View Javadoc

1   /*
2    * Copyright [2005] [University Corporation for Advanced Internet Development, Inc.]
3    *
4    * Licensed under the Apache License, Version 2.0 (the "License");
5    * you may not use this file except in compliance with the License.
6    * You may obtain a copy of the License at
7    *
8    * http://www.apache.org/licenses/LICENSE-2.0
9    *
10   * Unless required by applicable law or agreed to in writing, software
11   * distributed under the License is distributed on an "AS IS" BASIS,
12   * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13   * See the License for the specific language governing permissions and
14   * limitations under the License.
15   */
16  
17  /**
18   * 
19   */
20  package org.opensaml.saml2.core.validator;
21  
22  import org.opensaml.saml2.core.RequestedAuthnContext;
23  import org.opensaml.xml.validation.ValidationException;
24  import org.opensaml.xml.validation.Validator;
25  
26  /**
27   * Checks {@link org.opensaml.saml2.core.RequestedAuthnContext} for Schema compliance.
28   */
29  public class RequestedAuthnContextSchemaValidator implements Validator<RequestedAuthnContext> {
30  
31      /**
32       * Constructor
33       *
34       */
35      public RequestedAuthnContextSchemaValidator() {
36          super();
37      }
38  
39      /** {@inheritDoc} */
40      public void validate(RequestedAuthnContext requestedAuthnContext) throws ValidationException {
41          validateChildren(requestedAuthnContext);
42      }
43  
44      /**
45       * Validates the presence and combination of child elements.
46       * 
47       * @param rac
48       * @throws ValidationException 
49       */
50      protected void validateChildren(RequestedAuthnContext rac) throws ValidationException {
51          int classRefCount = rac.getAuthnContextClassRefs().size();
52          int declRefCount = rac.getAuthnContextDeclRefs().size();
53          
54          if (classRefCount == 0 && declRefCount == 0){
55              throw new ValidationException("At least one of either AuthnContextClassRef or AuthnContextDeclRef is required");
56          }
57          
58          if (classRefCount > 0 && declRefCount > 0) {
59              throw new ValidationException("AuthnContextClassRef and AuthnContextDeclRef are mutually exclusive");
60          }
61      }
62  
63  }