diff options
Diffstat (limited to 'id/server/idserverlib')
12 files changed, 143 insertions, 24 deletions
| diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java index 36390ba62..d5fc90023 100644 --- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java +++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java @@ -74,7 +74,7 @@ public abstract class AbstractController extends MOAIDAuthConstants {  	private static final String HTMLTEMPLATESDIR = "htmlTemplates/";  	private static final String HTMLTEMPLATEFULL = "error_message.html"; -	private static String CONTEXTPATH = "#CONTEXTPATH#"; +	private static String CONTEXTPATH = "contextPath";  	@Autowired protected StatisticLogger statisticLogger;  	@Autowired protected IRequestStorage requestStorage; diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/GUILayoutBuilderServlet.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/GUILayoutBuilderServlet.java index 1d9a57b48..3f9093a21 100644 --- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/GUILayoutBuilderServlet.java +++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/GUILayoutBuilderServlet.java @@ -103,19 +103,21 @@ public class GUILayoutBuilderServlet extends AbstractController {  	}  	private IRequest extractPendingRequest(HttpServletRequest req) { -		try { -			String authURL = HTTPUtils.extractAuthURLFromRequest(req);		 +		try {		  			String pendingReqID = StringEscapeUtils.escapeHtml(  					req.getParameter(MOAIDAuthConstants.PARAM_TARGET_PENDINGREQUESTID)); -			if (MiscUtil.isNotEmpty(pendingReqID) && authConfig.getPublicURLPrefix().contains(authURL)) {		 +			if (MiscUtil.isNotEmpty(pendingReqID)) {		  				IRequest pendingReq = requestStorage.getPendingRequest(pendingReqID); -				if (pendingReq != null) +				if (pendingReq != null) { +					Logger.trace("GUI-Layout builder: Pending-request:" +							+ pendingReqID + " found -> Build specific template");  					return pendingReq; -			 +					 +				}			  			} -			Logger.info("Prohibit GUI-Layout builder-request. No pending-request or wrong auth-URL."); +			Logger.trace("GUI-Layout builder: No pending-request found -> Use default templates");  		} catch (Exception e) {  			Logger.warn("GUI-Layout builder-servlet has an error during request-preprocessing.", e); diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/IDPSingleLogOutServlet.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/IDPSingleLogOutServlet.java index 427bb9464..9397f1132 100644 --- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/IDPSingleLogOutServlet.java +++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/IDPSingleLogOutServlet.java @@ -111,10 +111,8 @@ public class IDPSingleLogOutServlet extends AbstractController {  				else  					context.put("errorMsg",   							MOAIDMessageProvider.getInstance().getMessage("slo.01", null)); - -				context.put(SSOManager.CONTEXTPATH, authURL); -				ssoManager.printSingleLogOutInfo(context, resp);				 +				ssoManager.printSingleLogOutInfo(context, resp, authURL);				  			} catch (MOAIDException e) {  				handleErrorNoRedirect(e, req, resp, false); @@ -209,7 +207,7 @@ public class IDPSingleLogOutServlet extends AbstractController {  							MOAIDMessageProvider.getInstance().getMessage("slo.01", null));  					try { -						ssoManager.printSingleLogOutInfo(context, resp); +						ssoManager.printSingleLogOutInfo(context, resp, authURL);  					} catch (MOAIDException e) {  						e.printStackTrace(); @@ -223,7 +221,7 @@ public class IDPSingleLogOutServlet extends AbstractController {  		context.put("successMsg",  				MOAIDMessageProvider.getInstance().getMessage("slo.02", null));  		try {			 -			ssoManager.printSingleLogOutInfo(context, resp); +			ssoManager.printSingleLogOutInfo(context, resp, authURL);  		} catch (MOAIDException e) {  			e.printStackTrace(); diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/data/Pair.