package xuzs.servlet; import java.io.BufferedReader; import java.io.IOException; import java.io.InputStreamReader; import javax.servlet.ServletException; import javax.servlet.http.HttpServlet; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; public class ReceiveServlet extends HttpServlet { @Override protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException { doPost(req, resp); } @Override protected void doPost(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException { String s = recieveData(req); System.out.println(s); } // 接收请求发来的xml消息体 public static String recieveData(HttpServletRequest request) { String inputLine = null; // 接收到的数据 StringBuffer recieveData = new StringBuffer(); BufferedReader in = null; try { in = new BufferedReader(new InputStreamReader(request .getInputStream(), "UTF-8")); while ((inputLine = in.readLine()) != null) { recieveData.append(inputLine); } } catch (IOException e) { } finally { try { if (null != in) { in.close(); } } catch (IOException e) { } } return recieveData.toString(); } }
测试opensaml的字符拼接
package cc.saml; import org.opensaml.saml2.core.LogoutRequest; import org.opensaml.saml2.core.NameID; import org.opensaml.ws.soap.client.BasicSOAPMessageContext; import org.opensaml.ws.soap.client.http.HttpClientBuilder; import org.opensaml.ws.soap.client.http.HttpSOAPClient; import org.opensaml.ws.soap.common.SOAPException; import org.opensaml.ws.soap.soap11.Body; import org.opensaml.ws.soap.soap11.Envelope; import org.opensaml.xml.parse.BasicParserPool; import org.opensaml.xml.security.SecurityException; public class ClientTest { public static void main(String[] args) throws SOAPException, SecurityException { SAML saml = new SAML(); Envelope envelope = saml.create(Envelope.class, Envelope.DEFAULT_ELEMENT_NAME); LogoutRequest logoutRequest = saml.create(LogoutRequest.class, LogoutRequest.DEFAULT_ELEMENT_NAME); Body body = saml.create(Body.class, Body.DEFAULT_ELEMENT_NAME); NameID nameID = saml.create(NameID.class, NameID.DEFAULT_ELEMENT_NAME); nameID.setValue("aaa"); logoutRequest.setNameID(nameID); body.getUnknownXMLObjects().add(logoutRequest); nameID.detach(); envelope.setBody(body); BasicSOAPMessageContext soapContext = new BasicSOAPMessageContext(); soapContext.setOutboundMessage(envelope); HttpClientBuilder clientBuilder = new HttpClientBuilder(); HttpSOAPClient soapClient = new HttpSOAPClient(clientBuilder .buildClient(), new BasicParserPool()); String sloServiceURL = "http://localhost:8080/opensamlDemo/receiveServlet"; soapClient.send(sloServiceURL, soapContext); // Envelope soapResponse = (Envelope) soapContext.getInboundMessage(); } }
工具类
package cc.saml; import cc.xml.PrettyPrinter; import java.io.IOException; import java.io.FileWriter; import java.io.PrintWriter; import java.util.HashMap; import java.util.Map; import javax.xml.namespace.QName; import javax.xml.parsers.DocumentBuilder; import javax.xml.parsers.DocumentBuilderFactory; import javax.xml.transform.TransformerException; import org.joda.time.DateTime; import org.opensaml.DefaultBootstrap; import org.opensaml.common.impl.SecureRandomIdentifierGenerator; import org.opensaml.saml2.core.Assertion; import org.opensaml.saml2.core.Attribute; import org.opensaml.saml2.core.AttributeStatement; import org.opensaml.saml2.core.AttributeValue; import org.opensaml.saml2.core.AuthnContext; import org.opensaml.saml2.core.AuthnContextClassRef; import org.opensaml.saml2.core.AuthnStatement; import org.opensaml.saml2.core.Conditions; import org.opensaml.saml2.core.Issuer; import org.opensaml.saml2.core.NameID; import org.opensaml.saml2.core.NameIDType; import org.opensaml.saml2.core.Response; import org.opensaml.saml2.core.Statement; import org.opensaml.saml2.core.Status; import org.opensaml.saml2.core.StatusCode; import org.opensaml.saml2.core.StatusMessage; import