1 files changed, 199 insertions, 0 deletions

diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/ProtocolFinalizationController.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/ProtocolFinalizationController.java
new file mode 100644
index 000000000..ed53d1a20
--- /dev/null
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/ProtocolFinalizationController.java
@@ -0,0 +1,199 @@
+/*
+ * Copyright 2014 Federal Chancellery Austria
+ * MOA-ID has been developed in a cooperation between BRZ, the Federal
+ * Chancellery Austria - ICT staff unit, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.1 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "Licence");
+ * You may not use this work except in compliance with the Licence.
+ * You may obtain a copy of the Licence at:
+ * http://www.osor.eu/eupl/
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the Licence is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the Licence for the specific language governing permissions and
+ * limitations under the Licence.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+package at.gv.egovernment.moa.id.protocols;
+
+import java.io.IOException;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+
+import at.gv.egovernment.moa.id.advancedlogging.MOAIDEventConstants;
+import at.gv.egovernment.moa.id.auth.data.AuthenticationSession;
+import at.gv.egovernment.moa.id.auth.exception.MOAIDException;
+import at.gv.egovernment.moa.id.auth.exception.WrongParametersException;
+import at.gv.egovernment.moa.id.moduls.IRequest;
+import at.gv.egovernment.moa.id.util.MOAIDMessageProvider;
+import at.gv.egovernment.moa.id.util.ParamValidatorUtils;
+import at.gv.egovernment.moa.logging.Logger;
+
+/**
+ * @author tlenz
+ *
+ */
+@Controller
+public class ProtocolFinalizationController extends AbstractProtocolModulController {
+	
+	@RequestMapping(value = "/finalizeAuthProtocol", method = {RequestMethod.GET})
+	public void finalizeAuthProtocol(HttpServletRequest req, HttpServletResponse resp) throws MOAIDException, IOException {
+		
+		//read pendingRequest from http request
+		Object idObject = req.getParameter(PARAM_TARGET_PENDINGREQUESTID);
+		IRequest pendingReq = null;
+		String pendingRequestID = null;
+		if (idObject != null && (idObject instanceof String)) {
+			pendingRequestID = (String) idObject;
+			pendingReq = requestStorage.getPendingRequest(pendingRequestID);
+			
+		}
+ 				
+		//receive an authentication error
+		String errorid = req.getParameter(ERROR_CODE_PARAM);
+		if (errorid != null) {
+			try {				
+				//load stored exception from database
+				Throwable throwable = transactionStorage.get(errorid, Throwable.class);
+				transactionStorage.remove(errorid);
+							
+				if (throwable != null) {					
+					if (pendingReq != null) {
+						revisionsLogger.logEvent(pendingReq, MOAIDEventConstants.TRANSACTION_ERROR);
+	
+						//build protocol-specific error message if possible
+						buildProtocolSpecificErrorResponse(throwable, req, resp, pendingReq);
+						
+						//log Error Message
+						statisticLogger.logErrorOperation(throwable, pendingReq);
+						
+						//get MOASession for this pendingRequest
+						AuthenticationSession moaSession = 
+								authenticatedSessionStorage.getSession(
+										pendingReq.getMOASessionIdentifier());
+						
+						//remove MOASession if someone is found
+						if (moaSession != null)
+							authmanager.performOnlyIDPLogOut(req, resp, moaSession.getSessionID());
+	
+						return;
+	
+					} else {
+						handleErrorNoRedirect(throwable, req, resp);
+	
+					}
+				} else {
+					handleErrorNoRedirect(new Exception(
+							MOAIDMessageProvider.getInstance().getMessage("auth.26", null)), 
+							req, resp);
+					
+				}
+				
+			} catch (Throwable e) {
+			Logger.error(e);
+			handleErrorNoRedirect(e, req, resp);
+			
+			}
+		
+			// receive a pending request 
+		} else {
+			if (pendingReq == null) {
+				Logger.error("No PendingRequest with ID " + pendingRequestID + " found.!");		
+				handleErrorNoRedirect(new MOAIDException("auth.28", new Object[]{pendingRequestID}), req, resp);							
+				return;
+				
+			}
+			try {
+				Logger.debug("Finalize PendingRequest with ID " + pendingRequestID);
+			
+				//get MOASession from database				
+				String sessionID = pendingReq.getMOASessionIdentifier();
+			
+				// check parameter
+				if (!ParamValidatorUtils.isValidSessionID(sessionID)) {
+					throw new WrongParametersException("FinalizeAuthProtocol", PARAM_SESSIONID, "auth.12");
+				
+				}	
+				
+				//load MOASession from database
+				AuthenticationSession moaSession = authenticatedSessionStorage.getSession(sessionID);
+				if (moaSession == null) {
+					Logger.error("No MOASession with ID " + sessionID + " found.!");		
+					handleErrorNoRedirect(new MOAIDException("auth.02", new Object[]{sessionID}), req, resp);							
+					return;
+					
+				}
+								
+				//check if MOASession and pending-request are authenticated
+				if (moaSession.isAuthenticated() && pendingReq.isAuthenticated()) {				
+					finalizeAuthenticationProcess(req, resp, pendingReq, moaSession);
+									
+				} else {
+					Logger.error("MOASession oder Pending-Request are not authenticated --> Abort authentication process!");		
+					handleErrorNoRedirect(new MOAIDException("auth.20", null), req, resp);							
+					return;
+									
+				}
+							
+			} catch (Exception e) {
+				Logger.error("Finalize authentication protocol FAILED." , e);
+				buildProtocolSpecificErrorResponse(e, req, resp, pendingReq);
+				
+			}		
+		}
+		
+		//remove pending-request
+		requestStorage.removePendingRequest(pendingRequestID);
+		
+	}
+
+	/* (non-Javadoc)
+	 * @see at.gv.egovernment.moa.id.protocols.AbstractProtocolModulController#getName()
+	 */
+	@Override
+	public String getName() {
+		// TODO Auto-generated method stub
+		return null;
+	}
+
+	/* (non-Javadoc)
+	 * @see at.gv.egovernment.moa.id.protocols.AbstractProtocolModulController#getPath()
+	 */
+	@Override
+	public String getPath() {
+		// TODO Auto-generated method stub
+		return null;
+	}
+
+	/* (non-Javadoc)
+	 * @see at.gv.egovernment.moa.id.protocols.AbstractProtocolModulController#generateErrorMessage(java.lang.Throwable, javax.servlet.http.HttpServletRequest, javax.servlet.http.HttpServletResponse, at.gv.egovernment.moa.id.moduls.IRequest)
+	 */
+	@Override
+	public boolean generateErrorMessage(Throwable e, HttpServletRequest request, HttpServletResponse response,
+			IRequest protocolRequest) throws Throwable {
+		// TODO Auto-generated method stub
+		return false;
+	}
+
+	/* (non-Javadoc)
+	 * @see at.gv.egovernment.moa.id.protocols.AbstractProtocolModulController#validate(javax.servlet.http.HttpServletRequest, javax.servlet.http.HttpServletResponse, at.gv.egovernment.moa.id.moduls.IRequest)
+	 */
+	@Override
+	public boolean validate(HttpServletRequest request, HttpServletResponse response, IRequest pending) {
+		// TODO Auto-generated method stub
+		return false;
+	}
+	
+	
+}