| <?xml version="1.0" encoding="UTF-8"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" lang="en"><head><meta http-equiv="Content-Type" content="text/html;charset=UTF-8"/><link rel="stylesheet" href="../.resources/report.css" type="text/css"/><link rel="shortcut icon" href="../.resources/report.gif" type="image/gif"/><title>SAMLTokenIssuerConfig.java</title><link rel="stylesheet" href="../.resources/prettify.css" type="text/css"/><script type="text/javascript" src="../.resources/prettify.js"></script></head><body onload="window['PR_TAB_WIDTH']=4;prettyPrint()"><div class="breadcrumb" id="breadcrumb"><span class="right"><a href="../.sessions.html" class="el_session">Sessions</a></span><a href="../index.html" class="el_report">Coverage Report</a> > <a href="index.html" class="el_package">org.apache.rahas.impl</a> > <span class="el_source">SAMLTokenIssuerConfig.java</span></div><h1>SAMLTokenIssuerConfig.java</h1><pre class="source lang-java linenums">/* |
| * Copyright 2004,2005 The Apache Software Foundation. |
| * |
| * Licensed under the Apache License, Version 2.0 (the "License"); |
| * you may not use this file except in compliance with the License. |
| * You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| |
| package org.apache.rahas.impl; |
| |
| import org.apache.axiom.om.OMAbstractFactory; |
| import org.apache.axiom.om.OMAttribute; |
| import org.apache.axiom.om.OMElement; |
| import org.apache.axiom.om.OMFactory; |
| import org.apache.axiom.om.impl.builder.StAXOMBuilder; |
| import org.apache.axis2.description.Parameter; |
| import org.apache.commons.logging.Log; |
| import org.apache.commons.logging.LogFactory; |
| import org.apache.rahas.TrustException; |
| import org.apache.rahas.impl.util.CommonUtil; |
| import org.apache.rahas.impl.util.SAMLCallbackHandler; |
| import org.apache.ws.security.WSSecurityException; |
| import org.apache.ws.security.components.crypto.Crypto; |
| |
| import javax.xml.namespace.QName; |
| import java.io.FileInputStream; |
| import java.security.cert.X509Certificate; |
| import java.util.Enumeration; |
| import java.util.HashMap; |
| import java.util.Iterator; |
| import java.util.Map; |
| import java.util.Properties; |
| |
| /** |
| * Configuration manager for the <code>SAMLTokenIssuer</code> |
| * |
| * @see SAMLTokenIssuer |
| */ |
| public class SAMLTokenIssuerConfig extends AbstractIssuerConfig { |
| |
| |
| <span class="pc" id="L50"> Log log = LogFactory.getLog(SAMLTokenIssuerConfig.class);</span> |
| |
| /** |
| * The QName of the configuration element of the SAMLTokenIssuer |
| */ |
| <span class="fc" id="L55"> public final static QName SAML_ISSUER_CONFIG = new QName("saml-issuer-config");</span> |
| |
| /** |
| * Element name to include the alias of the private key to sign the response or |
| * the issued token |
| */ |
| <span class="fc" id="L61"> private final static QName ISSUER_KEY_ALIAS = new QName("issuerKeyAlias");</span> |
| |
| /** |
| * Element name to include the password of the private key to sign the response or the issued |
| * token |
| */ |
| <span class="fc" id="L67"> private final static QName ISSUER_KEY_PASSWD = new QName("issuerKeyPassword");</span> |
| |
| /** |
| * Element name of the attribute call-back handler |
| */ |
| <span class="fc" id="L72"> private final static QName ATTR_CALLBACK_HANDLER_NAME = new QName("attrCallbackHandlerName");</span> |
| |
| /** |
| * Element to specify the lifetime of the SAMLToken |
| * Dafaults to 300000 milliseconds (5 mins) |
| */ |
