src/org/apache/ws/sandbox/security/trust2/WSAddTokenRequest.java - ws-wss4j - Git at Google

 /*
  * Copyright  2003-2004 The Apache Software Foundation.
  *
  *  Licensed under the Apache License, Version 2.0 (the "License");
  *  you may not use this file except in compliance with the License.
  *  You may obtain a copy of the License at
  *
  *      http://www.apache.org/licenses/LICENSE-2.0
  *
  *  Unless required by applicable law or agreed to in writing, software
  *  distributed under the License is distributed on an "AS IS" BASIS,
  *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  *  See the License for the specific language governing permissions and
  *  limitations under the License.
  *
  */

 package org.apache.ws.sandbox.security.trust2;

 import org.apache.ws.sandbox.security.trust2.exception.NoRequestType;
 import org.apache.ws.sandbox.security.trust2.exception.NoSoapBody;
 import org.apache.ws.sandbox.security.trust2.exception.TrustException;
 import org.apache.axis.message.SOAPEnvelope;
 import org.apache.ws.security.SOAPConstants;
 import org.apache.ws.security.WSConstants;
 import org.apache.ws.security.WSSConfig;
 import org.apache.ws.security.message.token.UsernameToken;
 import org.apache.ws.security.util.WSSecurityUtil;
 import org.w3c.dom.DOMException;
 import org.w3c.dom.Document;
 import org.w3c.dom.Element;
 import org.w3c.dom.Node;

 import java.net.URI;

 /**
  * @author ddelvecc
  *         <p/>
  *         A class for adding a WS-Trust RequestSecurityToken element to a SOAP envelope (an XML document).
  */
 public class WSAddTokenRequest {

     private URI action = null;
     private RequestSecurityToken tokenRequest;

     public WSAddTokenRequest(RequestSecurityToken tokenRequest) {
         this.tokenRequest = tokenRequest;
     }

     /**
      * Adds the standard Action element corresponding to the RequestType specified in the RequestSecurityToken message being used.
      * If the request type is non-standard (not Issue, Renew, Validate), the Action URI added will be the same as the RequestType URI.
      *
      * @throws NoRequestType
      */
     public void addAction() throws NoRequestType {
         action = TrustConstants.getActionRequest(tokenRequest.getRequestType());
         if (action == null) {
             throw new NoRequestType("Cannot generate standard action element, no requestType specified.");
         }
     }

     /**
      * Adds a custom Action element to the SOAP header. See WS-Addressing specs for more details.
      *
      * @param action The action URI to add.
      */
     public void addAction(URI action) {
         this.action = action;
     }

     /**
      * Adds a new <code>RequestSecurityToken</code> to a soap envelope.
      * <p/>
      *
      * @param doc The SOAP enevlope as W3C document
      * @return Document with RequestSecurityToken added
      * @throws DOMException NoRequestType NoSoapBody
      */
     public Document build(Document doc) throws DOMException, TrustException {
         SOAPConstants soapConsts = WSSecurityUtil.getSOAPConstants(doc.getDocumentElement());

         if (action != null) {
             Element envelope = doc.getDocumentElement();
             Element soapHeader = (Element) WSSecurityUtil.getDirectChild(doc.getFirstChild(), soapConsts.getHeaderQName().getLocalPart(),
                     soapConsts.getEnvelopeURI());

             if (soapHeader == null) {
                 soapHeader = createElementInSameNamespace(envelope, soapConsts.getHeaderQName().getLocalPart());
                 soapHeader = WSSecurityUtil.prependChildElement(doc, envelope, soapHeader, true);
             }

             Element actionElement = doc.createElementNS(TrustConstants.WSA_NS, TrustConstants.WST_PREFIX + TrustConstants.ACTION_TAG);
             Node actionContent = doc.createTextNode(action.toString());
             actionElement.appendChild(actionContent);
             soapHeader.appendChild(actionElement);
         }
         Element soapBody = WSSecurityUtil.findBodyElement(doc, soapConsts);
         if (soapBody == null) {
             throw new NoSoapBody("A SOAP Body element is needed to insert the <RequestSecurityToken>.");
         }

         setWsuId(soapBody);
         if (tokenRequest != null)
             soapBody.appendChild(tokenRequest.getElement());
         return doc;
     }

