Picketlink SVN: r339 - integration-tests/trunk/parent.
by picketlink-commits@lists.jboss.org
Author: sguilhen(a)redhat.com
Date: 2010-07-29 16:04:34 -0400 (Thu, 29 Jul 2010)
New Revision: 339
Modified:
integration-tests/trunk/parent/pom.xml
Log:
Removed duplicated repository declaration
Modified: integration-tests/trunk/parent/pom.xml
===================================================================
--- integration-tests/trunk/parent/pom.xml 2010-07-29 20:00:00 UTC (rev 338)
+++ integration-tests/trunk/parent/pom.xml 2010-07-29 20:04:34 UTC (rev 339)
@@ -87,16 +87,6 @@
</snapshots>
</repository>
<repository>
- <id>repository.jboss.org</id>
- <name>JBoss Repository</name>
- <layout>default</layout>
- <url>http://repository.jboss.org/maven2/</url>
- <snapshots>
- <enabled>false</enabled>
- </snapshots>
- </repository>
-
- <repository>
<id>snapshots.jboss.org</id>
<name>JBoss Snapshots Repository</name>
<layout>default</layout>
14 years, 4 months
- 1
- 0
Picketlink SVN: r338 - integration-tests/trunk/picketlink-sts-tests.
by picketlink-commits@lists.jboss.org
Author: anil.saldhana(a)jboss.com
Date: 2010-07-29 16:00:00 -0400 (Thu, 29 Jul 2010)
New Revision: 338
Modified:
integration-tests/trunk/picketlink-sts-tests/pom.xml
Log:
disable metro tests for now
Modified: integration-tests/trunk/picketlink-sts-tests/pom.xml
===================================================================
--- integration-tests/trunk/picketlink-sts-tests/pom.xml 2010-07-29 19:12:48 UTC (rev 337)
+++ integration-tests/trunk/picketlink-sts-tests/pom.xml 2010-07-29 20:00:00 UTC (rev 338)
@@ -43,7 +43,7 @@
<goal>test</goal>
</goals>
<configuration>
- <skip>false</skip>
+ <skip>true</skip>
<reportsDirectory>${project.build.directory}/surefire-reports-metro</reportsDirectory>
</configuration>
</execution>
14 years, 4 months
- 1
- 0
Picketlink SVN: r337 - federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/util.
by picketlink-commits@lists.jboss.org
Author: anil.saldhana(a)jboss.com
Date: 2010-07-29 15:12:48 -0400 (Thu, 29 Jul 2010)
New Revision: 337
Modified:
federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/util/XMLSignatureUtil.java
Log:
PLFED-100: add additional transform
Modified: federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/util/XMLSignatureUtil.java
===================================================================
--- federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/util/XMLSignatureUtil.java 2010-07-29 18:24:23 UTC (rev 336)
+++ federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/util/XMLSignatureUtil.java 2010-07-29 19:12:48 UTC (rev 337)
@@ -29,6 +29,7 @@
import java.security.PrivateKey;
import java.security.PrivilegedAction;
import java.security.PublicKey;
+import java.util.ArrayList;
import java.util.Collections;
import java.util.List;
@@ -119,7 +120,7 @@
return null;
}
});
- };
+ };
/**
* Set the canonicalization method type
@@ -248,17 +249,20 @@
PublicKey publicKey = keyPair.getPublic();
DOMSignContext dsc = new DOMSignContext(signingKey, doc.getDocumentElement());
- dsc.setDefaultNamespacePrefix("dsig");
-
-// dsc.putNamespacePrefix(XMLSignature.XMLNS, "ds");
-
+ dsc.setDefaultNamespacePrefix("dsig");
+
DigestMethod digestMethodObj = fac.newDigestMethod(digestMethod, null);
- Transform transform = fac.newTransform(Transform.ENVELOPED,
+ Transform transform1 = fac.newTransform(Transform.ENVELOPED,
(TransformParameterSpec) null);
-
- List<Transform> transformList = Collections.singletonList(transform);
+ Transform transform2 = fac.newTransform("http://www.w3.org/2001/10/xml-exc-c14n#",
+ (TransformParameterSpec) null);
+
+ List<Transform> transformList = new ArrayList<Transform>() ;
+ transformList.add(transform1);
+ transformList.add(transform2);
+
Reference ref = fac.newReference
- ( referenceURI, digestMethodObj,transformList,null, null);
+ ( referenceURI, digestMethodObj,transformList,null, null);
CanonicalizationMethod canonicalizationMethod
= fac.newCanonicalizationMethod
14 years, 4 months
- 1
- 0
Picketlink SVN: r336 - in federation/trunk/picketlink-fed-core/src/test: resources/config and 1 other directories.
by picketlink-commits@lists.jboss.org
Author: anil.saldhana(a)jboss.com
Date: 2010-07-29 14:24:23 -0400 (Thu, 29 Jul 2010)
New Revision: 336
Added:
federation/trunk/picketlink-fed-core/src/test/resources/sts/picketlink-sts-xmldsig-Canonicalization.xml
Modified:
federation/trunk/picketlink-fed-core/src/test/java/org/picketlink/test/identity/federation/core/config/ConfigUnitTestCase.java
federation/trunk/picketlink-fed-core/src/test/resources/config/test-config-2.xml
federation/trunk/picketlink-fed-core/src/test/resources/config/test-config-3.xml
Log:
PLFED-91: make the canonicalization method for the xml dsig configurable
Modified: federation/trunk/picketlink-fed-core/src/test/java/org/picketlink/test/identity/federation/core/config/ConfigUnitTestCase.java
===================================================================
--- federation/trunk/picketlink-fed-core/src/test/java/org/picketlink/test/identity/federation/core/config/ConfigUnitTestCase.java 2010-07-29 18:18:00 UTC (rev 335)
+++ federation/trunk/picketlink-fed-core/src/test/java/org/picketlink/test/identity/federation/core/config/ConfigUnitTestCase.java 2010-07-29 18:24:23 UTC (rev 336)
@@ -26,6 +26,7 @@
import javax.xml.bind.JAXBElement;
import javax.xml.bind.Unmarshaller;
+import javax.xml.crypto.dsig.CanonicalizationMethod;
import junit.framework.TestCase;
@@ -83,6 +84,7 @@
assertEquals("20000", 20000L, idp.getAssertionValidity());
assertEquals("somefqn", idp.getRoleGenerator());
assertTrue(idp.isEncrypt());
+ assertEquals( CanonicalizationMethod.EXCLUSIVE , idp.getCanonicalizationMethod() );
KeyProviderType kp = idp.getKeyProvider();
assertNotNull("KeyProvider is not null", kp);
assertEquals("SomeClass", "SomeClass", kp.getClassName());
@@ -123,6 +125,7 @@
SPType sp = ((JAXBElement<SPType>) object).getValue();
assertEquals("http://localhost:8080/idp", sp.getIdentityURL());
assertEquals("http://localhost:8080/sales", sp.getServiceURL());
+ assertEquals( CanonicalizationMethod.EXCLUSIVE , sp.getCanonicalizationMethod() );
}
/**
Modified: federation/trunk/picketlink-fed-core/src/test/resources/config/test-config-2.xml
===================================================================
--- federation/trunk/picketlink-fed-core/src/test/resources/config/test-config-2.xml 2010-07-29 18:18:00 UTC (rev 335)
+++ federation/trunk/picketlink-fed-core/src/test/resources/config/test-config-2.xml 2010-07-29 18:24:23 UTC (rev 336)
@@ -1,7 +1,8 @@
<PicketLinkIDP xmlns="urn:picketlink:identity-federation:config:1.0"
AssertionValidity="20000"
RoleGenerator="somefqn"
- Encrypt="true">
+ Encrypt="true"
+ CanonicalizationMethod="http://www.w3.org/2001/10/xml-exc-c14n#">
<IdentityURL>http://localhost:8080/idp</IdentityURL>
<Trust>
<Domains>localhost,jboss.com,jboss.org</Domains>
Modified: federation/trunk/picketlink-fed-core/src/test/resources/config/test-config-3.xml
===================================================================
--- federation/trunk/picketlink-fed-core/src/test/resources/config/test-config-3.xml 2010-07-29 18:18:00 UTC (rev 335)
+++ federation/trunk/picketlink-fed-core/src/test/resources/config/test-config-3.xml 2010-07-29 18:24:23 UTC (rev 336)
@@ -1,4 +1,5 @@
-<PicketLinkSP xmlns="urn:picketlink:identity-federation:config:1.0">
+<PicketLinkSP xmlns="urn:picketlink:identity-federation:config:1.0"
+ CanonicalizationMethod="http://www.w3.org/2001/10/xml-exc-c14n#">
<IdentityURL>http://localhost:8080/idp</IdentityURL>
<Trust>
<Domains>localhost,jboss.com,jboss.org</Domains>
Added: federation/trunk/picketlink-fed-core/src/test/resources/sts/picketlink-sts-xmldsig-Canonicalization.xml
===================================================================
--- federation/trunk/picketlink-fed-core/src/test/resources/sts/picketlink-sts-xmldsig-Canonicalization.xml (rev 0)
+++ federation/trunk/picketlink-fed-core/src/test/resources/sts/picketlink-sts-xmldsig-Canonicalization.xml 2010-07-29 18:24:23 UTC (rev 336)
@@ -0,0 +1,32 @@
+<PicketLinkSTS xmlns="urn:picketlink:identity-federation:config:1.0"
+ STSName="Test STS" TokenTimeout="7200" EncryptToken="false"
+ CanonicalizationMethod="http://www.w3.org/2001/10/xml-exc-c14n#">
+ <KeyProvider ClassName="org.picketlink.identity.federation.core.impl.KeyStoreKeyManager">
+ <Auth Key="KeyStoreURL" Value="keystore/sts_keystore.jks"/>
+ <Auth Key="KeyStorePass" Value="testpass"/>
+ <Auth Key="SigningKeyAlias" Value="sts"/>
+ <Auth Key="SigningKeyPass" Value="keypass"/>
+ <ValidatingAlias Key="http://services.testcorp.org/provider1" Value="service1"/>
+ <ValidatingAlias Key="http://services.testcorp.org/provider2" Value="service2"/>
+ </KeyProvider>
+ <RequestHandler>org.picketlink.identity.federation.core.wstrust.StandardRequestHandler</RequestHandler>
+ <TokenProviders>
+ <TokenProvider ProviderClass="org.picketlink.test.identity.federation.core.wstrust.SpecialTokenProvider"
+ TokenType="http://www.tokens.org/SpecialToken"
+ TokenElement="SpecialToken"
+ TokenElementNS="http://www.tokens.org">
+ <Property Key="Property1" Value="Value1"/>
+ <Property Key="Property2" Value="Value2"/>
+ </TokenProvider>
+ <TokenProvider ProviderClass="org.picketlink.identity.federation.core.wstrust.plugins.saml.SAML20TokenProvider"
+ TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0"
+ TokenElement="Assertion"
+ TokenElementNS="urn:oasis:names:tc:SAML:2.0:assertion"/>
+ </TokenProviders>
+ <ServiceProviders>
+ <ServiceProvider Endpoint="http://services.testcorp.org/provider1" TokenType="http://www.tokens.org/SpecialToken"
+ TruststoreAlias="service1"/>
+ <ServiceProvider Endpoint="http://services.testcorp.org/provider2" TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0"
+ TruststoreAlias="service2"/>
+ </ServiceProviders>
+</PicketLinkSTS>
\ No newline at end of file
14 years, 4 months
- 1
- 0
Picketlink SVN: r335 - in federation/trunk: picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/sp and 11 other directories.
by picketlink-commits@lists.jboss.org
Author: anil.saldhana(a)jboss.com
Date: 2010-07-29 14:18:00 -0400 (Thu, 29 Jul 2010)
New Revision: 335
Modified:
federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPRedirectWithSignatureValve.java
federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPWebBrowserSSOValve.java
federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/sp/BaseFormAuthenticator.java
federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/sp/SPPostSignatureFormAuthenticator.java
federation/trunk/picketlink-fed-api/src/main/java/org/picketlink/identity/federation/api/saml/v2/sig/SAML2Signature.java
federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/config/ProviderType.java
federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/config/STSType.java
federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/util/XMLSignatureUtil.java
federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/PicketLinkSTSConfiguration.java
federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/STSConfiguration.java
federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/StandardRequestHandler.java
federation/trunk/picketlink-fed-core/src/main/resources/schema/config/picketlink-fed.xsd
federation/trunk/picketlink-fed-core/src/test/java/org/picketlink/test/identity/federation/core/wstrust/PicketLinkSTSConfigUnitTestCase.java
federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/constants/GeneralConstants.java
federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/filters/SPFilter.java
federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/handlers/saml2/SAML2SignatureGenerationHandler.java
federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/servlets/IDPServlet.java
federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/util/IDPWebRequestUtil.java
Log:
PLFED-91: make the canonicalization method for the xml dsig configurable
Modified: federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPRedirectWithSignatureValve.java
===================================================================
--- federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPRedirectWithSignatureValve.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPRedirectWithSignatureValve.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -107,7 +107,7 @@
List<AuthPropertyType> authProperties = CoreConfigUtil.getKeyProviderProperties(keyProvider);
keyManager.setAuthProperties( authProperties );
- keyManager.setValidatingAlias(keyProvider.getValidatingAlias());
+ keyManager.setValidatingAlias(keyProvider.getValidatingAlias());
}
catch(Exception e)
{
Modified: federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPWebBrowserSSOValve.java
===================================================================
--- federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPWebBrowserSSOValve.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPWebBrowserSSOValve.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -40,6 +40,7 @@
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletResponse;
+import javax.xml.crypto.dsig.CanonicalizationMethod;
import org.apache.catalina.Context;
import org.apache.catalina.Lifecycle;
@@ -136,6 +137,9 @@
private transient String samlHandlerChainClass = null;
+
+ protected String canonicalizationMethod = CanonicalizationMethod.EXCLUSIVE_WITH_COMMENTS;
+
/**
* A Lock for Handler operations in the chain
*/
@@ -544,6 +548,8 @@
{
//Validate
SAML2Signature samlSignature = new SAML2Signature();
+ samlSignature.setCanonicalizationMethod(canonicalizationMethod);
+
if( ignoreIncomingSignatures == false && signOutgoingMessages == true )
{
PublicKey publicKey = keyManager.getValidatingKey(remoteAddress);
@@ -885,6 +891,8 @@
this.identityURL = idpConfiguration.getIdentityURL();
if(trace) log.trace("Identity Provider URL=" + this.identityURL);
this.assertionValidity = idpConfiguration.getAssertionValidity();
+ this.canonicalizationMethod = idpConfiguration.getCanonicalizationMethod();
+
//Get the attribute manager
String attributeManager = idpConfiguration.getAttributeManager();
if(attributeManager != null && !"".equals(attributeManager))
@@ -931,10 +939,12 @@
Map<String, Object> chainConfigOptions = new HashMap<String, Object>();
chainConfigOptions.put(GeneralConstants.ROLE_GENERATOR, roleGenerator);
chainConfigOptions.put(GeneralConstants.CONFIGURATION, idpConfiguration);
+ chainConfigOptions.put( GeneralConstants.CANONICALIZATION_METHOD, canonicalizationMethod );
if(this.keyManager != null)
chainConfigOptions.put(GeneralConstants.KEYPAIR, keyManager.getSigningKeyPair());
SAML2HandlerChainConfig handlerChainConfig = new DefaultSAML2HandlerChainConfig(chainConfigOptions);
+
Set<SAML2Handler> samlHandlers = chain.handlers();
for(SAML2Handler handler: samlHandlers)
Modified: federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/sp/BaseFormAuthenticator.java
===================================================================
--- federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/sp/BaseFormAuthenticator.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/sp/BaseFormAuthenticator.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -31,6 +31,7 @@
import java.util.concurrent.locks.ReentrantLock;
import javax.servlet.ServletContext;
+import javax.xml.crypto.dsig.CanonicalizationMethod;
import org.apache.catalina.LifecycleException;
import org.apache.catalina.authenticator.FormAuthenticator;
@@ -78,6 +79,9 @@
* A Lock for Handler operations in the chain
*/
protected Lock chainLock = new ReentrantLock();
+
+
+ protected String canonicalizationMethod = CanonicalizationMethod.EXCLUSIVE_WITH_COMMENTS;
public BaseFormAuthenticator()
{
@@ -152,6 +156,8 @@
spConfiguration = ConfigurationUtil.getSPConfiguration(is);
this.identityURL = spConfiguration.getIdentityURL();
this.serviceURL = spConfiguration.getServiceURL();
+ this.canonicalizationMethod = spConfiguration.getCanonicalizationMethod();
+
if(trace) log.trace("Identity Provider URL=" + this.identityURL);
}
catch (Exception e)
@@ -180,6 +186,7 @@
{
populateChainConfig();
SAML2HandlerChainConfig handlerChainConfig = new DefaultSAML2HandlerChainConfig(chainConfigOptions);
+
Set<SAML2Handler> samlHandlers = chain.handlers();
for(SAML2Handler handler: samlHandlers)
@@ -192,6 +199,7 @@
throws ConfigurationException, ProcessingException
{
chainConfigOptions.put(GeneralConstants.CONFIGURATION, spConfiguration);
+ chainConfigOptions.put( GeneralConstants.CANONICALIZATION_METHOD, canonicalizationMethod );
chainConfigOptions.put(GeneralConstants.ROLE_VALIDATOR_IGNORE, "false"); //No validator as tomcat realm does validn
}
}
\ No newline at end of file
Modified: federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/sp/SPPostSignatureFormAuthenticator.java
===================================================================
--- federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/sp/SPPostSignatureFormAuthenticator.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/sp/SPPostSignatureFormAuthenticator.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -67,7 +67,7 @@
public void setSignAssertions(boolean signAssertions)
{
this.signAssertions = signAssertions;
- }
+ }
@Override
public void start() throws LifecycleException
@@ -120,6 +120,8 @@
//Sign the document
SAML2Signature samlSignature = new SAML2Signature();
KeyPair keypair = keyManager.getSigningKeyPair();
+
+ samlSignature.setCanonicalizationMethod( this.canonicalizationMethod );
samlSignature.signSAMLDocument(samlDocument, keypair);
if(trace)
Modified: federation/trunk/picketlink-fed-api/src/main/java/org/picketlink/identity/federation/api/saml/v2/sig/SAML2Signature.java
===================================================================
--- federation/trunk/picketlink-fed-api/src/main/java/org/picketlink/identity/federation/api/saml/v2/sig/SAML2Signature.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-fed-api/src/main/java/org/picketlink/identity/federation/api/saml/v2/sig/SAML2Signature.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -28,6 +28,7 @@
import javax.xml.bind.JAXBException;
import javax.xml.crypto.MarshalException;
+import javax.xml.crypto.dsig.CanonicalizationMethod;
import javax.xml.crypto.dsig.DigestMethod;
import javax.xml.crypto.dsig.SignatureMethod;
import javax.xml.crypto.dsig.XMLSignatureException;
@@ -57,6 +58,8 @@
{
private String signatureMethod = SignatureMethod.RSA_SHA1;
private String digestMethod = DigestMethod.SHA1;
+ private String canonicalizationMethod = CanonicalizationMethod.EXCLUSIVE_WITH_COMMENTS;
+
public String getSignatureMethod()
{
@@ -79,6 +82,24 @@
}
/**
+ * Get the configured XML DSIG CanonicalizationMethod
+ * @return
+ */
+ public String getCanonicalizationMethod()
+ {
+ return canonicalizationMethod;
+ }
+
+ /**
+ * Set the XML DSIG Canonicalization Method
+ * @param canonicalizationMethod
+ */
+ public void setCanonicalizationMethod(String canonicalizationMethod)
+ {
+ this.canonicalizationMethod = canonicalizationMethod;
+ }
+
+ /**
* Sign an RequestType at the root
* @param request
* @param keypair Key Pair
@@ -210,6 +231,9 @@
"ID",
idValueOfAssertion);
+ //Set the configured canonicalization method
+ XMLSignatureUtil.setCanonicalizationMethodType( canonicalizationMethod );
+
return XMLSignatureUtil.sign(doc, assertionNode,
keypair,
digestMethod, signatureMethod,
Modified: federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/config/ProviderType.java
===================================================================
--- federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/config/ProviderType.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/config/ProviderType.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -14,6 +14,7 @@
import javax.xml.bind.annotation.XmlElement;
import javax.xml.bind.annotation.XmlSeeAlso;
import javax.xml.bind.annotation.XmlType;
+import javax.xml.crypto.dsig.CanonicalizationMethod;
/**
@@ -41,6 +42,9 @@
* </restriction>
* </simpleType>
* </attribute>
+ *
+ <attribute name="CanonicalizationMethod" use="optional" default="http://www.w3.org/2001/10/xml-exc-c14n#WithComments"
+ type="string"/>
* </restriction>
* </complexContent>
* </complexType>
@@ -71,6 +75,8 @@
protected MetadataProviderType metaDataProvider;
@XmlAttribute(name = "ServerEnvironment")
protected String serverEnvironment;
+ @XmlAttribute(name = "CanonicalizationMethod")
+ protected String canonicalizationMethod;
/**
* Gets the value of the identityURL property.
@@ -196,4 +202,34 @@
this.serverEnvironment = value;
}
-}
+
+ /**
+ * Gets the value of the canonicalizationMethod property.
+ *
+ * @return
+ * possible object is
+ * {@link String }
+ *
+ */
+ public String getCanonicalizationMethod()
+ {
+ if( canonicalizationMethod == null )
+ canonicalizationMethod = CanonicalizationMethod.EXCLUSIVE_WITH_COMMENTS;
+
+ return canonicalizationMethod;
+ }
+
+ /**
+ * Sets the value of the canonicalizationMethod property.
+ *
+ * @param value
+ * allowed object is
+ * {@link String }
+ *
+ */
+ public void setCanonicalizationMethod(String canonicalizationMethod)
+ {
+ this.canonicalizationMethod = canonicalizationMethod;
+ }
+
+}
\ No newline at end of file
Modified: federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/config/STSType.java
===================================================================
--- federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/config/STSType.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/config/STSType.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -13,6 +13,7 @@
import javax.xml.bind.annotation.XmlAttribute;
import javax.xml.bind.annotation.XmlElement;
import javax.xml.bind.annotation.XmlType;
+import javax.xml.crypto.dsig.CanonicalizationMethod;
/**
@@ -35,6 +36,8 @@
* <attribute name="TokenTimeout" type="{http://www.w3.org/2001/XMLSchema}int" default="3600" />
* <attribute name="SignToken" type="{http://www.w3.org/2001/XMLSchema}boolean" default="true" />
* <attribute name="EncryptToken" type="{http://www.w3.org/2001/XMLSchema}boolean" default="false" />
+ * <attribute name="CanonicalizationMethod" default="http://www.w3.org/2001/10/xml-exc-c14n#WithComments"
+ * type="string" use="optional"/>
* </restriction>
* </complexContent>
* </complexType>
@@ -70,6 +73,8 @@
protected Boolean signToken;
@XmlAttribute(name = "EncryptToken")
protected Boolean encryptToken;
+ @XmlAttribute(name = "CanonicalizationMethod")
+ protected String canonicalizationMethod;
/**
* Gets the value of the keyProvider property.
@@ -303,4 +308,32 @@
this.encryptToken = value;
}
-}
+ /**
+ * Gets the value of the canonicalizationMethod property.
+ *
+ * @return
+ * possible object is
+ * {@link String }
+ *
+ */
+ public String getCanonicalizationMethod()
+ {
+ if( canonicalizationMethod == null )
+ canonicalizationMethod = CanonicalizationMethod.EXCLUSIVE_WITH_COMMENTS;
+
+ return canonicalizationMethod;
+ }
+
+ /**
+ * Sets the value of the canonicalizationMethod property.
+ *
+ * @param value
+ * allowed object is
+ * {@link String }
+ *
+ */
+ public void setCanonicalizationMethod(String canonicalizationMethod)
+ {
+ this.canonicalizationMethod = canonicalizationMethod;
+ }
+}
\ No newline at end of file
Modified: federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/util/XMLSignatureUtil.java
===================================================================
--- federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/util/XMLSignatureUtil.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/util/XMLSignatureUtil.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -85,7 +85,7 @@
private static String pkgName = "org.picketlink.identity.federation.w3.xmldsig";
private static String schemaLocation = "schema/saml/v2/xmldsig-core-schema.xsd";
- private static String canonicalizationMethodType = null;
+ private static String canonicalizationMethodType = CanonicalizationMethod.EXCLUSIVE_WITH_COMMENTS;
private static ObjectFactory objectFactory = new ObjectFactory();
@@ -115,10 +115,7 @@
{
public Object run()
{
- System.setProperty("org.apache.xml.security.ignoreLineBreaks", "true");
-
- canonicalizationMethodType = System.getProperty( "picketlink.xmlsig.canonicalization",
- CanonicalizationMethod.EXCLUSIVE_WITH_COMMENTS );
+ System.setProperty("org.apache.xml.security.ignoreLineBreaks", "true");
return null;
}
});
Modified: federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/PicketLinkSTSConfiguration.java
===================================================================
--- federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/PicketLinkSTSConfiguration.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/PicketLinkSTSConfiguration.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -366,4 +366,12 @@
}
return certificate;
}
-}
+
+ /**
+ * @see STSConfiguration#getXMLDSigCanonicalizationMethod()
+ */
+ public String getXMLDSigCanonicalizationMethod()
+ {
+ return delegate.getCanonicalizationMethod();
+ }
+}
\ No newline at end of file
Modified: federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/STSConfiguration.java
===================================================================
--- federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/STSConfiguration.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/STSConfiguration.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -31,6 +31,7 @@
* </p>
*
* @author <a href="mailto:sguilhen@redhat.com">Stefan Guilhen</a>
+ * @author Anil.Saldhana(a)redhat.com
*/
public interface STSConfiguration
{
@@ -172,4 +173,15 @@
* @return the {@code Certificate} obtained from the keystore, or {@code null} if no certificate was found.
*/
public Certificate getCertificate(String alias);
-}
+
+ /**
+ * <p>
+ * Returns the configured canonicalization method.
+ * </p>
+ * <p>
+ * <b>NOTE:</b> Defaults to javax.xml.crypto.dsig.CanonicalizationMethod.EXCLUSIVE_WITH_COMMENTS
+ * </p>
+ * @return
+ */
+ public String getXMLDSigCanonicalizationMethod();
+}
\ No newline at end of file
Modified: federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/StandardRequestHandler.java
===================================================================
--- federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/StandardRequestHandler.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-fed-core/src/main/java/org/picketlink/identity/federation/core/wstrust/StandardRequestHandler.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -544,6 +544,9 @@
if (trace)
log.trace("NamespaceURI of element to be signed:" + tokenElement.getNamespaceURI());
+ //Set the CanonicalizationMethod if any
+ XMLSignatureUtil.setCanonicalizationMethodType( configuration.getXMLDSigCanonicalizationMethod() );
+
rstrDocument = XMLSignatureUtil.sign(rstrDocument, tokenElement, keyPair, DigestMethod.SHA1,
signatureMethod, "#" + tokenElement.getAttribute("ID"));
if (trace)
Modified: federation/trunk/picketlink-fed-core/src/main/resources/schema/config/picketlink-fed.xsd
===================================================================
--- federation/trunk/picketlink-fed-core/src/main/resources/schema/config/picketlink-fed.xsd 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-fed-core/src/main/resources/schema/config/picketlink-fed.xsd 2010-07-29 18:18:00 UTC (rev 335)
@@ -121,6 +121,8 @@
</restriction>
</simpleType>
</attribute>
+ <attribute name="CanonicalizationMethod" use="optional" default="http://www.w3.org/2001/10/xml-exc-c14n#WithComments"
+ type="string"/>
</complexType>
<complexType name="SPType">
@@ -180,6 +182,7 @@
<attribute name="TokenTimeout" default="3600" type="int" use="optional"/>
<attribute name="SignToken" default="true" type="boolean" use="optional"/>
<attribute name="EncryptToken" default="false" type="boolean" use="optional"/>
+ <attribute name="CanonicalizationMethod" default="http://www.w3.org/2001/10/xml-exc-c14n#WithComments" type="string" use="optional"/>
</complexType>
<complexType name="ClaimsProcessorsType">
Modified: federation/trunk/picketlink-fed-core/src/test/java/org/picketlink/test/identity/federation/core/wstrust/PicketLinkSTSConfigUnitTestCase.java
===================================================================
--- federation/trunk/picketlink-fed-core/src/test/java/org/picketlink/test/identity/federation/core/wstrust/PicketLinkSTSConfigUnitTestCase.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-fed-core/src/test/java/org/picketlink/test/identity/federation/core/wstrust/PicketLinkSTSConfigUnitTestCase.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -21,10 +21,13 @@
*/
package org.picketlink.test.identity.federation.core.wstrust;
+import static org.junit.Assert.assertEquals;
import static org.junit.Assert.assertNotNull;
import java.security.cert.Certificate;
+import javax.xml.crypto.dsig.CanonicalizationMethod;
+
import org.junit.Test;
import org.picketlink.identity.federation.core.wstrust.STSConfiguration;
import org.picketlink.test.identity.federation.core.wstrust.PicketLinkSTSUnitTestCase.TestSTS;
@@ -36,6 +39,10 @@
*/
public class PicketLinkSTSConfigUnitTestCase
{
+ /**
+ * Test the masking of passwords
+ * @throws Exception
+ */
@Test
public void testMaskedPassword() throws Exception
{
@@ -49,4 +56,20 @@
cert = stsConfiguration.getCertificate( "service2" );
assertNotNull( "cert is not null", cert );
}
+
+ /**
+ * Test the introduction of the CanonicalizationMethod attribute
+ * on the STSType
+ * @throws Exception
+ */
+ @Test
+ public void testXMLDSigCanonicalization() throws Exception
+ {
+ PicketLinkSTSUnitTestCase plstsTest = new PicketLinkSTSUnitTestCase();
+ TestSTS sts = plstsTest.new TestSTS("sts/picketlink-sts-xmldsig-Canonicalization.xml");
+
+ STSConfiguration stsConfiguration = sts.getConfiguration();
+ assertNotNull( "STS Configuration is not null", stsConfiguration );
+ assertEquals( CanonicalizationMethod.EXCLUSIVE, stsConfiguration.getXMLDSigCanonicalizationMethod() );
+ }
}
\ No newline at end of file
Modified: federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/constants/GeneralConstants.java
===================================================================
--- federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/constants/GeneralConstants.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/constants/GeneralConstants.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -34,6 +34,7 @@
String ATTRIBUTE_KEYS = "ATTRIBUTE_KEYS";
String ATTIBUTE_MANAGER = "ATTRIBUTE_MANAGER";
+ String CANONICALIZATION_METHOD = "CANONICALIZATION_METHOD";
String CONFIGURATION = "CONFIGURATION";
String CONFIG_FILE_LOCATION = "/WEB-INF/picketlink-idfed.xml";
Modified: federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/filters/SPFilter.java
===================================================================
--- federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/filters/SPFilter.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/filters/SPFilter.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -53,6 +53,7 @@
