1 /*
2 * Copyright [2005] [University Corporation for Advanced Internet Development, Inc.]
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17 /**
18 *
19 */
20 package org.opensaml.saml2.core.validator;
21
22 import org.opensaml.saml2.core.LogoutRequest;
23 import org.opensaml.xml.validation.ValidationException;
24
25 /**
26 * Checks {@link org.opensaml.saml2.core.LogoutRequest} for Schema compliance.
27 */
28 public class LogoutRequestSchemaValidator extends RequestAbstractTypeSchemaValidator<LogoutRequest> {
29
30 /**
31 * Constructor.
32 *
33 */
34 public LogoutRequestSchemaValidator() {
35 super();
36 }
37
38 /** {@inheritDoc} */
39 public void validate(LogoutRequest request) throws ValidationException {
40 super.validate(request);
41 validateIdentifiers(request);
42 }
43
44 /**
45 * Validate the Identifier child types (BaseID, NameID, EncryptedID).
46 *
47 * @param request the request being processed
48 * @throws ValidationException thrown if the identifiers present are not valid
49 */
50 protected void validateIdentifiers(LogoutRequest request) throws ValidationException {
51 int idCount = 0;
52
53 if (request.getBaseID() != null) {
54 idCount++;
55 }
56 if (request.getNameID() != null) {
57 idCount++;
58 }
59 if (request.getEncryptedID() != null) {
60 idCount++;
61 }
62
63 if (idCount != 1) {
64 throw new ValidationException("LogoutRequest must contain exactly one of: BaseID, NameID, EncryptedID");
65 }
66 }
67
68 }