From 5e0ac460325314322123b66cd317009a474cef7c Mon Sep 17 00:00:00 2001 From: Thomas Lenz Date: Wed, 5 Mar 2014 20:37:12 +0100 Subject: solve commit errors --- .../auth/src/main/webapp/META-INF/MANIFEST.MF | 2 + .../src/main/webapp/WEB-INF/server-config.wsdd | 29 +++ .../auth/src/main/webapp/WEB-INF/urlrewrite.xml | 81 +++++++ id/server/auth/src/main/webapp/WEB-INF/web.xml | 257 +++++++++++++++++++++ 4 files changed, 369 insertions(+) create mode 100644 id/server/auth/src/main/webapp/META-INF/MANIFEST.MF create mode 100644 id/server/auth/src/main/webapp/WEB-INF/server-config.wsdd create mode 100644 id/server/auth/src/main/webapp/WEB-INF/urlrewrite.xml create mode 100644 id/server/auth/src/main/webapp/WEB-INF/web.xml (limited to 'id/server/auth/src/main') diff --git a/id/server/auth/src/main/webapp/META-INF/MANIFEST.MF b/id/server/auth/src/main/webapp/META-INF/MANIFEST.MF new file mode 100644 index 000000000..58630c02e --- /dev/null +++ b/id/server/auth/src/main/webapp/META-INF/MANIFEST.MF @@ -0,0 +1,2 @@ +Manifest-Version: 1.0 + diff --git a/id/server/auth/src/main/webapp/WEB-INF/server-config.wsdd b/id/server/auth/src/main/webapp/WEB-INF/server-config.wsdd new file mode 100644 index 000000000..121ec3cf9 --- /dev/null +++ b/id/server/auth/src/main/webapp/WEB-INF/server-config.wsdd @@ -0,0 +1,29 @@ + + + + + + + + + urn:oasis:names:tc:SAML:1.0:protocol + + + /resources/wsdl/MOA-ID-1.x.wsdl + + + + + + + + + + + + + + diff --git a/id/server/auth/src/main/webapp/WEB-INF/urlrewrite.xml b/id/server/auth/src/main/webapp/WEB-INF/urlrewrite.xml new file mode 100644 index 000000000..2f17c7d98 --- /dev/null +++ b/id/server/auth/src/main/webapp/WEB-INF/urlrewrite.xml @@ -0,0 +1,81 @@ + + + + + + + + + The rule means that requests to /test/status/ will be redirected to + /rewrite-status + the url will be rewritten. + + /test/status/ + %{context-path}/rewrite-status + + + + + ^/StartAuthentication$ + /dispatcher?mod=id_saml1&action=GetArtifact + + + ^/StartAuthentication\?(.*)$ + /dispatcher?mod=id_saml1&action=GetArtifact&$1 + + + + ^/auth/([a-zA-Z0-9]+)/([a-zA-Z0-9]+)$ + /dispatcher?mod=$1&action=$2 + + + ^/auth/([a-zA-Z0-9]+)/([a-zA-Z0-9]+)\?(.*)$ + /dispatcher?mod=$1&action=$2&$3 + + + + + ^/pvp2/metadata$ + /dispatcher?mod=id_pvp2x&action=Metadata&%{query-string} + + + ^/pvp2/redirect$ + /dispatcher?mod=id_pvp2x&action=Redirect&%{query-string} + + + ^/pvp2/post$ + /dispatcher?mod=id_pvp2x&action=Post&%{query-string} + + + ^/PVP2Soap$ + /dispatcher?mod=id_pvp2x&action=Soap + + + + ^/oauth2/auth\\?(.*)$ + /dispatcher?mod=id_oauth20&action=AUTH&%{query-string} + + + ^/oauth2/token\\?(.*)$ + /dispatcher?mod=id_oauth20&action=TOKEN&%{query-string} + + + + + + The outbound-rule specifies that when response.encodeURL is called (if + you are using JSTL c:url) + the url /rewrite-status will be rewritten to /test/status/. + + The above rule and this outbound-rule means that end users should never + see the + url /rewrite-status only /test/status/ both in thier location bar and in + hyperlinks + in your pages. + + /rewrite-status + /test/status/ + + + diff --git