/* $Id$
*
* Lasso - A free implementation of the Liberty Alliance specifications.
*
* Copyright (C) 2004-2007 Entr'ouvert
* http://lasso.entrouvert.org
*
* Authors: See AUTHORS file in top-level directory.
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, see <http://www.gnu.org/licenses/>.
*/
/**
* SECTION:federation
* @short_description: Principal federation between two providers
*
* A #LassoFederation represents the an identifier shared by two provider, usually an identity
* provider and a service provider. Instance of this class are usually never accessed directly.
**/
#include "../utils.h"
#include "../xml/private.h"
#include "federation.h"
#include "provider.h"
#include "../xml/saml-2.0/saml2_name_id.h"
struct _LassoFederationPrivate
{
gboolean dispose_has_run;
};
/*****************************************************************************/
/* static methods/functions */
/*****************************************************************************/
static LassoNode*
lasso_federation_build_name_identifier(const gchar *nameQualifier,
const gchar *format, const gchar *content)
{
LassoSamlNameIdentifier *nameIdentifier;
nameIdentifier = LASSO_SAML_NAME_IDENTIFIER(lasso_saml_name_identifier_new());
if (content == NULL) {
nameIdentifier->content = lasso_build_unique_id(32);
} else {
nameIdentifier->content = g_strdup(content);
}
nameIdentifier->NameQualifier = g_strdup(nameQualifier);
nameIdentifier->Format = g_strdup(format);
return LASSO_NODE(nameIdentifier);
}
/*****************************************************************************/
/* public methods */
/*****************************************************************************/
/**
* lasso_federation_build_local_name_identifier:
* @federation: a #LassoFederation
* @nameQualifier: the name identifier qualifier
* @format: the name identifier format
* @content: the name identifier content
*
* Builds federation local name identifier.
**/
void
lasso_federation_build_local_name_identifier(LassoFederation *federation,
const gchar *nameQualifier,
const gchar *format,
const gchar *content)
{
federation->local_nameIdentifier = lasso_federation_build_name_identifier(
nameQualifier, format, content);
}
/**
* lasso_federation_destroy:
* @federation: a #LassoFederation
*
* Destroys a federation.
**/
void
lasso_federation_destroy(LassoFederation *federation)
{
lasso_node_destroy(LASSO_NODE(federation));
}
/**
* lasso_federation_verify_name_identifier:
* @federation: a #LassoFederation
* @name_identifier: the #LassoSamlNameIdentifier
*
* Checks whether federation is for @name_identifier.
*
* Return value: %TRUE if the federation is for @name_identifier.
**/
gboolean
lasso_federation_verify_name_identifier(LassoFederation *federation,
LassoNode *name_identifier)
{
LassoProtocolConformance conformance;
char *s, *content;
g_return_val_if_fail(LASSO_IS_FEDERATION(federation), FALSE);
g_return_val_if_fail(LASSO_IS_NODE(name_identifier), FALSE);
if (LASSO_IS_SAML_NAME_IDENTIFIER(name_identifier)) {
conformance = LASSO_PROTOCOL_LIBERTY_1_2;
content = LASSO_SAML_NAME_IDENTIFIER(name_identifier)->content;
} else if (LASSO_IS_SAML2_NAME_ID(name_identifier)) {
conformance = LASSO_PROTOCOL_SAML_2_0;
content = LASSO_SAML2_NAME_ID(name_identifier)->content;
} else {
return FALSE;
}
/* verify local name identifier */
if (federation->local_nameIdentifier != NULL) {
if (conformance == LASSO_PROTOCOL_LIBERTY_1_2) {
s = LASSO_SAML_NAME_IDENTIFIER(federation->local_nameIdentifier)->content;
} else {
s = LASSO_SAML2_NAME_ID(federation->local_nameIdentifier)->content;
}
if (strcmp(s, content) == 0) {
return TRUE;
}
}
/* verify remote name identifier */
if (federation->remote_nameIdentifier != NULL) {
if (conformance == LASSO_PROTOCOL_LIBERTY_1_2) {
s = LASSO_SAML_NAME_IDENTIFIER(federation->remote_nameIdentifier)->content;
