src/main/java/org/apache/xml/security/stax/impl/processor/output/XMLSignatureOutputProcessor.java - santuario-java - Git at Google

 /**
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements. See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership. The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License. You may obtain a copy of the License at
  *
  * http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing,
  * software distributed under the License is distributed on an
  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
  * KIND, either express or implied. See the License for the
  * specific language governing permissions and limitations
  * under the License.
  */
 package org.apache.xml.security.stax.impl.processor.output;

 import java.util.ArrayList;
 import java.util.List;

 import javax.xml.stream.XMLStreamConstants;
 import javax.xml.stream.XMLStreamException;
 import javax.xml.stream.events.Attribute;

 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 import org.apache.xml.security.exceptions.XMLSecurityException;
 import org.apache.xml.security.stax.ext.OutputProcessorChain;
 import org.apache.xml.security.stax.ext.SecurePart;
 import org.apache.xml.security.stax.ext.XMLSecurityConstants;
 import org.apache.xml.security.stax.ext.stax.XMLSecAttribute;
 import org.apache.xml.security.stax.ext.stax.XMLSecEvent;
 import org.apache.xml.security.stax.ext.stax.XMLSecStartElement;
 import org.apache.xml.security.stax.impl.SignaturePartDef;
 import org.apache.xml.security.stax.impl.util.IDGenerator;

 /**
  * An OutputProcessor for XML Signature.
  */
 public class XMLSignatureOutputProcessor extends AbstractSignatureOutputProcessor {

     private static final transient Logger LOG = LoggerFactory.getLogger(XMLSignatureOutputProcessor.class);

     public XMLSignatureOutputProcessor() throws XMLSecurityException {
         super();
     }

     @Override
     public void init(OutputProcessorChain outputProcessorChain) throws XMLSecurityException {
         super.init(outputProcessorChain);
         XMLSignatureEndingOutputProcessor signatureEndingOutputProcessor = new XMLSignatureEndingOutputProcessor(this);
         signatureEndingOutputProcessor.setXMLSecurityProperties(getSecurityProperties());
         signatureEndingOutputProcessor.setAction(getAction());
         signatureEndingOutputProcessor.init(outputProcessorChain);
     }

     @Override
     public void processEvent(XMLSecEvent xmlSecEvent, OutputProcessorChain outputProcessorChain) throws XMLStreamException, XMLSecurityException {
         if (xmlSecEvent.getEventType() == XMLStreamConstants.START_ELEMENT) {
             XMLSecStartElement xmlSecStartElement = xmlSecEvent.asStartElement();

             //avoid double signature when child elements matches too
             if (getActiveInternalSignatureOutputProcessor() == null) {
                 SecurePart securePart = securePartMatches(xmlSecStartElement, outputProcessorChain, XMLSecurityConstants.SIGNATURE_PARTS);
                 if (securePart != null) {
                     LOG.debug("Matched securePart for signature");

                     InternalSignatureOutputProcessor internalSignatureOutputProcessor = null;

                     SignaturePartDef signaturePartDef = new SignaturePartDef();
                     signaturePartDef.setSecurePart(securePart);
                     signaturePartDef.setTransforms(securePart.getTransforms());
                     if (signaturePartDef.getTransforms() == null) {
                         signaturePartDef.setTransforms(new String[]{XMLSecurityConstants.NS_C14N_EXCL_OMIT_COMMENTS});
                     }
                     signaturePartDef.setExcludeVisibleC14Nprefixes(true);
                     signaturePartDef.setDigestAlgo(securePart.getDigestMethod());
                     if (signaturePartDef.getDigestAlgo() == null) {
                         signaturePartDef.setDigestAlgo(getSecurityProperties().getSignatureDigestAlgorithm());
                     }

                     if (securityProperties.isSignatureGenerateIds()) {
                         if (securePart.getIdToSecure() == null) {
                             signaturePartDef.setGenerateXPointer(securePart.isGenerateXPointer());
                             signaturePartDef.setSigRefId(IDGenerator.generateID(null));

                             Attribute attribute = xmlSecStartElement.getAttributeByName(securityProperties.getIdAttributeNS());
                             if (attribute != null) {
                                 signaturePartDef.setSigRefId(attribute.getValue());
                             } else {
                                 List<XMLSecAttribute> attributeList = new ArrayList<>(1);
                                 attributeList.add(createAttribute(securityProperties.getIdAttributeNS(), signaturePartDef.getSigRefId()));
                                 xmlSecEvent = addAttributes(xmlSecStartElement, attributeList);
                             }
                         } else {
                             signaturePartDef.setSigRefId(securePart.getIdToSecure());
                         }
                     }

                     getSignaturePartDefList().add(signaturePartDef);
                     internalSignatureOutputProcessor = new InternalSignatureOutputProcessor(signaturePartDef, xmlSecStartElement);
                     internalSignatureOutputProcessor.setXMLSecurityProperties(getSecurityProperties());
                     internalSignatureOutputProcessor.setAction(getAction());
                     internalSignatureOutputProcessor.addAfterProcessor(XMLSignatureOutputProcessor.class.getName());
                     internalSignatureOutputProcessor.addBeforeProcessor(XMLSignatureEndingOutputProcessor.class.getName());
                     internalSignatureOutputProcessor.init(outputProcessorChain);

