added SAML1 Protocol simple implementation

added Loginform builder
added login confirmation builder
added login form template
added modul logic
added entrypoints

1 files changed, 73 insertions, 0 deletions

diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java
new file mode 100644
index 000000000..e631523a2
--- /dev/null
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java
@@ -0,0 +1,73 @@
+package at.gv.egovernment.moa.id.moduls;
+
+import java.io.IOException;
+import java.io.PrintWriter;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.servlet.http.HttpSession;
+
+import at.gv.egovernment.moa.id.auth.MOAIDAuthConstants;
+import at.gv.egovernment.moa.id.auth.builder.LoginFormBuilder;
+import at.gv.egovernment.moa.id.auth.data.AuthenticationSession;
+import at.gv.egovernment.moa.id.util.HTTPSessionUtils;
+import at.gv.egovernment.moa.logging.Logger;
+
+public class AuthenticationManager implements MOAIDAuthConstants {
+	
+	public static final String MOA_SESSION = "MoaAuthenticationSession";
+	public static final String MOA_AUTHENTICATED = "MoaAuthenticated";
+	
+	public static AuthenticationSession getAuthenticationSession(HttpSession session) {
+		String sessionID = HTTPSessionUtils.getHTTPSessionString(session, MOA_SESSION, null);
+		if(sessionID != null) {
+			return AuthenticationSessionStore.getSession(sessionID);
+		}
+		return null;
+	}
+	
+	/**
+	 * Checks if the session is authenticated 
+	 * @param request
+	 * @param response
+	 * @return
+	 */
+	public static boolean isAuthenticated(HttpServletRequest request, HttpServletResponse response) {
+		Logger.info("Checking authentication");
+		
+		HttpSession session = request.getSession();
+		
+		String sessionID = (String)request.getAttribute(PARAM_SESSIONID);
+		if(sessionID != null) {
+			AuthenticationSession authSession = AuthenticationSessionStore.getSession(sessionID);
+			if(authSession != null) {
+				if(authSession.isAuthenticated() && !authSession.isAuthenticatedUsed()) {
+					session.invalidate();
+					session = request.getSession();
+					HTTPSessionUtils.setHTTPSessionBoolean(session, MOA_AUTHENTICATED, true);
+					authSession.setAuthenticatedUsed(true);
+					HTTPSessionUtils.setHTTPSessionString(session, MOA_SESSION, sessionID);
+				}
+			}
+		}
+		
+		return HTTPSessionUtils.getHTTPSessionBoolean(session, MOA_AUTHENTICATED, false);
+	}
+	
+	public static void doAuthentication(HttpServletRequest request, HttpServletResponse response, 
+			ITargetConfiguration target) 
+			throws ServletException, IOException {
+		HttpSession session = request.getSession();
+		Logger.info("Starting authentication ...");
+		String loginForm = LoginFormBuilder.buildLoginForm(target.getOAURL());
+		
+		response.setContentType("text/html;charset=UTF-8");
+		PrintWriter out = new PrintWriter(response.getOutputStream());
+		out.print(loginForm);
+		out.flush();
+		return;
+		// TODO: Build authentication form
+		//session.getServletContext().getNamedDispatcher("StartAuthenticationServlet").forward(request, response);
+	}
+}