/*
+ * Copyright 2001-2005 Internet2
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+/*
* shib-mlp.cpp -- The ShibTarget Markup Language processor
*
* Created by: Derek Atkins <derek@ihtfp.com>
* $Id$
*/
-#include "shib-target.h"
-#include <strstream>
+#include "internal.h"
+
+#include <typeinfo>
+#include <sstream>
#include <ctype.h>
#include <xercesc/util/XercesDefs.hpp>
-#include <log4cpp/Category.hh>
-
using namespace std;
+using namespace saml;
+using namespace shibboleth;
using namespace shibtarget;
-class shibtarget::ShibMLPPriv {
-public:
- ShibMLPPriv();
- ~ShibMLPPriv() {}
- log4cpp::Category *log;
-};
-
-ShibMLPPriv::ShibMLPPriv()
+void ShibMLP::html_encode(string& os, const char* start)
{
- string ctx = "shibtarget.ShibMLP";
- log = &(log4cpp::Category::getInstance(ctx));
+ while (start && *start) {
+ switch (*start) {
+ case '<': os += "<"; break;
+ case '>': os += ">"; break;
+ case '"': os += """; break;
+ case '#': os += "#"; break;
+ case '%': os += "%"; break;
+ case '&': os += "&"; break;
+ case '\'': os += "'"; break;
+ case '(': os += "("; break;
+ case ')': os += ")"; break;
+ case ':': os += ":"; break;
+ case '[': os += "["; break;
+ case '\\': os += "\"; break;
+ case ']': os += "]"; break;
+ case '`': os += "`"; break;
+ case '{': os += "{"; break;
+ case '}': os += "}"; break;
+ default: os += *start;
+ }
+ start++;
+ }
}
-
static void trimspace (string& s)
{
int end = s.size() - 1, start = 0;
s = s.substr(start, end - start + 1);
}
-ShibMLP::ShibMLP ()
+const char* ShibMLP::run(const string& is, const IPropertySet* props, std::string* output)
{
- m_priv = new ShibMLPPriv ();
-}
-
-ShibMLP::~ShibMLP ()
-{
- delete m_priv;
-}
-
-string ShibMLP::run (const string& is) const
-{
- string res;
+ // Create a timestamp
+ time_t now = time(NULL);
+#if defined(HAVE_CTIME_R_2)
+ char timebuf[32];
+ insert("now", ctime_r(&now,timebuf));
+#elif defined(HAVE_CTIME_R_3)
+ char timebuf[32];
+ insert("now", ctime_r(&now,timebuf,sizeof(timebuf)));
+#else
+ insert("now", ctime(&now));
+#endif
+ if (!output)
+ output=&m_generated;
const char* line = is.c_str();
const char* lastpos = line;
const char* thispos;
- m_priv->log->info("Processing string");
-
//
// Search for SHIBMLP tags. These are of the form:
- // <shibmlp key />
+ // <shibmlp key/>
+ // <shibmlpif key> stuff </shibmlpif>
+ // <shibmlpifnot key> stuff </shibmlpifnot>
// Note that there MUST be white-space after "<shibmlp" but
// there does not need to be white space between the key and
// the close-tag.
//
- while ((thispos = strstr(lastpos, "<")) != NULL) {
+ while ((thispos = strchr(lastpos, '<')) != NULL) {
// save the string up to this token
- res += is.substr(lastpos-line, thispos-lastpos);
+ *output += is.substr(lastpos-line, thispos-lastpos);
- // Make sure this token matches our token.
- if (strnicmp (thispos, "<shibmlp ", 9)) {
- res += "<";
- lastpos = thispos + 1;
- continue;
+ // Make sure this token matches our tokens.
+#ifdef HAVE_STRCASECMP
+ if (!strncasecmp(thispos, "<shibmlp ", 9))
+#else
+ if (!strnicmp(thispos, "<shibmlp ", 9))
+#endif
+ {
+ // Save this position off.
+ lastpos = thispos + 9; // strlen("<shibmlp ")
+
+ // search for the end-tag
+ if ((thispos = strstr(lastpos, "/>")) != NULL) {
+ string key = is.substr(lastpos-line, thispos-lastpos);
+ trimspace(key);
+
+ map<string,string>::const_iterator i=m_map.find(key);
+ if (i != m_map.end()) {
+ html_encode(*output,i->second.c_str());
+ }
+ else {
+ pair<bool,const char*> p=props ? props->getString(key.c_str()) : pair<bool,const char*>(false,NULL);
+ if (p.first) {
+ html_encode(*output,p.second);
+ }
+ else {
+ static const char* s1 = "<!-- Unknown SHIBMLP key: ";
+ static const char* s2 = "/>";
+ *output += s1;
+ *output += key + s2;
+ }
+ }
+ lastpos = thispos + 2; // strlen("/>")
+ }
}
+#ifdef HAVE_STRCASECMP
+ else if (!strncasecmp(thispos, "<shibmlpif ", 11))
+#else
+ else if (!strnicmp(thispos, "<shibmlpif ", 11))
+#endif
+ {
+ // Save this position off.
+ lastpos = thispos + 11; // strlen("<shibmlpif ")
- // Save this position off.
