v 1.5.0 RC2

2026-05-19 11:48:10 +08:00 · 2020-05-17 09:58:36 +08:00
parent 2ac28e572f
commit 27e0c0b376
35 changed files with 1542 additions and 1313 deletions
--- a/maxkey-web-maxkey/src/main/java/org/maxkey/MaxKeyConfig.java
+++ b/maxkey-web-maxkey/src/main/java/org/maxkey/MaxKeyConfig.java
@@ -34,7 +34,14 @@ import org.springframework.context.annotation.PropertySource;
        "org.maxkey.domain.userinfo",
        "org.maxkey.api.v1.contorller",
        "org.maxkey.web.endpoint",
-        "org.maxkey.web.contorller"
+        "org.maxkey.web.contorller",
+        //single sign on protocol
+        "org.maxkey.authz.endpoint",
+        "org.maxkey.authz.desktop.endpoint",
+        "org.maxkey.authz.exapi.endpoint",
+        "org.maxkey.authz.formbased.endpoint",
+        "org.maxkey.authz.ltpa.endpoint",
+        "org.maxkey.authz.token.endpoint",
 })
 public class MaxKeyConfig  implements InitializingBean {
    private static final  Logger _logger = LoggerFactory.getLogger(MaxKeyConfig.class);
--- a/maxkey-web-maxkey/src/main/java/org/maxkey/autoconfigure/CasAutoConfiguration.java
+++ b/maxkey-web-maxkey/src/main/java/org/maxkey/autoconfigure/CasAutoConfiguration.java
@@ -0,0 +1,58 @@
+package org.maxkey.autoconfigure;
+
+import org.maxkey.authz.cas.endpoint.ticket.service.InMemoryTicketServices;
+import org.maxkey.authz.cas.endpoint.ticket.service.JdbcTicketServices;
+import org.maxkey.authz.cas.endpoint.ticket.service.RedisTicketServices;
+import org.maxkey.authz.cas.endpoint.ticket.service.TicketServices;
+import org.maxkey.persistence.redis.RedisConnectionFactory;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.InitializingBean;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.ComponentScan;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.annotation.PropertySource;
+import org.springframework.jdbc.core.JdbcTemplate;
+
+@Configuration
+@ComponentScan(basePackages = {
+        "org.maxkey.authz.cas.endpoint"
+})
+@PropertySource("classpath:/application.properties")
+public class CasAutoConfiguration implements InitializingBean {
+    private static final  Logger _logger = LoggerFactory.getLogger(CasAutoConfiguration.class);
+    
+    /**
+     * TicketServices. 
+     * @param persistence int
+     * @param validity int
+     * @return casTicketServices
+     */
+    @Bean(name = "casTicketServices")
+    public TicketServices casTicketServices(
+            @Value("${config.server.persistence}") int persistence,
+            @Value("${config.login.remeberme.validity}") int validity,
+            JdbcTemplate jdbcTemplate,
+            RedisConnectionFactory jedisConnectionFactory) {
+        TicketServices casTicketServices = null;
+        if (persistence == 0) {
+            casTicketServices = new InMemoryTicketServices();
+            _logger.debug("InMemoryTicketServices");
+        } else if (persistence == 1) {
+            casTicketServices = new JdbcTicketServices(jdbcTemplate);
+            _logger.debug("JdbcTicketServices");
+        } else if (persistence == 2) {
+            casTicketServices = new RedisTicketServices(jedisConnectionFactory);
+            _logger.debug("RedisTicketServices");
+        }
+        return casTicketServices;
+    }
+   
+
+    @Override
+    public void afterPropertiesSet() throws Exception {
+        // TODO Auto-generated method stub
+        
+    }
+}
--- a/maxkey-web-maxkey/src/main/java/org/maxkey/autoconfigure/Oauth20AutoConfiguration.java
+++ b/maxkey-web-maxkey/src/main/java/org/maxkey/autoconfigure/Oauth20AutoConfiguration.java
@@ -0,0 +1,334 @@
+package org.maxkey.autoconfigure;
+
+import java.net.URI;
+import java.security.NoSuchAlgorithmException;
+import java.security.spec.InvalidKeySpecException;
+
+import javax.sql.DataSource;
+
+import org.maxkey.authn.support.jwt.JwtLoginService;
+import org.maxkey.authz.oauth2.provider.ClientDetailsService;