a/id/server/auth/src/main/webapp/WEB-INF/web.xml b/id/server/auth/src/main/webapp/WEB-INF/web.xml new file mode 100644 index 000000000..0ef8a568c --- /dev/null +++ b/id/server/auth/src/main/webapp/WEB-INF/web.xml @@ -0,0 +1,257 @@ + + + + MOA ID Auth + MOA ID Authentication Service + + + GenerateIframeTemplate + GenerateIframeTemplate + Generate BKU Request template + at.gv.egovernment.moa.id.auth.servlet.GenerateIFrameTemplateServlet + + + RedirectServlet + RedirectServlet + at.gv.egovernment.moa.id.auth.servlet.RedirectServlet + + + MonitoringServlet + MonitoringServlet + at.gv.egovernment.moa.id.auth.servlet.MonitoringServlet + + + SSOSendAssertionServlet + SSOSendAssertionServlet + at.gv.egovernment.moa.id.auth.servlet.SSOSendAssertionServlet + + + LogOut + LogOut + SSO LogOut + at.gv.egovernment.moa.id.auth.servlet.LogOutServlet + 1 + + + VerifyIdentityLink + VerifyIdentityLink + Verify identity link coming from security layer + at.gv.egovernment.moa.id.auth.servlet.VerifyIdentityLinkServlet + + + VerifyCertificate + VerifyCertificate + Verify the certificate coming from security layer + at.gv.egovernment.moa.id.auth.servlet.VerifyCertificateServlet + + + GetMISSessionID + GetMISSessionID + Get the MIS session ID coming from security layer + at.gv.egovernment.moa.id.auth.servlet.GetMISSessionIDServlet + + + + GetForeignID + GetForeignID + Gets the foreign eID from security layer + at.gv.egovernment.moa.id.auth.servlet.GetForeignIDServlet + + + + VerifyAuthBlock + VerifyAuthBlock + Verify AUTH block coming from security layer + at.gv.egovernment.moa.id.auth.servlet.VerifyAuthenticationBlockServlet + + + + AxisServlet + Apache-Axis Servlet + org.apache.axis.transport.http.AxisServlet + + + + + jspservlet + org.apache.jasper.servlet.JspServlet + + + PEPSConnectorServlet + PEPSConnectorServlet + Servlet receiving STORK SAML Response Messages from + different C-PEPS + + at.gv.egovernment.moa.id.auth.servlet.PEPSConnectorServlet + + + + + DispatcherServlet + Dispatcher Servlet + at.gv.egovernment.moa.id.entrypoints.DispatcherServlet + 1 + + + + + at.gv.egovernment.moa.id.protocols.saml1.GetArtifactServlet + at.gv.egovernment.moa.id.protocols.saml1.GetArtifactServlet + + + + + + + DispatcherServlet + /dispatcher + + + + + + + + jspservlet + /errorpage-auth.jsp + + + + jspservlet + /message-auth.jsp + + + + + GenerateIframeTemplate + /GenerateIframeTemplate + + + RedirectServlet + /RedirectServlet + + + MonitoringServlet + /MonitoringServlet + + + SSOSendAssertionServlet + /SSOSendAssertionServlet + + + LogOut + /LogOut + + + VerifyIdentityLink + /VerifyIdentityLink + + + VerifyCertificate + /VerifyCertificate + + + GetMISSessionID + /GetMISSessionID + + + GetForeignID + /GetForeignID + + + + + + VerifyAuthBlock + /VerifyAuthBlock + + + + AxisServlet + /services/* + + + PEPSConnectorServlet + /PEPSConnector + + + + + + + UrlRewriteFilter + org.tuckey.web.filters.urlrewrite.UrlRewriteFilter + + + + UrlRewriteFilter + /* + + + + + 5 + + + 500 + /errorpage.jsp + + + + BASIC + UserDatabase + + + + The role that is required to log in to the moa Application + + moa-admin + + -- cgit v1.2.3