index.jsp revision 0fdab8904a8fe223f6934b878769fe45e7651c60
<%--
DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
Copyright (c) 2008 Sun Microsystems Inc. All Rights Reserved
The contents of this file are subject to the terms
of the Common Development and Distribution License
(the License). You may not use this file except in
compliance with the License.
You can obtain a copy of the License at
See the License for the specific language governing
permission and limitations under the License.
When distributing Covered Code, include this CDDL
Header Notice in each file and include the License file
If applicable, add the following below the CDDL Header,
with the fields enclosed by brackets [] replaced by
your own identifying information:
"Portions Copyrighted [year] [name of copyright owner]"
$Id: index.jsp,v 1.14 2009/06/09 20:28:30 exu Exp $
--%>
<%--
Portions Copyrighted 2013 ForgeRock AS
--%>
<%@ page import="com.sun.identity.saml2.common.SAML2Exception" %>
<%@ page import="com.sun.identity.saml2.meta.SAML2MetaException" %>
<%@ page import="com.sun.identity.saml2.meta.SAML2MetaManager" %>
<%@ page import="java.io.IOException" %>
<%@ page import="java.io.File" %>
<%@ page import="java.io.InputStream" %>
<%@ page import="java.io.FileOutputStream" %>
<%@ page import="java.util.ArrayList" %>
<%@ page import="java.util.List" %>
<%@ page import="java.util.Map" %>
<%@ page import="org.owasp.esapi.ESAPI" %>
<%@ include file="header.jspf" %>
<%--
index.jsp contains links to test SP or IDP initiated Single Sign-on
--%>
<%
String deployuri = request.getRequestURI();
int slashLoc = deployuri.indexOf("/", 1);
if (slashLoc != -1) {
deployuri = deployuri.substring(0, slashLoc);
}
String fedletHomeDir = System.getProperty("com.sun.identity.fedlet.home");
if ((fedletHomeDir == null) || (fedletHomeDir.trim().length() == 0)) {
fedletHomeDir = File.separator + "fedlet";
} else {
fedletHomeDir = System.getProperty("user.home") +
File.separator + "fedlet";
}
}
%>
<html>
<head>
<title>Validate Fedlet Setup</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<link rel="stylesheet" type="text/css" href="<%= deployuri %>/com_sun_web_ui/css/css_ns6up.css" />
</head>
<body>
<div class="MstDiv"><table width="100%" border="0" cellpadding="0" cellspacing="0" class="MstTblTop" title="">
<tbody><tr>
<td nowrap="nowrap"> </td>
<td nowrap="nowrap"> </td>
</tr></tbody></table>
<table width="100%" border="0" cellpadding="0" cellspacing="0" class="MstTblBot" title="">
<tbody><tr>
<td class="MstTdTtl" width="99%">
<div class="MstDivTtl"><img name="ProdName" src="<%= deployuri %>/console/images/PrimaryProductName.png" alt="" /></div></td><td class="MstTdLogo" width="1%"><img name="RMRealm.mhCommon.BrandLogo" src="<%= deployuri %>/com_sun_web_ui/images/other/javalogo.gif" alt="Java(TM) Logo" border="0" height="55" width="31" /></td></tr></tbody></table>
<table class="MstTblEnd" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td><img name="RMRealm.mhCommon.EndorserLogo" src="<%= deployuri %>/com_sun_web_ui/images/masthead/masthead-sunname.gif" alt="Sun(TM) Microsystems, Inc." align="right" border="0" height="10" width="108" /></td></tr></tbody></table></div><div class="SkpMedGry1"><a name="SkipAnchor2089" id="SkipAnchor2089"></a></div>
<div class="SkpMedGry1"><a href="#SkipAnchor4928"><img src="<%= deployuri %>/com_sun_web_ui/images/other/dot.gif" alt="Jump Over Tab Navigation Area. Current Selection is: Access Control" border="0" height="1" width="1" /></a></div>
<%
// Retreive the metadata information
String spEntityID = null;
String spMetaAlias = null;
String idpEntityID = null;
String idpMetaAlias= null;
boolean createConfig = false;
// check need to create configuration
String param = request.getParameter("CreateConfig");
if ((param != null) && param.equalsIgnoreCase("true")) {
createConfig = true;
}
try {
if (createConfig) {
// copy all files under conf to fedletHomeDir
String[] files = new String[] {
"idp.xml",
"sp.xml",
"fedlet.cot"};
