using namespace std;
AffiliationAttribute::AffiliationAttribute(const XMLCh* defaultScope, long lifetime,
- Iterator<const XMLCh*>& scopes,Iterator<const XMLCh*>& values)
+ const Iterator<const XMLCh*>& scopes,
+ const Iterator<const XMLCh*>& values)
: ScopedAttribute(eduPerson::Constants::EDUPERSON_AFFILIATION,
shibboleth::Constants::SHIB_ATTRIBUTE_NAMESPACE_URI,
defaultScope,NULL,lifetime,scopes,values)
static XMLCh anyURI[]={ chLatin_a, chLatin_n, chLatin_y, chLatin_U, chLatin_R, chLatin_I, chNull };
-EntitlementAttribute::EntitlementAttribute(long lifetime, Iterator<const XMLCh*>& values)
+EntitlementAttribute::EntitlementAttribute(long lifetime, const Iterator<const XMLCh*>& values)
: SAMLAttribute(eduPerson::Constants::EDUPERSON_ENTITLEMENT,
shibboleth::Constants::SHIB_ATTRIBUTE_NAMESPACE_URI,NULL,lifetime,values)
{
ScopedAttribute::ScopedAttribute(const XMLCh* name, const XMLCh* ns, const XMLCh* defaultScope,
const saml::QName* type, long lifetime,
- saml::Iterator<const XMLCh*>& scopes,saml::Iterator<const XMLCh*>& values)
+ const saml::Iterator<const XMLCh*>& scopes,
+ const saml::Iterator<const XMLCh*>& values)
: SAMLAttribute(name,ns,type,lifetime,values)
{
if (scopes.size()!=values.size())
{
public:
ScopedAttribute(const XMLCh* name, const XMLCh* ns, const XMLCh* defaultScope, const saml::QName* type=NULL,
- long lifetime=0, saml::Iterator<const XMLCh*>& scopes=saml::Iterator<const XMLCh*>(),
- saml::Iterator<const XMLCh*>& values=saml::Iterator<const XMLCh*>());
+ long lifetime=0, const saml::Iterator<const XMLCh*>& scopes=saml::Iterator<const XMLCh*>(),
+ const saml::Iterator<const XMLCh*>& values=saml::Iterator<const XMLCh*>());
ScopedAttribute(IDOM_Element* e);
virtual ~ScopedAttribute();
{
public:
AffiliationAttribute(const XMLCh* defaultScope, long lifetime=0,
- saml::Iterator<const XMLCh*>& scopes=saml::Iterator<const XMLCh*>(),
- saml::Iterator<const XMLCh*>& values=saml::Iterator<const XMLCh*>());
+ const saml::Iterator<const XMLCh*>& scopes=saml::Iterator<const XMLCh*>(),
+ const saml::Iterator<const XMLCh*>& values=saml::Iterator<const XMLCh*>());
AffiliationAttribute(IDOM_Element* e);
virtual ~AffiliationAttribute();
class EDUPERSON_EXPORTS EntitlementAttribute : public saml::SAMLAttribute
{
public:
- EntitlementAttribute(long lifetime=0, saml::Iterator<const XMLCh*>& values=saml::Iterator<const XMLCh*>());
+ EntitlementAttribute(long lifetime=0, const saml::Iterator<const XMLCh*>& values=saml::Iterator<const XMLCh*>());
EntitlementAttribute(IDOM_Element* e);
virtual ~EntitlementAttribute();
public:
explicit UnsupportedProtocolException(const char* msg) : saml::SAMLException(msg) {}
explicit UnsupportedProtocolException(const std::string& msg) : saml::SAMLException(msg) {}
- explicit UnsupportedProtocolException(saml::Iterator<saml::QName>& codes, const char* msg) : saml::SAMLException(codes,msg) {}
- explicit UnsupportedProtocolException(saml::Iterator<saml::QName>& codes, const std::string& msg) : saml::SAMLException(codes, msg) {}
- explicit UnsupportedProtocolException(saml::QName& code, const char* msg) : saml::SAMLException(code,msg) {}
- explicit UnsupportedProtocolException(saml::QName& code, const std::string& msg) : saml::SAMLException(code, msg) {}
+ explicit UnsupportedProtocolException(const saml::Iterator<saml::QName>& codes, const char* msg) : saml::SAMLException(codes,msg) {}
+ explicit UnsupportedProtocolException(const saml::Iterator<saml::QName>& codes, const std::string& msg) : saml::SAMLException(codes, msg) {}