                     setActiveInternalSignatureOutputProcessor(internalSignatureOutputProcessor);
                 }
             }
         }
         outputProcessorChain.processEvent(xmlSecEvent);
     }
 }
	/**
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing,
	* software distributed under the License is distributed on an
	* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	* KIND, either express or implied. See the License for the
	* specific language governing permissions and limitations
	* under the License.
	*/
	package org.apache.xml.security.stax.impl.processor.output;

	import java.util.ArrayList;
	import java.util.List;

	import javax.xml.stream.XMLStreamConstants;
	import javax.xml.stream.XMLStreamException;
	import javax.xml.stream.events.Attribute;

	import org.slf4j.Logger;
	import org.slf4j.LoggerFactory;
	import org.apache.xml.security.exceptions.XMLSecurityException;
	import org.apache.xml.security.stax.ext.OutputProcessorChain;
	import org.apache.xml.security.stax.ext.SecurePart;
	import org.apache.xml.security.stax.ext.XMLSecurityConstants;
	import org.apache.xml.security.stax.ext.stax.XMLSecAttribute;
	import org.apache.xml.security.stax.ext.stax.XMLSecEvent;
	import org.apache.xml.security.stax.ext.stax.XMLSecStartElement;
	import org.apache.xml.security.stax.impl.SignaturePartDef;
	import org.apache.xml.security.stax.impl.util.IDGenerator;

	/**
	* An OutputProcessor for XML Signature.
	*/
	public class XMLSignatureOutputProcessor extends AbstractSignatureOutputProcessor {

	private static final transient Logger LOG = LoggerFactory.getLogger(XMLSignatureOutputProcessor.class);

	public XMLSignatureOutputProcessor() throws XMLSecurityException {
	super();
	}

	@Override
	public void init(OutputProcessorChain outputProcessorChain) throws XMLSecurityException {
	super.init(outputProcessorChain);
	XMLSignatureEndingOutputProcessor signatureEndingOutputProcessor = new XMLSignatureEndingOutputProcessor(this);
	signatureEndingOutputProcessor.setXMLSecurityProperties(getSecurityProperties());
	signatureEndingOutputProcessor.setAction(getAction());
	signatureEndingOutputProcessor.init(outputProcessorChain);
	}

	@Override
	public void processEvent(XMLSecEvent xmlSecEvent, OutputProcessorChain outputProcessorChain) throws XMLStreamException, XMLSecurityException {
	if (xmlSecEvent.getEventType() == XMLStreamConstants.START_ELEMENT) {
	XMLSecStartElement xmlSecStartElement = xmlSecEvent.asStartElement();

	//avoid double signature when child elements matches too
	if (getActiveInternalSignatureOutputProcessor() == null) {
	SecurePart securePart = securePartMatches(xmlSecStartElement, outputProcessorChain, XMLSecurityConstants.SIGNATURE_PARTS);
	if (securePart != null) {
	LOG.debug("Matched securePart for signature");

	InternalSignatureOutputProcessor internalSignatureOutputProcessor = null;

	SignaturePartDef signaturePartDef = new SignaturePartDef();
	signaturePartDef.setSecurePart(securePart);
	signaturePartDef.setTransforms(securePart.getTransforms());
	if (signaturePartDef.getTransforms() == null) {
	signaturePartDef.setTransforms(new String[]{XMLSecurityConstants.NS_C14N_EXCL_OMIT_COMMENTS});
	}
	signaturePartDef.setExcludeVisibleC14Nprefixes(true);
	signaturePartDef.setDigestAlgo(securePart.getDigestMethod());
	if (signaturePartDef.getDigestAlgo() == null) {
	signaturePartDef.setDigestAlgo(getSecurityProperties().getSignatureDigestAlgorithm());
	}

	if (securityProperties.isSignatureGenerateIds()) {
	if (securePart.getIdToSecure() == null) {
	signaturePartDef.setGenerateXPointer(securePart.isGenerateXPointer());
	signaturePartDef.setSigRefId(IDGenerator.generateID(null));

	Attribute attribute = xmlSecStartElement.getAttributeByName(securityProperties.getIdAttributeNS());
	if (attribute != null) {
	signaturePartDef.setSigRefId(attribute.getValue());
	} else {
	List<XMLSecAttribute> attributeList = new ArrayList<>(1);
	attributeList.add(createAttribute(securityProperties.getIdAttributeNS(), signaturePartDef.getSigRefId()));
	xmlSecEvent = addAttributes(xmlSecStartElement, attributeList);
	}
	} else {
	signaturePartDef.setSigRefId(securePart.getIdToSecure());
	}
	}

	getSignaturePartDefList().add(signaturePartDef);
	internalSignatureOutputProcessor = new InternalSignatureOutputProcessor(signaturePartDef, xmlSecStartElement);
	internalSignatureOutputProcessor.setXMLSecurityProperties(getSecurityProperties());
	internalSignatureOutputProcessor.setAction(getAction());
	internalSignatureOutputProcessor.addAfterProcessor(XMLSignatureOutputProcessor.class.getName());
	internalSignatureOutputProcessor.addBeforeProcessor(XMLSignatureEndingOutputProcessor.class.getName());
	internalSignatureOutputProcessor.init(outputProcessorChain);

	setActiveInternalSignatureOutputProcessor(internalSignatureOutputProcessor);
	}
	}
	}
	outputProcessorChain.processEvent(xmlSecEvent);
	}
	}