Example 51 with PolicyExpression
use of org.nhindirect.policy.PolicyExpression in project nhin-d by DirectProject.
the class DomainPolicyResolver_getPolicyTest method testGetPolicy_incomingPolicyDoesNotExist_assertEmpty.
public void testGetPolicy_incomingPolicyDoesNotExist_assertEmpty() throws Exception {
final PolicyExpression expression = mock(PolicyExpression.class);
final List<PolicyExpression> expressions = Arrays.asList(expression);
final Map<String, Collection<PolicyExpression>> policies = new HashMap<String, Collection<PolicyExpression>>();
policies.put("testdomain.com", expressions);
final DomainPolicyResolver resolver = new DomainPolicyResolver(policies);
Collection<PolicyExpression> retrievedExpressions = resolver.getIncomingPolicy(new InternetAddress("me@testdomainother.com"));
assertNotNull(retrievedExpressions);
assertEquals(0, retrievedExpressions.size());
}
Also used :
InternetAddress(javax.mail.internet.InternetAddress)
HashMap(java.util.HashMap)
Collection(java.util.Collection)
PolicyExpression(org.nhindirect.policy.PolicyExpression)
Example 52 with PolicyExpression
use of org.nhindirect.policy.PolicyExpression in project nhin-d by DirectProject.
the class SimpleTextV1LexiconPolicyParser method parse.
/**
* {@inheritDoc}
*/
@Override
public PolicyExpression parse(InputStream stream) throws PolicyParseException {
final Vector<TokenTypeAssociation> tokens = parseToTokens(stream);
resetLevel();
final PolicyExpression retExpression = buildExpression(tokens.iterator());
if (getLevel() != 0)
throw new PolicyGrammarException("Group not closed.");
if (retExpression.getExpressionType() != PolicyExpressionType.OPERATION)
throw new PolicyGrammarException("Expression must evaluate to an operation");
return retExpression;
}
Also used :
PolicyGrammarException(org.nhindirect.policy.PolicyGrammarException)
PolicyExpression(org.nhindirect.policy.PolicyExpression)
Example 53 with PolicyExpression
use of org.nhindirect.policy.PolicyExpression in project nhin-d by DirectProject.
the class ValidatePanel method validateCert.
private void validateCert() {
reportText.setText("");
final File certFile = certFileField.getFile();
final File policyFile = policyFileField.getFile();
if (!certFile.exists()) {
JOptionPane.showMessageDialog(this, "Certificate file does not exist or cannot be found.", "Invalid Cert File", JOptionPane.ERROR_MESSAGE);
return;
}
InputStream policyInput = null;
if (!feedMode) {
if (!policyFile.exists()) {
JOptionPane.showMessageDialog(this, "Policy file does not exist or cannot be found.", "Invalid Policy File", JOptionPane.ERROR_MESSAGE);
return;
}
try {
// load the policy as an input stream
policyInput = FileUtils.openInputStream(policyFile);
} catch (Exception e) {
JOptionPane.showMessageDialog(this, "Could not load policy from file: " + e.getMessage(), "Invalid Policy File", JOptionPane.ERROR_MESSAGE);
return;
}
} else {
try {
final int length = feed.getLength();
policyInput = IOUtils.toInputStream(feed.getText(0, length));
} catch (Exception e) {
JOptionPane.showMessageDialog(this, "Could not load policy: " + e.getMessage(), "Invalid Policy", JOptionPane.ERROR_MESSAGE);
return;
}
}
// load the certificate
X509Certificate cert = null;
try {
cert = (X509Certificate) CertificateFactory.getInstance("X.509").generateCertificate(FileUtils.openInputStream(certFile));
} catch (Exception e) {
JOptionPane.showMessageDialog(this, "Could not load certificate from file: " + e.getMessage(), "Invalid Cert File", JOptionPane.ERROR_MESSAGE);
return;
}
final DateFormat dateFormat = new SimpleDateFormat("EEE, MMM d yyyy HH:mm:ss", Locale.getDefault());
final StringBuilder reportTextBuilder = new StringBuilder("Validation run at " + dateFormat.format(Calendar.getInstance(Locale.getDefault()).getTime()) + "\r\n\r\n");
try {
final PolicyLexiconParser parser = (feedMode) ? PolicyLexiconParserFactory.getInstance(feedLexicon) : PolicyLexiconParserFactory.getInstance(PolicyLexicon.XML);
final PolicyExpression policyExpression = parser.parse(policyInput);
