1 files changed, 93 insertions, 47 deletions

diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/stork/STORKResponseProcessor.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/stork/STORKResponseProcessor.java
index 2c8b44404..7113dcf70 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/stork/STORKResponseProcessor.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/stork/STORKResponseProcessor.java
@@ -26,28 +26,19 @@
 package at.gv.egovernment.moa.id.auth.stork;

 

 import java.io.ByteArrayInputStream;

+import java.io.IOException;

+import java.io.InputStream;

 import java.util.List;

 import java.util.Vector;

 

-import javax.servlet.http.HttpServletRequest;

-import javax.servlet.http.HttpServletResponse;

-import javax.xml.namespace.QName;

+import javax.activation.DataSource;

+import javax.xml.transform.Source;

+import javax.xml.transform.TransformerConfigurationException;

+import javax.xml.transform.TransformerException;

+import javax.xml.transform.TransformerFactoryConfigurationError;

+import javax.xml.transform.stream.StreamSource;

 

-import org.opensaml.common.binding.BasicSAMLMessageContext;

-import org.opensaml.saml2.binding.decoding.HTTPPostDecoder;

-import org.opensaml.saml2.core.Assertion;

-import org.opensaml.saml2.metadata.RequestedAttribute;

-import org.opensaml.ws.transport.http.HTTPInTransport;

-import org.opensaml.ws.transport.http.HTTPOutTransport;

-import org.opensaml.ws.transport.http.HttpServletRequestAdapter;

-import org.opensaml.ws.transport.http.HttpServletResponseAdapter;

-import org.opensaml.xml.XMLObject;

-import org.opensaml.xml.schema.XSAny;

-import org.opensaml.xml.schema.XSString;

-import org.opensaml.xml.util.Base64;

-import org.opensaml.xml.util.XMLHelper;

-import org.w3c.dom.Element;

-import org.w3c.dom.NodeList;

+import org.apache.commons.io.IOUtils;

 

 import at.gv.egovernment.moa.id.auth.AuthenticationServer;

 import at.gv.egovernment.moa.id.auth.data.ExtendedSAMLAttribute;

@@ -57,12 +48,16 @@ import at.gv.egovernment.moa.id.auth.exception.MOAIDException;
 import at.gv.egovernment.moa.id.auth.exception.ParseException;

 import at.gv.egovernment.moa.id.auth.parser.IdentityLinkAssertionParser;

 import at.gv.egovernment.moa.id.client.SZRGWClientException;

-import at.gv.egovernment.moa.id.util.XMLUtil;

 import at.gv.egovernment.moa.logging.Logger;

 import at.gv.egovernment.moa.util.Constants;

 import at.gv.egovernment.moa.util.DateTimeUtils;

 import at.gv.egovernment.moa.util.StringUtils;

 import at.gv.util.xsd.srzgw.CreateIdentityLinkResponse;

+import eu.stork.oasisdss.api.ApiUtils;

+import eu.stork.oasisdss.api.LightweightSourceResolver;

+import eu.stork.oasisdss.api.exceptions.ApiUtilsException;

+import eu.stork.oasisdss.api.exceptions.UtilsException;

+import eu.stork.oasisdss.profile.SignResponse;

 import eu.stork.peps.auth.commons.IPersonalAttributeList;

 import eu.stork.peps.auth.commons.PersonalAttribute;

 

@@ -105,13 +100,19 @@ public class STORKResponseProcessor {
 	 * @throws STORKException the sTORK exception

 	 */

 	private static String getAttributeValue(String attributeName, IPersonalAttributeList attributeList) throws STORKException {

+		return getAttributeValue(attributeName, attributeList, true);

+	}

+	private static String getAttributeValue(String attributeName, IPersonalAttributeList attributeList, boolean throwException) throws STORKException {

 		try {

 			String result = attributeList.get(attributeName).getValue().get(0);

 			Logger.trace(attributeName + " : " + result);

 			return result;

-		} catch(NullPointerException e) {

+		} catch(Exception e) {

 			Logger.error(attributeName + " not found in response");

-			throw new STORKException(attributeName + " not found in response");

+			if(throwException)

+				throw new STORKException(attributeName + " not found in response");

+			else

+				return null;

 		}

 	}

 

@@ -123,11 +124,12 @@ public class STORKResponseProcessor {
 	 * @param targetType the target type

 	 * @param targetValue the target value

 	 * @param filters the filters

+	 * @param citizenSignature2 

 	 * @return Identity Link

 	 * @throws STORKException the sTORK exception

 	 * @throws MOAIDException 

 	 */

-	public static IdentityLink connectToSZRGateway(IPersonalAttributeList attributeList, String oaFriendlyName, String targetType, String targetValue, List<String> filters) throws STORKException, MOAIDException {

