Example 1 with PolicyResponse
use of com.sun.identity.policy.remote.PolicyResponse in project OpenAM by OpenRock.
the class ResourceResultCache method getResultsFromServer.
/**
* Returns a set of <code>ResourceResult</code> objects from server.
* Fresh resource results
* are fetched from policy server and returned.
* @param appToken application sso token to identify the client to policy
* service
*
* @param serviceName name of service for which to get resource results
* @param token session token of user for whom to get resource results
* @param resourceName resource name for which to get resource results
* @param scope the scope to be used while getting resource results
* @param actionNames action names for which to get resource results
* @param env environment map to use to get resource results
*
* @return a set of <code>ResourceResult</code> objects
*
* @throws PolicyException if can not get resource results
* @throws SSOException if session token is not valid
* @throws InvalidAppSSOTokenException if application session token
* is not valid
*/
private Set getResultsFromServer(SSOToken appToken, String serviceName, SSOToken token, String resourceName, String scope, Set actionNames, Map env) throws InvalidAppSSOTokenException, SSOException, PolicyException {
Set resourceResults = null;
Response response = null;
try {
URL policyServiceUrl = getPolicyServiceURL(token);
if (debug.messageEnabled()) {
debug.message("ResourceResultCache.getResultsFromServer():" + ":serviceName=" + serviceName + ":token=" + token.getPrincipal().getName() + ":resourceName=" + resourceName + ":scope=" + scope + ":actionNames=" + actionNames + ":env" + ":policyServiceURL=" + policyServiceUrl + ":entering");
}
ResourceResultRequest rrRequest = new ResourceResultRequest();
rrRequest.setServiceName(serviceName);
rrRequest.setResourceName(resourceName);
rrRequest.setResourceScope(scope);
rrRequest.setUserSSOToken(token.getTokenID().toString());
Set responseAttributes = null;
if (env != null) {
rrRequest.setEnvParms(env);
responseAttributes = getResponseAttributes(env);
if (debug.messageEnabled()) {
debug.message("ResourceResultCache.getResultsFromServer():" + "responseAttributes to get=" + responseAttributes);
}
if (responseAttributes != null) {
rrRequest.setResponseAttributes(responseAttributes);
}
}
PolicyRequest policyRequest = new PolicyRequest();
policyRequest.setAppSSOToken(appToken.getTokenID().toString());
policyRequest.setMethodID(PolicyRequest.POLICY_REQUEST_GET_RESOURCE_RESULTS);
policyRequest.setRequestId(newRequestID());
policyRequest.setResourceResultRequest(rrRequest);
PolicyService ps = sendPLLRequest(policyServiceUrl, policyRequest);
if (ps != null) {
PolicyResponse pr = ps.getPolicyResponse();
String exceptionMessage = pr.getExceptionMsg();
if (exceptionMessage != null) {
if (exceptionMessage.indexOf(PolicyResponse.APP_SSO_TOKEN_INVALID) >= 0) {
if (debug.warningEnabled()) {
debug.warning("ResourceResultCache." + "getResultsFromServer():" + " response exception " + exceptionMessage);
debug.warning("ResourceResultCache." + "getResultsFromServer():" + " appSSOToken is invalid");
debug.warning("ResourceResultCache." + "throwing InvalidAppSSOTokenException");
}
String[] args = { exceptionMessage };
throw new InvalidAppSSOTokenException(ResBundleUtils.rbName, "server_reported_invalid_app_sso_token", args, null);
} else {
debug.warning("ResourceResultCache." + "getResultsFromServer():" + "response exception message=" + exceptionMessage);
String[] args = { exceptionMessage };
throw new PolicyEvaluationException(ResBundleUtils.rbName, "server_reported_exception", args, null);
}
} else {
resourceResults = pr.getResourceResults();
}
}
} catch (SendRequestException sre) {
String[] args = { sre.getMessage() };
throw new PolicyEvaluationException(ResBundleUtils.rbName, "pll_send_request_exception", args, sre);
}
if (debug.messageEnabled()) {
debug.message("ResourceResultCache.getResultsFromServer():" + "returning");
}
return resourceResults;
}
Also used :
AdvicesHandleableByAMResponse(com.sun.identity.policy.remote.AdvicesHandleableByAMResponse)
PolicyResponse(com.sun.identity.policy.remote.PolicyResponse)
Response(com.iplanet.services.comm.share.Response)
SendRequestException(com.iplanet.services.comm.client.SendRequestException)
Set(java.util.Set)
HashSet(java.util.HashSet)
RequestSet(com.iplanet.services.comm.share.RequestSet)
PolicyService(com.sun.identity.policy.remote.PolicyService)
PolicyEvaluationException(com.sun.identity.policy.remote.PolicyEvaluationException)
ResourceResultRequest(com.sun.identity.policy.remote.ResourceResultRequest)
PolicyRequest(com.sun.identity.policy.remote.PolicyRequest)
PolicyResponse(com.sun.identity.policy.remote.PolicyResponse)
URL(java.net.URL)
Example 2 with PolicyResponse
use of com.sun.identity.policy.remote.PolicyResponse in project OpenAM by OpenRock.
the class ResourceResultCache method getAdvicesHandleableByAM.
