public interface IDPAccountMapper
IDPAccountMapper is used to map the local identities to the SAML protocol
objects and also the vice versa for some of the protocols for e.g. ManageNameIDRequest.
This mapper interface is used to map the identities only at the SAML Identity Provider. The
implementation of this interface will be used by the SAML framework to retrieve the user's account
federation information for constructing SAML protocol objects such as Assertion and also to find out
the corresponding user account for the given SAML requests.
SPAccountMapper| Modifier and Type | Method and Description |
|---|---|
String |
getIdentity(ManageNameIDRequest manageNameIDRequest,
String hostEntityID,
String realm)
Returns the user's distinguished name or the universal ID for the corresponding
SAML ManageNameIDRequest. |
String |
getIdentity(NameID nameID,
String hostEntityID,
String remoteEntityID,
String realm)
Returns the user's distinguished name or the universal ID for the corresponding
SAML NameID. |
NameID |
getNameID(Object session,
String hostEntityID,
String remoteEntityID,
String realm,
String nameIDFormat)
Returns the user's
NameIDinformation that contains account federation with the corresponding remote
and local entities. |
boolean |
shouldPersistNameIDFormat(String realm,
String hostEntityID,
String remoteEntityID,
String nameIDFormat)
Tells whether the provided NameID-Format should be persisted in the user data store or not.
|
NameID getNameID(Object session, String hostEntityID, String remoteEntityID, String realm, String nameIDFormat) throws SAML2Exception
NameIDinformation that contains account federation with the corresponding remote
and local entities.session - Single Sign On session of the user.hostEntityID - EntityID of the hosted provider.remoteEntityID - EntityID of the remote provider.realm - Realm or the organization name that may be used to find the user information.nameIDFormat - NameID format.NameID corresponding to the authenticated user.SAML2Exception - If there was any failure.String getIdentity(ManageNameIDRequest manageNameIDRequest, String hostEntityID, String realm) throws SAML2Exception
SAML ManageNameIDRequest.
This method returns the universal ID or the DN based on the deployment of
the SAMLv2 plugin base platform.manageNameIDRequest - SAML ManageNameIDRequest that needs to be mapped to the user.hostEntityID - EntityID of the hosted provider.realm - Realm or the organization name that may be used to find the user information.SAML2Exception - If there was any failure.String getIdentity(NameID nameID, String hostEntityID, String remoteEntityID, String realm) throws SAML2Exception
SAML NameID.
This method returns the universal ID or the DN based on the deployment of the SAMLv2 plugin base platform.nameID - SAML NameID that needs to be mapped to the user.hostEntityID - EntityID of the hosted provider.remoteEntityID - EntityID of the remote provider.realm - Realm or the organization name that may be used to find the user information.SAML2Exception - If there was any failure.boolean shouldPersistNameIDFormat(String realm, String hostEntityID, String remoteEntityID, String nameIDFormat)
realm - The hosted IdP's realm.hostEntityID - The hosted IdP's entityID.remoteEntityID - The remote SP's entityID.nameIDFormat - The non-transient NameID-Format in question.true if the provided NameID-Format should be persisted in the user data store,
false otherwise.Copyright © 2010-2018, ForgeRock All Rights Reserved.