+import org.maxkey.authz.oauth2.provider.approval.TokenApprovalStore;
+import org.maxkey.authz.oauth2.provider.approval.controller.OAuth20UserApprovalHandler;
+import org.maxkey.authz.oauth2.provider.client.ClientDetailsUserDetailsService;
+import org.maxkey.authz.oauth2.provider.client.JdbcClientDetailsService;
+import org.maxkey.authz.oauth2.provider.code.AuthorizationCodeServices;
+import org.maxkey.authz.oauth2.provider.code.InMemoryAuthorizationCodeServices;
+import org.maxkey.authz.oauth2.provider.code.JdbcAuthorizationCodeServices;
+import org.maxkey.authz.oauth2.provider.code.RedisAuthorizationCodeServices;
+import org.maxkey.authz.oauth2.provider.request.DefaultOAuth2RequestFactory;
+import org.maxkey.authz.oauth2.provider.token.TokenStore;
+import org.maxkey.authz.oauth2.provider.token.DefaultTokenServices;
+import org.maxkey.authz.oauth2.provider.token.store.InMemoryTokenStore;
+import org.maxkey.authz.oauth2.provider.token.store.JdbcTokenStore;
+import org.maxkey.authz.oauth2.provider.token.store.JwtAccessTokenConverter;
+import org.maxkey.authz.oauth2.provider.token.store.RedisTokenStore;
+import org.maxkey.authz.oidc.idtoken.OIDCIdTokenEnhancer;
+import org.maxkey.config.oidc.OIDCProviderMetadataDetails;
+import org.maxkey.crypto.jose.keystore.JWKSetKeyStore;
+import org.maxkey.crypto.jwt.encryption.service.impl.DefaultJwtEncryptionAndDecryptionService;
+import org.maxkey.crypto.jwt.signer.service.impl.DefaultJwtSigningAndValidationService;
+import org.maxkey.persistence.redis.RedisConnectionFactory;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.InitializingBean;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.ComponentScan;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.annotation.PropertySource;
+import org.springframework.core.io.ClassPathResource;
+import org.springframework.jdbc.core.JdbcTemplate;
+import org.springframework.security.authentication.ProviderManager;
+import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
+import org.springframework.security.crypto.password.NoOpPasswordEncoder;
+import org.springframework.security.crypto.password.PasswordEncoder;
+
+import com.nimbusds.jose.JOSEException;
+import com.nimbusds.jose.JWEAlgorithm;
+
+@Configuration
+@ComponentScan(basePackages = {
+        "org.maxkey.authz.oauth2.provider.endpoint",
+        "org.maxkey.authz.oauth2.provider.userinfo.endpoint",
+        "org.maxkey.authz.oauth2.provider.approval.controller"
+})
+@PropertySource("classpath:/application.properties")
+@PropertySource("classpath:/config/applicationConfig.properties")
+public class Oauth20AutoConfiguration implements InitializingBean {
+    private static final  Logger _logger = LoggerFactory.getLogger(Oauth20AutoConfiguration.class);
+    
+    /**
+     * OIDCProviderMetadataDetails. 
+     * Self-issued Provider Metadata
+     * http://openid.net/specs/openid-connect-core-1_0.html#SelfIssued 
+     */
+    @Bean(name = "oidcProviderMetadata")
+    public OIDCProviderMetadataDetails OIDCProviderMetadataDetails(
+            @Value("${config.oidc.metadata.issuer}")
+            String issuer,
+            @Value("${config.oidc.metadata.authorizationEndpoint}")
+            URI authorizationEndpoint,
+            @Value("${config.oidc.metadata.tokenEndpoint}")
+            URI tokenEndpoint,
+            @Value("${config.oidc.metadata.userinfoEndpoint}")
+            URI userinfoEndpoint) {
+        _logger.debug("RedisConnectionFactory init .");
+        OIDCProviderMetadataDetails oidcProviderMetadata = new OIDCProviderMetadataDetails();
+        oidcProviderMetadata.setIssuer(issuer);
+        oidcProviderMetadata.setAuthorizationEndpoint(authorizationEndpoint);
+        oidcProviderMetadata.setTokenEndpoint(tokenEndpoint);
+        oidcProviderMetadata.setUserinfoEndpoint(userinfoEndpoint);
+        return oidcProviderMetadata;
+    }
+
+    /**
+     * jwtSetKeyStore.
