Package org.forgerock.openig.openam
Integration classes specifically for ForgeRock Access Management.
-
Interface Summary Interface Description ResourceUriProvider Used to obtain the resource URI to include in policy requests. -
Class Summary Class Description AbstractConditionAdviceFilter AbstractFilterbase class providing policy condition advice support.AmServiceHeaplet This heaplet represents an instance of anAmServicethat can shared amongst AM related filters such as theSingleSignOnFilterand thePolicyEnforcementFilter.AmServiceTypeProvider ProvideAmServiceHeaplet'sTypeDefinition.CapturedUserPasswordContext ACapturedUserPasswordContextto store the user's decrypted password.CapturedUserPasswordFilter TheCapturedUserPasswordFilteris responsible for retrieving the user password from AM and to decrypt it.CapturedUserPasswordFilter.Heaplet Creates and initializes the filter in a heap environment.CdSsoConditionAdviceFilter This filter handles any condition advices returned from AM during a policy evaluation, which one will depend on the policy.CdSsoContext Contextimplementation to maintain cross-domain SSO properties.CdSsoFailureContext Contextimplementation to hold error details, should an error occur during cross-domain SSO authentication.CrossDomainSingleSignOnFilter This filter verifies the presence of a JWT authentication token in the configured cookie name: If the JWT is present then its validity is checked and the request is forwarded to the next handler. If the JWT is not present, then the user-agent is redirected to Access Management via its OAuth2 authorization endpoint, to obtain user authentication.CrossDomainSingleSignOnFilter.Heaplet Creates and initialises an authentication filter in a heap environment.OpenAMClassAliasResolver Register all the aliases supported by the openig-openam module.PolicyDecisionContext APolicyDecisionContextconvey policy decision information to downstream filters and handlers.PolicyEnforcementFilter This filter requests policy decisions from Access Management which evaluates the original URI based on the context and the policies configured, and according to the decisions, allows or denies the current request.PolicyEnforcementFilter.Heaplet Creates and initializes a policy enforcement filter in a heap environment.RequestResourceUriProvider TheRequestResourceUriProviderhas the following configuration:RequestResourceUriProvider.Heaplet Creates and initializes a RequestResourceUriProvider in a heap environment.ScriptableResourceUriProvider A scriptable resource URI provider.ScriptableResourceUriProvider.Heaplet Creates and initializes a scriptable resource url provider in a heap environment.SessionInfoContext Contextto store Access Management session info and properties.SessionInfoFilter This filter requests user session info from Access Management and stores it on the context for later use.SessionInfoFilter.Heaplet Creates and initialises a session info filter in a heap environment.SingleSignOnFilter This filter verifies the presence of a SSOToken in the given cookie name.SingleSignOnFilter.Heaplet Creates and initialises an authentication filter in a heap environment.SingleSignOnTypeProvider ProvideSingleSignOnFilter'sTypeDefinition.SsoTokenContext TheSsoTokenContextprovides access to the token and user information related to this session.StsContext AStsContextconvey the token transformation results to downstream filters and handlers.TokenTransformationFilter ATokenTransformationFilteris responsible for transforming a token issued by Access Management into a token of another type.TokenTransformationFilter.Heaplet Creates and initializes a token transformation filter in a heap environment.UserProfileContext Used by theUserProfileFilterto make the user's profile attributes available in the context.UserProfileFilter This filter requests user profile attributes from Access Management and stores them in the context for later use.UserProfileFilterHeaplet Creates and initialises aUserProfileFilterin a heap environment.UserProfileServiceHeaplet Creates and initializes aUserProfileServicein a heap environment.