org.opensaml.saml.saml2.binding.security.impl

Class SAML2HTTPPostSimpleSignSecurityHandlerTest

java.lang.Object

org.opensaml.core.OpenSAMLInitBaseTestCase

org.opensaml.core.xml.XMLObjectBaseTestCase

org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandlerTest

public class SAML2HTTPPostSimpleSignSecurityHandlerTest
extends org.opensaml.core.xml.XMLObjectBaseTestCase

Test SAML simple signature via HTTP POST-SimpleSign binding

Field Summary

Fields

Modifier and Type	Field and Description
private CollectionCredentialResolver	credResolver
private String	expectedRelayValue
private org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler	handler
private String	issuer
private org.opensaml.messaging.context.MessageContext<org.opensaml.saml.common.SAMLObject>	messageContext
private X509Certificate	otherCert1
private String	otherCert1Base64
private org.opensaml.security.x509.BasicX509Credential	otherCred1
private SignatureTrustEngine	signatureTrustEngine
private X509Certificate	signingCert
private String	signingCertBase64
private PrivateKey	signingPrivateKey
private String	signingPrivateKeyBase64
private org.opensaml.security.x509.BasicX509Credential	signingX509Cred
private SignatureValidationParameters	sigValParams
private List<org.opensaml.security.credential.Credential>	trustedCredentials
private VelocityEngine	velocityEngine Velocity template engine.

Fields inherited from class org.opensaml.core.xml.XMLObjectBaseTestCase

builderFactory, marshallerFactory, parserPool, simpleXMLObjectQName, unmarshallerFactory

Constructor Summary

Constructors

Constructor and Description
SAML2HTTPPostSimpleSignSecurityHandlerTest() Constructor.

Method Summary

Methods

Modifier and Type	Method and Description
protected org.opensaml.saml.saml2.core.AuthnRequest	buildInboundSAMLMessage()
protected org.springframework.mock.web.MockHttpServletRequest	buildServletRequest()
private void	populateRequest(org.springframework.mock.web.MockHttpServletRequest request, String htmlContentString) Populate the HTTP servlet request object with the parameter info.
protected void	setUp()
void	testBlacklistedSignatureAlgorithm() Test blacklisted signature algorithm.
void	testFailureNoKeyInfo() Test context issuer set, valid signature with trusted credential.
void	testInvalidSignature() Test context issuer set, invalid signature with trusted credential.
void	testNoContextIssuer() Test context issuer set, valid signature with untrusted credential.
void	testNoTrustEngine() Test no trust engine supplied.
void	testSuccess() Test context issuer set, valid signature with trusted credential.
void	testSuccessNoKeyInfo() Test context issuer set, valid signature with trusted credential.
void	testUntrustedCredential() Test context issuer set, valid signature with untrusted credential.

Methods inherited from class org.opensaml.core.xml.XMLObjectBaseTestCase

assertXMLEquals, assertXMLEquals, buildXMLObject, fetchDuration, getBuilder, getMarshaller, getMarshaller, getUnmarshaller, getUnmarshaller, getUnmarshaller, initXMLObjectSupport, parseXMLDocument, printXML, printXML, unmarshallElement, unmarshallElement

Methods inherited from class org.opensaml.core.OpenSAMLInitBaseTestCase

initOpenSAML

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

messageContext

private org.opensaml.messaging.context.MessageContext<org.opensaml.saml.common.SAMLObject> messageContext

handler

private org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler handler

signingCert

private X509Certificate signingCert

signingCertBase64

private String signingCertBase64

signingPrivateKey

private PrivateKey signingPrivateKey

signingPrivateKeyBase64

private String signingPrivateKeyBase64

otherCert1

private X509Certificate otherCert1

otherCert1Base64

private String otherCert1Base64

credResolver

private CollectionCredentialResolver credResolver

trustedCredentials

private List<org.opensaml.security.credential.Credential> trustedCredentials

signingX509Cred

private org.opensaml.security.x509.BasicX509Credential signingX509Cred

otherCred1

private org.opensaml.security.x509.BasicX509Credential otherCred1

issuer

private String issuer

expectedRelayValue

private String expectedRelayValue

signatureTrustEngine

private SignatureTrustEngine signatureTrustEngine

sigValParams

private SignatureValidationParameters sigValParams

velocityEngine

private VelocityEngine velocityEngine

Velocity template engine.

Constructor Detail

SAML2HTTPPostSimpleSignSecurityHandlerTest

public SAML2HTTPPostSimpleSignSecurityHandlerTest()
                                           throws Exception

Constructor.

Throws:

Exception

Method Detail

setUp

protected void setUp()
              throws Exception

Throws:

Exception

testSuccess

public void testSuccess()
                 throws org.opensaml.messaging.handler.MessageHandlerException

Test context issuer set, valid signature with trusted credential.

Throws:

org.opensaml.messaging.handler.MessageHandlerException

testBlacklistedSignatureAlgorithm

public void testBlacklistedSignatureAlgorithm()
                                       throws org.opensaml.messaging.handler.MessageHandlerException

Test blacklisted signature algorithm.

Throws:

org.opensaml.messaging.handler.MessageHandlerException

testUntrustedCredential

public void testUntrustedCredential()
                             throws org.opensaml.messaging.handler.MessageHandlerException

Test context issuer set, valid signature with untrusted credential.

Throws:

org.opensaml.messaging.handler.MessageHandlerException

testInvalidSignature

public void testInvalidSignature()
                          throws org.opensaml.messaging.handler.MessageHandlerException

Test context issuer set, invalid signature with trusted credential.

Throws:

org.opensaml.messaging.handler.MessageHandlerException

testNoContextIssuer

public void testNoContextIssuer()
                         throws org.opensaml.messaging.handler.MessageHandlerException

Test context issuer set, valid signature with untrusted credential.

Throws:

org.opensaml.messaging.handler.MessageHandlerException

testSuccessNoKeyInfo

public void testSuccessNoKeyInfo()
                          throws org.opensaml.messaging.handler.MessageHandlerException

Test context issuer set, valid signature with trusted credential.

Throws:

org.opensaml.messaging.handler.MessageHandlerException

testFailureNoKeyInfo

public void testFailureNoKeyInfo()
                          throws org.opensaml.messaging.handler.MessageHandlerException

Test context issuer set, valid signature with trusted credential.

Throws:

org.opensaml.messaging.handler.MessageHandlerException

testNoTrustEngine

public void testNoTrustEngine()
                       throws org.opensaml.messaging.handler.MessageHandlerException

Test no trust engine supplied.

Throws:

org.opensaml.messaging.handler.MessageHandlerException

buildInboundSAMLMessage

protected org.opensaml.saml.saml2.core.AuthnRequest buildInboundSAMLMessage()

buildServletRequest

protected org.springframework.mock.web.MockHttpServletRequest buildServletRequest()

populateRequest

private void populateRequest(org.springframework.mock.web.MockHttpServletRequest request,
                   String htmlContentString)
                      throws XMLParserException,
                             ComponentInitializationException

Populate the HTTP servlet request object with the parameter info. Would be nice if Spring mock object actually did this for you from populating the content string.... Oh well.

Parameters:

request -

htmlContentString -

Throws:

XMLParserException

ComponentInitializationException