org.opensaml.saml2.core.Subject; import org.opensaml.saml2.core.SubjectConfirmation; import org.opensaml.xml.Configuration; import org.opensaml.xml.XMLObject; import org.opensaml.xml.XMLObjectBuilder; import org.opensaml.xml.io.Marshaller; import org.opensaml.xml.io.MarshallingException; import org.opensaml.xml.io.Unmarshaller; import org.opensaml.xml.io.UnmarshallingException; import org.opensaml.xml.schema.XSAny; import org.w3c.dom.Document; import org.w3c.dom.Element; import org.xml.sax.SAXException; /** * Utility that uses OpenSAML to carry out common SAML tasks. * * @author Will Provost */ /* * Copyright 2009 by Will Provost. All rights reserved by Capstone Courseware, * LLC. */ public class SAML { private DocumentBuilder builder; private String issuerURL; private static SecureRandomIdentifierGenerator generator; private static final String CM_PREFIX = "urn:oasis:names:tc:SAML:2.0:cm:"; /** * Parse the command line for a filename to read, and optionally a filename * to write (absent which the application will write to the console). Reads * the given file as an XMLObject, and then dumps using a simple * {@link cc.xml.PrettyPrinter pretty printer}. */ public static void main(String[] args) throws Exception { if (args.length == 0) { System.out .println("Usage: java cc.saml.SAML <inputFile> [<outputFile>]"); System.exit(-1); } // Unadvertised, and not used in course exercises; // just some internal testing ... String command = args[0]; if (command.equals("generate")) { String type = args[1]; SAML handler = new SAML("http://saml.r.us/AssertingParty"); if (type.equals("authn")) handler.printToFile(handler.createAuthnAssertion(handler .createSubject("harold_dt", null, "sender-vouches"), AuthnContext.PPT_AUTHN_CTX), null); else if (type.equals("attr")) { Subject subject = handler.createSubject("louisdraper@abc.gov", NameID.EMAIL, null); Map<String, String> attributes = new HashMap<String, String>(); attributes.put("securityClearance", "C2"); attributes.put("roles", "editor,reviewer"); handler.printToFile(handler.createAttributeAssertion(subject, attributes), null); } else { System.out .println("Usage: java cc.saml.SAML <generate> authn|attr"); System.exit(-1); } } else { SAML handler = new SAML(); handler.printToFile(handler.readFromFile(args[0]), args.length > 1 ? args[1] : null); } } /** * Any use of this class assures that OpenSAML is bootstrapped. Also * initializes an ID generator. */ static { try { DefaultBootstrap.bootstrap(); generator = new SecureRandomIdentifierGenerator(); } catch (Exception ex) { ex.printStackTrace(); } } /** * Initialize JAXP DocumentBuilder instance for later use and reuse. */ public SAML() { this(null); } /** * Initialize JAXP DocumentBuilder instance for later use and reuse, and * establishes an issuer URL. * * @param issuerURL * This will be used in all generated assertions */ public SAML(String issuerURL) { try { DocumentBuilderFactory factory = DocumentBuilderFactory .newInstance(); factory.setNamespaceAware(true); builder = factory.newDocumentBuilder(); this.issuerURL = issuerURL; } catch (Exception ex) { ex.printStackTrace(); } } /** * <u>Slightly</u> easier way to create objects using OpenSAML's builder * system. */ // cast to SAMLObjectBuilder<T> is caller's choice @SuppressWarnings("unchecked") public <T> T create(Class<T> cls, QName qname) { return (T) ((XMLObjectBuilder) Configuration.getBuilderFactory() .getBuilder(qname)).buildObject(qname); } /** * Helper method to add an XMLObject as a child of a DOM Element. */ public static Element addToElement(XMLObject object, Element parent) throws IOException, MarshallingException, TransformerException { Marshaller out = Configuration.getMarshallerFactory().getMarshaller( object); return out.marshall(object, parent); } /** * Helper method to get an XMLObject as a DOM Document. */ public Document