mcs/class/System.IdentityModel/System.IdentityModel.Selectors/SamlSecurityTokenAuthenticator.cs

   1 //
   2 // SamlSecurityTokenAuthenticator.cs
   3 //
   4 // Author:
   5 //      Atsushi Enomoto <atsushi@ximian.com>
   6 //
   7 // Copyright (C) 2006 Novell, Inc.  http://www.novell.com
   8 //
   9 // Permission is hereby granted, free of charge, to any person obtaining
  10 // a copy of this software and associated documentation files (the
  11 // "Software"), to deal in the Software without restriction, including
  12 // without limitation the rights to use, copy, modify, merge, publish,
  13 // distribute, sublicense, and/or sell copies of the Software, and to
  14 // permit persons to whom the Software is furnished to do so, subject to
  15 // the following conditions:
  16 //
  17 // The above copyright notice and this permission notice shall be
  18 // included in all copies or substantial portions of the Software.
  19 //
  20 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
  21 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
  22 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
  23 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
  24 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
  25 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
  26 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
  27 //
  28 using System;
  29 using System.Collections.Generic;
  30 using System.Collections.ObjectModel;
  31 using System.IdentityModel.Claims;
  32 using System.IdentityModel.Policy;
  33 using System.IdentityModel.Tokens;
  34 using System.Security.Principal;
  35 using System.Xml;
  36
  37 namespace System.IdentityModel.Selectors
  38 {
  39         public class SamlSecurityTokenAuthenticator
  40                 : SecurityTokenAuthenticator
  41         {
  42                 IList<SecurityTokenAuthenticator> authenticators;
  43                 TimeSpan max_clock_skew;
  44
  45                 public SamlSecurityTokenAuthenticator (
  46                         IList<SecurityTokenAuthenticator> supportingAuthenticators)
  47                         : this (supportingAuthenticators, TimeSpan.MaxValue)
  48                 {
  49                 }
  50
  51                 public SamlSecurityTokenAuthenticator (
  52                         IList<SecurityTokenAuthenticator> supportingAuthenticators,
  53                         TimeSpan maxClockSkew)
  54                 {
  55                         if (supportingAuthenticators == null)
  56                                 throw new ArgumentNullException ("supportingAuthenticators");
  57                         authenticators = supportingAuthenticators;
  58                         max_clock_skew = maxClockSkew;
  59                 }
  60
  61                 protected override bool CanValidateTokenCore (SecurityToken token)
  62                 {
  63                         return token is SamlSecurityToken;
  64                 }
  65
  66                 [MonoTODO]
  67                 protected override ReadOnlyCollection<IAuthorizationPolicy>
  68                         ValidateTokenCore (SecurityToken token)
  69                 {
  70                         throw new NotImplementedException ();
  71                 }
  72
  73                 [MonoTODO]
  74                 public virtual ClaimSet ResolveClaimSet (SecurityKeyIdentifier keyIdentifier)
  75                 {
  76                         throw new NotImplementedException ();
  77                 }
  78
  79                 public virtual ClaimSet ResolveClaimSet (SecurityToken token)
  80                 {
  81                         return ResolveClaimSet (new SecurityKeyIdentifier (
  82                                 token.CreateKeyIdentifierClause<SamlAssertionKeyIdentifierClause> ()));
  83                 }
  84
  85                 [MonoTODO]
  86                 public virtual IIdentity ResolveIdentity (SecurityKeyIdentifier keyIdentifier)
  87                 {
  88                         throw new NotImplementedException ();
  89                 }
  90
  91                 public virtual IIdentity ResolveIdentity (SecurityToken token)
  92                 {
  93                         return ResolveIdentity (new SecurityKeyIdentifier (
  94                                 token.CreateKeyIdentifierClause<SamlAssertionKeyIdentifierClause> ()));
  95                 }
  96
  97                 class SamlAuthorizationPolicy : SystemIdentityAuthorizationPolicy
  98                 {
  99                         SamlSecurityTokenAuthenticator authenticator;
 100                         SamlSecurityToken token;
 101
 102                         public SamlAuthorizationPolicy (SamlSecurityTokenAuthenticator authenticator, SamlSecurityToken token)
 103                                 : base (new UniqueId ().ToString ())
 104                         {
 105                                 this.authenticator = authenticator;
 106                                 this.token = token;
 107                         }
 108
 109                         public override DateTime ExpirationTime {
 110                                 get { return token.ValidTo; }
 111                         }
 112
 113                         public override ClaimSet CreateClaims ()
 114                         {
 115                                 return authenticator.ResolveClaimSet (token);
 116                         }
 117
 118                         public override IIdentity CreateIdentity ()
 119                         {
 120                                 return authenticator.ResolveIdentity (token);
 121                         }
 122                 }
 123         }
 124 }