final org.nhindirect.policy.Compiler compiler = new StackMachineCompiler();
compiler.setReportModeEnabled(true);
final PolicyFilter filter = PolicyFilterFactory.getInstance(compiler);
if (filter.isCompliant(cert, policyExpression) && compiler.getCompilationReport().isEmpty())
reportTextBuilder.append("Certificate is compliant with the provided policy.");
else {
reportTextBuilder.append("Certificate is NOT compliant with the provided policy.\r\n\r\n");
final Collection<String> report = compiler.getCompilationReport();
if (!report.isEmpty()) {
for (String reportEntry : report) reportTextBuilder.append(reportEntry + "\r\n");
}
}
} catch (PolicyRequiredException e) {
reportTextBuilder.append("Validation Successful\r\nCertificate is missing a required field\r\n\t" + e.getMessage());
} catch (PolicyGrammarException e) {
reportTextBuilder.append("Validation Failed\r\nError compiling policy\r\n\t" + e.getMessage());
} catch (Exception e) {
final ByteArrayOutputStream str = new ByteArrayOutputStream();
final PrintStream printStr = new PrintStream(str);
e.printStackTrace();
e.printStackTrace(printStr);
final String stackTrace = new String(str.toByteArray());
reportTextBuilder.append("Validation Failed\r\nError compiling or proccessing policy\r\n\t" + e.getMessage() + "\r\n" + stackTrace);
} finally {
reportText.setText(reportTextBuilder.toString());
IOUtils.closeQuietly(policyInput);
}
}
Also used :
PrintStream(java.io.PrintStream)
PolicyGrammarException(org.nhindirect.policy.PolicyGrammarException)
PolicyFilter(org.nhindirect.policy.PolicyFilter)
InputStream(java.io.InputStream)
PolicyExpression(org.nhindirect.policy.PolicyExpression)
StackMachineCompiler(org.nhindirect.policy.impl.machine.StackMachineCompiler)
ByteArrayOutputStream(java.io.ByteArrayOutputStream)
PolicyGrammarException(org.nhindirect.policy.PolicyGrammarException)
PolicyRequiredException(org.nhindirect.policy.PolicyRequiredException)
X509Certificate(java.security.cert.X509Certificate)
PolicyRequiredException(org.nhindirect.policy.PolicyRequiredException)
SimpleDateFormat(java.text.SimpleDateFormat)
DateFormat(java.text.DateFormat)
PolicyLexiconParser(org.nhindirect.policy.PolicyLexiconParser)
File(java.io.File)
SimpleDateFormat(java.text.SimpleDateFormat)
Example 54 with PolicyExpression
use of org.nhindirect.policy.PolicyExpression in project nhin-d by DirectProject.
the class DefaultPolicyFilter method isCompliant.
/**
* {@inheritDoc}
*/
@Override
public boolean isCompliant(X509Certificate cert, InputStream policyStream, PolicyLexicon lexicon) throws PolicyProcessException {
final PolicyLexiconParser parser = PolicyLexiconParserFactory.getInstance(lexicon);
final PolicyExpression expression = parser.parse(policyStream);
return isCompliant(cert, expression);
}
Also used :
PolicyLexiconParser(org.nhindirect.policy.PolicyLexiconParser)
PolicyExpression(org.nhindirect.policy.PolicyExpression)
Aggregations
PolicyExpression (org.nhindirect.policy.PolicyExpression)54
X509Certificate (java.security.cert.X509Certificate)21
InternetAddress (javax.mail.internet.InternetAddress)18
LiteralPolicyExpression (org.nhindirect.policy.LiteralPolicyExpression)16
OperationPolicyExpression (org.nhindirect.policy.OperationPolicyExpression)16
PolicyResolver (org.nhindirect.stagent.policy.PolicyResolver)12
InputStream (java.io.InputStream)11
PolicyFilter (org.nhindirect.policy.PolicyFilter)10
Vector (java.util.Vector)9
Collection (java.util.Collection)8
HashMap (java.util.HashMap)8
Opcode (org.nhindirect.policy.Opcode)7
KeyUsageExtensionField (org.nhindirect.policy.x509.KeyUsageExtensionField)7
CertificateResolver (org.nhindirect.stagent.cert.CertificateResolver)7
TrustAnchorResolver (org.nhindirect.stagent.trust.TrustAnchorResolver)7
File (java.io.File)6
StackMachineCompiler (org.nhindirect.policy.impl.machine.StackMachineCompiler)6
ExtendedKeyUsageExtensionField (org.nhindirect.policy.x509.ExtendedKeyUsageExtensionField)6
ByteArrayInputStream (java.io.ByteArrayInputStream)5
ByteArrayOutputStream (java.io.ByteArrayOutputStream)5