asDOMDocument(XMLObject object) throws IOException, MarshallingException, TransformerException { Document document = builder.newDocument(); Marshaller out = Configuration.getMarshallerFactory().getMarshaller( object); out.marshall(object, document); return document; } /** * Helper method to pretty-print any XML object to a file. */ public void printToFile(XMLObject object, String filename) throws IOException, MarshallingException, TransformerException { Document document = asDOMDocument(object); String result = PrettyPrinter.prettyPrint(document); if (filename != null) { PrintWriter writer = new PrintWriter(new FileWriter(filename)); writer.println(result); writer.close(); } else System.out.println(result); } /** * Helper method to read an XML object from a DOM element. */ public static XMLObject fromElement(Element element) throws IOException, UnmarshallingException, SAXException { return Configuration.getUnmarshallerFactory().getUnmarshaller(element) .unmarshall(element); } /** * Helper method to read an XML object from a file. */ public XMLObject readFromFile(String filename) throws IOException, UnmarshallingException, SAXException { return fromElement(builder.parse(filename).getDocumentElement()); } /** * Helper method to spawn a new Issuer element based on our issuer URL. */ public Issuer spawnIssuer() { Issuer result = null; if (issuerURL != null) { result = create(Issuer.class, Issuer.DEFAULT_ELEMENT_NAME); result.setValue(issuerURL); } return result; } /** * Returns a SAML subject. * * @param username * The subject name * @param format * If non-null, we'll set as the subject name format * @param confirmationMethod * If non-null, we'll create a SubjectConfirmation element and * use this as the Method attribute; must be "sender-vouches" or * "bearer", as HOK would require additional parameters and so is * NYI */ public Subject createSubject(String username, String format, String confirmationMethod) { NameID nameID = create(NameID.class, NameID.DEFAULT_ELEMENT_NAME); nameID.setValue(username); if (format != null) nameID.setFormat(format); Subject subject = create(Subject.class, Subject.DEFAULT_ELEMENT_NAME); subject.setNameID(nameID); if (confirmationMethod != null) { SubjectConfirmation confirmation = create( SubjectConfirmation.class, SubjectConfirmation.DEFAULT_ELEMENT_NAME); confirmation.setMethod(CM_PREFIX + confirmationMethod); subject.getSubjectConfirmations().add(confirmation); } return subject; } /** * Returns a SAML assertion with generated ID, current timestamp, given * subject, and simple time-based conditions. * * @param subject * Subject of the assertion */ public Assertion createAssertion(Subject subject) { Assertion assertion = create(Assertion.class, Assertion.DEFAULT_ELEMENT_NAME); assertion.setID(generator.generateIdentifier()); DateTime now = new DateTime(); assertion.setIssueInstant(now); if (issuerURL != null) assertion.setIssuer(spawnIssuer()); assertion.setSubject(subject); Conditions conditions = create(Conditions.class, Conditions.DEFAULT_ELEMENT_NAME); conditions.setNotBefore(now.minusSeconds(10)); conditions.setNotOnOrAfter(now.plusMinutes(30)); assertion.setConditions(conditions); return assertion; } /** * Helper method to generate a response, based on a pre-built assertion. */ public Response createResponse(Assertion assertion) throws IOException, MarshallingException, TransformerException { return createResponse(assertion, null); } /** * Helper method to generate a shell response with a given status code and * query ID. */ public Response createResponse(String statusCode, String inResponseTo) throws IOException, MarshallingException, TransformerException { return createResponse(statusCode, null, inResponseTo); } /** * Helper method to generate a shell response with a given status code, * status message, and query ID. */ public