From 0436de6184c1a95d463da52929e3bf60923d6e04 Mon Sep 17 00:00:00 2001
From: Thomas Lenz <thomas.lenz@egiz.gv.at>
Date: Mon, 13 Dec 2021 09:23:09 +0100
Subject: update third-party libs and resolve API issues

---
 .../auth/pvp2/servlets/SLOBackChannelServlet.java  | 203 +++++++++++----------
 1 file changed, 104 insertions(+), 99 deletions(-)

(limited to 'id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/auth/pvp2/servlets/SLOBackChannelServlet.java')

diff --git a/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/auth/pvp2/servlets/SLOBackChannelServlet.java b/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/auth/pvp2/servlets/SLOBackChannelServlet.java
index f2c95f391..01bf39696 100644
--- a/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/auth/pvp2/servlets/SLOBackChannelServlet.java
+++ b/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/auth/pvp2/servlets/SLOBackChannelServlet.java
@@ -64,111 +64,116 @@ import at.gv.egovernment.moa.id.configuration.auth.pvp2.PVP2Utils;
  */
 public class SLOBackChannelServlet extends SLOBasicServlet {
 
-	private static final long serialVersionUID = 1481623547633064922L;
-	private static final Logger log = LoggerFactory
-			.getLogger(SLOBackChannelServlet.class);
-	
-	/**
-	 * @throws ConfigurationException
-	 */
-	public SLOBackChannelServlet() throws ConfigurationException {
-		super();
-	}
-
-
-	protected void doPost(HttpServletRequest request,
-			HttpServletResponse response) throws ServletException, IOException {
-		
-		try {
-			HTTPSOAP11Decoder soapDecoder = new HTTPSOAP11Decoder(new BasicParserPool());
-			
-			BasicSOAPMessageContext messageContext = new BasicSOAPMessageContext();
-			
-//			BasicSAMLMessageContext<SAMLObject, ?, ?> messageContext = 
+  private static final long serialVersionUID = 1481623547633064922L;
+  private static final Logger log = LoggerFactory
+      .getLogger(SLOBackChannelServlet.class);
+
+  /**
+   * @throws ConfigurationException
+   */
+  public SLOBackChannelServlet() throws ConfigurationException {
+    super();
+  }
+
+  @Override
+  protected void doPost(HttpServletRequest request,
+      HttpServletResponse response) throws ServletException, IOException {
+
+    try {
+      final HTTPSOAP11Decoder soapDecoder = new HTTPSOAP11Decoder(new BasicParserPool());
+
+      final BasicSOAPMessageContext messageContext = new BasicSOAPMessageContext();
+
+//			BasicSAMLMessageContext<SAMLObject, ?, ?> messageContext =
 //					new BasicSAMLMessageContext<SAMLObject, SAMLObject, SAMLObject>();
-			
-			messageContext.setInboundMessageTransport(new HttpServletRequestAdapter(request));
 
