Imported Upstream version 2.2.1+dfsg

[shibboleth/sp.git] / shibsp / attribute / NameIDAttributeDecoder.cpp

/*\r
 *  Copyright 2001-2009 Internet2\r
 *\r
 * Licensed under the Apache License, Version 2.0 (the "License");\r
 * you may not use this file except in compliance with the License.\r
 * You may obtain a copy of the License at\r
 *\r
 *     http://www.apache.org/licenses/LICENSE-2.0\r
 *\r
 * Unless required by applicable law or agreed to in writing, software\r
 * distributed under the License is distributed on an "AS IS" BASIS,\r
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r
 * See the License for the specific language governing permissions and\r
 * limitations under the License.\r
 */\r
\r
/**\r
 * NameIDAttributeDecoder.cpp\r
 *\r
 * Decodes SAML into NameIDAttributes\r
 */\r
\r
#include "internal.h"\r
#include "attribute/AttributeDecoder.h"\r
#include "attribute/NameIDAttribute.h"\r
\r
#include <saml/saml1/core/Assertions.h>\r
#include <saml/saml2/core/Assertions.h>\r
\r
using namespace shibsp;\r
using namespace opensaml::saml1;\r
using namespace opensaml::saml2;\r
using namespace xmltooling;\r
using namespace std;\r
\r
namespace shibsp {\r
    static const XMLCh formatter[] = UNICODE_LITERAL_9(f,o,r,m,a,t,t,e,r);\r
    static const XMLCh defaultQualifiers[] = UNICODE_LITERAL_17(d,e,f,a,u,l,t,Q,u,a,l,i,f,i,e,r,s);\r
\r
    class SHIBSP_DLLLOCAL NameIDAttributeDecoder : virtual public AttributeDecoder\r
    {\r
    public:\r
        NameIDAttributeDecoder(const DOMElement* e)\r
                : AttributeDecoder(e), m_formatter(e ? e->getAttributeNS(NULL, formatter) : NULL), m_defaultQualifiers(false) {\r
            const XMLCh* flag = e ? e->getAttributeNS(NULL, defaultQualifiers) : NULL;\r
            if (flag && (*flag == chLatin_t || *flag == chDigit_1))\r
                m_defaultQualifiers = true;\r
        }\r
        ~NameIDAttributeDecoder() {}\r
\r
        shibsp::Attribute* decode(\r
            const vector<string>& ids, const XMLObject* xmlObject, const char* assertingParty=NULL, const char* relyingParty=NULL\r
            ) const;\r
\r
    private:\r
        void extract(\r
            const NameIDType* n, vector<NameIDAttribute::Value>& dest, const char* assertingParty, const char* relyingParty\r
            ) const;\r
        void extract(\r
            const NameIdentifier* n, vector<NameIDAttribute::Value>& dest, const char* assertingParty, const char* relyingParty\r
            ) const;\r
        auto_ptr_char m_formatter;\r
        bool m_defaultQualifiers;\r
    };\r
\r
    AttributeDecoder* SHIBSP_DLLLOCAL NameIDAttributeDecoderFactory(const DOMElement* const & e)\r
    {\r
        return new NameIDAttributeDecoder(e);\r
    }\r
};\r
\r
shibsp::Attribute* NameIDAttributeDecoder::decode(\r
    const vector<string>& ids, const XMLObject* xmlObject, const char* assertingParty, const char* relyingParty\r
    ) const\r
{\r
    auto_ptr<NameIDAttribute> nameid(\r
        new NameIDAttribute(ids, (m_formatter.get() && *m_formatter.get()) ? m_formatter.get() : DEFAULT_NAMEID_FORMATTER)\r
        );\r
    vector<NameIDAttribute::Value>& dest = nameid->getValues();\r
    vector<XMLObject*>::const_iterator v,stop;\r
\r
    Category& log = Category::getInstance(SHIBSP_LOGCAT".AttributeDecoder.NameID");\r
\r
    if (xmlObject && XMLString::equals(opensaml::saml1::Attribute::LOCAL_NAME,xmlObject->getElementQName().getLocalPart())) {\r
        const opensaml::saml2::Attribute* saml2attr = dynamic_cast<const opensaml::saml2::Attribute*>(xmlObject);\r
        if (saml2attr) {\r
            const vector<XMLObject*>& values = saml2attr->getAttributeValues();\r
            v = values.begin();\r
            stop = values.end();\r
            if (log.isDebugEnabled()) {\r
                auto_ptr_char n(saml2attr->getName());\r
                log.debug(\r
                    "decoding NameIDAttribute (%s) from SAML 2 Attribute (%s) with %lu value(s)",\r
                    ids.front().c_str(), n.get() ? n.get() : "unnamed", values.size()\r
                    );\r
            }\r
        }\r
        else {\r
            const opensaml::saml1::Attribute* saml1attr = dynamic_cast<const opensaml::saml1::Attribute*>(xmlObject);\r
            if (saml1attr) {\r
                const vector<XMLObject*>& values = saml1attr->getAttributeValues();\r
                v = values.begin();\r
                stop = values.end();\r
                if (log.isDebugEnabled()) {\r
                    auto_ptr_char n(saml1attr->getAttributeName());\r
                    log.debug(\r
                        "decoding NameIDAttribute (%s) from SAML 1 Attribute (%s) with %lu value(s)",\r
                        ids.front().c_str(), n.get() ? n.get() : "unnamed", values.size()\r
                        );\r
                }\r
