← Back to branch summary

~ubuntu-branches/ubuntu/utopic/lasso/utopic-proposed

« back to all changes in this revision

Viewing changes to lasso/environs/name_identifier_mapping.c

  • Committer: Bazaar Package Importer
  • Author(s): Frederic Peters
  • Date: 2004-09-13 09:26:34 UTC
  • Revision ID: james.westby@ubuntu.com-20040913092634-01vdfl8j9cp94exa
Tags: upstream-0.4.1
ImportĀ upstreamĀ versionĀ 0.4.1

Show diffs side-by-side

added added

removed removed

Lines of Context:
lasso/environs/name_identifier_mapping.c
 
1
/* $Id: name_identifier_mapping.c,v 1.17 2004/09/01 09:59:53 fpeters Exp $
 
2
 *
 
3
 * Lasso - A free implementation of the Liberty Alliance specifications.
 
4
 *
 
5
 * Copyright (C) 2004 Entr'ouvert
 
6
 * http://lasso.entrouvert.org
 
7
 * 
 
8
 * Authors: Nicolas Clapies <nclapies@entrouvert.com>
 
9
 *          Valery Febvre <vfebvre@easter-eggs.com>
 
10
 *
 
11
 * This program is free software; you can redistribute it and/or modify
 
12
 * it under the terms of the GNU General Public License as published by
 
13
 * the Free Software Foundation; either version 2 of the License, or
 
14
 * (at your option) any later version.
 
15
 * 
 
16
 * This program is distributed in the hope that it will be useful,
 
17
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 
18
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 
19
 * GNU General Public License for more details.
 
20
 * 
 
21
 * You should have received a copy of the GNU General Public License
 
22
 * along with this program; if not, write to the Free Software
 
23
 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
 
24
 */
 
25
 
 
26
#include <lasso/environs/name_identifier_mapping.h>
 
27
 
 
28
/*****************************************************************************/
 
29
/* public methods                                                            */
 
30
/*****************************************************************************/
 
31
 
 
32
gchar *
 
33
lasso_name_identifier_mapping_dump(LassoNameIdentifierMapping *mapping)
 
34
{
 
35
  gchar *dump = NULL;
 
36
 
 
37
  g_return_val_if_fail(LASSO_IS_NAME_IDENTIFIER_MAPPING(mapping), NULL);
 
38
 
 
39
  return dump;
 
40
}
 
41
 
 
42
gint
 
43
lasso_name_identifier_mapping_build_request_msg(LassoNameIdentifierMapping *mapping)
 
44
{
 
45
  LassoProfile *profile;
 
46
  LassoProvider *provider;
 
47
  xmlChar *protocolProfile;
 
48
  GError *err = NULL;
 
49
  gint ret = 0;
 
50
 
 
51
  g_return_val_if_fail(LASSO_IS_NAME_IDENTIFIER_MAPPING(mapping), -1);
 
52
  
 
53
  profile = LASSO_PROFILE(mapping);
 
54
 
 
55
  /* get the prototocol profile of the name_identifier_mapping */
 
56
  provider = lasso_server_get_provider_ref(profile->server,
 
57
                                           profile->remote_providerID,
 
58
                                           NULL);
 
59
  if(provider == NULL) {
 
60
    message(G_LOG_LEVEL_ERROR, "Provider %s not found\n", profile->remote_providerID);
 
61
    return -2;
 
62
  }
 
63
 
 
64
  protocolProfile = lasso_provider_get_nameIdentifierMappingProtocolProfile(provider,
 
65
                                                                            lassoProviderTypeIdp,
 
66
                                                                            &err);
 
67
  if(err != NULL){
 
68
    message(G_LOG_LEVEL_ERROR, err->message);
 
69
    ret = err->code;
 
70
    g_error_free(err);
 
71
    return ret;
 
72
  }
 
73
 
 
74
  if(xmlStrEqual(protocolProfile, lassoLibProtocolProfileSloSpSoap) || \
 
75
     xmlStrEqual(protocolProfile, lassoLibProtocolProfileSloIdpSoap)) {
 
76
    debug("building a soap request message\n");
 
77
    profile->request_type = lassoHttpMethodSoap;
 
78
    /* profile->msg_url = lasso_provider_get_nameIdentifierMappingServiceURL(provider, NULL); */
 
79
    profile->msg_body = lasso_node_export_to_soap(profile->request);
 
80
  }
 
81
  else if(xmlStrEqual(protocolProfile,lassoLibProtocolProfileSloSpHttp) || \
 
82
          xmlStrEqual(protocolProfile,lassoLibProtocolProfileSloIdpHttp)) {
 
83
    debug("building a http get request message\n");
 
84
    profile->request_type = lassoHttpMethodRedirect;
 
