IDPWebRequestUtil webRequestUtil = new IDPWebRequestUtil(request, idpConfiguration, keyManager); Document samlErrorResponse = null; String referer = request.getHeader("Referer"); samlErrorResponse = webRequestUtil.getErrorResponse(referer, JBossSAMLURIConstants.STATUS_AUTHNFAILED.get(), getIdentityURL(), this.idpConfiguration.isSupportsSignature()); IDPWebRequestUtil.WebRequestUtilHolder holder = webRequestUtil.getHolder(); holder.setResponseDoc(samlErrorResponse).setDestination(referer).setRelayState(relayState) .setAreWeSendingRequest(false).setPrivateKey(null).setSupportSignature(false).setServletResponse(response) .setErrorResponse(true); holder.setPostBindingRequested(webRequestUtil.hasSAMLRequestInPostProfile()); webRequestUtil.send(holder); } catch (GeneralSecurityException e) { throw new ServletException(e);
IDPWebRequestUtil webRequestUtil = new IDPWebRequestUtil(request, idpConfiguration, keyManager); webRequestUtil.setCanonicalizationMethod(canonicalizationMethod); samlDocumentHolder = webRequestUtil.getSAMLDocumentHolder(samlResponseMessage); samlObject = samlDocumentHolder.getSamlObject(); boolean isPost = webRequestUtil.hasSAMLRequestInPostProfile(); boolean isValid = validate(request.getRemoteAddr(), request.getQueryString(), new SessionHolder( samlResponseMessage, null), isPost); webRequestUtil.isTrusted(issuer); samlDocumentHolder = webRequestUtil.getSAMLDocumentHolder(samlRequestMessage); samlObject = samlDocumentHolder.getSamlObject(); boolean isPost = webRequestUtil.hasSAMLRequestInPostProfile(); boolean isValid = validate(request.getRemoteAddr(), request.getQueryString(), new SessionHolder( samlRequestMessage, null), isPost); webRequestUtil.isTrusted(issuer); samlResponse = webRequestUtil.getErrorResponse(referer, JBossSAMLURIConstants.STATUS_REQUEST_DENIED.get(), this.identityURL, this.signOutgoingMessages); samlResponse = webRequestUtil.getErrorResponse(referer, JBossSAMLURIConstants.STATUS_AUTHNFAILED.get(), this.identityURL, this.signOutgoingMessages); samlResponse = webRequestUtil.getErrorResponse(referer, JBossSAMLURIConstants.STATUS_AUTHNFAILED.get(), this.identityURL, this.signOutgoingMessages);
try String issuerDomain = getDomain(issuer); TrustType idpTrust = idpConfiguration.getTrust(); if (idpTrust != null)
protected void sendErrorResponseToSP(String referrer, HttpServletResponse response, String relayState, IDPWebRequestUtil webRequestUtil) throws ServletException, IOException, ConfigurationException { if (trace) log.trace("About to send error response to SP:" + referrer); Document samlResponse = webRequestUtil.getErrorResponse(referrer, JBossSAMLURIConstants.STATUS_RESPONDER.get(), this.identityURL, this.signOutgoingMessages); try { WebRequestUtilHolder holder = webRequestUtil.getHolder(); holder.setResponseDoc(samlResponse).setDestination(referrer).setRelayState(relayState) .setAreWeSendingRequest(false).setPrivateKey(null).setSupportSignature(false).setServletResponse(response); holder.setPostBindingRequested(true); if (this.signOutgoingMessages) { holder.setPrivateKey(keyManager.getSigningKey()).setSupportSignature(true); } if (strictPostBinding) holder.setStrictPostBinding(true); webRequestUtil.send(holder); } catch (ParsingException e1) { throw new ServletException(e1); } catch (GeneralSecurityException e) { throw new ServletException(e); } }
protected void handleSAML11UnsolicitedResponse(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { try { IDPWebRequestUtil webRequestUtil = new IDPWebRequestUtil(request, idpConfiguration, keyManager); .getDocument(new ByteArrayInputStream(baos.toByteArray())); IDPWebRequestUtil.WebRequestUtilHolder holder = webRequestUtil.getHolder(); holder.setResponseDoc(samlResponse).setDestination(target).setRelayState("").setAreWeSendingRequest(false) .setPrivateKey(null).setSupportSignature(false).setServletResponse(response); webRequestUtil.send(holder); } catch (GeneralSecurityException e) { logger.samlIDPHandlingSAML11Error(e);
relayState = RedirectBindingUtil.urlEncode(relayState); String finalDest = destination + getDestination(urlEncodedResponse, relayState, supportSignature, sendRequest); if (trace) log.trace("Redirecting to=" + finalDest);
