/*
- * Copyright 2001-2007 Internet2
+ * Copyright 2001-2010 Internet2
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
/**
* MetadataImpl.cpp
*
- * Implementation classes for SAML 2.0 Assertions schema
+ * Implementation classes for SAML 2.0 Metadata schema.
*/
#include "internal.h"
#include "exceptions.h"
#include "saml2/metadata/Metadata.h"
+#include "signature/ContentReference.h"
#include <xmltooling/AbstractComplexElement.h>
#include <xmltooling/AbstractSimpleElement.h>
+#include <xmltooling/XMLToolingConfig.h>
+#include <xmltooling/encryption/Encryption.h>
#include <xmltooling/impl/AnyElement.h>
#include <xmltooling/io/AbstractXMLObjectMarshaller.h>
#include <xmltooling/io/AbstractXMLObjectUnmarshaller.h>
+#include <xmltooling/security/CredentialCriteria.h>
+#include <xmltooling/security/CredentialResolver.h>
+#include <xmltooling/signature/KeyInfo.h>
+#include <xmltooling/signature/Signature.h>
+#include <xmltooling/util/DateTime.h>
#include <xmltooling/util/XMLHelper.h>
#include <ctime>
#include <xercesc/util/XMLUniDefs.hpp>
+#include <xsec/framework/XSECDefs.hpp>
using namespace samlconstants;
using namespace opensaml::saml2md;
using namespace opensaml::saml2;
-using namespace opensaml;
using namespace xmlencryption;
using namespace xmlsignature;
using namespace xmltooling;
public AbstractXMLObjectUnmarshaller
{
void init() {
- m_Lang=NULL;
- m_LangPrefix=NULL;
+ m_Lang=nullptr;
+ m_LangPrefix=nullptr;
}
protected:
public AbstractXMLObjectUnmarshaller
{
void init() {
- m_Lang=NULL;
- m_LangPrefix=NULL;
+ m_Lang=nullptr;
+ m_LangPrefix=nullptr;
}
protected:
list<XMLObject*>::iterator m_pos_OrganizationURL;
void init() {
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_Extensions=NULL;
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_Extensions=nullptr;
m_pos_Extensions=m_children.begin();
m_pos_OrganizationDisplayName=m_pos_Extensions;
++m_pos_OrganizationDisplayName;
list<XMLObject*>::iterator m_pos_TelephoneNumber;
void init() {
- m_ContactType=NULL;
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_Extensions=NULL;
- m_Company=NULL;
- m_GivenName=NULL;
- m_SurName=NULL;
+ m_ContactType=nullptr;
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_Extensions=nullptr;
+ m_Company=nullptr;
+ m_GivenName=nullptr;
+ m_SurName=nullptr;
m_pos_Extensions=m_children.begin();
m_pos_Company=m_pos_Extensions;
++m_pos_Company;
protected:
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_STRING_ATTRIB(ContactType,CONTACTTYPE,NULL);
+ MARSHALL_STRING_ATTRIB(ContactType,CONTACTTYPE,nullptr);
marshallExtensionAttributes(domElement);
}
public AbstractXMLObjectUnmarshaller
{
void init() {
- m_Namespace=NULL;
+ m_Namespace=nullptr;
}
public:
protected:
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_STRING_ATTRIB(Namespace,NAMESPACE,NULL);
+ MARSHALL_STRING_ATTRIB(Namespace,NAMESPACE,nullptr);
}
void processAttribute(const DOMAttr* attribute) {
- PROC_STRING_ATTRIB(Namespace,NAMESPACE,NULL);
+ PROC_STRING_ATTRIB(Namespace,NAMESPACE,nullptr);
AbstractXMLObjectUnmarshaller::processAttribute(attribute);
}
};
public AbstractXMLObjectUnmarshaller
{
void init() {
- m_Use=NULL;
- m_KeyInfo=NULL;
- m_children.push_back(NULL);
+ m_Use=nullptr;
+ m_KeyInfo=nullptr;
+ m_children.push_back(nullptr);
m_pos_KeyInfo=m_children.begin();
}
public:
protected:
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_STRING_ATTRIB(Use,USE,NULL);
+ MARSHALL_STRING_ATTRIB(Use,USE,nullptr);
}
void processChildElement(XMLObject* childXMLObject, const DOMElement* root) {
}
void processAttribute(const DOMAttr* attribute) {
- PROC_STRING_ATTRIB(Use,USE,NULL);
+ PROC_STRING_ATTRIB(Use,USE,nullptr);
AbstractXMLObjectUnmarshaller::processAttribute(attribute);
}
};
public AbstractXMLObjectUnmarshaller
{
void init() {
- m_Binding=m_Location=m_ResponseLocation=NULL;
+ m_Binding=m_Location=m_ResponseLocation=nullptr;
}
protected:
}
protected:
