1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19 package org.apache.wss4j.policy.builders;
20
21 import org.apache.neethi.Assertion;
22 import org.apache.neethi.AssertionBuilderFactory;
23 import org.apache.neethi.Policy;
24 import org.apache.neethi.builders.AssertionBuilder;
25 import org.apache.wss4j.policy.SP11Constants;
26 import org.apache.wss4j.policy.SP13Constants;
27 import org.apache.wss4j.policy.SPConstants;
28 import org.apache.wss4j.policy.SPUtils;
29 import org.apache.wss4j.policy.model.IssuedToken;
30 import org.w3c.dom.Element;
31
32 import javax.xml.namespace.QName;
33
34 public class IssuedTokenBuilder implements AssertionBuilder<Element> {
35
36 @Override
37 public Assertion build(Element element, AssertionBuilderFactory factory) throws IllegalArgumentException {
38
39 final SPConstants.SPVersion spVersion = SPConstants.SPVersion.getSPVersion(element.getNamespaceURI());
40 final String includeTokenValue = SPUtils.getAttribute(element, spVersion.getSPConstants().getIncludeToken());
41 final Element issuer = SPUtils.getFirstChildElement(element, spVersion.getSPConstants().getIssuer());
42 final String issuerName = SPUtils.getFirstChildElementText(element, spVersion.getSPConstants().getIssuerName());
43 if (spVersion == SPConstants.SPVersion.SP11 && issuerName != null) {
44 throw new IllegalArgumentException(SPConstants.ERR_INVALID_POLICY);
45 }
46 final Element claims = SPUtils.getFirstChildElement(element, spVersion.getSPConstants().getClaims());
47 final Element nestedPolicyElement = SPUtils.getFirstPolicyChildElement(element);
48 if (nestedPolicyElement == null) {
49 throw new IllegalArgumentException("sp:IssuedToken must have an inner wsp:Policy element");
50 }
51 final Policy nestedPolicy = factory.getPolicyEngine().getPolicy(nestedPolicyElement);
52 final Element requestSecurityTokenTemplate =
53 SPUtils.getFirstChildElement(element, spVersion.getSPConstants().getRequestSecurityTokenTemplate());
54 if (requestSecurityTokenTemplate == null) {
55 throw new IllegalArgumentException("sp:IssuedToken must have a sp:RequestSecurityTokenTemplate element");
56 }
57 IssuedToken issuedToken = new IssuedToken(
58 spVersion,
59 spVersion.getSPConstants().getInclusionFromAttributeValue(includeTokenValue),
60 issuer,
61 issuerName,
62 requestSecurityTokenTemplate,
63 claims,
64 nestedPolicy
65 );
66 issuedToken.setOptional(SPUtils.isOptional(element));
67 issuedToken.setIgnorable(SPUtils.isIgnorable(element));
68 return issuedToken;
69 }
70
71 @Override
72 public QName[] getKnownElements() {
73 return new QName[]{SP13Constants.ISSUED_TOKEN, SP11Constants.ISSUED_TOKEN};
74 }
75 }