Example 1 with PModeLegProtocol
use of com.helger.phase4.model.pmode.leg.PModeLegProtocol in project phase4 by phax.
the class CEFCompatibilityValidatorTwoWayFuncTest method testValidatePModeProtocolSOAP11NotAllowed.
@Test
public void testValidatePModeProtocolSOAP11NotAllowed() {
m_aPMode.setLeg2(new PModeLeg(new PModeLegProtocol("https://test.com", ESoapVersion.SOAP_11), null, null, null, null));
VALIDATOR.validatePMode(m_aPMode, m_aErrorList);
assertTrue(m_aErrorList.containsAny(x -> x.getErrorText(LOCALE).contains("SoapVersion '1.1' is unsupported")));
}
Also used :
Ebms3SignalMessage(com.helger.phase4.ebms3header.Ebms3SignalMessage)
PModeLegSecurity(com.helger.phase4.model.pmode.leg.PModeLegSecurity)
MessageHelperMethods(com.helger.phase4.messaging.domain.MessageHelperMethods)
EMEP(com.helger.phase4.model.EMEP)
ErrorList(com.helger.commons.error.list.ErrorList)
ETriState(com.helger.commons.state.ETriState)
ESoapVersion(com.helger.phase4.soap.ESoapVersion)
Assert.assertNotSame(org.junit.Assert.assertNotSame)
EPModeSendReceiptReplyPattern(com.helger.phase4.model.pmode.leg.EPModeSendReceiptReplyPattern)
ECryptoAlgorithmSign(com.helger.phase4.crypto.ECryptoAlgorithmSign)
Locale(java.util.Locale)
Ebms3MessageInfo(com.helger.phase4.ebms3header.Ebms3MessageInfo)
PMode(com.helger.phase4.model.pmode.PMode)
PModeLeg(com.helger.phase4.model.pmode.leg.PModeLeg)
ClassRule(org.junit.ClassRule)
PModeLegErrorHandling(com.helger.phase4.model.pmode.leg.PModeLegErrorHandling)
PhotonAppWebTestRule(com.helger.photon.app.mock.PhotonAppWebTestRule)
Before(org.junit.Before)
Ebms3PartyId(com.helger.phase4.ebms3header.Ebms3PartyId)
PModeLegProtocol(com.helger.phase4.model.pmode.leg.PModeLegProtocol)
Ebms3UserMessage(com.helger.phase4.ebms3header.Ebms3UserMessage)
ECryptoAlgorithmSignDigest(com.helger.phase4.crypto.ECryptoAlgorithmSignDigest)
EWSSVersion(com.helger.phase4.wss.EWSSVersion)
Assert.assertTrue(org.junit.Assert.assertTrue)
EMEPBinding(com.helger.phase4.model.EMEPBinding)
Test(org.junit.Test)
Ebms3To(com.helger.phase4.ebms3header.Ebms3To)
ECryptoAlgorithmCrypt(com.helger.phase4.crypto.ECryptoAlgorithmCrypt)
Ebms3From(com.helger.phase4.ebms3header.Ebms3From)
Ignore(org.junit.Ignore)
Ebms3PartyInfo(com.helger.phase4.ebms3header.Ebms3PartyInfo)
IPModeIDProvider(com.helger.phase4.model.pmode.IPModeIDProvider)
PModeLeg(com.helger.phase4.model.pmode.leg.PModeLeg)
PModeLegProtocol(com.helger.phase4.model.pmode.leg.PModeLegProtocol)
Test(org.junit.Test)
Example 2 with PModeLegProtocol
use of com.helger.phase4.model.pmode.leg.PModeLegProtocol in project phase4 by phax.
the class ENTSOGCompatibilityValidator method _checkIfLegIsValid.