File dir = new File(fedletHomeDir);
if (!dir.exists()) {
if (!dir.mkdirs()) {
throw new SAML2Exception("Failed to create Fedlet " +
"configuration home directory " + fedletHomeDir);
}
} else if (dir.isFile()) {
throw new SAML2Exception("Fedlet configuration home " +
fedletHomeDir + " is a pre-existing file. <br>Please " +
"remove the file and try again.");
}
ServletContext servletCtx = getServletConfig().getServletContext();
for (int i = 0; i < files.length; i++) {
String source = "/conf/" + files[i];
String dest = dir.getPath() + File.separator + files[i];
FileOutputStream fos = null;
InputStream src = null;
try {
src = servletCtx.getResourceAsStream(source);
if (src != null) {
fos = new FileOutputStream(dest);
int length = 0;
byte[] bytes = new byte[1024];
while ((length = src.read(bytes)) != -1) {
fos.write(bytes, 0, length);
}
} else {
throw new SAML2Exception("File " + source +
" could not be found in fedlet.war");
}
} catch (IOException e) {
throw new SAML2Exception(e.getMessage());
} finally {
try {
if (fos != null) {
fos.close();
}
if (src != null) {
src.close();
}
} catch (IOException ex) {
//ignore
}
}
}
out.println("<p><br><b>Fedlet configuration created under \"" +
fedletHomeDir + "\" directory.</b>");
out.println("<br><br>Click <a href=\"index.jsp\">here</a> to continue.");
} else {
// check if this WAR contain Fedlet configuration
boolean confExist = false;
InputStream src = getServletConfig().getServletContext().
getResourceAsStream("/conf/FederationConfig.properties");
if (src != null) {
confExist = true;
}
File dir = new File(fedletHomeDir);
File file = new File(fedletHomeDir + File.separator +
if (!dir.exists() || !dir.isDirectory()) {
out.println("<p><br><b>Fedlet configuration home directory does not exist.</b>");
if (confExist) {
out.println("<br><br>Click <a href=\"index.jsp?CreateConfig=true\">here</a> to create Fedlet configuration automatically.");
out.println("<br>Or manually extract your fedlet.war and copy all files under \"conf\" directory to \"" + fedletHomeDir + "\" directory, then restart your web container.");
} else {
out.println("<br>Please follow the README bundled inside your Fedlet-unconfigured.zip file to setup Fedlet configuration, then restart your web container.");
}
} else if (!file.exists()) {
out.println("<p><br><b>FederationConfig.properties could not be found.</b>");
if (confExist) {
out.println("<br><br>Click <a href=\"index.jsp?CreateConfig=true\">here</a> to create Fedlet configuration automatically.");
out.println("<br>Or manually extract your fedlet.war and copy all files under \"conf\" directory to \"" + fedletHomeDir + "\" directory, then restart your web container.");
} else {
out.println("<br>Please follow the README bundled inside your Fedlet-unconfigured.zip file to setup Fedlet configuration, then restart your web container.");
}
} else {
SAML2MetaManager manager = new SAML2MetaManager();
List spEntities =
if ((spEntities != null) && !spEntities.isEmpty()) {
// get first one
spEntityID = (String) spEntities.get(0);
}
List spMetaAliases =
if ((spMetaAliases != null) && !spMetaAliases.isEmpty()) {
// get first one
spMetaAlias = (String) spMetaAliases.get(0);
}
List trustedIDPs = new ArrayList();
idpEntityID = request.getParameter("idpEntityID");
if (!ESAPI.validator().isValidInput("HTTP Parameter Value: " +
idpEntityID, idpEntityID, "HTTPParameterValue", 2000, true)){
idpEntityID = null;
}
if ((idpEntityID == null) || (idpEntityID.length() == 0)) {
// find out all trusted IDPs
List idpEntities =
if ((idpEntities != null) && !idpEntities.isEmpty()) {
int numOfIDP = idpEntities.size();
for (int j = 0; j < numOfIDP; j ++) {
String idpID = (String) idpEntities.get(j);
if (manager.isTrustedProvider("/",
spEntityID, idpID)) {
trustedIDPs.add(idpID);
}
}
}
}
if (trustedIDPs.size() > 1) {
// multiple trusted IDPs
int numOfIDP = trustedIDPs.size();
out.println("<p><br><b>Multiple Identity Providers are configured with this Fedlet.</b><br>");
