View Javadoc

1   /*
2    * Copyright [2005] [University Corporation for Advanced Internet Development, Inc.]
3    *
4    * Licensed under the Apache License, Version 2.0 (the "License");
5    * you may not use this file except in compliance with the License.
6    * You may obtain a copy of the License at
7    *
8    * http://www.apache.org/licenses/LICENSE-2.0
9    *
10   * Unless required by applicable law or agreed to in writing, software
11   * distributed under the License is distributed on an "AS IS" BASIS,
12   * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13   * See the License for the specific language governing permissions and
14   * limitations under the License.
15   */
16  
17  /**
18   * 
19   */
20  
21  package org.opensaml.saml2.core.validator;
22  
23  import org.opensaml.saml2.core.Assertion;
24  import org.opensaml.xml.validation.ValidationException;
25  import org.opensaml.xml.validation.Validator;
26  
27  /**
28   * Checks {@link org.opensaml.saml2.core.Assertion} for Spec compliance.
29   */
30  public class AssertionSpecValidator implements Validator<Assertion> {
31  
32      /** Constructor */
33      public AssertionSpecValidator() {
34  
35      }
36  
37      /** {@inheritDoc} */
38      public void validate(Assertion assertion) throws ValidationException {
39          validateSubject(assertion);
40      }
41  
42      /**
43       * Checks that the Subject element is present when required.
44       * 
45       * @param assertion
46       * @throws ValidationException
47       */
48      protected void validateSubject(Assertion assertion) throws ValidationException {
49          if ((assertion.getStatements() == null || assertion.getStatements().size() == 0)
50                  && (assertion.getAuthnStatements() == null || assertion.getAuthnStatements().size() == 0)
51                  && (assertion.getAttributeStatements() == null || assertion.getAttributeStatements().size() == 0)
52                  && (assertion.getAuthzDecisionStatements() == null || assertion.getAuthzDecisionStatements().size() == 0)
53                  && assertion.getSubject() == null) {
54              throw new ValidationException("Subject is required when Statements are absent");
55          }
56  
57          if (assertion.getAuthnStatements().size() > 0 && assertion.getSubject() == null) {
58              throw new ValidationException("Assertions containing AuthnStatements require a Subject");
59          }
60          if (assertion.getAuthzDecisionStatements().size() > 0 && assertion.getSubject() == null) {
61              throw new ValidationException("Assertions containing AuthzDecisionStatements require a Subject");
62          }
63          if (assertion.getAttributeStatements().size() > 0 && assertion.getSubject() == null) {
64              throw new ValidationException("Assertions containing AttributeStatements require a Subject");
65          }
66      }
67  }