svn commit: r666568 - /webservices/rampart/trunk/java/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/HttpsTokenBuilder.java

Wed, 11 Jun 2008 01:40:11 -0700 

Author: nandana
Date: Wed Jun 11 01:39:47 2008
New Revision: 666568

URL: http://svn.apache.org/viewvc?rev=666568&view=rev
Log:
RAMPART-169 Applying Stefan's patch, thanks Stefan

Added:
    
webservices/rampart/trunk/java/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/HttpsTokenBuilder.java

Added: 
webservices/rampart/trunk/java/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/HttpsTokenBuilder.java
URL: 
http://svn.apache.org/viewvc/webservices/rampart/trunk/java/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/HttpsTokenBuilder.java?rev=666568&view=auto
==============================================================================
--- 
webservices/rampart/trunk/java/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/HttpsTokenBuilder.java
 (added)
+++ 
webservices/rampart/trunk/java/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/HttpsTokenBuilder.java
 Wed Jun 11 01:39:47 2008
@@ -0,0 +1,102 @@
+/*
+ * Copyright 2001-2004 The Apache Software Foundation.
+ * 
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ * 
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ * 
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.apache.ws.secpolicy12.builders;
+
+import java.util.Iterator;
+import java.util.List;
+
+import javax.xml.namespace.QName;
+
+import org.apache.axiom.om.OMElement;
+import org.apache.neethi.Assertion;
+import org.apache.neethi.AssertionBuilderFactory;
+import org.apache.neethi.Policy;
+import org.apache.neethi.PolicyEngine;
+import org.apache.neethi.builders.AssertionBuilder;
+import org.apache.neethi.builders.xml.XmlPrimtiveAssertion;
+import org.apache.ws.secpolicy.SPConstants;
+import org.apache.ws.secpolicy.SP12Constants;
+import org.apache.ws.secpolicy.model.HttpsToken;
+
+/**
+ * This is a standard assertion builder implementation for the https token 
+ * as specified by the ws security policy 1.2 specification. In order for this 
builder to be used
+ * it is required that the security policy namespace uri is [EMAIL PROTECTED] 
SP12Constants#SP_NS} 
+ * The builder will handle
+ * <ul>
+ *  <li><code>HttpBasicAuthentication</code></li>
+ *  <li><code>HttpDigestAuthentication</code></li>
+ *  <li><code>RequireClientCertificate</code></li>
+ * </ul> 
+ * alternatives in the HttpsToken considering both cases whether the policy is 
normalized or not.
+ * 
+ */
+public class HttpsTokenBuilder implements AssertionBuilder {
+    
+    /**
+     * [EMAIL PROTECTED]
+     */
+    public Assertion build(OMElement element, AssertionBuilderFactory factory) 
throws IllegalArgumentException {
+        HttpsToken httpsToken = new HttpsToken(SPConstants.SP_V12);
+        
+        Policy policy = PolicyEngine.getPolicy(element.getFirstElement());
+        policy = (Policy) policy.normalize(false);
+        
+        for (Iterator iterator = policy.getAlternatives(); 
iterator.hasNext();) {
+            processAlternative((List) iterator.next(), httpsToken);
+            break; // since there should be only one alternative
+        }
+        
+        return httpsToken;
+    }
+
+    /**
+     * [EMAIL PROTECTED]
+     */
+    public QName[] getKnownElements() {
+        return new QName[] {SP12Constants.HTTPS_TOKEN};
+    }
+    
+    /**
+     * Process policy alternatives inside the HttpsToken element.
+     * Essentially this method will search for<br>
+     * <ul>
+     *  <li><code>HttpBasicAuthentication</code></li>
+     *  <li><code>HttpDigestAuthentication</code></li>
+     *  <li><code>RequireClientCertificate</code></li>
+     * </ul>
+     * elements.
+     * @param assertions the list of assertions to be searched through.
+     * @param parent the https token, that is to be populated with retrieved 
data.
+     */
+    private void processAlternative(List assertions, HttpsToken parent) {
+        
+        for (Iterator iterator = assertions.iterator(); iterator.hasNext();) {
+            XmlPrimtiveAssertion primtive = (XmlPrimtiveAssertion) 
iterator.next();
+            QName qname = primtive.getName();
+            
+            if (qname != null) {
+                if (SP12Constants.HTTP_BASIC_AUTHENTICATION.equals(qname)) {
+                    parent.setHttpBasicAuthentication(true);
+                } else if 
(SP12Constants.HTTP_DIGEST_AUTHENTICATION.equals(qname)) {
+                    parent.setHttpDigestAuthentication(true);
+                } else if 
(SP12Constants.REQUIRE_CLIENT_CERTIFICATE.equals(qname)) {
+                    parent.setRequireClientCertificate(true);
+                }
+            }
+        }
+    }
+}

Reply via email to