Package org.openxri.xml

Examples of org.openxri.xml.XRD

703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
      log.trace("resolveViaProxy - constructed proxy query URI '"
          + uriBuf + "'");

      newURI = new URI(uriBuf.toString());
    } catch (java.net.URISyntaxException oEx) {
      XRD err = createErrorXRD(qxri.getAuthorityPath().toURINormalForm(),
          Status.INVALID_INPUT,
          "Unable to construct URI to access proxy resolution service");
      xrdsOut.add(err);
      throw new PartialResolutionException(xrdsOut);
    } catch (UnsupportedEncodingException e) {
      // thrown from URLEncoder.encode() - this should never happen since the
      // US-ASCII encoding should be supported on every computer or so we hope :)
      XRD err = createErrorXRD(qxri.getAuthorityPath().toURINormalForm(),
          Status.INVALID_INPUT, "Charset not supported");
      xrdsOut.add(err);
      throw new PartialResolutionException(xrdsOut);
    } catch (Exception e) {
      XRD err = createErrorXRD(qxri.getAuthorityPath().toURINormalForm(),
          Status.PERM_FAIL,
          "Unexpected error while constructing proxy URI: "
              + e.getMessage());
      xrdsOut.add(err);
      throw new PartialResolutionException(xrdsOut);
    }

    InputStream in = null;
    try {
      // try to get the data from it
      in = getDataFromURI(newURI, qxri.toURINormalForm(), flags, state).getInputStream();
      XRDS xrds = readXRDS(in);
      XRD finalXRD = xrds.getFinalXRD();

      String code = finalXRD.getStatusCode();
      if ((flags.isRefs() && !code.equals(Status.SUCCESS) && !code
          .equals(Status.REF_NOT_FOLLOWED))
          || !code.equals(Status.SUCCESS)) {
        // got either a non-SUCCESS code or
        // followRefs is on but we got non-SUCCESS and non-REF_NOT_FOLLOWED
        throw new PartialResolutionException(xrds);
      }
      return xrds;
    } catch (PartialResolutionException e) {
      // re-throw
      throw e;
    } catch (Exception e) {
      XRD err = createErrorXRD(qxri.getAuthorityPath().toURINormalForm(),
          Status.PERM_FAIL, "Error fetching XRDS from proxy: "
              + e.getMessage());
      xrdsOut.add(err);
      throw new PartialResolutionException(xrdsOut);
    }
View Full Code Here
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
        response.sendRedirect(this.bareXRINotFoundRedirect + URLEncoder.encode(qxri, "UTF-8"));
        return;
      }
    }
    response.setStatus(HttpServletResponse.SC_OK);
    XRD xrd = partialXRDS.getFinalXRD();
    String errMsg = "";
    if (xrd != null) {
      Status stat = xrd.getStatus();
      errMsg = "Error code: " + stat.getCode() + " - " + stat.getText();
    }

    if (resMediaType == null) {
      sendError(request, response, qxri, Integer.parseInt(xrd.getStatus().getCode()), errMsg, pre);
    }
    else {
      if (this.onPartialResolutionSuccess(qxri, request, response, Integer.parseInt(xrd.getStatus().getCode()), errMsg, pre)) {
        log.trace("sendPartialResponse - onPartialResolutionSuccess returned true, assuming request is fully handled, returning");
        return;
      }
      if (resMediaType.isType(MimeType.URI_LIST)) {
        sendResponse(response, HTTP_ERROR_CONTENT_TYPE, "# " + errMsg, trustType);
      }
      else if (resMediaType.isType(MimeType.XRDS_XML)) {
        sendResponse(response, isDebug, resMediaType.getType(), partialXRDS.toString(), trustType);
      }
      else if (resMediaType.isType(MimeType.XRD_XML)) {
        sendResponse(response, isDebug, resMediaType.getType(), xrd.toString(), trustType);
      }
      else {
        // else - we should have taken care of it in checkSupportedMediaTypes
        log.error("processProxyRequest - should not reach here (exception)");
      }
View Full Code Here
990
991
992
993
994
995
996
997
998
999
1000
1001
1002
1003
1004
1005
1006
1007
1008
1009
1010
1011
1012
1013
1014
1015
1016
1017
1018
1019
1020
1021
1022
1023
1024
1025
1026
1027
1028
1029
1030
   
    try {
      XRI ceidX = XRI.fromURINormalForm(ceid.getValue());

      log.info("verifyCEID - resolving CEID");
      XRD ceidXRD = resolveAuthToXRD(ceidX, flags, state);
      Status s = ceidXRD.getStatus();
      if (!s.getCID().equals(Status.CID_VERIFIED)) {
        log.debug("verifyCEID - XRD for CEID is not CID verified");
        return Status.CID_FAILED;
      }
     
      CanonicalID cid2 = ceidXRD.getCanonicalID();
      if (cid2 == null) {
        log.debug("verifyCEID - no CID in the XRD in CEID");
        return Status.CID_FAILED;       
      }
     
      XRI cidX2 = XRI.fromURINormalForm(cid2.getValue());
      if (!cidX2.toURINormalForm().equals(ceidX.toURINormalForm())) {
        log.debug("verifyCEID - CEID's XRD's CID is not equivalent to the original CEID");
        return Status.CID_FAILED;
      }
     
      /// look for an EquivID or CanonicalEquivID backpointer to the original CID
      CanonicalEquivID ceid2 = ceidXRD.getCanonicalEquivID();
      if (ceid2 != null) {
        XRI ceidX2 = XRI.fromURINormalForm(ceid2.getValue());
        if (ceidX2.toURINormalForm().equals(cidX.toURINormalForm())) {
          log.debug("verifyCEID - CEID backpointer found");
          return Status.CID_VERIFIED;
        }
      }

      for (int i = 0; i < ceidXRD.getNumEquivIDs(); i++) {
        EquivID e = ceidXRD.getEquivIDAt(i);
        XRI eX = XRI.fromURINormalForm(e.getValue());
        if (eX.toURINormalForm().equals(cidX.toURINormalForm())) {
          log.debug("verifyCEID - EquivID backpointer found");
          return Status.CID_VERIFIED;         
        }
View Full Code Here
109
110
111
112
113
114
115
116
117
118
119
    // insert element into XRD

    try {
     
      xrdElement.appendChild(element);
      xrd = new XRD(xrdElement, false);
    } catch (Exception ex) {
     
      throw new StageException("Unable to parse modified XRD.", ex);
    }
View Full Code Here
1090
1091
1092
1093
1094
1095
1096
1097
1098
1099
1100
1101
1102
1103
1104
1105
1106
1107
1108
1109
1110
1111
1112
1113
1114
1115
1116
1117
1118
1119
1120
1121
1122
1123
1124
1125
1126
1127
1128
1129
    if (tmpXRDS.getNumChildren() > segment.getNumSubSegments()) {
      throw makeResolutionException(xrdsOut, query, Status.INVALID_XRDS, "Invalid XRDS document: too many XRD elements returned");     
    }
   

    XRD prevXRD = parent;
    Service prevService = parentService;
    ResolverFlags currentFlags = null; // this is for overriding by SamlBypassAuthority settings
    // check each child
    for (int d = 0; d < tmpXRDS.getNumChildren(); d++) {
      if (!tmpXRDS.isXRDAt(d))
        throw makeResolutionException(xrdsOut, query, Status.INVALID_XRDS, "Authority XRDS document should not contain XRDS element");

      XRD xrd = tmpXRDS.getDescriptorAt(d);
      xrdsOut.add(xrd);
      currentFlags = new ResolverFlags(flags); // clone flags
     
      // if SAML WAS requested and what we are resolving is allowed to bypass SAML,
      // we turn off the SAML flag to allow SAML failure of any kind for this administrative region
            if (currentFlags.isSaml() && isSAMLBypassAuthority(parentXRI)) {
              currentFlags.setSaml(false);
            }

      parseFetchedXRD(xrdsOut, xrd, prevXRD, segment.getSubSegmentAt(d), prevService, currentFlags);