            }\r
            else {\r
                log.warn("XMLObject type not recognized by NameIDAttributeDecoder, no values returned");\r
                return NULL;\r
            }\r
        }\r
\r
        for (; v!=stop; ++v) {\r
            const NameIDType* n2 = dynamic_cast<const NameIDType*>(*v);\r
            if (n2)\r
                extract(n2, dest, assertingParty, relyingParty);\r
            else {\r
                const NameIdentifier* n1=dynamic_cast<const NameIdentifier*>(*v);\r
                if (n1)\r
                    extract(n1, dest, assertingParty, relyingParty);\r
                else if ((*v)->hasChildren()) {\r
                    const list<XMLObject*>& values = (*v)->getOrderedChildren();\r
                    for (list<XMLObject*>::const_iterator vv = values.begin(); vv!=values.end(); ++vv) {\r
                        if (n2=dynamic_cast<const NameIDType*>(*vv))\r
                            extract(n2, dest, assertingParty, relyingParty);\r
                        else if (n1=dynamic_cast<const NameIdentifier*>(*vv))\r
                            extract(n1, dest, assertingParty, relyingParty);\r
                        else\r
                            log.warn("skipping AttributeValue without a recognizable NameID/NameIdentifier");\r
                    }\r
                }\r
            }\r
        }\r
\r
        return dest.empty() ? NULL : _decode(nameid.release());\r
    }\r
\r
    const NameIDType* saml2name = dynamic_cast<const NameIDType*>(xmlObject);\r
    if (saml2name) {\r
        if (log.isDebugEnabled()) {\r
            auto_ptr_char f(saml2name->getFormat());\r
            log.debug("decoding NameIDAttribute (%s) from SAML 2 NameID with Format (%s)", ids.front().c_str(), f.get() ? f.get() : "unspecified");\r
        }\r
        extract(saml2name, dest, assertingParty, relyingParty);\r
    }\r
    else {\r
        const NameIdentifier* saml1name = dynamic_cast<const NameIdentifier*>(xmlObject);\r
        if (saml1name) {\r
            if (log.isDebugEnabled()) {\r
                auto_ptr_char f(saml1name->getFormat());\r
                log.debug(\r
                    "decoding NameIDAttribute (%s) from SAML 1 NameIdentifier with Format (%s)",\r
                    ids.front().c_str(), f.get() ? f.get() : "unspecified"\r
                    );\r
            }\r
            extract(saml1name, dest, assertingParty, relyingParty);\r
        }\r
        else {\r
            log.warn("XMLObject type not recognized by NameIDAttributeDecoder, no values returned");\r
            return NULL;\r
        }\r
    }\r
\r
    return dest.empty() ? NULL : _decode(nameid.release());\r
}\r
\r
void NameIDAttributeDecoder::extract(\r
    const NameIDType* n, vector<NameIDAttribute::Value>& dest, const char* assertingParty, const char* relyingParty\r
    ) const\r
{\r
    auto_arrayptr<char> name(toUTF8(n->getName()));\r
    if (name.get() && *name.get()) {\r
        dest.push_back(NameIDAttribute::Value());\r
        NameIDAttribute::Value& val = dest.back();\r
        val.m_Name = name.get();\r
        char* str = toUTF8(n->getFormat());\r
        if (str) {\r
            val.m_Format = str;\r
            delete[] str;\r
        }\r
\r
        str = toUTF8(n->getNameQualifier());\r
        if (str && *str)\r
            val.m_NameQualifier = str;\r
        else if (m_defaultQualifiers && assertingParty)\r
            val.m_NameQualifier = assertingParty;\r
        delete[] str;\r
\r
        str = toUTF8(n->getSPNameQualifier());\r
        if (str && *str)\r
            val.m_SPNameQualifier = str;\r
        else if (m_defaultQualifiers && relyingParty)\r
            val.m_SPNameQualifier = relyingParty;\r
        delete[] str;\r
\r
        str = toUTF8(n->getSPProvidedID());\r
        if (str) {\r
            val.m_SPProvidedID = str;\r
            delete[] str;\r
        }\r
    }\r
}\r
\r
void NameIDAttributeDecoder::extract(\r
    const NameIdentifier* n, vector<NameIDAttribute::Value>& dest, const char* assertingParty, const char* relyingParty\r
    ) const\r
{\r
    auto_arrayptr<char> name(toUTF8(n->getName()));\r
    if (name.get() && *name.get()) {\r
        dest.push_back(NameIDAttribute::Value());\r
        NameIDAttribute::Value& val = dest.back();\r
        val.m_Name = name.get();\r
        char* str = toUTF8(n->getFormat());\r
        if (str) {\r
            val.m_Format = str;\r
            delete[] str;\r
        }\r
\r
        str = toUTF8(n->getNameQualifier());\r
        if (str && *str)\r
            val.m_NameQualifier = str;\r
        else if (m_defaultQualifiers && assertingParty)\r
            val.m_NameQualifier = assertingParty;\r
        delete[] str;\r
\r
        if (m_defaultQualifiers && relyingParty)\r
            val.m_SPNameQualifier = relyingParty;\r
    }\r
}\r