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/data/Pair.java new file mode 100644 index 000000000..0b46345d3 --- /dev/null +++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/data/Pair.java @@ -0,0 +1,45 @@ +/******************************************************************************* + * Copyright 2014 Federal Chancellery Austria + * MOA-ID has been developed in a cooperation between BRZ, the Federal + * Chancellery Austria - ICT staff unit, and Graz University of Technology. + * + * Licensed under the EUPL, Version 1.1 or - as soon they will be approved by + * the European Commission - subsequent versions of the EUPL (the "Licence"); + * You may not use this work except in compliance with the Licence. + * You may obtain a copy of the Licence at: + * http://www.osor.eu/eupl/ + * + * Unless required by applicable law or agreed to in writing, software + * distributed under the Licence is distributed on an "AS IS" basis, + * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + * See the Licence for the specific language governing permissions and + * limitations under the Licence. + * + * This product combines work with different licenses. See the "NOTICE" text + * file for details on the various modules and licenses. + * The "NOTICE" text file is part of the distribution. Any derivative works + * that you distribute must include a readable copy of the "NOTICE" text file. + *******************************************************************************/ +package at.gv.egovernment.moa.id.data; + +public class Pair<P1, P2> { +	private final P1 first; +	private final P2 second; +	 +	private Pair(final P1 newFirst, final P2 newSecond) { +		this.first = newFirst; +		this.second = newSecond; +	} +	 +	public P1 getFirst() { +		return this.first; +	} +	 +	public P2 getSecond() { +		return this.second; +	} +	 +	public static <P1, P2> Pair<P1, P2> newInstance(final P1 newFirst, final P2 newSecond) { +		return new Pair<P1, P2>(newFirst, newSecond); +	} +} diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java index 73d682c21..a97486097 100644 --- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java +++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java @@ -554,8 +554,7 @@ public class AuthenticationManager extends MOAIDAuthConstants {  		        context.put("redirectURLs", sloReqList);  		        context.put("timeoutURL", timeOutURL);  		        context.put("timeout", SLOTIMEOUT); -		        context.put(SSOManager.CONTEXTPATH, authURL); -		        ssoManager.printSingleLogOutInfo(context, httpResp); +		        ssoManager.printSingleLogOutInfo(context, httpResp, authURL);  			} else { @@ -575,7 +574,7 @@ public class AuthenticationManager extends MOAIDAuthConstants {  			        else  			        	context.put("errorMsg",   			        			MOAIDMessageProvider.getInstance().getMessage("slo.01", null)); -			        ssoManager.printSingleLogOutInfo(context, httpResp); +			        ssoManager.printSingleLogOutInfo(context, httpResp, authURL);  				} @@ -593,7 +592,7 @@ public class AuthenticationManager extends MOAIDAuthConstants {  		        VelocityContext context = new VelocityContext();  	        	context.put("errorMsg",   	        			MOAIDMessageProvider.getInstance().getMessage("slo.01", null)); -		        ssoManager.printSingleLogOutInfo(context, httpResp); +		        ssoManager.printSingleLogOutInfo(context, httpResp, authURL);  			} diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/SSOManager.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/SSOManager.java index 856410d7b..3b7c99d5a 100644 --- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/SSOManager.java +++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/SSOManager.java @@ -64,7 +64,7 @@ import at.gv.egovernment.moa.util.MiscUtil;  public class SSOManager {	  	private static final String HTMLTEMPLATESDIR = "htmlTemplates/";  	private static final String HTMLTEMPLATEFULL = "slo_template.html"; -	public static String CONTEXTPATH = "#CONTEXTPATH#"; +	public static String CONTEXTPATH = "contextPath";  	private static final String SSOCOOKIE = "MOA_ID_SSO";  	private static final String SSOINTERFEDERATION = "MOA_INTERFEDERATION_SSO"; @@ -313,9 +313,10 @@ public class SSOManager {  	} -	public void printSingleLogOutInfo(VelocityContext