| <span class="fc" id="L78"> private final static QName TTL = new QName("timeToLive");</span> |
| |
| /** |
| * Element to list the trusted services |
| */ |
| <span class="fc" id="L83"> private final static QName TRUSTED_SERVICES = new QName("trusted-services");</span> |
| |
| <span class="fc" id="L85"> private final static QName KEY_SIZE = new QName("keySize");</span> |
| |
| <span class="fc" id="L87"> private final static QName SERVICE = new QName("service");</span> |
| <span class="fc" id="L88"> private final static QName ALIAS = new QName("alias");</span> |
| |
| <span class="fc" id="L90"> public final static QName USE_SAML_ATTRIBUTE_STATEMENT = new QName("useSAMLAttributeStatement");</span> |
| |
| <span class="fc" id="L92"> public final static QName ISSUER_NAME = new QName("issuerName");</span> |
| |
| <span class="fc" id="L94"> public final static QName SAML_CALLBACK_CLASS = new QName("dataCallbackHandlerClass");</span> |
| |
| protected String issuerKeyAlias; |
| protected String issuerKeyPassword; |
| protected String issuerName; |
| <span class="pc" id="L99"> protected Map trustedServices = new HashMap();</span> |
| protected String trustStorePropFile; |
| protected SAMLCallbackHandler callbackHandler; |
| protected String callbackHandlerName; |
| |
| /** |
| * Create a new configuration with issuer name and crypto information |
| * @param issuerName Name of the issuer |
| * @param cryptoProviderClassName WSS4J Crypto impl class name |
| * @param cryptoProps Configuration properties of crypto impl |
| */ |
| <span class="nc" id="L110"> public SAMLTokenIssuerConfig(String issuerName, String cryptoProviderClassName, Properties cryptoProps) {</span> |
| <span class="nc" id="L111"> this.issuerName = issuerName;</span> |
| <span class="nc" id="L112"> this.setCryptoProperties(cryptoProviderClassName, cryptoProps);</span> |
| <span class="nc" id="L113"> }</span> |
| |
| /** |
| * Create a SAMLTokenIssuer configuration with a config file picked from the |
| * given location. |
| * @param configFilePath Path to the config file |
| * @throws TrustException |
| */ |
| <span class="nc" id="L121"> public SAMLTokenIssuerConfig(String configFilePath) throws TrustException {</span> |
| FileInputStream fis; |
| StAXOMBuilder builder; |
| try { |
| <span class="nc" id="L125"> fis = new FileInputStream(configFilePath);</span> |
| <span class="nc" id="L126"> builder = new StAXOMBuilder(fis);</span> |
| <span class="nc" id="L127"> } catch (Exception e) {</span> |
| <span class="nc" id="L128"> throw new TrustException("errorLoadingConfigFile",</span> |
| new String[] { configFilePath }); |
| <span class="nc" id="L130"> }</span> |
| <span class="nc" id="L131"> this.load(builder.getDocumentElement());</span> |
| <span class="nc" id="L132"> }</span> |
| |
| /** |
| * Create a SAMLTokenIssuer configuration using the give config element |
| * @param elem Configuration element as an <code>OMElement</code> |
| * @throws TrustException |
| */ |
| <span class="fc" id="L139"> public SAMLTokenIssuerConfig(OMElement elem) throws TrustException {</span> |
| <span class="fc" id="L140"> this.load(elem);</span> |
| <span class="fc" id="L141"> }</span> |
| |
| private void load(OMElement elem) throws TrustException { |
| <span class="fc" id="L144"> OMElement proofKeyElem = elem.getFirstChildWithName(PROOF_KEY_TYPE);</span> |
| <span class="pc bpc" id="L145" title="1 of 2 branches missed."> if (proofKeyElem != null) {</span> |