private static void _checkIfLegIsValid(@Nonnull final ErrorList aErrorList, @Nonnull final PModeLeg aPModeLeg, @Nonnull @Nonempty final String sFieldPrefix) {
final PModeLegProtocol aLegProtocol = aPModeLeg.getProtocol();
if (aLegProtocol == null) {
aErrorList.add(_createError(sFieldPrefix + "Protocol is missing"));
} else {
// PROTOCOL Address only https allowed
final String sAddressProtocol = aLegProtocol.getAddressProtocol();
if (StringHelper.hasText(sAddressProtocol)) {
if (sAddressProtocol.equalsIgnoreCase("http") || sAddressProtocol.equalsIgnoreCase("https")) {
// Always okay
} else {
// Other protocol
aErrorList.add(_createError(sFieldPrefix + "AddressProtocol '" + sAddressProtocol + "' is unsupported"));
}
} else {
// Empty address protocol
aErrorList.add(_createError(sFieldPrefix + "AddressProtocol is missing"));
}
final ESoapVersion eSOAPVersion = aLegProtocol.getSoapVersion();
if (!eSOAPVersion.isAS4Default()) {
aErrorList.add(_createError(sFieldPrefix + "SoapVersion '" + eSOAPVersion.getVersion() + "' is unsupported"));
}
}
// Only check the security features if a Security Leg is currently present
final PModeLegSecurity aPModeLegSecurity = aPModeLeg.getSecurity();
if (aPModeLegSecurity != null) {
// Check Certificate
if (aPModeLegSecurity.getX509SignatureCertificate() == null) {
aErrorList.add(_createError(sFieldPrefix + "Security.X509SignatureCertificate is missing"));
}
// Check Signature Algorithm
if (aPModeLegSecurity.getX509SignatureAlgorithm() == null) {
aErrorList.add(_createError(sFieldPrefix + "Security.X509SignatureAlgorithm is missing"));
} else if (!aPModeLegSecurity.getX509SignatureAlgorithm().equals(ECryptoAlgorithmSign.RSA_SHA_256)) {
aErrorList.add(_createError(sFieldPrefix + "Security.X509SignatureAlgorithm must use the value '" + ECryptoAlgorithmSign.RSA_SHA_256.getID() + "'"));
}
// Check Hash Function
if (aPModeLegSecurity.getX509SignatureHashFunction() == null) {
aErrorList.add(_createError(sFieldPrefix + "Security.X509SignatureHashFunction is missing"));
} else if (!aPModeLegSecurity.getX509SignatureHashFunction().equals(ECryptoAlgorithmSignDigest.DIGEST_SHA_256)) {
aErrorList.add(_createError(sFieldPrefix + "Securoty.X509SignatureHashFunction must use the value '" + ECryptoAlgorithmSignDigest.DIGEST_SHA_256.getID() + "'"));
}
// Check Encrypt algorithm
if (aPModeLegSecurity.getX509EncryptionAlgorithm() == null) {
aErrorList.add(_createError(sFieldPrefix + "Security.X509EncryptionAlgorithm is missing"));
} else if (!aPModeLegSecurity.getX509EncryptionAlgorithm().equals(ECryptoAlgorithmCrypt.AES_128_GCM)) {
aErrorList.add(_createError(sFieldPrefix + "Securoty.X509EncryptionAlgorithm must use the value '" + ECryptoAlgorithmCrypt.AES_128_GCM.getID() + "' instead of '" + aPModeLegSecurity.getX509EncryptionAlgorithm().getID() + "'"));
}
// Check WSS Version = 1.1.1
if (aPModeLegSecurity.getWSSVersion() != null) {
// Check for WSS - Version if there is one present
if (!aPModeLegSecurity.getWSSVersion().equals(EWSSVersion.WSS_111))
aErrorList.add(_createError(sFieldPrefix + "Security.WSSVersion must use the value " + EWSSVersion.WSS_111 + " instead of " + aPModeLegSecurity.getWSSVersion()));
}
if (aPModeLegSecurity.isUsernameTokenCreatedDefined() || aPModeLegSecurity.isUsernameTokenDigestDefined() || aPModeLegSecurity.isUsernameTokenNonceDefined() || aPModeLegSecurity.hasUsernameTokenPassword() || aPModeLegSecurity.hasUsernameTokenUsername()) {
aErrorList.add(_createError(sFieldPrefix + "Username nor it's part MUST NOT be set"));
}
// PModeAuthorize
if (aPModeLegSecurity.isPModeAuthorizeDefined()) {
if (aPModeLegSecurity.isPModeAuthorize())
aErrorList.add(_createError(sFieldPrefix + "Security.PModeAuthorize must be set to 'false'"));
} else {
aErrorList.add(_createError(sFieldPrefix + "Security.PModeAuthorize is missing"));
}
// SEND RECEIPT TRUE/FALSE when false don't send receipts anymore
if (aPModeLegSecurity.isSendReceiptDefined()) {
if (aPModeLegSecurity.isSendReceipt()) {
// set response required
if (!aPModeLegSecurity.isSendReceiptNonRepudiation())