+     * @return
+     */
+    @Bean(name = "jwkSetKeyStore")
+    public JWKSetKeyStore jwtSetKeyStore() {
+        JWKSetKeyStore jwkSetKeyStore = new JWKSetKeyStore();
+        ClassPathResource classPathResource = new ClassPathResource("/config/keystore.jwks");
+        jwkSetKeyStore.setLocation(classPathResource);
+        return jwkSetKeyStore;
+    }
+    
+    /**
+     * jwtSetKeyStore.
+     * @return
+     * @throws JOSEException
+     * @throws InvalidKeySpecException 
+     * @throws NoSuchAlgorithmException 
+     */
+    @Bean(name = "jwtSignerValidationService")
+    public DefaultJwtSigningAndValidationService jwtSignerValidationService(
+            JWKSetKeyStore jwtSetKeyStore) 
+                    throws NoSuchAlgorithmException, InvalidKeySpecException, JOSEException {
+        DefaultJwtSigningAndValidationService jwtSignerValidationService = 
+                new DefaultJwtSigningAndValidationService(jwtSetKeyStore);
+        jwtSignerValidationService.setDefaultSignerKeyId("maxkey_rsa");
+        jwtSignerValidationService.setDefaultSigningAlgorithmName("RS256");
+        return jwtSignerValidationService;
+    }
+    
+    /**
+     * jwtSetKeyStore.
+     * @return
+     * @throws JOSEException 
+     * @throws InvalidKeySpecException 
+     * @throws NoSuchAlgorithmException 
+     */
+    @Bean(name = "jwtEncryptionService")
+    public DefaultJwtEncryptionAndDecryptionService jwtEncryptionService(
+            JWKSetKeyStore jwtSetKeyStore) 
+                    throws NoSuchAlgorithmException, InvalidKeySpecException, JOSEException {
+        DefaultJwtEncryptionAndDecryptionService jwtEncryptionService = 
+                new DefaultJwtEncryptionAndDecryptionService(jwtSetKeyStore);
+        jwtEncryptionService.setDefaultAlgorithm(JWEAlgorithm.RSA1_5);//RSA1_5
+        jwtEncryptionService.setDefaultDecryptionKeyId("maxkey_rsa");
+        jwtEncryptionService.setDefaultEncryptionKeyId("maxkey_rsa");
+        return jwtEncryptionService;
+    }
+    
+    /**
+     * JwtLoginService.
+     * @return
+     */
+    @Bean(name = "jwtLoginService")
+    public JwtLoginService jwtLoginService(
+            DefaultJwtSigningAndValidationService jwtSignerValidationService,
+            OIDCProviderMetadataDetails oidcProviderMetadata) {
+        JwtLoginService jwkSetKeyStore = new JwtLoginService();
+        jwkSetKeyStore.setJwtSignerValidationService(jwtSignerValidationService);
+        jwkSetKeyStore.setJwtProviderMetadata(oidcProviderMetadata);
+        return jwkSetKeyStore;
+    }
+    
+    
+    /**
+     * tokenEnhancer.
+     * @return
+     */
+    @Bean(name = "tokenEnhancer")
+    public OIDCIdTokenEnhancer tokenEnhancer(
+            DefaultJwtSigningAndValidationService jwtSignerValidationService,
+            DefaultJwtEncryptionAndDecryptionService jwtEncryptionService,
+            OIDCProviderMetadataDetails oidcProviderMetadata,
+            ClientDetailsService oauth20JdbcClientDetailsService) {
+        OIDCIdTokenEnhancer tokenEnhancer = new OIDCIdTokenEnhancer();
+        tokenEnhancer.setJwtSignerService(jwtSignerValidationService);
+        tokenEnhancer.setJwtEnDecryptionService(jwtEncryptionService);
+        tokenEnhancer.setClientDetailsService(oauth20JdbcClientDetailsService);
+        tokenEnhancer.setProviderMetadata(oidcProviderMetadata);
+        return tokenEnhancer;
+    }
+    //以上部分为了支持OpenID Connect 1.0
+    
+    
+    /**
+     * AuthorizationCodeServices. 