Response createResponse(String statusCode, String message, String inResponseTo) throws IOException, MarshallingException, TransformerException { Response response = create(Response.class, Response.DEFAULT_ELEMENT_NAME); response.setID(generator.generateIdentifier()); if (inResponseTo != null) response.setInResponseTo(inResponseTo); DateTime now = new DateTime(); response.setIssueInstant(now); if (issuerURL != null) response.setIssuer(spawnIssuer()); StatusCode statusCodeElement = create(StatusCode.class, StatusCode.DEFAULT_ELEMENT_NAME); statusCodeElement.setValue(statusCode); Status status = create(Status.class, Status.DEFAULT_ELEMENT_NAME); status.setStatusCode(statusCodeElement); response.setStatus(status); if (message != null) { StatusMessage statusMessage = create(StatusMessage.class, StatusMessage.DEFAULT_ELEMENT_NAME); statusMessage.setMessage(message); status.setStatusMessage(statusMessage); } return response; } /** * Helper method to generate a response, based on a pre-built assertion and * query ID. */ public Response createResponse(Assertion assertion, String inResponseTo) throws IOException, MarshallingException, TransformerException { Response response = createResponse(StatusCode.SUCCESS_URI, inResponseTo); response.getAssertions().add(assertion); return response; } /** * Returns a SAML authentication assertion. * * @param subject * The subject of the assertion * @param authnCtx * The "authentication context class reference", e.g. * AuthnContext.PPT_AUTHN_CTX */ public Assertion createAuthnAssertion(Subject subject, String authnCtx) { Assertion assertion = createAssertion(subject); AuthnContextClassRef ref = create(AuthnContextClassRef.class, AuthnContextClassRef.DEFAULT_ELEMENT_NAME); ref.setAuthnContextClassRef(authnCtx); // As of this writing, OpenSAML doesn't model the wide range of // authentication context namespaces defined in SAML 2.0. // For a real project we'd probably move on to // XSAny objects, setting QNames and values each-by-each // a JAXB mapping of the required schema // DOM-building // For classroom purposes the road ends here ... AuthnContext authnContext = create(AuthnContext.class, AuthnContext.DEFAULT_ELEMENT_NAME); authnContext.setAuthnContextClassRef(ref); AuthnStatement authnStatement = create(AuthnStatement.class, AuthnStatement.DEFAULT_ELEMENT_NAME); authnStatement.setAuthnContext(authnContext); assertion.getStatements().add(authnStatement); return assertion; } /** * Adds a SAML attribute to an attribute statement. * * @param statement * Existing attribute statement * @param name * Attribute name * @param value * Attribute value */ public void addAttribute(AttributeStatement statement, String name, String value) { // Build attribute values as XMLObjects; // there is an AttributeValue interface, but it's apparently dead code final XMLObjectBuilder builder = Configuration.getBuilderFactory() .getBuilder(XSAny.TYPE_NAME); XSAny valueElement = (XSAny) builder .buildObject(AttributeValue.DEFAULT_ELEMENT_NAME); valueElement.setTextContent(value); Attribute attribute = create(Attribute.class, Attribute.DEFAULT_ELEMENT_NAME); attribute.setName(name); attribute.getAttributeValues().add(valueElement); statement.getAttributes().add(attribute); } /** * Returns a SAML attribute assertion. * * @param subject * Subject of the assertion * @param attributes * Attributes to be stated (may be null) */ public Assertion createAttributeAssertion(Subject subject, Map<String, String> attributes) { Assertion assertion = createAssertion(subject); AttributeStatement statement = create(AttributeStatement.class, AttributeStatement.DEFAULT_ELEMENT_NAME); if (attributes != null) for (Map.Entry<String, String> entry : attributes.entrySet()) addAttribute(statement, entry.getKey(), entry.getValue()); assertion.getStatements().add(statement); return assertion; } }