85
    profile->msg_url = lasso_node_export_to_query(profile->request,
 
86
                                                  profile->server->signature_method,
 
87
                                                  profile->server->private_key);
 
88
    profile->msg_body = NULL;
 
89
  }
 
90
 
 
91
  return 0;
 
92
}
 
93
 
 
94
gint
 
95
lasso_name_identifier_mapping_build_response_msg(LassoNameIdentifierMapping *mapping)
 
96
{
 
97
  LassoProfile *profile;
 
98
  LassoProvider *provider;
 
99
  xmlChar *protocolProfile;
 
100
  GError *err = NULL;
 
101
  gint ret = 0;
 
102
 
 
103
  g_return_val_if_fail(LASSO_IS_NAME_IDENTIFIER_MAPPING(mapping), -1);
 
104
 
 
105
  profile = LASSO_PROFILE(mapping);
 
106
 
 
107
  provider = lasso_server_get_provider_ref(profile->server,
 
108
                                           profile->remote_providerID,
 
109
                                           NULL);
 
110
  if(provider == NULL) {
 
111
    message(G_LOG_LEVEL_ERROR, "Provider %s not found\n", profile->remote_providerID);
 
112
    return -2;
 
113
  }
 
114
 
 
115
  protocolProfile = lasso_provider_get_nameIdentifierMappingProtocolProfile(provider,
 
116
                                                                            lassoProviderTypeSp,
 
117
                                                                            &err);
 
118
  if(err != NULL) {
 
119
    message(G_LOG_LEVEL_ERROR, err->message);
 
120
    ret = err->code;
 
121
    g_error_free(err);
 
122
    return ret;
 
123
  }
 
124
 
 
125
  if(xmlStrEqual(protocolProfile, lassoLibProtocolProfileSloSpSoap) || \
 
126
     xmlStrEqual(protocolProfile, lassoLibProtocolProfileSloIdpSoap)) {
 
127
    debug("building a soap response message\n");
 
128
    /* profile->msg_url = lasso_provider_get_nameIdentifierMappingServiceURL(provider, NULL); */
 
129
    profile->msg_body = lasso_node_export_to_soap(profile->response);
 
130
  }
 
131
  else if(xmlStrEqual(protocolProfile,lassoLibProtocolProfileSloSpHttp) || \
 
132
          xmlStrEqual(protocolProfile,lassoLibProtocolProfileSloIdpHttp)) {
 
133
    debug("building a http get response message\n");
 
134
    profile->response_type = lassoHttpMethodRedirect;
 
135
    profile->msg_url = lasso_node_export_to_query(profile->response,
 
136
                                                  profile->server->signature_method,
 
137
                                                  profile->server->private_key);
 
138
    profile->msg_body = NULL;
 
139
  }
 
140
 
 
141
  return 0;
 
142
}
 
143
 
 
144
gint
 
145
lasso_name_identifier_mapping_init_request(LassoNameIdentifierMapping *mapping,
 
146
                                           gchar                      *remote_providerID)
 
147
{
 
148
  LassoProfile    *profile;
 
149
  LassoNode       *nameIdentifier;
 
150
  LassoFederation *federation;
 
151
 
 
152
  xmlChar *content, *nameQualifier, *format;
 
153
 
 
154
  g_return_val_if_fail(LASSO_IS_NAME_IDENTIFIER_MAPPING(mapping), -1);
 
155
  g_return_val_if_fail(remote_providerID != NULL, -2);
 
156
 
 
157
  profile = LASSO_PROFILE(mapping);
 
158
 
 
159
  profile->remote_providerID = remote_providerID;
 
160
 
 
161
  /* get federation */
 
162
  federation = lasso_identity_get_federation(profile->identity, profile->remote_providerID);
 
163
  if(federation == NULL) {
 
164
    message(G_LOG_LEVEL_ERROR, "error, federation not found\n");
 
165
    return -3;
 
166
  }
 
167
 
 
168
  /* get the name identifier (!!! depend on the provider type : SP or IDP !!!)*/
 
169
  switch(profile->provider_type) {
 
170
  case lassoProviderTypeSp:
 
171
    debug("service provider\n");
 
172
    nameIdentifier = LASSO_NODE(lasso_federation_get_local_nameIdentifier(federation));
 
173
    if(!nameIdentifier)
 
174
      nameIdentifier = LASSO_NODE(lasso_federation_get_remote_nameIdentifier(federation));
 
175
    break;
 
176
  case lassoProviderTypeIdp:
 
177
    debug("federation provider\n");
 
178
    /* get the next assertion (next authenticated service provider) */
 
179
    nameIdentifier = LASSO_NODE(lasso_federation_get_remote_nameIdentifier(federation));
 