import javax.xml.bind.JAXBElement;
import javax.xml.bind.JAXBException;
import javax.xml.crypto.MarshalException;
+import javax.xml.crypto.dsig.CanonicalizationMethod;
import javax.xml.crypto.dsig.XMLSignatureException;
import org.apache.log4j.Logger;
@@ -141,6 +142,8 @@
private IRoleValidator roleValidator = new DefaultRoleValidator();
private String logOutPage = GeneralConstants.LOGOUT_PAGE_NAME;
+
+ protected String canonicalizationMethod = CanonicalizationMethod.EXCLUSIVE_WITH_COMMENTS;
public void destroy()
{
@@ -451,6 +454,8 @@
spConfiguration = ConfigurationUtil.getSPConfiguration(is);
this.identityURL = spConfiguration.getIdentityURL();
this.serviceURL = spConfiguration.getServiceURL();
+ this.canonicalizationMethod = spConfiguration.getCanonicalizationMethod();
+
log.trace("Identity Provider URL=" + this.identityURL);
}
catch (Exception e)
@@ -507,6 +512,7 @@
Map<String, Object> chainConfigOptions = new HashMap<String, Object>();
chainConfigOptions.put(GeneralConstants.CONFIGURATION, spConfiguration);
chainConfigOptions.put(GeneralConstants.ROLE_VALIDATOR, roleValidator);
+ chainConfigOptions.put( GeneralConstants.CANONICALIZATION_METHOD, canonicalizationMethod );
SAML2HandlerChainConfig handlerChainConfig = new DefaultSAML2HandlerChainConfig(chainConfigOptions);
Set<SAML2Handler> samlHandlers = chain.handlers();
@@ -603,6 +609,8 @@
if(!ignoreSignatures)
{
SAML2Signature samlSignature = new SAML2Signature();
+ samlSignature.setCanonicalizationMethod( canonicalizationMethod );
+
KeyPair keypair = keyManager.getSigningKeyPair();
samlSignature.signSAMLDocument(samlDocument, keypair);
}
Modified: federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/handlers/saml2/SAML2SignatureGenerationHandler.java
===================================================================
--- federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/handlers/saml2/SAML2SignatureGenerationHandler.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/handlers/saml2/SAML2SignatureGenerationHandler.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -56,6 +56,7 @@
//Get the Key Pair
KeyPair keypair = (KeyPair) this.handlerChainConfig.getParameter(GeneralConstants.KEYPAIR);
+ String canonicalizationMethod = (String) this.handlerChainConfig.getParameter( GeneralConstants.CANONICALIZATION_METHOD );
if(keypair == null)
{
@@ -63,7 +64,7 @@
throw new ProcessingException("KeyPair not found");
}
- sign(samlDocument, keypair);
+ sign(samlDocument, keypair, canonicalizationMethod );
}
public void handleRequestType(SAML2HandlerRequest request, SAML2HandlerResponse response) throws ProcessingException
@@ -80,8 +81,9 @@
//Get the Key Pair
KeyPair keypair = (KeyPair) this.handlerChainConfig.getParameter(GeneralConstants.KEYPAIR);
+ String canonicalizationMethod = (String) this.handlerChainConfig.getParameter( GeneralConstants.CANONICALIZATION_METHOD );
- this.sign(responseDocument, keypair);
+ this.sign(responseDocument, keypair, canonicalizationMethod );
}
@Override
@@ -100,14 +102,16 @@
//Get the Key Pair
KeyPair keypair = (KeyPair) this.handlerChainConfig.getParameter(GeneralConstants.KEYPAIR);
+ String canonicalizationMethod = (String) this.handlerChainConfig.getParameter( GeneralConstants.CANONICALIZATION_METHOD );
- this.sign(responseDocument, keypair);
+ this.sign(responseDocument, keypair, canonicalizationMethod );
}
- private void sign(Document samlDocument, KeyPair keypair) throws ProcessingException
+ private void sign(Document samlDocument, KeyPair keypair, String canonicalizationMethod ) throws ProcessingException
{
SAML2Signature samlSignature = new SAML2Signature();
+ samlSignature.setCanonicalizationMethod(canonicalizationMethod);
samlSignature.signSAMLDocument(samlDocument, keypair);
}
}
\ No newline at end of file
Modified: federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/servlets/IDPServlet.java
===================================================================
--- federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/servlets/IDPServlet.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/servlets/IDPServlet.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -40,6 +40,7 @@
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
+import javax.xml.crypto.dsig.CanonicalizationMethod;
import org.apache.log4j.Logger;
import org.picketlink.identity.federation.core.config.AuthPropertyType;
@@ -117,6 +118,8 @@
private Boolean signOutgoingMessages = true;
+ protected String canonicalizationMethod = CanonicalizationMethod.EXCLUSIVE_WITH_COMMENTS;
+
private transient ServletContext context = null;
private transient SAML2HandlerChain chain = null;
@@ -149,6 +152,8 @@
log.trace("Identity Provider URL=" + this.identityURL);
this.assertionValidity = idpConfiguration.getAssertionValidity();
+ this.canonicalizationMethod = idpConfiguration.getCanonicalizationMethod();
+
//Get the attribute manager
String attributeManager = idpConfiguration.getAttributeManager();
if(attributeManager != null && !"".equals(attributeManager))
@@ -166,6 +171,7 @@
Map<String, Object> chainConfigOptions = new HashMap<String, Object>();
chainConfigOptions.put(GeneralConstants.ROLE_GENERATOR, roleGenerator);
chainConfigOptions.put(GeneralConstants.CONFIGURATION, idpConfiguration);
+ chainConfigOptions.put( GeneralConstants.CANONICALIZATION_METHOD, canonicalizationMethod );
SAML2HandlerChainConfig handlerChainConfig = new DefaultSAML2HandlerChainConfig(chainConfigOptions);
Set<SAML2Handler> samlHandlers = chain.handlers();
@@ -272,6 +278,7 @@
idpConfiguration, keyManager);
webRequestUtil.setAttributeManager(this.attribManager);
webRequestUtil.setAttributeKeys(attributeKeys);
+ webRequestUtil.setCanonicalizationMethod(canonicalizationMethod);
boolean willSendRequest = true;
Modified: federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/util/IDPWebRequestUtil.java
===================================================================
--- federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/util/IDPWebRequestUtil.java 2010-07-13 21:49:34 UTC (rev 334)
+++ federation/trunk/picketlink-web/src/main/java/org/picketlink/identity/federation/web/util/IDPWebRequestUtil.java 2010-07-29 18:18:00 UTC (rev 335)
@@ -39,6 +39,7 @@
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.xml.bind.JAXBException;
+import javax.xml.crypto.dsig.CanonicalizationMethod;
import org.apache.log4j.Logger;
import org.picketlink.identity.federation.api.saml.v2.request.SAML2Request;
@@ -87,6 +88,8 @@
private TrustKeyManager keyManager;
private AttributeManager attributeManager;
private List<String> attribKeys;
+
+ protected String canonicalizationMethod = CanonicalizationMethod.EXCLUSIVE_WITH_COMMENTS;
public IDPWebRequestUtil(HttpServletRequest request, IDPType idp, TrustKeyManager keym)
{
@@ -94,8 +97,22 @@
this.keyManager = keym;
this.redirectProfile = "GET".equals(request.getMethod());
this.postProfile = "POST".equals(request.getMethod());
+ }
+
+ public String getCanonicalizationMethod()
+ {
+ return canonicalizationMethod;
}
-
+
+
+
+ public void setCanonicalizationMethod(String canonicalizationMethod)
+ {
+ this.canonicalizationMethod = canonicalizationMethod;
+ }
+
+
+
public void setAttributeKeys(List<String> attribKeys)
{
this.attribKeys = attribKeys;
@@ -253,6 +270,7 @@
try
{
SAML2Signature saml2Signature = new SAML2Signature();
+ saml2Signature.setCanonicalizationMethod(canonicalizationMethod);
samlResponseDocument = saml2Signature.sign(responseType, keyManager.getSigningKeyPair());
}
catch (Exception e)
@@ -422,6 +440,7 @@
{
//Sign the document
SAML2Signature samlSignature = new SAML2Signature();
+ samlSignature.setCanonicalizationMethod(canonicalizationMethod);
KeyPair keypair = keyManager.getSigningKeyPair();
samlSignature.signSAMLDocument(responseDoc, keypair);
@@ -545,6 +564,7 @@
try
{
SAML2Signature ss = new SAML2Signature();
+ ss.setCanonicalizationMethod(canonicalizationMethod);
samlResponse = ss.sign(responseType, keyManager.getSigningKeyPair());
}
catch (Exception e)
14 years, 4 months
- 1
- 0
Picketlink SVN: r334 - federation/trunk/picketlink-bindings-jboss/src/main/java/org/picketlink/identity/federation/bindings/jboss/auth/mapping.
