Example 11 with DIDAuthenticationDataType
use of iso.std.iso_iec._24727.tech.schema.DIDAuthenticationDataType in project open-ecard by ecsec.
the class AndroidMarshallerTest method testConversionOfDIDAuthenticateResponseTA.
@Test
public void testConversionOfDIDAuthenticateResponseTA() throws Exception {
WSMarshaller m = new AndroidMarshaller();
DIDAuthenticateResponse didAuthResponse = new DIDAuthenticateResponse();
Result r = new Result();
r.setResultMajor("major");
r.setResultMinor("minor");
InternationalStringType internationalStringType = new InternationalStringType();
internationalStringType.setLang("en");
internationalStringType.setValue("message");
r.setResultMessage(internationalStringType);
didAuthResponse.setResult(r);
EAC2OutputType didAuthenticationDataType = new EAC2OutputType();
DocumentBuilderFactory factory = DocumentBuilderFactory.newInstance();
factory.setNamespaceAware(true);
DocumentBuilder builder = factory.newDocumentBuilder();
Document d = builder.newDocument();
Element e = d.createElementNS("urn:iso:std:iso-iec:24727:tech:schema", "Challenge");
e.setTextContent("1331F2B1571E6DC2");
didAuthenticationDataType.getAny().add(e);
didAuthResponse.setAuthenticationProtocolData(didAuthenticationDataType);
marshalLog(didAuthResponse);
Document doc = m.marshal(didAuthResponse);
String s = m.doc2str(doc);
LOG.debug(s);
StringReader sr = new StringReader(s);
DIDAuthenticateResponse didaresp = JAXB.unmarshal(sr, DIDAuthenticateResponse.class);
marshalLog(didaresp);
}
Also used :
DIDAuthenticateResponse(iso.std.iso_iec._24727.tech.schema.DIDAuthenticateResponse)
DocumentBuilderFactory(javax.xml.parsers.DocumentBuilderFactory)
DocumentBuilder(javax.xml.parsers.DocumentBuilder)
Element(org.w3c.dom.Element)
StringReader(java.io.StringReader)
WSMarshaller(org.openecard.ws.marshal.WSMarshaller)
Document(org.w3c.dom.Document)
InternationalStringType(oasis.names.tc.dss._1_0.core.schema.InternationalStringType)
Result(oasis.names.tc.dss._1_0.core.schema.Result)
EAC2OutputType(iso.std.iso_iec._24727.tech.schema.EAC2OutputType)
Test(org.testng.annotations.Test)
Example 12 with DIDAuthenticationDataType
use of iso.std.iso_iec._24727.tech.schema.DIDAuthenticationDataType in project open-ecard by ecsec.
the class AndroidMarshallerTest method testConversionOfEstablishChannel.
@Test
public void testConversionOfEstablishChannel() throws Exception {
DocumentBuilderFactory factory = DocumentBuilderFactory.newInstance();
factory.setNamespaceAware(true);
DocumentBuilder builder = factory.newDocumentBuilder();
Document d = builder.newDocument();
EstablishChannel establishChannel = new EstablishChannel();
establishChannel.setSlotHandle(new byte[] { 0x0, 0x1, 0x02 });
DIDAuthenticationDataType establishChannelInput = new DIDAuthenticationDataType();
establishChannelInput.setProtocol(ECardConstants.Protocol.PACE);
Element e = d.createElementNS("urn:iso:std:iso-iec:24727:tech:schema", "PinID");
// Personalausweis-PIN
e.setTextContent("3");
establishChannelInput.getAny().add(e);
e = d.createElementNS("urn:iso:std:iso-iec:24727:tech:schema", "PIN");
// Personalausweis-PIN
e.setTextContent("123456");
establishChannelInput.getAny().add(e);
establishChannel.setAuthenticationProtocolData(establishChannelInput);
marshalLog(establishChannel);
WSMarshaller m = new AndroidMarshaller();
Document doc = m.marshal(establishChannel);
String s = m.doc2str(doc);
LOG.debug(s);
}
Also used :
DocumentBuilderFactory(javax.xml.parsers.DocumentBuilderFactory)
EstablishChannel(iso.std.iso_iec._24727.tech.schema.EstablishChannel)
DocumentBuilder(javax.xml.parsers.DocumentBuilder)
Element(org.w3c.dom.Element)
DIDAuthenticationDataType(iso.std.iso_iec._24727.tech.schema.DIDAuthenticationDataType)
WSMarshaller(org.openecard.ws.marshal.WSMarshaller)
Document(org.w3c.dom.Document)
Test(org.testng.annotations.Test)
Example 13 with DIDAuthenticationDataType
use of iso.std.iso_iec._24727.tech.schema.DIDAuthenticationDataType in project open-ecard by ecsec.
the class AndroidMarshallerTest method testConversionOfDIDAuthenticateResponseCA.
