org.opensaml.saml2.core.Assertion.getSubject()方法的使用及代码示例

x33g5p2x  于2022-01-16 转载在 其他  
字(14.6k)|赞(0)|评价(0)|浏览(110)

本文整理了Java中org.opensaml.saml2.core.Assertion.getSubject()方法的一些代码示例,展示了Assertion.getSubject()的具体用法。这些代码示例主要来源于Github/Stackoverflow/Maven等平台,是从一些精选项目中提取出来的代码,具有较强的参考意义,能在一定程度帮忙到你。Assertion.getSubject()方法的具体详情如下:
包路径:org.opensaml.saml2.core.Assertion
类名称:Assertion
方法名:getSubject

Assertion.getSubject介绍

[英]Gets the Subject of this assertion.
[中]获取此断言的主题。

代码示例

代码示例来源:origin: cloudfoundry/uaa

Assertion assertion = response.getAssertions().get(0);
DateTime until = new DateTime().plusHours(1);
assertion.getSubject().getSubjectConfirmations().get(0).getSubjectConfirmationData().setRecipient(spEndpoint);
assertion.getConditions().getAudienceRestrictions().get(0).getAudiences().get(0).setAudienceURI(audienceEntityID);
assertion.getIssuer().setValue(issuerEntityId);
assertion.getSubject().getNameID().setValue(username);
assertion.getSubject().getNameID().setFormat(format);
assertion.getSubject().getSubjectConfirmations().get(0).getSubjectConfirmationData().setInResponseTo(null);
assertion.getSubject().getSubjectConfirmations().get(0).getSubjectConfirmationData().setNotOnOrAfter(until);
assertion.getConditions().setNotOnOrAfter(until);
SamlConfig config = new SamlConfig();

代码示例来源:origin: cloudfoundry/uaa

@Test
public void testBuildResponseWithSignedAssertion() throws MessageEncodingException, SAMLException,
    MetadataProviderException, SecurityException, MarshallingException, SignatureException {
  String authenticationId = UUID.randomUUID().toString();
  Authentication authentication = samlTestUtils.mockUaaAuthentication(authenticationId);
  SAMLMessageContext context = samlTestUtils.mockSamlMessageContext();
  IdpWebSSOProfileOptions options = new IdpWebSSOProfileOptions();
  options.setAssertionsSigned(true);
  profile.buildResponse(authentication, context, options);
  AuthnRequest request = (AuthnRequest) context.getInboundSAMLMessage();
  Response response = (Response) context.getOutboundSAMLMessage();
  Assertion assertion = response.getAssertions().get(0);
  Subject subject = assertion.getSubject();
  assertEquals("marissa", subject.getNameID().getValue());
  SubjectConfirmation subjectConfirmation = subject.getSubjectConfirmations().get(0);
  SubjectConfirmationData subjectConfirmationData = subjectConfirmation.getSubjectConfirmationData();
  assertEquals(request.getID(), subjectConfirmationData.getInResponseTo());
  verifyAssertionAttributes(authenticationId, assertion);
  assertNotNull(assertion.getSignature());
}

代码示例来源:origin: cloudfoundry/uaa

@Test
public void testBuildResponseForSamlRequestWithUnspecifiedNameID() throws MessageEncodingException, SAMLException,
    MetadataProviderException, SecurityException, MarshallingException, SignatureException {
  String authenticationId = UUID.randomUUID().toString();
  Authentication authentication = samlTestUtils.mockUaaAuthentication(authenticationId);
  SAMLMessageContext context = samlTestUtils.mockSamlMessageContext(
      samlTestUtils.mockAuthnRequest(NameIDType.UNSPECIFIED));
  IdpWebSSOProfileOptions options = new IdpWebSSOProfileOptions();
  options.setAssertionsSigned(false);
  profile.buildResponse(authentication, context, options);
  AuthnRequest request = (AuthnRequest) context.getInboundSAMLMessage();
  Response response = (Response) context.getOutboundSAMLMessage();
  Assertion assertion = response.getAssertions().get(0);
  Subject subject = assertion.getSubject();
  assertEquals("marissa", subject.getNameID().getValue());
  assertEquals(NameIDType.UNSPECIFIED, subject.getNameID().getFormat());
  SubjectConfirmation subjectConfirmation = subject.getSubjectConfirmations().get(0);
  SubjectConfirmationData subjectConfirmationData = subjectConfirmation.getSubjectConfirmationData();
  assertEquals(request.getID(), subjectConfirmationData.getInResponseTo());
  verifyAssertionAttributes(authenticationId, assertion);
}