+     * @param persistence int
+     * @return oauth20AuthorizationCodeServices
+     */
+    @Bean(name = "oauth20AuthorizationCodeServices")
+    public AuthorizationCodeServices oauth20AuthorizationCodeServices(
+            @Value("${config.server.persistence}") int persistence,
+            JdbcTemplate jdbcTemplate,
+            RedisConnectionFactory jedisConnectionFactory) {
+        AuthorizationCodeServices authorizationCodeServices = null;
+        if (persistence == 0) {
+            authorizationCodeServices = new InMemoryAuthorizationCodeServices();
+            _logger.debug("InMemoryAuthorizationCodeServices");
+        } else if (persistence == 1) {
+            authorizationCodeServices = new JdbcAuthorizationCodeServices(jdbcTemplate);
+            _logger.debug("JdbcAuthorizationCodeServices");
+        } else if (persistence == 2) {
+            authorizationCodeServices = new RedisAuthorizationCodeServices(jedisConnectionFactory);
+            _logger.debug("RedisAuthorizationCodeServices");
+        }
+        return authorizationCodeServices;
+    }
+    
+    /**
+     * TokenStore. 
+     * @param persistence int
+     * @return oauth20TokenStore
+     */
+    @Bean(name = "oauth20TokenStore")
+    public TokenStore oauth20TokenStore(
+            @Value("${config.server.persistence}") int persistence,
+            JdbcTemplate jdbcTemplate,
+            RedisConnectionFactory jedisConnectionFactory) {
+        TokenStore tokenStore = null;
+        if (persistence == 0) {
+            tokenStore = new InMemoryTokenStore();
+            _logger.debug("InMemoryTokenStore");
+        } else if (persistence == 1) {
+            tokenStore = new JdbcTokenStore(jdbcTemplate);
+            _logger.debug("JdbcTokenStore");
+        } else if (persistence == 2) {
+            tokenStore = new RedisTokenStore(jedisConnectionFactory);
+            _logger.debug("RedisTokenStore");
+        }
+        return tokenStore;
+    }
+    
+    /**
+     * jwtAccessTokenConverter. 
+     * @return converter
+     */
+    @Bean(name = "converter")
+    public JwtAccessTokenConverter jwtAccessTokenConverter() {
+        JwtAccessTokenConverter jwtAccessTokenConverter = new JwtAccessTokenConverter();
+        return jwtAccessTokenConverter;
+    }
+    
+    /**
+     * clientDetailsService. 
+     * @return oauth20JdbcClientDetailsService
+     */
+    @Bean(name = "oauth20JdbcClientDetailsService")
+    public JdbcClientDetailsService clientDetailsService(DataSource dataSource,PasswordEncoder passwordReciprocal) {
+        JdbcClientDetailsService clientDetailsService = new JdbcClientDetailsService(dataSource);
+        clientDetailsService.setPasswordEncoder(passwordReciprocal);
+        return clientDetailsService;
+    }
+    
+    /**
+     * clientDetailsUserDetailsService. 
+     * @return oauth20ClientDetailsUserService
+     */
+    @Bean(name = "oauth20ClientDetailsUserService")
+    public ClientDetailsUserDetailsService clientDetailsUserDetailsService(
+            JdbcClientDetailsService oauth20JdbcClientDetailsService,PasswordEncoder passwordReciprocal) {
+        ClientDetailsUserDetailsService cientDetailsUserDetailsService = 
+                new ClientDetailsUserDetailsService(oauth20JdbcClientDetailsService);
+        cientDetailsUserDetailsService.setPasswordEncoder(passwordReciprocal);
+        return cientDetailsUserDetailsService;
+    }
+    
+    
+    /**
+     * clientDetailsUserDetailsService. 
+     * @return oauth20TokenServices
+     */
+    @Bean(name = "oauth20TokenServices")
+    public DefaultTokenServices DefaultTokenServices(
+            JdbcClientDetailsService oauth20JdbcClientDetailsService,
+            TokenStore oauth20TokenStore,
+            OIDCIdTokenEnhancer tokenEnhancer) {
+        DefaultTokenServices tokenServices = new DefaultTokenServices();
+        tokenServices.setClientDetailsService(oauth20JdbcClientDetailsService);
+        tokenServices.setTokenEnhancer(tokenEnhancer);
+        tokenServices.setTokenStore(oauth20TokenStore);
+        tokenServices.setSupportRefreshToken(true);
+        return tokenServices;
+    }
+    
+    
+    /**
+     * TokenApprovalStore. 
