package at.gv.egovernment.moa.id.protocols.pvp2x.binding;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.opensaml.common.SAMLObject;
import org.opensaml.common.binding.BasicSAMLMessageContext;
import org.opensaml.common.xml.SAMLConstants;
import org.opensaml.saml2.binding.encoding.HTTPSOAP11Encoder;
import org.opensaml.saml2.core.RequestAbstractType;
import org.opensaml.saml2.core.StatusResponseType;
import org.opensaml.ws.message.decoder.MessageDecodingException;
import org.opensaml.ws.message.encoder.MessageEncodingException;
import org.opensaml.ws.soap.soap11.decoder.http.HTTPSOAP11Decoder;
import org.opensaml.ws.transport.http.HttpServletRequestAdapter;
import org.opensaml.ws.transport.http.HttpServletResponseAdapter;
import org.opensaml.xml.security.SecurityException;
import org.opensaml.xml.security.credential.Credential;

import at.gv.egovernment.moa.id.protocols.pvp2x.PVP2XProtocol;
import at.gv.egovernment.moa.id.protocols.pvp2x.exceptions.BindingNotSupportedException;
import at.gv.egovernment.moa.id.protocols.pvp2x.exceptions.PVP2Exception;
import at.gv.egovernment.moa.id.protocols.pvp2x.signer.CredentialProvider;
import at.gv.egovernment.moa.id.protocols.pvp2x.signer.CredentialsNotAvailableException;

public class SoapBinding implements IDecoder, IEncoder {

	public MOARequest decodeRequest(HttpServletRequest req,
			HttpServletResponse resp) throws MessageDecodingException,
			SecurityException, PVP2Exception {
		HTTPSOAP11Decoder soapDecoder = new HTTPSOAP11Decoder();
		BasicSAMLMessageContext<RequestAbstractType, ?, ?> messageContext = 
				new BasicSAMLMessageContext<RequestAbstractType, SAMLObject, SAMLObject>();
		messageContext
				.setInboundMessageTransport(new HttpServletRequestAdapter(
						req));
		soapDecoder.decode(messageContext);

		RequestAbstractType inboundMessage = (RequestAbstractType) messageContext
				.getInboundMessage();
		
		MOARequest request = new MOARequest(inboundMessage);
		
		return request;
	}

	public MOAResponse decodeRespone(HttpServletRequest req,
			HttpServletResponse resp) throws MessageDecodingException,
			SecurityException, PVP2Exception {
		throw new BindingNotSupportedException(SAMLConstants.SAML2_SOAP11_BINDING_URI + " response");
	}

	public boolean handleDecode(String action, HttpServletRequest req) {
		return (action.equals(PVP2XProtocol.SOAP));
	}

	public void encodeRequest(HttpServletRequest req, HttpServletResponse resp,
			RequestAbstractType request, String targetLocation)
			throws MessageEncodingException, SecurityException, PVP2Exception {
		
	}

	public void encodeRespone(HttpServletRequest req, HttpServletResponse resp,
			StatusResponseType response, String targetLocation)
			throws MessageEncodingException, SecurityException, PVP2Exception {
		try {
			Credential credentials = CredentialProvider
					.getIDPAssertionSigningCredential();
			
			HTTPSOAP11Encoder encoder = new HTTPSOAP11Encoder();
			HttpServletResponseAdapter responseAdapter = new HttpServletResponseAdapter(
					resp, true);
			BasicSAMLMessageContext<SAMLObject, SAMLObject, SAMLObject> context = new BasicSAMLMessageContext<SAMLObject, SAMLObject, SAMLObject>();
			context.setOutboundSAMLMessageSigningCredential(credentials);
			context.setOutboundSAMLMessage(response);
			context.setOutboundMessageTransport(responseAdapter);
			
			encoder.encode(context);
		} catch (CredentialsNotAvailableException e) {
			e.printStackTrace();
			throw new SecurityException(e);
		}
	}

}