/* | |
* Copyright 2003-2004 The Apache Software Foundation. | |
* | |
* Licensed under the Apache License, Version 2.0 (the "License"); | |
* you may not use this file except in compliance with the License. | |
* You may obtain a copy of the License at | |
* | |
* http://www.apache.org/licenses/LICENSE-2.0 | |
* | |
* Unless required by applicable law or agreed to in writing, software | |
* distributed under the License is distributed on an "AS IS" BASIS, | |
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | |
* See the License for the specific language governing permissions and | |
* limitations under the License. | |
* | |
*/ | |
package org.apache.ws.security.action; | |
import org.apache.ws.security.WSConstants; | |
import org.apache.ws.security.WSSecurityException; | |
import org.apache.ws.security.handler.RequestData; | |
import org.apache.ws.security.handler.WSHandler; | |
import org.apache.ws.security.handler.WSHandlerConstants; | |
import org.apache.ws.security.message.WSSecUsernameToken; | |
import org.apache.ws.security.message.WSSecSignature; | |
import org.apache.xml.security.signature.XMLSignature; | |
import org.w3c.dom.Document; | |
public class UsernameTokenSignedAction implements Action { | |
public void execute(WSHandler handler, int actionToDo, Document doc, RequestData reqData) | |
throws WSSecurityException { | |
String password; | |
password = handler.getPassword(reqData.getUsername(), actionToDo, | |
WSHandlerConstants.PW_CALLBACK_CLASS, | |
WSHandlerConstants.PW_CALLBACK_REF, reqData).getPassword(); | |
WSSecUsernameToken builder = new WSSecUsernameToken(); | |
builder.setWsConfig(reqData.getWssConfig()); | |
builder.setPasswordType(WSConstants.PASSWORD_TEXT); | |
builder.setUserInfo(reqData.getUsername(), password); | |
builder.addCreated(); | |
builder.addNonce(); | |
builder.prepare(doc); | |
WSSecSignature sign = new WSSecSignature(); | |
sign.setWsConfig(reqData.getWssConfig()); | |
if (reqData.getSignatureParts().size() > 0) { | |
sign.setParts(reqData.getSignatureParts()); | |
} | |
sign.setUsernameToken(builder); | |
sign.setKeyIdentifierType(WSConstants.UT_SIGNING); | |
sign.setSignatureAlgorithm(XMLSignature.ALGO_ID_MAC_HMAC_SHA1); | |
try { | |
sign.build(doc, null, reqData.getSecHeader()); | |
reqData.getSignatureValues().add(sign.getSignatureValue()); | |
} catch (WSSecurityException e) { | |
throw new WSSecurityException("WSHandler: Error during Signature with UsernameToken secret" | |
+ e); | |
} | |
builder.prependToHeader(reqData.getSecHeader()); | |
} | |
} |