} else {
s = LASSO_SAML2_NAME_ID(federation->remote_nameIdentifier)->content;
}
if (strcmp(s, content) == 0) {
return TRUE;
}
}
return FALSE;
}
/*****************************************************************************/
/* private methods */
/*****************************************************************************/
static struct XmlSnippet schema_snippets[] = {
{ "LocalNameIdentifier", SNIPPET_NODE_IN_CHILD,
G_STRUCT_OFFSET(LassoFederation, local_nameIdentifier), NULL, NULL, NULL},
{ "RemoteNameIdentifier", SNIPPET_NODE_IN_CHILD,
G_STRUCT_OFFSET(LassoFederation, remote_nameIdentifier), NULL, NULL, NULL},
{ "RemoteProviderID", SNIPPET_ATTRIBUTE,
G_STRUCT_OFFSET(LassoFederation, remote_providerID), NULL, NULL, NULL},
{ "FederationDumpVersion", SNIPPET_ATTRIBUTE, 0, NULL, NULL, NULL },
{NULL, 0, 0, NULL, NULL, NULL}
};
static LassoNodeClass *parent_class = NULL;
static xmlNode*
get_xmlNode(LassoNode *node, gboolean lasso_dump)
{
xmlNode *xmlnode;
xmlnode = parent_class->get_xmlNode(node, lasso_dump);
xmlSetProp(xmlnode, (xmlChar*)"FederationDumpVersion", (xmlChar*)"2");
return xmlnode;
}
static int
init_from_xml(LassoNode *node, xmlNode *xmlnode)
{
return parent_class->init_from_xml(node, xmlnode);
}
/*****************************************************************************/
/* overridden parent class methods */
/*****************************************************************************/
static void
dispose(GObject *object)
{
LassoFederation *federation = LASSO_FEDERATION(object);
if (federation->private_data->dispose_has_run) {
return;
}
federation->private_data->dispose_has_run = TRUE;
G_OBJECT_CLASS(parent_class)->dispose(object);
}
static void
finalize(GObject *object)
{
LassoFederation *federation = LASSO_FEDERATION(object);
lasso_release(federation->private_data);
G_OBJECT_CLASS(parent_class)->finalize(object);
}
/*****************************************************************************/
/* instance and class init functions */
/*****************************************************************************/
static void
instance_init(LassoFederation *federation)
{
federation->private_data = g_new0(LassoFederationPrivate, 1);
federation->private_data->dispose_has_run = FALSE;
federation->remote_providerID = NULL;
federation->local_nameIdentifier = NULL;
federation->remote_nameIdentifier = NULL;
}
static void
class_init(LassoFederationClass *klass)
{
LassoNodeClass *nclass = LASSO_NODE_CLASS(klass);
parent_class = g_type_class_peek_parent(klass);
nclass->get_xmlNode = get_xmlNode;
nclass->init_from_xml = init_from_xml;
nclass->node_data = g_new0(LassoNodeClassData, 1);
lasso_node_class_set_nodename(nclass, "Federation");
lasso_node_class_set_ns(nclass, LASSO_LASSO_HREF, LASSO_LASSO_PREFIX);
lasso_node_class_add_snippets(nclass, schema_snippets);
G_OBJECT_CLASS(klass)->dispose = dispose;
G_OBJECT_CLASS(klass)->finalize = finalize;
}
GType
lasso_federation_get_type()
{
static GType this_type = 0;
if (!this_type) {
static const GTypeInfo this_info = {
sizeof (LassoFederationClass),
NULL,
NULL,
(GClassInitFunc) class_init,
NULL,
NULL,
sizeof(LassoFederation),
0,
(GInstanceInitFunc) instance_init,
NULL
};
this_type = g_type_register_static(LASSO_TYPE_NODE,
"LassoFederation", &this_info, 0);
}
return this_type;
}
/**
* lasso_federation_new:
* @remote_providerID: remote Provider ID
*
* Creates a new #LassoFederation with the remote provider.
*
* Return value: a newly created #LassoFederation
**/
LassoFederation*
lasso_federation_new(const gchar *remote_providerID)
{
LassoFederation *federation;
g_return_val_if_fail(remote_providerID != NULL, NULL);
federation = LASSO_FEDERATION(g_object_new(LASSO_TYPE_FEDERATION, NULL));
federation->remote_providerID = g_strdup(remote_providerID);
return federation;
}