     /**
      * create a new element in the same namespace
      * <p/>
      *
      * @param parent
      * @param localName
      * @return
      */
     private static Element createElementInSameNamespace(Element parent, String localName) {
         String prefix = parent.getPrefix();
         if (prefix == null) {
             prefix = "";
         }
         String qName = prefix + ":" + localName;
         String nsUri = parent.getNamespaceURI();
         return parent.getOwnerDocument().createElementNS(nsUri, qName);
     }

     private String setWsuId(Element bodyElement) {
         String id = bodyElement.getAttributeNS(WSConstants.WSU_NS, "Id");
         if ((id == null) || (id.length() == 0)) {
             id = "id-" + Integer.toString(bodyElement.hashCode());
             String prefix = WSSecurityUtil.setNamespace(bodyElement, WSConstants.WSU_NS, WSConstants.WSU_PREFIX);
             bodyElement.setAttributeNS(WSConstants.WSU_NS, prefix + ":Id", id);
         }
         return id;
     }

     public static void main(String[] args) throws Exception {
         SOAPEnvelope env = new SOAPEnvelope();
         Document doc = env.getAsDocument();
         WSSConfig wssConfig = WSSConfig.getDefaultWSConfig();

         RequestSecurityToken tokenRequest = new RequestSecurityToken(doc, TrustConstants.REQUEST_ISSUE);

         tokenRequest.setContext(new URI("http://context.context"));
         tokenRequest.setTokenType(TokenTypes.X509);

         UsernameToken userToken = new UsernameToken(wssConfig.isPrecisionInMilliSeconds(), doc);
         userToken.setName("bob");
         userToken.setPassword("bobspass");
         tokenRequest.setBase(new SecurityTokenOrReference(userToken));

         UsernameToken user2Token = new UsernameToken(wssConfig.isPrecisionInMilliSeconds(), doc);
         user2Token.setName("joe");
         user2Token.setPassword("bobspass");
         tokenRequest.addSupporting(new SecurityTokenOrReference(user2Token));

         UsernameToken user3Token = new UsernameToken(wssConfig.isPrecisionInMilliSeconds(), doc);
         user3Token.setName("mike");
         user3Token.setPassword("bobspass");
         tokenRequest.addSupporting(new SecurityTokenOrReference(user3Token));

         WSAddTokenRequest builder = new WSAddTokenRequest(tokenRequest);
         builder.addAction();
         doc = builder.build(doc);
         /*
         WSSignEnvelope builder = new WSSignEnvelope();
         builder.setUserInfo(credName, password);
         builder.setKeyIdentifierType(WSConstants.BST_DIRECT_REFERENCE);
         doc = builder.build(env.getAsDocument(), CryptoFactory.getInstance(cryptoPropFile));
 */

         System.out.println("\n============= Request ==============");
         System.out.println(org.apache.axis.utils.XMLUtils.DocumentToString(doc));
     }

 }
	/*
	* Copyright 2003-2004 The Apache Software Foundation.
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*
	*/

	package org.apache.ws.sandbox.security.trust2;

	import org.apache.ws.sandbox.security.trust2.exception.NoRequestType;
	import org.apache.ws.sandbox.security.trust2.exception.NoSoapBody;
	import org.apache.ws.sandbox.security.trust2.exception.TrustException;
	import org.apache.axis.message.SOAPEnvelope;
	import org.apache.ws.security.SOAPConstants;
	import org.apache.ws.security.WSConstants;
	import org.apache.ws.security.WSSConfig;
	import org.apache.ws.security.message.token.UsernameToken;
	import org.apache.ws.security.util.WSSecurityUtil;
	import org.w3c.dom.DOMException;
	import org.w3c.dom.Document;
	import org.w3c.dom.Element;
	import org.w3c.dom.Node;

	import java.net.URI;

	/**
	* @author ddelvecc
	* <p/>
	* A class for adding a WS-Trust RequestSecurityToken element to a SOAP envelope (an XML document).
	*/
	public class WSAddTokenRequest {

	private URI action = null;
	private RequestSecurityToken tokenRequest;

	public WSAddTokenRequest(RequestSecurityToken tokenRequest) {
	this.tokenRequest = tokenRequest;
	}

	/**
	* Adds the standard Action element corresponding to the RequestType specified in the RequestSecurityToken message being used.
	* If the request type is non-standard (not Issue, Renew, Validate), the Action URI added will be the same as the RequestType URI.
	*
	* @throws NoRequestType
	*/
	public void addAction() throws NoRequestType {
	action = TrustConstants.getActionRequest(tokenRequest.getRequestType());
	if (action == null) {
	throw new NoRequestType("Cannot generate standard action element, no requestType specified.");
	}
	}

	/**
	* Adds a custom Action element to the SOAP header. See WS-Addressing specs for more details.
	*
	* @param action The action URI to add.
	*/
	public void addAction(URI action) {
	this.action = action;
	}

