Examples with SignatureValidationProvider org.opensaml.xmlsec.signature.support.SignatureValidationProvider used on opensource projects

Search in sources :

Example 1 with SignatureValidationProvider

use of org.opensaml.xmlsec.signature.support.SignatureValidationProvider in project cxf by apache.

the class SAMLProtocolResponseValidator method validateSignatureAgainstProfiles.

/**
 * Validate a signature against the profiles
 */
private void validateSignatureAgainstProfiles(Signature signature, SAMLKeyInfo samlKeyInfo) throws WSSecurityException {
    // Validate Signature against profiles
    SAMLSignatureProfileValidator validator = new SAMLSignatureProfileValidator();
    try {
        validator.validate(signature);
    } catch (SignatureException ex) {
        LOG.log(Level.FINE, "Error in validating the SAML Signature: " + ex.getMessage(), ex);
        throw new WSSecurityException(WSSecurityException.ErrorCode.FAILURE, "invalidSAMLsecurity");
    }
    BasicCredential credential = null;
    if (samlKeyInfo.getCerts() != null) {
        credential = new BasicX509Credential(samlKeyInfo.getCerts()[0]);
    } else if (samlKeyInfo.getPublicKey() != null) {
        credential = new BasicCredential(samlKeyInfo.getPublicKey());
    } else {
        LOG.fine("Can't get X509Certificate or PublicKey to verify signature");
        throw new WSSecurityException(WSSecurityException.ErrorCode.FAILURE, "invalidSAMLsecurity");
    }
    try {
        SignatureValidationProvider responseSignatureValidator = new ApacheSantuarioSignatureValidationProviderImpl();
        responseSignatureValidator.validate(signature, credential);
    } catch (SignatureException ex) {
        LOG.log(Level.FINE, "Error in validating the SAML Signature: " + ex.getMessage(), ex);
        throw new WSSecurityException(WSSecurityException.ErrorCode.FAILURE, "invalidSAMLsecurity");
    }
}
Also used : BasicX509Credential(org.opensaml.security.x509.BasicX509Credential) SAMLSignatureProfileValidator(org.opensaml.saml.security.impl.SAMLSignatureProfileValidator) SignatureValidationProvider(org.opensaml.xmlsec.signature.support.SignatureValidationProvider) WSSecurityException(org.apache.wss4j.common.ext.WSSecurityException) SignatureException(org.opensaml.xmlsec.signature.support.SignatureException) BasicCredential(org.opensaml.security.credential.BasicCredential) ApacheSantuarioSignatureValidationProviderImpl(org.opensaml.xmlsec.signature.support.provider.ApacheSantuarioSignatureValidationProviderImpl)

Aggregations

WSSecurityException (org.apache.wss4j.common.ext.WSSecurityException)1 SAMLSignatureProfileValidator (org.opensaml.saml.security.impl.SAMLSignatureProfileValidator)1 BasicCredential (org.opensaml.security.credential.BasicCredential)1 BasicX509Credential (org.opensaml.security.x509.BasicX509Credential)1 SignatureException (org.opensaml.xmlsec.signature.support.SignatureException)1 SignatureValidationProvider (org.opensaml.xmlsec.signature.support.SignatureValidationProvider)1 ApacheSantuarioSignatureValidationProviderImpl (org.opensaml.xmlsec.signature.support.provider.ApacheSantuarioSignatureValidationProviderImpl)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial