Replace custom code with CredentialResolver.

[shibboleth/cpp-opensaml.git] / samltest / signature / SAML1RequestTest.h

/*\r
 *  Copyright 2001-2005 Internet2\r
 * \r
 * Licensed under the Apache License, Version 2.0 (the "License");\r
 * you may not use this file except in compliance with the License.\r
 * You may obtain a copy of the License at\r
 *\r
 *     http://www.apache.org/licenses/LICENSE-2.0\r
 *\r
 * Unless required by applicable law or agreed to in writing, software\r
 * distributed under the License is distributed on an "AS IS" BASIS,\r
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r
 * See the License for the specific language governing permissions and\r
 * limitations under the License.\r
 */\r
\r
#include "signature/SAMLSignatureTestBase.h"\r
\r
#include <saml/saml1/core/Protocols.h>\r
\r
#include <fstream>\r
\r
using namespace opensaml::saml1p;\r
using namespace opensaml::saml1;\r
\r
class SAML1RequestTest : public CxxTest::TestSuite, public SAMLSignatureTestBase {\r
public:\r
    void setUp() {\r
        childElementsFile  = data_path + "signature/SAML1Request.xml";\r
        SAMLSignatureTestBase::setUp();\r
    }\r
\r
    void tearDown() {\r
        SAMLSignatureTestBase::tearDown();\r
    }\r
\r
    void testSignature() {\r
        auto_ptr_XMLCh issueInstant("1970-01-02T01:01:02.100Z");\r
        auto_ptr_XMLCh id("ident");\r
        auto_ptr_XMLCh method("method");\r
        auto_ptr_XMLCh nameid("John Doe");\r
        \r
        NameIdentifier* n=NameIdentifierBuilder::buildNameIdentifier();\r
        n->setName(nameid.get());        \r
        Subject* subject=SubjectBuilder::buildSubject();\r
        subject->setNameIdentifier(n);\r
\r
        AuthenticationQuery* query=AuthenticationQueryBuilder::buildAuthenticationQuery();\r
        query->setAuthenticationMethod(method.get());\r
        query->setSubject(subject);\r
        \r
        auto_ptr<Request> request(RequestBuilder::buildRequest());\r
        request->setRequestID(id.get());\r
        request->setIssueInstant(issueInstant.get());\r
        request->setAuthenticationQuery(query);\r
\r
        // Append a Signature.\r
        Signature* sig=SignatureBuilder::buildSignature();\r
        request->setSignature(sig);\r
        Locker locker(m_resolver);\r
        sig->setSigningKey(m_resolver->getKey());\r
\r
        // Build KeyInfo.\r
        KeyInfo* keyInfo=KeyInfoBuilder::buildKeyInfo();\r
        X509Data* x509Data=X509DataBuilder::buildX509Data();\r
        keyInfo->getX509Datas().push_back(x509Data);\r
        for_each(m_resolver->getCertificates().begin(),m_resolver->getCertificates().end(),bind1st(_addcert(),x509Data));\r
        sig->setKeyInfo(keyInfo);\r
\r
        // Sign while marshalling.\r
        vector<Signature*> sigs(1,sig);\r
        DOMElement* rootElement = NULL;\r
        try {\r
            rootElement=request->marshall((DOMDocument*)NULL,&sigs);\r
        }\r
        catch (XMLToolingException& e) {\r
            TS_TRACE(e.what());\r
            throw;\r
        }\r
        \r
        string buf;\r
        XMLHelper::serialize(rootElement, buf);\r
        istringstream in(buf);\r
        DOMDocument* doc=XMLToolingConfig::getConfig().getParser().parse(in);\r
        const XMLObjectBuilder* b = XMLObjectBuilder::getBuilder(doc->getDocumentElement());\r
\r
        assertEquals(expectedChildElementsDOM, b->buildFromDocument(doc));\r
        \r
        try {\r
            SignatureProfileValidator spv;\r
            SignatureValidator sv(new KeyResolver(m_resolver->getKey()));\r
            spv.validate(request->getSignature());\r
            sv.validate(request->getSignature());\r
        }\r
        catch (XMLToolingException& e) {\r
            TS_TRACE(e.what());\r
            throw;\r
        }\r
    }\r
\r
};\r