Page History

Versions Compared

Key

This line was added.
This line was removed.
Formatting was changed.

...

Code Block
// Hent Identity Token fra STS svar EhdsiIdwsXuaEmployeeIdentityToken employeeIdentityToken = response.getEhdsiIdwsXuaEmployeeIdentityToken(); // Verificer at det er et eHDSI IDWS XUA Identity Token og et par øvrige attributter: Assert.assertEquals("eHDSI-IDWS-XUA-1.0", employeeIdentityToken.getSpecVersion()); Assert.assertEquals("3", employeeIdentityToken.getAssuranceLevel()); Assert.assertEquals("Alfonso Gonzalez", employeeIdentityToken.getSubject());

Code Block

// Hent Identity Token fra STS svar
EhdsiIdwsXuaEmployeeIdentityToken employeeIdentityToken = response.getEhdsiIdwsXuaEmployeeIdentityToken();

// Verificer at det er et eHDSI IDWS XUA Identity Token og et par øvrige attributter:
Assert.assertEquals("eHDSI-IDWS-XUA-1.0", employeeIdentityToken.getSpecVersion());        
Assert.assertEquals("3", employeeIdentityToken.getAssuranceLevel());
Assert.assertEquals("Alfonso Gonzalez", employeeIdentityToken.getSubject());

Service Request

Det er pt. ikke muligt at opbygge service requests vha. Seal.Java for denne omveksling.

Service Response

...

Når vi har STS svaret kan service requestet opbygges:

Code Block
// Factory OIOSAMLFactory factory = new OIOSAMLFactory(); // Identity Token findes her: IdentityToken identityTokenResponse = ...; // serviceConsumerRequestDocument er et W3C Document indeholdende body-delen og den er ikke relevant her. LibertyRequestDOMEnhancer enhancer = factory.createRequestDOMEnhancer(serviceConsumerRequestDocument); enhancer.setIdentityToken(identityTokenResponse); enhancer.setWSAddressingMessageID(messageIdSupplier.get()); enhancer.setWSAddressingAction(soapAction); enhancer.enhanceAndSign();

Code Block

// Factory
OIOSAMLFactory factory = new OIOSAMLFactory();

// Identity Token findes her:
IdentityToken identityTokenResponse = ...;

// serviceConsumerRequestDocument er et W3C Document indeholdende body-delen og den er ikke relevant her.
LibertyRequestDOMEnhancer enhancer = factory.createRequestDOMEnhancer(serviceConsumerRequestDocument);

enhancer.setIdentityToken(identityTokenResponse);
enhancer.setWSAddressingMessageID(messageIdSupplier.get());
enhancer.setWSAddressingAction(soapAction);
enhancer.enhanceAndSign();

Det samlede request kommer til at se sådan ud, hvor body delen her er tom:

Code Block

Service Response

Seal.Java kan nu benyttes til at validere det samlede response fra servicen. Ved kald til en IDWS service kan man vha. kald til Seal.Java tjekke om svaret indeholder en fejl og evt. fejlbesked og fejlkode.

Eksempel på dette hvor vi antager at vi har svaret som et Document i variablen serviceConsumerResponseDocument:

Code Block
Federation federation = new SOSITestFederation(new Properties()); OIOBootstrapToIdentityTokenResponse response = new OIOBootstrapToIdentityTokenResponseModelBuilder().build(serviceConsumerResponseDocument); // Verify IDWS service response for errors if (response.isFault()) { log.error("Response error: " + response.getFaultString() + ", error code: " + response.getFaultCode()); return false; } // Validate IDWS service response try { response.validateSignature(); response.validateSignatureAndTrust(federation); } catch (ModelBuildException e) { log.error("Validation error: " + e.getMessage()); return false; } return true;

Code Block

Federation federation = new SOSITestFederation(new Properties());

OIOBootstrapToIdentityTokenResponse response = new OIOBootstrapToIdentityTokenResponseModelBuilder().build(serviceConsumerResponseDocument);

// Verify IDWS service response for errors
if (response.isFault()) {
   log.error("Response error: " + response.getFaultString() + ", error code: " + response.getFaultCode());
   return false;
}

// Validate IDWS service response
try {
   response.validateSignature();
   response.validateSignatureAndTrust(federation);
} catch (ModelBuildException e) {
   log.error("Validation error: " + e.getMessage());
   return false;
}

return true;

Komplet eksempel (incl. STS delen)

...

Content

Space Tools

Versions Compared

Old Version 10

New Version 11

Key

Service Request

Service Response

Service Response

Komplet eksempel (incl. STS delen)