1 files changed, 280 insertions, 0 deletions

diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/storage/IAuthenticationSessionStoreage.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/storage/IAuthenticationSessionStoreage.java
new file mode 100644
index 000000000..b5d816eaf
--- /dev/null
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/storage/IAuthenticationSessionStoreage.java
@@ -0,0 +1,280 @@
+/*
+ * Copyright 2014 Federal Chancellery Austria
+ * MOA-ID has been developed in a cooperation between BRZ, the Federal
+ * Chancellery Austria - ICT staff unit, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.1 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "Licence");
+ * You may not use this work except in compliance with the Licence.
+ * You may obtain a copy of the Licence at:
+ * http://www.osor.eu/eupl/
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the Licence is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the Licence for the specific language governing permissions and
+ * limitations under the Licence.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+package at.gv.egovernment.moa.id.storage;
+
+import java.util.Date;
+import java.util.List;
+
+import at.gv.egovernment.moa.id.auth.data.AuthenticationSession;
+import at.gv.egovernment.moa.id.auth.data.AuthenticationSessionExtensions;
+import at.gv.egovernment.moa.id.auth.exception.AuthenticationException;
+import at.gv.egovernment.moa.id.auth.exception.BuildException;
+import at.gv.egovernment.moa.id.commons.api.IRequest;
+import at.gv.egovernment.moa.id.commons.db.dao.session.AuthenticatedSessionStore;
+import at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore;
+import at.gv.egovernment.moa.id.commons.db.dao.session.OASessionStore;
+import at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException;
+import at.gv.egovernment.moa.id.data.SLOInformationInterface;
+import at.gv.egovernment.moa.id.protocols.pvp2x.exceptions.AssertionAttributeExtractorExeption;
+import at.gv.egovernment.moa.id.protocols.pvp2x.utils.AssertionAttributeExtractor;
+
+/**
+ * @author tlenz
+ *
+ */
+public interface IAuthenticationSessionStoreage {
+
+	/**
+	 * Check if the stored MOASession is already authenticated
+	 * 
+	 * @param moaSessionID MOASession identifier
+	 * @return true if the MOASession is authenticated, otherwise false
+	 */
+	public boolean isAuthenticated(String moaSessionID);
+	
+	/**
+	 * Create a new MOASession
+	 * 
+	 * @param target Pending Request which is associated with this MOASession
+	 * @return MOASession object
+	 * @throws MOADatabaseException MOASession storage operation FAILED
+	 * @throws BuildException MOASession encryption FAILED
+	 */
+	public AuthenticationSession createSession(IRequest target) throws MOADatabaseException, BuildException;
+	
+	/**
+	 * Get a MOASession with sessionID
+	 * 
+	 * @param sessionID SessionID which corresponds to a MOASession
+	 * @return MOASession, or null if no session exists with this ID
+	 * @throws MOADatabaseException MOASession load operation FAILED
+	 */
+	public AuthenticationSession getSession(String sessionID) throws MOADatabaseException;
+	
+	/**
+	 * Get the session-data extension-object for a MOASession
+	 * 
+	 * @param sessionID SessionID which corresponds to a MOASession
