SAMLWebSecurityConfigurerAdapter (Spring Security ADFS SAML2 0.6.0-SNAPSHOT API)

java.lang.Object
- org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
- - com.github.choonchernlim.security.adfs.saml2.SAMLWebSecurityConfigurerAdapter

All Implemented Interfaces:

org.springframework.security.config.annotation.SecurityConfigurer<javax.servlet.Filter,org.springframework.security.config.annotation.web.builders.WebSecurity>, org.springframework.security.config.annotation.web.WebSecurityConfigurer<org.springframework.security.config.annotation.web.builders.WebSecurity>
```
public abstract class SAMLWebSecurityConfigurerAdapter
extends org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
```
Spring Security configuration to authenticate against ADFS using SAML protocol. This class should be extended by Sp's Java-based Spring configuration for web security.

Field Summary

Fields
Modifier and Type Field and Description

protected org.springframework.core.env.Environment env
Provides an opportunity for child class to access Spring environment, if needed.

Fields
Modifier and Type	Field and Description
`protected org.springframework.core.env.Environment`	`env` Provides an opportunity for child class to access Spring environment, if needed.

Constructor Summary

Constructors
Constructor and Description

SAMLWebSecurityConfigurerAdapter()

Constructors
Constructor and Description
`SAMLWebSecurityConfigurerAdapter()`

Method Summary

Methods
Modifier and Type	Method and Description
`org.springframework.security.saml.processor.HTTPArtifactBinding`	`artifactBinding()`
`org.springframework.security.authentication.AuthenticationManager`	`authenticationManagerBean()`
`protected void`	`configure(org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder auth)`
`org.springframework.security.saml.context.SAMLContextProviderLB`	`contextProvider()`
`org.springframework.security.saml.websso.WebSSOProfileECPImpl`	`ecpprofile()`
`org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler`	`failureRedirectHandler()`
`org.springframework.security.web.FilterChainProxy`	`filterChainProxy()`
`org.springframework.security.saml.websso.WebSSOProfileConsumerHoKImpl`	`hokWebSSOProfile()`
`org.springframework.security.saml.websso.WebSSOProfileConsumerHoKImpl`	`hokWebSSOprofileConsumer()`
`org.apache.commons.httpclient.HttpClient`	`httpClient()`
`org.springframework.security.saml.key.KeyManager`	`keyManager()`
`org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler`	`logoutHandler()`
`org.springframework.security.saml.websso.SingleLogoutProfile`	`logoutprofile()`
`org.springframework.security.saml.metadata.CachingMetadataManager`	`metadata()`
`org.springframework.security.saml.metadata.MetadataDisplayFilter`	`metadataDisplayFilter()`
`org.springframework.security.saml.metadata.MetadataGeneratorFilter`	`metadataGeneratorFilter()`
`protected org.springframework.security.config.annotation.web.builders.HttpSecurity`	`mockSecurity(org.springframework.security.config.annotation.web.builders.HttpSecurity http, org.springframework.security.core.userdetails.User user)` Mocks security by hardcoding a given user so that it will always appear that user is accessing the protected resources.
`org.springframework.security.saml.processor.HTTPPAOS11Binding`	`paosBinding()`
`org.opensaml.xml.parse.StaticBasicParserPool`	`parserPool()`
`org.springframework.security.saml.parser.ParserPoolHolder`	`parserPoolHolder()`
`org.springframework.security.saml.processor.HTTPPostBinding`	`postBinding()`
`org.springframework.security.saml.processor.SAMLProcessorImpl`	`processor()`
`org.apache.commons.httpclient.protocol.Protocol`	`protocol()`
`org.apache.commons.httpclient.protocol.ProtocolSocketFactory`	`protocolSocketFactory()`
`org.springframework.security.saml.processor.HTTPRedirectDeflateBinding`	`redirectDeflateBinding()`
`org.springframework.security.saml.SAMLAuthenticationProvider`	`samlAuthenticationProvider()`
`static org.springframework.security.saml.SAMLBootstrap`	`samlBootstrap()`
`protected abstract SAMLConfigBean`	`samlConfigBean()` Sp's SAMLConfigBean to further customize this security configuration.
`org.springframework.security.saml.SAMLEntryPoint`	`samlEntryPoint()`
`org.springframework.security.saml.SAMLDiscovery`	`samlIDPDiscovery()`
`protected org.springframework.security.config.annotation.web.builders.HttpSecurity`	`samlizedConfig(org.springframework.security.config.annotation.web.builders.HttpSecurity http)` Fluent API that pre-configures HttpSecurity with SAML specific configuration.
`protected org.springframework.security.config.annotation.web.builders.WebSecurity`	`samlizedConfig(org.springframework.security.config.annotation.web.builders.WebSecurity web)` Fluent API that pre-configures WebSecurity with SAML specific configuration.
`org.springframework.security.saml.log.SAMLDefaultLogger`	`samlLogger()`
`org.springframework.security.saml.SAMLLogoutFilter`	`samlLogoutFilter()`
`org.springframework.security.saml.SAMLLogoutProcessingFilter`	`samlLogoutProcessingFilter()`
`org.springframework.security.saml.SAMLProcessingFilter`	`samlProcessingFilter()`
`org.springframework.security.saml.SAMLWebSSOHoKProcessingFilter`	`samlWebSSOHoKProcessingFilter()`
`org.springframework.security.saml.processor.HTTPSOAP11Binding`	`soapBinding()`
`org.springframework.beans.factory.config.MethodInvokingFactoryBean`	`socketFactoryInitialization()`
`org.springframework.security.web.authentication.logout.SimpleUrlLogoutSuccessHandler`	`successLogoutHandler()`
`org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler`	`successRedirectHandler()`
`org.springframework.security.saml.trust.httpclient.TLSProtocolConfigurer`	`tlsProtocolConfigurer()`
`org.apache.velocity.app.VelocityEngine`	`velocityEngine()`
`org.springframework.security.saml.websso.WebSSOProfile`	`webSSOprofile()`
`org.springframework.security.saml.websso.WebSSOProfileConsumer`	`webSSOprofileConsumer()`
`org.springframework.security.saml.websso.WebSSOProfileOptions`	`webSSOProfileOptions()` Customizing SAML request message to be sent to the IDP.