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_STRING_ATTRIB(Binding,BINDING,NULL);
- MARSHALL_STRING_ATTRIB(Location,LOCATION,NULL);
- MARSHALL_STRING_ATTRIB(ResponseLocation,RESPONSELOCATION,NULL);
+ MARSHALL_STRING_ATTRIB(Binding,BINDING,nullptr);
+ MARSHALL_STRING_ATTRIB(Location,LOCATION,nullptr);
+ MARSHALL_STRING_ATTRIB(ResponseLocation,RESPONSELOCATION,nullptr);
marshallExtensionAttributes(domElement);
}
class SAML_DLLLOCAL IndexedEndpointTypeImpl : public virtual IndexedEndpointType, public EndpointTypeImpl
{
void init() {
- m_Index=NULL;
+ m_Index=nullptr;
m_isDefault=XML_BOOL_NULL;
}
protected:
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_INTEGER_ATTRIB(Index,INDEX,NULL);
- MARSHALL_BOOLEAN_ATTRIB(isDefault,ISDEFAULT,NULL);
+ MARSHALL_INTEGER_ATTRIB(Index,INDEX,nullptr);
+ MARSHALL_BOOLEAN_ATTRIB(isDefault,ISDEFAULT,nullptr);
EndpointTypeImpl::marshallAttributes(domElement);
}
};
public AbstractXMLObjectUnmarshaller
{
void init() {
- m_ID=m_ProtocolSupportEnumeration=m_ErrorURL=NULL;
- m_ValidUntil=m_CacheDuration=NULL;
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_Signature=NULL;
- m_Extensions=NULL;
- m_Organization=NULL;
+ m_ID=m_ProtocolSupportEnumeration=m_ErrorURL=nullptr;
+ m_ValidUntil=m_CacheDuration=nullptr;
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_Signature=nullptr;
+ m_Extensions=nullptr;
+ m_Organization=nullptr;
m_pos_Signature=m_children.begin();
m_pos_Extensions=m_pos_Signature;
++m_pos_Extensions;
m_Signature->setContentReference(new opensaml::ContentReference(*this));
}
- IMPL_ID_ATTRIB(ID);
+ IMPL_ID_ATTRIB_EX(ID,ID,nullptr);
IMPL_STRING_ATTRIB(ProtocolSupportEnumeration);
IMPL_STRING_ATTRIB(ErrorURL);
IMPL_DATETIME_ATTRIB(ValidUntil,SAMLTIME_MAX);
return true;
if (m_ProtocolSupportEnumeration) {
// Look for first character.
- unsigned int len=XMLString::stringLen(protocol);
- unsigned int pos=0;
+ xsecsize_t len=XMLString::stringLen(protocol);
+ xsecsize_t pos=0;
int index=XMLString::indexOf(m_ProtocolSupportEnumeration,protocol[0],pos);
while (index>=0) {
// Only possible match is if it's the first character or a space comes before it.
}
protected:
+ void prepareForMarshalling() const {
+ if (m_Signature)
+ declareNonVisibleNamespaces();
+ }
+
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_ID_ATTRIB(ID,ID,NULL);
- MARSHALL_STRING_ATTRIB(ProtocolSupportEnumeration,PROTOCOLSUPPORTENUMERATION,NULL);
- MARSHALL_STRING_ATTRIB(ErrorURL,ERRORURL,NULL);
- MARSHALL_DATETIME_ATTRIB(ValidUntil,VALIDUNTIL,NULL);
- MARSHALL_DATETIME_ATTRIB(CacheDuration,CACHEDURATION,NULL);
+ MARSHALL_ID_ATTRIB(ID,ID,nullptr);
+ MARSHALL_STRING_ATTRIB(ProtocolSupportEnumeration,PROTOCOLSUPPORTENUMERATION,nullptr);
+ MARSHALL_STRING_ATTRIB(ErrorURL,ERRORURL,nullptr);
+ MARSHALL_DATETIME_ATTRIB(ValidUntil,VALIDUNTIL,nullptr);
+ MARSHALL_DATETIME_ATTRIB(CacheDuration,CACHEDURATION,nullptr);
marshallExtensionAttributes(domElement);
}
}
void processAttribute(const DOMAttr* attribute) {
- PROC_ID_ATTRIB(ID,ID,NULL);
+ PROC_ID_ATTRIB(ID,ID,nullptr);
unmarshallExtensionAttribute(attribute);
}
};
class SAML_DLLLOCAL SSODescriptorTypeImpl : public virtual SSODescriptorType, public RoleDescriptorImpl
{
void init() {
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
m_pos_ArtifactResolutionService=m_pos_ContactPerson;
++m_pos_ArtifactResolutionService;
m_pos_SingleLogoutService=m_pos_ArtifactResolutionService;
void init() {
m_WantAuthnRequestsSigned=XML_BOOL_NULL;
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
m_pos_SingleSignOnService=m_pos_NameIDFormat;
++m_pos_SingleSignOnService;
m_pos_NameIDMappingService=m_pos_SingleSignOnService;
protected:
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_BOOLEAN_ATTRIB(WantAuthnRequestsSigned,WANTAUTHNREQUESTSSIGNED,NULL);
+ MARSHALL_BOOLEAN_ATTRIB(WantAuthnRequestsSigned,WANTAUTHNREQUESTSSIGNED,nullptr);
RoleDescriptorImpl::marshallAttributes(domElement);
