• Home
• org.certificateservices.messages
• certservice-messages
• 2408.1
• source code
• SweEID2DSSExtensionsMessageParser.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.certificateservices.messages.sweeid2.dssextenstions1_1.SweEID2DSSExtensionsMessageParser Maven / Gradle / Ivy

package org.certificateservices.messages.sweeid2.dssextenstions1_1;

import org.certificateservices.messages.ContextMessageSecurityProvider;
import org.certificateservices.messages.MessageContentException;
import org.certificateservices.messages.MessageProcessingException;
import org.certificateservices.messages.NoDecryptionKeyFoundException;
import org.certificateservices.messages.csmessages.DefaultCSMessageParser;
import org.certificateservices.messages.dss1.core.DSS1CoreMessageParser;
import org.certificateservices.messages.dss1.core.jaxb.*;
import org.certificateservices.messages.saml2.BaseSAMLMessageParser;
import org.certificateservices.messages.saml2.assertion.jaxb.*;
import org.certificateservices.messages.sweeid2.dssextenstions1_1.jaxb.*;
import org.certificateservices.messages.sweeid2.dssextenstions1_1.jaxb.AnyType;
import org.certificateservices.messages.utils.MessageGenerateUtils;
import org.certificateservices.messages.utils.XMLEncrypter;
import org.certificateservices.messages.xenc.jaxb.EncryptedDataType;
import org.w3c.dom.Document;
import org.w3c.dom.Element;
import org.w3c.dom.Node;
import org.w3c.dom.NodeList;
import org.xml.sax.SAXException;

import javax.xml.bind.JAXBContext;
import javax.xml.bind.JAXBElement;
import javax.xml.bind.JAXBException;
import javax.xml.bind.Marshaller;
import javax.xml.namespace.QName;
import java.security.cert.CertificateEncodingException;
import java.security.cert.X509Certificate;
import java.util.*;

/**
 * MessageParser for generating generate DSS 1.0 messages with
 * Swedish Eid 2.0 DSS Extensions definet by http://www.elegnamnden.se.
 * 

 *     This message parser extends the DSS1 Core Message Parser
 * 
 * Created by philip on 02/01/17.
 */
public class SweEID2DSSExtensionsMessageParser extends DSS1CoreMessageParser{

    public static final String NAMESPACE = "http://id.elegnamnden.se/csig/1.1/dss-ext/ns";

    private static final String BASE_JAXB_CONTEXT = "org.certificateservices.messages.sweeid2.dssextenstions1_1.jaxb:org.certificateservices.messages.saml2.assertion.jaxb:org.certificateservices.messages.xenc.jaxb";

    private static final String SWEEID_DSS_EXTENSTIONS_XSD_SCHEMA_1_1_RESOURCE_LOCATION = "/eid-dss-extensions-1.1.2.xsd";


    protected org.certificateservices.messages.sweeid2.dssextenstions1_1.jaxb.ObjectFactory eid2Of = new org.certificateservices.messages.sweeid2.dssextenstions1_1.jaxb.ObjectFactory();

    protected SignMessageXMLConverter signMessageXMLConverter =new SignMessageXMLConverter();


    private static Map NAMESPACETOPREFIXMAP = new HashMap();
    private static Map PREFIXTONAMESPACEMAP = new HashMap();

    static{
        NAMESPACETOPREFIXMAP.put(NAMESPACE,"csig");
        NAMESPACETOPREFIXMAP.put(DSS1CoreMessageParser.NAMESPACE,"dss");
        NAMESPACETOPREFIXMAP.put(BaseSAMLMessageParser.ASSERTION_NAMESPACE,"saml");
        NAMESPACETOPREFIXMAP.put(DefaultCSMessageParser.XMLDSIG_NAMESPACE,"ds");
        NAMESPACETOPREFIXMAP.put(DefaultCSMessageParser.XMLENC_NAMESPACE,"xenc");

        for(String k : NAMESPACETOPREFIXMAP.keySet()){
            PREFIXTONAMESPACEMAP.put(NAMESPACETOPREFIXMAP.get(k),k);
        }
    }

    @Override
    public String getNameSpace() {
        return NAMESPACE;
    }

    @Override
    public String getJAXBPackages() { return  BASE_JAXB_CONTEXT + ":"+ super.getJAXBPackages();
    }

    @Override
    public String[] getDefaultSchemaLocations() throws SAXException {
        return new String[] {DefaultCSMessageParser.XMLDSIG_XSD_SCHEMA_RESOURCE_LOCATION,
                DSS1CoreMessageParser.DSS_XSD_SCHEMA_1_0_RESOURCE_LOCATION,
                SWEEID_DSS_EXTENSTIONS_XSD_SCHEMA_1_1_RESOURCE_LOCATION,
                BaseSAMLMessageParser.ASSERTION_XSD_SCHEMA_2_0_RESOURCE_LOCATION,
                DefaultCSMessageParser.XMLENC_XSD_SCHEMA_RESOURCE_LOCATION,
                DSS1CoreMessageParser.ASSERTION_XSD_SCHEMA_1_1_RESOURCE_LOCATION};
    }

    @Override
    protected String lookupSchemaForElement(String type, String namespaceURI, String publicId, String systemId, String baseURI) {
        if(namespaceURI != null){
            if(namespaceURI.equals(NAMESPACE)){
                return SWEEID_DSS_EXTENSTIONS_XSD_SCHEMA_1_1_RESOURCE_LOCATION;
            }
            if(namespaceURI.equals(ASSERTION_NAMESPACE)){
                return BaseSAMLMessageParser.ASSERTION_XSD_SCHEMA_2_0_RESOURCE_LOCATION;
            }
            if(namespaceURI.equals(DefaultCSMessageParser.XMLENC_NAMESPACE)){
                return DefaultCSMessageParser.XMLENC_XSD_SCHEMA_RESOURCE_LOCATION;
            }
        }
        return super.lookupSchemaForElement(type,namespaceURI,publicId,systemId,baseURI);
    }

    /**
     * Special metod for generating a DSS 1.0 SignRequest with correct saml: prefix namespacing. This due to
     * DSS 1.0 specification uses SAML 1 and Swedish EID Extensions use SAML 2.
     *
     * @param context message security related context. Use null if no signature should be used.
     * @param requestID This attribute is used to correlate requests with responses.
     *                  When present in a request, the server MUST return it in the response.
     *                  (Optional, use null to not set).
     * @param profile This attribute indicates a particular DSS profile.  It may be used to select a profile
     *                if a server supports multiple profiles, or as a sanity-check to m
     * @param signRequestExtension the SignRequestExtension that will be added to OptionalInputs element.
     * @param signTasks the SignTasks Elemenet that will be added to the InputDocuments element.
     * @param sign if the message should be signed.
     * @return a marshalled sign request.
     * @throws MessageProcessingException if internal error occurred generating the message.
     * @throws MessageContentException if bad message format was detected.
     */
    public byte[] genSignRequest(ContextMessageSecurityProvider.Context context,String requestID, String profile, JAXBElement signRequestExtension, JAXBElement signTasks, boolean sign) throws MessageProcessingException, MessageContentException {

        Document optionalInputContent = marshallToSweEID2ExtensionDoc(signRequestExtension);
        Document inputDocumentContent = marshallToSweEID2ExtensionDoc(signTasks);
        org.certificateservices.messages.dss1.core.jaxb.AnyType at = dssOf.createAnyType();
        InputDocuments inputDocuments = dssOf.createInputDocuments();
        inputDocuments.getDocumentOrTransformedDataOrDocumentHash().add(at);
        SignRequest signRequest = genSignRequest(requestID,profile,new ArrayList