- lastpos = thispos + 9; // strlen("<shibmlp ")
-
- // search for the end-tag
- if ((thispos = strstr(lastpos, "/>")) != NULL) {
- string key = is.substr(lastpos-line, thispos-lastpos);
- trimspace(key);
-
- m_priv->log->debug("found key: \"%s\"", key.c_str());
-
- map<string,string>::const_iterator i=m_map.find(key);
- if (i == m_map.end()) {
- static string s1 = "<!-- Unknown SHIBMLP key: ";
- static string s2 = "/>";
- res += s1 + key + s2;
- m_priv->log->debug("key unknown");
- } else {
- res += i->second;
- m_priv->log->debug("key maps to \"%s\"", i->second.c_str());
- }
+ // search for the end of this tag
+ if ((thispos = strchr(lastpos, '>')) != NULL) {
+ string key = is.substr(lastpos-line, thispos-lastpos);
+ trimspace(key);
+ bool eval=false;
+ map<string,string>::const_iterator i=m_map.find(key);
+ if (i != m_map.end() && !i->second.empty()) {
+ eval=true;
+ }
+ else {
+ pair<bool,const char*> p=props ? props->getString(key.c_str()) : pair<bool,const char*>(false,NULL);
+ if (p.first) {
+ eval=true;
+ }
+ }
+ lastpos = thispos + 1; // strlen(">")
+
+ // Search for the closing tag.
+ const char* frontpos=lastpos;
+ while ((thispos = strstr(lastpos, "</")) != NULL) {
+#ifdef HAVE_STRCASECMP
+ if (!strncasecmp(thispos, "</shibmlpif>", 12))
+#else
+ if (!strnicmp(thispos, "</shibmlpif>", 12))
+#endif
+ {
+ // We found our terminator. Process the string in between.
+ string segment;
+ run(is.substr(frontpos-line, thispos-frontpos),props,&segment);
+ if (eval)
+ *output += segment;
+ lastpos = thispos + 12; // strlen("</shibmlpif>")
+ break;
+ }
+ else {
+ // Skip it.
+ lastpos = thispos + 2;
+ }
+ }
+ }
+ }
+#ifdef HAVE_STRCASECMP
+ else if (!strncasecmp(thispos, "<shibmlpifnot ", 14))
+#else
+ else if (!strnicmp(thispos, "<shibmlpifnot ", 14))
+#endif
+ {
+ // Save this position off.
+ lastpos = thispos + 14; // strlen("<shibmlpifnot ")
- lastpos = thispos + 2; // strlen("/>")
+ // search for the end of this tag
+ if ((thispos = strchr(lastpos, '>')) != NULL) {
+ string key = is.substr(lastpos-line, thispos-lastpos);
+ trimspace(key);
+ bool eval=false;
+ map<string,string>::const_iterator i=m_map.find(key);
+ if (i != m_map.end() && !i->second.empty()) {
+ eval=true;
+ }
+ else {
+ pair<bool,const char*> p=props ? props->getString(key.c_str()) : pair<bool,const char*>(false,NULL);
+ if (p.first) {
+ eval=true;
+ }
+ }
+ lastpos = thispos + 1; // strlen(">")
+
+ // Search for the closing tag.
+ const char* frontpos=lastpos;
+ while ((thispos = strstr(lastpos, "</")) != NULL) {
+#ifdef HAVE_STRCASECMP
+ if (!strncasecmp(thispos, "</shibmlpifnot>", 15))
+#else
+ if (!strnicmp(thispos, "</shibmlpifnot>", 15))
+#endif
+ {
+ // We found our terminator. Process the string in between.
+ string segment;
+ run(is.substr(frontpos-line, thispos-frontpos),props,&segment);
+ if (!eval)
+ *output += segment;
+ lastpos = thispos + 15; // strlen("</shibmlpifnot>")
+ break;
+ }
+ else {
+ // Skip it.
+ lastpos = thispos + 2;
+ }
+ }
+ }
+ }
+ else {
+ // Skip it.
+ *output += "<";
+ lastpos = thispos + 1;
}
}
- res += is.substr(lastpos-line);
+ *output += is.substr(lastpos-line);
- return res;
+ return output->c_str();
}
-string ShibMLP::run (istream& is) const
+const char* ShibMLP::run(istream& is, const IPropertySet* props, std::string* output)
{
static string eol = "\r\n";
string str, line;
- m_priv->log->info("processing stream");
-
while (getline(is, line))
str += line + eol;
- return run(str);
+ return run(str,props,output);
+}
+
+void ShibMLP::insert(SAMLException& e)
+{
+ insert("errorType", e.classname());
+ if (typeid(e)==typeid(ContentTypeException))
+ insert("errorText", "A problem was detected with your identity provider's software configuration.");
+ else
+ insert("errorText", e.getMessage() ? e.getMessage() : "No Message");
+ if (e.getProperty("errorURL"))
+ insert("originErrorURL", e.getProperty("errorURL"));
+ if (e.getProperty("contactName"))
+ insert("originContactName", e.getProperty("contactName"));
+ const char* email=e.getProperty("contactEmail");
+ if (email) {
+ if (!strncmp(email,"mailto:",7) && strlen(email)>7)
+ insert("originContactEmail", email+7);
+ else
+ insert("originContactEmail", email);
+ }
}