• Home
• io.imunity
• unity-server-saml
• 3.15.0
• source code
• ECPServlet.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

pl.edu.icm.unity.saml.ecp.ECPServlet Maven / Gradle / Ivy

/*
 * Copyright (c) 2014 ICM Uniwersytet Warszawski All rights reserved.
 * See LICENCE.txt file for licensing information.
 */
package pl.edu.icm.unity.saml.ecp;

import java.io.IOException;
import java.util.function.Supplier;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import eu.unicore.samly2.validators.ReplayAttackChecker;
import pl.edu.icm.unity.engine.api.EntityManagement;
import pl.edu.icm.unity.engine.api.PKIManagement;
import pl.edu.icm.unity.engine.api.authn.remote.RemoteAuthnResultTranslator;
import pl.edu.icm.unity.engine.api.session.SessionManagement;
import pl.edu.icm.unity.engine.api.token.TokensManagement;
import pl.edu.icm.unity.rest.jwt.JWTAuthenticationConfig;
import pl.edu.icm.unity.saml.metadata.cfg.SPRemoteMetaManager;
import pl.edu.icm.unity.saml.sp.config.SAMLSPConfiguration;
import pl.edu.icm.unity.types.authn.AuthenticationRealm;

/**
 * ECP servlet which performs the actual ECP profile processing over PAOS binding.
 * 

 * The GET request is used to ask for SAML request. The POST request is used to provide SAML response 
 * and obtain a JWT token which can be subsequently used with other Unity endpoints.
 * 
 * @author K. Benedyczak
 */
public class ECPServlet extends HttpServlet
{
	private final ECPStep1Handler step1Handler;
	private final ECPStep2Handler step2Handler;

	public ECPServlet(JWTAuthenticationConfig jwtConfig, 
			Supplier configProvider,
			SPRemoteMetaManager metadataManager,
			ECPContextManagement samlContextManagement, 
			String myAddress, ReplayAttackChecker replayAttackChecker, 
			RemoteAuthnResultTranslator remoteAuthnProcessor,
			TokensManagement tokensMan, PKIManagement pkiManagement, EntityManagement identitiesMan,
			SessionManagement sessionMan, AuthenticationRealm realm, String address)
	{
		step1Handler = new ECPStep1Handler(configProvider, metadataManager, samlContextManagement, myAddress);
		step2Handler = new ECPStep2Handler(jwtConfig, configProvider,
				metadataManager, samlContextManagement, myAddress,
				replayAttackChecker, 
				tokensMan, pkiManagement, remoteAuthnProcessor, 
				identitiesMan, sessionMan, realm, address);
	}

	@Override
	protected void doGet(HttpServletRequest req, HttpServletResponse resp)
			throws ServletException, IOException
	{
		step1Handler.processECPGetRequest(req, resp);
	}

	@Override
	protected void doPost(HttpServletRequest req, HttpServletResponse resp)
			throws ServletException, IOException
	{
		step2Handler.processECPPostRequest(req, resp);
	}
}