/* * Copyright 2014 Federal Chancellery Austria * MOA-ID has been developed in a cooperation between BRZ, the Federal * Chancellery Austria - ICT staff unit, and Graz University of Technology. * * Licensed under the EUPL, Version 1.1 or - as soon they will be approved by * the European Commission - subsequent versions of the EUPL (the "Licence"); * You may not use this work except in compliance with the Licence. * You may obtain a copy of the Licence at: * http://www.osor.eu/eupl/ * * Unless required by applicable law or agreed to in writing, software * distributed under the Licence is distributed on an "AS IS" basis, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the Licence for the specific language governing permissions and * limitations under the Licence. * * This product combines work with different licenses. See the "NOTICE" text * file for details on the various modules and licenses. * The "NOTICE" text file is part of the distribution. Any derivative works * that you distribute must include a readable copy of the "NOTICE" text file. */ package at.gv.egovernment.moa.id.configuration.auth.pvp2; import java.util.List; import javax.xml.namespace.QName; import org.opensaml.common.SignableSAMLObject; import org.opensaml.saml2.metadata.provider.HTTPMetadataProvider; import org.opensaml.ws.soap.soap11.Envelope; import org.opensaml.xml.XMLObject; import org.opensaml.xml.signature.SignatureTrustEngine; import at.gv.egiz.eaaf.modules.pvp2.impl.verification.AbstractRequestSignedSecurityPolicyRule; import at.gv.egovernment.moa.id.configuration.config.ConfigurationProvider; /** * @author tlenz * */ public class PVPSOAPRequestSecurityPolicy extends AbstractRequestSignedSecurityPolicyRule { /** * @param trustEngine * @param peerEntityRole */ public PVPSOAPRequestSecurityPolicy(SignatureTrustEngine trustEngine, QName peerEntityRole) { super(trustEngine, peerEntityRole); } /* (non-Javadoc) * @see at.gv.egovernment.moa.id.protocols.pvp2x.validation.AbstractRequestSignedSecurityPolicyRule#refreshMetadataProvider(java.lang.String) */ @Override protected boolean refreshMetadataProvider(String entityID) { try { HTTPMetadataProvider metadataProvider = ConfigurationProvider.getInstance().getMetaDataProvier(); metadataProvider.setRequireValidMetadata(true); metadataProvider.refresh(); return true; } catch (Exception e) { } return false; } /* (non-Javadoc) * @see at.gv.egovernment.moa.id.protocols.pvp2x.validation.AbstractRequestSignedSecurityPolicyRule#getSignedSAMLObject(org.opensaml.xml.XMLObject) */ @Override protected SignableSAMLObject getSignedSAMLObject(XMLObject inboundData) { if (inboundData instanceof Envelope) { Envelope envelope = (Envelope) inboundData; if (envelope.getBody() != null) { List xmlElemList = envelope.getBody().getUnknownXMLObjects(); if (!xmlElemList.isEmpty() && xmlElemList.get(0) instanceof SignableSAMLObject) return (SignableSAMLObject) xmlElemList.get(0); } } return null; } }