1 files changed, 160 insertions, 0 deletions

diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/stork2/AuthenticationRequest.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/stork2/AuthenticationRequest.java
index e69de29bb..49b6bba8a 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/stork2/AuthenticationRequest.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/stork2/AuthenticationRequest.java
@@ -0,0 +1,160 @@
+package at.gv.egovernment.moa.id.protocols.stork2;
+
+import at.gv.egovernment.moa.id.auth.data.AuthenticationSession;
+import at.gv.egovernment.moa.id.auth.exception.MOAIDException;
+import at.gv.egovernment.moa.id.moduls.IAction;
+import at.gv.egovernment.moa.id.moduls.IRequest;
+import at.gv.egovernment.moa.logging.Logger;
+import eu.stork.mw.messages.saml.STORKAuthnRequest;
+import eu.stork.vidp.api.messages.StartAuthResponse;
+import eu.stork.vidp.messages.stork.SpInstitution;
+import eu.stork.vidp.messages.util.SAMLUtil;
+import org.apache.velocity.VelocityContext;
+import org.apache.velocity.app.VelocityEngine;
+import org.apache.velocity.runtime.RuntimeConstants;
+import org.opensaml.xml.util.Base64;
+import org.opensaml.xml.util.XMLHelper;
+
+import javax.servlet.ServletOutputStream;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.servlet.http.HttpSession;
+import java.io.ByteArrayOutputStream;
+import java.io.IOException;
+import java.io.OutputStreamWriter;
+import java.io.Writer;
+import java.util.HashMap;
+
+/**
+ * @author bsuzic
+ *         Date: 12/3/13, Time: 2:08 PM
+ */
+
+public class AuthenticationRequest implements IAction {
+    /*
+    Second request step - after authentication of the user is done and moasession obtained,
+    process request and forward the user further to PEPS and/or other entities
+     */
+
+
+    private VelocityEngine velocityEngine;
+
+
+    public String processRequest(IRequest req, HttpServletRequest httpReq, HttpServletResponse httpResp, AuthenticationSession moasession) throws MOAIDException {
+        Logger.debug("Starting AuthenticationRequest");
+        //AuthenticationServer.getInstance().startSTORKAuthentication(httpReq, httpResp, moasession);
+        Logger.debug("Http Response: " + httpResp.toString() + ", ");
+        Logger.debug("Moa session: " + moasession.toString() + " " + moasession.getOAURLRequested() + " " + moasession.getPublicOAURLPrefix() + " " + moasession.getAction() + " " + moasession.getIdentityLink().getName() + " " + moasession.getTarget());
+        httpResp.reset();
+        //httpResp.addHeader("Location", "http:/www.google.com");
+        if (req instanceof STORKAuthnRequestDEL) {
+            Logger.debug("STORK QAA 2 :" + ((STORKAuthnRequestDEL) req).getStorkAuthnRequest().getQAALevel());
+            StartAuthResponse startAuthResponse = getStartAuthResponse(((STORKAuthnRequestDEL) req).getStorkAuthnRequest());
+
+            HttpSession httpSession = httpReq.getSession();
+            httpSession.setAttribute("STORKSessionID", "12345");
+            httpResp.setStatus(startAuthResponse.getHttpStatusCode());
+            try {
+                ServletOutputStream os = httpResp.getOutputStream();
+                String html = new String(startAuthResponse.getContent());
+
+
+                if (html.contains("<![CDATA[")) {
+                    Logger.info("-------- content contains <![CDATA[-----------------");
+                    Logger.info("-------- content contains html -----------------");
+                    Logger.info("HTML : " + html);
+                    int beginIndex = html.indexOf("<![CDATA[");
+                    int endIndex = html.indexOf("]]>");
+                    html = html.substring(beginIndex + 9, endIndex);
+                    startAuthResponse.setContent(html.getBytes());
+
+                }
+                Logger.info("HTML : " + html);
+
+                os.write(startAuthResponse.getContent());
+                Logger.info("Response sent to client");
+            } catch (IOException e) {
+                Logger.error("ERROR MOA");
+                throw new MOAIDException("error response sending", new Object[]{});
+            }
+            //httpSession.setAttribute("CCC", ccc);
+        }
+
+
+        //httpResp.setStatus(200);
+        //VPEPSInboundPostHandler
+
+
+        return "12345"; // AssertionId
+    }
+
+    public boolean needAuthentication(IRequest req, HttpServletRequest httpReq, HttpServletResponse httpResp) {
+        return true;
+    }
+
+
+    public StartAuthResponse getStartAuthResponse(STORKAuthnRequest authnRequest) {
+
+        StartAuthResponse authResponse = new StartAuthResponse(500, null, new HashMap<String, String>());
+
+        if (authnRequest.getSPID() != null) {
+            Logger.debug("SP id: " + authnRequest.getSPID());
+        } else {
+            SpInstitution spInstitution = (SpInstitution)authnRequest.getExtensions().getUnknownXMLObjects(SpInstitution.DEFAULT_ELEMENT_NAME).get(0);
+            Logger.debug("SP institution: " + spInstitution.getValue());
+        }
+
+        Logger.debug("SPEPS issuer: " + authnRequest.getIssuer().getValue());
+        Logger.debug("SPEPS Consumer URL: " + authnRequest.getAssertionConsumerServiceURL());
+
+
+
+        try {
+
+            initVelocityEngine();
+            VelocityContext velocityContext = new VelocityContext();
+
+            velocityContext.put("action", authnRequest.getDestination());
+            if (authnRequest.getDOM() == null) {
+                SAMLUtil.marshallMessage(authnRequest);
+            }
+
+            String messageXML = XMLHelper.nodeToString(authnRequest.getDOM());
+            String encodedMessage = Base64.encodeBytes(messageXML.getBytes("UTF-8"), Base64.DONT_BREAK_LINES);
+            velocityContext.put("SAMLRequest", encodedMessage);
+            ByteArrayOutputStream outStream = new ByteArrayOutputStream();
+
+            Writer out = new OutputStreamWriter(outStream, "UTF-8");
+            velocityEngine.mergeTemplate("/templates/saml2-post-binding.vm", "UTF-8", velocityContext, out);
+            out.flush();
+            authResponse.setContent(outStream.toByteArray());
+
+            authResponse.addHeader("Content-Type", "text/html; charset=utf-8");
+            authResponse.addHeader("Cache-Control", "no-cache");
+            authResponse.setHttpStatusCode(200);
+
+        } catch (Exception e) {
+            Logger.error("ERROR");
+        }
+
+
+        return authResponse;
+    }
+
+    public String getDefaultActionName() {
+        return STORKProtocol.AUTHENTICATIONREQUEST;
+    }
+
+
+    private void initVelocityEngine() throws Exception {
+        velocityEngine = new VelocityEngine();
+        velocityEngine.setProperty(RuntimeConstants.ENCODING_DEFAULT, "UTF-8");
+        velocityEngine.setProperty(RuntimeConstants.OUTPUT_ENCODING, "UTF-8");
+        velocityEngine.setProperty(RuntimeConstants.RESOURCE_LOADER, "classpath");
+        velocityEngine.setProperty("classpath.resource.loader.class",
+                "org.apache.velocity.runtime.resource.loader.ClasspathResourceLoader");
+
+        velocityEngine.init();
+    }
+
+}