/*
* Licensed to Jasig under one or more contributor license
* agreements. See the NOTICE file distributed with this work
* for additional information regarding copyright ownership.
* Jasig licenses this file to you under the Apache License,
* Version 2.0 (the "License"); you may not use this file
* except in compliance with the License. You may obtain a
* copy of the License at the following location:
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*/
package org.jasig.cas.adaptors.x509.web.flow;
import java.security.cert.X509Certificate;
import org.jasig.cas.adaptors.x509.authentication.principal.X509CertificateCredential;
import org.jasig.cas.authentication.Credential;
import org.jasig.cas.web.flow.AbstractNonInteractiveCredentialsAction;
import org.springframework.webflow.execution.RequestContext;
/**
* Concrete implementation of AbstractNonInteractiveCredentialsAction that
* obtains the X509 Certificates from the HttpServletRequest and places them in
* the X509CertificateCredential.
*
* @author Scott Battaglia
* @since 3.0.4
*/
public final class X509CertificateCredentialsNonInteractiveAction extends AbstractNonInteractiveCredentialsAction {
private static final String CERTIFICATE_REQUEST_ATTRIBUTE = "javax.servlet.request.X509Certificate";
@Override
protected Credential constructCredentialsFromRequest(final RequestContext context) {
final X509Certificate[] certificates = (X509Certificate[]) context
.getExternalContext().getRequestMap().get(
CERTIFICATE_REQUEST_ATTRIBUTE);
if (certificates == null || certificates.length == 0) {
if (logger.isDebugEnabled()) {
logger.debug("Certificates not found in request.");
}
return null;
}
if (logger.isDebugEnabled()) {
logger.debug("Certificate found in request.");
}
return new X509CertificateCredential(certificates);
}
}