by picketlink-commits@lists.jboss.org
Author: bmozaffa(a)redhat.com
Date: 2010-07-13 17:49:34 -0400 (Tue, 13 Jul 2010)
New Revision: 334
Modified:
federation/trunk/picketlink-bindings-jboss/src/main/java/org/picketlink/identity/federation/bindings/jboss/auth/mapping/STSGroupMappingProvider.java
federation/trunk/picketlink-bindings-jboss/src/main/java/org/picketlink/identity/federation/bindings/jboss/auth/mapping/STSPrincipalMappingProvider.java
Log:
PLFED-99: Instead of throwing an exception, simply return no mapping and log the error if a security token is not found in the context
Modified: federation/trunk/picketlink-bindings-jboss/src/main/java/org/picketlink/identity/federation/bindings/jboss/auth/mapping/STSGroupMappingProvider.java
===================================================================
--- federation/trunk/picketlink-bindings-jboss/src/main/java/org/picketlink/identity/federation/bindings/jboss/auth/mapping/STSGroupMappingProvider.java 2010-07-07 13:29:07 UTC (rev 333)
+++ federation/trunk/picketlink-bindings-jboss/src/main/java/org/picketlink/identity/federation/bindings/jboss/auth/mapping/STSGroupMappingProvider.java 2010-07-13 21:49:34 UTC (rev 334)
@@ -91,15 +91,15 @@
}
if (contextMap == null)
{
- throw new IllegalArgumentException(
- "Empty context map. SAML Token must be provided in the context map to extract a Principal");
+ log.warn("Empty context map. SAML Token must be provided in the context map to extract a Principal");
}
Object tokenObject = contextMap.get(AbstractSTSLoginModule.SHARED_TOKEN);
if (!(tokenObject instanceof Element))
{
- throw new IllegalArgumentException("Did not find a token " + Element.class.getClass().getName() + " under "
- + AbstractSTSLoginModule.SHARED_TOKEN + " in the map");
+ //With Tomcat SSO Valves, mapping providers DO get called automatically, so there may be no tokens and errors should be expected and handled
+ log.warn("Did not find a token " + Element.class.getName() + " under " + AbstractSTSLoginModule.SHARED_TOKEN
+ + " in the map");
}
try
@@ -137,7 +137,7 @@
}
catch (JAXBException e)
{
- throw new IllegalArgumentException(e);
+ log.error("Failed to parse token", e);
}
}
Modified: federation/trunk/picketlink-bindings-jboss/src/main/java/org/picketlink/identity/federation/bindings/jboss/auth/mapping/STSPrincipalMappingProvider.java
===================================================================
--- federation/trunk/picketlink-bindings-jboss/src/main/java/org/picketlink/identity/federation/bindings/jboss/auth/mapping/STSPrincipalMappingProvider.java 2010-07-07 13:29:07 UTC (rev 333)
+++ federation/trunk/picketlink-bindings-jboss/src/main/java/org/picketlink/identity/federation/bindings/jboss/auth/mapping/STSPrincipalMappingProvider.java 2010-07-13 21:49:34 UTC (rev 334)
@@ -57,15 +57,15 @@
{
if (contextMap == null)
{
- throw new IllegalArgumentException(
- "Empty context map. SAML Token must be provided in the context map to extract a Principal");
+ log.warn("Empty context map. SAML Token must be provided in the context map to extract a Principal");
}
Object tokenObject = contextMap.get(AbstractSTSLoginModule.SHARED_TOKEN);
if (!(tokenObject instanceof Element))
{
- throw new IllegalArgumentException("Did not find a token " + Element.class.getClass().getName() + " under "
- + AbstractSTSLoginModule.SHARED_TOKEN + " in the map");
+ //With Tomcat SSO Valves, mapping providers DO get called automatically, so there may be no tokens and errors should be expected and handled
+ log.warn("Did not find a token " + Element.class.getName() + " under " + AbstractSTSLoginModule.SHARED_TOKEN
+ + " in the map");
}
try
@@ -93,7 +93,7 @@
}
catch (JAXBException e)
{
- throw new IllegalArgumentException(e);
+ log.error("Failed to parse token", e);
}
}
14 years, 5 months
- 1
- 0
Picketlink SVN: r333 - in idm/branches/1.1.0: assembly and 20 other directories.
by picketlink-commits@lists.jboss.org
Author: bdaw
Date: 2010-07-07 09:29:07 -0400 (Wed, 07 Jul 2010)
New Revision: 333
Modified:
idm/branches/1.1.0/assembly/pom.xml
idm/branches/1.1.0/example/auth-simple/pom.xml
idm/branches/1.1.0/example/auth/pom.xml
idm/branches/1.1.0/example/simple/pom.xml
idm/branches/1.1.0/integration/deployer/pom.xml
idm/branches/1.1.0/integration/jboss5/pom.xml
idm/branches/1.1.0/integration/pom.xml
idm/branches/1.1.0/parent/pom.xml
idm/branches/1.1.0/picketlink-idm-api/pom.xml
idm/branches/1.1.0/picketlink-idm-auth/pom.xml
idm/branches/1.1.0/picketlink-idm-cache/pom.xml
idm/branches/1.1.0/picketlink-idm-common/pom.xml
idm/branches/1.1.0/picketlink-idm-core/pom.xml
idm/branches/1.1.0/picketlink-idm-docs/ReferenceGuide/pom.xml
idm/branches/1.1.0/picketlink-idm-docs/pom.xml
idm/branches/1.1.0/picketlink-idm-hibernate/pom.xml
idm/branches/1.1.0/picketlink-idm-hibernate/src/main/java/org/picketlink/idm/impl/store/hibernate/HibernateIdentityStoreImpl.java
idm/branches/1.1.0/picketlink-idm-ldap/pom.xml
idm/branches/1.1.0/picketlink-idm-spi/pom.xml
idm/branches/1.1.0/picketlink-idm-testsuite/pom.xml
idm/branches/1.1.0/picketlink-idm-testsuite/src/test/java/org/picketlink/idm/impl/api/OrganizationTest.java
idm/branches/1.1.0/pom.xml
Log:
- switch version to 1.1.5.CR02-SNAPSHOT
- PLIDM-19 - Cannot update binary attributes for an IdentityObject
Modified: idm/branches/1.1.0/assembly/pom.xml
===================================================================
--- idm/branches/1.1.0/assembly/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/assembly/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -4,14 +4,14 @@
<modelVersion>4.0.0</modelVersion>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<packaging>pom</packaging>
<name>PicketLink IDM Assembly </name>
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent</relativePath>
</parent>
Modified: idm/branches/1.1.0/example/auth/pom.xml
===================================================================
--- idm/branches/1.1.0/example/auth/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/example/auth/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -1,7 +1,7 @@
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>org.picketlink.idm.example</groupId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<artifactId>example-auth</artifactId>
<packaging>jar</packaging>
<name>Example - JEE authentication</name>
Modified: idm/branches/1.1.0/example/auth-simple/pom.xml
===================================================================
--- idm/branches/1.1.0/example/auth-simple/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/example/auth-simple/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -1,7 +1,7 @@
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>org.picketlink.idm.example</groupId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<artifactId>example-auth-simple</artifactId>
<packaging>jar</packaging>
<name>Example - JEE authentication (using deployer)</name>
Modified: idm/branches/1.1.0/example/simple/pom.xml
===================================================================
--- idm/branches/1.1.0/example/simple/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/example/simple/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -1,7 +1,7 @@
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>org.picketlink.idm.example</groupId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<artifactId>example-simple</artifactId>
<packaging>jar</packaging>
<name>Example - Simple PicketLink IDM Maven2 project</name>
Modified: idm/branches/1.1.0/integration/deployer/pom.xml
===================================================================