Methods inherited from class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
authenticationManager, configure, configure, getApplicationContext, getHttp, init, setApplicationContext, setAuthenticationConfiguration, setContentNegotationStrategy, setObjectPostProcessor, setTrustResolver, userDetailsService, userDetailsServiceBean

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail
- env
```
@Autowired
protected org.springframework.core.env.Environment env
```
  Provides an opportunity for child class to access Spring environment, if needed.

Constructor Detail
- SAMLWebSecurityConfigurerAdapter
```
public SAMLWebSecurityConfigurerAdapter()
```

Method Detail

samlBootstrap

@Bean
public static org.springframework.security.saml.SAMLBootstrap samlBootstrap()

samlConfigBean
```
@Bean
protected abstract SAMLConfigBean samlConfigBean()
```
Sp's SAMLConfigBean to further customize this security configuration.

Returns:
SAML config bean

samlizedConfig

protected final org.springframework.security.config.annotation.web.builders.HttpSecurity samlizedConfig(org.springframework.security.config.annotation.web.builders.HttpSecurity http)
                                                                                                 throws Exception

Fluent API that pre-configures HttpSecurity with SAML specific configuration.

Parameters:: http - HttpSecurity instance
Returns:: Same HttpSecurity instance
Throws:: Exception - Exception

mockSecurity
```
protected final org.springframework.security.config.annotation.web.builders.HttpSecurity mockSecurity(org.springframework.security.config.annotation.web.builders.HttpSecurity http,
                                                                                    org.springframework.security.core.userdetails.User user)
```
Mocks security by hardcoding a given user so that it will always appear that user is accessing the protected resources. This is useful to allow developer to bypass any web authentication against ADFS during rapid app development.

Parameters:
http - HttpSecurity instance
user - User instance

Returns:
HttpSecurity that will never authenticate against ADFS

samlizedConfig

protected final org.springframework.security.config.annotation.web.builders.WebSecurity samlizedConfig(org.springframework.security.config.annotation.web.builders.WebSecurity web)
                                                                                                throws Exception

Fluent API that pre-configures WebSecurity with SAML specific configuration.

Parameters:: web - WebSecurity instance
Returns:: Same WebSecurity instance
Throws:: Exception - Exception

samlEntryPoint

@Bean
public org.springframework.security.saml.SAMLEntryPoint samlEntryPoint()

webSSOProfileOptions
```
@Bean
public org.springframework.security.saml.websso.WebSSOProfileOptions webSSOProfileOptions()
```
Customizing SAML request message to be sent to the IDP.

Returns:
WebSSOProfileOptions

metadataGeneratorFilter

@Bean
public org.springframework.security.saml.metadata.MetadataGeneratorFilter metadataGeneratorFilter()

httpClient

@Bean
public org.apache.commons.httpclient.HttpClient httpClient()

filterChainProxy

@Bean
public org.springframework.security.web.FilterChainProxy filterChainProxy()
                                                                   throws Exception

Throws:: Exception

successRedirectHandler

@Bean
public org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler successRedirectHandler()

failureRedirectHandler

@Bean
public org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler failureRedirectHandler()

successLogoutHandler

@Bean
public org.springframework.security.web.authentication.logout.SimpleUrlLogoutSuccessHandler successLogoutHandler()

authenticationManagerBean

@Bean
public org.springframework.security.authentication.AuthenticationManager authenticationManagerBean()
                                                                                            throws Exception

Overrides:: authenticationManagerBean in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
Throws:: Exception

configure

protected void configure(org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder auth)
                  throws Exception

