View Javadoc

1   /*
2    * Licensed to the University Corporation for Advanced Internet Development, 
3    * Inc. (UCAID) under one or more contributor license agreements.  See the 
4    * NOTICE file distributed with this work for additional information regarding
5    * copyright ownership. The UCAID licenses this file to You under the Apache 
6    * License, Version 2.0 (the "License"); you may not use this file except in 
7    * compliance with the License.  You may obtain a copy of the License at
8    *
9    *    http://www.apache.org/licenses/LICENSE-2.0
10   *
11   * Unless required by applicable law or agreed to in writing, software
12   * distributed under the License is distributed on an "AS IS" BASIS,
13   * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14   * See the License for the specific language governing permissions and
15   * limitations under the License.
16   */
17  
18  package edu.internet2.middleware.shibboleth.common.config.security;
19  
20  import javax.xml.namespace.QName;
21  
22  import org.opensaml.xml.util.XMLHelper;
23  import org.slf4j.Logger;
24  import org.slf4j.LoggerFactory;
25  import org.springframework.beans.factory.support.AbstractBeanDefinition;
26  import org.springframework.beans.factory.support.BeanDefinitionBuilder;
27  import org.springframework.beans.factory.xml.AbstractSingleBeanDefinitionParser;
28  import org.springframework.beans.factory.xml.ParserContext;
29  import org.w3c.dom.Element;
30  
31  import edu.internet2.middleware.shibboleth.common.config.SpringConfigurationUtils;
32  
33  /**
34   * Spring configuration parser for shibboleth security policies.
35   */
36  public class ShibbolethSecurityPolicyBeanDefinitionParser extends AbstractSingleBeanDefinitionParser {
37  
38      /** Default element name. */
39      public static final QName ELEMENT_NAME = new QName(SecurityNamespaceHandler.NAMESPACE, "SecurityPolicy");
40  
41      /** Schema type. */
42      public static final QName SCHEMA_TYPE = new QName(SecurityNamespaceHandler.NAMESPACE, "SecurityPolicyType");
43  
44      /** Class logger. */
45      private final Logger log = LoggerFactory.getLogger(ShibbolethSecurityPolicyBeanDefinitionParser.class);
46  
47      /** {@inheritDoc} */
48      protected Class getBeanClass(Element element) {
49          return ShibbolethSecurityPolicyFactoryBean.class;
50      }
51  
52      /** {@inheritDoc} */
53      protected String resolveId(Element element, AbstractBeanDefinition definition, ParserContext parserContext) {
54          return element.getAttributeNS(null, "id");
55      }
56  
57      /** {@inheritDoc} */
58      protected void doParse(Element element, ParserContext parserContext, BeanDefinitionBuilder builder) {
59          log.info("Parsing configuration for {} security policy with id: {}", XMLHelper.getXSIType(element)
60                  .getLocalPart(), element.getAttributeNS(null, "id"));
61  
62          String policyId = element.getAttributeNS(null, "id");
63          log.debug("Configuring security policy: {}", policyId);
64          builder.addPropertyValue("policyId", policyId);
65  
66          builder.addPropertyValue("policyRules", SpringConfigurationUtils.parseInnerCustomElements(XMLHelper
67                  .getChildElementsByTagNameNS(element, SecurityNamespaceHandler.NAMESPACE, "Rule"), parserContext));
68      }
69  }