+	 * @return AuthenticationSessionExtensions, or null if no session exists with this ID or extensionobject is null
+	 * @throws MOADatabaseException MOASession load operation FAILED
+	 */
+	public AuthenticationSessionExtensions getAuthenticationSessionExtensions(String sessionID) throws MOADatabaseException;
+	
+	/**
+	 * Store a session-data extension-object to MOASession
+	 * 
+	 * @param sessionID SessionID which corresponds to a MOASession
+	 * @param sessionExtensions AuthenticationSessionExtensions object
+	 * @throws MOADatabaseException MOASession storage operation FAILED
+	 */
+	public void setAuthenticationSessionExtensions(String sessionID, AuthenticationSessionExtensions sessionExtensions) throws MOADatabaseException;
+	
+	
+	/**
+	 * Store a MOASession
+	 * 
+	 * @param session MOASession which should be stored
+	 * @throws MOADatabaseException MOASession storage operation FAILED
+	 * @throws BuildException MOASession encryption FAILED
+	 */
+	public void storeSession(AuthenticationSession session) throws MOADatabaseException, BuildException;
+	
+	/**
+	 * Delete a MOASession
+	 * 
+	 * @param moaSessionID SessionID which corresponds to a MOASession
+	 * @throws MOADatabaseException MOASession delete operation FAILED
+	 */
+	public void destroySession(String moaSessionID) throws MOADatabaseException;
+	
+	
+	/**
+	 * Change the sessionID of a MOASession
+	 * 
+	 * @param session MOASession for which the sessionID should be changed
+	 * @param newSessionID new MOASessionID which should be used
+	 * @return new MOASessionID
+	 * @throws MOADatabaseException MOASession storage operation FAILED
+	 * @throws BuildException MOASession encryption/decryption FAILED
+	 */
+	public String changeSessionID(AuthenticationSession session, String newSessionID) throws BuildException, MOADatabaseException;
+	
+	/**
+	 * Change the sessionID of a MOASession
+	 * 
+	 * @param session MOASession for which the sessionID should be changed
+	 * @return new MOASessionID
+	 * @throws MOADatabaseException MOASession storage operation FAILED
+	 * @throws BuildException MOASession encryption/decryption FAILED
+	 */
+	public String changeSessionID(AuthenticationSession session) throws BuildException, MOADatabaseException;
+	
+	/**
+	 * Set the isAuthenticated flag to MOASession
+	 * 
+	 * @param moaSessionID SessionID which corresponds to a MOASession
+	 * @param isAuthenticated Is authenticated flag (true/false)
+	 */
+	public void setAuthenticated(String moaSessionID, boolean isAuthenticated);
+	
+	/**
+	 * Find the MOASessionId of an active Single Sign-On session
+	 * 
+	 * @param SSOSessionID Single Sign-On sessionID
+	 * @return MOASessionID of the associated MOASession
+	 */
+	public String getMOASessionSSOID(String SSOSessionID);
+	
+	/**
+	 * Check if a MOASession is an active Single Sign-On session
+	 * 
+	 * @param sessionID SessionID which corresponds to a MOASession
+	 * @return true, if the MOASession is a SSO session, otherwise false
+	 * @throws MOADatabaseException MOASession load operation FAILED
+	 */
+	public boolean isSSOSession(String sessionID) throws MOADatabaseException;
+	
+
+	/**
+	 * @param SSOId
+	 * @return
+	 */
+	public AuthenticatedSessionStore isValidSessionWithSSOID(String SSOId);
+	
+	/**
+	 * Add Single Sign-On processing information to a MOASession.
