Example 21 with ReceivedToken
use of org.apache.cxf.sts.request.ReceivedToken in project OpenAM by OpenRock.
the class TokenCancellerBase method cancelToken.
@Override
public TokenCancellerResponse cancelToken(TokenCancellerParameters tokenParameters) {
TokenCancellerResponse response = new TokenCancellerResponse();
ReceivedToken cancelTarget = tokenParameters.getToken();
cancelTarget.setState(ReceivedToken.STATE.VALID);
response.setToken(cancelTarget);
String tokenServiceConsumptionToken = null;
try {
final String tokenId = generateIdFromValidateTarget(cancelTarget);
tokenServiceConsumptionToken = getTokenServiceConsumptionToken();
tokenServiceConsumer.cancelToken(tokenId, tokenServiceConsumptionToken);
cancelTarget.setState(ReceivedToken.STATE.CANCELLED);
return response;
} catch (TokenCancellationException e) {
throw new STSException("Exception caught validating issued token: " + e.getMessage(), e);
} finally {
if (tokenServiceConsumptionToken != null) {
invalidateTokenGenerationServiceConsumptionToken(tokenServiceConsumptionToken);
}
}
}
Also used :
STSException(org.apache.cxf.ws.security.sts.provider.STSException)
ReceivedToken(org.apache.cxf.sts.request.ReceivedToken)
TokenCancellationException(org.forgerock.openam.sts.TokenCancellationException)
TokenCancellerResponse(org.apache.cxf.sts.token.canceller.TokenCancellerResponse)
Example 22 with ReceivedToken
use of org.apache.cxf.sts.request.ReceivedToken in project OpenAM by OpenRock.
the class SimpleTokenValidatorBase method validateToken.
@Override
public TokenValidatorResponse validateToken(TokenValidatorParameters tokenParameters) {
TokenValidatorResponse response = new TokenValidatorResponse();
ReceivedToken validateTarget = tokenParameters.getToken();
response.setToken(validateTarget);
String tokenServiceConsumptionToken = null;
try {
final String tokenId = generateIdFromValidateTarget(validateTarget);
tokenServiceConsumptionToken = getTokenServiceConsumptionToken();
final boolean isTokenValid = tokenServiceConsumer.validateToken(tokenId, tokenServiceConsumptionToken);
validateTarget.setState(isTokenValid ? ReceivedToken.STATE.VALID : ReceivedToken.STATE.INVALID);
return response;
} catch (TokenValidationException e) {
throw new STSException("Exception caught validating issued token: " + e.getMessage(), e);
} finally {
if (tokenServiceConsumptionToken != null) {
invalidateTokenGenerationServiceConsumptionToken(tokenServiceConsumptionToken);
}
}
}
Also used :
STSException(org.apache.cxf.ws.security.sts.provider.STSException)
TokenValidatorResponse(org.apache.cxf.sts.token.validator.TokenValidatorResponse)
ReceivedToken(org.apache.cxf.sts.request.ReceivedToken)
TokenValidationException(org.forgerock.openam.sts.TokenValidationException)
Example 23 with ReceivedToken
use of org.apache.cxf.sts.request.ReceivedToken in project OpenAM by OpenRock.
the class SoapAMTokenValidator method validateToken.
/**
*
* @param tokenParameters the state necessary for token validation
* @return an instance of the TokenValidatorResponse class which indicates whether the token was successfully
* validated.
*/
@Override
public TokenValidatorResponse validateToken(TokenValidatorParameters tokenParameters) {
TokenValidatorResponse response = new TokenValidatorResponse();
ReceivedToken validateTarget = tokenParameters.getToken();
validateTarget.setState(ReceivedToken.STATE.INVALID);
response.setToken(validateTarget);
try {
String sessionId = parseSessionIdFromRequest(tokenParameters.getToken());
Principal principal = principalFromSession.getPrincipalFromSession(sessionId);
threadLocalAMTokenCache.cacheSessionIdForContext(validationInvocationContext, sessionId, invalidateAMSession);
response.setPrincipal(principal);
validateTarget.setState(ReceivedToken.STATE.VALID);
} catch (Exception e) {
logger.info("Exception caught obtaining principal from session id: " + e, e);
}
return response;
}
Also used :
TokenValidatorResponse(org.apache.cxf.sts.token.validator.TokenValidatorResponse)
ReceivedToken(org.apache.cxf.sts.request.ReceivedToken)
Principal(java.security.Principal)
ResourceException(org.forgerock.json.resource.ResourceException)
TokenCreationException(org.forgerock.openam.sts.TokenCreationException)
Example 24 with ReceivedToken
use of org.apache.cxf.sts.request.ReceivedToken in project ddf by codice.
the class TestBSTDelegationHandler method testCanNotHandle.