代码示例来源:origin: cloudfoundry/uaa

@Test
public void testBuildResponseForSamlRequestWithPersistentNameID() throws Exception {
  String authenticationId = UUID.randomUUID().toString();
  Authentication authentication = samlTestUtils.mockUaaAuthentication(authenticationId);
  SAMLMessageContext context =
    samlTestUtils.mockSamlMessageContext(samlTestUtils.mockAuthnRequest(NameIDType.PERSISTENT));
  IdpWebSSOProfileOptions options = new IdpWebSSOProfileOptions();
  options.setAssertionsSigned(false);
  profile.buildResponse(authentication, context, options);
  AuthnRequest request = (AuthnRequest) context.getInboundSAMLMessage();
  Response response = (Response) context.getOutboundSAMLMessage();
  Assertion assertion = response.getAssertions().get(0);
  Subject subject = assertion.getSubject();
  assertEquals(authenticationId, subject.getNameID().getValue());
  assertEquals(NameIDType.PERSISTENT, subject.getNameID().getFormat());
  SubjectConfirmation subjectConfirmation = subject.getSubjectConfirmations().get(0);
  SubjectConfirmationData subjectConfirmationData = subjectConfirmation.getSubjectConfirmationData();
  assertEquals(request.getID(), subjectConfirmationData.getInResponseTo());
  verifyAssertionAttributes(authenticationId, assertion);
}

代码示例来源:origin: cloudfoundry/uaa

@Test
public void testBuildResponseForSamlRequestWithEmailAddressNameID() throws MessageEncodingException, SAMLException,
    MetadataProviderException, SecurityException, MarshallingException, SignatureException {
  String authenticationId = UUID.randomUUID().toString();
  Authentication authentication = samlTestUtils.mockUaaAuthentication(authenticationId);
  SAMLMessageContext context = samlTestUtils.mockSamlMessageContext(
      samlTestUtils.mockAuthnRequest(NameIDType.EMAIL));
  IdpWebSSOProfileOptions options = new IdpWebSSOProfileOptions();
  options.setAssertionsSigned(false);
  profile.buildResponse(authentication, context, options);
  AuthnRequest request = (AuthnRequest) context.getInboundSAMLMessage();
  Response response = (Response) context.getOutboundSAMLMessage();
  Assertion assertion = response.getAssertions().get(0);
  Subject subject = assertion.getSubject();
  assertEquals("marissa@testing.org", subject.getNameID().getValue());
  assertEquals(NameIDType.EMAIL, subject.getNameID().getFormat());
  SubjectConfirmation subjectConfirmation = subject.getSubjectConfirmations().get(0);
  SubjectConfirmationData subjectConfirmationData = subjectConfirmation.getSubjectConfirmationData();
  assertEquals(request.getID(), subjectConfirmationData.getInResponseTo());
  verifyAssertionAttributes(authenticationId, assertion);
}

代码示例来源:origin: cloudfoundry/uaa

@Test
public void testBuildResponse() throws MessageEncodingException, SAMLException, MetadataProviderException,
    SecurityException, MarshallingException, SignatureException {
  String authenticationId = UUID.randomUUID().toString();
  Authentication authentication = samlTestUtils.mockUaaAuthentication(authenticationId);
  SAMLMessageContext context = samlTestUtils.mockSamlMessageContext();
  IdpWebSSOProfileOptions options = new IdpWebSSOProfileOptions();
  options.setAssertionsSigned(false);
  profile.buildResponse(authentication, context, options);
  AuthnRequest request = (AuthnRequest) context.getInboundSAMLMessage();
  Response response = (Response) context.getOutboundSAMLMessage();
  assertEquals(request.getID(), response.getInResponseTo());
  Assertion assertion = response.getAssertions().get(0);
  Subject subject = assertion.getSubject();
  assertEquals("marissa", subject.getNameID().getValue());
  assertEquals(NameIDType.UNSPECIFIED, subject.getNameID().getFormat());
  SubjectConfirmation subjectConfirmation = subject.getSubjectConfirmations().get(0);
  SubjectConfirmationData subjectConfirmationData = subjectConfirmation.getSubjectConfirmationData();
  assertEquals(request.getID(), subjectConfirmationData.getInResponseTo());
  verifyAssertionAttributes(authenticationId, assertion);
}