180
    if(nameIdentifier == NULL) {
 
181
      nameIdentifier = LASSO_NODE(lasso_federation_get_local_nameIdentifier(federation));
 
182
    }
 
183
    break;
 
184
  default:
 
185
    message(G_LOG_LEVEL_ERROR, "Unknown provider type\n");
 
186
    return -4;
 
187
  }
 
188
  lasso_federation_destroy(federation);
 
189
 
 
190
  if(nameIdentifier == NULL) {
 
191
    message(G_LOG_LEVEL_ERROR, "Name identifier not found\n");
 
192
    return -5;
 
193
  }
 
194
 
 
195
  /* build the request */
 
196
  content = lasso_node_get_content(nameIdentifier, NULL);
 
197
  nameQualifier = lasso_node_get_attr_value(nameIdentifier, "NameQualifier", NULL);
 
198
  format = lasso_node_get_attr_value(nameIdentifier, "Format", NULL);
 
199
  profile->request = lasso_name_identifier_mapping_request_new(profile->server->providerID,
 
200
                                                               content,
 
201
                                                               nameQualifier,
 
202
                                                               format);
 
203
 
 
204
  g_return_val_if_fail(profile->request != NULL, -6);
 
205
 
 
206
  return 0;
 
207
}
 
208
 
 
209
gint
 
210
lasso_name_identifier_mapping_process_request_msg(LassoNameIdentifierMapping *mapping,
 
211
                                                  gchar                      *request_msg,
 
212
                                                  lassoHttpMethod             request_method)
 
213
{
 
214
  LassoProfile *profile;
 
215
  LassoFederation *federation;
 
216
  LassoNode *nameIdentifier;
 
217
  LassoNode *statusCode;
 
218
  LassoNodeClass *statusCode_class;
 
219
  xmlChar *remote_providerID;
 
220
 
 
221
  g_return_val_if_fail(LASSO_IS_NAME_IDENTIFIER_MAPPING(mapping), -1);
 
222
  g_return_val_if_fail(request_msg!=NULL, -2);
 
223
 
 
224
  profile = LASSO_PROFILE(mapping);
 
225
 
 
226
  switch(request_method){
 
227
  case lassoHttpMethodSoap:
 
228
    debug("build a name_identifier_mapping request from soap msg\n");
 
229
    profile->request = lasso_name_identifier_mapping_request_new_from_soap(request_msg);
 
230
    break;
 
231
  case lassoHttpMethodRedirect:
 
232
    debug("build a name_identifier_mapping request from query msg\n");
 
233
    profile->request = lasso_name_identifier_mapping_request_new_from_query(request_msg);
 
234
    break;
 
235
  case lassoHttpMethodGet:
 
236
    message(G_LOG_LEVEL_WARNING, "TODO, implement the get method\n");
 
237
    break;
 
238
  default:
 
239
    message(G_LOG_LEVEL_ERROR, "Unknown request method\n");
 
240
    return -3;
 
241
  }
 
242
 
 
243
  /* set the remote provider id from the request */
 
244
  remote_providerID = lasso_node_get_child_content(profile->request, "ProviderID",
 
245
                                                   NULL, NULL);
 
246
  profile->remote_providerID = remote_providerID;
 
247
 
 
248
  /* set Name_Identifier_MappingResponse */
 
249
  profile->response = lasso_name_identifier_mapping_response_new(profile->server->providerID,
 
250
                                                                 lassoSamlStatusCodeSuccess,
 
251
                                                                 profile->request);
 
252
 
 
253
  g_return_val_if_fail(profile->response!=NULL, -4);
 
254
 
 
255
  statusCode = lasso_node_get_child(profile->response, "StatusCode", NULL, NULL);
 
256
  statusCode_class = LASSO_NODE_GET_CLASS(statusCode);
 
257
 
 
258
  nameIdentifier = lasso_node_get_child(profile->request, "NameIdentifier", NULL, NULL);
 
259
  if(nameIdentifier == NULL) {
 
260
    statusCode_class->set_prop(statusCode, "Value", lassoLibStatusCodeFederationDoesNotExist);
 
261
    return -5;
 
262
  }
 
263
 
 
264
  remote_providerID = lasso_node_get_child_content(profile->request, "ProviderID",
 
265
                                                   NULL, NULL);
 
266
 
 
267
  /* Verify federation */
 
268
  federation = lasso_identity_get_federation(profile->identity, remote_providerID);
 
269
  if(federation == NULL) {
 
270
    message(G_LOG_LEVEL_WARNING, "No federation for %s\n", remote_providerID);
 
271
    statusCode_class->set_prop(statusCode, "Value", lassoLibStatusCodeFederationDoesNotExist);
 
272
    return -6;
 
