View Javadoc

1   /*
2    * Licensed to the University Corporation for Advanced Internet Development, 
3    * Inc. (UCAID) under one or more contributor license agreements.  See the 
4    * NOTICE file distributed with this work for additional information regarding
5    * copyright ownership. The UCAID licenses this file to You under the Apache 
6    * License, Version 2.0 (the "License"); you may not use this file except in 
7    * compliance with the License.  You may obtain a copy of the License at
8    *
9    *    http://www.apache.org/licenses/LICENSE-2.0
10   *
11   * Unless required by applicable law or agreed to in writing, software
12   * distributed under the License is distributed on an "AS IS" BASIS,
13   * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14   * See the License for the specific language governing permissions and
15   * limitations under the License.
16   */
17  
18  package edu.internet2.middleware.shibboleth.common.config.security.saml;
19  
20  import javax.xml.namespace.QName;
21  
22  import org.opensaml.common.binding.security.IssueInstantRule;
23  import org.opensaml.xml.util.XMLHelper;
24  import org.springframework.beans.factory.support.BeanDefinitionBuilder;
25  import org.springframework.beans.factory.xml.AbstractSingleBeanDefinitionParser;
26  import org.w3c.dom.Element;
27  
28  import edu.internet2.middleware.shibboleth.common.config.SpringConfigurationUtils;
29  
30  /**
31   * Spring bean definition parser for issue instant rules.
32   */
33  public class IssueInstantRuleBeanDefinitionParser extends AbstractSingleBeanDefinitionParser {
34  
35      /** Schema type. */
36      public static final QName SCHEMA_TYPE = new QName(SAMLSecurityNamespaceHandler.NAMESPACE, "IssueInstant");
37  
38      /** {@inheritDoc} */
39      protected Class getBeanClass(Element element) {
40          return IssueInstantRule.class;
41      }
42  
43      /** {@inheritDoc} */
44      protected boolean shouldGenerateId() {
45          return true;
46      }
47  
48      /** {@inheritDoc} */
49      protected void doParse(Element element, BeanDefinitionBuilder builder) {
50          long skew = 300;
51          if (element.hasAttributeNS(null, "clockSkew")) {
52              skew = SpringConfigurationUtils.parseDurationToMillis("'clockSkew' on security rule of type "
53                      + XMLHelper.getXSIType(element), element.getAttributeNS(null, "clockSkew"), 1000) / 1000;
54          }
55          builder.addConstructorArgValue(skew);
56  
57          long expirationThreshold = 60;
58          if (element.hasAttributeNS(null, "expirationThreshold")) {
59              expirationThreshold = SpringConfigurationUtils.parseDurationToMillis(
60                      "'expirationThreshold' on security rule of type " + XMLHelper.getXSIType(element), element
61                              .getAttributeNS(null, "expirationThreshold"), 1000) / 1000;
62          }
63          builder.addConstructorArgValue(expirationThreshold);
64  
65          if (element.hasAttributeNS(null, "required")) {
66              builder.addPropertyValue("requiredRule", XMLHelper.getAttributeValueAsBoolean(element.getAttributeNodeNS(
67                      null, "required")));
68          } else {
69              builder.addPropertyValue("requiredRule", true);
70          }
71      }
72  }