| <span class="fc" id="L146"> this.proofKeyType = proofKeyElem.getText().trim();</span> |
| } |
| |
| <span class="fc" id="L149"> OMElement callbackNameElem = elem.getFirstChildWithName(ATTR_CALLBACK_HANDLER_NAME);</span> |
| <span class="pc bpc" id="L150" title="1 of 2 branches missed."> if (callbackNameElem != null) {</span> |
| <span class="nc" id="L151"> this.callbackHandlerName = callbackNameElem.getText().trim();</span> |
| } |
| |
| //The alias of the private key |
| <span class="fc" id="L155"> OMElement userElem = elem.getFirstChildWithName(ISSUER_KEY_ALIAS);</span> |
| <span class="pc bpc" id="L156" title="1 of 2 branches missed."> if (userElem != null) {</span> |
| <span class="fc" id="L157"> this.issuerKeyAlias = userElem.getText().trim();</span> |
| } |
| |
| <span class="pc bpc" id="L160" title="2 of 4 branches missed."> if (this.issuerKeyAlias == null || "".equals(this.issuerKeyAlias)) {</span> |
| <span class="nc" id="L161"> throw new TrustException("samlIssuerKeyAliasMissing");</span> |
| } |
| |
| <span class="fc" id="L164"> OMElement issuerKeyPasswdElem = elem.getFirstChildWithName(ISSUER_KEY_PASSWD);</span> |
| <span class="pc bpc" id="L165" title="1 of 2 branches missed."> if (issuerKeyPasswdElem != null) {</span> |
| <span class="fc" id="L166"> this.issuerKeyPassword = issuerKeyPasswdElem.getText().trim();</span> |
| } |
| |
| <span class="pc bpc" id="L169" title="2 of 4 branches missed."> if (this.issuerKeyPassword == null || "".equals(this.issuerKeyPassword)) {</span> |
| <span class="nc" id="L170"> throw new TrustException("samlIssuerKeyPasswdMissing");</span> |
| } |
| |
| <span class="fc" id="L173"> OMElement issuerNameElem = elem.getFirstChildWithName(ISSUER_NAME);</span> |
| <span class="pc bpc" id="L174" title="1 of 2 branches missed."> if (issuerNameElem != null) {</span> |
| <span class="fc" id="L175"> this.issuerName = issuerNameElem.getText().trim();</span> |
| } |
| |
| <span class="pc bpc" id="L178" title="2 of 4 branches missed."> if (this.issuerName == null || "".equals(this.issuerName)) {</span> |
| <span class="nc" id="L179"> throw new TrustException("samlIssuerNameMissing");</span> |
| } |
| |
| <span class="fc" id="L182"> this.cryptoPropertiesElement = elem.getFirstChildWithName(CRYPTO_PROPERTIES);</span> |
| <span class="pc bpc" id="L183" title="1 of 2 branches missed."> if (this.cryptoPropertiesElement != null) {</span> |
| <span class="pc bpc" id="L184" title="1 of 2 branches missed."> if ((this.cryptoElement =</span> |
| this.cryptoPropertiesElement .getFirstChildWithName(CRYPTO)) == null){ |
| // no children. Hence, prop file should have been defined |
| <span class="nc" id="L187"> this.cryptoPropertiesFile = this.cryptoPropertiesElement .getText().trim();</span> |
| } |
| // else Props should be defined as children of a crypto element |
| } |
| |
| <span class="fc" id="L192"> OMElement keyCompElem = elem.getFirstChildWithName(KeyComputation.KEY_COMPUTATION);</span> |
| <span class="pc bpc" id="L193" title="3 of 6 branches missed."> if (keyCompElem != null && keyCompElem.getText() != null && !"".equals(keyCompElem.getText())) {</span> |
| <span class="fc" id="L194"> this.keyComputation = Integer.parseInt(keyCompElem.getText());</span> |
| } |
| |
| //time to live |
| <span class="fc" id="L198"> OMElement ttlElem = elem.getFirstChildWithName(TTL);</span> |
| <span class="pc bpc" id="L199" title="1 of 2 branches missed."> if (ttlElem != null) {</span> |
| try { |
| <span class="fc" id="L201"> this.ttl = Long.parseLong(ttlElem.getText().trim());</span> |
