1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
|
/*
* JBoss, Home of Professional Open Source
* Copyright 2005, JBoss Inc., and individual contributors as indicated
* by the @authors tag. See the copyright.txt in the distribution for a
* full listing of individual contributors.
*
* This is free software; you can redistribute it and/or modify it
* under the terms of the GNU Lesser General Public License as
* published by the Free Software Foundation; either version 2.1 of
* the License, or (at your option) any later version.
*
* This software is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public
* License along with this software; if not, write to the Free
* Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
* 02110-1301 USA, or see the FSF site: http://www.fsf.org.
*/
package org.jboss.ws.extensions.security;
import java.util.ArrayList;
import java.util.Collection;
import java.util.List;
import javax.xml.namespace.QName;
import org.jboss.ws.extensions.security.element.SecurityHeader;
import org.jboss.ws.extensions.security.exception.FailedCheckException;
import org.jboss.ws.extensions.security.exception.WSSecurityException;
import org.w3c.dom.Document;
import org.w3c.dom.Element;
public class RequireTargetableOperation implements RequireOperation
{
public RequireTargetableOperation(SecurityHeader header, SecurityStore store) throws WSSecurityException
{
}
private Collection<String> resolveTarget(Document message, Target target) throws WSSecurityException
{
if (target instanceof QNameTarget)
return resolveQNameTarget(message, (QNameTarget) target);
else if (target instanceof WsuIdTarget)
{
Collection<String> result = new ArrayList<String>(1);
result.add(((WsuIdTarget)target).getId());
return result;
}
throw new WSSecurityException("Unknown target");
}
private Collection<String> resolveQNameTarget(Document message, QNameTarget target) throws WSSecurityException
{
QName name = target.getName();
Element element = Util.findElement(message.getDocumentElement(), name);
if (element == null)
throw new FailedCheckException("Required QName was not present: " + name);
String id = Util.getWsuId(element);
if (id == null)
throw new FailedCheckException("Required element did not contain a wsu:id.");
Collection<String> result = new ArrayList<String>(1);
result.add(id);
return result;
}
public void process(Document message, List<Target> targets, String alias, String credential, Collection<String> processedIds) throws WSSecurityException
{
if (targets == null || targets.size() == 0)
{
// By default we require just the body element
String namespace = message.getDocumentElement().getNamespaceURI();
targets = new ArrayList<Target>(1);
targets.add(new QNameTarget(new QName(namespace, "Body"), true));
}
for (Target target : targets)
{
Collection<String> ids = resolveTarget(message, target);
if (! processedIds.containsAll(ids))
throw new FailedCheckException("Required elements for encryption and or signing are not all present.");
}
}
}
|