Overrides:: configure in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
Throws:: Exception

samlLogger

@Bean
public org.springframework.security.saml.log.SAMLDefaultLogger samlLogger()

keyManager

@Bean
public org.springframework.security.saml.key.KeyManager keyManager()

samlIDPDiscovery

@Bean
public org.springframework.security.saml.SAMLDiscovery samlIDPDiscovery()

metadataDisplayFilter

@Bean
public org.springframework.security.saml.metadata.MetadataDisplayFilter metadataDisplayFilter()

tlsProtocolConfigurer

@Bean
public org.springframework.security.saml.trust.httpclient.TLSProtocolConfigurer tlsProtocolConfigurer()

protocolSocketFactory

@Bean
public org.apache.commons.httpclient.protocol.ProtocolSocketFactory protocolSocketFactory()

protocol

@Bean
public org.apache.commons.httpclient.protocol.Protocol protocol()

socketFactoryInitialization

@PostConstruct
public org.springframework.beans.factory.config.MethodInvokingFactoryBean socketFactoryInitialization()

metadata

@Bean
public org.springframework.security.saml.metadata.CachingMetadataManager metadata()
                                                                           throws org.opensaml.saml2.metadata.provider.MetadataProviderException

Throws:: org.opensaml.saml2.metadata.provider.MetadataProviderException

samlAuthenticationProvider

@Bean
public org.springframework.security.saml.SAMLAuthenticationProvider samlAuthenticationProvider()

contextProvider

@Bean
public org.springframework.security.saml.context.SAMLContextProviderLB contextProvider()

samlProcessingFilter

@Bean
public org.springframework.security.saml.SAMLProcessingFilter samlProcessingFilter()
                                                                            throws Exception

Throws:: Exception

samlWebSSOHoKProcessingFilter

@Bean
public org.springframework.security.saml.SAMLWebSSOHoKProcessingFilter samlWebSSOHoKProcessingFilter()
                                                                                              throws Exception

Throws:: Exception

logoutHandler

@Bean
public org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler logoutHandler()

samlLogoutFilter

@Bean
public org.springframework.security.saml.SAMLLogoutFilter samlLogoutFilter()

samlLogoutProcessingFilter

@Bean
public org.springframework.security.saml.SAMLLogoutProcessingFilter samlLogoutProcessingFilter()

processor

@Bean
public org.springframework.security.saml.processor.SAMLProcessorImpl processor()

webSSOprofileConsumer

@Bean
public org.springframework.security.saml.websso.WebSSOProfileConsumer webSSOprofileConsumer()

hokWebSSOprofileConsumer

@Bean
public org.springframework.security.saml.websso.WebSSOProfileConsumerHoKImpl hokWebSSOprofileConsumer()

webSSOprofile

@Bean
public org.springframework.security.saml.websso.WebSSOProfile webSSOprofile()

hokWebSSOProfile

@Bean
public org.springframework.security.saml.websso.WebSSOProfileConsumerHoKImpl hokWebSSOProfile()

ecpprofile

@Bean
public org.springframework.security.saml.websso.WebSSOProfileECPImpl ecpprofile()

logoutprofile

@Bean
public org.springframework.security.saml.websso.SingleLogoutProfile logoutprofile()

postBinding

@Bean
public org.springframework.security.saml.processor.HTTPPostBinding postBinding()

redirectDeflateBinding

@Bean
public org.springframework.security.saml.processor.HTTPRedirectDeflateBinding redirectDeflateBinding()

artifactBinding

@Bean
public org.springframework.security.saml.processor.HTTPArtifactBinding artifactBinding()

soapBinding

@Bean
public org.springframework.security.saml.processor.HTTPSOAP11Binding soapBinding()

paosBinding

@Bean
public org.springframework.security.saml.processor.HTTPPAOS11Binding paosBinding()

velocityEngine

@Bean
public org.apache.velocity.app.VelocityEngine velocityEngine()

parserPool

@Bean(initMethod="initialize")
public org.opensaml.xml.parse.StaticBasicParserPool parserPool()

parserPoolHolder

@Bean
public org.springframework.security.saml.parser.ParserPoolHolder parserPoolHolder()

Class SAMLWebSecurityConfigurerAdapter

Field Summary

Constructor Summary

Method Summary

Methods inherited from class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

Methods inherited from class java.lang.Object

Field Detail

env

Constructor Detail

SAMLWebSecurityConfigurerAdapter

Method Detail

samlBootstrap

samlConfigBean

samlizedConfig

mockSecurity

samlizedConfig

samlEntryPoint

webSSOProfileOptions

metadataGeneratorFilter

httpClient

filterChainProxy

successRedirectHandler

failureRedirectHandler

successLogoutHandler

authenticationManagerBean

configure

samlLogger

keyManager

samlIDPDiscovery

metadataDisplayFilter

tlsProtocolConfigurer

protocolSocketFactory

protocol

socketFactoryInitialization

metadata

samlAuthenticationProvider

contextProvider

samlProcessingFilter

samlWebSSOHoKProcessingFilter

logoutHandler

samlLogoutFilter

samlLogoutProcessingFilter

processor

webSSOprofileConsumer

hokWebSSOprofileConsumer

webSSOprofile

hokWebSSOProfile

ecpprofile

logoutprofile

postBinding

redirectDeflateBinding

artifactBinding

soapBinding

paosBinding

velocityEngine

parserPool

parserPoolHolder