Package br.net.woodstock.rockframework.ws.wss4j

Source Code of br.net.woodstock.rockframework.ws.wss4j.WSS4JHelper

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
/*
* This file is part of rockframework.
*
* rockframework is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 3 of the License, or
* (at your option) any later version.
*
* rockframework is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program.  If not, see <http://www.gnu.org/licenses/>;.
*/
package br.net.woodstock.rockframework.ws.wss4j;

import java.util.HashMap;
import java.util.List;
import java.util.Map;

import javax.xml.soap.SOAPException;
import javax.xml.soap.SOAPMessage;
import javax.xml.transform.Source;
import javax.xml.transform.Transformer;
import javax.xml.transform.TransformerException;
import javax.xml.transform.TransformerFactory;
import javax.xml.transform.dom.DOMResult;
import javax.xml.transform.dom.DOMSource;

import org.apache.ws.security.WSConstants;
import org.apache.ws.security.WSSConfig;
import org.apache.ws.security.WSSecurityEngine;
import org.apache.ws.security.WSSecurityEngineResult;
import org.apache.ws.security.WSSecurityException;
import org.apache.ws.security.components.crypto.Crypto;
import org.apache.ws.security.components.crypto.CryptoFactory;
import org.apache.ws.security.message.WSSecEncrypt;
import org.apache.ws.security.message.WSSecHeader;
import org.apache.ws.security.message.WSSecSignature;
import org.apache.ws.security.message.WSSecTimestamp;
import org.apache.ws.security.message.WSSecUsernameToken;
import org.w3c.dom.Document;

public abstract class WSS4JHelper {

  private static final int  IDENTITY_TYPE  = WSConstants.BST_DIRECT_REFERENCE;

  static {
    WSSConfig.init();
  }

  private WSS4JHelper() {
    //
  }

  public static void decryptAndCheckSign(final SOAPMessage message, final WSS4JConfig config) throws SOAPException, TransformerException, WSSecurityException {
    WSSecurityEngine engine = new WSSecurityEngine();
    WSSecSignature signer = new WSSecSignature();
    signer.setUserInfo(config.getServer().getName(), config.getServer().getPassword());

    Document document = WSS4JHelper.toDocument(message);

    Map<String, String> map = new HashMap<String, String>();
    map.put(config.getClient().getName(), config.getClient().getPassword());

    List<WSSecurityEngineResult> list = engine.processSecurityHeader(document, null, new WSS4JPasswordCallbackHandler(map), WSS4JHelper.getCrypto(config));

    if (list == null) {
      throw new RuntimeException("Error processing security headers");
    }

    DOMSource source = new DOMSource(document);
    message.getSOAPPart().setContent(source);
  }

  public static void encrypt(final SOAPMessage message, final WSS4JConfig config) throws SOAPException, TransformerException, WSSecurityException {
    Document document = WSS4JHelper.toDocument(message);
    DOMSource domSource = WSS4JHelper.encrypt(document, config);
    message.getSOAPPart().setContent(domSource);
  }

  public static void sign(final SOAPMessage message, final WSS4JConfig config) throws SOAPException, TransformerException, WSSecurityException {
    Document document = WSS4JHelper.toDocument(message);
    DOMSource domSource = WSS4JHelper.sign(document, config);
    message.getSOAPPart().setContent(domSource);
  }

  public static void timestamp(final SOAPMessage message) throws SOAPException, TransformerException, WSSecurityException {
    Document document = WSS4JHelper.toDocument(message);
    DOMSource domSource = WSS4JHelper.timestamp(document);
    message.getSOAPPart().setContent(domSource);
  }

  public static void usernameToken(final SOAPMessage message, final WSS4JCredential credential) throws SOAPException, TransformerException, WSSecurityException {
    Document document = WSS4JHelper.toDocument(message);
    DOMSource domSource = WSS4JHelper.usernameToken(document, credential);
    message.getSOAPPart().setContent(domSource);
  }

  // Server
  public static DOMSource encrypt(final Document document, final WSS4JConfig config) throws WSSecurityException {
    WSSecHeader header = new WSSecHeader();
    header.insertSecurityHeader(document);

    WSSecEncrypt crypter = new WSSecEncrypt();
    crypter.setUserInfo(config.getServer().getName(), config.getServer().getPassword());
    crypter.setKeyIdentifierType(WSS4JHelper.IDENTITY_TYPE);

    Document encrypted = crypter.build(document, WSS4JHelper.getCrypto(config), header);

    DOMSource domSource = new DOMSource(encrypted);
    return domSource;
  }

  // Client
  public static DOMSource sign(final Document document, final WSS4JConfig config) throws WSSecurityException {
    WSSecHeader header = new WSSecHeader();
    header.insertSecurityHeader(document);

    WSSecSignature signer = new WSSecSignature();
    signer.setUserInfo(config.getClient().getName(), config.getClient().getPassword());
    signer.setKeyIdentifierType(WSS4JHelper.IDENTITY_TYPE);

    Document signed = signer.build(document, WSS4JHelper.getCrypto(config), header);

    DOMSource domSource = new DOMSource(signed);
    return domSource;
  }

  public static DOMSource timestamp(final Document document) throws WSSecurityException {
    WSSecHeader header = new WSSecHeader();
    header.insertSecurityHeader(document);

    WSSecTimestamp timestamp = new WSSecTimestamp();
    Document stamped = timestamp.build(document, header);
    DOMSource domSource = new DOMSource(stamped);
    return domSource;
  }

  public static DOMSource usernameToken(final Document document, final WSS4JCredential credential) throws WSSecurityException {
    WSSecHeader header = new WSSecHeader();
    header.insertSecurityHeader(document);

    WSSecUsernameToken token = new WSSecUsernameToken();
    token.setUserInfo(credential.getName(), credential.getPassword());

    if (credential instanceof WSS4JTokenCredential) {
      WSS4JTokenCredential tokenCredential = (WSS4JTokenCredential) credential;
      token.setPasswordType(tokenCredential.getPasswordType().getType());
    } else {
      token.setPasswordType(PasswordType.PLAIN.getType());
    }

    Document stamped = token.build(document, header);
    DOMSource domSource = new DOMSource(stamped);
    return domSource;
  }

  private static Crypto getCrypto(final WSS4JConfig config) throws WSSecurityException {
    if (config.getProperties() != null) {
      return CryptoFactory.getInstance(config.getProperties());
    }
    return CryptoFactory.getInstance();
  }

  private static Document toDocument(final SOAPMessage message) throws SOAPException, TransformerException {
    Source src = message.getSOAPPart().getContent();
    TransformerFactory tf = TransformerFactory.newInstance();
    Transformer transformer = tf.newTransformer();
    DOMResult result = new DOMResult();
    transformer.transform(src, result);
    return (Document) result.getNode();
  }

}
TOP

Related Classes of br.net.woodstock.rockframework.ws.wss4j.WSS4JHelper

  • org.apache.ws.security.message.WSSecEncrypt
  • org.apache.ws.security.message.WSSecHeader
  • org.apache.ws.security.message.WSSecSignature
  • org.apache.ws.security.message.WSSecTimestamp
  • org.apache.ws.security.message.WSSecUsernameToken
  • org.apache.ws.security.WSSecurityEngine
  • javax.xml.transform.dom.DOMResult
  • javax.xml.transform.TransformerFactory
  • javax.xml.transform.Source
  • javax.xml.transform.Transformer
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.