|
Class Summary |
| Action |
This class is used to specify an action on the specified resource for which permission is sought. |
| Advice |
This class produces an element that contains any additional
information that the SAML authority wishes to provide. |
| ArtifactResolve |
Use this class to construct a request message asking that a SAML
protocol message be returned in an ArtifactResponse
message by specifying the artifact that represents the SAML protocol message. |
| ArtifactResponse |
This class is used to construct a response to the SAML
ArtifactResolve request. |
| Assertion |
This class contains the basic information that is common to all assertions. |
| AssertionIDRef |
Use this class to make a reference to a SAML assertion by its unique identifier. |
| AssertionIDRequest |
Use when the requestor knows the unique identifier(s) of one or more
SAML assertions. |
| AssertionURIRef |
This class provides a URI reference to a SAML assertion. |
| Attribute |
Use this class to identify an attribute by name and optionally include
its values. |
| AttributeQuery |
Use this class to make the query "Return the requested attributes
* for this subject." |
| AttributeStatement |
Use this class to provide a statement by the SAML authority asserting
that the assertion subject is associated with the specified attributes. |
| AudienceRestriction |
Specifies that an assertion is only addressed to one or more specific audiences. |
| AuthnContext |
This class specifies the context of an authentication event. |
| AuthnContextDecl |
Provide an authentication context declaration directly. |
| AuthnContextDeclRef |
Provide an authentication context declaration URI reference. |
| AuthnQuery |
Use this class to make the request that asks, "What assertions containing
* authentication statements are available for this subject?" |
| AuthnRequest |
Use this class to request that an IDP issue an assertion with an
* authentication statement. |
| AuthnStatement |
Use this class to describe a statement by the SAML authority asserting
that the assertion subject was authenticated by a particular means at
a particular time. |
| AuthzDecisionQuery |
Use this class to make the query "Should these actions on this
* resource be allowed for this subject, given its evidence?" |
| AuthzDecisionStatement |
Use this class to describe a statement by the SAML authority
asserting that a request for access by the assertio subject to
the specified resource has resulted in the specified authorization
decision (on the basis of some optionally specified evidence). |
| BaseID |
This class serves as an extension point allowing applications to
* add new kinds of identifiers. |
| Condition |
Extension point for new Conditions defined in an extension schema. |
| Conditions |
Provides the means to place constraints on the acceptable use
of SAML assertions. |
| EncryptedAssertion |
This class represents an assertion in an encrypted fashion
as defined by the XML Encryption Syntax and Processing
specification. |
| EncryptedElementType |
Class representation for encrypted tag elements like:
* EncryptedID
* NewEncryptedID
* EncryptedAssertion
* EncryptedAttribute
*
* EncryptedID, EncryptedAssertion and EncryptedAttribute elements
* are created simply by passing the appropriate tag name to
* this class' constructor. |
| Evidence |
This class contains one or more assertions (or references
to assertions) that the SAML authority relied on in issuing
its authorization decision. |
| Extensions |
This class provides a means for additional protocol elements,
as agreed upon by the parties involved, without the need for
an extension schema. |
| IdGenerator |
This class generates unique ID values, in accordance with
the xs:ID data type, that are 20 characters in length. |
| IdpEntry |
This class specifies a single IDP trusted by a requester to authenticate
the presenter. |
| IdpList |
This class is used to contain those IDPs trusted by the requester
to authenticate presenter. |
| Issuer |
Provide information about the issuer of a SAMl assertion or protocol message. |
| KeyInfoConfirmationData |
Constrains the superclass to identify cryptographic keys that are used
in some way to authenticate an attensting entity. |
| LogoutRequest |
Use this class to indicate that a session has been terminated. |
| LogoutResponse |
Response to a LogoutRequest SAML request. |
| ManageNameIDRequest |
Use this class to enable a provider to either inform the recipient of
* a changed name identifier, or to indicate the termination of the use
* of a name identifier. |
| ManageNameIDResponse |
Response to a ManageNameIDRequest. |
| MessageAbstractType |
This is the superclass of all Request and Response elements.
Implementation notes:
A Response's InResponseTo attribute MUST match the originating Request's ID
Signatures of signed requests, using ds:Signature, MUST be verified by the Responder to be valid
A Destination attribute, when present, MUST be checked to ensure it matches the recipient's location. |
| NameID |
This class is used to represent the following elements:
* NameID
* Issuer
*
*
* Implementation notes:
* A NameID typically needs the format attrbute to describe how to use the
* NameQualifier and SpNameQualifier attributes.
* |
| NameIDMappingRequest |
To request an alternate name identifier for a principal from an IDP. |
| NameIDMappingResponse |
Response to a NameIDMappingRequest SAML request. |
| NameIDPolicy |
Tailors the name identifier in the subjects of assertions resulting from an
* AuthnRequest. |
| OneTimeUse |
Simply specifies that the assertion is likely to soon change and that fresh
information should be obtained for each use. |
| ProxyRestriction |
Specifies limitations that the asserting party places on relying parties. |
| RequestAbstractType |
Simply extends MessageAbstractType without adding any functionality. |
| RequestedAuthnContext |
This class specifies the authentication context requirements
of authentication statements returned in response to a request
or a query. |
| Response |
Use this class to generate a response when zero or more
assertions satisfy a request. |
| Scoping |
This class contains those IDPs trusted by the requester to
authenticate the presenter. |
| Statement |
This class serves as an extension point for other assertion-based
applications to reuse the SAML assertion framework. |
| Status |
Represents the status content of a response. |
| StatusCode |
This class specifies a code or set of nested codes representing the status of a request |
| StatusDetail |
Use this class to specify additional information concerning the status
of a request. |
| StatusResponseType |
The superclass of all SAML responses. |
| Subject |
This class is used to specify the principal that is the subject of all of the
* statements in an assertion. |
| SubjectConfirmation |
This class provides the means for a relying party to verify
* the correspondence of the subject of the assertion with the
* party with whom the reling party is communicating. |
| SubjectConfirmationData |
This class specifies additional data that allows the subject to be confirmed
or constrains the circumstances under which the act of subject confirmation
can take place. |
| SubjectLocality |
Typically contains either the DNS name or IP address
where assertion subject was authenticated. |
| SubjectQuery |
Simply extends the SubjectQueryAbstractType class
as an extension point. |
| SubjectQueryAbstractType |
Superclass to all of the SAML Query Request types:
SubjectQuery
AuthnQuery
AttributeQuery
AuthzDecisionQuery
|