273
  }
 
274
 
 
275
  if(lasso_federation_verify_nameIdentifier(federation, nameIdentifier) == FALSE){
 
276
    message(G_LOG_LEVEL_WARNING, "No name identifier for %s\n", remote_providerID);
 
277
    statusCode_class->set_prop(statusCode, "Value", lassoLibStatusCodeFederationDoesNotExist);
 
278
    return -7;
 
279
  }
 
280
  lasso_federation_destroy(federation);
 
281
 
 
282
  return 0;
 
283
}
 
284
 
 
285
gint
 
286
lasso_name_identifier_mapping_process_response_msg(LassoNameIdentifierMapping *mapping,
 
287
                                                   gchar                      *response_msg,
 
288
                                                   lassoHttpMethod             response_method)
 
289
{
 
290
  LassoProfile *profile;
 
291
  xmlChar   *statusCodeValue;
 
292
  LassoNode *statusCode;
 
293
  GError *err = NULL;
 
294
  gint ret = 0;
 
295
 
 
296
  g_return_val_if_fail(LASSO_IS_NAME_IDENTIFIER_MAPPING(mapping), -1);
 
297
  g_return_val_if_fail(response_msg != NULL, -2);
 
298
 
 
299
  profile = LASSO_PROFILE(mapping);
 
300
 
 
301
  /* parse NameIdentifierMappingResponse */
 
302
  switch(response_method){
 
303
  case lassoHttpMethodSoap:
 
304
    profile->response = lasso_name_identifier_mapping_response_new_from_soap(response_msg);
 
305
  default:
 
306
    message(G_LOG_LEVEL_ERROR, "Unknown response method\n");
 
307
    return -3;
 
308
  }
 
309
 
 
310
  statusCode = lasso_node_get_child(profile->response, "StatusCode", NULL, NULL);
 
311
  statusCodeValue = lasso_node_get_attr_value(statusCode, "Value", &err);
 
312
  if (err == NULL) {
 
313
    if(!xmlStrEqual(statusCodeValue, lassoSamlStatusCodeSuccess)) {
 
314
      return -4;
 
315
    }
 
316
  }
 
317
  else {
 
318
    message(G_LOG_LEVEL_ERROR, err->message);
 
319
    ret = err->code;
 
320
    g_error_free(err);
 
321
    return ret;
 
322
  }
 
323
  return 0;
 
324
}
 
325
 
 
326
/*****************************************************************************/
 
327
/* instance and class init functions                                         */
 
328
/*****************************************************************************/
 
329
 
 
330
static void
 
331
lasso_name_identifier_mapping_instance_init(LassoNameIdentifierMapping *name_identifier_mapping)
 
332
{
 
333
}
 
334
 
 
335
static void
 
336
lasso_name_identifier_mapping_class_init(LassoNameIdentifierMappingClass *klass)
 
337
{
 
338
}
 
339
 
 
340
GType lasso_name_identifier_mapping_get_type() {
 
341
  static GType this_type = 0;
 
342
 
 
343
  if (!this_type) {
 
344
    static const GTypeInfo this_info = {
 
345
      sizeof (LassoNameIdentifierMappingClass),
 
346
      NULL,
 
347
      NULL,
 
348
      (GClassInitFunc) lasso_name_identifier_mapping_class_init,
 
349
      NULL,
 
350
      NULL,
 
351
      sizeof(LassoNameIdentifierMapping),
 
352
      0,
 
353
      (GInstanceInitFunc) lasso_name_identifier_mapping_instance_init,
 
354
    };
 
355
    
 
356
    this_type = g_type_register_static(LASSO_TYPE_PROFILE,
 
357
                                       "LassoNameIdentifierMapping",
 
358
                                       &this_info, 0);
 
359
  }
 
360
  return this_type;
 
361
}
 
362
 
 
363
LassoNameIdentifierMapping *
 
364
lasso_name_identifier_mapping_new(LassoServer       *server,
 
365
                                  LassoIdentity     *identity,
 
366
                                  lassoProviderType  provider_type)
 
367
{
 
368
  LassoNameIdentifierMapping *mapping;
 
369
 
 
370
  g_return_val_if_fail(LASSO_IS_SERVER(server), NULL);
 
371
  g_return_val_if_fail(LASSO_IS_IDENTITY(identity), NULL);
 
372
 
 
373
  /* set the name_identifier_mapping object */
 
374
  mapping = g_object_new(LASSO_TYPE_NAME_IDENTIFIER_MAPPING,
 
375
                         "server", lasso_server_copy(server),
 
376
                         "identity", lasso_identity_copy(identity),
 
377
                         "provider_type", provider_type,
 
378
                         NULL);
 
379
  return mapping;
 
380
}