/**
* Returns names of policy advices that could be handled by OpenAM
* Enterprise if PEP redirects user agent to OpenAM.
*
* @param appToken application sso token that would be used while
* communicating to OpenAM
* @param refetchFromServer indicates whether to get the values fresh
* from OpenAM or return the values from local cache.
* If the server reports app sso token is invalid, a new app sso
* token is created and one more call is made to the server.
* @return names of policy advices that could be handled by OpenAM
* @throws InvalidAppSSOTokenException if the server reported that the
* app sso token provided was invalid
* @throws PolicyEvaluationException if the server reported any other error
* @throws PolicyException if there are problems in getting the advice
* names
* @throws SSOException if the appToken is detected to be invalid
* at the client
*/
Set getAdvicesHandleableByAM(SSOToken appToken, boolean refetchFromServer) throws InvalidAppSSOTokenException, PolicyException, SSOException {
if (debug.messageEnabled()) {
debug.message("ResourceResultCache.getAdvicesHandleableByAM():" + ":entering");
}
if ((advicesHandleableByAM != null) && !refetchFromServer) {
if (debug.messageEnabled()) {
debug.message("ResourceResultCache.getAdvicesHandleableByAM():" + ":returning cached advices" + advicesHandleableByAM);
}
return advicesHandleableByAM;
}
URL policyServiceURL = null;
if (appToken != null) {
try {
policyServiceURL = getPolicyServiceURL(appToken);
} catch (PolicyException pe) {
debug.error("ResourceResultCache.getAdvicesHandleableByAM():", pe);
throw pe;
}
}
if ((appToken != null) && (policyServiceURL != null)) {
PolicyRequest policyReq = new PolicyRequest();
policyReq.setAppSSOToken(appToken.getTokenID().toString());
policyReq.setAdvicesHandleableByAMRequest(new AdvicesHandleableByAMRequest());
policyReq.setMethodID(PolicyRequest.POLICY_REQUEST_ADVICES_HANDLEABLE_BY_AM_REQUEST);
try {
PolicyService ps = sendPLLRequest(policyServiceURL, policyReq);
if (ps != null) {
if (debug.messageEnabled()) {
debug.message("ResourceResultCache." + "getAdvicesHandleableByAM():" + "result=" + ps.toXMLString());
}
PolicyResponse psres = ps.getPolicyResponse();
String exceptionMessage = psres.getExceptionMsg();
if (exceptionMessage != null) {
if (exceptionMessage.indexOf(ResBundleUtils.getString("app_sso_token_invalid")) >= 0) {
if (debug.warningEnabled()) {
debug.warning("ResourceResultCache." + "getAdvicesHandleableByAM():" + " response exception " + exceptionMessage);
debug.warning("ResourceResultCache." + "AdvicesHandleableByAM():" + " appSSOToken is invalid");
debug.warning("ResourceResultCache." + "throwing InvalidAppSSOTokenException");
}
String[] args = { exceptionMessage };
throw new InvalidAppSSOTokenException(ResBundleUtils.rbName, "server_reported_invalid_app_sso_token", args, null);
} else {
if (debug.warningEnabled()) {
debug.warning("ResourceResultCache." + "AdvicesHandleableByAM():" + "response exception message=" + exceptionMessage);
}
String[] args = { exceptionMessage };
throw new PolicyEvaluationException(ResBundleUtils.rbName, "server_reported_exception", args, null);
}
}
if (psres.getMethodID() == PolicyResponse.POLICY_ADVICES_HANDLEABLE_BY_AM_RESPONSE) {
AdvicesHandleableByAMResponse advicesHandleableByAMResponse = psres.getAdvicesHandleableByAMResponse();
if (debug.messageEnabled()) {
debug.message("ResourceResultCache." + "getAdvicesHandleableByAM():" + advicesHandleableByAMResponse);
}
if (advicesHandleableByAMResponse != null) {
advicesHandleableByAM = advicesHandleableByAMResponse.getAdvicesHandleableByAM();
}
}
} else {
debug.error("ResourceResultCache.getAdvicesHandleableByAM()" + ":no result");
}
} catch (SendRequestException e) {
debug.error("ResourceResultCache.getAdvicesHandleableByAM():", e);
throw new PolicyException(e);
}
}
if (advicesHandleableByAM == null) {
advicesHandleableByAM = Collections.EMPTY_SET;
}
if (debug.messageEnabled()) {
debug.message("ResourceResultCache.getAdvicesHandleableByAM():" + ":returning advicesHandleableByAM" + advicesHandleableByAM);
}
return advicesHandleableByAM;
}
Also used :
SendRequestException(com.iplanet.services.comm.client.SendRequestException)
AdvicesHandleableByAMRequest(com.sun.identity.policy.remote.AdvicesHandleableByAMRequest)
AdvicesHandleableByAMResponse(com.sun.identity.policy.remote.AdvicesHandleableByAMResponse)
PolicyException(com.sun.identity.policy.PolicyException)
PolicyService(com.sun.identity.policy.remote.PolicyService)
PolicyEvaluationException(com.sun.identity.policy.remote.PolicyEvaluationException)
PolicyRequest(com.sun.identity.policy.remote.PolicyRequest)
PolicyResponse(com.sun.identity.policy.remote.PolicyResponse)
URL(java.net.URL)
Example 3 with PolicyResponse
use of com.sun.identity.policy.remote.PolicyResponse in project OpenAM by OpenRock.