+     * @return oauth20ApprovalStore
+     */
+    @Bean(name = "oauth20ApprovalStore")
+    public TokenApprovalStore tokenApprovalStore(
+            TokenStore oauth20TokenStore) {
+        TokenApprovalStore tokenApprovalStore = new TokenApprovalStore();
+        tokenApprovalStore.setTokenStore(oauth20TokenStore);
+        return tokenApprovalStore;
+    }
+    
+    
+    /**
+     * OAuth2RequestFactory. 
+     * @return oAuth2RequestFactory
+     */
+    @Bean(name = "oAuth2RequestFactory")
+    public DefaultOAuth2RequestFactory oauth2RequestFactory(
+            JdbcClientDetailsService oauth20JdbcClientDetailsService) {
+        DefaultOAuth2RequestFactory oauth2RequestFactory = 
+                new DefaultOAuth2RequestFactory(oauth20JdbcClientDetailsService);
+        return oauth2RequestFactory;
+    }
+    
+    /**
+     * OAuth20UserApprovalHandler. 
+     * @return oauth20UserApprovalHandler
+     */
+    @Bean(name = "oauth20UserApprovalHandler")
+    public OAuth20UserApprovalHandler oauth20UserApprovalHandler(
+            JdbcClientDetailsService oauth20JdbcClientDetailsService,
+            DefaultOAuth2RequestFactory oAuth2RequestFactory,
+            TokenApprovalStore oauth20ApprovalStore
+            ) {
+        OAuth20UserApprovalHandler userApprovalHandler = new OAuth20UserApprovalHandler();
+        userApprovalHandler.setApprovalStore(oauth20ApprovalStore);
+        userApprovalHandler.setRequestFactory(oAuth2RequestFactory);
+        userApprovalHandler.setClientDetailsService(oauth20JdbcClientDetailsService);
+        return userApprovalHandler;
+    }
+    
+    /**
+     * ProviderManager. 
+     * @return oauth20ClientAuthenticationManager
+     */
+    @Bean(name = "oauth20ClientAuthenticationManager")
+    public ProviderManager oauth20ClientAuthenticationManager(
+            ClientDetailsUserDetailsService oauth20ClientDetailsUserService
+            ) {
+        DaoAuthenticationProvider daoAuthenticationProvider= new DaoAuthenticationProvider();
+        PasswordEncoder passwordEncoder = NoOpPasswordEncoder.getInstance();
+        daoAuthenticationProvider.setPasswordEncoder(passwordEncoder);
+        daoAuthenticationProvider.setUserDetailsService(oauth20ClientDetailsUserService);
+        ProviderManager clientAuthenticationManager = new ProviderManager(daoAuthenticationProvider);
+        return clientAuthenticationManager;
+    }
+    
+    
+    @Override
+    public void afterPropertiesSet() throws Exception {
+        // TODO Auto-generated method stub
+        
+    }
+}
--- a/maxkey-web-maxkey/src/main/java/org/maxkey/autoconfigure/Saml20AutoConfiguration.java
+++ b/maxkey-web-maxkey/src/main/java/org/maxkey/autoconfigure/Saml20AutoConfiguration.java
@@ -0,0 +1,322 @@
+package org.maxkey.autoconfigure;
+
+import java.io.IOException;
+import java.util.Properties;
+
+import org.apache.velocity.app.VelocityEngine;
+import org.apache.velocity.exception.VelocityException;
+import org.maxkey.authz.saml.common.EndpointGenerator;
+import org.maxkey.authz.saml.service.IDService;
+import org.maxkey.authz.saml.service.TimeService;
+import org.maxkey.authz.saml20.binding.decoder.OpenHTTPPostDecoder;
+import org.maxkey.authz.saml20.binding.decoder.OpenHTTPPostSimpleSignDecoder;
+import org.maxkey.authz.saml20.binding.decoder.OpenHTTPRedirectDecoder;
+import org.maxkey.authz.saml20.binding.impl.ExtractPostBindingAdapter;
+import org.maxkey.authz.saml20.binding.impl.ExtractRedirectBindingAdapter;
+import org.maxkey.authz.saml20.binding.impl.PostBindingAdapter;
+import org.maxkey.authz.saml20.binding.impl.PostSimpleSignBindingAdapter;
+import org.maxkey.authz.saml20.provider.xml.AuthnResponseGenerator;
+import org.maxkey.authz.saml20.xml.SAML2ValidatorSuite;
+import org.maxkey.crypto.keystore.KeyStoreLoader;
+import org.maxkey.domain.Saml20Metadata;
+import org.opensaml.common.binding.security.IssueInstantRule;
+import org.opensaml.common.binding.security.MessageReplayRule;
+import org.opensaml.util.storage.MapBasedStorageService;
+import org.opensaml.util.storage.ReplayCache;
