Set policy role based on peer entity.

[shibboleth/opensaml2.git] / saml / binding / impl / SOAPClient.cpp

diff --git a/saml/binding/impl/SOAPClient.cpp b/saml/binding/impl/SOAPClient.cpp
index 45693dc..84fa0ee 100644 (file)
--- a/saml/binding/impl/SOAPClient.cpp
+++ b/saml/binding/impl/SOAPClient.cpp
@@ -1,5 +1,5 @@
 /*
- *  Copyright 2001-2006 Internet2
+ *  Copyright 2001-2007 Internet2
  * 
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -22,12 +22,14 @@
 
 #include "internal.h"
 #include "exceptions.h"
+#include "version.h"
 #include "binding/SOAPClient.h"
 #include "saml2/metadata/Metadata.h"
 #include "saml2/metadata/MetadataProvider.h"
 
 #include <xmltooling/security/X509TrustEngine.h>
 #include <xmltooling/soap/SOAP.h>
+#include <xmltooling/soap/HTTPSOAPTransport.h>
 
 using namespace opensaml::saml2;
 using namespace opensaml::saml2md;
@@ -35,19 +37,33 @@ using namespace opensaml;
 using namespace xmltooling;
 using namespace std;
 
-void SOAPClient::send(const soap11::Envelope* env, const KeyInfoSource& peer, const char* endpoint)
+void SOAPClient::send(const soap11::Envelope& env, const KeyInfoSource& peer, const char* endpoint)
 {
     // Clear policy.
-    m_policy.setIssuer(NULL);
-    m_policy.setIssuerMetadata(NULL);
+    m_policy.reset();
     
     m_peer = dynamic_cast<const RoleDescriptor*>(&peer);
+    if (m_peer) {
+        const QName& role = m_peer->getElementQName();
+        if (XMLString::equals(role.getLocalPart(),RoleDescriptor::LOCAL_NAME))
+            m_policy.setRole(m_peer->getSchemaType());
+        else
+            m_policy.setRole(&role);
+    }
     
     soap11::SOAPClient::send(env, peer, endpoint);
 }
 
 void SOAPClient::prepareTransport(const xmltooling::SOAPTransport& transport)
 {
+    const HTTPSOAPTransport* http = dynamic_cast<const HTTPSOAPTransport*>(&transport);
+    if (http) {
+        http->setRequestHeader("SOAPAction", "http://www.oasis-open.org/committees/security");
+        http->setRequestHeader("Xerces-C", XERCES_FULLVERSIONDOT);
+        http->setRequestHeader("XML-Security-C", XSEC_VERSION);
+        http->setRequestHeader("OpenSAML-C", OPENSAML_FULLVERSIONDOT);
+    }
+    
     const X509TrustEngine* engine = dynamic_cast<const X509TrustEngine*>(m_policy.getTrustEngine());
     if (engine) {
         const MetadataProvider* metadata = m_policy.getMetadataProvider();
@@ -68,9 +84,18 @@ soap11::Envelope* SOAPClient::receive()
                 issuer->setName(parent->getEntityID());
                 m_policy.setIssuer(issuer);
                 m_policy.setIssuerMetadata(m_peer);
+                m_policy.setSecure(true);
             }
         }
         m_policy.evaluate(*(env.get()));
     }
     return env.release();
 }
+
+void SOAPClient::reset()
+{
+    soap11::SOAPClient::reset();
+    m_policy.reset();
+    XMLString::release(&m_correlate);
+    m_correlate=NULL;
+}