1 files changed, 31 insertions, 1 deletions

diff --git a/eidas_modules/eidas_proxy-sevice/src/main/java/at/asitplus/eidas/specific/modules/msproxyservice/protocol/EidasProxyServiceController.java b/eidas_modules/eidas_proxy-sevice/src/main/java/at/asitplus/eidas/specific/modules/msproxyservice/protocol/EidasProxyServiceController.java
index aafe57e7..8e417c36 100644
--- a/eidas_modules/eidas_proxy-sevice/src/main/java/at/asitplus/eidas/specific/modules/msproxyservice/protocol/EidasProxyServiceController.java
+++ b/eidas_modules/eidas_proxy-sevice/src/main/java/at/asitplus/eidas/specific/modules/msproxyservice/protocol/EidasProxyServiceController.java
@@ -2,7 +2,9 @@ package at.asitplus.eidas.specific.modules.msproxyservice.protocol;
 
 import java.io.IOException;
 import java.text.MessageFormat;
+import java.util.Collections;
 import java.util.HashMap;
+import java.util.List;
 import java.util.Map;
 import java.util.stream.Collectors;
 
@@ -30,6 +32,7 @@ import at.gv.egiz.eaaf.core.api.idp.IModulInfo;
 import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
 import at.gv.egiz.eaaf.core.exceptions.EaafException;
 import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractController;
+import at.gv.egiz.eaaf.core.impl.utils.KeyValueUtils;
 import eu.eidas.auth.commons.EidasParameterKeys;
 import eu.eidas.auth.commons.light.ILightRequest;
 import eu.eidas.specificcommunication.SpecificCommunicationDefinitionBeanNames;
@@ -221,7 +224,10 @@ public class EidasProxyServiceController extends AbstractController implements I
           EaafConstants.URN_PREFIX_EIDAS + ccCountry + "+" + spCountry);    
       spConfig.setRequiredLoA(
           eidasRequest.getLevelsOfAssurance().stream().map(el -> el.getValue()).collect(Collectors.toList()));
-            
+           
+      spConfig.setMandateProfiles(buildMandateProfileConfiguration(eidasRequest));
+      
+      
       return spConfig;
       
     } catch (EaafException e) {
@@ -230,4 +236,28 @@ public class EidasProxyServiceController extends AbstractController implements I
     }    
   }
 
+  private List<String> buildMandateProfileConfiguration(ILightRequest eidasRequest) {
+    if (authConfig.getBasicConfigurationBoolean(
+        MsProxyServiceConstants.CONIG_PROPS_EIDAS_PROXY_MANDATES_ENABLED, false)) {
+      log.trace("eIDAS Proxy-Service allows mandates. Selecting profiles ... ");      
+      List<String> spMandateProfiles = authConfig.getBasicConfigurationWithPrefix(
+          MsProxyServiceConstants.CONIG_PROPS_EIDAS_PROXY_MANDATES_PROFILE_SPECIFIC)
+            .entrySet().stream()
+            .filter(el -> el.getKey().endsWith(eidasRequest.getSpCountryCode().toLowerCase()))
+            .findFirst()
+            .map(el -> KeyValueUtils.getListOfCsvValues(el.getValue()))
+            .orElse(KeyValueUtils.getListOfCsvValues(
+                authConfig.getBasicConfiguration(
+                    MsProxyServiceConstants.CONIG_PROPS_EIDAS_PROXY_MANDATES_PROFILE_DEFAULT)));
+          
+      log.debug("Set mandate-profiles: {} to request from country: {}",
+          spMandateProfiles, eidasRequest.getSpCountryCode());
+      return spMandateProfiles;
+      
+    }
+          
+    return Collections.emptyList();
+    
+  }
+
 }