import org.opensaml.common.binding.decoding.SAMLMessageDecoder;
import org.opensaml.common.xml.SAMLConstants;
import org.opensaml.saml1.core.AttributeQuery;
+import org.opensaml.saml1.core.AttributeStatement;
import org.opensaml.saml1.core.Request;
import org.opensaml.saml1.core.Response;
import org.opensaml.saml1.core.Statement;
requestContext.setReleasedAttributes(requestContext.getPrincipalAttributes().keySet());
ArrayList<Statement> statements = new ArrayList<Statement>();
- if (!requestContext.getPrincipalAttributes().isEmpty()) {
- statements.add(buildAttributeStatement(requestContext,
- "urn:oasis:names:tc:SAML:1.0:cm:sender-vouches"));
+ AttributeStatement attributeStatement = buildAttributeStatement(requestContext,
+ "urn:oasis:names:tc:SAML:1.0:cm:sender-vouches");
+ if (attributeStatement != null) {
+ statements.add(attributeStatement);
}
samlResponse = buildResponse(requestContext, statements);
import org.opensaml.common.SAMLObjectBuilder;
import org.opensaml.common.binding.decoding.SAMLMessageDecoder;
import org.opensaml.common.xml.SAMLConstants;
+import org.opensaml.saml1.core.AttributeStatement;
import org.opensaml.saml1.core.AuthenticationStatement;
import org.opensaml.saml1.core.Request;
import org.opensaml.saml1.core.Response;
if (loginContext == null) {
log.debug("User session does not contain a login context, processing as first leg of request");
performAuthentication(inTransport, outTransport);
- }else if (!loginContext.isPrincipalAuthenticated()){
- log.debug("User session contained a login context but user was not authenticated, processing as first leg of request");
+ } else if (!loginContext.isPrincipalAuthenticated()) {
+ log
+ .debug("User session contained a login context but user was not authenticated, processing as first leg of request");
performAuthentication(inTransport, outTransport);
} else {
log.debug("User session contains a login context, processing as second leg of request");
ArrayList<Statement> statements = new ArrayList<Statement>();
statements.add(buildAuthenticationStatement(requestContext));
- if (requestContext.getProfileConfiguration().includeAttributeStatement()
- && !requestContext.getPrincipalAttributes().isEmpty()) {
- requestContext.setRequestedAttributes(requestContext.getPrincipalAttributes().keySet());
- statements.add(buildAttributeStatement(requestContext, "urn:oasis:names:tc:SAML:1.0:cm:bearer"));
+ if (requestContext.getProfileConfiguration().includeAttributeStatement()) {
+ AttributeStatement attributeStatement = buildAttributeStatement(requestContext,
+ "urn:oasis:names:tc:SAML:1.0:cm:bearer");
+ if (attributeStatement != null) {
+ requestContext.setRequestedAttributes(requestContext.getPrincipalAttributes().keySet());
+ statements.add(attributeStatement);
+ }
}
samlResponse = buildResponse(requestContext, statements);
import org.opensaml.common.binding.decoding.SAMLMessageDecoder;
import org.opensaml.common.xml.SAMLConstants;
import org.opensaml.saml2.core.AttributeQuery;
+import org.opensaml.saml2.core.AttributeStatement;
import org.opensaml.saml2.core.Response;
import org.opensaml.saml2.core.Statement;
import org.opensaml.saml2.core.StatusCode;
// Lookup principal name and attributes, create attribute statement from information
ArrayList<Statement> statements = new ArrayList<Statement>();
- if(!requestContext.getPrincipalAttributes().isEmpty()){
- statements.add(buildAttributeStatement(requestContext));
+ AttributeStatement attributeStatement = buildAttributeStatement(requestContext);
+ if (attributeStatement != null) {
+ statements.add(attributeStatement);
}
// create the SAML response
import org.opensaml.common.binding.decoding.SAMLMessageDecoder;
import org.opensaml.common.xml.SAMLConstants;
import org.opensaml.saml2.binding.AuthnResponseEndpointSelector;
+import org.opensaml.saml2.core.AttributeStatement;
import org.opensaml.saml2.core.AuthnContext;
import org.opensaml.saml2.core.AuthnContextClassRef;
import org.opensaml.saml2.core.AuthnContextDeclRef;
ArrayList<Statement> statements = new ArrayList<Statement>();
statements.add(buildAuthnStatement(requestContext));
- if (requestContext.getProfileConfiguration().includeAttributeStatement()
- && !requestContext.getPrincipalAttributes().isEmpty()) {
- requestContext.setRequestedAttributes(requestContext.getPrincipalAttributes().keySet());
- statements.add(buildAttributeStatement(requestContext));
+ if (requestContext.getProfileConfiguration().includeAttributeStatement()){
+ AttributeStatement attributeStatement = buildAttributeStatement(requestContext);
+ if(attributeStatement != null){
+ requestContext.setRequestedAttributes(requestContext.getPrincipalAttributes().keySet());
+ statements.add(attributeStatement);
+ }
}
samlResponse = buildResponse(requestContext, "urn:oasis:names:tc:SAML:2.0:cm:bearer", statements);