}
public AbstractXMLObjectUnmarshaller
{
void init() {
- m_Name=m_NameFormat=m_FriendlyName=NULL;
+ m_Name=m_NameFormat=m_FriendlyName=nullptr;
m_isRequired=XML_BOOL_NULL;
}
public:
protected:
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_STRING_ATTRIB(Name,NAME,NULL);
- MARSHALL_STRING_ATTRIB(NameFormat,NAMEFORMAT,NULL);
- MARSHALL_STRING_ATTRIB(FriendlyName,FRIENDLYNAME,NULL);
- MARSHALL_BOOLEAN_ATTRIB(isRequired,ISREQUIRED,NULL);
+ MARSHALL_STRING_ATTRIB(Name,NAME,nullptr);
+ MARSHALL_STRING_ATTRIB(NameFormat,NAMEFORMAT,nullptr);
+ MARSHALL_STRING_ATTRIB(FriendlyName,FRIENDLYNAME,nullptr);
+ MARSHALL_BOOLEAN_ATTRIB(isRequired,ISREQUIRED,nullptr);
marshallExtensionAttributes(domElement);
}
list<XMLObject*>::iterator m_pos_RequestedAttribute;
void init() {
- m_Index=NULL;
+ m_Index=nullptr;
m_isDefault=XML_BOOL_NULL;
- m_children.push_back(NULL);
- m_children.push_back(NULL);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
m_pos_ServiceDescription=m_children.begin();
m_pos_RequestedAttribute=m_pos_ServiceDescription;
++m_pos_RequestedAttribute;
protected:
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_INTEGER_ATTRIB(Index,INDEX,NULL);
- MARSHALL_BOOLEAN_ATTRIB(isDefault,ISDEFAULT,NULL);
+ MARSHALL_INTEGER_ATTRIB(Index,INDEX,nullptr);
+ MARSHALL_BOOLEAN_ATTRIB(isDefault,ISDEFAULT,nullptr);
}
void processChildElement(XMLObject* childXMLObject, const DOMElement* root) {
}
void processAttribute(const DOMAttr* attribute) {
- PROC_INTEGER_ATTRIB(Index,INDEX,NULL);
- PROC_BOOLEAN_ATTRIB(isDefault,ISDEFAULT,NULL);
+ PROC_INTEGER_ATTRIB(Index,INDEX,nullptr);
+ PROC_BOOLEAN_ATTRIB(isDefault,ISDEFAULT,nullptr);
AbstractXMLObjectUnmarshaller::processAttribute(attribute);
}
};
void init() {
m_AuthnRequestsSigned=XML_BOOL_NULL;
m_WantAssertionsSigned=XML_BOOL_NULL;
- m_children.push_back(NULL);
+ m_children.push_back(nullptr);
m_pos_AssertionConsumerService=m_pos_NameIDFormat;
++m_pos_AssertionConsumerService;
}
protected:
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_BOOLEAN_ATTRIB(AuthnRequestsSigned,AUTHNREQUESTSSIGNED,NULL);
- MARSHALL_BOOLEAN_ATTRIB(WantAssertionsSigned,WANTASSERTIONSSIGNED,NULL);
+ MARSHALL_BOOLEAN_ATTRIB(AuthnRequestsSigned,AUTHNREQUESTSSIGNED,nullptr);
+ MARSHALL_BOOLEAN_ATTRIB(WantAssertionsSigned,WANTASSERTIONSSIGNED,nullptr);
RoleDescriptorImpl::marshallAttributes(domElement);
}
list<XMLObject*>::iterator m_pos_AssertionIDRequestService;
void init() {
- m_children.push_back(NULL);
- m_children.push_back(NULL);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
m_pos_AuthnQueryService=m_pos_ContactPerson;
++m_pos_AuthnQueryService;
m_pos_AssertionIDRequestService=m_pos_AuthnQueryService;
list<XMLObject*>::iterator m_pos_AssertionIDRequestService;
void init() {
- m_children.push_back(NULL);
- m_children.push_back(NULL);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
m_pos_AuthzService=m_pos_ContactPerson;
++m_pos_AuthzService;
m_pos_AssertionIDRequestService=m_pos_AuthzService;
list<XMLObject*>::iterator m_pos_AttributeProfile;
void init() {
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
m_pos_AttributeService=m_pos_ContactPerson;
++m_pos_AttributeService;
m_pos_AssertionIDRequestService=m_pos_AttributeService;
{
void init() {
m_WantAssertionsSigned=XML_BOOL_NULL;
- m_children.push_back(NULL);
+ m_children.push_back(nullptr);
m_pos_NameIDFormat=m_pos_ContactPerson;
++m_pos_NameIDFormat;
}
protected:
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_BOOLEAN_ATTRIB(WantAssertionsSigned,WANTASSERTIONSSIGNED,NULL);
+ MARSHALL_BOOLEAN_ATTRIB(WantAssertionsSigned,WANTASSERTIONSSIGNED,nullptr);
RoleDescriptorImpl::marshallAttributes(domElement);
}
list<XMLObject*>::iterator m_pos_AffiliateMember;
void init() {
- m_ID=m_AffiliationOwnerID=NULL;
- m_ValidUntil=m_CacheDuration=NULL;
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_Signature=NULL;
- m_Extensions=NULL;
