• Home
• se.litsec.opensaml
• opensaml3-ext
• 1.3.0
• source code
• SpEntityDescriptorBuilder.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

se.litsec.opensaml.saml2.metadata.build.SpEntityDescriptorBuilder Maven / Gradle / Ivy

/*
 * Copyright 2016-2018 Litsec AB
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package se.litsec.opensaml.saml2.metadata.build;

import java.io.IOException;
import java.io.InputStream;
import java.util.Arrays;
import java.util.List;
import java.util.stream.Collectors;

import org.opensaml.core.xml.XMLObject;
import org.opensaml.core.xml.io.MarshallingException;
import org.opensaml.core.xml.io.UnmarshallingException;
import org.opensaml.core.xml.util.XMLObjectSupport;
import org.opensaml.saml.common.xml.SAMLConstants;
import org.opensaml.saml.ext.idpdisco.DiscoveryResponse;
import org.opensaml.saml.saml2.metadata.AssertionConsumerService;
import org.opensaml.saml.saml2.metadata.AttributeConsumingService;
import org.opensaml.saml.saml2.metadata.EntityDescriptor;
import org.opensaml.saml.saml2.metadata.Extensions;
import org.opensaml.saml.saml2.metadata.SPSSODescriptor;
import org.opensaml.saml.saml2.metadata.SSODescriptor;

import net.shibboleth.utilities.java.support.xml.XMLParserException;
import se.litsec.opensaml.saml2.metadata.MetadataUtils;
import se.litsec.opensaml.utils.ObjectUtils;

/**
 * A builder for building an {@code md:EntityDescription} (metadata) object for a Service Provider.
 * 
 * @author Martin Lindström ([email protected])
 */
public class SpEntityDescriptorBuilder extends AbstractEntityDescriptorBuilder {

  /**
   * Constructor setting up the builder with no template. This means that the entire {@code EntityDescriptor} object is
   * created from data assigned using the builder.
   */
  public SpEntityDescriptorBuilder() {
    super();
  }

  /**
   * Constructor setting up the builder with a template {@code EntityDescriptor} that is read from a resource. Users of
   * the bean may now change, add or delete, the elements and attributes of the template object using the assignment
   * methods of the builder.
   * 
   * @param resource
   *          the template resource
   * @throws IOException
   *           if the resource can not be read
   * @throws UnmarshallingException
   *           for unmarshalling errors
   * @throws XMLParserException
   *           for XML parsing errors
   */
  public SpEntityDescriptorBuilder(InputStream resource) throws XMLParserException, UnmarshallingException, IOException {
    super(resource);
  }

  /**
   * Constructor setting up the builder with a template {@code EntityDescriptor}. Users of the bean may now change, add
   * or delete, the elements and attributes of the template object using the assignment methods of the builder.
   * 
   * @param template
   *          the template
   * @throws UnmarshallingException
   *           for unmarshalling errors
   * @throws MarshallingException
   *           for marshalling errors
   */
  public SpEntityDescriptorBuilder(EntityDescriptor template) throws UnmarshallingException, MarshallingException {
    super(template);
  }

  /** {@inheritDoc} */
  @Override
  protected SpEntityDescriptorBuilder getThis() {
    return this;
  }

  /**
   * Assigns the {@code AuthnRequestsSigned} attribute of the {@code md:SPSSODescriptor} element.
   * 
   * @param b
   *          boolean (if {@code null}, the attribute is not set)
   * @return the builder
   */
  public SpEntityDescriptorBuilder authnRequestsSigned(Boolean b) {
    ((SPSSODescriptor) this.ssoDescriptor()).setAuthnRequestsSigned(b);
    return this;
  }

  /**
   * Assigns the {@code WantAssertionsSigned} attribute of the {@code md:SPSSODescriptor} element.
   * 
   * @param b
   *          whether assertions should be signed
   * @return the builder
   */
  public SpEntityDescriptorBuilder wantAssertionsSigned(Boolean b) {
    ((SPSSODescriptor) this.ssoDescriptor()).setWantAssertionsSigned(b);
    return this;
  }