context, HttpServletResponse httpResp) throws MOAIDException {		 +	public void printSingleLogOutInfo(VelocityContext context, HttpServletResponse httpResp, String authURL) throws MOAIDException {		  		try {			  			Logger.trace("Initialize VelocityEngine..."); +			context.put(CONTEXTPATH, authURL);  			InputStream is = null;  			String pathLocation = null; @@ -362,7 +363,7 @@ public class SSOManager {  		BufferedReader reader = new BufferedReader(new InputStreamReader(is ));  		//set default elements to velocity context -		context.put("contextpath", authConfig.getPublicURLPrefix()); +		//context.put(CONTEXTPATH, authConfig.getPublicURLPrefix());  		StringWriter writer = new StringWriter();			  		//velocityEngine.evaluate(context, writer, "SLO_Template", reader);			 diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/ProtocolFinalizationController.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/ProtocolFinalizationController.java index a9fc994ec..0ab630dc2 100644 --- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/ProtocolFinalizationController.java +++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/ProtocolFinalizationController.java @@ -67,10 +67,12 @@ public class ProtocolFinalizationController extends AbstractAuthProtocolModulCon  			try {				  				//load stored exception from database  				Throwable throwable = transactionStorage.get(errorid, Throwable.class); -				transactionStorage.remove(errorid); -							 +				  				if (throwable != null) {					 -					if (pendingReq != null) { +					//remove exception if it was found +					transactionStorage.remove(errorid); +					 +					if (pendingReq != null) {						  						revisionsLogger.logEvent(pendingReq, MOAIDEventConstants.TRANSACTION_ERROR);  						//build protocol-specific error message if possible diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/builder/attributes/HolderOfKey.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/builder/attributes/HolderOfKey.java new file mode 100644 index 000000000..4def39d54 --- /dev/null +++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/builder/attributes/HolderOfKey.java @@ -0,0 +1,67 @@ +/******************************************************************************* + * Copyright 2014 Federal Chancellery Austria + * MOA-ID has been developed in a cooperation between BRZ, the Federal + * Chancellery Austria - ICT staff unit, and Graz University of Technology. + * + * Licensed under the EUPL, Version 1.1 or - as soon they will be approved by + * the European Commission - subsequent versions of the EUPL (the "Licence"); + * You may not use this work except in compliance with the Licence. + * You may obtain a copy of the Licence at: + * http://www.osor.eu/eupl/ + * + * Unless required by applicable law or agreed to in writing, software + * distributed under the Licence is distributed on an "AS IS" basis, + * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + * See the Licence for the specific language governing permissions and + * limitations under the Licence. + * + * This product combines work with different licenses. See the "NOTICE" text + * file for details on the various modules and licenses. + * The "NOTICE" text file is part of the distribution. Any derivative works + * that you distribute must include a readable copy of the "NOTICE" text file. + *******************************************************************************/ +package at.gv.egovernment.moa.id.protocols.builder.attributes; + +import java.io.IOException; + +import at.gv.egovernment.moa.id.auth.MOAIDAuthConstants; +import at.gv.egovernment.moa.id.config.auth.IOAAuthParameters; +import at.gv.egovernment.moa.id.data.IAuthData; +import at.gv.egovernment.moa.id.protocols.pvp2x.builder.attributes.exceptions.AttributeException; +import at.gv.egovernment.moa.id.protocols.pvp2x.builder.attributes.exceptions.UnavailableAttributeException; +import at.gv.egovernment.moa.logging.Logger; +import at.gv.egovernment.moa.util.Base64Utils; + +public class HolderOfKey implements IPVPAttributeBuilder { +	 +	public String getName() { +		return