+import org.opensaml.xml.ConfigurationException;
+import org.opensaml.xml.parse.BasicParserPool;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.InitializingBean;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.ComponentScan;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.annotation.PropertySource;
+import org.springframework.ui.velocity.VelocityEngineFactoryBean;
+
+@Configuration
+@ComponentScan(basePackages = {
+        "org.maxkey.authz.saml20.provider.endpoint",
+        "org.maxkey.authz.saml20.metadata.endpoint",
+})
+@PropertySource("classpath:/application.properties")
+@PropertySource("classpath:/config/applicationConfig.properties")
+public class Saml20AutoConfiguration implements InitializingBean {
+    private static final  Logger _logger = LoggerFactory.getLogger(Saml20AutoConfiguration.class);
+    
+    /**
+     * samlBootstrapInitializer.
+     * @return samlBootstrapInitializer
+     * @throws ConfigurationException 
+     */
+    @Bean(name = "samlBootstrapInitializer")
+    public String samlBootstrapInitializer() throws ConfigurationException {
+        org.opensaml.DefaultBootstrap.bootstrap();
+        return "";
+    }
+    
+    /**
+     * TimeService.
+     * @return timeService
+     */
+    @Bean(name = "timeService")
+    public TimeService TimeService() {
+        TimeService timeService = new TimeService();
+        return timeService;
+    }
+    
+    /**
+     * IDService.
+     * @return idService
+     */
+    @Bean(name = "idService")
+    public IDService idService() {
+        IDService idService = new IDService();
+        return idService;
+    }
+    
+    /**
+     * EndpointGenerator.
+     * @return endpointGenerator
+     */
+    @Bean(name = "endpointGenerator")
+    public EndpointGenerator endpointGenerator() {
+        EndpointGenerator generator = new EndpointGenerator();
+        return generator;
+    }
+    
+    /**
+     * AuthnResponseGenerator.
+     * @return authnResponseGenerator
+     */
+    @Bean(name = "authnResponseGenerator")
+    public AuthnResponseGenerator authnResponseGenerator(TimeService timeService,IDService idService,
+            @Value("${config.saml.v20.idp.issuer}") String issuerEntityName) {
+        AuthnResponseGenerator generator = new AuthnResponseGenerator(issuerEntityName,timeService,idService);
+        return generator;
+    }
+    
+    /**
+     * IssuerEntityName.
+     * @return issuerEntityName
+     */
+    @Bean(name = "issuerEntityName")
+    public String issuerEntityName(
+            @Value("${config.saml.v20.idp.issuer}") String issuerEntityName) {
+        return issuerEntityName;
+    }
+    
+    /**
+     * Saml20Metadata.
+     * @return saml20Metadata
+     */
+    @Bean(name = "saml20Metadata")
+    public Saml20Metadata saml20Metadata(
+            @Value("${config.saml.v20.metadata.orgName}") String orgName,
+            @Value("${config.saml.v20.metadata.orgDisplayName}") String orgDisplayName,
+            @Value("${config.saml.v20.metadata.orgURL}") String orgURL,
+            @Value("${config.saml.v20.metadata.company}") String company,
+            @Value("${config.saml.v20.metadata.contactType}") String contactType,
+            @Value("${config.saml.v20.metadata.givenName}") String givenName,
+            @Value("${config.saml.v20.metadata.surName}") String surName,
+            @Value("${config.saml.v20.metadata.emailAddress}") String emailAddress,
+            @Value("${config.saml.v20.metadata.telephoneNumber}") String telephoneNumber) {
+        Saml20Metadata metadata = new Saml20Metadata();
+        metadata.setOrgName(orgName);
+        metadata.setOrgDisplayName(orgDisplayName);
+        metadata.setOrgURL(orgURL);
+        metadata.setCompany(company);
+        metadata.setContactType(contactType);
+        metadata.setGivenName(givenName);
+        metadata.setSurName(surName);
+        metadata.setEmailAddress(emailAddress);
+        metadata.setTelephoneNumber(telephoneNumber);
+        return metadata;
+    }
+
+    /**
+     * SAML2ValidatorSuite.