            // write to cache if we have one
      if (cache != null && d == 0) {
        // do our caching here right after we got the first XRD
        String xriAuthority = XRI.fromURINormalForm(parentXRI + query).toURINormalForm();
        byte[] xrdsBuf = null;
        try {
          xrdsBuf = xrdsOut.toString().getBytes("UTF-8");
        } catch (UnsupportedEncodingException e) {}
       
        int cacheTTL = computeCacheTTL(xrd.getExpires(), resp);
        log.debug("writing cache entry " + xriAuthority + ", cacheTTL = " + cacheTTL);
       
        if (cacheTTL > 0) {
          cache.put(xriAuthority, currentFlags.isHttps(), currentFlags.isSaml(), xrdsBuf, cacheTTL);
        }
View Full Code Here
1251
1252
1253
1254
1255
1256
1257
1258
1259
1260
1261
1262
    }

    // if we need to do trusted resolution checking
    if (flags.isSaml())
    {
      XRD xrdCopy = (XRD)xrd.clone();
      xrdCopy.clearDOM();

      // Each descriptor must be validated independently as well as
      // against the one that preceded (described) it in the
      // descriptor chain.
View Full Code Here
1284
1285
1286
1287
1288
1289
1290
1291
1292
1293
1294
   * @throws PartialResolutionException
   */
  protected XRDS fetchAuthXRDS(XRI qxri, XRD parent, List authResServices, XRISegment segment, ResolverFlags flags, ResolverState state, String parentXRI) throws PartialResolutionException
  {
    XRDS xrdsOut = null;
    XRD errXRD = null;
    String query = segment.getSubSegmentAt(0).toURINormalForm(true);
   
    ///// Try each URI in each selected service in turn
    Exception savedException = null;
    Iterator srvIterator = authResServices.iterator();
View Full Code Here
1346
1347
1348
1349
1350
1351
1352
1353
1354
1355
1356
1357
1358
1359
1360
1361
 
  protected void checkMaxRequests(XRDS xrdsOut, String query, ResolverState state)
    throws PartialResolutionException
  {
    if (maxRequests >= 0 && state.getNumRequests() >= maxRequests) {
      XRD finalXRD = xrdsOut.getFinalXRD();
      if (finalXRD == null) {
        finalXRD = createErrorXRD(query, Status.LIMIT_EXCEEDED, "Maximum of authority resolution requests exceeded");
        xrdsOut.add(finalXRD);
      } else {
        finalXRD.setStatus(new Status(Status.LIMIT_EXCEEDED,
            "Maximum of authority resolution requests exceeded"));
      }
      throw new PartialResolutionException(xrdsOut);
    }
   
View Full Code Here
1363
1364
1365
1366
1367
1368
1369
1370
1371
 

  private PartialResolutionException
  makeResolutionException(XRDS targetXRDS, String query, String status, String message)
  {
    XRD x = createErrorXRD(query, status, message);
    targetXRDS.add(x);
    return new PartialResolutionException(targetXRDS);
  }
View Full Code Here
1666
1667
1668
1669
1670
1671
1672
1673
1674
1675
1676
1677
1678
1679
    }

    // Describing authority must provide KeyInfo
    KeyInfo oKeyInfo = parentService.getKeyInfo();
    if (oKeyInfo == null) {
                    XRD oXRD = null;
                   
                    if( (isSAMLBypassAuthority(sAuthID)) && ((oXRD = this.getAuthority(sAuthID)) != null) ) {
                            oKeyInfo = oXRD.getServiceAt(0).getKeyInfo();
                    } else {
      log.debug("KeyInfo is missing from describing Authority (or root hint)");
      return false;
    }
                }
View Full Code Here
TOP

Related Classes of org.openxri.xml.XRD

  • org.apache.xerces.dom.DocumentImpl
  • org.apache.xerces.parsers.DOMParser
  • org.apache.xml.security.signature.Reference
  • org.apache.xml.security.signature.SignedInfo
  • org.apache.xml.security.signature.XMLSignature
  • org.apache.xml.security.transforms.Transforms
  • org.openid4java.discovery.xri.LocalXriResolver
  • org.openxri.admin.webpages.store.AuthorityDetails$XrdForm
  • org.openxri.admin.webpages.store.CreateAuthority$CreateAuthorityForm
  • org.openxri.admin.webpages.store.CreateRootNamespace$CreateRootNamespaceForm
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.