| <span class="nc" id="L202"> } catch (NumberFormatException e) {</span> |
| <span class="nc" id="L203"> throw new TrustException("invlidTTL");</span> |
| <span class="fc" id="L204"> }</span> |
| } |
| |
| <span class="fc" id="L207"> OMElement keySizeElem = elem.getFirstChildWithName(KEY_SIZE);</span> |
| <span class="pc bpc" id="L208" title="1 of 2 branches missed."> if (keySizeElem != null) {</span> |
| try { |
| <span class="fc" id="L210"> this.keySize = Integer.parseInt(keySizeElem.getText().trim());</span> |
| <span class="nc" id="L211"> } catch (NumberFormatException e) {</span> |
| <span class="nc" id="L212"> throw new TrustException("invalidKeysize");</span> |
| <span class="fc" id="L213"> }</span> |
| } |
| |
| <span class="pc bpc" id="L216" title="1 of 2 branches missed."> this.addRequestedAttachedRef = elem</span> |
| .getFirstChildWithName(ADD_REQUESTED_ATTACHED_REF) != null; |
| <span class="pc bpc" id="L218" title="1 of 2 branches missed."> this.addRequestedUnattachedRef = elem</span> |
| .getFirstChildWithName(ADD_REQUESTED_UNATTACHED_REF) != null; |
| |
| //Process trusted services |
| <span class="fc" id="L222"> OMElement trustedServices = elem.getFirstChildWithName(TRUSTED_SERVICES);</span> |
| |
| /* |
| * If there are trusted services add them to a list |
| * Only trusts myself to issue tokens to : |
| * In this case the STS is embedded in the service as well and |
| * the issued token can only be used with that particular service |
| * since the response secret is encrypted by the service's public key |
| */ |
| <span class="pc bpc" id="L231" title="1 of 2 branches missed."> if (trustedServices != null) {</span> |
| //Now process the trusted services |
| <span class="fc" id="L233"> Iterator servicesIter = trustedServices.getChildrenWithName(SERVICE);</span> |
| <span class="fc bfc" id="L234" title="All 2 branches covered."> while (servicesIter.hasNext()) {</span> |
| <span class="fc" id="L235"> OMElement service = (OMElement) servicesIter.next();</span> |
| <span class="fc" id="L236"> OMAttribute aliasAttr = service.getAttribute(ALIAS);</span> |
| <span class="pc bpc" id="L237" title="1 of 2 branches missed."> if (aliasAttr == null) {</span> |
| //The certificate alias is a must |
| <span class="nc" id="L239"> throw new TrustException("aliasMissingForService",</span> |
| new String[]{service.getText().trim()}); |
| } |
| <span class="pc bpc" id="L242" title="1 of 2 branches missed."> if (this.trustedServices == null) {</span> |
| <span class="nc" id="L243"> this.trustedServices = new HashMap();</span> |
| } |
| |
| //Add the trusted service and the alias to the map of services |
| <span class="fc" id="L247"> this.trustedServices.put(service.getText().trim(), aliasAttr.getAttributeValue());</span> |
| <span class="fc" id="L248"> }</span> |
| |
| //There maybe no trusted services as well, Therefore do not |
| //throw an exception when there are no trusted in the list at the |
| //moment |
| } |
| |
| |
| <span class="fc" id="L256"> OMElement attrElemet = elem.getFirstChildWithName(SAML_CALLBACK_CLASS);</span> |
| <span class="fc bfc" id="L257" title="All 2 branches covered."> if (attrElemet != null) {</span> |
| try { |
| <span class="fc" id="L259"> String value = attrElemet.getText();</span> |
| <span class="fc" id="L260"> Class handlerClass = Class.forName(value);</span> |
| <span class="fc" id="L261"> this.callbackHandler = (SAMLCallbackHandler)handlerClass.newInstance();</span> |