--- idm/branches/1.1.0/integration/deployer/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/integration/deployer/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -8,12 +8,12 @@
<groupId>org.picketlink.idm.integration</groupId>
<artifactId>picketlink-idm-jboss5-deployer</artifactId>
<packaging>jar</packaging>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-integration</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
</parent>
<properties>
Modified: idm/branches/1.1.0/integration/jboss5/pom.xml
===================================================================
--- idm/branches/1.1.0/integration/jboss5/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/integration/jboss5/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -8,12 +8,12 @@
<groupId>org.picketlink.idm.integration</groupId>
<artifactId>picketlink-idm-jboss5</artifactId>
<packaging>jar</packaging>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-integration</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
</parent>
<dependencies>
Modified: idm/branches/1.1.0/integration/pom.xml
===================================================================
--- idm/branches/1.1.0/integration/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/integration/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -13,7 +13,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent/pom.xml</relativePath>
</parent>
Modified: idm/branches/1.1.0/parent/pom.xml
===================================================================
--- idm/branches/1.1.0/parent/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/parent/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -8,7 +8,7 @@
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
<packaging>pom</packaging>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<name>PicketLink IDM- Parent</name>
<url>http://labs.jboss.org/portal/jbosssecurity/</url>
<description>PicketLink is a cross-cutting project that handles identity needs for the JEMS projects</description>
Modified: idm/branches/1.1.0/picketlink-idm-api/pom.xml
===================================================================
--- idm/branches/1.1.0/picketlink-idm-api/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-api/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/branches/1.1.0/picketlink-idm-auth/pom.xml
===================================================================
--- idm/branches/1.1.0/picketlink-idm-auth/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-auth/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/branches/1.1.0/picketlink-idm-cache/pom.xml
===================================================================
--- idm/branches/1.1.0/picketlink-idm-cache/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-cache/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/branches/1.1.0/picketlink-idm-common/pom.xml
===================================================================
--- idm/branches/1.1.0/picketlink-idm-common/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-common/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/branches/1.1.0/picketlink-idm-core/pom.xml
===================================================================
--- idm/branches/1.1.0/picketlink-idm-core/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-core/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/branches/1.1.0/picketlink-idm-docs/ReferenceGuide/pom.xml
===================================================================
--- idm/branches/1.1.0/picketlink-idm-docs/ReferenceGuide/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-docs/ReferenceGuide/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../../parent</relativePath>
</parent>
Modified: idm/branches/1.1.0/picketlink-idm-docs/pom.xml
===================================================================
--- idm/branches/1.1.0/picketlink-idm-docs/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-docs/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/branches/1.1.0/picketlink-idm-hibernate/pom.xml
===================================================================
--- idm/branches/1.1.0/picketlink-idm-hibernate/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-hibernate/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/branches/1.1.0/picketlink-idm-hibernate/src/main/java/org/picketlink/idm/impl/store/hibernate/HibernateIdentityStoreImpl.java
===================================================================
--- idm/branches/1.1.0/picketlink-idm-hibernate/src/main/java/org/picketlink/idm/impl/store/hibernate/HibernateIdentityStoreImpl.java 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-hibernate/src/main/java/org/picketlink/idm/impl/store/hibernate/HibernateIdentityStoreImpl.java 2010-07-07 13:29:07 UTC (rev 333)
@@ -1945,7 +1945,7 @@
storeAttribute.setTextValues(v);
}
- else if (storeAttribute.equals(HibernateIdentityObjectAttribute.TYPE_BINARY))
+ else if (storeAttribute.getType().equals(HibernateIdentityObjectAttribute.TYPE_BINARY))
{
if (!type.equals(IdentityObjectAttributeMetaData.BINARY_TYPE))
Modified: idm/branches/1.1.0/picketlink-idm-ldap/pom.xml
===================================================================
--- idm/branches/1.1.0/picketlink-idm-ldap/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-ldap/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/branches/1.1.0/picketlink-idm-spi/pom.xml
===================================================================
--- idm/branches/1.1.0/picketlink-idm-spi/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-spi/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/branches/1.1.0/picketlink-idm-testsuite/pom.xml
===================================================================
--- idm/branches/1.1.0/picketlink-idm-testsuite/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-testsuite/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/branches/1.1.0/picketlink-idm-testsuite/src/test/java/org/picketlink/idm/impl/api/OrganizationTest.java
===================================================================
--- idm/branches/1.1.0/picketlink-idm-testsuite/src/test/java/org/picketlink/idm/impl/api/OrganizationTest.java 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/picketlink-idm-testsuite/src/test/java/org/picketlink/idm/impl/api/OrganizationTest.java 2010-07-07 13:29:07 UTC (rev 333)
@@ -315,6 +315,24 @@
assertEquals(4, attributes.keySet().size());
assertEquals("Dawidowicz", (attributes.get(P3PConstants.INFO_USER_NAME_FAMILY)).getValue());
assertTrue(Arrays.equals((byte[])attributes.get("picture").getValue(), picture));
+
+ // Update
+
+ // 500 kilobytes
+ picture = new byte[50600];
+ random.nextBytes(picture);
+
+ userInfo = new Attribute[]
+ {
+ new SimpleAttribute("picture", new byte[][]{picture}),
+ };
+
+
+ session.getAttributesManager().updateAttributes(bdawidowUser, userInfo);
+
+ attributes = session.getAttributesManager().getAttributes(bdawidowUser);
+ assertEquals(4, attributes.keySet().size());
+ assertTrue(Arrays.equals((byte[])attributes.get("picture").getValue(), picture));
}
Modified: idm/branches/1.1.0/pom.xml
===================================================================
--- idm/branches/1.1.0/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
+++ idm/branches/1.1.0/pom.xml 2010-07-07 13:29:07 UTC (rev 333)
@@ -3,7 +3,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.1.5.CR02-SNAPSHOT</version>
<relativePath>parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
14 years, 5 months
- 1
- 0
Picketlink SVN: r332 - in idm/trunk: assembly and 20 other directories.