-			//messageContext.setMetadataProvider(getConfig().getMetaDataProvier());
-			
-			//set trustPolicy
+      messageContext.setInboundMessageTransport(new HttpServletRequestAdapter(request));
+
+      // messageContext.setMetadataProvider(getConfig().getMetaDataProvier());
+
+      // set trustPolicy
 //			BasicSecurityPolicy policy = new BasicSecurityPolicy();
 //			policy.getPolicyRules().add(
 //					new PVPSOAPRequestSecurityPolicy(
 //							PVP2Utils.getTrustEngine(getConfig()),
-//							IDPSSODescriptor.DEFAULT_ELEMENT_NAME));		
+//							IDPSSODescriptor.DEFAULT_ELEMENT_NAME));
 //			SecurityPolicyResolver resolver = new StaticSecurityPolicyResolver(
-//					policy);			
+//					policy);
 //			messageContext.setSecurityPolicyResolver(resolver);
-			
-			soapDecoder.decode(messageContext);
-		 
-			Envelope inboundMessage = (Envelope) messageContext
-					.getInboundMessage();
-			
-			LogoutResponse sloResp = null;
-			
-			if (inboundMessage.getBody() != null) {		
-				List<XMLObject> xmlElemList = inboundMessage.getBody().getUnknownXMLObjects();
-						
-				if (!xmlElemList.isEmpty() && xmlElemList.get(0) instanceof LogoutRequest) {
-					LogoutRequest sloReq = (LogoutRequest) xmlElemList.get(0);
-					
-					//validate request signature
-					PVP2Utils.validateSignature(sloReq, getConfig());
-					
-					sloResp = processLogOutRequest(sloReq, request);
-
-					KeyStore keyStore = getConfig().getPVP2KeyStore();
-					X509Credential authcredential = new KeyStoreX509CredentialAdapter(
-							keyStore, 
-							getConfig().getPVP2KeystoreAuthRequestKeyAlias(), 
-							getConfig().getPVP2KeystoreAuthRequestKeyPassword().toCharArray());
-					
-					HTTPSOAP11Encoder encoder = new HTTPSOAP11Encoder();
-					HttpServletResponseAdapter responseAdapter = new HttpServletResponseAdapter(
-							response, true);
-					BasicSAMLMessageContext<SAMLObject, SAMLObject, SAMLObject> context = new BasicSAMLMessageContext<SAMLObject, SAMLObject, SAMLObject>();
-					context.setOutboundSAMLMessageSigningCredential(authcredential);
-					context.setOutboundSAMLMessage(sloResp);
-					context.setOutboundMessageTransport(responseAdapter);
-					
-					encoder.encode(context);
-					
-				} else {
-					log.warn("Received request ist not of type LogOutRequest");
-					response.setStatus(HttpServletResponse.SC_BAD_REQUEST);
-					return;
-					
-				}
-			}
-		
-		} catch (MessageDecodingException | SecurityException | NoSuchAlgorithmException | ConfigurationException | ValidationException e) {
-			log.error("SLO message processing FAILED." , e);			
-			response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, StringEscapeUtils.escapeHtml(e.getMessage()));
-			
-		} catch (CertificateException e) {
-			log.error("SLO message processing FAILED." , e);
-			response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, StringEscapeUtils.escapeHtml(e.getMessage()));
-			
-		} catch (KeyStoreException e) {
-			log.error("SLO message processing FAILED." , e);
-			response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, StringEscapeUtils.escapeHtml(e.getMessage()));
-			
-		} catch (MessageEncodingException e) {
-			log.error("SLO message processing FAILED." , e);
-			response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, StringEscapeUtils.escapeHtml(e.getMessage()));
-			
-		}
-		
-		
-		
-	}
-	
-	protected void doGet(HttpServletRequest request,
-			HttpServletResponse response) throws ServletException, IOException {		
-		response.setStatus(HttpServletResponse.SC_NOT_FOUND);
-				
-	}
-	
+
+      soapDecoder.decode(messageContext);
+
+      final Envelope inboundMessage = (Envelope) messageContext
+          .getInboundMessage();
+
+      LogoutResponse sloResp = null;
+
+      if (inboundMessage.getBody() != null) {
+        final List<XMLObject> xmlElemList = inboundMessage.getBody().getUnknownXMLObjects();
+
+        if (!xmlElemList.isEmpty() && xmlElemList.get(0) instanceof LogoutRequest) {
+          final LogoutRequest sloReq = (LogoutRequest) xmlElemList.get(0);
+
+          // validate request signature
+          PVP2Utils.validateSignature(sloReq, getConfig());
+
+          sloResp = processLogOutRequest(sloReq, request);
+
+          final KeyStore keyStore = getConfig().getPVP2KeyStore();
+          final X509Credential authcredential = new KeyStoreX509CredentialAdapter(
+              keyStore,
+              getConfig().getPVP2KeystoreAuthRequestKeyAlias(),
+              getConfig().getPVP2KeystoreAuthRequestKeyPassword().toCharArray());
+
+          final HTTPSOAP11Encoder encoder = new HTTPSOAP11Encoder();
+          final HttpServletResponseAdapter responseAdapter = new HttpServletResponseAdapter(
+              response, true);
+          final BasicSAMLMessageContext<SAMLObject, SAMLObject, SAMLObject> context =
+              new BasicSAMLMessageContext<>();
+          context.setOutboundSAMLMessageSigningCredential(authcredential);
+          context.setOutboundSAMLMessage(sloResp);
+          context.setOutboundMessageTransport(responseAdapter);
+
+          encoder.encode(context);
+
+        } else {
+          log.warn("Received request ist not of type LogOutRequest");
+          response.setStatus(HttpServletResponse.SC_BAD_REQUEST);
+          return;
+
+        }
+      }
+
+    } catch (MessageDecodingException | SecurityException | NoSuchAlgorithmException | ConfigurationException
+        | ValidationException e) {
+      log.error("SLO message processing FAILED.", e);
+      response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, StringEscapeUtils.escapeHtml(e
+          .getMessage()));
+
+    } catch (final CertificateException e) {
+      log.error("SLO message processing FAILED.", e);
+      response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, StringEscapeUtils.escapeHtml(e
+          .getMessage()));
+
+    } catch (final KeyStoreException e) {
+      log.error("SLO message processing FAILED.", e);
+      response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, StringEscapeUtils.escapeHtml(e
+          .getMessage()));
+
+    } catch (final MessageEncodingException e) {
+      log.error("SLO message processing FAILED.", e);
+      response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, StringEscapeUtils.escapeHtml(e
+          .getMessage()));
+
+    }
+
+  }
+
+  @Override
+  protected void doGet(HttpServletRequest request,
+      HttpServletResponse response) throws ServletException, IOException {
+    response.setStatus(HttpServletResponse.SC_NOT_FOUND);
+
+  }
+
 }
-- 
cgit v1.2.3