| <span class="nc" id="L262"> } catch (ClassNotFoundException e) {</span> |
| <span class="nc" id="L263"> log.error("Error loading class" , e);</span> |
| <span class="nc" id="L264"> throw new TrustException("Error loading class" , e);</span> |
| <span class="nc" id="L265"> } catch (InstantiationException e) {</span> |
| <span class="nc" id="L266"> log.error("Error instantiating class" , e);</span> |
| <span class="nc" id="L267"> throw new TrustException("Error instantiating class" , e);</span> |
| <span class="nc" id="L268"> } catch (IllegalAccessException e) {</span> |
| <span class="nc" id="L269"> log.error("Illegal Access" , e);</span> |
| <span class="nc" id="L270"> throw new TrustException("Illegal Access" , e);</span> |
| <span class="fc" id="L271"> }</span> |
| } |
| |
| |
| <span class="fc" id="L275"> }</span> |
| |
| /** |
| * Generate an Axis2 parameter for this configuration |
| * @return An Axis2 Parameter instance with configuration information |
| */ |
| public Parameter getParameter() { |
| <span class="nc" id="L282"> Parameter param = new Parameter();</span> |
| |
| <span class="nc" id="L284"> OMFactory fac = OMAbstractFactory.getOMFactory();</span> |
| |
| <span class="nc" id="L286"> OMElement paramElem = fac.createOMElement("Parameter", null);</span> |
| <span class="nc" id="L287"> paramElem.addAttribute("name", SAML_ISSUER_CONFIG.getLocalPart(), null);</span> |
| |
| <span class="nc" id="L289"> OMElement configElem = fac.createOMElement(SAML_ISSUER_CONFIG, paramElem);</span> |
| |
| <span class="nc" id="L291"> OMElement issuerNameElem = fac.createOMElement(ISSUER_NAME, configElem);</span> |
| <span class="nc" id="L292"> issuerNameElem.setText(this.issuerName);</span> |
| |
| <span class="nc" id="L294"> OMElement issuerKeyAliasElem = fac.createOMElement(ISSUER_KEY_ALIAS, configElem);</span> |
| <span class="nc" id="L295"> issuerKeyAliasElem.setText(this.issuerKeyAlias);</span> |
| |
| <span class="nc" id="L297"> OMElement issuerKeyPasswd = fac.createOMElement(ISSUER_KEY_PASSWD, configElem);</span> |
| <span class="nc" id="L298"> issuerKeyPasswd.setText(this.issuerKeyPassword);</span> |
| |
| <span class="nc" id="L300"> OMElement callbackHandlerName = fac.createOMElement(ATTR_CALLBACK_HANDLER_NAME, configElem);</span> |
| <span class="nc" id="L301"> callbackHandlerName.setText(this.callbackHandlerName);</span> |
| |
| <span class="nc" id="L303"> OMElement timeToLive = fac.createOMElement(TTL, configElem);</span> |
| <span class="nc" id="L304"> timeToLive.setText(String.valueOf(this.ttl));</span> |
| |
| <span class="nc" id="L306"> configElem.addChild(this.cryptoPropertiesElement);</span> |
| |
| <span class="nc" id="L308"> OMElement keySizeElem = fac.createOMElement(KEY_SIZE, configElem);</span> |
| <span class="nc" id="L309"> keySizeElem.setText(Integer.toString(this.keySize));</span> |
| |
| <span class="nc bnc" id="L311" title="All 2 branches missed."> if(this.addRequestedAttachedRef) {</span> |
| <span class="nc" id="L312"> fac.createOMElement(ADD_REQUESTED_ATTACHED_REF, configElem);</span> |
| } |
| <span class="nc bnc" id="L314" title="All 2 branches missed."> if(this.addRequestedUnattachedRef) {</span> |
| <span class="nc" id="L315"> fac.createOMElement(ADD_REQUESTED_UNATTACHED_REF, configElem);</span> |
| } |
| |
| <span class="nc" id="L318"> OMElement keyCompElem = fac.createOMElement(KeyComputation.KEY_COMPUTATION, configElem);</span> |
| <span class="nc" id="L319"> keyCompElem.setText(Integer.toString(this.keyComputation));</span> |
| |
