| Modifier and Type | Field and Description |
|---|---|
private SessionManager<Session> |
AuthenticationEngine.sessionManager
Session manager.
|
| Modifier and Type | Method and Description |
|---|---|
protected void |
AuthenticationEngine.addSessionCookie(javax.servlet.http.HttpServletRequest httpRequest,
javax.servlet.http.HttpServletResponse httpResponse,
Session userSession)
Adds an IdP session cookie to the outbound response.
|
protected Map<String,LoginHandler> |
AuthenticationEngine.determinePossibleLoginHandlers(Session idpSession,
LoginContext loginContext)
Determines which configured login handlers will support the requested authentication methods.
|
protected void |
AuthenticationEngine.filterByForceAuthentication(Session idpSession,
LoginContext loginContext,
Map<String,LoginHandler> loginHandlers)
Filters out any login handler based on the requirement for forced authentication.
|
protected void |
AuthenticationEngine.filterByPassiveAuthentication(Session idpSession,
LoginContext loginContext,
Map<String,LoginHandler> loginHandlers)
Filters out any login handler that doesn't support passive authentication if the login context indicates passive
authentication is required.
|
protected void |
AuthenticationEngine.filterPreviousSessionLoginHandler(Map<String,LoginHandler> supportedLoginHandlers,
Session idpSession,
LoginContext loginContext)
Filters out the previous session login handler if there is no existing IdP session, no active authentication
methods, or if at least one of the active authentication methods do not match the requested authentication
methods.
|
protected LoginHandler |
AuthenticationEngine.selectLoginHandler(Map<String,LoginHandler> possibleLoginHandlers,
LoginContext loginContext,
Session idpSession)
Selects a login handler from a list of possible login handlers that could be used for the request.
|
protected void |
AuthenticationEngine.validateForcedReauthentication(Session idpSession,
String authnMethod,
Subject subject)
If forced authentication was required this method checks to ensure that the re-authenticated subject contains a
principal name that is equal to the principal name associated with the authentication method.
|
| Modifier and Type | Method and Description |
|---|---|
protected Session |
AbstractSAMLProfileHandler.getUserSession(InTransport inTransport)
Gets the user's session, if there is one.
|
protected Session |
AbstractSAMLProfileHandler.getUserSession(String principalName)
Gets the user's session based on their principal name.
|
| Modifier and Type | Method and Description |
|---|---|
protected void |
SLOProfileHandler.destroySession(Session session)
Destroy a session.
|
protected void |
SLOProfileHandler.localLogout(Session indirect,
HTTPInTransport inTransport,
HTTPOutTransport outTransport,
SLOProfileHandler.SLORequestContext requestContext)
Handles clearing the active session, possibly an additional "indirect" session,
and presenting a logout response to the client using a Velocity template.
|
| Modifier and Type | Field and Description |
|---|---|
private SessionManager<Session> |
IdPSessionFilter.sessionManager
IdP session manager.
|
| Modifier and Type | Method and Description |
|---|---|
protected Session |
IdPSessionFilter.getUserSession(javax.servlet.http.Cookie sessionCookie,
javax.servlet.http.HttpServletRequest httpRequest,
javax.servlet.http.HttpServletResponse httpResponse)
Gets the user session associated with a session cookie.
|
| Modifier and Type | Field and Description |
|---|---|
private Session |
SessionManagerEntry.userSession
User's session.
|
| Modifier and Type | Method and Description |
|---|---|
Session |
SessionManagerImpl.createSession() |
Session |
SessionManagerImpl.createSession(String principal) |
Session |
SessionManagerEntry.getSession()
Gets the user session.
|
Session |
SessionManagerImpl.getSession(String sessionID) |
| Modifier and Type | Method and Description |
|---|---|
boolean |
SessionManagerImpl.indexSession(Session session,
String index) |
| Constructor and Description |
|---|
SessionManagerEntry(Session session,
long lifetime)
Constructor.
|
| Modifier and Type | Method and Description |
|---|---|
static Session |
HttpServletHelper.getUserSession(javax.servlet.http.HttpServletRequest httpRequest)
Gets the user session from the request.
|
| Modifier and Type | Method and Description |
|---|---|
static SessionManager<Session> |
HttpServletHelper.getSessionManager(javax.servlet.ServletContext context)
Gets the
SessionManager service bound to the Servlet context. |
static SessionManager<Session> |
HttpServletHelper.getSessionManager(javax.servlet.ServletContext context,
String serviceId)
Gets the
SessionManager bound to the Servlet context. |
Copyright © 1999-2014. All Rights Reserved.