protected void sendErrorResponseToSP(String referrer, HttpServletResponse response, String relayState, IDPWebRequestUtil webRequestUtil) throws ServletException, IOException, ConfigurationException { if (trace) log.trace("About to send error response to SP:" + referrer); Document samlResponse = webRequestUtil.getErrorResponse(referrer, JBossSAMLURIConstants.STATUS_RESPONDER.get(), this.identityURL, this.signOutgoingMessages); try { WebRequestUtilHolder holder = webRequestUtil.getHolder(); holder.setResponseDoc(samlResponse).setDestination(referrer).setRelayState(relayState) .setAreWeSendingRequest(false).setPrivateKey(null).setSupportSignature(false).setServletResponse(response); holder.setPostBindingRequested(true); if (this.signOutgoingMessages) { holder.setPrivateKey(keyManager.getSigningKey()).setSupportSignature(true); } if (strictPostBinding) holder.setStrictPostBinding(true); webRequestUtil.send(holder); } catch (ParsingException e1) { throw new ServletException(e1); } catch (GeneralSecurityException e) { throw new ServletException(e); } }
protected void handleSAML11UnsolicitedResponse(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { try { IDPWebRequestUtil webRequestUtil = new IDPWebRequestUtil(request, idpConfiguration, keyManager); .getDocument(new ByteArrayInputStream(baos.toByteArray())); IDPWebRequestUtil.WebRequestUtilHolder holder = webRequestUtil.getHolder(); holder.setResponseDoc(samlResponse).setDestination(target).setRelayState("").setAreWeSendingRequest(false) .setPrivateKey(null).setSupportSignature(false).setServletResponse(response); webRequestUtil.send(holder); } catch (GeneralSecurityException e) { logger.samlIDPHandlingSAML11Error(e);
relayState = RedirectBindingUtil.urlEncode(relayState); String finalDest = destination + getDestination(urlEncodedResponse, relayState, supportSignature, sendRequest); if (trace) log.trace("Redirecting to=" + finalDest);
IDPWebRequestUtil webRequestUtil = new IDPWebRequestUtil(request, idpConfiguration, keyManager); Document samlErrorResponse = null; String referer = request.getHeader("Referer"); samlErrorResponse = webRequestUtil.getErrorResponse(referer, JBossSAMLURIConstants.STATUS_AUTHNFAILED.get(), getIdentityURL(), this.idpConfiguration.isSupportsSignature()); IDPWebRequestUtil.WebRequestUtilHolder holder = webRequestUtil.getHolder(); holder.setResponseDoc(samlErrorResponse).setDestination(referer).setRelayState(relayState) .setAreWeSendingRequest(false).setPrivateKey(null).setSupportSignature(false).setServletResponse(response) .setErrorResponse(true); holder.setPostBindingRequested(webRequestUtil.hasSAMLRequestInPostProfile()); webRequestUtil.send(holder); } catch (GeneralSecurityException e) { throw new ServletException(e);
IDPWebRequestUtil webRequestUtil = new IDPWebRequestUtil(request, idpConfiguration, keyManager); webRequestUtil.setCanonicalizationMethod(canonicalizationMethod); StatusResponseType statusResponseType = null; try { samlDocumentHolder = webRequestUtil.getSAMLDocumentHolder(samlResponseMessage); samlObject = samlDocumentHolder.getSamlObject(); boolean isPost = webRequestUtil.hasSAMLRequestInPostProfile(); boolean isValid = validate(request.getRemoteAddr(), request.getQueryString(), new SessionHolder( samlResponseMessage, null), isPost); statusResponseType = (StatusResponseType) samlObject; issuer = statusResponseType.getIssuer().getValue(); webRequestUtil.isTrusted(issuer); samlDocumentHolder = webRequestUtil.getSAMLDocumentHolder(samlRequestMessage); samlObject = samlDocumentHolder.getSamlObject(); boolean isPost = webRequestUtil.hasSAMLRequestInPostProfile(); boolean isValid = validate(request.getRemoteAddr(), request.getQueryString(), new SessionHolder( samlRequestMessage, null), isPost); requestAbstractType = (RequestAbstractType) samlObject; issuer = requestAbstractType.getIssuer().getValue(); webRequestUtil.isTrusted(issuer); samlResponse = webRequestUtil.getErrorResponse(referer, JBossSAMLURIConstants.STATUS_REQUEST_DENIED.get(), this.identityURL, this.signOutgoingMessages);
protected void sendErrorResponseToSP(String referrer, HttpServletResponse response, String relayState, IDPWebRequestUtil webRequestUtil) throws ServletException, IOException, ConfigurationException { if (trace) log.trace("About to send error response to SP:" + referrer); Document samlResponse = webRequestUtil.getErrorResponse(referrer, JBossSAMLURIConstants.STATUS_RESPONDER.get(), this.identityURL, this.signOutgoingMessages); try { WebRequestUtilHolder holder = webRequestUtil.getHolder(); holder.setResponseDoc(samlResponse).setDestination(referrer).setRelayState(relayState) .setAreWeSendingRequest(false).setPrivateKey(null).setSupportSignature(false).setServletResponse(response); holder.setPostBindingRequested(true); if (this.signOutgoingMessages) { holder.setPrivateKey(keyManager.getSigningKey()).setSupportSignature(true); } if (strictPostBinding) holder.setStrictPostBinding(true); webRequestUtil.send(holder); } catch (ParsingException e1) { throw new ServletException(e1); } catch (GeneralSecurityException e) { throw new ServletException(e); } }