aErrorList.add(_createError(sFieldPrefix + "SendReceiptNonRepudiation must be set to 'true'"));
if (aPModeLegSecurity.getSendReceiptReplyPattern() != EPModeSendReceiptReplyPattern.RESPONSE)
aErrorList.add(_createError(sFieldPrefix + "Security.SendReceiptReplyPattern must use the value " + EPModeSendReceiptReplyPattern.RESPONSE + " instead of " + aPModeLegSecurity.getSendReceiptReplyPattern()));
}
}
} else {
aErrorList.add(_createError(sFieldPrefix + "Security is missing"));
}
// Error Handling
final PModeLegErrorHandling aErrorHandling = aPModeLeg.getErrorHandling();
if (aErrorHandling != null) {
if (aErrorHandling.isReportAsResponseDefined()) {
if (!aErrorHandling.isReportAsResponse())
aErrorList.add(_createError(sFieldPrefix + "ErrorHandling.Report.AsResponse must be 'true'"));
} else {
aErrorList.add(_createError(sFieldPrefix + "ErrorHandling.Report.AsResponse is missing"));
}
if (aErrorHandling.isReportProcessErrorNotifyConsumerDefined()) {
if (!aErrorHandling.isReportProcessErrorNotifyConsumer())
aErrorList.add(_createWarn(sFieldPrefix + "ErrorHandling.Report.ProcessErrorNotifyConsumer should be 'true'"));
} else {
aErrorList.add(_createError(sFieldPrefix + "ErrorHandling.Report.ProcessErrorNotifyConsumer is missing"));
}
if (aErrorHandling.isReportProcessErrorNotifyProducerDefined()) {
if (!aErrorHandling.isReportProcessErrorNotifyProducer())
aErrorList.add(_createWarn(sFieldPrefix + "ErrorHandling.Report.ProcessErrorNotifyProducer should be 'true'"));
} else {
aErrorList.add(_createError(sFieldPrefix + "ErrorHandling.Report.ProcessErrorNotifyProducer is missing"));
}
if (aErrorHandling.getReportSenderErrorsTo() != null && aErrorHandling.getReportSenderErrorsTo().addresses() != null && aErrorHandling.getReportSenderErrorsTo().addresses().isNotEmpty()) {
aErrorList.add(_createError(sFieldPrefix + "ReportSenderErrorsTo must not be set"));
}
} else {
aErrorList.add(_createError(sFieldPrefix + "ErrorHandling is missing"));
}
}
Also used :
ESoapVersion(com.helger.phase4.soap.ESoapVersion)
PModeLegErrorHandling(com.helger.phase4.model.pmode.leg.PModeLegErrorHandling)
PModeLegProtocol(com.helger.phase4.model.pmode.leg.PModeLegProtocol)
PModeLegSecurity(com.helger.phase4.model.pmode.leg.PModeLegSecurity)
Example 3 with PModeLegProtocol
use of com.helger.phase4.model.pmode.leg.PModeLegProtocol in project phase4 by phax.
the class CEFCompatibilityValidator method _checkIfLegIsValid.
private static void _checkIfLegIsValid(@Nonnull final ErrorList aErrorList, @Nonnull final PModeLeg aPModeLeg, @Nonnull @Nonempty final String sFieldPrefix) {
final PModeLegProtocol aLegProtocol = aPModeLeg.getProtocol();
if (aLegProtocol == null) {
aErrorList.add(_createError(sFieldPrefix + "Protocol is missing"));
} else {
// PROTOCOL Address only https allowed
final String sAddressProtocol = aLegProtocol.getAddressProtocol();
if (StringHelper.hasText(sAddressProtocol)) {
if (sAddressProtocol.equalsIgnoreCase("https")) {
// Always okay
} else if (sAddressProtocol.equalsIgnoreCase("http") && GlobalDebug.isDebugMode()) {
// Okay in debug mode only
} else {
// Other protocol
aErrorList.add(_createError(sFieldPrefix + "AddressProtocol '" + sAddressProtocol + "' is unsupported"));
}
} else {
// Empty address protocol
if (false)
aErrorList.add(_createError(sFieldPrefix + "AddressProtocol is missing"));
}
final ESoapVersion eSOAPVersion = aLegProtocol.getSoapVersion();
if (!eSOAPVersion.isAS4Default()) {
aErrorList.add(_createError(sFieldPrefix + "SoapVersion '" + eSOAPVersion.getVersion() + "' is unsupported"));
}
}
// Only check the security features if a Security Leg is currently present
final PModeLegSecurity aPModeLegSecurity = aPModeLeg.getSecurity();
if (aPModeLegSecurity != null) {
// certificate is in Partner/SMP - therefore not here :)
if (false)
if (aPModeLegSecurity.getX509SignatureCertificate() == null) {
aErrorList.add(_createError(sFieldPrefix + "Security.X509SignatureCertificate is missing"));
}
// Check Signature Algorithm
if (aPModeLegSecurity.getX509SignatureAlgorithm() == null) {
aErrorList.add(_createError(sFieldPrefix + "Security.X509SignatureAlgorithm is missing"));
