com.sun.xml.ws.security.secconv.impl.SecurityContextTokenInfoImpl Maven / Gradle / Ivy
/*
* Copyright (c) 1997, 2022 Oracle and/or its affiliates. All rights reserved.
*
* This program and the accompanying materials are made available under the
* terms of the Eclipse Distribution License v. 1.0, which is available at
* http://www.eclipse.org/org/documents/edl-v10.php.
*
* SPDX-License-Identifier: BSD-3-Clause
*/
package com.sun.xml.ws.security.secconv.impl;
import com.sun.xml.ws.security.IssuedTokenContext;
import com.sun.xml.ws.security.SecurityContextToken;
import com.sun.xml.ws.security.SecurityContextTokenInfo;
import com.sun.xml.ws.security.secconv.WSSCConstants;
import com.sun.xml.ws.security.impl.IssuedTokenContextImpl;
import com.sun.xml.ws.security.trust.WSTrustElementFactory;
import com.sun.xml.ws.security.secconv.WSSCVersion;
import com.sun.xml.ws.security.trust.elements.str.Reference;
import com.sun.xml.ws.security.trust.elements.str.SecurityTokenReference;
import java.net.URI;
import java.util.Date;
import java.util.HashMap;
import java.util.Map;
import java.util.Set;
/**
* The SecurityContextTokenInfo class represents security parameters
* which will be saved in the Session object so that whenever the endpoint
* crashes the security negotiations can be resumed from its original state and no new
* negotiations need to be done.
*
* @author Manveen Kaur ([email protected])
*/
public class SecurityContextTokenInfoImpl implements SecurityContextTokenInfo {
private static final long serialVersionUID = 1806240028086957655L;
String identifier = null;
String extId = null;
String instance = null;
byte[] secret = null;
Map secretMap = new HashMap<>();
Date creationTime = null;
Date expirationTime = null;
// default constructor
public SecurityContextTokenInfoImpl() {
//empty constructor
}
@Override
public String getIdentifier() {
return identifier;
}
@Override
public void setIdentifier(final String identifier) {
this.identifier = identifier;
}
/*
* external Id corresponds to the wsu Id on the token.
*/
@Override
public String getExternalId() {
return extId;
}
@Override
public void setExternalId(final String externalId) {
this.extId = externalId;
}
@Override
public String getInstance() {
return instance;
}
@Override
public void setInstance(final String instance) {
this.instance = instance;
}
@Override
public byte[] getSecret() {
byte [] newSecret = new byte[secret.length];
System.arraycopy(secret,0,newSecret,0,secret.length);
return newSecret;
}
@Override
public byte[] getInstanceSecret(final String instance) {
return secretMap.get(instance);
}
@Override
public void addInstance(final String instance, final byte[] key) {
byte [] newKey = new byte[key.length];
System.arraycopy(key,0,newKey,0,key.length);
if (instance == null) {
this.secret = newKey;
} else {
secretMap.put(instance, newKey);
}
}
@Override
public Date getCreationTime() {
return new Date(creationTime.getTime());
}
@Override
public void setCreationTime(final Date creationTime) {
this.creationTime = new Date(creationTime.getTime());
}
@Override
public Date getExpirationTime() {
return new Date(expirationTime.getTime());
}
@Override
public void setExpirationTime(final Date expirationTime) {
this.expirationTime = new Date(expirationTime.getTime());
}
@Override
public Set getInstanceKeys() {
return secretMap.keySet();
}
@Override
public IssuedTokenContext getIssuedTokenContext() {
final IssuedTokenContext itc = new IssuedTokenContextImpl();
itc.setCreationTime(this.getCreationTime());
itc.setExpirationTime(this.getExpirationTime());
itc.setProofKey(this.getSecret());
itc.setSecurityContextTokenInfo(this);
// create security token based on id and extId
URI uri = URI.create(this.getIdentifier());
final SecurityContextToken token = WSTrustElementFactory.newInstance(WSSCVersion.WSSC_10).createSecurityContextToken(
uri, null , this.getExternalId());
itc.setSecurityToken(token);
// Create references
final SecurityTokenReference attachedReference = createSecurityTokenReference(token.getWsuId(),false);
//RequestedAttachedReference rar = factory.createRequestedAttachedReference(attachedReference);
final SecurityTokenReference unattachedRef = createSecurityTokenReference(token.getIdentifier().toString(), true);
//RequestedUnattachedReference rur = factory.createRequestedUnattachedReference(unattachedRef);
itc.setAttachedSecurityTokenReference(attachedReference);
itc.setUnAttachedSecurityTokenReference(unattachedRef);
return itc;
}
private SecurityTokenReference createSecurityTokenReference(final String id, final boolean unattached){
final String uri = (unattached?id:"#"+id);
final Reference ref = WSTrustElementFactory.newInstance(WSSCVersion.WSSC_10).createDirectReference(WSSCConstants.SECURITY_CONTEXT_TOKEN_TYPE, uri);
return WSTrustElementFactory.newInstance(WSSCVersion.WSSC_10).createSecurityTokenReference(ref);
}
//public static IssuedTokenContext getIssuedTokenContext(SecurityTokenReference reference) {
@Override
public IssuedTokenContext getIssuedTokenContext(final com.sun.xml.ws.security.SecurityTokenReference reference) {
// get str id -> get Session corresponding to id
// from session get corresponding SCTInfo ->
// return sctinfo's IssuedTokenContext.
//final String id = reference.getId();
// final Session session =
// SessionManager.getSessionManager().getSession(id);
// return session.getSecurityInfo().getIssuedTokenContext();
return null;
}
}