BKU Auswahl in Kontext von MOA-ID für standardkonforme Variante

author: Thomas Lenz <tlenz@iaik.tugraz.at> 2013-07-04 10:09:26 +0200
committer: Thomas Lenz <tlenz@iaik.tugraz.at> 2013-07-04 10:09:26 +0200
commit: b73822979de23a3b7236411a7a737e2c93642a7d (patch)
tree: 472db6c41313c47019155356a58453e67b045b27 /id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/validator
parent: bba86def6a69726671838ebdacb918d3ede5de16 (diff)
download: moa-id-spss-b73822979de23a3b7236411a7a737e2c93642a7d.tar.gz
moa-id-spss-b73822979de23a3b7236411a7a737e2c93642a7d.tar.bz2
moa-id-spss-b73822979de23a3b7236411a7a737e2c93642a7d.zip
1 files changed, 22 insertions, 0 deletions
diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java
index 8d2f95cce..93bc0d214 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java
@@ -231,7 +231,29 @@ public class CreateXMLSignatureResponseValidator {
     } else {
       throw new ValidateException("validator.35", null);
     }
+     
+    // check four attribute could be a special text
+    samlAttribute = samlAttributes[3 + offset];
+    if (!samlAttribute.getName().equals("SpecialText")) {
+      throw new ValidateException(
+          "validator.37", 
+          new Object[] {samlAttribute.getName(), "SpecialText", String.valueOf(3)});
+    }
+    if (samlAttribute.getNamespace().equals("http://reference.e-government.gv.at/namespace/moa/20020822#")) {
+      String samlSpecialText = (String)samlAttribute.getValue();
+      
+      //TODO:load Text from OA config
+      String text = "Hiermit bestätige ich, #NAME#, die Übernahme sämtlicher eingelangter Zustellstücke zum #DATE# um #TIME#.";
+      //String text = "";
       
+      String specialText = AuthenticationBlockAssertionBuilder.generateSpecialText(text, issuer, issueInstant);
+      if (!samlSpecialText.equals(specialText)) {
+        throw new ValidateException("validator.67", new Object[] {samlSpecialText, specialText});
+      }
+    } else {
+      throw new ValidateException("validator.35", null);
+    }
+    
     // now check the extended SAML attributes
     int i = AuthenticationBlockAssertionBuilder.NUM_OF_SAML_ATTRIBUTES + offset;
     if (extendedSAMLAttributes != null) {
author	Thomas Lenz <tlenz@iaik.tugraz.at>	2013-07-04 10:09:26 +0200
committer	Thomas Lenz <tlenz@iaik.tugraz.at>	2013-07-04 10:09:26 +0200
commit	b73822979de23a3b7236411a7a737e2c93642a7d (patch)
tree	472db6c41313c47019155356a58453e67b045b27 /id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/validator
parent	bba86def6a69726671838ebdacb918d3ede5de16 (diff)
download	moa-id-spss-b73822979de23a3b7236411a7a737e2c93642a7d.tar.gz moa-id-spss-b73822979de23a3b7236411a7a737e2c93642a7d.tar.bz2 moa-id-spss-b73822979de23a3b7236411a7a737e2c93642a7d.zip