} else if (!aPModeLegSecurity.getX509SignatureAlgorithm().equals(ECryptoAlgorithmSign.RSA_SHA_256)) {
aErrorList.add(_createError(sFieldPrefix + "Security.X509SignatureAlgorithm must use the value '" + ECryptoAlgorithmSign.RSA_SHA_256.getID() + "'"));
}
// Check Hash Function
if (aPModeLegSecurity.getX509SignatureHashFunction() == null) {
aErrorList.add(_createError(sFieldPrefix + "Security.X509SignatureHashFunction is missing"));
} else if (!aPModeLegSecurity.getX509SignatureHashFunction().equals(ECryptoAlgorithmSignDigest.DIGEST_SHA_256)) {
aErrorList.add(_createError(sFieldPrefix + "Securoty.X509SignatureHashFunction must use the value '" + ECryptoAlgorithmSignDigest.DIGEST_SHA_256.getID() + "'"));
}
// Check Encrypt algorithm
if (aPModeLegSecurity.getX509EncryptionAlgorithm() == null) {
aErrorList.add(_createError(sFieldPrefix + "Security.X509EncryptionAlgorithm is missing"));
} else if (!aPModeLegSecurity.getX509EncryptionAlgorithm().equals(ECryptoAlgorithmCrypt.AES_128_GCM)) {
aErrorList.add(_createError(sFieldPrefix + "Securoty.X509EncryptionAlgorithm must use the value '" + ECryptoAlgorithmCrypt.AES_128_GCM.getID() + "' instead of '" + aPModeLegSecurity.getX509EncryptionAlgorithm().getID() + "'"));
}
// Check WSS Version = 1.1.1
if (aPModeLegSecurity.getWSSVersion() != null) {
// Check for WSS - Version if there is one present
if (!aPModeLegSecurity.getWSSVersion().equals(EWSSVersion.WSS_111))
aErrorList.add(_createError(sFieldPrefix + "Security.WSSVersion must use the value " + EWSSVersion.WSS_111 + " instead of " + aPModeLegSecurity.getWSSVersion()));
}
// PModeAuthorize
if (aPModeLegSecurity.isPModeAuthorizeDefined()) {
if (aPModeLegSecurity.isPModeAuthorize())
aErrorList.add(_createError(sFieldPrefix + "Security.PModeAuthorize must be set to 'false'"));
} else {
aErrorList.add(_createError(sFieldPrefix + "Security.PModeAuthorize is missing"));
}
// SEND RECEIPT TRUE/FALSE when false don't send receipts anymore
if (aPModeLegSecurity.isSendReceiptDefined()) {
if (aPModeLegSecurity.isSendReceipt()) {
// set response required
if (aPModeLegSecurity.getSendReceiptReplyPattern() != EPModeSendReceiptReplyPattern.RESPONSE)
aErrorList.add(_createError(sFieldPrefix + "Security.SendReceiptReplyPattern must use the value " + EPModeSendReceiptReplyPattern.RESPONSE + " instead of " + aPModeLegSecurity.getSendReceiptReplyPattern()));
}
}
} else {
aErrorList.add(_createError(sFieldPrefix + "Security is missing"));
}
// Error Handling
final PModeLegErrorHandling aErrorHandling = aPModeLeg.getErrorHandling();
if (aErrorHandling != null) {
if (aErrorHandling.isReportAsResponseDefined()) {
if (!aErrorHandling.isReportAsResponse())
aErrorList.add(_createError(sFieldPrefix + "ErrorHandling.Report.AsResponse must be 'true'"));
} else {
aErrorList.add(_createError(sFieldPrefix + "ErrorHandling.Report.AsResponse is missing"));
}
if (aErrorHandling.isReportProcessErrorNotifyConsumerDefined()) {
if (!aErrorHandling.isReportProcessErrorNotifyConsumer())
aErrorList.add(_createWarn(sFieldPrefix + "ErrorHandling.Report.ProcessErrorNotifyConsumer should be 'true'"));
} else {
aErrorList.add(_createError(sFieldPrefix + "ErrorHandling.Report.ProcessErrorNotifyConsumer is missing"));
}
if (aErrorHandling.isReportProcessErrorNotifyProducerDefined()) {
if (!aErrorHandling.isReportProcessErrorNotifyProducer())
aErrorList.add(_createWarn(sFieldPrefix + "ErrorHandling.Report.ProcessErrorNotifyProducer should be 'true'"));
} else {
aErrorList.add(_createError(sFieldPrefix + "ErrorHandling.Report.ProcessErrorNotifyProducer is missing"));
}
} else {
aErrorList.add(_createError(sFieldPrefix + "ErrorHandling is missing"));
}
}
Also used :
ESoapVersion(com.helger.phase4.soap.ESoapVersion)
PModeLegErrorHandling(com.helger.phase4.model.pmode.leg.PModeLegErrorHandling)
PModeLegProtocol(com.helger.phase4.model.pmode.leg.PModeLegProtocol)
PModeLegSecurity(com.helger.phase4.model.pmode.leg.PModeLegSecurity)
Example 4 with PModeLegProtocol
use of com.helger.phase4.model.pmode.leg.PModeLegProtocol in project phase4 by phax.
