Example 11 with AzSys
use of com.tremolosecurity.proxy.auth.AzSys in project OpenUnison by TremoloSecurity.
the class ListReports method doGet.
@Override
protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
String userID = req.getParameter("uid");
String uidAttr = req.getParameter("uidAttr");
try {
StringBuffer b = new StringBuffer();
LDAPSearchResults res = GlobalEntries.getGlobalEntries().getConfigManager().getMyVD().search(GlobalEntries.getGlobalEntries().getConfigManager().getCfg().getLdapRoot(), 2, equal(uidAttr, userID).toString(), new ArrayList<String>());
if (!res.hasMore()) {
throw new ProvisioningException("Could not locate user '" + userID + "'");
}
LDAPEntry entry = res.next();
AuthInfo auinfo = new AuthInfo();
auinfo.setUserDN(entry.getDN());
LDAPAttributeSet attrs = entry.getAttributeSet();
for (Object obj : attrs) {
LDAPAttribute attr = (LDAPAttribute) obj;
Attribute attrib = new Attribute(attr.getName());
String[] vals = attr.getStringValueArray();
for (String val : vals) {
attrib.getValues().add(val);
}
auinfo.getAttribs().put(attrib.getName(), attrib);
}
AzSys az = new AzSys();
HashSet<String> allowedOrgs = new HashSet<String>();
OrgType root = GlobalEntries.getGlobalEntries().getConfigManager().getCfg().getProvisioning().getOrg();
this.checkOrg(allowedOrgs, root, az, auinfo);
ReportsType reports = GlobalEntries.getGlobalEntries().getConfigManager().getCfg().getProvisioning().getReports();
ReportsList reportsList = new ReportsList();
reportsList.setReports(new ArrayList<ReportInformation>());
for (ReportType report : reports.getReport()) {
if (allowedOrgs.contains(report.getOrgID())) {
ReportInformation ri = new ReportInformation();
ri.setName(report.getName());
ri.setDescription(report.getDescription());
ri.setOrgID(report.getOrgID());
ri.setParameters(new ArrayList<String>());
ri.getParameters().addAll(report.getParamater());
reportsList.getReports().add(ri);
}
}
Gson gson = new Gson();
ProvisioningResult pres = new ProvisioningResult();
pres.setSuccess(true);
pres.setReportsList(reportsList);
resp.getOutputStream().print(gson.toJson(pres));
} catch (Exception e) {
ProvisioningError pe = new ProvisioningError();
pe.setError("Could not load urls : " + e.getMessage());
ProvisioningResult res = new ProvisioningResult();
res.setSuccess(false);
res.setError(pe);
Gson gson = new Gson();
resp.getWriter().write(gson.toJson(res));
logger.error("Could not load urls", e);
}
}
Also used :
LDAPAttribute(com.novell.ldap.LDAPAttribute)
Attribute(com.tremolosecurity.saml.Attribute)
Gson(com.google.gson.Gson)
ReportInformation(com.tremolosecurity.provisioning.service.util.ReportInformation)
LDAPEntry(com.novell.ldap.LDAPEntry)
ProvisioningException(com.tremolosecurity.provisioning.core.ProvisioningException)
ReportType(com.tremolosecurity.config.xml.ReportType)
HashSet(java.util.HashSet)
LDAPAttribute(com.novell.ldap.LDAPAttribute)
AuthInfo(com.tremolosecurity.proxy.auth.AuthInfo)
ReportsList(com.tremolosecurity.provisioning.service.util.ReportsList)
LDAPAttributeSet(com.novell.ldap.LDAPAttributeSet)
ProvisioningResult(com.tremolosecurity.provisioning.service.util.ProvisioningResult)
ServletException(javax.servlet.ServletException)
MalformedURLException(java.net.MalformedURLException)
ProvisioningException(com.tremolosecurity.provisioning.core.ProvisioningException)
IOException(java.io.IOException)
LDAPSearchResults(com.novell.ldap.LDAPSearchResults)
ProvisioningError(com.tremolosecurity.provisioning.service.util.ProvisioningError)
OrgType(com.tremolosecurity.config.xml.OrgType)
AzSys(com.tremolosecurity.proxy.auth.AzSys)
ReportsType(com.tremolosecurity.config.xml.ReportsType)
Example 12 with AzSys
use of com.tremolosecurity.proxy.auth.AzSys in project OpenUnison by TremoloSecurity.
the class SamlTransaction method completeFederation.
