Skip to content
GitLab
Projects
Groups
Snippets
/
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Sign in
Toggle navigation
Menu
Open sidebar
reg-app
Regapp
Commits
911f2083
Commit
911f2083
authored
Apr 27, 2016
by
michael.simon
Browse files
Post Handler works for now
parent
0c4566ef
Changes
1
Hide whitespace changes
Inline
Side-by-side
bwreg-service/src/main/java/edu/kit/scc/webreg/service/saml/Saml2ResponseValidationService.java
View file @
911f2083
...
...
@@ -22,8 +22,11 @@ import org.joda.time.Instant;
import
org.opensaml.core.config.ConfigurationService
;
import
org.opensaml.core.criterion.EntityIdCriterion
;
import
org.opensaml.saml.common.SignableSAMLObject
;
import
org.opensaml.saml.common.messaging.SAMLMessageSecuritySupport
;
import
org.opensaml.saml.common.xml.SAMLConstants
;
import
org.opensaml.saml.criterion.EntityRoleCriterion
;
import
org.opensaml.saml.metadata.resolver.MetadataResolver
;
import
org.opensaml.saml.metadata.resolver.impl.BasicRoleDescriptorResolver
;
import
org.opensaml.saml.metadata.resolver.impl.DOMMetadataResolver
;
import
org.opensaml.saml.saml2.core.AttributeQuery
;
import
org.opensaml.saml.saml2.core.Issuer
;
...
...
@@ -38,6 +41,8 @@ import org.opensaml.saml.security.impl.SAMLSignatureProfileValidator;
import
org.opensaml.security.credential.UsageType
;
import
org.opensaml.security.criteria.UsageCriterion
;
import
org.opensaml.xmlsec.DecryptionConfiguration
;
import
org.opensaml.xmlsec.config.DefaultSecurityConfigurationBootstrap
;
import
org.opensaml.xmlsec.impl.BasicSignatureValidationConfiguration
;
import
org.opensaml.xmlsec.keyinfo.KeyInfoCredentialResolver
;
import
org.opensaml.xmlsec.signature.support.SignatureException
;
import
org.opensaml.xmlsec.signature.support.impl.ExplicitKeySignatureTrustEngine
;
...
...
@@ -130,16 +135,24 @@ public class Saml2ResponseValidationService {
DOMMetadataResolver
mp
=
new
DOMMetadataResolver
(
entityDescriptor
.
getDOM
());
mp
.
setId
(
entityDescriptor
.
getEntityID
()
+
"-resolver"
);
BasicRoleDescriptorResolver
roleResolver
=
new
BasicRoleDescriptorResolver
(
mp
);
KeyInfoCredentialResolver
keyInfoCredResolver
=
DefaultSecurityConfigurationBootstrap
.
buildBasicInlineKeyInfoCredentialResolver
();
MetadataCredentialResolver
mdCredResolver
=
new
MetadataCredentialResolver
();
mdCredResolver
.
setKeyInfoCredentialResolver
(
keyInfoCredResolver
);
mdCredResolver
.
setRoleDescriptorResolver
(
roleResolver
);
try
{
mp
.
initialize
();
roleResolver
.
initialize
();
mdCredResolver
.
initialize
();
}
catch
(
ComponentInitializationException
e
)
{
throw
new
SamlAuthenticationException
(
"ComponentInit Exception"
,
e
);
logger
.
error
(
"Cannot init MDCredResolver"
,
e
);
throw
new
SamlAuthenticationException
(
"Cannot init MDCredResolver"
,
e
);
}
MetadataCredentialResolver
mdCredResolver
=
new
MetadataCredentialResolver
();
DecryptionConfiguration
dc
=
ConfigurationService
.
get
(
DecryptionConfiguration
.
class
);
KeyInfoCredentialResolver
keyInfoCredResolver
=
dc
.
getDataKeyInfoCredentialResolver
();
// DecryptionConfiguration dc = ConfigurationService.get(DecryptionConfiguration.class);
// KeyInfoCredentialResolver keyInfoCredResolver = dc.getDataKeyInfoCredentialResolver();
// KeyInfoCredentialResolver keyInfoCredResolver =
// ConfigurationService.getGlobalSecurityConfiguration().getDefaultKeyInfoCredentialResolver();
...
...
Write
Preview
Supports
Markdown
0%
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment