SPSingleLogoutServiceSOAP.java revision 0e107349d3f7763a9c67fb2f32c86c11364c72cf
/**
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
*
* Copyright (c) 2006 Sun Microsystems Inc. All Rights Reserved
*
* The contents of this file are subject to the terms
* of the Common Development and Distribution License
* (the License). You may not use this file except in
* compliance with the License.
*
* You can obtain a copy of the License at
* See the License for the specific language governing
* permission and limitations under the License.
*
* When distributing Covered Code, include this CDDL
* Header Notice in each file and include the License file
* at opensso/legal/CDDLv1.0.txt.
* If applicable, add the following below the CDDL Header,
* with the fields enclosed by brackets [] replaced by
* your own identifying information:
* "Portions Copyrighted [year] [name of copyright owner]"
*
* $Id: SPSingleLogoutServiceSOAP.java,v 1.9 2009/10/14 23:59:45 exu Exp $
*
*/
/*
* Portions Copyrighted 2014 ForgeRock AS
*/
/**
* This class <code>SPSingleLogoutServiceSOAP</code> receives and processes
* single logout request using SOAP binding on SP side.
*/
public class SPSingleLogoutServiceSOAP extends HttpServlet {
public void init() throws ServletException {
}
public void doPost(
throws ServletException, IOException {
try {
// handle DOS attack
// Get SP entity ID
req.getRequestURI());
// pick the first available one
// get first one
}
}
}
{
throw new SAML2Exception(
}
+ ", spEntityID=" + spEntityID);
}
// Get all the headers from the HTTP request
// Get the body of the HTTP request
// Now internalize the contents of a HTTP request
// and create a SOAPMessage
// Need to call saveChanges because we're
// going to use the MimeHeaders to set HTTP
// response information. These MimeHeaders
// are generated as part of the save.
if (reply.saveRequired()) {
reply.saveChanges();
}
// Write out the message on the response stream
} else {
// Form SOAP fault
}
} catch (SAML2Exception ex) {
return;
} catch (SOAPException soap) {
return;
}
}
/**
* Process the incoming SOAP message containing the LogoutRequest and
* generates outgoing SOAP message containing the LogoutResponse on SP side.
* @param message incoming SOAP message.
* @param request HTTP servlet request.
* @param response HTTP servlet response.
* @param realm realm of the hosted SP.
* @param spEntityID Entity ID of the hosted SP.
* @return SOAP message containing the outgoing LogoutResponse.
*/
public SOAPMessage onMessage(
String spEntityID) {
try {
"LogoutRequest");
// delay the signature validation until it finds the session
} catch (SAML2Exception se) {
"unable to get LogoutRequest from message", se);
}
"nullLogoutRequest", null);
}
// process LogoutRequestElement
"errorLogoutResponse", null);
}
try {
false);
} catch (SAML2Exception se) {
"Unable to create SOAP message:", se);
} catch (SOAPException ex) {
"Unable to create SOAP message:", ex);
}
return msg;
}
}