	/**
	* Adds a new <code>RequestSecurityToken</code> to a soap envelope.
	* <p/>
	*
	* @param doc The SOAP enevlope as W3C document
	* @return Document with RequestSecurityToken added
	* @throws DOMException NoRequestType NoSoapBody
	*/
	public Document build(Document doc) throws DOMException, TrustException {
	SOAPConstants soapConsts = WSSecurityUtil.getSOAPConstants(doc.getDocumentElement());

	if (action != null) {
	Element envelope = doc.getDocumentElement();
	Element soapHeader = (Element) WSSecurityUtil.getDirectChild(doc.getFirstChild(), soapConsts.getHeaderQName().getLocalPart(),
	soapConsts.getEnvelopeURI());

	if (soapHeader == null) {
	soapHeader = createElementInSameNamespace(envelope, soapConsts.getHeaderQName().getLocalPart());
	soapHeader = WSSecurityUtil.prependChildElement(doc, envelope, soapHeader, true);
	}

	Element actionElement = doc.createElementNS(TrustConstants.WSA_NS, TrustConstants.WST_PREFIX + TrustConstants.ACTION_TAG);
	Node actionContent = doc.createTextNode(action.toString());
	actionElement.appendChild(actionContent);
	soapHeader.appendChild(actionElement);
	}
	Element soapBody = WSSecurityUtil.findBodyElement(doc, soapConsts);
	if (soapBody == null) {
	throw new NoSoapBody("A SOAP Body element is needed to insert the <RequestSecurityToken>.");
	}

	setWsuId(soapBody);
	if (tokenRequest != null)
	soapBody.appendChild(tokenRequest.getElement());
	return doc;
	}

	/**
	* create a new element in the same namespace
	* <p/>
	*
	* @param parent
	* @param localName
	* @return
	*/
	private static Element createElementInSameNamespace(Element parent, String localName) {
	String prefix = parent.getPrefix();
	if (prefix == null) {
	prefix = "";
	}
	String qName = prefix + ":" + localName;
	String nsUri = parent.getNamespaceURI();
	return parent.getOwnerDocument().createElementNS(nsUri, qName);
	}

	private String setWsuId(Element bodyElement) {
	String id = bodyElement.getAttributeNS(WSConstants.WSU_NS, "Id");
	if ((id == null) \|\| (id.length() == 0)) {
	id = "id-" + Integer.toString(bodyElement.hashCode());
	String prefix = WSSecurityUtil.setNamespace(bodyElement, WSConstants.WSU_NS, WSConstants.WSU_PREFIX);
	bodyElement.setAttributeNS(WSConstants.WSU_NS, prefix + ":Id", id);
	}
	return id;
	}

	public static void main(String[] args) throws Exception {
	SOAPEnvelope env = new SOAPEnvelope();
	Document doc = env.getAsDocument();
	WSSConfig wssConfig = WSSConfig.getDefaultWSConfig();

	RequestSecurityToken tokenRequest = new RequestSecurityToken(doc, TrustConstants.REQUEST_ISSUE);

	tokenRequest.setContext(new URI("http://context.context"));
	tokenRequest.setTokenType(TokenTypes.X509);

	UsernameToken userToken = new UsernameToken(wssConfig.isPrecisionInMilliSeconds(), doc);
	userToken.setName("bob");
	userToken.setPassword("bobspass");
	tokenRequest.setBase(new SecurityTokenOrReference(userToken));

	UsernameToken user2Token = new UsernameToken(wssConfig.isPrecisionInMilliSeconds(), doc);
	user2Token.setName("joe");
	user2Token.setPassword("bobspass");
	tokenRequest.addSupporting(new SecurityTokenOrReference(user2Token));

	UsernameToken user3Token = new UsernameToken(wssConfig.isPrecisionInMilliSeconds(), doc);
	user3Token.setName("mike");
	user3Token.setPassword("bobspass");
	tokenRequest.addSupporting(new SecurityTokenOrReference(user3Token));

	WSAddTokenRequest builder = new WSAddTokenRequest(tokenRequest);
	builder.addAction();
	doc = builder.build(doc);
	/*
	WSSignEnvelope builder = new WSSignEnvelope();
	builder.setUserInfo(credName, password);
	builder.setKeyIdentifierType(WSConstants.BST_DIRECT_REFERENCE);
	doc = builder.build(env.getAsDocument(), CryptoFactory.getInstance(cryptoPropFile));
	*/

	System.out.println("\n============= Request ==============");
	System.out.println(org.apache.axis.utils.XMLUtils.DocumentToString(doc));
	}

	}