...
| Code Block | ||||
|---|---|---|---|---|
| ||||
resource = new Resource(); resource.setResourceUrl(url); //obtained elsewhere resource.setWSPClientPrivateKeyAndCert (pkFile, certFile); //one of the methods to authenticate the client to the WSP resource.setupWSPClientConnection(samlSession); // This looks for "https" in the Resource URL and the optional port number to use HttpClient client = samlSession.getHttpClient(); |
Error Handling
This library acts as a part of security infrastructure. It normally works "behind the scenes" as a communication conduit between the portal, portlet, WSP, and IdP. The errors encountered and produced by this library will virtually always be of "infrastructural" nature, and neither the portlet nor portlet's user will be able to do much to correct them. For example, the portlet may be misconfigured, the IdP may be down, or the portal may keep its session active even after the SAML session has expired. Because of this, the portlet sets all of its error conditions using a runtime exception, DelegatedAuthenticationRuntimeException. This means that no explicit error handling is required to handle this exception. The portlet container will catch these exceptions and deal with them in its own standard manner.
However, portlet developers who wish to provide their own error handling may explicitly catch DelegatedAuthenticationRuntimeException and react as desired. This exception will most likely occur on the first attempt to use the "instrumented" Apache HttpClient. If applicable, DelegatedAuthenticationRuntimeException may wrap the exception that caused the error. DelegatedAuthenticationRuntimeException will always contain its own error message even if there is a chained exception that contains its error message.