| <span class="nc" id="L321"> OMElement proofKeyTypeElem = fac.createOMElement(PROOF_KEY_TYPE, configElem);</span> |
| <span class="nc" id="L322"> proofKeyTypeElem.setText(this.proofKeyType);</span> |
| |
| <span class="nc" id="L324"> OMElement trustedServicesElem = fac.createOMElement(TRUSTED_SERVICES, configElem);</span> |
| <span class="nc bnc" id="L325" title="All 2 branches missed."> for (Iterator iterator = this.trustedServices.keySet().iterator(); iterator.hasNext();) {</span> |
| <span class="nc" id="L326"> String service = (String) iterator.next();</span> |
| <span class="nc" id="L327"> OMElement serviceElem = fac.createOMElement(SERVICE, trustedServicesElem);</span> |
| <span class="nc" id="L328"> serviceElem.setText(service);</span> |
| <span class="nc" id="L329"> serviceElem.addAttribute("alias", (String)this.trustedServices.get(service), null);</span> |
| |
| <span class="nc" id="L331"> }</span> |
| |
| <span class="nc" id="L333"> param.setName(SAML_ISSUER_CONFIG.getLocalPart());</span> |
| <span class="nc" id="L334"> param.setParameterElement(paramElem);</span> |
| <span class="nc" id="L335"> param.setValue(paramElem);</span> |
| <span class="nc" id="L336"> param.setParameterType(Parameter.OM_PARAMETER);</span> |
| |
| <span class="nc" id="L338"> return param;</span> |
| } |
| |
| public void setIssuerKeyAlias(String issuerKeyAlias) { |
| <span class="nc" id="L342"> this.issuerKeyAlias = issuerKeyAlias;</span> |
| <span class="nc" id="L343"> }</span> |
| |
| public String getIssuerKeyAlias() { |
| <span class="fc" id="L346"> return issuerKeyAlias;</span> |
| } |
| |
| public void setIssuerKeyPassword(String issuerKeyPassword) { |
| <span class="nc" id="L350"> this.issuerKeyPassword = issuerKeyPassword;</span> |
| <span class="nc" id="L351"> }</span> |
| |
| public String getIssuerKeyPassword() { |
| <span class="fc" id="L354"> return issuerKeyPassword;</span> |
| } |
| |
| public void setIssuerName(String issuerName) { |
| <span class="nc" id="L358"> this.issuerName = issuerName;</span> |
| <span class="nc" id="L359"> }</span> |
| |
| public void setTrustedServices(Map trustedServices) { |
| <span class="nc" id="L362"> this.trustedServices = trustedServices;</span> |
| <span class="nc" id="L363"> }</span> |
| |
| public void setTrustStorePropFile(String trustStorePropFile) { |
| <span class="nc" id="L366"> this.trustStorePropFile = trustStorePropFile;</span> |
| <span class="nc" id="L367"> }</span> |
| |
| /** |
| * Add a new trusted service endpoint address with its certificate |
| * @param address Service endpoint address |
| * @param alias certificate alias |
| */ |
| public void addTrustedServiceEndpointAddress(String address, String alias) { |
| <span class="nc" id="L375"> this.trustedServices.put(address, alias);</span> |
| <span class="nc" id="L376"> }</span> |
| |
| /** |
| * Set crypto information using WSS4J mechanisms |
| * |
| * @param providerClassName |
| * Provider class - an implementation of |
| * org.apache.ws.security.components.crypto.Crypto |
| * @param props Configuration properties |
| */ |
| public void setCryptoProperties(String providerClassName, Properties props) { |
| <span class="nc" id="L387"> OMFactory fac = OMAbstractFactory.getOMFactory();</span> |
| <span class="nc" id="L388"> this.cryptoPropertiesElement= fac.createOMElement(CRYPTO_PROPERTIES);</span> |
| <span class="nc" id="L389"> OMElement cryptoElem = fac.createOMElement(CRYPTO, this.cryptoPropertiesElement);</span> |
