Author: prabath
Date: Fri Jan 11 20:14:37 2008
New Revision: 12158
Log:
added verification
Modified:
trunk/solutions/identity/modules/token-verifier-core/src/main/java/org/wso2/solutions/identity/openid/relyingparty/OpenIDConsumer.java
Modified:
trunk/solutions/identity/modules/token-verifier-core/src/main/java/org/wso2/solutions/identity/openid/relyingparty/OpenIDConsumer.java
==============================================================================
---
trunk/solutions/identity/modules/token-verifier-core/src/main/java/org/wso2/solutions/identity/openid/relyingparty/OpenIDConsumer.java
(original)
+++
trunk/solutions/identity/modules/token-verifier-core/src/main/java/org/wso2/solutions/identity/openid/relyingparty/OpenIDConsumer.java
Fri Jan 11 20:14:37 2008
@@ -15,6 +15,7 @@
import org.openid4java.consumer.InMemoryNonceVerifier;
import org.openid4java.consumer.VerificationResult;
import org.openid4java.discovery.DiscoveryInformation;
+import org.openid4java.discovery.Identifier;
import org.openid4java.infocard.InfocardException;
import org.openid4java.infocard.OpenIDToken;
import org.openid4java.message.AuthRequest;
@@ -354,44 +355,50 @@
// Retrieve the previously stored discovery information
DiscoveryInformation discovered = (DiscoveryInformation) session
.getAttribute("discovered");
-
- StringBuffer receivingURL = new
StringBuffer(openidResp.getParameterValue(IdentityConstants.OpenId.ATTR_RETURN_TO));//
request.getRequestURL());
+
+ StringBuffer receivingURL = new StringBuffer(openidResp
+
.getParameterValue(IdentityConstants.OpenId.ATTR_RETURN_TO));//
request.getRequestURL());
String queryString = request.getQueryString();
if (queryString != null && queryString.length() > 0)
receivingURL.append("?").append(request.getQueryString());
- // verify the response
+ // Verify the response
VerificationResult verification = manager.verify(receivingURL
.toString(), openidResp, discovered);
- verification.getVerifiedId();
+ // Examine the verification result and extract the verified
+ // identifier
+ Identifier verified = verification.getVerifiedId();
- Message authResponse = verification.getAuthResponse();
+ if (verified != null) {
- if (authResponse instanceof AuthSuccess) {
+ Message authResponse = verification.getAuthResponse();
- FetchResponse fetchResp = null;
- AuthSuccess authSuccess = null;
- MessageExtension extension = null;
+ if (authResponse instanceof AuthSuccess) {
- authSuccess = (AuthSuccess) authResponse;
+ FetchResponse fetchResp = null;
+ AuthSuccess authSuccess = null;
+ MessageExtension extension = null;
- extension = authSuccess.getExtension(AxMessage.OPENID_NS_AX);
+ authSuccess = (AuthSuccess) authResponse;
- if (authSuccess.hasExtension(AxMessage.OPENID_NS_AX)
- && extension instanceof FetchResponse) {
- fetchResp = (FetchResponse) extension;
+ extension = authSuccess.getExtension(AxMessage.OPENID_NS_AX);
- List aliases = fetchResp.getAttributeAliases();
- Map types = fetchResp.getAttributeTypes();
- String alias;
- List values;
- for (Object a : aliases) {
- alias = (String) a;
- values = fetchResp.getAttributeValues(alias);
- request.setAttribute(alias.toLowerCase(), (String) values
- .get(0));
+ if (authSuccess.hasExtension(AxMessage.OPENID_NS_AX)
+ && extension instanceof FetchResponse) {
+ fetchResp = (FetchResponse) extension;
+
+ List aliases = fetchResp.getAttributeAliases();
+ Map types = fetchResp.getAttributeTypes();
+ String alias;
+ List values;
+ for (Object a : aliases) {
+ alias = (String) a;
+ values = fetchResp.getAttributeValues(alias);
+ request.setAttribute(alias.toLowerCase(),
+ (String) values.get(0));
+ }
}
}
}
_______________________________________________
Identity-dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/identity-dev
