Examples of org.jboss.identity.federation.api.saml.v2.common.SAMLDocumentHolder

Package org.jboss.identity.federation.api.saml.v2.common

Examples of org.jboss.identity.federation.api.saml.v2.common.SAMLDocumentHolder

org.picketlink.identity.federation.core.saml.v2.common.SAMLDocumentHolder
A Holder class that can store the SAML object as well as the corresponding DOM object. It is thread safe because each thread can have only one instance of this class @author Anil.Saldhana@redhat.com @since Aug 13, 2009

      try
      {
         Binder<Node> binder = getBinder();
         JAXBElement<ResponseType> jaxbResponseType = (JAXBElement<ResponseType>) binder.unmarshal(samlResponseDocument);
         ResponseType responseType = jaxbResponseType.getValue();
         samlDocumentHolder = new SAMLDocumentHolder(responseType, samlResponseDocument);
         return responseType;
      }
      catch (JAXBException e)
      {
         throw new ParsingException(e);

View Full Code Here

      try
      {
         Binder<Node> binder = getBinder();
         JAXBElement<SAML2Object> saml2Object = (JAXBElement<SAML2Object>) binder.unmarshal(samlResponseDocument);
         SAML2Object responseType = saml2Object.getValue();
         samlDocumentHolder = new SAMLDocumentHolder(responseType, samlResponseDocument);
         return responseType;
      }
      catch (JAXBException e)
      {
         throw new ParsingException(e);

View Full Code Here

            throw new RuntimeException("Request Security Token node not found");
         
         jaxbRST = (JAXBElement<RequestSecurityTokenType>) binder.unmarshal(rst);


         RequestSecurityTokenType rstt = jaxbRST.getValue();
         holders.set(new SAMLDocumentHolder(rstt, document));
         return new RequestSecurityToken(rstt);
      }
      catch (JAXBException e)
      {
         throw new ParsingException(e);

View Full Code Here

    * @return a {@code Source} instance representing the marshalled response.
    * @throws WebServiceException Any exception encountered in handling token
    */
   protected Source handleTokenRequest(RequestSecurityToken request)
   {
      SAMLDocumentHolder holder = WSTrustJAXBFactory.getInstance().getSAMLDocumentHolderOnThread();
      
      /**
       * The RST Document is very important for XML Signatures
       */
      request.setRSTDocument(holder.getSamlDocument());
      
      if(this.config == null)
         try
         {
            this.config = this.getConfiguration();

View Full Code Here


         SAML2Response saml2Response = new SAML2Response();
         
         ResponseType responseType = saml2Response.getResponseType(is);
         
         SAMLDocumentHolder samlDocumentHolder = saml2Response.getSamlDocumentHolder();
         
         boolean validSignature = this.verifySignature(samlDocumentHolder);
         
         if(validSignature == false)
            throw new IssuerNotTrustedException("Signature in saml document is invalid");

View Full Code Here

            event.error(Errors.INVALID_TOKEN);
            return Flows.forwardToSecurityFailurePage(session, realm, uriInfo, "Invalid Request");
        }


        protected Response handleSamlRequest(String samlRequest, String relayState) {
            SAMLDocumentHolder documentHolder = extractDocument(samlRequest);
            if (documentHolder == null) {
                event.event(EventType.LOGIN);
                event.error(Errors.INVALID_TOKEN);
                return Flows.forwardToSecurityFailurePage(session, realm, uriInfo, "Invalid Request");
            }


            SAML2Object samlObject = documentHolder.getSamlObject();


            RequestAbstractType requestAbstractType = (RequestAbstractType)samlObject;
            String issuer = requestAbstractType.getIssuer().getValue();
            ClientModel client = realm.findClient(issuer);

View Full Code Here


        SAMLParser samlParser = new SAMLParser();
        JAXPValidationUtil.checkSchemaValidation(samlDocument);
        SAML2Object requestType = (SAML2Object) samlParser.parse(DocumentUtil.getNodeAsStream(samlDocument));


        samlDocumentHolder = new SAMLDocumentHolder(requestType, samlDocument);
        return requestType;
    }

View Full Code Here


        SAMLParser samlParser = new SAMLParser();
        JAXPValidationUtil.checkSchemaValidation(samlDocument);
        RequestAbstractType requestType = (RequestAbstractType) samlParser.parse(DocumentUtil.getNodeAsStream(samlDocument));


        samlDocumentHolder = new SAMLDocumentHolder(requestType, samlDocument);
        return requestType;
    }

