X-Git-Url: http://www.project-moonshot.org/gitweb/?a=blobdiff_plain;f=saml%2Fsaml1%2Fbinding%2Fimpl%2FSAML1POSTEncoder.cpp;h=3a6feaef06379857aec60e7f6aa3916cf7787e7c;hb=0f6286d0ffd9371c187ecb1775cbd199ed051af5;hp=ce99ce108cd5da2a1ed299585e0bc84f33f5b2f1;hpb=1bc8e721db3a50294df852662e1eddcdbdae8f9f;p=shibboleth%2Fcpp-opensaml.git diff --git a/saml/saml1/binding/impl/SAML1POSTEncoder.cpp b/saml/saml1/binding/impl/SAML1POSTEncoder.cpp index ce99ce1..3a6feae 100644 --- a/saml/saml1/binding/impl/SAML1POSTEncoder.cpp +++ b/saml/saml1/binding/impl/SAML1POSTEncoder.cpp @@ -1,5 +1,5 @@ /* - * Copyright 2001-2006 Internet2 + * Copyright 2001-2007 Internet2 * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. @@ -22,56 +22,80 @@ #include "internal.h" #include "exceptions.h" -#include "binding/HTTPResponse.h" -#include "saml1/binding/SAML1POSTEncoder.h" +#include "binding/MessageEncoder.h" +#include "signature/ContentReference.h" #include "saml1/core/Protocols.h" #include #include -#include #include +#include #include #include using namespace opensaml::saml1p; +using namespace opensaml::saml2md; using namespace opensaml; using namespace xmlsignature; +using namespace xmltooling::logging; using namespace xmltooling; -using namespace log4cpp; using namespace std; namespace opensaml { namespace saml1p { - MessageEncoder* SAML_DLLLOCAL SAML1POSTEncoderFactory(const DOMElement* const & e) + class SAML_DLLLOCAL SAML1POSTEncoder : public MessageEncoder { - return new SAML1POSTEncoder(e); + public: + SAML1POSTEncoder(const DOMElement* e, const XMLCh* ns); + virtual ~SAML1POSTEncoder() {} + + long encode( + GenericResponse& genericResponse, + XMLObject* xmlObject, + const char* destination, + const EntityDescriptor* recipient=NULL, + const char* relayState=NULL, + const ArtifactGenerator* artifactGenerator=NULL, + const Credential* credential=NULL, + const XMLCh* signatureAlg=NULL, + const XMLCh* digestAlg=NULL + ) const; + + protected: + /** Pathname of HTML template for transmission of message via POST. */ + string m_template; + }; + + MessageEncoder* SAML_DLLLOCAL SAML1POSTEncoderFactory(const pair& p) + { + return new SAML1POSTEncoder(p.first, p.second); } }; }; -static const XMLCh templat[] = UNICODE_LITERAL_8(t,e,m,p,l,a,t,e); +static const XMLCh _template[] = UNICODE_LITERAL_8(t,e,m,p,l,a,t,e); -SAML1POSTEncoder::SAML1POSTEncoder(const DOMElement* e) +SAML1POSTEncoder::SAML1POSTEncoder(const DOMElement* e, const XMLCh* ns) { if (e) { - auto_ptr_char t(e->getAttributeNS(NULL, templat)); - if (t.get()) + auto_ptr_char t(e->getAttributeNS(ns, _template)); + if (t.get() && *t.get()) m_template = t.get(); } if (m_template.empty()) - throw XMLToolingException("SAML1POSTEncoder requires template attribute."); + throw XMLToolingException("SAML1POSTEncoder requires template XML attribute."); } -SAML1POSTEncoder::~SAML1POSTEncoder() {} - long SAML1POSTEncoder::encode( GenericResponse& genericResponse, XMLObject* xmlObject, const char* destination, - const char* recipientID, + const EntityDescriptor* recipient, const char* relayState, - const CredentialResolver* credResolver, - const XMLCh* sigAlgorithm + const ArtifactGenerator* artifactGenerator, + const Credential* credential, + const XMLCh* signatureAlg, + const XMLCh* digestAlg ) const { #ifdef _DEBUG @@ -80,9 +104,6 @@ long SAML1POSTEncoder::encode( Category& log = Category::getInstance(SAML_LOGCAT".MessageEncoder.SAML1POST"); log.debug("validating input"); - HTTPResponse* httpResponse=dynamic_cast(&genericResponse); - if (!httpResponse) - throw BindingException("Unable to cast response interface to HTTPResponse type."); if (xmlObject->getParent()) throw BindingException("Cannot encode XML content with parent."); Response* response = dynamic_cast(xmlObject); @@ -92,7 +113,7 @@ long SAML1POSTEncoder::encode( throw BindingException("SAML 1.x POST Encoder requires relay state (TARGET) value."); DOMElement* rootElement = NULL; - if (credResolver) { + if (credential) { // Signature based on native XML signing. if (response->getSignature()) { log.debug("response already signed, skipping signature operation"); @@ -101,12 +122,19 @@ long SAML1POSTEncoder::encode( log.debug("signing and marshalling the response"); // Build a Signature. - Signature* sig = buildSignature(credResolver, sigAlgorithm); + Signature* sig = SignatureBuilder::buildSignature(); response->setSignature(sig); + if (signatureAlg) + sig->setSignatureAlgorithm(signatureAlg); + if (digestAlg) { + opensaml::ContentReference* cr = dynamic_cast(sig->getContentReference()); + if (cr) + cr->setDigestAlgorithm(digestAlg); + } // Sign response while marshalling. vector sigs(1,sig); - rootElement = response->marshall((DOMDocument*)NULL,&sigs); + rootElement = response->marshall((DOMDocument*)NULL,&sigs,credential); } } else { @@ -135,14 +163,14 @@ long SAML1POSTEncoder::encode( ifstream infile(m_template.c_str()); if (!infile) throw BindingException("Failed to open HTML template for POST response ($1).", params(1,m_template.c_str())); - map params; - params["action"] = destination; - params["SAMLResponse"] = xmlbuf; - params["TARGET"] = relayState; + TemplateEngine::TemplateParameters params; + params.m_map["action"] = destination; + params.m_map["SAMLResponse"] = xmlbuf; + params.m_map["TARGET"] = relayState; stringstream s; engine->run(infile, s, params); - httpResponse->setContentType("text/html"); - long ret = httpResponse->sendResponse(s, HTTPResponse::SAML_HTTP_STATUS_OK); + genericResponse.setContentType("text/html"); + long ret = genericResponse.sendResponse(s); // Cleanup by destroying XML. delete xmlObject;