributeProvider for JBoss which looks at the authenticated Subject and creates an Attribute containing the user's roles.

Configuration

 <TokenProviders>
    <TokenProvider ProviderClass="org.picketlink.identity.federation.core.wstrust.plugins.saml.SAML20TokenProvider"
        TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0"
        TokenElement="Assertion"
        TokenElementNS="urn:oasis:names:tc:SAML:2.0:assertion">
      <Property Key="AttributeProvider" Value="org.picketlink.identity.federation.bindings.jboss.auth.SAML20TokenRoleAttributeProvider"/>
      <Property Key="org.picketlink.identity.federation.bindings.jboss.auth.SAML20TokenRoleAttributeProvider.tokenRoleAttributeName" Value="role"/>
    </TokenProvider>
  </TokenProviders>
 
 
When configured, this attribute provider will be called by the SAML20TokenProvider to return an AttributeStatement from the STS token and supply them for insertion into the JAAS Subject. This returns a multi-valued Attribute to be included in the Assertion, where each value of the attribute is a JBoss user role. The name of this attribute defaults to DEFAULT_TOKEN_ROLE_ATTRIBUTE_NAME but may be set to any value through an optional property as shown above.

Author:
Babak Mozaffari

Field Summary
 
Fields inherited from class org.picketlink.identity.federation.bindings.jboss.auth.SAML20CommonTokenRoleAttributeProvider
DEFAULT_TOKEN_ROLE_ATTRIBUTE_NAME, JBOSS_ROLE_PRINCIPAL_NAME
 
Constructor Summary
SAML20TokenRoleAttributeProvider()
           
 
Method Summary
 
Methods inherited from class org.picketlink.identity.federation.bindings.jboss.auth.SAML20CommonTokenRoleAttributeProvider
getAttributeStatement, setProperties
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

SAML20TokenRoleAttributeProvider

public SAML20TokenRoleAttributeProvider()

PicketLink Federation Common Server Bindings for JBoss AS 2.1.6.Final-redhat-2

Copyright © 2013 JBoss by Red Hat. All Rights Reserved.