+ explicit UnsupportedProtocolException(const saml::QName& code, const char* msg) : saml::SAMLException(code,msg) {}
+ explicit UnsupportedProtocolException(const saml::QName& code, const std::string& msg) : saml::SAMLException(code, msg) {}
};
struct SHIB_EXPORTS IOriginSiteMapper
class SHIB_EXPORTS ShibPOSTProfile
{
public:
- ShibPOSTProfile(saml::Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper, const XMLCh* receiver, int ttlSeconds);
- ShibPOSTProfile(saml::Iterator<const XMLCh*>& policies, const XMLCh* issuer);
+ ShibPOSTProfile(const saml::Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper, const XMLCh* receiver, int ttlSeconds);
+ ShibPOSTProfile(const saml::Iterator<const XMLCh*>& policies, const XMLCh* issuer);
virtual ~ShibPOSTProfile();
virtual saml::SAMLAssertion* getSSOAssertion(const saml::SAMLResponse& r);
const XMLCh* subjectIP,
const XMLCh* authMethod,
time_t authInstant,
- saml::Iterator<saml::SAMLAuthorityBinding*>& bindings,
+ const saml::Iterator<saml::SAMLAuthorityBinding*>& bindings,
const saml::Key& responseKey, const saml::X509Certificate* responseCert,
const saml::Key* assertionKey, const saml::X509Certificate* assertionCert);
virtual bool checkReplayCache(const saml::SAMLAssertion& a);
protected:
virtual bool verifySignature(const saml::SAMLSignedObject& obj, const XMLCh* signerName,
- saml::Iterator<saml::X509Certificate*>& roots, const saml::Key* knownKey);
+ const saml::Iterator<saml::X509Certificate*>& roots, const saml::Key* knownKey);
saml::SAMLSignedObject::sigs_t m_algorithm;
IOriginSiteMapper* m_mapper;
class SHIB_EXPORTS ClubShibPOSTProfile : public ShibPOSTProfile
{
public:
- ClubShibPOSTProfile(saml::Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper, const XMLCh* receiver, int ttlSeconds);
- ClubShibPOSTProfile(saml::Iterator<const XMLCh*>& policies, const XMLCh* issuer);
+ ClubShibPOSTProfile(const saml::Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper, const XMLCh* receiver, int ttlSeconds);
+ ClubShibPOSTProfile(const saml::Iterator<const XMLCh*>& policies, const XMLCh* issuer);
virtual ~ClubShibPOSTProfile();
virtual saml::SAMLResponse* prepare(const XMLCh* recipient,
const XMLCh* subjectIP,
const XMLCh* authMethod,
time_t authInstant,
- saml::Iterator<saml::SAMLAuthorityBinding*>& bindings,
+ const saml::Iterator<saml::SAMLAuthorityBinding*>& bindings,
const saml::Key& responseKey, const saml::X509Certificate* responseCert,
const saml::Key* assertionKey, const saml::X509Certificate* assertionCert);
protected:
virtual bool verifySignature(const saml::SAMLSignedObject& obj, const XMLCh* signerName,
- saml::Iterator<saml::X509Certificate*>& roots, const saml::Key* knownKey);
+ const saml::Iterator<saml::X509Certificate*>& roots, const saml::Key* knownKey);
};
class SHIB_EXPORTS ShibPOSTProfileFactory
{
public:
- static ShibPOSTProfile* getInstance(saml::Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper,
+ static ShibPOSTProfile* getInstance(const saml::Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper,
const XMLCh* receiver, int ttlSeconds);
- static ShibPOSTProfile* getInstance(saml::Iterator<const XMLCh*>& policies, const XMLCh* issuer);
+ static ShibPOSTProfile* getInstance(const saml::Iterator<const XMLCh*>& policies, const XMLCh* issuer);
};
class SHIB_EXPORTS ShibConfig
using namespace saml;
using namespace std;
-ClubShibPOSTProfile::ClubShibPOSTProfile(Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper,