@Test
public void testCanNotHandle() {
BinarySecurityTokenType binarySecurityTokenType = new BinarySecurityTokenType();
binarySecurityTokenType.setEncodingType(WSConstants.SOAPMESSAGE_NS + "#WrongType");
binarySecurityTokenType.setValueType(BSTAuthenticationToken.BST_NS + "#" + BSTAuthenticationToken.BST_LN);
ReceivedToken receivedToken = mock(ReceivedToken.class);
when(receivedToken.getToken()).thenReturn(binarySecurityTokenType);
BSTDelegationHandler bstDelegationHandler = new BSTDelegationHandler();
boolean result = bstDelegationHandler.canHandleToken(receivedToken);
assertEquals(false, result);
}
Also used :
BinarySecurityTokenType(org.apache.cxf.ws.security.sts.provider.model.secext.BinarySecurityTokenType)
ReceivedToken(org.apache.cxf.sts.request.ReceivedToken)
Test(org.junit.Test)
Example 25 with ReceivedToken
use of org.apache.cxf.sts.request.ReceivedToken in project ddf by codice.
the class TestBSTDelegationHandler method testCanHandle.
@Test
public void testCanHandle() {
BinarySecurityTokenType binarySecurityTokenType = new BinarySecurityTokenType();
binarySecurityTokenType.setEncodingType(WSConstants.SOAPMESSAGE_NS + "#Base64Binary");
binarySecurityTokenType.setValueType(BSTAuthenticationToken.BST_NS + "#" + BSTAuthenticationToken.BST_LN);
ReceivedToken receivedToken = mock(ReceivedToken.class);
when(receivedToken.getToken()).thenReturn(binarySecurityTokenType);
BSTDelegationHandler bstDelegationHandler = new BSTDelegationHandler();
boolean result = bstDelegationHandler.canHandleToken(receivedToken);
assertEquals(true, result);
}
Also used :
BinarySecurityTokenType(org.apache.cxf.ws.security.sts.provider.model.secext.BinarySecurityTokenType)
ReceivedToken(org.apache.cxf.sts.request.ReceivedToken)
Test(org.junit.Test)
Aggregations
ReceivedToken (org.apache.cxf.sts.request.ReceivedToken)41
Test (org.junit.Test)25
TokenValidatorResponse (org.apache.cxf.sts.token.validator.TokenValidatorResponse)23
BinarySecurityTokenType (org.apache.cxf.ws.security.sts.provider.model.secext.BinarySecurityTokenType)21
TokenValidatorParameters (org.apache.cxf.sts.token.validator.TokenValidatorParameters)20
STSPropertiesMBean (org.apache.cxf.sts.STSPropertiesMBean)18
Crypto (org.apache.wss4j.common.crypto.Crypto)15
WSSecurityException (org.apache.wss4j.common.ext.WSSecurityException)10
RequestData (org.apache.wss4j.dom.handler.RequestData)10
Credential (org.apache.wss4j.dom.validate.Credential)9
XmlParser (org.codice.ddf.parser.xml.XmlParser)9
X500Principal (javax.security.auth.x500.X500Principal)8
JAASUsernameTokenValidator (org.apache.wss4j.dom.validate.JAASUsernameTokenValidator)7
PKIAuthenticationToken (org.codice.ddf.security.handler.api.PKIAuthenticationToken)7
X509Certificate (java.security.cert.X509Certificate)6
PKIAuthenticationTokenFactory (org.codice.ddf.security.handler.api.PKIAuthenticationTokenFactory)6
HashSet (java.util.HashSet)5
CallbackHandler (javax.security.auth.callback.CallbackHandler)5
JAXBContext (javax.xml.bind.JAXBContext)5
JAXBException (javax.xml.bind.JAXBException)5