+	public static IdentityLink connectToSZRGateway(IPersonalAttributeList attributeList, String oaFriendlyName, String targetType, String targetValue, List<String> filters, String citizenSignature) throws STORKException, MOAIDException {

 		Logger.trace("Calling SZR Gateway with the following attributes:");

 

 		CreateIdentityLinkResponse identityLinkResponse = null;

@@ -136,30 +138,39 @@ public class STORKResponseProcessor {
 			Logger.trace("Starting call...");

 

 			// if there is no signedDoc attribute, we cannot go on

-			String citizenSignature = getAttributeValue("signedDoc", attributeList);

-			String fiscalNumber = getAttributeValue("fiscalNumber", attributeList);

+			if(citizenSignature==null || citizenSignature.length()==0)

+			{

+				String signResponseString = getAttributeValue("signedDoc", attributeList);

+				

+				//Extract signature from SIgnResponse

+				Source response1 = new StreamSource(new java.io.StringReader(signResponseString));

+				SignResponse dssSignResponse = ApiUtils.unmarshal(response1, SignResponse.class);

+				citizenSignature = getCitizienSignatureFromSignResponse(dssSignResponse);

+			}

+			

+			String fiscalNumber = getAttributeValue("fiscalNumber", attributeList, false);

 			

 			// if we have a signedDoc we test for a representation case

 			// - according to stork samlengine and commons

 			if(hasAttribute("mandate", attributeList)) {

 				// we have a representation case

-				String mandate = getAttributeValue("mandate", attributeList);

+				String mandate = getAttributeValue("mandate", attributeList, false);

 				

 				if(!hasAttribute("dateOfBirth", attributeList)) {

 					// if we get here, we have a natural person representing a legal person

-					String organizationAddress = getAttributeValue("canonicalRegisteredAddress", attributeList);

-					String organizationType = getAttributeValue("translateableType", attributeList);

+					String organizationAddress = getAttributeValue("canonicalRegisteredAddress", attributeList, false);

+					String organizationType = getAttributeValue("translateableType", attributeList, false);

 					

 					identityLinkResponse = AuthenticationServer.getInstance().getIdentityLink(citizenSignature, null, null, mandate, organizationAddress, organizationType, targetType, targetValue, oaFriendlyName, filters, fiscalNumber);

 				} else {

 					// if we get here, we have a natural person representing another natural person

-					String eIdentifier = getAttributeValue("eIdentifier", attributeList);

-					String givenName = getAttributeValue("givenName", attributeList);

-					String lastName = getAttributeValue("surname", attributeList);

-					String dateOfBirth = getAttributeValue("dateOfBirth", attributeList);

+					String eIdentifier = getAttributeValue("eIdentifier", attributeList, false);

+					String givenName = getAttributeValue("givenName", attributeList, false);

+					String lastName = getAttributeValue("surname", attributeList, false);

+					String dateOfBirth = getAttributeValue("dateOfBirth", attributeList, false);

 					

 					// gender attribute is mandatory here because of some legal stuff

-					String gender = getAttributeValue("gender", attributeList);

+					String gender = getAttributeValue("gender", attributeList, false);

 					

 					if (!StringUtils.isEmpty(dateOfBirth))

 						dateOfBirth = DateTimeUtils.formatPEPSDateToMOADate(dateOfBirth);

@@ -172,25 +183,25 @@ public class STORKResponseProcessor {
 			// - according to stork spec

 			else if(hasAttribute("mandateContent", attributeList) || hasAttribute("representative", attributeList) || hasAttribute("represented", attributeList)) {

 				// we have a representation case

-				String representative = getAttributeValue("representative", attributeList);

-				String represented = getAttributeValue("represented", attributeList);

-				String mandate = getAttributeValue("mandateContent", attributeList);

+				String representative = getAttributeValue("representative", attributeList, false);

+				String represented = getAttributeValue("represented", attributeList, false);

+				String mandate = getAttributeValue("mandateContent", attributeList, false);

 				

 				if(!hasAttribute("dateOfBirth", attributeList)) {

 					// if we get here, we have a natural person representing a legal person

-					String organizationAddress = getAttributeValue("canonicalRegisteredAddress", attributeList);

-					String organizationType = getAttributeValue("translateableType", attributeList);

+					String organizationAddress = getAttributeValue("canonicalRegisteredAddress", attributeList, false);

+					String organizationType = getAttributeValue("translateableType", attributeList, false);

 									

 					identityLinkResponse = AuthenticationServer.getInstance().getIdentityLink(citizenSignature, representative, represented, mandate, organizationAddress, organizationType, targetType, targetValue, oaFriendlyName, filters, fiscalNumber);

 				} else {

 					// if we get here, we have a natural person representing another natural person

-					String eIdentifier = getAttributeValue("eIdentifier", attributeList);

-					String givenName = getAttributeValue("givenName", attributeList);

-					String lastName = getAttributeValue("surname", attributeList);

-					String dateOfBirth = getAttributeValue("dateOfBirth", attributeList);

+					String eIdentifier = getAttributeValue("eIdentifier", attributeList, false);

+					String givenName = getAttributeValue("givenName", attributeList, false);

+					String lastName = getAttributeValue("surname", attributeList, false);

+					String dateOfBirth = getAttributeValue("dateOfBirth", attributeList, false);

 			

 					// gender attribute is mandatory here because of some legal stuff

-					String gender = getAttributeValue("gender", attributeList);

+					String gender = getAttributeValue("gender", attributeList, false);

 					

 					if (!StringUtils.isEmpty(dateOfBirth))

 						dateOfBirth = DateTimeUtils.formatPEPSDateToMOADate(dateOfBirth);

@@ -201,10 +212,10 @@ public class STORKResponseProcessor {
 				}

 			} else {

 				// we do not have a representation case

-				String eIdentifier = getAttributeValue("eIdentifier", attributeList);

-				String givenName = getAttributeValue("givenName", attributeList);

-				String lastName = getAttributeValue("surname", attributeList);

-				String dateOfBirth = getAttributeValue("dateOfBirth", attributeList);

+				String eIdentifier = getAttributeValue("eIdentifier", attributeList, false);

+				String givenName = getAttributeValue("givenName", attributeList, false);

+				String lastName = getAttributeValue("surname", attributeList, false);

+				String dateOfBirth = getAttributeValue("dateOfBirth", attributeList, false);

 				if (!StringUtils.isEmpty(dateOfBirth))

 					dateOfBirth = DateTimeUtils.formatPEPSDateToMOADate(dateOfBirth);

 				identityLinkResponse = AuthenticationServer.getInstance().getIdentityLink(eIdentifier, givenName, lastName, dateOfBirth, citizenSignature, fiscalNumber);

@@ -229,7 +240,27 @@ public class STORKResponseProcessor {
 		} catch (ParseException e) {

 			Logger.error("Error parsing IdentityLink received from SZR-Gateway: ", e);

 			throw new MOAIDException("auth.25", null, e);

-			

+		} catch (ApiUtilsException e) {

+			Logger.error("Error parsing IdentityLink received from SZR-Gateway: ", e);

+			throw new MOAIDException("auth.25", null, e);

+		} catch (IllegalArgumentException e) {

+			Logger.error("Error parsing IdentityLink received from SZR-Gateway: ", e);

+			throw new MOAIDException("auth.25", null, e);

+		} catch (TransformerConfigurationException e) {

+			Logger.error("Error parsing IdentityLink received from SZR-Gateway: ", e);

+			throw new MOAIDException("auth.25", null, e);

+		} catch (UtilsException e) {

+			Logger.error("Error parsing IdentityLink received from SZR-Gateway: ", e);

+			throw new MOAIDException("auth.25", null, e);

+		} catch (TransformerException e) {

+			Logger.error("Error parsing IdentityLink received from SZR-Gateway: ", e);

+			throw new MOAIDException("auth.25", null, e);

+		} catch (TransformerFactoryConfigurationError e) {

+			Logger.error("Error parsing IdentityLink received from SZR-Gateway: ", e);

+			throw new MOAIDException("auth.25", null, e);

+		} catch (IOException e) {

+			Logger.error("Error parsing IdentityLink received from SZR-Gateway: ", e);

+			throw new MOAIDException("auth.25", null, e);

 		} 

     		    

     	return identityLink;

@@ -266,5 +297,20 @@ public class STORKResponseProcessor {
 		

 		return moaExtendedSAMLAttributeList;

 	}

+	

+	private static String getCitizienSignatureFromSignResponse(SignResponse dssSignResponse) throws IllegalArgumentException, TransformerConfigurationException, UtilsException, TransformerException, TransformerFactoryConfigurationError, IOException, ApiUtilsException

+	{

+		// fetch signed doc

+		DataSource ds = LightweightSourceResolver.getDataSource(dssSignResponse);

+		if(ds == null){

+			throw new ApiUtilsException("No datasource found in response");

+		}				

+

+		InputStream incoming  = ds.getInputStream();

+		String citizenSignature = IOUtils.toString(incoming);

+		incoming.close();

+

+		return citizenSignature;

+	}

 

 }