xmltooling/security/impl/ChainingCredentialResolver.cpp

   1 /**
   2  * Licensed to the University Corporation for Advanced Internet
   3  * Development, Inc. (UCAID) under one or more contributor license
   4  * agreements. See the NOTICE file distributed with this work for
   5  * additional information regarding copyright ownership.
   6  *
   7  * UCAID licenses this file to you under the Apache License,
   8  * Version 2.0 (the "License"); you may not use this file except
   9  * in compliance with the License. You may obtain a copy of the
  10  * License at
  11  *
  12  * http://www.apache.org/licenses/LICENSE-2.0
  13  *
  14  * Unless required by applicable law or agreed to in writing,
  15  * software distributed under the License is distributed on an
  16  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
  17  * either express or implied. See the License for the specific
  18  * language governing permissions and limitations under the License.
  19  */
  20
  21 /**
  22  * ChainingCredentialResolver.cpp
  23  *
  24  * CredentialResolver with chaining capability.
  25  */
  26
  27 #include "internal.h"
  28 #include "logging.h"
  29 #include "XMLToolingConfig.h"
  30 #include "security/CredentialResolver.h"
  31 #include "util/NDC.h"
  32 #include "util/XMLHelper.h"
  33
  34 #include <algorithm>
  35 #include <xercesc/util/XMLUniDefs.hpp>
  36
  37 using namespace xmltooling::logging;
  38 using namespace xmltooling;
  39 using namespace std;
  40
  41 using xercesc::DOMElement;
  42
  43 namespace xmltooling {
  44     class XMLTOOL_DLLLOCAL ChainingCredentialResolver : public CredentialResolver
  45     {
  46     public:
  47         ChainingCredentialResolver(const DOMElement* e);
  48         virtual ~ChainingCredentialResolver() {
  49             for_each(m_resolvers.begin(), m_resolvers.end(), xmltooling::cleanup<CredentialResolver>());
  50         }
  51
  52         Lockable* lock() {
  53             for_each(m_resolvers.begin(), m_resolvers.end(), mem_fun(&Lockable::lock));
  54             return this;
  55         }
  56         void unlock() {
  57             for_each(m_resolvers.begin(), m_resolvers.end(), mem_fun(&Lockable::unlock));
  58         }
  59
  60         const Credential* resolve(const CredentialCriteria* criteria=nullptr) const {
  61             const Credential* cred = nullptr;
  62             for (vector<CredentialResolver*>::const_iterator cr = m_resolvers.begin(); !cred && cr!=m_resolvers.end(); ++cr)
  63                 cred = (*cr)->resolve(criteria);
  64             return cred;
  65         }
  66
  67         virtual vector<const Credential*>::size_type resolve(
  68             vector<const Credential*>& results, const CredentialCriteria* criteria=nullptr
  69             ) const {
  70             for (vector<CredentialResolver*>::const_iterator cr = m_resolvers.begin(); cr!=m_resolvers.end(); ++cr)
  71                 (*cr)->resolve(results, criteria);
  72             return results.size();
  73         }
  74
  75     private:
  76         vector<CredentialResolver*> m_resolvers;
  77     };
  78
  79     CredentialResolver* XMLTOOL_DLLLOCAL ChainingCredentialResolverFactory(const DOMElement* const & e)
  80     {
  81         return new ChainingCredentialResolver(e);
  82     }
  83
  84     static const XMLCh _CredentialResolver[] =  UNICODE_LITERAL_18(C,r,e,d,e,n,t,i,a,l,R,e,s,o,l,v,e,r);
  85     static const XMLCh type[] =                 UNICODE_LITERAL_4(t,y,p,e);
  86 };
  87
  88 ChainingCredentialResolver::ChainingCredentialResolver(const DOMElement* e)
  89 {
  90     XMLToolingConfig& conf = XMLToolingConfig::getConfig();
  91     Category& log=Category::getInstance(XMLTOOLING_LOGCAT".CredentialResolver."CHAINING_CREDENTIAL_RESOLVER);
  92
  93     // Load up the chain of resolvers.
  94     e = e ? XMLHelper::getFirstChildElement(e, _CredentialResolver) : nullptr;
  95     while (e) {
  96         string t = XMLHelper::getAttrString(e, nullptr, type);
  97         if (!t.empty()) {
  98             log.info("building CredentialResolver of type %s", t.c_str());
  99             try {
 100                 m_resolvers.push_back(conf.CredentialResolverManager.newPlugin(t.c_str(), e));
 101             }
 102             catch (exception& ex) {
 103                 log.error("caught exception processing embedded CredentialResolver element: %s", ex.what());
 104             }
 105         }
 106         e = XMLHelper::getNextSiblingElement(e, _CredentialResolver);
 107     }
 108 }