c
/
mono
Mirror von https://github.com/mono/mono.git


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236
							//
// SamlAssertion.cs
//
// Author:
//	Atsushi Enomoto <[email protected]>
//
// Copyright (C) 2005-2006 Novell, Inc.  http://www.novell.com
//
// Permission is hereby granted, free of charge, to any person obtaining
// a copy of this software and associated documentation files (the
// "Software"), to deal in the Software without restriction, including
// without limitation the rights to use, copy, modify, merge, publish,
// distribute, sublicense, and/or sell copies of the Software, and to
// permit persons to whom the Software is furnished to do so, subject to
// the following conditions:
// 
// The above copyright notice and this permission notice shall be
// included in all copies or substantial portions of the Software.
// 
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
// EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
// NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
// LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
// OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
//
using System;
using System.Collections.Generic;
using System.Globalization;
using System.Xml;
using System.IdentityModel.Selectors;

namespace System.IdentityModel.Tokens
{
	public class SamlAssertion
	{
		bool is_readonly;
		SamlAdvice advice;
		SamlConditions conditions;
		string assertion_id, issuer;
		DateTime issue_instant;
		int major, minor;
		SigningCredentials signing_credentials;
		List<SamlStatement> statements = new List<SamlStatement> ();

		public SamlAssertion ()
		{
			assertion_id = "SamlSecurityToken-" + Guid.NewGuid ();
			major = 1;
			minor = 1;
			issue_instant = DateTime.Now.ToUniversalTime ();
		}

		public SamlAssertion (string assertionId, string issuer,
			DateTime issueInstant, SamlConditions conditions,
			SamlAdvice advice, IEnumerable<SamlStatement> statements)
		{
			if (IsInvalidAssertionId (assertionId))
				throw new ArgumentException (String.Format ("The assertionId '{0}' must be a valid XML NCName.", assertionId));

			if (issuer == null || issuer.Length == 0)
				throw new ArgumentException ("issuer");
			if (statements == null)
				throw new ArgumentNullException ("statements");

			major = 1;
			minor = 1;

			assertion_id = assertionId;
			this.issuer = issuer;
			issue_instant = issueInstant;
			this.conditions = conditions;
			this.advice = advice;
			foreach (SamlStatement s in statements) {
				if (s == null)
					throw new ArgumentException ("statements contain null item.");
				this.statements.Add (s);
			}
			if (this.statements.Count == 0)
				throw new ArgumentException ("At least one assertion statement is required.");
		}

		bool IsInvalidAssertionId (string assertionId)
		{
			if (assertionId == null || assertionId.Length == 0)
				return true;
			try {
				XmlConvert.VerifyNCName (assertionId);
			} catch (XmlException) {
				return true;
			}
			return false;
		}

		public SamlAdvice Advice {
			get { return advice; }
			set {
				CheckReadOnly ();
				advice = value;
			}
		}

		public string AssertionId {
			get { return assertion_id; }
			set {
				CheckReadOnly ();
				assertion_id = value;
			}
		}

		public SamlConditions Conditions {
			get { return conditions; }
			set {
				CheckReadOnly ();
				conditions = value;
			}
		}

		public DateTime IssueInstant {
			get { return issue_instant; }
			set {
				CheckReadOnly ();
				issue_instant = value;
			}
		}

		public string Issuer {
			get { return issuer; }
			set {
				CheckReadOnly ();
				issuer = value;
			}
		}

		public int MajorVersion {
			get { return major; }
		}

		public int MinorVersion {
			get { return minor; }
		}

		public SigningCredentials SigningCredentials {
			get { return signing_credentials; }
			set {
				CheckReadOnly ();
				signing_credentials = value;
			}
		}

		[MonoTODO]
		public SecurityToken SigningToken {
			get {
				if (signing_credentials == null)
					return null;
				throw new NotImplementedException ();
			}
		}

		public IList<SamlStatement> Statements {
			get { return statements; }
		}

		public bool IsReadOnly {
			get { return is_readonly; }
		}

		private void CheckReadOnly ()
		{
			if (is_readonly)
				throw new InvalidOperationException ("This SAML assertion is read-only.");
		}

		public void MakeReadOnly ()
		{
			is_readonly = true;
		}

		[MonoTODO]
		public virtual void ReadXml (XmlDictionaryReader reader,
			SamlSerializer samlSerializer,
			SecurityTokenSerializer keyInfoTokenSerializer,
			SecurityTokenResolver outOfBandTokenResolver)
		{
			throw new NotImplementedException ();
		}

		public virtual void WriteXml (XmlDictionaryWriter writer,
			SamlSerializer samlSerializer,
			SecurityTokenSerializer keyInfoTokenSerializer)
		{
			if (writer == null)
				throw new ArgumentNullException ("writer");

			if (Issuer == null || Issuer.Length == 0)
				throw new SecurityTokenException ("Issuer must not be null or empty.");
			if (Statements.Count == 0)
				throw new SecurityTokenException ("At least one assertion statement is required.");

			if (samlSerializer == null)
				throw new ArgumentNullException ("samlSerializer");
			CultureInfo invariant = CultureInfo.InvariantCulture;

			writer.WriteStartElement ("saml", "Assertion", SamlConstants.Namespace);
			writer.WriteAttributeString ("MajorVersion", MajorVersion.ToString (invariant));
			writer.WriteAttributeString ("MinorVersion", MinorVersion.ToString (invariant));
			writer.WriteAttributeString ("AssertionID", AssertionId);
			writer.WriteAttributeString ("Issuer", Issuer);
			writer.WriteAttributeString ("IssueInstant", IssueInstant.ToString (SamlConstants.DateFormat, invariant));

			try {
				if (Conditions != null)
					Conditions.WriteXml (writer, samlSerializer, keyInfoTokenSerializer);
				if (Advice != null)
					Advice.WriteXml (writer, samlSerializer, keyInfoTokenSerializer);
				foreach (SamlStatement statement in Statements)
					statement.WriteXml (writer, samlSerializer, keyInfoTokenSerializer);
			} catch (NotImplementedException) {
				throw;
			} catch (Exception ex) { // bad catch, eh?
				throw new InvalidOperationException ("There is an error on writing assertion statements.", ex);
			}
			writer.WriteEndElement ();
		}

		[MonoTODO]
		protected void ReadSignature (XmlDictionaryReader reader,
			SecurityTokenSerializer keyInfoTokenSerializer,
			SecurityTokenResolver outOfBandTokenResolver,
			SamlSerializer samlSerializer)
		{
			throw new NotImplementedException ();
		}
	}
}