Package com.cloudera.cdp.iam.model

Class SetSamlAuthnRequestSigningKeyRequest

java.lang.Object
com.cloudera.cdp.iam.model.SetSamlAuthnRequestSigningKeyRequest
@Generated(value="com.cloudera.cdp.client.codegen.CdpSDKJavaCodegen", date="2025-11-14T06:50:08.152-08:00") public class SetSamlAuthnRequestSigningKeyRequest extends Object
Request object for setting the SAML AuthnRequest signing key and verification certificate.

  • Constructor Details

    • SetSamlAuthnRequestSigningKeyRequest

      public SetSamlAuthnRequestSigningKeyRequest()

  • Method Details

    • getSamlProvider

      public String getSamlProvider()
      Getter for samlProvider. The name or CRN of the SAML Provider associated with the signing key.

    • setSamlProvider

      public void setSamlProvider(String samlProvider)
      Setter for samlProvider. The name or CRN of the SAML Provider associated with the signing key.

    • getAuthnRequestSigningKey

      public String getAuthnRequestSigningKey()
      Getter for authnRequestSigningKey. The private key used for signing AuthnRequests sent from CDP to the customer's SAML provider. It must be in PEM format. It must be non-empty and valid when 'currentAuthnRequestVerificationCertificate' is set. Omitting it from request will remove this key.

    • setAuthnRequestSigningKey

      public void setAuthnRequestSigningKey(String authnRequestSigningKey)
      Setter for authnRequestSigningKey. The private key used for signing AuthnRequests sent from CDP to the customer's SAML provider. It must be in PEM format. It must be non-empty and valid when 'currentAuthnRequestVerificationCertificate' is set. Omitting it from request will remove this key.

    • getCurrentAuthnRequestVerificationCertificate

      public String getCurrentAuthnRequestVerificationCertificate()
      Getter for currentAuthnRequestVerificationCertificate. The certificate used by SAML provider to verify AuthnRequests sent from CDP. It must be in PEM format. It must be non-empty and valid when 'authnRequestSigningKey' is set. Omitting it from request will remove this certificate.

    • setCurrentAuthnRequestVerificationCertificate

      public void setCurrentAuthnRequestVerificationCertificate(String currentAuthnRequestVerificationCertificate)
      Setter for currentAuthnRequestVerificationCertificate. The certificate used by SAML provider to verify AuthnRequests sent from CDP. It must be in PEM format. It must be non-empty and valid when 'authnRequestSigningKey' is set. Omitting it from request will remove this certificate.

    • getNextAuthnRequestVerificationCertificate

      public String getNextAuthnRequestVerificationCertificate()
      Getter for nextAuthnRequestVerificationCertificate. The next verification certificate used by the SAML provider to verify AuthnRequests sent from CDP. It must be in PEM format. It is used for rotating verification certificate, and is expected to be empty after certification rotation completes. When both the current and next AuthnRequest certificates are set, both will appear in the CDP SP SAML metadata, indicating the Identity Provider should validate if either of the certificates validates the signature of the AuthnRequest. Both must be valid certificates, not expired. Once the Identity Provider has been updated with the new CDP SP SAML metadata to use both certificates, the signing key can be updated to correspond to the next certificate, the current certificate set to what had been next, and the next certificate cleared. The CDP SP SAML metadata can then be updated in the Identity Provider to use only a single certificate before the previous certificate expires. This allows rotating the signing key without downtime. Omitting it from request will remove this certificate.

    • setNextAuthnRequestVerificationCertificate

      public void setNextAuthnRequestVerificationCertificate(String nextAuthnRequestVerificationCertificate)
      Setter for nextAuthnRequestVerificationCertificate. The next verification certificate used by the SAML provider to verify AuthnRequests sent from CDP. It must be in PEM format. It is used for rotating verification certificate, and is expected to be empty after certification rotation completes. When both the current and next AuthnRequest certificates are set, both will appear in the CDP SP SAML metadata, indicating the Identity Provider should validate if either of the certificates validates the signature of the AuthnRequest. Both must be valid certificates, not expired. Once the Identity Provider has been updated with the new CDP SP SAML metadata to use both certificates, the signing key can be updated to correspond to the next certificate, the current certificate set to what had been next, and the next certificate cleared. The CDP SP SAML metadata can then be updated in the Identity Provider to use only a single certificate before the previous certificate expires. This allows rotating the signing key without downtime. Omitting it from request will remove this certificate.

    • equals

      public boolean equals(Object o)
      Overrides:
      equals in class Object

    • hashCode

      public int hashCode()
      Overrides:
      hashCode in class Object

    • toString

      public String toString()
      Overrides:
      toString in class Object