public class SAMLTokenUnsignedAction implements Action {
public void execute(WSHandler handler, SecurityActionToken actionToken,
Document doc, RequestData reqData)
throws WSSecurityException {
WSSecSAMLToken builder = new WSSecSAMLToken(reqData.getWssConfig());
CallbackHandler samlCallbackHandler =
handler.getCallbackHandler(
WSHandlerConstants.SAML_CALLBACK_CLASS,
WSHandlerConstants.SAML_CALLBACK_REF,
reqData
);
if (samlCallbackHandler == null) {
throw new WSSecurityException(
WSSecurityException.ErrorCode.FAILURE,
"noSAMLCallbackHandler"
);
}
SAMLCallback samlCallback = new SAMLCallback();
SAMLUtil.doSAMLCallback(samlCallbackHandler, samlCallback);
SamlAssertionWrapper samlAssertion = new SamlAssertionWrapper(samlCallback);
if (samlCallback.isSignAssertion()) {
Crypto signingCrypto = samlCallback.getIssuerCrypto();
if (signingCrypto == null) {
signingCrypto = handler.loadSignatureCrypto(reqData);
}
samlAssertion.signAssertion(
samlCallback.getIssuerKeyName(),
samlCallback.getIssuerKeyPassword(),
samlCallback.getIssuerCrypto(),
samlCallback.isSendKeyValue(),
samlCallback.getCanonicalizationAlgorithm(),
samlCallback.getSignatureAlgorithm()
);
}
// add the SAMLAssertion Token to the SOAP Envelope
builder.build(doc, samlAssertion, reqData.getSecHeader());
}