2 * Copyright 2001-2009 Internet2
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
20 * SP-specific SecurityPolicy subclass.
24 #include "Application.h"
25 #include "ServiceProvider.h"
26 #include "metadata/MetadataProviderCriteria.h"
27 #include "security/SecurityPolicy.h"
29 using namespace shibsp;
30 using namespace opensaml::saml2;
33 SecurityPolicy::SecurityPolicy(const Application& application, const xmltooling::QName* role, bool validate, const char* policyId)
34 : opensaml::SecurityPolicy(application.getMetadataProvider(), role, application.getTrustEngine(), validate), m_application(application) {
35 const vector<const opensaml::SecurityPolicyRule*>& rules =
36 application.getServiceProvider().getPolicyRules(policyId ? policyId : application.getString("policyId").second);
37 getRules().assign(rules.begin(), rules.end());
39 // Populate audiences.
40 if (application.getAudiences()) {
41 for (vector<const XMLCh*>::const_iterator a = application.getAudiences()->begin(); a != application.getAudiences()->end(); ++a)
42 getAudiences().push_back(*a);
46 opensaml::saml2md::MetadataProvider::Criteria& SecurityPolicy::getMetadataProviderCriteria() const
48 if (!m_metadataCriteria)
49 m_metadataCriteria=new MetadataProviderCriteria(m_application);
51 m_metadataCriteria->reset();
52 return *m_metadataCriteria;
projects / shibboleth / sp.git / blob