+ClubShibPOSTProfile::ClubShibPOSTProfile(const Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper,
const XMLCh* receiver, int ttlSeconds)
: ShibPOSTProfile(policies,mapper,receiver,ttlSeconds)
{
throw SAMLException(SAMLException::REQUESTER, "ClubShibPOSTProfile() policy array must include Club Shib");
}
-ClubShibPOSTProfile::ClubShibPOSTProfile(Iterator<const XMLCh*>& policies, const XMLCh* issuer)
+ClubShibPOSTProfile::ClubShibPOSTProfile(const Iterator<const XMLCh*>& policies, const XMLCh* issuer)
: ShibPOSTProfile(policies,issuer)
{
bool found=false;
const XMLCh* subjectIP,
const XMLCh* authMethod,
time_t authInstant,
- Iterator<SAMLAuthorityBinding*>& bindings,
+ const Iterator<SAMLAuthorityBinding*>& bindings,
const saml::Key& responseKey, const saml::X509Certificate* responseCert,
const saml::Key* assertionKey, const saml::X509Certificate* assertionCert)
{
}
bool ClubShibPOSTProfile::verifySignature(const SAMLSignedObject& obj, const XMLCh* signerName,
- saml::Iterator<saml::X509Certificate*>& roots,
+ const saml::Iterator<saml::X509Certificate*>& roots,
const saml::Key* knownKey)
{
if (!ShibPOSTProfile::verifySignature(obj,signerName,roots,knownKey))
using namespace saml;
using namespace std;
-ShibPOSTProfile::ShibPOSTProfile(Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper, const XMLCh* receiver, int ttlSeconds)
+ShibPOSTProfile::ShibPOSTProfile(const Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper, const XMLCh* receiver, int ttlSeconds)
: m_mapper(mapper), m_ttlSeconds(ttlSeconds), m_algorithm(SAMLSignedObject::RSA_SHA1), m_issuer(NULL)
{
if (!mapper || !receiver || !*receiver || ttlSeconds <= 0)
m_policies.push_back(XMLString::replicate(*policies.next()));
}
-ShibPOSTProfile::ShibPOSTProfile(Iterator<const XMLCh*>& policies, const XMLCh* issuer)
+ShibPOSTProfile::ShibPOSTProfile(const Iterator<const XMLCh*>& policies, const XMLCh* issuer)
: m_mapper(NULL), m_ttlSeconds(0), m_algorithm(SAMLSignedObject::RSA_SHA1), m_receiver(NULL)
{
if (!issuer || !*issuer)
const XMLCh* subjectIP,
const XMLCh* authMethod,
time_t authInstant,
- Iterator<SAMLAuthorityBinding*>& bindings,
+ const Iterator<SAMLAuthorityBinding*>& bindings,
const saml::Key& responseKey, const saml::X509Certificate* responseCert,
const saml::Key* assertionKey, const saml::X509Certificate* assertionCert)
{
}
bool ShibPOSTProfile::verifySignature(const SAMLSignedObject& obj, const XMLCh* signerName,
- saml::Iterator<saml::X509Certificate*>& roots,
+ const saml::Iterator<saml::X509Certificate*>& roots,
const saml::Key* knownKey)
{
return knownKey ? obj.verify(*knownKey) : obj.verify();
using namespace saml;
using namespace std;
-ShibPOSTProfile* ShibPOSTProfileFactory::getInstance(Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper,
+ShibPOSTProfile* ShibPOSTProfileFactory::getInstance(const Iterator<const XMLCh*>& policies, IOriginSiteMapper* mapper,
const XMLCh* receiver, int ttlSeconds)
{
if (policies.size()!=1 || XMLString::compareString(Constants::POLICY_CLUBSHIB,*policies.next()))
return new ClubShibPOSTProfile(policies,mapper,receiver,ttlSeconds);
}
-ShibPOSTProfile* ShibPOSTProfileFactory::getInstance(Iterator<const XMLCh*>& policies, const XMLCh* issuer)
+ShibPOSTProfile* ShibPOSTProfileFactory::getInstance(const Iterator<const XMLCh*>& policies, const XMLCh* issuer)
{
if (policies.size()!=1 || XMLString::compareString(Constants::POLICY_CLUBSHIB,*policies.next()))
return NULL;