#include "saml2/metadata/DiscoverableMetadataProvider.h"
#include <fstream>
-#include <boost/scoped_ptr.hpp>
#include <xmltooling/XMLToolingConfig.h>
#include <xmltooling/io/HTTPResponse.h>
#include <xmltooling/util/DateTime.h>
time_t computeNextRefresh();
scoped_ptr<XMLObject> m_object;
- bool m_discoveryFeed;
+ bool m_discoveryFeed,m_dropDOM;
double m_refreshDelayFactor;
unsigned int m_backoffFactor;
time_t m_minRefreshDelay,m_maxRefreshDelay,m_lastValidUntil;
}
static const XMLCh discoveryFeed[] = UNICODE_LITERAL_13(d,i,s,c,o,v,e,r,y,F,e,e,d);
+ static const XMLCh dropDOM[] = UNICODE_LITERAL_7(d,r,o,p,D,O,M);
static const XMLCh minRefreshDelay[] = UNICODE_LITERAL_15(m,i,n,R,e,f,r,e,s,h,D,e,l,a,y);
static const XMLCh refreshDelayFactor[] = UNICODE_LITERAL_18(r,e,f,r,e,s,h,D,e,l,a,y,F,a,c,t,o,r);
};
: MetadataProvider(e), AbstractMetadataProvider(e), DiscoverableMetadataProvider(e),
ReloadableXMLFile(e, Category::getInstance(SAML_LOGCAT".MetadataProvider.XML"), false),
m_discoveryFeed(XMLHelper::getAttrBool(e, true, discoveryFeed)),
+ m_dropDOM(XMLHelper::getAttrBool(e, true, dropDOM)),
m_refreshDelayFactor(0.75), m_backoffFactor(1),
m_minRefreshDelay(XMLHelper::getAttrInt(e, 600, minRefreshDelay)),
m_maxRefreshDelay(m_reloadInterval), m_lastValidUntil(SAMLTIME_MAX)
try {
SchemaValidators.validate(xmlObject.get());
}
- catch (exception& ex) {
- m_log.error("metadata intance failed manual validation checking: %s", ex.what());
+ catch (std::exception& ex) {
+ m_log.error("metadata instance failed manual validation checking: %s", ex.what());
throw MetadataException("Metadata instance failed manual validation checking.");
}
+ const TimeBoundSAMLObject* validityCheck = dynamic_cast<TimeBoundSAMLObject*>(xmlObject.get());
+ if (!validityCheck || !validityCheck->isValid()) {
+ m_log.error("metadata instance was invalid at time of acquisition");
+ throw MetadataException("Metadata instance was invalid at time of acquisition.");
+ }
+
// This is the best place to take a backup, since it's superficially "correct" metadata.
string backupKey;
if (!backup && !m_backing.empty()) {
ofstream backer(backupKey.c_str());
backer << *(raw.second->getOwnerDocument());
}
- catch (exception& ex) {
+ catch (std::exception& ex) {
m_log.crit("exception while backing up metadata: %s", ex.what());
backupKey.erase();
}
try {
doFilters(*xmlObject);
}
- catch (exception&) {
+ catch (std::exception&) {
if (!backupKey.empty())
remove(backupKey.c_str());
throw;
preserveCacheTag();
}
- xmlObject->releaseThisAndChildrenDOM();
- xmlObject->setDocument(nullptr);
+ if (m_dropDOM) {
+ xmlObject->releaseThisAndChildrenDOM();
+ xmlObject->setDocument(nullptr);
+ }
// Swap it in after acquiring write lock if necessary.
if (m_lock)
return load(true);
throw;
}
- catch (exception&) {
+ catch (std::exception& ex) {
if (!m_local) {
m_reloadInterval = m_minRefreshDelay * m_backoffFactor++;
if (m_reloadInterval > m_maxRefreshDelay)
m_reloadInterval = m_maxRefreshDelay;
m_log.warn("adjusted reload interval to %u seconds", m_reloadInterval);
- if (!m_loaded && !m_backing.empty())
+ if (!m_loaded && !m_backing.empty()) {
+ m_log.warn("trying backup file, exception loading remote resource: %s", ex.what());
return load(true);
+ }
}
throw;
}