List of checkProofOfPossession() Examples

Examples of checkProofOfPossession()

org.apache.sandesha2.security.SecurityManager.checkProofOfPossession()
Check that the given element of the message demonstrated proof of possession of the given token. This allows Sandesha to implement the checking required by the RM spec. Proof is normally demonstrated by signing or encrypting the the given part using the token. If the elements is not secured with the given token the SecurityManager must throw an exception.

Examples of org.apache.sandesha2.security.SecurityManager.checkProofOfPossession()

      OMElement body = envelope.getBody();
      OMElement seqHeader = envelope.getHeader().getFirstChildWithName(seqName);
      
      SecurityToken token = secManager.recoverSecurityToken(bean.getSecurityTokenData());
      
      secManager.checkProofOfPossession(token, seqHeader, msgCtx);
      secManager.checkProofOfPossession(token, body, msgCtx);
    }
    
    // Store the inbound sequence id, number and lastMessage onto the operation context
    OperationContext opCtx = msgCtx.getOperationContext();

View Full Code Here

Examples of org.apache.sandesha2.security.SecurityManager.checkProofOfPossession()

      OMElement seqHeader = envelope.getHeader().getFirstChildWithName(seqName);
      
      SecurityToken token = secManager.recoverSecurityToken(bean.getSecurityTokenData());
      
      secManager.checkProofOfPossession(token, seqHeader, msgCtx);
      secManager.checkProofOfPossession(token, body, msgCtx);
    }
    
    // Store the inbound sequence id, number and lastMessage onto the operation context
    OperationContext opCtx = msgCtx.getOperationContext();
    if(opCtx != null) {

View Full Code Here

Examples of org.apache.sandesha2.security.SecurityManager.checkProofOfPossession()

        token = secManager.getSecurityToken(theSTR, msgcontext);
        
        // The create must be the body part of this message, so we check the
        // security of that element.
        OMElement body = msgcontext.getEnvelope().getBody();
        secManager.checkProofOfPossession(token, body, msgcontext);
      }
  
      //if toAddress is RMAnon we may need to terminate the request side sequence here.
      EndpointReference toEPR = createSeqMsg.getTo();
      if (toEPR.hasAnonymousAddress()) {

View Full Code Here

Examples of org.apache.sandesha2.security.SecurityManager.checkProofOfPossession()

    RMDBean rmdBean = SandeshaUtil.getRMDBeanFromSequenceId(storageManager, sequenceId);
    if(rmdBean != null && rmdBean.getSecurityTokenData() != null) {
      SecurityManager secManager = SandeshaUtil.getSecurityManager(context);
      OMElement body = terminateSeqRMMsg.getSOAPEnvelope().getBody();
      SecurityToken token = secManager.recoverSecurityToken(rmdBean.getSecurityTokenData());
      secManager.checkProofOfPossession(token, body, terminateSeqRMMsg.getMessageContext());
    }


    if (FaultManager.checkForUnknownSequence(terminateSeqRMMsg, sequenceId, storageManager, false)) {
      if (log.isDebugEnabled())
        log.debug("Exit: TerminateSeqMsgProcessor::processInMessage, unknown sequence");

View Full Code Here

Examples of org.apache.sandesha2.security.SecurityManager.checkProofOfPossession()

    // Check that the sender of this TerminateSequence holds the correct token
    if(rmsBean != null && rmsBean.getSecurityTokenData() != null) {
      SecurityManager secManager = SandeshaUtil.getSecurityManager(context);
      OMElement body = terminateResRMMsg.getSOAPEnvelope().getBody();
      SecurityToken token = secManager.recoverSecurityToken(rmsBean.getSecurityTokenData());
      secManager.checkProofOfPossession(token, body, msgContext);
    }


    msgContext.setProperty(Sandesha2Constants.MessageContextProperties.INTERNAL_SEQUENCE_ID,rmsBean.getInternalSequenceID());


    //shedulling a polling request for the response side.

View Full Code Here

Examples of org.apache.sandesha2.security.SecurityManager.checkProofOfPossession()

    }
    if(tokenData != null) {
      if (LoggingControl.isAnyTracingEnabled() && log.isDebugEnabled()) log.debug("debug:" + tokenData);
      SecurityManager secManager = SandeshaUtil.getSecurityManager(context.getConfigurationContext());
      SecurityToken token = secManager.recoverSecurityToken(tokenData);
      secManager.checkProofOfPossession(token, elementToCheck, context); //this will exception if there is no proof
    }
    
    if (LoggingControl.isAnyTracingEnabled() && log.isDebugEnabled())
      log.debug("Exit: SandeshaUtil::assertProofOfPossession");
  }

View Full Code Here

Examples of org.apache.sandesha2.security.SecurityManager.checkProofOfPossession()

        token = secManager.getSecurityToken(theSTR, msgcontext);
        
        // The create must be the body part of this message, so we check the
        // security of that element.
        OMElement body = msgcontext.getEnvelope().getBody();
        secManager.checkProofOfPossession(token, body, msgcontext);
      }
  
      //if toAddress is RMAnon we may need to terminate the request side sequence here.
      EndpointReference toEPR = createSeqMsg.getTo();
      if (toEPR.hasAnonymousAddress()) {

View Full Code Here

Examples of org.apache.sandesha2.security.SecurityManager.checkProofOfPossession()

    }
    if(tokenData != null) {
      if (LoggingControl.isAnyTracingEnabled() && log.isDebugEnabled()) log.debug("debug:" + tokenData);
      SecurityManager secManager = SandeshaUtil.getSecurityManager(context.getConfigurationContext());
      SecurityToken token = secManager.recoverSecurityToken(tokenData);
      secManager.checkProofOfPossession(token, elementToCheck, context); //this will exception if there is no proof
    }
    
    if (LoggingControl.isAnyTracingEnabled() && log.isDebugEnabled())
      log.debug("Exit: SandeshaUtil::assertProofOfPossession");
  }

View Full Code Here

Examples of org.apache.sandesha2.security.SecurityManager.checkProofOfPossession()

      token = secManager.getSecurityToken(theSTR, msgcontext);
      
      // The create must be the body part of this message, so we check the
      // security of that element.
      OMElement body = msgcontext.getEnvelope().getBody();
      secManager.checkProofOfPossession(token, body, msgcontext);
    }


    MessageContext outMessage = null;
    try {
      outMessage = Utils.createOutMessageContext(createSeqMsg); // createing

View Full Code Here

Examples of org.apache.sandesha2.security.SecurityManager.checkProofOfPossession()

    SequencePropertyBean tokenBean = sequencePropertyBeanMgr.retrieve(sequencePropertyKey, Sandesha2Constants.SequenceProperties.SECURITY_TOKEN);
    if(tokenBean != null) {
      SecurityManager secManager = SandeshaUtil.getSecurityManager(context);
      OMElement body = terminateSeqRMMsg.getSOAPEnvelope().getBody();
      SecurityToken token = secManager.recoverSecurityToken(tokenBean.getValue());
      secManager.checkProofOfPossession(token, body, terminateSeqRMMsg.getMessageContext());
    }


    FaultManager faultManager = new FaultManager();
    SandeshaException fault = faultManager.checkForUnknownSequence(terminateSeqRMMsg, sequenceId,
        storageManager);

View Full Code Here

0 1 2 3

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.