Saml2RelyingPartyProperties

最新推荐文章于 2023-09-25 11:11:30 发布
最新推荐文章于 2023-09-25 11:11:30 发布
阅读量241 收藏
点赞数
分类专栏: 笔记
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/sunshinebo/article/details/115406916
版权 
/*
 * Copyright 2012-2020 the original author or authors.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package org.springframework.boot.autoconfigure.security.saml2;

import java.util.ArrayList;
import java.util.LinkedHashMap;
import java.util.List;
import java.util.Map;

import org.springframework.boot.context.properties.ConfigurationProperties;
import org.springframework.boot.context.properties.DeprecatedConfigurationProperty;
import org.springframework.core.io.Resource;
import org.springframework.security.saml2.provider.service.registration.Saml2MessageBinding;

/**
 * SAML2 relying party properties.
 *
 * @author Madhura Bhave
 * @author Phillip Webb
 * @since 2.2.0
 */
@ConfigurationProperties("spring.security.saml2.relyingparty")
public class Saml2RelyingPartyProperties {

	/**
	 * SAML2 relying party registrations.
	 */
	private Map<String, Registration> registration = new LinkedHashMap<>();

	public Map<String, Registration> getRegistration() {
		return this.registration;
	}

	/**
	 * Represents a SAML Relying Party.
	 */
	public static class Registration {

		private final Signing signing = new Signing();

		/**
		 * Remote SAML Identity Provider.
		 */
		private Identityprovider identityprovider = new Identityprovider();

		public Signing getSigning() {
			return this.signing;
		}

		public Identityprovider getIdentityprovider() {
			return this.identityprovider;
		}

		public static class Signing {

			/**
			 * Credentials used for signing and decrypting the SAML authentication
			 * request.
			 */
			private List<Credential> credentials = new ArrayList<>();

			public List<Credential> getCredentials() {
				return this.credentials;
			}

			public static class Credential {

				/**
				 * Private key used for signing or decrypting.
				 */
				private Resource privateKeyLocation;

				/**
				 * Relying Party X509Certificate shared with the identity provider.
				 */
				private Resource certificateLocation;

				public Resource getPrivateKeyLocation() {
					return this.privateKeyLocation;
				}

				public void setPrivateKeyLocation(Resource privateKey) {
					this.privateKeyLocation = privateKey;
				}

				public Resource getCertificateLocation() {
					return this.certificateLocation;
				}

				public void setCertificateLocation(Resource certificate) {
					this.certificateLocation = certificate;
				}

			}

		}

	}

	/**
	 * Represents a remote Identity Provider.
	 */
	public static class Identityprovider {

		/**
		 * Unique identifier for the identity provider.
		 */
		private String entityId;

		private Singlesignon singlesignon = new Singlesignon();

		private Verification verification = new Verification();

		public String getEntityId() {
			return this.entityId;
		}

		public void setEntityId(String entityId) {
			this.entityId = entityId;
		}

		@Deprecated
		@DeprecatedConfigurationProperty(reason = "moved to 'singlesignon.url'")
		public String getSsoUrl() {
			return this.singlesignon.getUrl();
		}

		@Deprecated
		public void setSsoUrl(String ssoUrl) {
			this.singlesignon.setUrl(ssoUrl);
		}

		public Singlesignon getSinglesignon() {
			return this.singlesignon;
		}

		public Verification getVerification() {
			return this.verification;
		}

		/**
		 * Single sign on details for an Identity Provider.
		 */
		public static class Singlesignon {

			/**
			 * Remote endpoint to send authentication requests to.
			 */
			private String url;

			/**
			 * Whether to redirect or post authentication requests.
			 */
			private Saml2MessageBinding binding = Saml2MessageBinding.REDIRECT;

			/**
			 * Whether to sign authentication requests.
			 */
			private boolean signRequest = true;

			public String getUrl() {
				return this.url;
			}

			public void setUrl(String url) {
				this.url = url;
			}

			public Saml2MessageBinding getBinding() {
				return this.binding;
			}

			public void setBinding(Saml2MessageBinding binding) {
				this.binding = binding;
			}

			public boolean isSignRequest() {
				return this.signRequest;
			}

			public void setSignRequest(boolean signRequest) {
				this.signRequest = signRequest;
			}

		}

		/**
		 * Verification details for an Identity Provider.
		 */
		public static class Verification {

			/**
			 * Credentials used for verification of incoming SAML messages.
			 */
			private List<Credential> credentials = new ArrayList<>();

			public List<Credential> getCredentials() {
				return this.credentials;
			}

			public static class Credential {

				/**
				 * Locations of the X.509 certificate used for verification of incoming
				 * SAML messages.
				 */
				private Resource certificate;

				public Resource getCertificateLocation() {
					return this.certificate;
				}

				public void setCertificateLocation(Resource certificate) {
					this.certificate = certificate;
				}