  /**
   * Adds discovery response locations in the given order (first string will be assigned index 1 and so on).
   * 
   * @param locations
   *          URLs for discovery responses
   * @return the builder
   */
  public SpEntityDescriptorBuilder discoveryResponses(List locations) {
    if (this.ssoDescriptor().getExtensions() == null) {
      if (locations == null) {
        return this;
      }
      this.ssoDescriptor().setExtensions(ObjectUtils.createSamlObject(Extensions.class));
    }
    else {
      if (!MetadataUtils.getMetadataExtensions(this.ssoDescriptor().getExtensions(), DiscoveryResponse.class).isEmpty()) {
        // Clear out all previous disco response elements.>
        List save = this.ssoDescriptor()
          .getExtensions()
          .getOrderedChildren()
          .stream()
          .filter(e -> !DiscoveryResponse.class.isAssignableFrom(e.getClass()))
          .collect(Collectors.toList());
        this.ssoDescriptor().getExtensions().getOrderedChildren().clear();
        this.ssoDescriptor().getExtensions().getOrderedChildren().addAll(save);
      }
    }
    if (locations != null) {
      int index = 1;
      for (String location : locations) {
        DiscoveryResponse discoveryResponse = ObjectUtils.createSamlObject(DiscoveryResponse.class);
        discoveryResponse.setBinding(SAMLConstants.SAML_IDP_DISCO_NS);
        discoveryResponse.setIndex(index++);
        discoveryResponse.setLocation(location);
        this.ssoDescriptor().getExtensions().getUnknownXMLObjects().add(discoveryResponse);
      }
    }
    return this;
  }

  /**
   * @see #discoveryResponses(List)
   * 
   * @param locations
   *          URLs for discovery responses
   * @return the builder
   */
  public SpEntityDescriptorBuilder discoveryResponses(String... locations) {
    return this.discoveryResponses(locations != null ? Arrays.asList(locations) : null);
  }

  /**
   * Adds {@code md:AssertionConsumerService} elements to the {@code SPSSODescriptor}.
   * 
   * @param assertionConsumerServices
   *          assertion consumer service objects (cloned before assignment)
   * @return the builder
   */
  public SpEntityDescriptorBuilder assertionConsumerServices(List assertionConsumerServices) {
    SPSSODescriptor spDescriptor = (SPSSODescriptor) this.ssoDescriptor();
    spDescriptor.getAssertionConsumerServices().clear();
    if (assertionConsumerServices == null) {
      return this;
    }
    for (AssertionConsumerService a : assertionConsumerServices) {
      try {
        spDescriptor.getAssertionConsumerServices().add(XMLObjectSupport.cloneXMLObject(a));
      }
      catch (MarshallingException | UnmarshallingException e) {
        throw new RuntimeException(e);
      }
    }
    return this;
  }

  /**
   * @see #assertionConsumerServices(List)
   * 
   * @param assertionConsumerServices
   *          assertion consumer service objects (cloned before assignment)
   * @return the builder
   */
  public SpEntityDescriptorBuilder assertionConsumerServices(AssertionConsumerService... assertionConsumerServices) {
    return this.assertionConsumerServices(assertionConsumerServices != null ? Arrays.asList(assertionConsumerServices) : null);
  }

  /**
   * Adds {@code md:AttributeConsumingService} elements to the {@code SPSSODescriptor}.
   * 
   * @param attributeConsumingServices
   *          attribute consumer service objects (cloned before assignment)
   * @return the builder
   */
  public SpEntityDescriptorBuilder attributeConsumingServices(List attributeConsumingServices) {
    SPSSODescriptor spDescriptor = (SPSSODescriptor) this.ssoDescriptor();
    spDescriptor.getAttributeConsumingServices().clear();
    if (attributeConsumingServices == null) {
      return null;
    }
    for (AttributeConsumingService a : attributeConsumingServices) {
      try {
        spDescriptor.getAttributeConsumingServices().add(XMLObjectSupport.cloneXMLObject(a));
      }
      catch (MarshallingException | UnmarshallingException e) {
        throw new RuntimeException(e);
      }
    }
    return this;
  }

  /**
   * @see #assertionConsumerServices(List)
   * 
   * @param attributeConsumingServices
   *          attribute consumer service objects (cloned before assignment)
   * @return the builder
   */
  public SpEntityDescriptorBuilder attributeConsumingServices(AttributeConsumingService... attributeConsumingServices) {
    return this.attributeConsumingServices(attributeConsumingServices != null ? Arrays.asList(attributeConsumingServices) : null);
  }

  /** {@inheritDoc} */
  @Override
  protected SSODescriptor ssoDescriptor() {
    if (this.object().getSPSSODescriptor(SAMLConstants.SAML20P_NS) == null) {
      SPSSODescriptor d = ObjectUtils.createSamlObject(SPSSODescriptor.class);
      d.addSupportedProtocol(SAMLConstants.SAML20P_NS);
      this.object().getRoleDescriptors().add(d);
    }
    return this.object().getSPSSODescriptor(SAMLConstants.SAML20P_NS);
  }

  /** {@inheritDoc} */
  @Override
  protected boolean matchingSSODescriptorType(EntityDescriptor descriptor) {
    if (this.object().getRoleDescriptors().isEmpty()) {
      return true;
    }
    return this.object().getSPSSODescriptor(SAMLConstants.SAML20P_NS) != null;
  }

}