+	 * This processing information is required to execute a Single Log-Out process
+	 * 
+	 * @param moaSessionID SessionID which corresponds to a MOASession
+	 * @param SSOSessionID Single Sign-On sessionID
+	 * @param SLOInfo Data object with Single LogOut information
+	 * @param protocolRequest Protocol-request object of the authentication request 
+	 * @throws AuthenticationException Single Sign-On information store operation FAILED 
+	 */
+	public void addSSOInformation(String moaSessionID, String SSOSessionID, 
+			SLOInformationInterface SLOInfo, IRequest protocolRequest) throws AuthenticationException;
+	
+	
+	/**
+	 * Get all Single Sign-On authenticated Service-Provider of a MOASession
+	 * 
+	 * @param moaSession MOASession data object
+	 * @return List of Service-Provider information
+	 */
+	public List<OASessionStore> getAllActiveOAFromMOASession(AuthenticationSession moaSession);
+	
+	
+	/**
+	 * Get all active interfederation connections for a MOASession
+	 * 
+	 * @param moaSession MOASession data object
+	 * @return List of Interfederation-IDP information
+	 */
+	public List<InterfederationSessionStore> getAllActiveIDPsFromMOASession(AuthenticationSession moaSession);
+	
+	/**
+	 * Search a MOASession by using already transfered authentication information 
+	 * 
+	 * @param oaID Service-Provider identifier, which has received the authentication information
+	 * @param userNameID UserId (bPK), which was send to this Service-Provider
+	 * @return MOASession, or null if no corresponding MOASession is found
+	 */
+	public AuthenticationSession searchMOASessionWithNameIDandOAID(String oaID, String userNameID);
+	
+	/**
+	 * Search a active Single Sign-On session for a specific Service-Provider
+	 * 
+	 * @param moaSession MOASession data object
+	 * @param oaID Service-Provider identifier, which has received the authentication information
+	 * @param protocolType Authentication protocol, which was used for SSO from this Service-Provider
+	 * @return Internal Single Sign-On information for this Service-Provider
+	 */
+	public OASessionStore searchActiveOASSOSession(AuthenticationSession moaSession, String oaID, String protocolType);
+	
+	
+	/**
+	 * Search a active MOASession with a userID
+	 * 
+	 * @param nameID UserID (bPK)
+	 * @return MOASession, or null if no corresponding MOASession is found
+	 */
+	public AuthenticationSession getSessionWithUserNameID(String nameID);
+	
+	/**
+	 * Search an active federation IDP which could be used for federated Single Sign-On 
+	 * 
+	 * @param sessionID SessionID which corresponds to a MOASession
+	 * @return Information of the federated IDP, or null if no active federated IDP is found
+	 */
+	public InterfederationSessionStore searchInterfederatedIDPFORSSOWithMOASession(String sessionID);
+	
+	/**
+	 * Get information to an active federated IDP of MOASession
+	 * 
+	 * @param sessionID SessionID which corresponds to a MOASession
+	 * @param idpID Unique identifier of the federated IDP
+	 * @return Information of the federated IDP, or null if no active federated IDP is found
+	 */
+	public InterfederationSessionStore searchInterfederatedIDPFORSSOWithMOASessionIDPID(String sessionID, String idpID);
+	
+	
+	/**
+	 * Add information of the federated IDP to MOASession
+	 * 
+	 * @param req Pending request of the service-provider request, never null
+	 * @param idpEntityID The SAML2 EntityID of the federated IDP, never null
+	 * @param extractor <code>AssertionAttributeExtractor</code> which holds the SAML2 response of the federated IDP, never null 
+	 * @throws MOADatabaseException
+	 * @throws AssertionAttributeExtractorExeption
+	 * @throws BuildException
+	 */
+	public void addFederatedSessionInformation(IRequest req, String idpEntityID, AssertionAttributeExtractor extractor) throws MOADatabaseException, AssertionAttributeExtractorExeption, BuildException;
+	
+	/**
+	 * Search an active federation IDP which could be used for federated Single Sign-On by using an AttributeQuery
+	 * 
+	 * @param moaSessionID ID of a active MOASession
+	 * @return Information of the federated IDP, or null if no active federated IDP is found
+	 */
+	public InterfederationSessionStore searchInterfederatedIDPFORAttributeQueryWithSessionID(String moaSessionID);
+	
+	/**
+	 * Remove an active federation IDP from MOASession
+	 * 
+	 * @param entityID Unique identifier of the federated IDP
+	 * @param pedingRequestID 
+	 * @return true if the federated IDP could be remove, otherwise false
+	 */
+	@Deprecated
+	public boolean removeInterfederetedSession(String entityID, String pedingRequestID);
+	
+	/**
+	 * Clean all MOASessions which has a timeOut
+	 * 
+	 * @param now Current Time
+	 * @param authDataTimeOutCreated timeOut after MOASession is created [ms]
+	 * @param authDataTimeOutUpdated timeOut after MOASession is updated last time [ms] 
+	 */
+	public void clean(Date now, long authDataTimeOutCreated, long authDataTimeOutUpdated);
+}
+