代码示例来源:origin: apache/cloudstack

if (assertion!= null && assertion.getSubject() != null && assertion.getSubject().getNameID() != null) {
  session.setAttribute(SAMLPluginConstants.SAML_NAMEID, assertion.getSubject().getNameID().getValue());
  break;
    if (assertion.getSubject() != null && assertion.getSubject().getNameID() != null) {
      session.setAttribute(SAMLPluginConstants.SAML_NAMEID, assertion.getSubject().getNameID().getValue());

代码示例来源:origin: usnistgov/iheos-toolkit2

private static String getSubjectNameIDFormat(Assertion assertion) {
    String retVal = null;
    if (assertion.getSubject() != null && 
      assertion.getSubject().getNameID() != null) {
        retVal =  assertion.getSubject().getNameID().getFormat();
    }
    return retVal;
  }
/*

代码示例来源:origin: usnistgov/iheos-toolkit2

private static String getSubjectNameIDValue(Assertion assertion) {
  String retVal = null;
  if (assertion.getSubject() != null && 
    assertion.getSubject().getNameID() != null) {
      retVal =  assertion.getSubject().getNameID().getValue();
      //assertion.getSubject().getNameID().get
  }
  return retVal;
}
private static String getSubjectNameIDFormat(Assertion assertion) {

代码示例来源:origin: org.wso2.carbon.identity.inbound.auth.oauth2/org.wso2.carbon.identity.oauth

private List<SubjectConfirmation> getSubjectConfirmations(Assertion assertion) throws IdentityOAuth2Exception {
  List<SubjectConfirmation> subjectConfirmations = assertion.getSubject().getSubjectConfirmations();
  if (subjectConfirmations == null || subjectConfirmations.isEmpty()) {
    throw new IdentityOAuth2Exception("No SubjectConfirmation exist in Assertion");
  }
  return subjectConfirmations;
}

代码示例来源:origin: org.apache.rampart/rampart-trust

/**
 * Get the subject confirmation method of a SAML 2.0 assertion
 *
 * @param assertion SAML 2.0 assertion
 * @return Subject Confirmation method
 */
public static String getSAML2SubjectConfirmationMethod(Assertion assertion) {
  String subjectConfirmationMethod = RahasConstants.SAML20_SUBJECT_CONFIRMATION_HOK;
  List<SubjectConfirmation> subjectConfirmations = assertion.getSubject().getSubjectConfirmations();
  if (subjectConfirmations.size() > 0) {
    subjectConfirmationMethod = subjectConfirmations.get(0).getMethod();
  }
  return subjectConfirmationMethod;
}

代码示例来源:origin: org.wso2.carbon.identity.authenticator.outbound.saml2sso/org.wso2.carbon.identity.authenticator.outbound.saml2sso

protected void processSubject(Assertion assertion, AuthenticationContext context)
    throws SAML2SSOAuthenticationException {
  String subject = null;
  if (assertion.getSubject() != null && assertion.getSubject().getNameID() != null) {
    subject = assertion.getSubject().getNameID().getValue();
  }
  if (StringUtils.isBlank(subject)) {
    throw new SAML2SSOAuthenticationException("Assertion does not contain the name of the subject");
  }
  FederatedUser federatedUser = new FederatedUser(subject);
  context.addParameter("Subject", federatedUser);
}

代码示例来源:origin: org.wso2.carbon.identity.inbound.auth.oauth2/org.wso2.carbon.identity.oauth

private String getNameIdValue(Assertion assertion) throws IdentityOAuth2Exception {
  if (assertion.getSubject().getNameID() != null) {
    return assertion.getSubject().getNameID().getValue();
  } else {
    throw new IdentityOAuth2Exception("NameID value is null. Cannot proceed");
  }
}

代码示例来源:origin: OpenConext/Mujina

@Override
 @SuppressWarnings("unchecked")
 protected void verifyAssertion(Assertion assertion, AuthnRequest request, SAMLMessageContext context) throws AuthenticationException, SAMLException, org.opensaml.xml.security.SecurityException, ValidationException, DecryptionException {
  //nope
  context.setSubjectNameIdentifier(assertion.getSubject().getNameID());
 }
} : new WebSSOProfileConsumerImpl();

代码示例来源:origin: coveo/saml-client

/**
  * Retrieves the Name ID from the SAML response. This is normally the name of the authenticated
  * user.
  *
  * @return The Name ID from the SAML response.
  */
 public String getNameID() {
  return assertion.getSubject().getNameID().getValue();
 }
}