PVP_HOLDEROFKEY_NAME; +	} +	 +	public <ATT> ATT build(IOAAuthParameters oaParam, IAuthData authData, +			IAttributeGenerator<ATT> g) throws AttributeException { +		 +		try { +			byte[] certEncoded = authData.getGenericData( +					MOAIDAuthConstants.MOASESSION_DATA_HOLDEROFKEY_CERTIFICATE,  +					byte[].class); +			 +			if (certEncoded != null) { +				return g.buildStringAttribute(PVP_HOLDEROFKEY_FRIENDLY_NAME, PVP_HOLDEROFKEY_NAME, +						Base64Utils.encode(certEncoded)); +				 +			} +			 +		} +		catch (IOException e) { +			Logger.info("Encode AuthBlock BASE64 failed."); +		} +		throw new UnavailableAttributeException(PVP_HOLDEROFKEY_NAME); +		 +	} +	 +	public <ATT> ATT buildEmpty(IAttributeGenerator<ATT> g) { +		return g.buildEmptyAttribute(PVP_HOLDEROFKEY_NAME, PVP_HOLDEROFKEY_NAME); +	} +	 +} diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/pvp2x/PVPConstants.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/pvp2x/PVPConstants.java index dc0cab8c3..1d2754e3f 100644 --- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/pvp2x/PVPConstants.java +++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/pvp2x/PVPConstants.java @@ -274,4 +274,8 @@ public interface PVPConstants {  	public static final String CHARGE_CODE_NAME = URN_OID_PREFIX + CHARGE_CODE_OID;  	public static final String CHARGE_CODE_FRIENDLY_NAME = "CHARGE-CODE";  	public static final int CHARGE_CODE_MAX_LENGTH = 32767; +	 +	public static final String PVP_HOLDEROFKEY_OID = "1.2.40.0.10.2.1.1.261.xx.xx"; +	public static final String PVP_HOLDEROFKEY_NAME = URN_OID_PREFIX + PVP_VERSION_OID; +	public static final String PVP_HOLDEROFKEY_FRIENDLY_NAME = "HOLDER-OF-KEY-CERTIFICATE";  } diff --git a/id/server/idserverlib/src/main/resources/META-INF/services/at.gv.egovernment.moa.id.protocols.builder.attributes.IAttributeBuilder b/id/server/idserverlib/src/main/resources/META-INF/services/at.gv.egovernment.moa.id.protocols.builder.attributes.IAttributeBuilder index bb98bcc6f..8e5d6ee3c 100644 --- a/id/server/idserverlib/src/main/resources/META-INF/services/at.gv.egovernment.moa.id.protocols.builder.attributes.IAttributeBuilder +++ b/id/server/idserverlib/src/main/resources/META-INF/services/at.gv.egovernment.moa.id.protocols.builder.attributes.IAttributeBuilder @@ -28,3 +28,4 @@ at.gv.egovernment.moa.id.protocols.builder.attributes.MandateReferenceValueAttri  at.gv.egovernment.moa.id.protocols.builder.attributes.MandateTypeAttributeBuilder  at.gv.egovernment.moa.id.protocols.builder.attributes.PrincipalNameAttributeBuilder  at.gv.egovernment.moa.id.protocols.builder.attributes.PVPVersionAttributeBuilder +at.gv.egovernment.moa.id.protocols.builder.attributes.HolderOfKey diff --git a/id/server/idserverlib/src/main/resources/resources/templates/error_message.html b/id/server/idserverlib/src/main/resources/resources/templates/error_message.html index 6cc8b99e2..4fd4d63cd 100644 --- a/id/server/idserverlib/src/main/resources/resources/templates/error_message.html +++ b/id/server/idserverlib/src/main/resources/resources/templates/error_message.html @@ -1,7 +1,7 @@  <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">  <head>    <meta content="text/html; charset=utf-8" http-equiv="Content-Type"> -  <link rel="stylesheet" href="#CONTEXTPATH#/css/buildCSS" /> +  <link rel="stylesheet" href="$contextPath/css/buildCSS" />    <title>An error arise ...  </title>  </head> diff --git a/id/server/idserverlib/src/main/resources/resources/templates/slo_template.html b/id/server/idserverlib/src/main/resources/resources/templates/slo_template.html index 220dd980a..b3eb18082 100644 --- a/id/server/idserverlib/src/main/resources/resources/templates/slo_template.html +++ b/id/server/idserverlib/src/main/resources/resources/templates/slo_template.html @@ -3,7 +3,7 @@    <meta content="text/html; charset=utf-8" http-equiv="Content-Type">     <!-- MOA-ID 2.x BKUSelection Layout CSS -->                -  <link rel="stylesheet" href="#CONTEXTPATH#/css/buildCSS" /> +  <link rel="stylesheet" href="$contextPath/css/buildCSS" />  	#if($timeoutURL)  		<script type="text/javascript"> | 
