71     abstract STSInstanceModelResponse stsTypeSpecificValidation(Map<String, Set<String>> configurationState);
77     abstract STSInstanceModelResponse addStsTypeSpecificConfigurationState(Map<String, Set<String>> configurationState);
109     public STSInstanceModelResponse createInstance(STSType stsType, Map<String, Set<String>> configurationState, String realm) throws AMConsoleException {
110         addCommonProgrammaticConfigurationState(configurationState, realm);
111         STSInstanceModelResponse additionResponse = addStsTypeSpecificConfigurationState(configurationState);
115         JsonValue invocationJson = createInstanceInvocationState(configurationState);
124     public STSInstanceModelResponse updateInstance(STSType stsType, Map<String, Set<String>> configurationState, String realm, String instanceName) throws AMConsoleException {
125         addCommonProgrammaticConfigurationState(configurationState, realm);
126         STSInstanceModelResponse additionResponse = addStsTypeSpecificConfigurationState(configurationState);
130         JsonValue invocationJson = createInstanceInvocationState(configurationState);
166     public STSInstanceModelResponse validateConfigurationState(STSType stsType, Map<String, Set<String>> configurationState) {
167         if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.DEPLOYMENT_URL_ELEMENT))) {
170             String urlElement = configurationState.get(SharedSTSConstants.DEPLOYMENT_URL_ELEMENT).iterator().next();
176         STSInstanceModelResponse specificTypeValidations = stsTypeSpecificValidation(configurationState);
181         if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.ISSUER_NAME)) &&
182                 StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.OIDC_ISSUER))) {
188         if (!StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.ISSUER_NAME))) {
189             response = validateSAML2ConfigurationState(configurationState);
194         if (!StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.OIDC_ISSUER))) {
195             response = validateOIDCConfigurationState(configurationState);
200     private STSInstanceModelResponse validateSAML2ConfigurationState(Map<String, Set<String>> configurationState) {
201         if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.SAML2_TOKEN_LIFETIME))) {
205         if (CollectionHelper.getBooleanMapAttr(configurationState, SharedSTSConstants.SAML2_SIGN_ASSERTION, false)
206                 || CollectionHelper.getBooleanMapAttr(configurationState, SharedSTSConstants.SAML2_ENCRYPT_ASSERTION, false)
207                 || CollectionHelper.getBooleanMapAttr(configurationState, SharedSTSConstants.SAML2_ENCRYPT_ATTRIBUTES, false)
208                 || CollectionHelper.getBooleanMapAttr(configurationState, SharedSTSConstants.SAML2_ENCRYPT_NAME_ID, false)) {
210             if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.SAML2_KEYSTORE_FILE_NAME))) {
213             if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.SAML2_KEYSTORE_PASSWORD))) {
217         if (CollectionHelper.getBooleanMapAttr(configurationState, SharedSTSConstants.SAML2_SIGN_ASSERTION, false)) {
218             if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.SAML2_SIGNATURE_KEY_ALIAS))) {
221             if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.SAML2_SIGNATURE_KEY_PASSWORD))) {
225         if (CollectionHelper.getBooleanMapAttr(configurationState, SharedSTSConstants.SAML2_ENCRYPT_ASSERTION, false)
226                 || CollectionHelper.getBooleanMapAttr(configurationState, SharedSTSConstants.SAML2_ENCRYPT_ATTRIBUTES, false)
227                 || CollectionHelper.getBooleanMapAttr(configurationState, SharedSTSConstants.SAML2_ENCRYPT_NAME_ID, false)) {
229             if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.SAML2_ENCRYPTION_KEY_ALIAS))) {
233         if (CollectionHelper.getBooleanMapAttr(configurationState, SharedSTSConstants.SAML2_ENCRYPT_ASSERTION, false)
234                 && (CollectionHelper.getBooleanMapAttr(configurationState, SharedSTSConstants.SAML2_ENCRYPT_ATTRIBUTES, false)
235                     || CollectionHelper.getBooleanMapAttr(configurationState, SharedSTSConstants.SAML2_ENCRYPT_NAME_ID, false))) {
239         if (!CollectionUtils.isEmpty(configurationState.get(SharedSTSConstants.SAML2_ATTRIBUTE_MAP))) {
240             if (!attributeMappingCorrectFormat(configurationState.get(SharedSTSConstants.SAML2_ATTRIBUTE_MAP))) {
248     private STSInstanceModelResponse validateOIDCConfigurationState(Map<String, Set<String>> configurationState) {
249         if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.OIDC_TOKEN_LIFETIME))) {
254         if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.OIDC_SIGNATURE_ALGORITHM))) {
257             rsaSignature = rsaSignatureForOIDC(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.OIDC_SIGNATURE_ALGORITHM));
261             if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.OIDC_KEYSTORE_LOCATION))) {
264             if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.OIDC_KEYSTORE_PASSWORD))) {
267             if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.OIDC_SIGNATURE_KEY_ALIAS))) {
270             if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.OIDC_SIGNATURE_KEY_PASSWORD))) {
274             if (StringUtils.isEmpty(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.OIDC_CLIENT_SECRET))) {
279         if (CollectionUtils.isEmpty(configurationState.get(SharedSTSConstants.OIDC_AUDIENCE))) {
283         if (!CollectionUtils.isEmpty(configurationState.get(SharedSTSConstants.OIDC_CLAIM_MAP))) {
284             if (!attributeMappingCorrectFormat(configurationState.get(SharedSTSConstants.OIDC_CLAIM_MAP))) {
312     private void addCommonProgrammaticConfigurationState(Map<String, Set<String>> configurationState, String realm) {
313         configurationState.put(SharedSTSConstants.DEPLOYMENT_REALM, CollectionUtils.asSet(realm));
314         if (!CollectionUtils.isEmpty(configurationState.get(SharedSTSConstants.ISSUER_NAME))) {
316                     getEncryptionStrengthFromEncryptionAlgorithm(CollectionHelper.getMapAttr(configurationState, SharedSTSConstants.SAML2_ENCRYPTION_ALGORITHM));
317             configurationState.put(SharedSTSConstants.SAML2_ENCRYPTION_ALGORITHM_STRENGTH,
334     private JsonValue createInstanceInvocationState(Map<String, Set<String>> configurationState) {
335         JsonValue propertiesMap = new JsonValue(configurationState);

Indexes created Tue Jul 24 14:28:13 CEST 2018