@Test
public void testConversionOfDIDAuthenticateResponseCA() throws Exception {
WSMarshaller m = new AndroidMarshaller();
DIDAuthenticateResponse didAuthResponse = new DIDAuthenticateResponse();
Result r = new Result();
r.setResultMajor("major");
r.setResultMinor("minor");
InternationalStringType internationalStringType = new InternationalStringType();
internationalStringType.setLang("en");
internationalStringType.setValue("message");
r.setResultMessage(internationalStringType);
didAuthResponse.setResult(r);
EAC2OutputType didAuthenticationDataType = new EAC2OutputType();
didAuthenticationDataType.setProtocol("urn:....");
DocumentBuilderFactory factory = DocumentBuilderFactory.newInstance();
factory.setNamespaceAware(true);
DocumentBuilder builder = factory.newDocumentBuilder();
Document d = builder.newDocument();
Element e = d.createElementNS("urn:iso:std:iso-iec:24727:tech:schema", "Signature");
e.setTextContent("7117D7BF95D8D6BD437A0D43DE48F42528273A98F2605758D6A3A2BFC38141E7577CABB4F8FBC8DF152E3A097D1B3A703597331842425FE4A9D0F1C9067AC4A9");
didAuthenticationDataType.getAny().add(e);
didAuthResponse.setAuthenticationProtocolData(didAuthenticationDataType);
marshalLog(didAuthResponse);
Document doc = m.marshal(didAuthResponse);
String s = m.doc2str(doc);
LOG.debug(s);
StringReader sr = new StringReader(s);
DIDAuthenticateResponse didaresp = JAXB.unmarshal(sr, DIDAuthenticateResponse.class);
marshalLog(didaresp);
}
Also used :
DIDAuthenticateResponse(iso.std.iso_iec._24727.tech.schema.DIDAuthenticateResponse)
DocumentBuilderFactory(javax.xml.parsers.DocumentBuilderFactory)
DocumentBuilder(javax.xml.parsers.DocumentBuilder)
Element(org.w3c.dom.Element)
StringReader(java.io.StringReader)
WSMarshaller(org.openecard.ws.marshal.WSMarshaller)
Document(org.w3c.dom.Document)
InternationalStringType(oasis.names.tc.dss._1_0.core.schema.InternationalStringType)
Result(oasis.names.tc.dss._1_0.core.schema.Result)
EAC2OutputType(iso.std.iso_iec._24727.tech.schema.EAC2OutputType)
Test(org.testng.annotations.Test)
Example 14 with DIDAuthenticationDataType
use of iso.std.iso_iec._24727.tech.schema.DIDAuthenticationDataType in project open-ecard by ecsec.
the class AndroidMarshaller method parseDIDAuthenticationDataType.
private DIDAuthenticationDataType parseDIDAuthenticationDataType(XmlPullParser parser) throws XmlPullParserException, IOException {
Document document = documentBuilder.newDocument();
DIDAuthenticationDataType didAuthenticationDataType;
String attrValue = parser.getAttributeValue("http://www.w3.org/2001/XMLSchema-instance", "type");
if (attrValue != null && attrValue.contains("EAC1InputType")) {
didAuthenticationDataType = new EAC1InputType();
} else if (attrValue != null && attrValue.contains("EAC2InputType")) {
didAuthenticationDataType = new EAC2InputType();
} else if (attrValue != null && attrValue.contains("EACAdditionalInputType")) {
didAuthenticationDataType = new EACAdditionalInputType();
} else {
didAuthenticationDataType = new DIDAuthenticationDataType();
}
if (parser.getAttributeValue(null, "Protocol") != null && !parser.getAttributeValue(null, "Protocol").isEmpty()) {
didAuthenticationDataType.setProtocol(parser.getAttributeValue(null, "Protocol"));
}
int eventType;
do {
parser.next();
eventType = parser.getEventType();
if (eventType == XmlPullParser.START_TAG) {
Element em = createElementIso(document, parser.getName());
em.setTextContent(parser.nextText());
didAuthenticationDataType.getAny().add(em);
}
} while (!(eventType == XmlPullParser.END_TAG && parser.getName().equals("AuthenticationProtocolData")));
return didAuthenticationDataType;
}
Also used :
EACAdditionalInputType(iso.std.iso_iec._24727.tech.schema.EACAdditionalInputType)
EAC2InputType(iso.std.iso_iec._24727.tech.schema.EAC2InputType)
JAXBElement(javax.xml.bind.JAXBElement)
Element(org.w3c.dom.Element)
DIDAuthenticationDataType(iso.std.iso_iec._24727.tech.schema.DIDAuthenticationDataType)
LocalizedString(org.openecard.addon.manifest.LocalizedString)
Document(org.w3c.dom.Document)
EAC1InputType(iso.std.iso_iec._24727.tech.schema.EAC1InputType)
Example 15 with DIDAuthenticationDataType
use of iso.std.iso_iec._24727.tech.schema.DIDAuthenticationDataType in project open-ecard by ecsec.