+ m_ID=m_AffiliationOwnerID=nullptr;
+ m_ValidUntil=m_CacheDuration=nullptr;
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_Signature=nullptr;
+ m_Extensions=nullptr;
m_pos_Signature=m_children.begin();
m_pos_Extensions=m_pos_Signature;
++m_pos_Extensions;
m_Signature->setContentReference(new opensaml::ContentReference(*this));
}
- IMPL_ID_ATTRIB(ID);
+ IMPL_ID_ATTRIB_EX(ID,ID,nullptr);
IMPL_STRING_ATTRIB(AffiliationOwnerID);
IMPL_DATETIME_ATTRIB(ValidUntil,SAMLTIME_MAX);
IMPL_DURATION_ATTRIB(CacheDuration,0);
}
protected:
+ void prepareForMarshalling() const {
+ if (m_Signature)
+ declareNonVisibleNamespaces();
+ }
+
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_ID_ATTRIB(ID,ID,NULL);
- MARSHALL_STRING_ATTRIB(AffiliationOwnerID,AFFILIATIONOWNERID,NULL);
- MARSHALL_DATETIME_ATTRIB(ValidUntil,VALIDUNTIL,NULL);
- MARSHALL_DATETIME_ATTRIB(CacheDuration,CACHEDURATION,NULL);
+ MARSHALL_ID_ATTRIB(ID,ID,nullptr);
+ MARSHALL_STRING_ATTRIB(AffiliationOwnerID,AFFILIATIONOWNERID,nullptr);
+ MARSHALL_DATETIME_ATTRIB(ValidUntil,VALIDUNTIL,nullptr);
+ MARSHALL_DATETIME_ATTRIB(CacheDuration,CACHEDURATION,nullptr);
marshallExtensionAttributes(domElement);
}
}
void processAttribute(const DOMAttr* attribute) {
- PROC_ID_ATTRIB(ID,ID,NULL);
+ PROC_ID_ATTRIB(ID,ID,nullptr);
unmarshallExtensionAttribute(attribute);
}
};
list<XMLObject*>::iterator m_pos_ContactPerson;
void init() {
- m_ID=m_EntityID=NULL;
- m_ValidUntil=m_CacheDuration=NULL;
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_Signature=NULL;
- m_Extensions=NULL;
- m_AffiliationDescriptor=NULL;
- m_Organization=NULL;
+ m_ID=m_EntityID=nullptr;
+ m_ValidUntil=m_CacheDuration=nullptr;
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_Signature=nullptr;
+ m_Extensions=nullptr;
+ m_AffiliationDescriptor=nullptr;
+ m_Organization=nullptr;
m_pos_Signature=m_children.begin();
m_pos_Extensions=m_pos_Signature;
++m_pos_Extensions;
m_Signature->setContentReference(new opensaml::ContentReference(*this));
}
- IMPL_ID_ATTRIB(ID);
+ IMPL_ID_ATTRIB_EX(ID,ID,nullptr);
IMPL_STRING_ATTRIB(EntityID);
IMPL_DATETIME_ATTRIB(ValidUntil,SAMLTIME_MAX);
IMPL_DURATION_ATTRIB(CacheDuration,0);
vector<RoleDescriptor*>::const_iterator i =
find_if(m_RoleDescriptors.begin(), m_RoleDescriptors.end(), ofTypeValidForProtocol(qname,protocol));
- return (i!=m_RoleDescriptors.end()) ? *i : NULL;
+ return (i!=m_RoleDescriptors.end()) ? *i : nullptr;
}
protected:
+ void prepareForMarshalling() const {
+ if (m_Signature)
+ declareNonVisibleNamespaces();
+ }
+
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_ID_ATTRIB(ID,ID,NULL);
- MARSHALL_STRING_ATTRIB(EntityID,ENTITYID,NULL);
- MARSHALL_DATETIME_ATTRIB(ValidUntil,VALIDUNTIL,NULL);
- MARSHALL_DATETIME_ATTRIB(CacheDuration,CACHEDURATION,NULL);
+ MARSHALL_ID_ATTRIB(ID,ID,nullptr);
+ MARSHALL_STRING_ATTRIB(EntityID,ENTITYID,nullptr);
+ MARSHALL_DATETIME_ATTRIB(ValidUntil,VALIDUNTIL,nullptr);
+ MARSHALL_DATETIME_ATTRIB(CacheDuration,CACHEDURATION,nullptr);
marshallExtensionAttributes(domElement);
}
}
void processAttribute(const DOMAttr* attribute) {
- PROC_ID_ATTRIB(ID,ID,NULL);
+ PROC_ID_ATTRIB(ID,ID,nullptr);
unmarshallExtensionAttribute(attribute);
}
};
public AbstractXMLObjectUnmarshaller
{
void init() {
- m_ID=m_Name=NULL;
- m_ValidUntil=m_CacheDuration=NULL;
- m_children.push_back(NULL);
- m_children.push_back(NULL);
- m_Signature=NULL;
- m_Extensions=NULL;
+ m_ID=m_Name=nullptr;
+ m_ValidUntil=m_CacheDuration=nullptr;
+ m_children.push_back(nullptr);
+ m_children.push_back(nullptr);
+ m_Signature=nullptr;
+ m_Extensions=nullptr;
m_pos_Signature=m_children.begin();
m_pos_Extensions=m_pos_Signature;
++m_pos_Extensions;
m_Signature->setContentReference(new opensaml::ContentReference(*this));
}
- IMPL_ID_ATTRIB(ID);
+ IMPL_ID_ATTRIB_EX(ID,ID,nullptr);
IMPL_STRING_ATTRIB(Name);
IMPL_DATETIME_ATTRIB(ValidUntil,SAMLTIME_MAX);
IMPL_DURATION_ATTRIB(CacheDuration,0);