代码示例来源:origin: usnistgov/iheos-toolkit2

/**
 * Method getConfirmationMethods returns the confirmationMethods of this 
 * AssertionWrapper model.
 *
 * @return the confirmationMethods of this AssertionWrapper model.
 */
public List<String> getConfirmationMethods() {
  List<String> methods = new ArrayList<String>();
  if (saml2 != null) {
    org.opensaml.saml2.core.Subject subject = saml2.getSubject();
    List<org.opensaml.saml2.core.SubjectConfirmation> confirmations = 
      subject.getSubjectConfirmations();
    for (org.opensaml.saml2.core.SubjectConfirmation confirmation : confirmations) {
      methods.add(confirmation.getMethod());
    }
  } 
  return methods;
}

代码示例来源:origin: org.wso2.carbon.identity.carbon.auth.saml2/org.wso2.carbon.identity.authenticator.saml2.sso.ui

/**
 * Get the username from the SAML2 Response
 *
 * @param response SAML2 Response
 * @return username username contained in the SAML Response
 */
private String getUsernameFromResponse(Response response) {
  List<Assertion> assertions = response.getAssertions();
  Assertion assertion = null;
  if (assertions != null && assertions.size() > 0) {
    // There can be only one assertion in a SAML Response, so get the first one
    assertion = assertions.get(0);
    return assertion.getSubject().getNameID().getValue();
  }
  return null;
}

代码示例来源:origin: coveo/saml-client

private void validateAssertion(Response response) throws SamlException {
 if (response.getAssertions().size() != 1) {
  throw new SamlException("The response doesn't contain exactly 1 assertion");
 }
 Assertion assertion = response.getAssertions().get(0);
 if (!assertion.getIssuer().getValue().equals(responseIssuer)) {
  throw new SamlException("The assertion issuer didn't match the expected value");
 }
 if (assertion.getSubject().getNameID() == null) {
  throw new SamlException(
    "The NameID value is missing from the SAML response; this is likely an IDP configuration issue");
 }
 enforceConditions(assertion.getConditions());
}

代码示例来源:origin: metatron-app/metatron-discovery

public SubjectConfirmation(Authentication authentication){
 SAMLCredential credential = (SAMLCredential) authentication.getCredentials();
 Subject subject = credential.getAuthenticationAssertion().getSubject();
 List<org.opensaml.saml2.core.SubjectConfirmation> subjectConfirmations = subject.getSubjectConfirmations();
 org.opensaml.saml2.core.SubjectConfirmation subjectConfirmation = subjectConfirmations.get(0);
 SubjectConfirmationData subjectConfirmationData = subjectConfirmation.getSubjectConfirmationData();
 method = subjectConfirmation.getMethod();
 inResponseTo = subjectConfirmationData.getInResponseTo();
 notOnOrAfter = subjectConfirmationData.getNotOnOrAfter();
 recipient = subjectConfirmationData.getRecipient();
}

代码示例来源:origin: usnistgov/iheos-toolkit2

private void verifyAssertion(Assertion assertion, AuthnRequest request, BasicSAMLMessageContext context) throws  SAMLException, org.opensaml.xml.security.SecurityException, ValidationException, Exception {
  // Verify assertion time skew
  if (!isDateTimeSkewValid(MAX_ASSERTION_TIME, assertion.getIssueInstant())) {
    System.out.println("Authentication statement is too old to be used"+assertion.getIssueInstant());
    throw new Exception("Users authentication credential is too old to be used");
  }
  // Verify validity of assertion
  // Advice is ignored, core 574
  verifyIssuer(assertion.getIssuer(), context);
  verifyAssertionSignature(assertion.getSignature(), context);
  verifySubject(assertion.getSubject(), request, context);
  // Assertion with authentication statement must contain audience restriction
  if (assertion.getAuthnStatements().size() > 0) {
    verifyAssertionConditions(assertion.getConditions(), context, true);
    for (AuthnStatement statement : assertion.getAuthnStatements()) {
      verifyAuthenticationStatement(statement, context);
    }
  } else {
    verifyAssertionConditions(assertion.getConditions(), context, false);
  }
}
/**

内容来源于网络,如有侵权,请联系作者删除!

Assertion

相关文章

    查看更多

    热门标签

    更多
    JavaquerypythonNode开发语言requestUtil数据库Table后端算法LoggerMessageElementParser

    最新文章

    更多
    • 蜀ICP备13028337号-1 大数据知识库 https://www.saoniuhuo.com © All rights reserved
    • 本站内容来源互联网,如果侵犯您的权益请联系我们删除, 联系方式:448109455@qq.com