View Full Code Here


        SAMLParser samlParser = new SAMLParser();
        JAXPValidationUtil.checkSchemaValidation(samlDocument);


        AuthnRequestType requestType = (AuthnRequestType) samlParser.parse(DocumentUtil.getNodeAsStream(samlDocument));
        samlDocumentHolder = new SAMLDocumentHolder(requestType, samlDocument);
        return requestType;
    }

View Full Code Here

            session.removeAttribute(GeneralConstants.SAML_RESPONSE_KEY);


            if (isNotNull(relayState))
                session.removeAttribute(GeneralConstants.RELAY_STATE);


            SAMLDocumentHolder samlDocumentHolder = null;
            SAML2Object samlObject = null;
            String destination = null;
            Document samlResponse = null;


            if (samlResponseMessage != null) {
                StatusResponseType statusResponseType = null;
                try {
                    samlDocumentHolder = webRequestUtil.getSAMLDocumentHolder(samlResponseMessage);
                    samlObject = samlDocumentHolder.getSamlObject();


                    boolean isPost = webRequestUtil.hasSAMLRequestInPostProfile();
                    boolean isValid = validate(request.getRemoteAddr(), request.getQueryString(), new SessionHolder(
                            samlResponseMessage, null), isPost);


                    if (!isValid)
                        throw new GeneralSecurityException("Validation check failed");


                    String issuer = null;
                    IssuerInfoHolder idpIssuer = new IssuerInfoHolder(this.identityURL);
                    ProtocolContext protocolContext = new HTTPContext(request, response, context);
                    // Create the request/response
                    SAML2HandlerRequest saml2HandlerRequest = new DefaultSAML2HandlerRequest(protocolContext,
                            idpIssuer.getIssuer(), samlDocumentHolder, HANDLER_TYPE.IDP);


                    saml2HandlerRequest.setRelayState(relayState);


                    SAML2HandlerResponse saml2HandlerResponse = new DefaultSAML2HandlerResponse();


                    Set<SAML2Handler> handlers = chain.handlers();


                    if (samlObject instanceof StatusResponseType) {
                        statusResponseType = (StatusResponseType) samlObject;
                        issuer = statusResponseType.getIssuer().getValue();
                        webRequestUtil.isTrusted(issuer);


                        if (handlers != null) {
                            for (SAML2Handler handler : handlers) {
                                handler.reset();
                                handler.handleStatusResponseType(saml2HandlerRequest, saml2HandlerResponse);
                                willSendRequest = saml2HandlerResponse.getSendRequest();
                            }
                        }
                    } else
                        throw new RuntimeException(ErrorCodes.UNSUPPORTED_TYPE + "Unknown type:"
                                + samlObject.getClass().getName());


                    samlResponse = saml2HandlerResponse.getResultingDocument();
                    relayState = saml2HandlerResponse.getRelayState();


                    destination = saml2HandlerResponse.getDestination();
                } catch (Exception e) {
                    throw new RuntimeException(e);
                }


            } else
            // Send valid saml response after processing the request
            if (samlRequestMessage != null) {
                // Get the SAML Request Message
                RequestAbstractType requestAbstractType = null;


                try {
                    samlDocumentHolder = webRequestUtil.getSAMLDocumentHolder(samlRequestMessage);
                    samlObject = samlDocumentHolder.getSamlObject();


                    boolean isPost = webRequestUtil.hasSAMLRequestInPostProfile();
                    boolean isValid = validate(request.getRemoteAddr(), request.getQueryString(), new SessionHolder(
                            samlRequestMessage, null), isPost);

View Full Code Here

0 1 2 3 4 5 6 7 8 9

TOP

Related Classes of org.jboss.identity.federation.api.saml.v2.common.SAMLDocumentHolder

org.jboss.identity.federation.api.saml.v2.request.SAML2Request

org.jboss.identity.federation.api.saml.v2.response.SAML2Response

org.jboss.identity.federation.api.saml.v2.sig.SAML2Signature

org.jboss.identity.federation.bindings.jboss.wstrust.JBossSTS

org.jboss.identity.federation.bindings.servlets.SOAPSAMLXACMLServlet

org.jboss.identity.federation.bindings.tomcat.idp.IDPRedirectValve

org.jboss.identity.federation.bindings.tomcat.idp.IDPRedirectWithSignatureValve

org.jboss.identity.federation.bindings.tomcat.idp.IDPWebRequestUtil

org.jboss.identity.federation.bindings.tomcat.sp.SPPostFormAuthenticator

org.jboss.identity.federation.bindings.tomcat.sp.SPPostSignatureFormAuthenticator

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.