IMPL_TYPED_CHILDREN(EntitiesDescriptor,m_children.end());
protected:
+ void prepareForMarshalling() const {
+ if (m_Signature)
+ declareNonVisibleNamespaces();
+ }
+
void marshallAttributes(DOMElement* domElement) const {
- MARSHALL_ID_ATTRIB(ID,ID,NULL);
- MARSHALL_STRING_ATTRIB(Name,NAME,NULL);
- MARSHALL_DATETIME_ATTRIB(ValidUntil,VALIDUNTIL,NULL);
- MARSHALL_DATETIME_ATTRIB(CacheDuration,CACHEDURATION,NULL);
+ MARSHALL_ID_ATTRIB(ID,ID,nullptr);
+ MARSHALL_STRING_ATTRIB(Name,NAME,nullptr);
+ MARSHALL_DATETIME_ATTRIB(ValidUntil,VALIDUNTIL,nullptr);
+ MARSHALL_DATETIME_ATTRIB(CacheDuration,CACHEDURATION,nullptr);
}
void processChildElement(XMLObject* childXMLObject, const DOMElement* root) {
}
void processAttribute(const DOMAttr* attribute) {
- PROC_ID_ATTRIB(ID,ID,NULL);
- PROC_STRING_ATTRIB(Name,NAME,NULL);
- PROC_DATETIME_ATTRIB(ValidUntil,VALIDUNTIL,NULL);
- PROC_DATETIME_ATTRIB(CacheDuration,CACHEDURATION,NULL);
+ PROC_ID_ATTRIB(ID,ID,nullptr);
+ PROC_STRING_ATTRIB(Name,NAME,nullptr);
+ PROC_DATETIME_ATTRIB(ValidUntil,VALIDUNTIL,nullptr);
+ PROC_DATETIME_ATTRIB(CacheDuration,CACHEDURATION,nullptr);
+ }
+ };
+
+ class SAML_DLLLOCAL EntityAttributesImpl : public virtual EntityAttributes,
+ public AbstractComplexElement,
+ public AbstractDOMCachingXMLObject,
+ public AbstractXMLObjectMarshaller,
+ public AbstractXMLObjectUnmarshaller
+ {
+ public:
+ virtual ~EntityAttributesImpl() {}
+
+ EntityAttributesImpl(const XMLCh* nsURI, const XMLCh* localName, const XMLCh* prefix, const xmltooling::QName* schemaType)
+ : AbstractXMLObject(nsURI, localName, prefix, schemaType) {
+ }
+
+ EntityAttributesImpl(const EntityAttributesImpl& src)
+ : AbstractXMLObject(src), AbstractComplexElement(src), AbstractDOMCachingXMLObject(src) {
+ for (list<XMLObject*>::const_iterator i=src.m_children.begin(); i!=src.m_children.end(); i++) {
+ if (*i) {
+ Attribute* a=dynamic_cast<Attribute*>(*i);
+ if (a) {
+ getAttributes().push_back(a->cloneAttribute());
+ continue;
+ }
+
+ saml2::Assertion* as=dynamic_cast<saml2::Assertion*>(*i);
+ if (as) {
+ getAssertions().push_back(as->cloneAssertion());
+ continue;
+ }
+ }
+ }
+ }
+
+ IMPL_XMLOBJECT_CLONE(EntityAttributes);
+
+ IMPL_TYPED_FOREIGN_CHILDREN(Attribute,saml2,m_children.end());
+ IMPL_TYPED_FOREIGN_CHILDREN(Assertion,saml2,m_children.end());
+
+ protected:
+ void processChildElement(XMLObject* childXMLObject, const DOMElement* root) {
+ PROC_TYPED_FOREIGN_CHILDREN(Attribute,saml2,SAML20_NS,false);
+ PROC_TYPED_FOREIGN_CHILDREN(Assertion,saml2,SAML20_NS,false);
+ AbstractXMLObjectUnmarshaller::processChildElement(childXMLObject,root);
+ }
+ };
+
+ class SAML_DLLLOCAL DigestMethodImpl : public virtual DigestMethod,
+ public AbstractComplexElement,
+ public AbstractDOMCachingXMLObject,
+ public AbstractXMLObjectMarshaller,
+ public AbstractXMLObjectUnmarshaller
+ {
+ public:
+ virtual ~DigestMethodImpl() {
+ XMLString::release(&m_Algorithm);
+ }
+
+ DigestMethodImpl(const XMLCh* nsURI, const XMLCh* localName, const XMLCh* prefix, const xmltooling::QName* schemaType)
+ : AbstractXMLObject(nsURI, localName, prefix, schemaType) {
+ m_Algorithm = nullptr;
+ }
+
+ DigestMethodImpl(const DigestMethodImpl& src)
+ : AbstractXMLObject(src), AbstractComplexElement(src), AbstractDOMCachingXMLObject(src) {
+ setAlgorithm(src.getAlgorithm());
+ VectorOf(XMLObject) v=getUnknownXMLObjects();
+ for (vector<XMLObject*>::const_iterator i=src.m_UnknownXMLObjects.begin(); i!=src.m_UnknownXMLObjects.end(); ++i)
+ v.push_back((*i)->clone());
+ }
+
+ IMPL_STRING_ATTRIB(Algorithm);
+
+ IMPL_XMLOBJECT_CLONE(DigestMethod);
+ IMPL_XMLOBJECT_CHILDREN(UnknownXMLObject,m_children.end());
+
+ protected:
+ void marshallAttributes(DOMElement* domElement) const {
+ MARSHALL_STRING_ATTRIB(Algorithm,ALGORITHM,nullptr);
+ }
+
+ void processChildElement(XMLObject* childXMLObject, const DOMElement* root) {
+ // Unknown child.