the class MiddlewareSAL method didAuthenticate.
@Override
public DIDAuthenticateResponse didAuthenticate(DIDAuthenticate request) {
DIDAuthenticateResponse response = WSHelper.makeResponse(DIDAuthenticateResponse.class, WSHelper.makeResultOK());
try {
ConnectionHandleType connectionHandle = SALUtils.getConnectionHandle(request);
CardStateEntry cardStateEntry = SALUtils.getCardStateEntry(states, connectionHandle, false);
connectionHandle = cardStateEntry.handleCopy();
byte[] application = cardStateEntry.getImplicitlySelectedApplicationIdentifier();
byte[] slotHandle = connectionHandle.getSlotHandle();
DIDAuthenticationDataType didAuthenticationData = request.getAuthenticationProtocolData();
Assert.assertIncorrectParameter(didAuthenticationData, "The parameter AuthenticationProtocolData is empty.");
String didName = SALUtils.getDIDName(request);
DIDStructureType didStruct = cardStateEntry.getDIDStructure(didName, application);
if (didStruct == null) {
String msg = String.format("DID %s does not exist.", didName);
throw new NamedEntityNotFoundException(msg);
}
PINCompareMarkerType pinCompareMarker = new PINCompareMarkerType(didStruct.getDIDMarker());
String protocolURI = didAuthenticationData.getProtocol();
if (!"urn:oid:1.3.162.15480.3.0.9".equals(protocolURI)) {
String msg = String.format("Protocol %s is not supported by this SAL.", protocolURI);
throw new UnknownProtocolException(msg);
}
PINCompareDIDAuthenticateInputType pinCompareInput = new PINCompareDIDAuthenticateInputType(didAuthenticationData);
PINCompareDIDAuthenticateOutputType pinCompareOutput = pinCompareInput.getOutputType();
// extract pin value from auth data
char[] pinValue = pinCompareInput.getPIN();
pinCompareInput.setPIN(null);
MwSession session = managedSessions.get(slotHandle);
boolean protectedAuthPath = connectionHandle.getSlotInfo().isProtectedAuthPath();
boolean pinAuthenticated;
boolean pinBlocked = false;
if (!(pinValue == null || pinValue.length == 0) && !protectedAuthPath) {
// we don't need a GUI if the PIN is known
try {
session.login(UserType.User, pinValue);
} finally {
Arrays.fill(pinValue, ' ');
}
pinAuthenticated = true;
// TODO: display error GUI if the PIN entry failed
} else {
// omit GUI when Middleware has its own PIN dialog for class 2 readers
if (protectedAuthPath && builtinPinDialog) {
session.loginExternal(UserType.User);
pinAuthenticated = true;
} else {
PinEntryDialog dialog = new PinEntryDialog(gui, protectedAuthPath, pinCompareMarker, session);
dialog.show();
pinAuthenticated = dialog.isPinAuthenticated();
pinBlocked = dialog.isPinBlocked();
}
}
if (pinAuthenticated) {
cardStateEntry.addAuthenticated(didName, application);
} else if (pinBlocked) {
String msg = "PIN is blocked.";
Result r = WSHelper.makeResultError(ECardConstants.Minor.IFD.PASSWORD_BLOCKED, msg);
response.setResult(r);
} else {
String msg = "Failed to enter PIN.";
Result r = WSHelper.makeResultError(ECardConstants.Minor.SAL.CANCELLATION_BY_USER, msg);
response.setResult(r);
}
// create did authenticate response
response.setAuthenticationProtocolData(pinCompareOutput.getAuthDataType());
} catch (PinBlockedException ex) {
// TODO: set retry counter
String minor = ECardConstants.Minor.IFD.PASSWORD_BLOCKED;
Result r = WSHelper.makeResultError(minor, ex.getMessage());
response.setResult(r);
} catch (PinIncorrectException ex) {
// TODO: set retry counter
String minor = ECardConstants.Minor.SAL.SECURITY_CONDITION_NOT_SATISFIED;
Result r = WSHelper.makeResultError(minor, ex.getMessage());
response.setResult(r);
} catch (ECardException e) {
response.setResult(e.getResult());