+     * @return samlValidaotrSuite
+     */
+    @Bean(name = "samlValidaotrSuite")
+    public SAML2ValidatorSuite validatorSuite() {
+        SAML2ValidatorSuite validatorSuite = new SAML2ValidatorSuite();
+        return validatorSuite;
+    }
+    
+    /**
+     * MapBasedStorageService.
+     * @return mapBasedStorageService
+     */
+    @Bean(name = "mapBasedStorageService")
+    public MapBasedStorageService mapBasedStorageService() {
+        MapBasedStorageService mapBasedStorageService = new MapBasedStorageService();
+        return mapBasedStorageService;
+    }
+    
+    /**
+     * VelocityEngineFactoryBean.
+     * @return velocityEngine
+     * @throws IOException 
+     * @throws VelocityException 
+     */
+    @Bean(name = "velocityEngine")
+    public VelocityEngine velocityEngine() throws VelocityException, IOException {
+        VelocityEngineFactoryBean factory = new VelocityEngineFactoryBean();
+        factory.setPreferFileSystemAccess(false);
+        Properties velocityProperties = new Properties();
+        velocityProperties.put("resource.loader", "classpath");
+        velocityProperties.put("classpath.resource.loader.class", 
+                "org.apache.velocity.runtime.resource.loader.ClasspathResourceLoader");
+        factory.setVelocityProperties(velocityProperties);
+        return factory.createVelocityEngine();
+    }
+    
+    /**
+     * ReplayCache.
+     * @return replayCache
+     */
+    @Bean(name = "replayCache")
+    public ReplayCache replayCache(MapBasedStorageService mapBasedStorageService,
+            @Value("${config.saml.v20.replay.cache.life.in.millis}") long duration) {
+        ReplayCache replayCache = new ReplayCache(mapBasedStorageService,duration);
+        return replayCache;
+    }
+    
+    /**
+     * MessageReplayRule.
+     * @return messageReplayRule
+     */
+    @Bean(name = "messageReplayRule")
+    public MessageReplayRule messageReplayRule(ReplayCache replayCache) {
+        MessageReplayRule messageReplayRule = new MessageReplayRule(replayCache);
+        return messageReplayRule;
+    }
+    
+    /**
+     * BasicParserPool.
+     * @return samlParserPool
+     */
+    @Bean(name = "samlParserPool")
+    public BasicParserPool samlParserPool(
+            @Value("${config.saml.v20.max.parser.pool.size}") int maxPoolSize) {
+        BasicParserPool samlParserPool = new BasicParserPool();
+        samlParserPool.setMaxPoolSize(maxPoolSize);
+        return samlParserPool;
+    }
+    
+    /**
+     * IssueInstantRule.
+     * @return issueInstantRule
+     */
+    @Bean(name = "issueInstantRule")
+    public IssueInstantRule issueInstantRule(
+            @Value("${config.saml.v20.issue.instant.check.clock.skew.in.seconds}") int newClockSkew,
+            @Value("${config.saml.v20.issue.instant.check.validity.time.in.seconds}") int newExpires) {
+        IssueInstantRule decoder = new IssueInstantRule(newClockSkew,newExpires);
+        decoder.setRequiredRule(true);
+        return decoder;
+    }
+    
+    /**
+     * OpenHTTPPostSimpleSignDecoder.
+     * @return openHTTPPostSimpleSignDecoder
+     */
+    @Bean(name = "openHTTPPostSimpleSignDecoder")
+    public OpenHTTPPostSimpleSignDecoder openHTTPPostSimpleSignDecoder(BasicParserPool samlParserPool,
+            @Value("${config.saml.v20.idp.receiver.endpoint}") String receiverEndpoint) {
+        OpenHTTPPostSimpleSignDecoder decoder = new OpenHTTPPostSimpleSignDecoder(samlParserPool);
+        decoder.setReceiverEndpoint(receiverEndpoint);
+        return decoder;
+    }
+    
+    /**
+     * OpenHTTPPostDecoder.
