2 * Licensed to the University Corporation for Advanced Internet
3 * Development, Inc. (UCAID) under one or more contributor license
4 * agreements. See the NOTICE file distributed with this work for
5 * additional information regarding copyright ownership.
7 * UCAID licenses this file to you under the Apache License,
8 * Version 2.0 (the "License"); you may not use this file except
9 * in compliance with the License. You may obtain a copy of the
12 * http://www.apache.org/licenses/LICENSE-2.0
14 * Unless required by applicable law or agreed to in writing,
15 * software distributed under the License is distributed on an
16 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
17 * either express or implied. See the License for the specific
18 * language governing permissions and limitations under the License.
22 * AttributeScopeStringFunctor.cpp
24 * A match function that matches the scope of an attribute value against
25 * the specified value.
29 #include "exceptions.h"
30 #include "attribute/Attribute.h"
31 #include "attribute/filtering/FilteringContext.h"
32 #include "attribute/filtering/FilterPolicyContext.h"
33 #include "attribute/filtering/MatchFunctor.h"
35 #include <xmltooling/util/XMLHelper.h>
37 using namespace shibsp;
39 using xmltooling::XMLHelper;
43 static const XMLCh attributeID[] = UNICODE_LITERAL_11(a,t,t,r,i,b,u,t,e,I,D);
44 static const XMLCh ignoreCase[] = UNICODE_LITERAL_10(i,g,n,o,r,e,C,a,s,e);
45 static const XMLCh value[] = UNICODE_LITERAL_5(v,a,l,u,e);
48 * A match function that matches the scope of an attribute value against the specified value.
50 class SHIBSP_DLLLOCAL AttributeScopeStringFunctor : public MatchFunctor
56 bool hasScope(const FilteringContext& filterContext) const;
59 AttributeScopeStringFunctor(const DOMElement* e)
60 : m_attributeID(XMLHelper::getAttrString(e, nullptr, attributeID)),
61 m_value(e ? xmltooling::toUTF8(e->getAttributeNS(nullptr,value)) : nullptr),
62 m_ignoreCase(XMLHelper::getAttrBool(e, false, ignoreCase)) {
63 if (!m_value || !*m_value) {
65 throw ConfigurationException("AttributeScopeString MatchFunctor requires non-empty value attribute.");
69 virtual ~AttributeScopeStringFunctor() {
73 bool evaluatePolicyRequirement(const FilteringContext& filterContext) const {
74 if (m_attributeID.empty())
75 throw AttributeFilteringException("No attributeID specified.");
76 return hasScope(filterContext);
79 bool evaluatePermitValue(const FilteringContext& filterContext, const Attribute& attribute, size_t index) const {
80 if (m_attributeID.empty() || m_attributeID == attribute.getId()) {
82 #ifdef HAVE_STRCASECMP
83 return !strcasecmp(attribute.getScope(index), m_value);
85 return !stricmp(attribute.getScope(index), m_value);
89 return !strcmp(attribute.getScope(index), m_value);
91 return hasScope(filterContext);
95 MatchFunctor* SHIBSP_DLLLOCAL AttributeScopeStringFactory(const std::pair<const FilterPolicyContext*,const DOMElement*>& p)
97 return new AttributeScopeStringFunctor(p.second);
102 bool AttributeScopeStringFunctor::hasScope(const FilteringContext& filterContext) const
105 pair<multimap<string,Attribute*>::const_iterator,multimap<string,Attribute*>::const_iterator> attrs =
106 filterContext.getAttributes().equal_range(m_attributeID);
107 for (; attrs.first != attrs.second; ++attrs.first) {
108 count = attrs.first->second->valueCount();
109 for (size_t index = 0; index < count; ++index) {
111 #ifdef HAVE_STRCASECMP
112 if (!strcasecmp(attrs.first->second->getScope(index), m_value))
115 if (!stricmp(attrs.first->second->getScope(index), m_value))
120 if (!strcmp(attrs.first->second->getScope(index), m_value))