the class PModeLegProtocolMicroTypeConverter method convertToNative.
@Nonnull
public PModeLegProtocol convertToNative(@Nonnull final IMicroElement aElement) {
final String sAddress = aElement.getAttributeValue(ATTR_ADDRESS);
final String sSoapVersion = aElement.getAttributeValue(ATTR_SOAP_VERSION);
final ESoapVersion eSoapVersion = ESoapVersion.getFromVersionOrNull(sSoapVersion);
if (eSoapVersion == null)
throw new IllegalStateException("Failed to resolve SOAP version '" + sSoapVersion + "'");
return new PModeLegProtocol(sAddress, eSoapVersion);
}
Also used :
ESoapVersion(com.helger.phase4.soap.ESoapVersion)
Nonnull(javax.annotation.Nonnull)
Example 5 with PModeLegProtocol
use of com.helger.phase4.model.pmode.leg.PModeLegProtocol in project phase4 by phax.
the class PModeLegProtocolJsonConverter method convertToNative.
@Nonnull
public static PModeLegProtocol convertToNative(@Nonnull final IJsonObject aElement) {
final String sAddress = aElement.getAsString(ADDRESS);
final String sSoapVersion = aElement.getAsString(SOAP_VERSION);
final ESoapVersion eSoapVersion = ESoapVersion.getFromVersionOrNull(sSoapVersion);
if (eSoapVersion == null)
throw new IllegalStateException("Failed to resolve SOAP version '" + sSoapVersion + "'");
return new PModeLegProtocol(sAddress, eSoapVersion);
}
Also used :
ESoapVersion(com.helger.phase4.soap.ESoapVersion)
Nonnull(javax.annotation.Nonnull)
Aggregations
ESoapVersion (com.helger.phase4.soap.ESoapVersion)9
PModeLegErrorHandling (com.helger.phase4.model.pmode.leg.PModeLegErrorHandling)7
PModeLegProtocol (com.helger.phase4.model.pmode.leg.PModeLegProtocol)7
PModeLegSecurity (com.helger.phase4.model.pmode.leg.PModeLegSecurity)7
ErrorList (com.helger.commons.error.list.ErrorList)4
ETriState (com.helger.commons.state.ETriState)4
ECryptoAlgorithmCrypt (com.helger.phase4.crypto.ECryptoAlgorithmCrypt)4
ECryptoAlgorithmSign (com.helger.phase4.crypto.ECryptoAlgorithmSign)4
ECryptoAlgorithmSignDigest (com.helger.phase4.crypto.ECryptoAlgorithmSignDigest)4
Ebms3From (com.helger.phase4.ebms3header.Ebms3From)4
Ebms3MessageInfo (com.helger.phase4.ebms3header.Ebms3MessageInfo)4
Ebms3PartyId (com.helger.phase4.ebms3header.Ebms3PartyId)4
Ebms3PartyInfo (com.helger.phase4.ebms3header.Ebms3PartyInfo)4
Ebms3SignalMessage (com.helger.phase4.ebms3header.Ebms3SignalMessage)4
Ebms3To (com.helger.phase4.ebms3header.Ebms3To)4
Ebms3UserMessage (com.helger.phase4.ebms3header.Ebms3UserMessage)4
MessageHelperMethods (com.helger.phase4.messaging.domain.MessageHelperMethods)4
EMEP (com.helger.phase4.model.EMEP)4
EMEPBinding (com.helger.phase4.model.EMEPBinding)4
IPModeIDProvider (com.helger.phase4.model.pmode.IPModeIDProvider)4