+     * @return openHTTPPostDecoder
+     */
+    @Bean(name = "openHTTPPostDecoder")
+    public OpenHTTPPostDecoder openHTTPPostDecoder(BasicParserPool samlParserPool,
+            @Value("${config.saml.v20.idp.receiver.endpoint}") String receiverEndpoint) {
+        OpenHTTPPostDecoder decoder = new OpenHTTPPostDecoder(samlParserPool);
+        decoder.setReceiverEndpoint(receiverEndpoint);
+        return decoder;
+    }
+    
+    /**
+     * OpenHTTPRedirectDecoder.
+     * @return openHTTPRedirectDecoder
+     */
+    @Bean(name = "openHTTPRedirectDecoder")
+    public OpenHTTPRedirectDecoder openHTTPRedirectDecoder(BasicParserPool samlParserPool,
+            @Value("${config.saml.v20.idp.receiver.endpoint}") String receiverEndpoint) {
+        OpenHTTPRedirectDecoder decoder = new OpenHTTPRedirectDecoder(samlParserPool);
+        decoder.setReceiverEndpoint(receiverEndpoint);
+        return decoder;
+    }
+   
+    /**
+     * ExtractPostBindingAdapter.
+     * @return extractPostBindingAdapter
+     */
+    @Bean(name = "extractPostBindingAdapter")
+    public ExtractPostBindingAdapter extractPostBindingAdapter(OpenHTTPPostDecoder openHTTPPostDecoder,
+            KeyStoreLoader keyStoreLoader,IssueInstantRule issueInstantRule,MessageReplayRule messageReplayRule) {
+        ExtractPostBindingAdapter adapter = new ExtractPostBindingAdapter(openHTTPPostDecoder);
+        adapter.setIssueInstantRule(issueInstantRule);
+        adapter.setKeyStoreLoader(keyStoreLoader);
+        adapter.setMessageReplayRule(messageReplayRule);
+        return adapter;
+    }
+    
+    /**
+     * ExtractRedirectBindingAdapter.
+     * @return extractRedirectBindingAdapter
+     */
+    @Bean(name = "extractRedirectBindingAdapter")
+    public ExtractRedirectBindingAdapter extractRedirectBindingAdapter(OpenHTTPRedirectDecoder openHTTPRedirectDecoder,
+            KeyStoreLoader keyStoreLoader,IssueInstantRule issueInstantRule,MessageReplayRule messageReplayRule) {
+        ExtractRedirectBindingAdapter adapter = new ExtractRedirectBindingAdapter(openHTTPRedirectDecoder);
+        adapter.setIssueInstantRule(issueInstantRule);
+        adapter.setKeyStoreLoader(keyStoreLoader);
+        adapter.setMessageReplayRule(messageReplayRule);
+        return adapter;
+    }
+    
+    
+    /**
+     * PostSimpleSignBindingAdapter.
+     * @return postSimpleSignBindingAdapter
+     */
+    @Bean(name = "postSimpleSignBindingAdapter")
+    public PostSimpleSignBindingAdapter postSimpleSignBindingAdapter(VelocityEngine velocityEngine,
+            @Value("${config.saml.v20.idp.issuer}") String issuerEntityName) {
+        PostSimpleSignBindingAdapter adapter = new PostSimpleSignBindingAdapter();
+        adapter.setVelocityEngine(velocityEngine);
+        adapter.setIssuerEntityName(issuerEntityName);
+        return adapter;
+    }
+    
+    /**
+     * PostBindingAdapter.
+     * @return postBindingAdapter
+     */
+    @Bean(name = "postBindingAdapter")
+    public PostBindingAdapter postBindingAdapter(VelocityEngine velocityEngine,
+            @Value("${config.saml.v20.idp.issuer}") String issuerEntityName) {
+        PostBindingAdapter adapter = new PostBindingAdapter();
+        adapter.setVelocityEngine(velocityEngine);
+        adapter.setIssuerEntityName(issuerEntityName);
+        return adapter;
+    }
+    
+    
+    
+   
+
+    @Override
+    public void afterPropertiesSet() throws Exception {
+        // TODO Auto-generated method stub
+        
+    }
+}