Examples with CircleOfTrustManager com.sun.identity.cot.CircleOfTrustManager used on opensource projects

Example 1 with CircleOfTrustManager

use of com.sun.identity.cot.CircleOfTrustManager in project OpenAM by OpenRock.

the class RemoveCircleOfTrustMembers method handleRequest.

/**
     * Removes member from a circle of trust.
     *
     * @param rc Request Context.
     * @throws CLIException if unable to process this request.
     */
@Override
public void handleRequest(RequestContext rc) throws CLIException {
    super.handleRequest(rc);
    ldapLogin();
    realm = getStringOptionValue(FedCLIConstants.ARGUMENT_REALM, "/");
    cot = getStringOptionValue(FedCLIConstants.ARGUMENT_COT);
    entityID = getStringOptionValue(FedCLIConstants.ARGUMENT_ENTITY_ID);
    spec = FederationManager.getIDFFSubCommandSpecification(rc);
    String[] params = { realm, cot, entityID, spec };
    writeLog(LogWriter.LOG_ACCESS, Level.INFO, "ATTEMPT_REMOVE_COT_MEMBER", params);
    try {
        CircleOfTrustManager cotManager = new CircleOfTrustManager(ssoToken);
        cotManager.removeCircleOfTrustMember(realm, cot, spec, entityID);
        Object[] objs = { cot, entityID, realm };
        getOutputWriter().printlnMessage(MessageFormat.format(getResourceString("remove-circle-of-trust-member-succeeded"), objs));
        writeLog(LogWriter.LOG_ACCESS, Level.INFO, "SUCCEEDED_REMOVE_COT_MEMBER", params);
    } catch (COTException e) {
        debugWarning("RemoveCircleOfTrustMembers.handleRequest", e);
        String[] args = { realm, cot, entityID, spec, e.getMessage() };
        writeLog(LogWriter.LOG_ERROR, Level.INFO, "FAILED_REMOVE_COT_MEMBER", args);
        throw new CLIException(e.getMessage(), ExitCodes.REQUEST_CANNOT_BE_PROCESSED);
    }
}

Example 2 with CircleOfTrustManager

use of com.sun.identity.cot.CircleOfTrustManager in project OpenAM by OpenRock.

the class ImportMetaData method handleIDFFRequest.

private void handleIDFFRequest(RequestContext rc) throws CLIException {
    try {
        IDFFMetaManager metaManager = new IDFFMetaManager(ssoToken);
        String entityID = null;
        com.sun.identity.federation.jaxb.entityconfig.EntityConfigElement configElt = null;
        if (extendedData != null) {
            configElt = getIDFFEntityConfigElement();
            /*
                 * see note at the end of this class for how we decide
                 * the realm value
                 */
            if ((configElt != null) && configElt.isHosted()) {
                IDPDescriptorConfigElement idpConfig = IDFFMetaUtils.getIDPDescriptorConfig(configElt);
                if (idpConfig != null) {
                    realm = SAML2MetaUtils.getRealmByMetaAlias(idpConfig.getMetaAlias());
                } else {
                    SPDescriptorConfigElement spConfig = IDFFMetaUtils.getSPDescriptorConfig(configElt);
                    if (spConfig != null) {
                        realm = SAML2MetaUtils.getRealmByMetaAlias(spConfig.getMetaAlias());
                    }
                }
            }
        }
        if (metadata != null) {
            entityID = importIDFFMetaData(realm, metaManager);
        }
        if (configElt != null) {
            String out = (webAccess) ? "web" : extendedData;
            Object[] objs = { out };
            metaManager.createEntityConfig(realm, configElt);
            getOutputWriter().printlnMessage(MessageFormat.format(getResourceString("import-entity-succeeded"), objs));
        }
        if ((cot != null) && (cot.length() > 0) && (entityID != null) && (entityID.length() > 0)) {
            CircleOfTrustManager cotManager = new CircleOfTrustManager(ssoToken);
            if (!cotManager.isInCircleOfTrust(realm, cot, spec, entityID)) {
                cotManager.addCircleOfTrustMember(realm, cot, spec, entityID);
            }
        }
    } catch (IDFFMetaException e) {
        throw new CLIException(e.getMessage(), ExitCodes.REQUEST_CANNOT_BE_PROCESSED);
    } catch (COTException e) {
        throw new CLIException(e.getMessage(), ExitCodes.REQUEST_CANNOT_BE_PROCESSED);
    }
}

Example 3 with CircleOfTrustManager

use of com.sun.identity.cot.CircleOfTrustManager in project OpenAM by OpenRock.

the class FSAuthDomainsModelImpl method addProviders.

