From 0dedfd784b7be0e91fc4690271e8dfcde41eea02 Mon Sep 17 00:00:00 2001
From: Thomas Lenz <tlenz@iaik.tugraz.at>
Date: Thu, 17 Apr 2014 12:57:32 +0200
Subject: move TimeOut check to get operation

---
 .../moa/id/storage/AssertionStorage.java           | 28 +++++++++++++++++++++-
 1 file changed, 27 insertions(+), 1 deletion(-)

(limited to 'id/server/idserverlib/src')

diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/storage/AssertionStorage.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/storage/AssertionStorage.java
index 6d8979da3..77cd23b60 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/storage/AssertionStorage.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/storage/AssertionStorage.java
@@ -31,9 +31,11 @@ import org.hibernate.HibernateException;
 import org.hibernate.Query;
 import org.hibernate.Session;
 
+import at.gv.egovernment.moa.id.auth.exception.AuthenticationException;
 import at.gv.egovernment.moa.id.commons.db.MOASessionDBUtils;
 import at.gv.egovernment.moa.id.commons.db.dao.session.AssertionStore;
 import at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException;
+import at.gv.egovernment.moa.id.data.AuthenticationData;
 import at.gv.egovernment.moa.logging.Logger;
 import at.gv.egovernment.moa.util.MiscUtil;
 
@@ -82,10 +84,34 @@ public class AssertionStorage {
 		
 	}
 	 
-	public <T> T get(String artifact, final Class<T> clazz) throws MOADatabaseException {
+	
+	/**
+	 * @param samlArtifact
+	 * @param class1
+	 * @param authdatatimeout
+	 * @return
+	 * @throws MOADatabaseException 
+	 * @throws AuthenticationException 
+	 */
+	public <T> T get(String samlArtifact,
+			final Class<T> clazz) throws MOADatabaseException, AuthenticationException {
+
+		return get(samlArtifact, clazz, -1);
+	}
+	
+	public <T> T get(String artifact, final Class<T> clazz, long authdatatimeout) throws MOADatabaseException, AuthenticationException {
 	 
 	  AssertionStore element = searchInDatabase(artifact);
 	  
+	  if (authdatatimeout > -1) {
+		  //check timeout
+			long now = new Date().getTime();
+			
+			if (now - element.getDatatime().getTime() > authdatatimeout)
+				throw new AuthenticationException("1207", new Object[] { artifact });		  
+	  }
+	  
+	  
 	  //Deserialize Assertion
 	  Object data = SerializationUtils.deserialize(element.getAssertion());
 	  
-- 
cgit v1.2.3