protected void handleSAML11UnsolicitedResponse(Request request, Response response) throws ServletException, IOException { try { IDPWebRequestUtil webRequestUtil = new IDPWebRequestUtil(request, getIdpConfiguration(), keyManager); .getDocument(new ByteArrayInputStream(baos.toByteArray())); WebRequestUtilHolder holder = webRequestUtil.getHolder(); holder.setResponseDoc(samlResponse).setDestination(target).setRelayState("").setAreWeSendingRequest(false) .setPrivateKey(null).setSupportSignature(false).setServletResponse(response); webRequestUtil.send(holder); } catch (GeneralSecurityException e) { logger.samlIDPHandlingSAML11Error(e);
try String issuerDomain = getDomain(issuer); TrustType idpTrust = idpConfiguration.getTrust(); if (idpTrust != null)
+ getDestination(urlEncodedResponse, relayState, supportSignature, sendRequest, isErrorResponse);
IDPWebRequestUtil webRequestUtil = new IDPWebRequestUtil(request, getIdpConfiguration(), keyManager); Document samlErrorResponse = null; String referer = request.getHeader("Referer"); IDPType idpConfiguration = getIdpConfiguration(); samlErrorResponse = webRequestUtil.getErrorResponse(referer, JBossSAMLURIConstants.STATUS_AUTHNFAILED.get(), getIdentityURL(), idpConfiguration.isSupportsSignature()); WebRequestUtilHolder holder = webRequestUtil.getHolder(); holder.setResponseDoc(samlErrorResponse).setDestination(referer).setRelayState(relayState) .setAreWeSendingRequest(false).setPrivateKey(null).setSupportSignature(false).setServletResponse(response) .setErrorResponse(true); holder.setPostBindingRequested(webRequestUtil.hasSAMLRequestInPostProfile()); webRequestUtil.send(holder); } catch (GeneralSecurityException e) { throw new ServletException(e);
IDPWebRequestUtil webRequestUtil = new IDPWebRequestUtil(request, idpConfiguration, keyManager); webRequestUtil.setCanonicalizationMethod(canonicalizationMethod); StatusResponseType statusResponseType = null; try { samlDocumentHolder = webRequestUtil.getSAMLDocumentHolder(samlResponseMessage); samlObject = samlDocumentHolder.getSamlObject(); boolean isPost = webRequestUtil.hasSAMLRequestInPostProfile(); boolean isValid = validate(request.getRemoteAddr(), request.getQueryString(), new SessionHolder( samlResponseMessage, null), isPost); statusResponseType = (StatusResponseType) samlObject; issuer = statusResponseType.getIssuer().getValue(); webRequestUtil.isTrusted(issuer); samlDocumentHolder = webRequestUtil.getSAMLDocumentHolder(samlRequestMessage); samlObject = samlDocumentHolder.getSamlObject(); boolean isPost = webRequestUtil.hasSAMLRequestInPostProfile(); boolean isValid = validate(request.getRemoteAddr(), request.getQueryString(), new SessionHolder( samlRequestMessage, null), isPost); requestAbstractType = (RequestAbstractType) samlObject; issuer = requestAbstractType.getIssuer().getValue(); webRequestUtil.isTrusted(issuer); samlResponse = webRequestUtil.getErrorResponse(referer, JBossSAMLURIConstants.STATUS_REQUEST_DENIED.get(), this.identityURL, this.signOutgoingMessages);
log.trace("About to send error response to SP:" + referrer); Document samlResponse = webRequestUtil.getErrorResponse(referrer, JBossSAMLURIConstants.STATUS_RESPONDER.get(), this.identityURL, this.signOutgoingMessages); try WebRequestUtilHolder holder = webRequestUtil.getHolder(); holder.setResponseDoc(samlResponse).setDestination(referrer).setRelayState(relayState) .setAreWeSendingRequest(false).setPrivateKey(null).setSupportSignature(false) webRequestUtil.send(holder);
protected void handleSAML11UnsolicitedResponse(Request request, Response response) throws ServletException, IOException { try { IDPWebRequestUtil webRequestUtil = new IDPWebRequestUtil(request, getIdpConfiguration(), keyManager); .getDocument(new ByteArrayInputStream(baos.toByteArray())); WebRequestUtilHolder holder = webRequestUtil.getHolder(); holder.setResponseDoc(samlResponse).setDestination(target).setRelayState("").setAreWeSendingRequest(false) .setPrivateKey(null).setSupportSignature(false).setServletResponse(response); webRequestUtil.send(holder); } catch (GeneralSecurityException e) { logger.samlIDPHandlingSAML11Error(e);
throw logger.nullValueError("IDP Configuration"); try { String issuerDomain = getDomain(issuer); TrustType idpTrust = idpConfiguration.getTrust(); if (idpTrust != null) {