a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * Copyright (c) 2007 Sun Microsystems Inc. All Rights Reserved
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * The contents of this file are subject to the terms
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * of the Common Development and Distribution License
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * (the License). You may not use this file except in
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * compliance with the License.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * You can obtain a copy of the License at
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * https://opensso.dev.java.net/public/CDDLv1.0.html or
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * See the License for the specific language governing
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * permission and limitations under the License.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * When distributing Covered Code, include this CDDL
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * Header Notice in each file and include the License file
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * If applicable, add the following below the CDDL Header,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * with the fields enclosed by brackets [] replaced by
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * your own identifying information:
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * "Portions Copyrighted [year] [name of copyright owner]"
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * $Id: DefaultAccountMapper.java,v 1.5 2009/10/28 23:58:59 exu Exp $
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.saml.assertion.NameIdentifier;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.saml2.common.NameIDInfoKey;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.saml2.common.SAML2Constants;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.saml2.common.SAML2Exception;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.wsfederation.jaxb.entityconfig.BaseConfigType;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.wsfederation.key.KeyUtil;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.wsfederation.meta.WSFederationMetaException;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.wsfederation.meta.WSFederationMetaUtils;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.wsfederation.common.AccountUtils;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.plugin.datastore.DataStoreProvider;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.saml.xmlsig.KeyProvider;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.wsfederation.common.WSFederationException;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Fosterimport com.sun.identity.wsfederation.common.WSFederationUtils;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * This class <code>DefaultAccountMapper</code> is a base class extended by
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * <code>DefaultSPAccountMapper</code> and <code>DefaultIDPAccountMapper</code>.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * This class implements the common interface
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * methods that are required for the SP and IDP account mappers and also
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * provide some utility classes that can be shared between those mappers.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster protected static Debug debug = WSFederationUtils.debug;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster protected static ResourceBundle bundle = WSFederationUtils.bundle;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster protected static DataStoreProvider dsProvider = null;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster protected static final String IDP = SAML2Constants.IDP_ROLE;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster protected static final String SP = SAML2Constants.SP_ROLE;
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster debug.error("DefaultAccountMapper.static intialization " +
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * Default constructor
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster debug.message("DefaultAccountMapper.constructor: ");
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * Returns the <code>NameIDInfoKey</code> key value pair that can
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * be used for searching the user.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * @param nameID <code>NameID</code> object.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * @param hostEntityID hosted <code>EntityID</code>.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * @param remoteEntityID remote <code>EntityID</code>.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * @exception <code>WSFederationException</code> if any failure.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster protected Map getSearchParameters(NameIdentifier nameID,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster String realm, String hostEntityID, String remoteEntityID)
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster throw new WSFederationException(bundle.getString(
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster "nullNameID"));
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster infoKey = new NameIDInfoKey(nameID.getName(), hostEntityID,
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster keyMap.put(AccountUtils.getNameIDInfoKeyAttribute(), set);
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster debug.message("DefaultAccountMapper.getNameIDKeyMap: " + keyMap);
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * Returns the attribute value configured in the given entity
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * SP or IDP configuration.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * @param realm realm name.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * @param entityID hosted <code>EntityID</code>.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster * @param attributeName name of the attribute.
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster if(realm == null || entityID == null || attributeName == null ) {
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster debug.message("DefaultAccountMapper.getAttribute: " +
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster "null input parameters.");
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster config = WSFederationUtils.getMetaManager().getIDPSSOConfig(
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster config = WSFederationUtils.getMetaManager().getSPSSOConfig(
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster Map attributes = WSFederationMetaUtils.getAttributes(config);
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster if(attributes == null || attributes.isEmpty()) {
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster debug.message("DefaultAccountMapper.getAttribute:" +
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster " attribute configuration is not defined for " +
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster "Entity " + entityID + " realm =" + realm + " role=" + role);
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster List list = (List)attributes.get(attributeName);
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster debug.message("DefaultSPAccountMapper.getAttribute: " +
a688bcbb4bcff5398fdd29b86f83450257dc0df4Allan Foster debug.warning("DefaultSPAccountMapper.getAttribute:" +