the class ResourceResultCache method addRemotePolicyListener.
/**
* Registers a listener with policy service to recieve
* notifications on policy changes
* @param appToken session token identifying the client
* @param serviceName service name
* @param notificationURL end point on the client that listens for
* notifications
*
* @param reRegister flag indicating whether to register listener
* even if it was already registered. <code>true</code> indicates
* to register listener again even if it was previously registered
*/
boolean addRemotePolicyListener(SSOToken appToken, String serviceName, String notificationURL, boolean reRegister) {
boolean status = false;
if (debug.messageEnabled()) {
debug.message("ResourceResultCache.addRemotePolicyListener():" + "serviceName=" + serviceName + ":notificationURL=" + notificationURL);
}
if (remotePolicyListeners.contains(serviceName) && !reRegister) {
if (debug.messageEnabled()) {
debug.message("ResourceResultCache.addRemotePolicyListener():" + "serviceName=" + serviceName + ":notificationURL=" + notificationURL + ":is already registered");
}
return status;
}
//else do the following
URL policyServiceURL = null;
if (appToken != null) {
try {
policyServiceURL = getPolicyServiceURL(appToken);
} catch (PolicyException pe) {
debug.error("ResourceResultCache.addRemotePolicyListener():" + "Can not add policy listner", pe);
}
}
if ((appToken != null) && (policyServiceURL != null)) {
PolicyListenerRequest listenerReq = new PolicyListenerRequest();
listenerReq.setServiceName(serviceName);
listenerReq.setNotificationURL(notificationURL);
PolicyRequest policyReq = new PolicyRequest();
policyReq.setAppSSOToken(appToken.getTokenID().toString());
policyReq.setMethodID(PolicyRequest.POLICY_REQUEST_ADD_POLICY_LISTENER);
policyReq.setPolicyListenerRequest(listenerReq);
try {
PolicyService ps = sendPLLRequest(policyServiceURL, policyReq);
if (ps != null) {
if (debug.messageEnabled()) {
debug.message("ResourceResultCache." + "addRemotePolicyListener():" + "result=" + ps.toXMLString());
}
PolicyResponse psres = ps.getPolicyResponse();
if (psres.getMethodID() == PolicyResponse.POLICY_ADD_LISTENER_RESPONSE) {
status = true;
remotePolicyListeners.add(serviceName);
if (debug.messageEnabled()) {
debug.message("ResourceResultCache." + "addRemotePolicyListener():" + "serviceName=" + serviceName + ":notificationURL=" + notificationURL + ":policyServiceURL=" + policyServiceURL + ":add succeeded");
}
}
} else {
debug.error("ResourceResultCache.addRemotePolicyListener():" + " no result");
}
} catch (Exception e) {
debug.error("ResourceResultCache.addRemotePolicyListener():", e);
}
}
return status;
}
Also used :
PolicyException(com.sun.identity.policy.PolicyException)
PolicyService(com.sun.identity.policy.remote.PolicyService)
PolicyListenerRequest(com.sun.identity.policy.remote.PolicyListenerRequest)
PolicyRequest(com.sun.identity.policy.remote.PolicyRequest)
PolicyResponse(com.sun.identity.policy.remote.PolicyResponse)
URL(java.net.URL)
JSONException(org.json.JSONException)
PolicyException(com.sun.identity.policy.PolicyException)
SendRequestException(com.iplanet.services.comm.client.SendRequestException)
PolicyEvaluationException(com.sun.identity.policy.remote.PolicyEvaluationException)
URLNotFoundException(com.iplanet.services.naming.URLNotFoundException)
SSOException(com.iplanet.sso.SSOException)
UnsupportedEncodingException(java.io.UnsupportedEncodingException)
AlreadyRegisteredException(com.iplanet.services.comm.client.AlreadyRegisteredException)
IOException(java.io.IOException)
SessionException(com.iplanet.dpro.session.SessionException)
Example 4 with PolicyResponse
use of com.sun.identity.policy.remote.PolicyResponse in project OpenAM by OpenRock.
the class ResourceResultCache method removeRemotePolicyListener.