/**
     * Adds providers.
     * @param realm realm of circle of trust
     * @param cotName Name of circle of trust
     * @param names Names provider to be added.
     * @throws AMConsoleException if provider cannot be added.
     */
public void addProviders(String realm, String cotName, Collection names) throws AMConsoleException {
    String cotType = COTConstants.SAML2;
    String entityId = null;
    String providerNames = AMAdminUtils.getString(names, ",", false);
    String[] params = { realm, cotName, providerNames };
    logEvent("ATTEMPT_ADD_PROVIDERS_TO_AUTH_DOMAIN", params);
    try {
        CircleOfTrustManager manager = getCircleOfTrustManager();
        CircleOfTrustDescriptor cotDescriptor = manager.getCircleOfTrust(realm, cotName);
        Set existingEntity = cotDescriptor.getTrustedProviders();
        if (existingEntity != null) {
            Iterator it = existingEntity.iterator();
            while (it.hasNext()) {
                String entityString = (String) it.next();
                String delims = "|";
                StringTokenizer tokens = new StringTokenizer(entityString, delims);
                if (tokens.countTokens() == 2) {
                    entityId = tokens.nextToken();
                    cotType = tokens.nextToken();
                    manager.removeCircleOfTrustMember(realm, cotName, cotType, entityId);
                }
            }
        }
        if (names != null) {
            int sz = names.size();
            for (int i = 0; i < sz; i++) {
                String entityString = (String) ((ArrayList) names).get(i);
                String delims = "|";
                StringTokenizer tokens = new StringTokenizer(entityString, delims);
                if (tokens.countTokens() == 2) {
                    entityId = tokens.nextToken();
                    cotType = tokens.nextToken();
                    manager.addCircleOfTrustMember(realm, cotName, cotType, entityId);
                }
            }
        }
        logEvent("SUCCEED_ADD_PROVIDERS_TO_AUTH_DOMAIN", params);
    } catch (COTException e) {
        String strError = getErrorString(e);
        String[] paramsEx = { realm, cotName, providerNames, strError };
        logEvent("FEDERATION_EXCEPTION_ADD_PROVIDERS_TO_AUTH_DOMAIN", paramsEx);
        throw new AMConsoleException(strError);
    }
}

Example 4 with CircleOfTrustManager

use of com.sun.identity.cot.CircleOfTrustManager in project OpenAM by OpenRock.

the class FSAuthDomainsModelImpl method getTrustedProviderNames.

/**
     * Returns a set of provider names under a authentication domain.
     *
     * @param name Name of authentication domain.
     * @return a set of provider names under a authentication domain.
     * @throws AMConsoleException if provider names cannot be obtained.
     */
public Set getTrustedProviderNames(String realm, String name) throws AMConsoleException {
    Set providers = null;
    try {
        String[] param = { realm, name };
        logEvent("ATTEMPT_GET_PROVIDER_NAMES_UNDER_AUTH_DOMAIN", param);
        CircleOfTrustManager manager = getCircleOfTrustManager();
        CircleOfTrustDescriptor desc = manager.getCircleOfTrust(realm, name);
        providers = desc.getTrustedProviders();
        logEvent("SUCCEED_GET_PROVIDER_NAMES_UNDER_AUTH_DOMAIN", param);
    } catch (COTException e) {
        String strError = getErrorString(e);
        String[] paramsEx = { realm, name, strError };
        logEvent("FEDERATION_EXCEPTION_GET_PROVIDER_NAMES_UNDER_AUTH_DOMAIN", paramsEx);
        throw new AMConsoleException(strError);
    }
    return (providers != null) ? providers : Collections.EMPTY_SET;
}

Example 5 with CircleOfTrustManager

use of com.sun.identity.cot.CircleOfTrustManager in project OpenAM by OpenRock.

the class FSAuthDomainsModelImpl method getAuthenticationDomains.

/**
     * Returns a <code>Set</code> of all the authentication domains 
     * starting from the root realm.
     *
     * @return a Set of authentication domain names.
     */
public Set getAuthenticationDomains() {
    Set results = null;
    String realm = "";
    try {
        CircleOfTrustManager manager = getCircleOfTrustManager();
        Set realms = getRealmNames("/", "*");
        for (Iterator i = realms.iterator(); i.hasNext(); ) {
            realm = (String) i.next();
            results.addAll(manager.getAllCirclesOfTrust(realm));
        }
    } catch (COTException e) {
        String[] paramsEx = { realm, getErrorString(e) };
        logEvent("FEDERATION_EXCEPTION_GET_AUTH_DOMAINS", paramsEx);
        debug.warning("FSAuthDomainsModelImpl.getAuthenticationDomains", e);
    } catch (AMConsoleException e) {
        debug.warning("FSAuthDomainsModelImpl.getAuthenticationDomains", e);
    }
    return (results != null) ? results : Collections.EMPTY_SET;
}