} catch (Exception e) {
LOG.error(e.getMessage(), e);
throwThreadKillException(e);
response.setResult(WSHelper.makeResult(e));
}
return response;
}
Also used :
ConnectionHandleType(iso.std.iso_iec._24727.tech.schema.ConnectionHandleType)
CardStateEntry(org.openecard.common.sal.state.CardStateEntry)
DIDAuthenticationDataType(iso.std.iso_iec._24727.tech.schema.DIDAuthenticationDataType)
PINCompareMarkerType(org.openecard.common.anytype.pin.PINCompareMarkerType)
PINCompareDIDAuthenticateInputType(org.openecard.common.anytype.pin.PINCompareDIDAuthenticateInputType)
PinIncorrectException(org.openecard.mdlw.sal.exceptions.PinIncorrectException)
ThreadTerminateException(org.openecard.common.ThreadTerminateException)
InitializationException(org.openecard.mdlw.sal.exceptions.InitializationException)
ECardException(org.openecard.common.ECardException)
FinalizationException(org.openecard.mdlw.sal.exceptions.FinalizationException)
PinBlockedException(org.openecard.mdlw.sal.exceptions.PinBlockedException)
CryptokiException(org.openecard.mdlw.sal.exceptions.CryptokiException)
NamedEntityNotFoundException(org.openecard.common.sal.exception.NamedEntityNotFoundException)
UnknownProtocolException(org.openecard.common.sal.exception.UnknownProtocolException)
TokenException(org.openecard.mdlw.sal.exceptions.TokenException)
WSMarshallerException(org.openecard.ws.marshal.WSMarshallerException)
IncorrectParameterException(org.openecard.common.sal.exception.IncorrectParameterException)
UnsupportedAlgorithmException(org.openecard.crypto.common.UnsupportedAlgorithmException)
PinIncorrectException(org.openecard.mdlw.sal.exceptions.PinIncorrectException)
Result(oasis.names.tc.dss._1_0.core.schema.Result)
ECardException(org.openecard.common.ECardException)
DIDAuthenticateResponse(iso.std.iso_iec._24727.tech.schema.DIDAuthenticateResponse)
NamedEntityNotFoundException(org.openecard.common.sal.exception.NamedEntityNotFoundException)
PinBlockedException(org.openecard.mdlw.sal.exceptions.PinBlockedException)
DIDStructureType(iso.std.iso_iec._24727.tech.schema.DIDStructureType)
UnknownProtocolException(org.openecard.common.sal.exception.UnknownProtocolException)
PINCompareDIDAuthenticateOutputType(org.openecard.common.anytype.pin.PINCompareDIDAuthenticateOutputType)
Aggregations
DIDAuthenticationDataType (iso.std.iso_iec._24727.tech.schema.DIDAuthenticationDataType)18
EstablishChannel (iso.std.iso_iec._24727.tech.schema.EstablishChannel)10
EstablishChannelResponse (iso.std.iso_iec._24727.tech.schema.EstablishChannelResponse)10
DIDAuthenticateResponse (iso.std.iso_iec._24727.tech.schema.DIDAuthenticateResponse)9
AuthDataMap (org.openecard.common.anytype.AuthDataMap)9
Document (org.w3c.dom.Document)9
Element (org.w3c.dom.Element)9
Result (oasis.names.tc.dss._1_0.core.schema.Result)8
AuthDataResponse (org.openecard.common.anytype.AuthDataResponse)8
ExecutionResults (org.openecard.gui.executor.ExecutionResults)8
DocumentBuilder (javax.xml.parsers.DocumentBuilder)7
DocumentBuilderFactory (javax.xml.parsers.DocumentBuilderFactory)7
Test (org.testng.annotations.Test)7
ParserConfigurationException (javax.xml.parsers.ParserConfigurationException)6
ConnectionHandleType (iso.std.iso_iec._24727.tech.schema.ConnectionHandleType)5
InternationalStringType (oasis.names.tc.dss._1_0.core.schema.InternationalStringType)5
PasswordField (org.openecard.gui.definition.PasswordField)5
DIDAuthenticate (iso.std.iso_iec._24727.tech.schema.DIDAuthenticate)4
EAC2OutputType (iso.std.iso_iec._24727.tech.schema.EAC2OutputType)4
ECardException (org.openecard.common.ECardException)3