+ getUnknownXMLObjects().push_back(childXMLObject);
+ }
+
+ void processAttribute(const DOMAttr* attribute) {
+ PROC_STRING_ATTRIB(Algorithm,ALGORITHM,nullptr);
+ }
+ };
+
+ class SAML_DLLLOCAL SigningMethodImpl : public virtual SigningMethod,
+ public AbstractComplexElement,
+ public AbstractDOMCachingXMLObject,
+ public AbstractXMLObjectMarshaller,
+ public AbstractXMLObjectUnmarshaller
+ {
+ public:
+ virtual ~SigningMethodImpl() {
+ XMLString::release(&m_Algorithm);
+ XMLString::release(&m_MinKeySize);
+ XMLString::release(&m_MaxKeySize);
+ }
+
+ SigningMethodImpl(const XMLCh* nsURI, const XMLCh* localName, const XMLCh* prefix, const xmltooling::QName* schemaType)
+ : AbstractXMLObject(nsURI, localName, prefix, schemaType) {
+ m_Algorithm = nullptr;
+ m_MinKeySize = nullptr;
+ m_MaxKeySize = nullptr;
+ }
+
+ SigningMethodImpl(const SigningMethodImpl& src)
+ : AbstractXMLObject(src), AbstractComplexElement(src), AbstractDOMCachingXMLObject(src) {
+ setAlgorithm(src.getAlgorithm());
+ setMinKeySize(src.m_MinKeySize);
+ setMaxKeySize(src.m_MaxKeySize);
+ VectorOf(XMLObject) v=getUnknownXMLObjects();
+ for (vector<XMLObject*>::const_iterator i=src.m_UnknownXMLObjects.begin(); i!=src.m_UnknownXMLObjects.end(); ++i)
+ v.push_back((*i)->clone());
+ }
+
+ IMPL_XMLOBJECT_CLONE(SigningMethod);
+ IMPL_XMLOBJECT_CHILDREN(UnknownXMLObject,m_children.end());
+
+ IMPL_STRING_ATTRIB(Algorithm);
+ IMPL_INTEGER_ATTRIB(MinKeySize);
+ IMPL_INTEGER_ATTRIB(MaxKeySize);
+
+ protected:
+ void marshallAttributes(DOMElement* domElement) const {
+ MARSHALL_STRING_ATTRIB(Algorithm,ALGORITHM,nullptr);
+ MARSHALL_INTEGER_ATTRIB(MinKeySize,MINKEYSIZE,nullptr);
+ MARSHALL_INTEGER_ATTRIB(MaxKeySize,MAXKEYSIZE,nullptr);
+ }
+
+ void processChildElement(XMLObject* childXMLObject, const DOMElement* root) {
+ // Unknown child.
