/*******************************************************************************
 *******************************************************************************/
package at.gv.egiz.eaaf.modules.pvp2.impl.verification;

import org.opensaml.common.binding.SAMLMessageContext;
import org.opensaml.saml2.binding.security.SAML2AuthnRequestsSignedRule;
import org.opensaml.ws.transport.http.HTTPInTransport;
import org.opensaml.xml.util.DatatypeHelper;

/**
 * @author tlenz
 *
 */
public class PVPAuthRequestSignedRole extends SAML2AuthnRequestsSignedRule {

	@Override
    protected boolean isMessageSigned(SAMLMessageContext messageContext) {        
        // This handles HTTP-Redirect and HTTP-POST-SimpleSign bindings.
        HTTPInTransport inTransport = (HTTPInTransport) messageContext.getInboundMessageTransport();
        String sigParam = inTransport.getParameterValue("Signature");
        boolean isSigned = !DatatypeHelper.isEmpty(sigParam);
        
        String sigAlgParam = inTransport.getParameterValue("SigAlg");
        boolean isSigAlgExists = !DatatypeHelper.isEmpty(sigAlgParam);
        
        return isSigned && isSigAlgExists;
               
    }
}