			}

		}

	}

}
sunshinebo
关注
专栏目录
SAML-SSO:SAML SSO 测试 SingleSignOn 和 RelyingParty 项目
06-18
使用 Windows Identity Foundation 进行单点登录 在 C# MVC ASP .NET 中通过 Windows Identity Foundation 使用联合身份验证实现单点登录的示例。 在本教程中,我们将逐步介绍通过单点登录实现联合身份验证的步骤。 我们将创建一个 MVC ASP .NET 网站和一个通用身份验证网站身份提供程序(也称为安全令牌服务或 STS)。 身份提供者网站将提供登录表单,使用表单身份验证,并重定向回调用网站。 完整教程可在 作者 科里·贝克尔 查看@GitHub
Saml2RelyingPartyRegistrationConfiguration
sunshinebo的博客
03-27 484
/** * {@link Configuration @Configuration} used to map {@link Saml2RelyingPartyProperties} to * relying party registrations in a {@link RelyingPartyRegistrationRepository}. * * @author Madhura Bhave * @author Phillip Webb */ @Configuration(proxyBeanM
Spring Boot 如何实现单点登录(SSO)
最新发布
u013749113的博客
09-25 3958
单点登录是一种身份验证机制,允许用户只需一次登录,即可在多个应用程序或服务之间访问资源,而无需在每个服务中重新输入凭证。这提供了更好的用户体验,同时提高了安全性,因为用户的凭证仅在一处验证。
SpringBoot从入门到放弃,原理篇-自动配置原理
有一个小阿飞
11-17 278
SpringBoot从入门到放弃,原理篇-自动配置原理 springboot自动配置原理 配置文件能配置的属性参照 自动配置原理 1、springboot启动的时候加载主配置类,开启了自动配置功能@EnableAutoConfiguration 2、@EnableAutoConfiguration 作用: 利用EnableAutoConfigurationImportSelector给容器中导...
Saml2:ASP.NET的Saml2身份验证服务
04-28
Sustainsys.Saml2库向ASP.NET网站添加了SAML2P支持,从而使该网站可以充当SAML2服务提供商(SP)。 该库以前称为Kentor.AuthServices。 Sustainsys.Saml2是开源的,欢迎贡献,请参阅以获取有关编码标准等的信息。 ...
saml2test:用于测试 SAML2 实现安装的工具
07-07
SAML2test - 用于测试 SAML2 和配置文件合规性的工具 作者: 罗兰·赫德伯格 版本: 0.3.0 SAML2test 是一种测试工具,允许对 SAML2 实体的特定实例进行独立验证。 它不仅会测试实例是否根据 SAML2 标准工作,还...
Satosa-Saml2Spid:符合Spid的SATOSA SAMLSAML代理
05-14
Satosa-Saml2Spid 这是的SAML2配置,旨在设置与SPID(意大利数字身份系统)兼容的SAMLSAML代理。 目录 目标 Satosa-Saml2 Spid是许多SAML2服务提供商和许多SAML2身份提供商之间的中介。 具体来说,它允许传统的...
djangosaml2:基于pySAML2的Django SAML2服务提供程序
04-05
Djangosaml2通过SAML2 SSO身份验证来保护您的项目,它将与您的身份提供者进行SAML2对话,从而允许您使用此身份验证机制。 本文档将指导您通过一些简单的步骤来实现该目标。 请开始的。 贡献 请打开“问题”以开始...
passport-wsfed-saml2:WS-fed和SAML2协议的通行证策略
05-06
护照-wsfed-saml2 这是的ws-federation协议+ SAML2令牌认证提供程序。 该代码最初基于亨利·贝吉乌斯(Henri Bergius)的库。 Passport-wsfed-saml2已通过测试,可与以及。 安装 $ npm install passport-wsfed-...
spring boot自动装配原理
starsray的博客
11-21 258
简介 对于Spring Boot的描述就不再赘述,可以参考前面的文章: 什么是Spring Boot? SpringBoot 和 SpringCloud的区别 spring-boot-starter-parent和spring-boot-dependencies 全部文章 标签Spring Boot 创建springboot应用 如何创建一个spring boot应用?这就很简单了,可以...
SpringBoot学习笔记(十八)--自动配置原理
java阳旭的博客
06-09 8035
自动配置原理
springboot自动配置
weixin_45301190的博客
11-17 214
自动配置原理: 1)springboot 启动时加载主配置类,开启了自动配置功能 @EnableAutoConfiguration 2)@EnableAutoConfiguration 功能:利用AutoConfigurationImportSelector.class给容器导入一些组件 List configurations = this.getCandidateConfigurations(a...
SAML2.0 笔记(二)
CoffeeAndIce的博客
11-21 4566
针对SAML2 的实际操作内容流程讲解
RedisIndexedSessionRepository
sunshinebo的博客
03-26 2438
/* * Copyright 2014-2020 the original author or authors. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * https:
X509Certificate
sunshinebo的博客
04-28 2303
/* * Copyright (c) 1997, 2013, Oracle and/or its affiliates. All rights reserved. * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. * * This code is free software; you can redistribute it and/or modify it * under the terms of the GNU Gen
FindByIndexNameSessionRepository
sunshinebo的博客
03-26 1699
/* * Copyright 2014-2019 the original author or authors. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * https:
BoundHashOperations
sunshinebo的博客
05-21 1575
/* * Copyright 2011-2020 the original author or authors. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * https:
使用Net SAML2服务提供者框架构建身份验证
"Net SAML2 Service Provider Framework 是一个用于构建SAML2服务提供者(Service Provider)的框架,主要用于实现身份验证和单点登录(Single Sign-On, SSO)功能。该框架适用于.NET环境,提供了与不同身份提供者...
评论 1
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值