| /* |
| * Copyright 2004,2005 The Apache Software Foundation. |
| * |
| * Licensed under the Apache License, Version 2.0 (the "License"); |
| * you may not use this file except in compliance with the License. |
| * You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| |
| package org.apache.ws.security.processor; |
| |
| import org.apache.ws.security.WSConstants; |
| import org.apache.ws.security.WSDocInfo; |
| import org.apache.ws.security.WSPasswordCallback; |
| import org.apache.ws.security.WSSConfig; |
| import org.apache.ws.security.WSSecurityEngineResult; |
| import org.apache.ws.security.WSSecurityException; |
| import org.apache.ws.security.components.crypto.Crypto; |
| import org.apache.ws.security.message.token.SecurityContextToken; |
| import org.w3c.dom.Element; |
| |
| import javax.security.auth.callback.Callback; |
| import javax.security.auth.callback.CallbackHandler; |
| import javax.security.auth.callback.UnsupportedCallbackException; |
| |
| import java.io.IOException; |
| import java.util.Vector; |
| |
| /** |
| * The processor to process <code>wsc:SecurityContextToken</code>. |
| * |
| * @author Ruchith Fernando (ruchith.fernando@gmail.com) |
| */ |
| public class SecurityContextTokenProcessor implements Processor { |
| |
| /** |
| * The <code>wsi:ID</code> of the <code>wsc:SecurityContextToken</code> |
| * element. |
| */ |
| private String sctId; |
| |
| /** |
| * The secret associated with the <code>wsc:SecurityContextToken</code>. |
| */ |
| private byte[] secret; |
| |
| /** |
| * The <code>wsc:Identifier</code> of the |
| * <code>wsc:SecurityContextToken</code> element. |
| */ |
| private String identifier; |
| |
| public void handleToken(Element elem, Crypto crypto, Crypto decCrypto, |
| CallbackHandler cb, WSDocInfo wsDocInfo, Vector returnResults, |
| WSSConfig config) throws WSSecurityException { |
| |
| SecurityContextToken sct = new SecurityContextToken(elem); |
| this.identifier = sct.getIdentifier(); |
| this.secret = this.getSecret(cb, sct); |
| this.sctId = sct.getID(); |
| |
| returnResults.add(0, new WSSecurityEngineResult(WSConstants.SCT, sct)); |
| } |
| |
| /** |
| * Get the secret from the provided callback handler and return it. |
| * |
| * @param cb |
| * @param sct |
| * @return The key collected using the callback handler |
| */ |
| private byte[] getSecret(CallbackHandler cb, SecurityContextToken sct) |
| throws WSSecurityException { |
| |
| if (cb == null) { |
| throw new WSSecurityException(WSSecurityException.FAILURE, |
| "noCallback"); |
| } |
| |
| WSPasswordCallback callback = new WSPasswordCallback(sct |
| .getIdentifier(), WSPasswordCallback.SECURITY_CONTEXT_TOKEN); |
| Callback[] callbacks = new Callback[1]; |
| callbacks[0] = callback; |
| try { |
| cb.handle(callbacks); |
| } catch (IOException e) { |
| throw new WSSecurityException(WSSecurityException.FAILURE, "noKey", |
| new Object[] { sct.getIdentifier() }, e); |
| } catch (UnsupportedCallbackException e) { |
| throw new WSSecurityException(WSSecurityException.FAILURE, "noKey", |
| new Object[] { sct.getIdentifier() }, e); |
| } |
| |
| return callback.getKey(); |
| } |
| |
| /** |
| * Return the id of the |
| */ |
| public String getId() { |
| return this.sctId; |
| } |
| |
| /** |
| * @return Returns the identifier. |
| */ |
| public String getIdentifier() { |
| return identifier; |
| } |
| |
| /** |
| * @return Returns the secret. |
| */ |
| public byte[] getSecret() { |
| return secret; |
| } |
| |
| } |