out.println("<br><b>Please select the Identity Provider to validate the Fedlet setup :</b><br>");
String thisURI = request.getRequestURI();
if (thisURI.indexOf("?") != -1) {
thisURI = thisURI + "&";
} else {
thisURI = thisURI + "?";
}
for (int j = 0; j < numOfIDP; j ++) {
idpEntityID = (String) trustedIDPs.get(j);
out.println("<br><a href=\"" + thisURI + "idpEntityID="
+ idpEntityID + "\">" + idpEntityID + "</a>");
}
out.println("<br><br><b>or </b><br>");
out.println("<a href=\"" + deployuri +
"/saml2/jsp/fedletSSOInit.jsp?metaAlias=" + spMetaAlias
+ "\">use IDP discovery service to find out preferred IDP</a>");
out.println("</body>");
out.println("</html>");
return;
} else if (!trustedIDPs.isEmpty()) {
// get the single IDP entity ID
idpEntityID = (String) trustedIDPs.get(0);
}
if ((spEntityID == null) || (idpEntityID == null)) {
out.println("<p><br><b>Fedlet or remote Identity Provider metadata is not configured.</b>");
if (confExist) {
out.println("<p><br>Click <a href=\"index.jsp?CreateConfig=true\">here</a> to create Fedlet configuration automatically.");
out.println("<br>Or manually extract your fedlet.war and copy all files under \"conf\" directory to \"" + fedletHomeDir + "\" directory, then restart your web container.");
} else {
out.println("<br>Please follow the README bundled inside your Fedlet-unconfigured.zip file to setup Fedlet configuration, then restart your web container.");
}
} else {
// IDP base URL
Map idpMap = getIDPBaseUrlAndMetaAlias(
idpEntityID, deployuri);
String idpBaseUrl = (String)idpMap.get("idpBaseUrl");
idpMetaAlias = (String)idpMap.get("idpMetaAlias");
String fedletBaseUrl =
getFedletBaseUrl(spEntityID,deployuri);
%>
<h2>Validate Fedlet Setup</h2>
<p><br>
<table border="0" width="700">
<tr>
<td colspan="2">
Click following links to start Fedlet(SP) and/or IDP initiated
Single Sign-On. Upon successful completion, you will be presented
with a page to display the Single Sign-On Response, Assertion and
AttributeStatement received from IDP side.</td>
</tr>
<tr>
<td colspan="2"> </td>
</tr>
<tr>
<td colspan="2"> </td>
</tr>
<tr>
<td colspan="2"> </td>
</tr>
<tr>
<td><b>Fedlet (SP) Configuration Directory: </b></td> <td><%= fedletHomeDir %></td>
</tr>
<tr>
<td><b>Fedlet (SP) Entity ID:</b> </td> <td><%= spEntityID %></td>
</tr>
<tr>
<td><b>IDP Entity ID:</b></td> <td><%= idpEntityID %></td>
</tr>
<tr>
<td colspan="2"> </td>
</tr>
<tr>
<td colspan="2"> </td>
</tr>
<tr>
<td colspan="2"><a href="<%= fedletBaseUrl %>/saml2/jsp/fedletSSOInit.jsp?metaAlias=<%= spMetaAlias %>&idpEntityID=<%= idpEntityID%>&binding=urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST">Run Fedlet (SP) initiated Single Sign-On using HTTP POST binding</a></td>
</tr>
<tr>
<td colspan="2"><a href="<%= fedletBaseUrl %>/saml2/jsp/fedletSSOInit.jsp?metaAlias=<%= spMetaAlias %>&idpEntityID=<%= idpEntityID %>&binding=urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact">Run Fedlet (SP) initiated Single Sign-On using HTTP Artifact binding</a></td>
</tr>
<%
if ((idpMetaAlias != null) && (idpMetaAlias.length() != 0)){
//remote IDP is also FAM, show IDP initiated SSO
%>
<tr>
<td colspan="2"> </td>
</tr>
<tr>
<td colspan="2"><a href="<%= idpBaseUrl %>/idpssoinit?NameIDFormat=urn:oasis:names:tc:SAML:2.0:nameid-format:transient&metaAlias=<%= idpMetaAlias %>&spEntityID=<%=spEntityID %>&binding=urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST">Run Identity Provider initiated Single Sign-On using HTTP POST binding</a></td>
</tr>
<tr>
<td colspan="2"><a href="<%= idpBaseUrl %>/idpssoinit?NameIDFormat=urn:oasis:names:tc:SAML:2.0:nameid-format:transient&metaAlias=<%= idpMetaAlias %>&spEntityID=<%=spEntityID %>&binding=urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact">Run Identity Provider initiated Single Sign-On using HTTP Artifact binding</a></td>
</tr>
<%
}
%>
<tr>
<td colspan="2"> </td>
</tr>
</table>
<%
}
}
}
} catch (SAML2MetaException se) {
return;
} catch (SAML2Exception sse) {
return;
}
%>
</body>
</html>