2 * Copyright 2001-2007 Internet2
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
18 * SAML2SOAPDecoder.cpp
20 * SAML 2.0 SOAP binding message decoder
24 #include "exceptions.h"
25 #include "binding/MessageDecoder.h"
26 #include "saml2/core/Protocols.h"
28 #include <log4cpp/Category.hh>
29 #include <xmltooling/soap/SOAP.h>
30 #include <xmltooling/util/NDC.h>
31 #include <xmltooling/validation/ValidatorSuite.h>
33 using namespace opensaml::saml2p;
34 using namespace opensaml;
35 using namespace soap11;
36 using namespace xmltooling;
37 using namespace log4cpp;
42 class SAML_DLLLOCAL SAML2SOAPDecoder : public MessageDecoder
45 SAML2SOAPDecoder(const DOMElement* e);
46 virtual ~SAML2SOAPDecoder() {}
48 xmltooling::XMLObject* decode(
49 std::string& relayState,
50 const GenericRequest& genericRequest,
51 SecurityPolicy& policy
55 MessageDecoder* SAML_DLLLOCAL SAML2SOAPDecoderFactory(const DOMElement* const & e)
57 return new SAML2SOAPDecoder(e);
62 SAML2SOAPDecoder::SAML2SOAPDecoder(const DOMElement* e) {}
64 XMLObject* SAML2SOAPDecoder::decode(
66 const GenericRequest& genericRequest,
67 SecurityPolicy& policy
71 xmltooling::NDC ndc("decode");
73 Category& log = Category::getInstance(SAML_LOGCAT".MessageDecoder.SAML2SOAP");
75 log.debug("validating input");
76 string s = genericRequest.getContentType();
77 if (s.find("text/xml") == string::npos) {
78 log.warn("ignoring incorrect content type (%s)", s.c_str() ? s.c_str() : "none");
82 const char* data = genericRequest.getRequestBody();
84 log.warn("empty request body");
87 istringstream is(data);
89 // Parse and bind the document into an XMLObject.
90 DOMDocument* doc = (policy.getValidating() ? XMLToolingConfig::getConfig().getValidatingParser()
91 : XMLToolingConfig::getConfig().getParser()).parse(is);
92 XercesJanitor<DOMDocument> janitor(doc);
93 auto_ptr<XMLObject> xmlObject(XMLObjectBuilder::buildOneFromElement(doc->getDocumentElement(), true));
96 Envelope* env = dynamic_cast<Envelope*>(xmlObject.get());
98 throw BindingException("Decoded message was not a SOAP 1.1 Envelope.");
100 if (!policy.getValidating())
101 SchemaValidators.validate(env);
103 Body* body = env->getBody();
104 if (body && body->hasChildren()) {
105 RequestAbstractType* request = dynamic_cast<RequestAbstractType*>(body->getUnknownXMLObjects().front());
107 // Run through the policy at two layers.
108 policy.evaluate(*env, &genericRequest);
109 policy.evaluate(*request, &genericRequest);
111 body->detach(); // frees Envelope
112 request->detach(); // frees Body
117 throw BindingException("SOAP Envelope did not contain a SAML Request.");