+ getUnknownXMLObjects().push_back(childXMLObject);
+ }
+
+ void processAttribute(const DOMAttr* attribute) {
+ PROC_STRING_ATTRIB(Algorithm,ALGORITHM,nullptr);
+ PROC_INTEGER_ATTRIB(MinKeySize,MINKEYSIZE,nullptr);
+ PROC_INTEGER_ATTRIB(MaxKeySize,MAXKEYSIZE,nullptr);
}
};
IMPL_XMLOBJECTBUILDER(ActionNamespace);
IMPL_XMLOBJECTBUILDER(SourceID);
+IMPL_XMLOBJECTBUILDER(EntityAttributes);
+IMPL_XMLOBJECTBUILDER(DigestMethod);
+IMPL_XMLOBJECTBUILDER(SigningMethod);
#ifdef HAVE_COVARIANT_RETURNS
RoleDescriptor* RoleDescriptorBuilder::buildObject(
return new RoleDescriptorTypeImpl(nsURI,localName,prefix,schemaType);
}
+const DigestMethod* RoleDescriptor::getDigestMethod() const
+{
+ bool roleLevel = false;
+ XMLToolingConfig& conf = XMLToolingConfig::getConfig();
+
+ if (getExtensions()) {
+ const vector<XMLObject*>& exts = const_cast<const Extensions*>(getExtensions())->getUnknownXMLObjects();
+ for (vector<XMLObject*>::const_iterator i = exts.begin(); i != exts.end(); ++i) {
+ const opensaml::saml2md::DigestMethod* dm = dynamic_cast<opensaml::saml2md::DigestMethod*>(*i);
+ if (dm) {
+ if (dm->getAlgorithm() && conf.isXMLAlgorithmSupported(dm->getAlgorithm(), XMLToolingConfig::ALGTYPE_DIGEST))
+ return dm;
+ roleLevel = true;
+ }
+ }
+ }
+
+ if (!roleLevel) {
+ const EntityDescriptor* entity = dynamic_cast<EntityDescriptor*>(getParent());
+ if (entity && entity->getExtensions()) {
+ const vector<XMLObject*>& exts = const_cast<const Extensions*>(entity->getExtensions())->getUnknownXMLObjects();
+ for (vector<XMLObject*>::const_iterator i = exts.begin(); i != exts.end(); ++i) {
+ const opensaml::saml2md::DigestMethod* dm = dynamic_cast<opensaml::saml2md::DigestMethod*>(*i);
+ if (dm && dm->getAlgorithm() && conf.isXMLAlgorithmSupported(dm->getAlgorithm(), XMLToolingConfig::ALGTYPE_DIGEST))
+ return dm;
+ }
+ }
+ }
+
+ return nullptr;
+}
+
+pair<const SigningMethod*,const Credential*> RoleDescriptor::getSigningMethod(const CredentialResolver& resolver, CredentialCriteria& cc) const
+{
+ bool roleLevel = false;
+ XMLToolingConfig& conf = XMLToolingConfig::getConfig();
+
+ if (getExtensions()) {
+ const vector<XMLObject*>& exts = const_cast<const Extensions*>(getExtensions())->getUnknownXMLObjects();
+ for (vector<XMLObject*>::const_iterator i = exts.begin(); i != exts.end(); ++i) {
+ const SigningMethod* sm = dynamic_cast<SigningMethod*>(*i);
+ if (sm) {
+ roleLevel = true;
+ if (sm->getAlgorithm() && conf.isXMLAlgorithmSupported(sm->getAlgorithm(), XMLToolingConfig::ALGTYPE_SIGN)) {
+ cc.setXMLAlgorithm(sm->getAlgorithm());
+ pair<bool,int> minsize = sm->getMinKeySize(), maxsize = sm->getMaxKeySize();
+ if (minsize.first || maxsize.first) {
+ cc.setKeySize(minsize.first ? minsize.second : 0);
+ cc.setMaxKeySize(maxsize.first ? maxsize.second : UINT_MAX);
+ }
+ else {
+ cc.setKeySize(0);
+ cc.setMaxKeySize(0);
+ }
+ const Credential* cred = resolver.resolve(&cc);
+ if (cred)
+ return make_pair(sm, cred);
+ }
+ }
+ }
+ }
+
+ if (!roleLevel) {
+ const EntityDescriptor* entity = dynamic_cast<EntityDescriptor*>(getParent());
+ if (entity && entity->getExtensions()) {
+ const vector<XMLObject*>& exts = const_cast<const Extensions*>(entity->getExtensions())->getUnknownXMLObjects();
+ for (vector<XMLObject*>::const_iterator i = exts.begin(); i != exts.end(); ++i) {
+ const SigningMethod* sm = dynamic_cast<SigningMethod*>(*i);
+ if (sm) {
+ if (sm->getAlgorithm() && conf.isXMLAlgorithmSupported(sm->getAlgorithm(), XMLToolingConfig::ALGTYPE_SIGN)) {
