Example 16 with SubjectConfirmationDataBean
use of org.apache.wss4j.common.saml.bean.SubjectConfirmationDataBean in project cxf by apache.
the class SAMLSSOResponseValidatorTest method testCreateAndValidateResponse.
@org.junit.Test
public void testCreateAndValidateResponse() throws Exception {
SubjectConfirmationDataBean subjectConfirmationData = new SubjectConfirmationDataBean();
subjectConfirmationData.setAddress("http://apache.org");
subjectConfirmationData.setInResponseTo("12345");
subjectConfirmationData.setNotAfter(new DateTime().plusMinutes(5));
subjectConfirmationData.setRecipient("http://recipient.apache.org");
Response response = createResponse(subjectConfirmationData);
// Validate the Response
SAMLSSOResponseValidator validator = new SAMLSSOResponseValidator();
validator.setEnforceAssertionsSigned(false);
validator.setIssuerIDP("http://cxf.apache.org/issuer");
validator.setAssertionConsumerURL("http://recipient.apache.org");
validator.setClientAddress("http://apache.org");
validator.setRequestId("12345");
validator.setSpIdentifier("http://service.apache.org");
validator.validateSamlResponse(response, false);
}
Also used :
Response(org.opensaml.saml.saml2.core.Response)
SubjectConfirmationDataBean(org.apache.wss4j.common.saml.bean.SubjectConfirmationDataBean)
DateTime(org.joda.time.DateTime)
Example 17 with SubjectConfirmationDataBean
use of org.apache.wss4j.common.saml.bean.SubjectConfirmationDataBean in project cxf by apache.
the class SAMLSSOResponseValidatorTest method testInvalidNotOnOrAfter.
@org.junit.Test
public void testInvalidNotOnOrAfter() throws Exception {
SubjectConfirmationDataBean subjectConfirmationData = new SubjectConfirmationDataBean();
subjectConfirmationData.setAddress("http://apache.org");
subjectConfirmationData.setInResponseTo("12345");
subjectConfirmationData.setNotAfter(new DateTime().minusSeconds(1));
subjectConfirmationData.setRecipient("http://recipient.apache.org");
Response response = createResponse(subjectConfirmationData);
// Validate the Response
SAMLSSOResponseValidator validator = new SAMLSSOResponseValidator();
validator.setEnforceAssertionsSigned(false);
validator.setIssuerIDP("http://cxf.apache.org/issuer");
validator.setAssertionConsumerURL("http://recipient.apache.org");
validator.setClientAddress("http://apache.org");
validator.setRequestId("12345");
validator.setSpIdentifier("http://service.apache.org");
try {
validator.validateSamlResponse(response, false);
fail("Expected failure on bad response");
} catch (WSSecurityException ex) {
// expected
}
}
Also used :
Response(org.opensaml.saml.saml2.core.Response)
SubjectConfirmationDataBean(org.apache.wss4j.common.saml.bean.SubjectConfirmationDataBean)
WSSecurityException(org.apache.wss4j.common.ext.WSSecurityException)
DateTime(org.joda.time.DateTime)
Example 18 with SubjectConfirmationDataBean
use of org.apache.wss4j.common.saml.bean.SubjectConfirmationDataBean in project cxf by apache.
the class SAMLSSOResponseValidatorTest method testInvalidRecipient.
@org.junit.Test
public void testInvalidRecipient() throws Exception {
SubjectConfirmationDataBean subjectConfirmationData = new SubjectConfirmationDataBean();
subjectConfirmationData.setAddress("http://apache.org");
subjectConfirmationData.setInResponseTo("12345");
subjectConfirmationData.setNotAfter(new DateTime().plusMinutes(5));
subjectConfirmationData.setRecipient("http://bad.recipient.apache.org");
Response response = createResponse(subjectConfirmationData);
// Validate the Response
SAMLSSOResponseValidator validator = new SAMLSSOResponseValidator();
validator.setEnforceAssertionsSigned(false);
validator.setIssuerIDP("http://cxf.apache.org/issuer");
validator.setAssertionConsumerURL("http://recipient.apache.org");
validator.setClientAddress("http://apache.org");
validator.setRequestId("12345");
validator.setSpIdentifier("http://service.apache.org");
try {
validator.validateSamlResponse(response, false);
fail("Expected failure on bad response");
} catch (WSSecurityException ex) {
// expected
}
}
Also used :
Response(org.opensaml.saml.saml2.core.Response)
SubjectConfirmationDataBean(org.apache.wss4j.common.saml.bean.SubjectConfirmationDataBean)
WSSecurityException(org.apache.wss4j.common.ext.WSSecurityException)
DateTime(org.joda.time.DateTime)
Aggregations
SubjectConfirmationDataBean (org.apache.wss4j.common.saml.bean.SubjectConfirmationDataBean)18
DateTime (org.joda.time.DateTime)18
Response (org.opensaml.saml.saml2.core.Response)18
WSSecurityException (org.apache.wss4j.common.ext.WSSecurityException)15
AudienceRestrictionBean (org.apache.wss4j.common.saml.bean.AudienceRestrictionBean)9
ConditionsBean (org.apache.wss4j.common.saml.bean.ConditionsBean)5
InputStream (java.io.InputStream)3
KeyStore (java.security.KeyStore)3
Crypto (org.apache.wss4j.common.crypto.Crypto)3
Merlin (org.apache.wss4j.common.crypto.Merlin)3
ArrayList (java.util.ArrayList)2
SAMLCallback (org.apache.wss4j.common.saml.SAMLCallback)2
SamlAssertionWrapper (org.apache.wss4j.common.saml.SamlAssertionWrapper)2
Status (org.opensaml.saml.saml2.core.Status)2
Document (org.w3c.dom.Document)1
Element (org.w3c.dom.Element)1