private void completeFederation(HttpServletRequest request, HttpServletResponse response) throws IOException, ServletException, MalformedURLException {
final SamlTransaction transaction = (SamlTransaction) request.getSession().getAttribute(Saml2Idp.TRANSACTION_DATA);
final AuthInfo authInfo = ((AuthController) request.getSession().getAttribute(ProxyConstants.AUTH_CTL)).getAuthInfo();
if (!authInfo.isAuthComplete()) {
logger.warn("Attempted completetd federation before autthentication is completeed, clearing authentication and redirecting to the original URL");
UrlHolder holder = (UrlHolder) request.getAttribute(ProxyConstants.AUTOIDM_CFG);
request.getSession().removeAttribute(ProxyConstants.AUTH_CTL);
holder.getConfig().createAnonUser(request.getSession());
this.postErrorResponse(transaction, request, response, authInfo, holder);
return;
}
request.setAttribute(AzSys.FORCE, "true");
NextSys completeFed = new NextSys() {
@Override
public void nextSys(final HttpServletRequest request, final HttpServletResponse response) throws IOException, ServletException {
// System.out.println("Authorized!!!!");
final AuthInfo authInfo = ((AuthController) request.getSession().getAttribute(ProxyConstants.AUTH_CTL)).getAuthInfo();
UrlHolder holder = (UrlHolder) request.getAttribute(ProxyConstants.AUTOIDM_CFG);
HttpFilterRequest filterReq = new HttpFilterRequestImpl(request, null);
HttpFilterResponse filterResp = new HttpFilterResponseImpl(response);
PostProcess postProc = new PostProcess() {
@Override
public void postProcess(HttpFilterRequest req, HttpFilterResponse resp, UrlHolder holder, HttpFilterChain chain) throws Exception {
postResponse(transaction, request, response, authInfo, holder);
}
@Override
public boolean addHeader(String name) {
return false;
}
};
HttpFilterChain chain = new HttpFilterChainImpl(holder, postProc);
try {
chain.nextFilter(filterReq, filterResp, chain);
} catch (Exception e) {
throw new ServletException(e);
}
}
};
AzSys az = new AzSys();
az.doAz(request, response, completeFed);
}
Also used :
AuthInfo(com.tremolosecurity.proxy.auth.AuthInfo)
HttpServletResponse(javax.servlet.http.HttpServletResponse)
NextSys(com.tremolosecurity.proxy.util.NextSys)
AuthController(com.tremolosecurity.proxy.auth.AuthController)
ServletException(javax.servlet.ServletException)
SignatureException(java.security.SignatureException)
UnmarshallingException(org.opensaml.core.xml.io.UnmarshallingException)
NoSuchAlgorithmException(java.security.NoSuchAlgorithmException)
SAXException(org.xml.sax.SAXException)
InvalidKeyException(java.security.InvalidKeyException)
UnsupportedEncodingException(java.io.UnsupportedEncodingException)
InitializationException(org.opensaml.core.config.InitializationException)
MalformedURLException(java.net.MalformedURLException)
IOException(java.io.IOException)
ParserConfigurationException(javax.xml.parsers.ParserConfigurationException)
UrlHolder(com.tremolosecurity.config.util.UrlHolder)
HttpServletRequest(javax.servlet.http.HttpServletRequest)
HttpFilterResponse(com.tremolosecurity.proxy.filter.HttpFilterResponse)
ServletException(javax.servlet.ServletException)
PostProcess(com.tremolosecurity.proxy.filter.PostProcess)
HttpFilterRequestImpl(com.tremolosecurity.proxy.filter.HttpFilterRequestImpl)
HttpFilterResponseImpl(com.tremolosecurity.proxy.filter.HttpFilterResponseImpl)
AzSys(com.tremolosecurity.proxy.auth.AzSys)
HttpFilterChainImpl(com.tremolosecurity.proxy.filter.HttpFilterChainImpl)
HttpFilterChain(com.tremolosecurity.proxy.filter.HttpFilterChain)
HttpFilterRequest(com.tremolosecurity.proxy.filter.HttpFilterRequest)
Aggregations
AuthInfo (com.tremolosecurity.proxy.auth.AuthInfo)12
AzSys (com.tremolosecurity.proxy.auth.AzSys)12
IOException (java.io.IOException)10
AuthController (com.tremolosecurity.proxy.auth.AuthController)8
OrgType (com.tremolosecurity.config.xml.OrgType)7
ProvisioningException (com.tremolosecurity.provisioning.core.ProvisioningException)7
MalformedURLException (java.net.MalformedURLException)7
Gson (com.google.gson.Gson)6
LDAPAttribute (com.novell.ldap.LDAPAttribute)6
LDAPException (com.novell.ldap.LDAPException)6
Attribute (com.tremolosecurity.saml.Attribute)6
UnsupportedEncodingException (java.io.UnsupportedEncodingException)6
HashSet (java.util.HashSet)6
ServletException (javax.servlet.ServletException)6
LDAPEntry (com.novell.ldap.LDAPEntry)5
LDAPAttributeSet (com.novell.ldap.LDAPAttributeSet)4
LDAPSearchResults (com.novell.ldap.LDAPSearchResults)4
ReportType (com.tremolosecurity.config.xml.ReportType)4
ScaleError (com.tremolosecurity.scalejs.data.ScaleError)4
ArrayList (java.util.ArrayList)4
