using namespace xmltooling;
using namespace std;
-void SOAPClient::send(const soap11::Envelope& env, MetadataCredentialCriteria& peer, const char* endpoint)
+void SOAPClient::send(const soap11::Envelope& env, const char* from, MetadataCredentialCriteria& to, const char* endpoint)
{
// Clear policy.
m_policy.reset();
- m_criteria = &peer;
- m_peer = &(peer.getRole());
+ m_criteria = &to;
+ m_peer = &(to.getRole());
- const QName& role = m_peer->getElementQName();
+ const xmltooling::QName& role = m_peer->getElementQName();
if (XMLString::equals(role.getLocalPart(),RoleDescriptor::LOCAL_NAME))
m_policy.setRole(m_peer->getSchemaType());
else
m_policy.setRole(&role);
- auto_ptr_char pn(dynamic_cast<const EntityDescriptor*>(m_peer->getParent())->getEntityID());
- soap11::SOAPClient::send(env, pn.get(), endpoint);
+ // Establish the "expected" issuer identity.
+ const XMLCh* entityID = dynamic_cast<const EntityDescriptor*>(m_peer->getParent())->getEntityID();
+ m_policy.setIssuer(entityID);
+ if (!m_policy.getIssuerMetadata())
+ m_policy.setIssuerMetadata(m_peer);
+
+ // Call the base class.
+ auto_ptr_char pn(entityID);
+ soap11::SOAPClient::send(env, SOAPTransport::Address(from, pn.get(), endpoint));
}
void SOAPClient::prepareTransport(xmltooling::SOAPTransport& transport)
{
auto_ptr<soap11::Envelope> env(soap11::SOAPClient::receive());
if (env.get()) {
- if (m_peer && m_transport->isSecure()) {
- // Set issuer based on peer identity.
- m_policy.setIssuer(dynamic_cast<EntityDescriptor*>(m_peer->getParent())->getEntityID());
- m_policy.setIssuerMetadata(m_peer);
- m_policy.setSecure(true);
+ if (m_peer && m_transport->isAuthenticated()) {
+ // Set flag based on peer identity.
+ m_policy.setAuthenticated(true);
}
+
+ // Run policy against SOAP layer.
m_policy.evaluate(*(env.get()));
}
return env.release();
projects / shibboleth / cpp-opensaml.git / blobdiff