/*******************************************************************************
 * Copyright 2014 Federal Chancellery Austria
 * MOA-ID has been developed in a cooperation between BRZ, the Federal
 * Chancellery Austria - ICT staff unit, and Graz University of Technology.
 *
 * Licensed under the EUPL, Version 1.1 or - as soon they will be approved by
 * the European Commission - subsequent versions of the EUPL (the "Licence");
 * You may not use this work except in compliance with the Licence.
 * You may obtain a copy of the Licence at:
 * http://www.osor.eu/eupl/
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the Licence is distributed on an "AS IS" basis,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the Licence for the specific language governing permissions and
 * limitations under the Licence.
 *
 * This product combines work with different licenses. See the "NOTICE" text
 * file for details on the various modules and licenses.
 * The "NOTICE" text file is part of the distribution. Any derivative works
 * that you distribute must include a readable copy of the "NOTICE" text file.
 *******************************************************************************/
package at.gv.egovernment.moa.id.protocols.pvp2x.validation;

import org.opensaml.common.SignableSAMLObject;
import org.opensaml.saml2.core.RequestAbstractType;
import org.opensaml.security.SAMLSignatureProfileValidator;
import org.opensaml.xml.validation.ValidationException;

import at.gv.egiz.eaaf.core.exceptions.EAAFException;
import at.gv.egiz.eaaf.modules.pvp2.api.validation.ISAMLValidator;
import at.gv.egiz.eaaf.modules.pvp2.idp.exception.SAMLRequestNotSignedException;

public class SAMLSignatureValidator implements ISAMLValidator {

	public void validateRequest(RequestAbstractType request)
			throws EAAFException {
		if (request.getSignature() == null) {
			throw new SAMLRequestNotSignedException();
		}

		try {
			SAMLSignatureProfileValidator sigValidator = new SAMLSignatureProfileValidator();
			sigValidator.validate(request.getSignature());
		} catch (ValidationException e) {
			e.printStackTrace();
			throw new SAMLRequestNotSignedException(e);
		}
	}

	public static void validateSignable(SignableSAMLObject signableObject)
			throws EAAFException {
		if (signableObject.getSignature() == null) {
			throw new SAMLRequestNotSignedException();
		}

		try {
			SAMLSignatureProfileValidator sigValidator = new SAMLSignatureProfileValidator();
			sigValidator.validate(signableObject.getSignature());
		} catch (ValidationException e) {
			e.printStackTrace();
			throw new SAMLRequestNotSignedException(e);
		}
	}
}