+ cc.setXMLAlgorithm(sm->getAlgorithm());
+ pair<bool,int> minsize = sm->getMinKeySize(), maxsize = sm->getMaxKeySize();
+ if (minsize.first || maxsize.first) {
+ cc.setKeySize(minsize.first ? minsize.second : 0);
+ cc.setMaxKeySize(maxsize.first ? maxsize.second : UINT_MAX);
+ }
+ else {
+ cc.setKeySize(0);
+ cc.setMaxKeySize(0);
+ }
+ const Credential* cred = resolver.resolve(&cc);
+ if (cred)
+ return make_pair(sm, cred);
+ }
+ }
+ }
+ }
+ }
+
+ cc.setKeySize(0);
+ cc.setMaxKeySize(0);
+ cc.setXMLAlgorithm(nullptr);
+ return pair<const SigningMethod*,const Credential*>(nullptr, resolver.resolve(&cc));
+}
+
const XMLCh ActionNamespace::LOCAL_NAME[] = UNICODE_LITERAL_15(A,c,t,i,o,n,N,a,m,e,s,p,a,c,e);
const XMLCh AdditionalMetadataLocation::LOCAL_NAME[] = UNICODE_LITERAL_26(A,d,d,i,t,i,o,n,a,l,M,e,t,a,d,a,t,a,L,o,c,a,t,i,o,n);
const XMLCh AdditionalMetadataLocation::TYPE_NAME[] = UNICODE_LITERAL_30(A,d,d,i,t,i,o,n,a,l,M,e,t,a,d,a,t,a,L,o,c,a,t,i,o,n,T,y,p,e);
const XMLCh ContactPerson::CONTACT_ADMINISTRATIVE[] = UNICODE_LITERAL_14(a,d,m,i,n,i,s,t,r,a,t,i,v,e);
const XMLCh ContactPerson::CONTACT_BILLING[] = UNICODE_LITERAL_7(b,i,l,l,i,n,g);
const XMLCh ContactPerson::CONTACT_OTHER[] = UNICODE_LITERAL_5(o,t,h,e,r);
+const XMLCh DigestMethod::LOCAL_NAME[] = UNICODE_LITERAL_12(D,i,g,e,s,t,M,e,t,h,o,d);
+const XMLCh DigestMethod::TYPE_NAME[] = UNICODE_LITERAL_16(D,i,g,e,s,t,M,e,t,h,o,d,T,y,p,e);
+const XMLCh DigestMethod::ALGORITHM_ATTRIB_NAME[] = UNICODE_LITERAL_9(A,l,g,o,r,i,t,h,m);
const XMLCh EmailAddress::LOCAL_NAME[] = UNICODE_LITERAL_12(E,m,a,i,l,A,d,d,r,e,s,s);
const XMLCh EndpointType::LOCAL_NAME[] = {chNull};
const XMLCh EndpointType::TYPE_NAME[] = UNICODE_LITERAL_12(E,n,d,p,o,i,n,t,T,y,p,e);
const XMLCh EntityDescriptor::TYPE_NAME[] = UNICODE_LITERAL_20(E,n,t,i,t,y,D,e,s,c,r,i,p,t,o,r,T,y,p,e);
const XMLCh EntityDescriptor::ID_ATTRIB_NAME[] = UNICODE_LITERAL_2(I,D);
const XMLCh EntityDescriptor::ENTITYID_ATTRIB_NAME[] = UNICODE_LITERAL_8(e,n,t,i,t,y,I,D);
+const XMLCh EntityAttributes::LOCAL_NAME[] = UNICODE_LITERAL_16(E,n,t,i,t,y,A,t,t,r,i,b,u,t,e,s);
+const XMLCh EntityAttributes::TYPE_NAME[] = UNICODE_LITERAL_20(E,n,t,i,t,y,A,t,t,r,i,b,u,t,e,s,T,y,p,e);
const XMLCh Extensions::LOCAL_NAME[] = UNICODE_LITERAL_10(E,x,t,e,n,s,i,o,n,s);
const XMLCh Extensions::TYPE_NAME[] = UNICODE_LITERAL_14(E,x,t,e,n,s,i,o,n,s,T,y,p,e);
const XMLCh GivenName::LOCAL_NAME[] = UNICODE_LITERAL_9(G,i,v,e,n,N,a,m,e);
const XMLCh RoleDescriptor::ERRORURL_ATTRIB_NAME[] = UNICODE_LITERAL_8(e,r,r,o,r,U,R,L);
const XMLCh ServiceDescription::LOCAL_NAME[] = UNICODE_LITERAL_18(S,e,r,v,i,c,e,D,e,s,c,r,i,p,t,i,o,n);
const XMLCh ServiceName::LOCAL_NAME[] = UNICODE_LITERAL_11(S,e,r,v,i,c,e,N,a,m,e);
+const XMLCh SigningMethod::LOCAL_NAME[] = UNICODE_LITERAL_13(S,i,g,n,i,n,g,M,e,t,h,o,d);
+const XMLCh SigningMethod::TYPE_NAME[] = UNICODE_LITERAL_17(S,i,g,n,i,n,g,M,e,t,h,o,d,T,y,p,e);
+const XMLCh SigningMethod::ALGORITHM_ATTRIB_NAME[] = UNICODE_LITERAL_9(A,l,g,o,r,i,t,h,m);
+const XMLCh SigningMethod::MINKEYSIZE_ATTRIB_NAME[] = UNICODE_LITERAL_10(M,i,n,K,e,y,S,i,z,e);
+const XMLCh SigningMethod::MAXKEYSIZE_ATTRIB_NAME[] = UNICODE_LITERAL_10(M,a,x,K,e,y,S,i,z,e);
const XMLCh SingleLogoutService::LOCAL_NAME[] = UNICODE_LITERAL_19(S,i,n,g,l,e,L,o,g,o,u,t,S,e,r,v,i,c,e);
const XMLCh SingleSignOnService::LOCAL_NAME[] = UNICODE_LITERAL_19(S,i,n,g,l,e,S,i,g,n,O,n,S,e,r,v,i,c,e);
const XMLCh SourceID::LOCAL_NAME[] = UNICODE_LITERAL_8(S,o,u,r,c,e,I,D);