by picketlink-commits@lists.jboss.org
Author: bdaw
Date: 2010-07-07 09:10:15 -0400 (Wed, 07 Jul 2010)
New Revision: 332
Modified:
idm/trunk/assembly/pom.xml
idm/trunk/example/auth-simple/pom.xml
idm/trunk/example/auth/pom.xml
idm/trunk/example/simple/pom.xml
idm/trunk/integration/deployer/pom.xml
idm/trunk/integration/jboss5/pom.xml
idm/trunk/integration/pom.xml
idm/trunk/parent/pom.xml
idm/trunk/picketlink-idm-api/pom.xml
idm/trunk/picketlink-idm-auth/pom.xml
idm/trunk/picketlink-idm-cache/pom.xml
idm/trunk/picketlink-idm-common/pom.xml
idm/trunk/picketlink-idm-core/pom.xml
idm/trunk/picketlink-idm-docs/ReferenceGuide/pom.xml
idm/trunk/picketlink-idm-docs/pom.xml
idm/trunk/picketlink-idm-hibernate/pom.xml
idm/trunk/picketlink-idm-hibernate/src/main/java/org/picketlink/idm/impl/store/hibernate/HibernateIdentityStoreImpl.java
idm/trunk/picketlink-idm-ldap/pom.xml
idm/trunk/picketlink-idm-spi/pom.xml
idm/trunk/picketlink-idm-testsuite/pom.xml
idm/trunk/picketlink-idm-testsuite/src/test/java/org/picketlink/idm/impl/api/OrganizationTest.java
idm/trunk/pom.xml
Log:
- switch version to 1.5.0.Alpha01
- PLIDM-19 - Cannot update binary attributes for an IdentityObject
Modified: idm/trunk/assembly/pom.xml
===================================================================
--- idm/trunk/assembly/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/assembly/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -4,14 +4,14 @@
<modelVersion>4.0.0</modelVersion>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<packaging>pom</packaging>
<name>PicketLink IDM Assembly </name>
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent</relativePath>
</parent>
Modified: idm/trunk/example/auth/pom.xml
===================================================================
--- idm/trunk/example/auth/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/example/auth/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -1,7 +1,7 @@
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>org.picketlink.idm.example</groupId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<artifactId>example-auth</artifactId>
<packaging>jar</packaging>
<name>Example - JEE authentication</name>
Modified: idm/trunk/example/auth-simple/pom.xml
===================================================================
--- idm/trunk/example/auth-simple/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/example/auth-simple/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -1,7 +1,7 @@
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>org.picketlink.idm.example</groupId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<artifactId>example-auth-simple</artifactId>
<packaging>jar</packaging>
<name>Example - JEE authentication (using deployer)</name>
Modified: idm/trunk/example/simple/pom.xml
===================================================================
--- idm/trunk/example/simple/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/example/simple/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -1,7 +1,7 @@
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>org.picketlink.idm.example</groupId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<artifactId>example-simple</artifactId>
<packaging>jar</packaging>
<name>Example - Simple PicketLink IDM Maven2 project</name>
Modified: idm/trunk/integration/deployer/pom.xml
===================================================================
--- idm/trunk/integration/deployer/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/integration/deployer/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -8,12 +8,12 @@
<groupId>org.picketlink.idm.integration</groupId>
<artifactId>picketlink-idm-jboss5-deployer</artifactId>
<packaging>jar</packaging>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-integration</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
</parent>
<properties>
Modified: idm/trunk/integration/jboss5/pom.xml
===================================================================
--- idm/trunk/integration/jboss5/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/integration/jboss5/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -8,12 +8,12 @@
<groupId>org.picketlink.idm.integration</groupId>
<artifactId>picketlink-idm-jboss5</artifactId>
<packaging>jar</packaging>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-integration</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
</parent>
<dependencies>
Modified: idm/trunk/integration/pom.xml
===================================================================
--- idm/trunk/integration/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/integration/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -13,7 +13,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent/pom.xml</relativePath>
</parent>
Modified: idm/trunk/parent/pom.xml
===================================================================
--- idm/trunk/parent/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/parent/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,13 +2,13 @@
<parent>
<groupId>org.jboss</groupId>
<artifactId>jboss-parent</artifactId>
- <version>5</version>
+ <version>3</version>
</parent>
<modelVersion>4.0.0</modelVersion>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
<packaging>pom</packaging>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<name>PicketLink IDM- Parent</name>
<url>http://labs.jboss.org/portal/jbosssecurity/</url>
<description>PicketLink is a cross-cutting project that handles identity needs for the JEMS projects</description>
Modified: idm/trunk/picketlink-idm-api/pom.xml
===================================================================
--- idm/trunk/picketlink-idm-api/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-api/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/trunk/picketlink-idm-auth/pom.xml
===================================================================
--- idm/trunk/picketlink-idm-auth/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-auth/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/trunk/picketlink-idm-cache/pom.xml
===================================================================
--- idm/trunk/picketlink-idm-cache/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-cache/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/trunk/picketlink-idm-common/pom.xml
===================================================================
--- idm/trunk/picketlink-idm-common/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-common/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/trunk/picketlink-idm-core/pom.xml
===================================================================
--- idm/trunk/picketlink-idm-core/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-core/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/trunk/picketlink-idm-docs/ReferenceGuide/pom.xml
===================================================================
--- idm/trunk/picketlink-idm-docs/ReferenceGuide/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-docs/ReferenceGuide/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../../parent</relativePath>
</parent>
Modified: idm/trunk/picketlink-idm-docs/pom.xml
===================================================================
--- idm/trunk/picketlink-idm-docs/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-docs/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/trunk/picketlink-idm-hibernate/pom.xml
===================================================================
--- idm/trunk/picketlink-idm-hibernate/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-hibernate/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/trunk/picketlink-idm-hibernate/src/main/java/org/picketlink/idm/impl/store/hibernate/HibernateIdentityStoreImpl.java
===================================================================
--- idm/trunk/picketlink-idm-hibernate/src/main/java/org/picketlink/idm/impl/store/hibernate/HibernateIdentityStoreImpl.java 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-hibernate/src/main/java/org/picketlink/idm/impl/store/hibernate/HibernateIdentityStoreImpl.java 2010-07-07 13:10:15 UTC (rev 332)
@@ -1951,7 +1951,7 @@
storeAttribute.setTextValues(v);
}
- else if (storeAttribute.equals(HibernateIdentityObjectAttribute.TYPE_BINARY))
+ else if (storeAttribute.getType().equals(HibernateIdentityObjectAttribute.TYPE_BINARY))
{
if (!type.equals(IdentityObjectAttributeMetaData.BINARY_TYPE))
Modified: idm/trunk/picketlink-idm-ldap/pom.xml
===================================================================
--- idm/trunk/picketlink-idm-ldap/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-ldap/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/trunk/picketlink-idm-spi/pom.xml
===================================================================
--- idm/trunk/picketlink-idm-spi/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-spi/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/trunk/picketlink-idm-testsuite/pom.xml
===================================================================
--- idm/trunk/picketlink-idm-testsuite/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-testsuite/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -2,7 +2,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>../parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
Modified: idm/trunk/picketlink-idm-testsuite/src/test/java/org/picketlink/idm/impl/api/OrganizationTest.java
===================================================================
--- idm/trunk/picketlink-idm-testsuite/src/test/java/org/picketlink/idm/impl/api/OrganizationTest.java 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/picketlink-idm-testsuite/src/test/java/org/picketlink/idm/impl/api/OrganizationTest.java 2010-07-07 13:10:15 UTC (rev 332)
@@ -315,6 +315,24 @@
assertEquals(4, attributes.keySet().size());
assertEquals("Dawidowicz", (attributes.get(P3PConstants.INFO_USER_NAME_FAMILY)).getValue());
assertTrue(Arrays.equals((byte[])attributes.get("picture").getValue(), picture));
+
+ // Update
+
+ // 500 kilobytes
+ picture = new byte[50600];
+ random.nextBytes(picture);
+
+ userInfo = new Attribute[]
+ {
+ new SimpleAttribute("picture", new byte[][]{picture}),
+ };
+
+
+ session.getAttributesManager().updateAttributes(bdawidowUser, userInfo);
+
+ attributes = session.getAttributesManager().getAttributes(bdawidowUser);
+ assertEquals(4, attributes.keySet().size());
+ assertTrue(Arrays.equals((byte[])attributes.get("picture").getValue(), picture));
}
Modified: idm/trunk/pom.xml
===================================================================
--- idm/trunk/pom.xml 2010-07-07 12:46:25 UTC (rev 331)
+++ idm/trunk/pom.xml 2010-07-07 13:10:15 UTC (rev 332)
@@ -3,7 +3,7 @@
<parent>
<groupId>org.picketlink.idm</groupId>
<artifactId>picketlink-idm-parent</artifactId>
- <version>1.1.5.CR01</version>
+ <version>1.5.0.Alpha01</version>
<relativePath>parent</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
14 years, 5 months
- 1
- 0
Picketlink SVN: r331 - idm/branches.
by picketlink-commits@lists.jboss.org
Author: bdaw
Date: 2010-07-07 08:46:25 -0400 (Wed, 07 Jul 2010)
New Revision: 331
Added:
idm/branches/1.1.0/
Log:
Create branch for 1.1.0 development
Copied: idm/branches/1.1.0 (from rev 330, idm/tags/1.1.5.CR01)
14 years, 5 months
- 1
- 0
Picketlink SVN: r330 - idm.
by picketlink-commits@lists.jboss.org
Author: bdaw
Date: 2010-07-07 08:45:29 -0400 (Wed, 07 Jul 2010)
New Revision: 330
Added:
idm/branches/
Log:
idm branches
14 years, 5 months
- 1
- 0