| <span class="nc" id="L390"> cryptoElem.addAttribute(PROVIDER.getLocalPart(), providerClassName, null);</span> |
| <span class="nc" id="L391"> Enumeration keys = props.keys();</span> |
| <span class="nc bnc" id="L392" title="All 2 branches missed."> while (keys.hasMoreElements()) {</span> |
| <span class="nc" id="L393"> String prop = (String) keys.nextElement();</span> |
| <span class="nc" id="L394"> String value = (String)props.get(prop);</span> |
| <span class="nc" id="L395"> OMElement propElem = fac.createOMElement(PROPERTY, cryptoElem);</span> |
| <span class="nc" id="L396"> propElem.setText(value);</span> |
| <span class="nc" id="L397"> propElem.addAttribute("name", prop, null);</span> |
| <span class="nc" id="L398"> }</span> |
| <span class="nc" id="L399"> }</span> |
| |
| /** |
| * Return the list of trusted services as a <code>java.util.Map</code>. |
| * The services addresses are the keys and cert aliases available under |
| * those keys. |
| * @return |
| */ |
| public Map getTrustedServices() { |
| <span class="nc" id="L408"> return trustedServices;</span> |
| } |
| |
| @Deprecated |
| public SAMLCallbackHandler getCallbackHander() { |
| <span class="nc" id="L413"> return callbackHandler;</span> |
| } |
| |
| @Deprecated |
| public void setCallbackHander(SAMLCallbackHandler callbackHandler) { |
| <span class="nc" id="L418"> this.callbackHandler = callbackHandler;</span> |
| <span class="nc" id="L419"> }</span> |
| |
| public SAMLCallbackHandler getCallbackHandler() { |
| <span class="fc" id="L422"> return callbackHandler;</span> |
| } |
| |
| public void setCallbackHandler(SAMLCallbackHandler callbackHandler) { |
| <span class="nc" id="L426"> this.callbackHandler = callbackHandler;</span> |
| <span class="nc" id="L427"> }</span> |
| |
| public String getCallbackHandlerName() { |
| <span class="fc" id="L430"> return callbackHandlerName;</span> |
| } |
| |
| public void setCallbackHandlerName(String callbackHandlerName) { |
| <span class="nc" id="L434"> this.callbackHandlerName = callbackHandlerName;</span> |
| <span class="nc" id="L435"> }</span> |
| |
| /** |
| * Uses the <code>wst:AppliesTo</code> to figure out the certificate to |
| * encrypt the secret in the SAML token |
| * |
| * @param crypto |
| * @param serviceAddress |
| * The address of the service |
| * @return |
| * @throws org.apache.rahas.TrustException If unable to find certificate by given alias. |
| */ |
| public X509Certificate getServiceCert(Crypto crypto, String serviceAddress) throws TrustException { |
| |
| <span class="pc bpc" id="L449" title="1 of 4 branches missed."> if (serviceAddress != null && !"".equals(serviceAddress)) {</span> |
| <span class="fc" id="L450"> String alias = (String) this.trustedServices.get(serviceAddress);</span> |
| <span class="pc bpc" id="L451" title="1 of 2 branches missed."> if (alias != null) {</span> |
| <span class="fc" id="L452"> return CommonUtil.getCertificateByAlias(crypto,alias);</span> |
| } else { |
| <span class="nc" id="L454"> alias = (String) this.trustedServices.get("*");</span> |
| <span class="nc" id="L455"> return CommonUtil.getCertificateByAlias(crypto,alias);</span> |
| } |
| } else { |
| <span class="fc" id="L458"> String alias = (String) this.trustedServices.get("*");</span> |
| <span class="fc" id="L459"> return CommonUtil.getCertificateByAlias(crypto,alias);</span> |
| } |
| |
| } |
| |
| } |
| </pre><div class="footer"><span class="right">Created with <a href="http://www.eclemma.org/jacoco">JaCoCo</a> 0.6.1.201212231917</span></div></body></html> |