/**
* Removes a listener registered with policy service to recieve
* notifications on policy changes
* @param appToken session token identifying the client
* @param serviceName service name
* @param notificationURL end point on the client that listens for
* notifications
*/
public boolean removeRemotePolicyListener(SSOToken appToken, String serviceName, String notificationURL) {
boolean status = false;
URL policyServiceURL = null;
remotePolicyListeners.remove(notificationURL);
if (appToken != null) {
try {
policyServiceURL = getPolicyServiceURL(appToken);
} catch (PolicyException pe) {
debug.error("ResourceResultCache.removeRemotePolicyListener():" + "Can not remove policy listner:", pe);
}
}
if ((appToken != null) && (policyServiceURL != null)) {
RemoveListenerRequest rmReq = new RemoveListenerRequest();
rmReq.setServiceName(serviceName);
rmReq.setNotificationURL(notificationURL);
PolicyRequest policyReq = new PolicyRequest();
policyReq.setAppSSOToken(appToken.getTokenID().toString());
policyReq.setMethodID(PolicyRequest.POLICY_REQUEST_REMOVE_POLICY_LISTENER);
policyReq.setRemoveListenerRequest(rmReq);
try {
PolicyService ps = sendPLLRequest(policyServiceURL, policyReq);
if (ps != null) {
if (debug.messageEnabled()) {
debug.message("ResourceResultCache." + "removeRemotePolicyListener():" + "result=" + ps.toXMLString());
}
PolicyResponse psres = ps.getPolicyResponse();
if (psres.getMethodID() == PolicyResponse.POLICY_REMOVE_LISTENER_RESPONSE) {
status = true;
}
} else {
debug.message("ResourceResultCache." + "removeRemotePolicyListener():" + "no result");
}
} catch (Exception e) {
debug.error("ResourceResultCache.removeRemotePolicyListener():", e);
}
}
return status;
}
Also used :
PolicyException(com.sun.identity.policy.PolicyException)
PolicyService(com.sun.identity.policy.remote.PolicyService)
RemoveListenerRequest(com.sun.identity.policy.remote.RemoveListenerRequest)
PolicyRequest(com.sun.identity.policy.remote.PolicyRequest)
PolicyResponse(com.sun.identity.policy.remote.PolicyResponse)
URL(java.net.URL)
JSONException(org.json.JSONException)
PolicyException(com.sun.identity.policy.PolicyException)
SendRequestException(com.iplanet.services.comm.client.SendRequestException)
PolicyEvaluationException(com.sun.identity.policy.remote.PolicyEvaluationException)
URLNotFoundException(com.iplanet.services.naming.URLNotFoundException)
SSOException(com.iplanet.sso.SSOException)
UnsupportedEncodingException(java.io.UnsupportedEncodingException)
AlreadyRegisteredException(com.iplanet.services.comm.client.AlreadyRegisteredException)
IOException(java.io.IOException)
SessionException(com.iplanet.dpro.session.SessionException)
Aggregations
SendRequestException (com.iplanet.services.comm.client.SendRequestException)4
PolicyEvaluationException (com.sun.identity.policy.remote.PolicyEvaluationException)4
PolicyRequest (com.sun.identity.policy.remote.PolicyRequest)4
PolicyResponse (com.sun.identity.policy.remote.PolicyResponse)4
PolicyService (com.sun.identity.policy.remote.PolicyService)4
URL (java.net.URL)4
PolicyException (com.sun.identity.policy.PolicyException)3
SessionException (com.iplanet.dpro.session.SessionException)2
AlreadyRegisteredException (com.iplanet.services.comm.client.AlreadyRegisteredException)2
URLNotFoundException (com.iplanet.services.naming.URLNotFoundException)2
SSOException (com.iplanet.sso.SSOException)2
AdvicesHandleableByAMResponse (com.sun.identity.policy.remote.AdvicesHandleableByAMResponse)2
IOException (java.io.IOException)2
UnsupportedEncodingException (java.io.UnsupportedEncodingException)2
JSONException (org.json.JSONException)2
RequestSet (com.iplanet.services.comm.share.RequestSet)1
Response (com.iplanet.services.comm.share.Response)1
AdvicesHandleableByAMRequest (com.sun.identity.policy.remote.AdvicesHandleableByAMRequest)1
PolicyListenerRequest (com.sun.identity.policy.remote.PolicyListenerRequest)1
RemoveListenerRequest (com.sun.identity.policy.remote.RemoveListenerRequest)1
