/*
* JBoss, Home of Professional Open Source.
* Copyright 2008, Red Hat Middleware LLC, and individual contributors
* as indicated by the @author tags. See the copyright.txt file in the
* distribution for a full listing of individual contributors.
*
* This is free software; you can redistribute it and/or modify it
* under the terms of the GNU Lesser General Public License as
* published by the Free Software Foundation; either version 2.1 of
* the License, or (at your option) any later version.
*
* This software is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public
* License along with this software; if not, write to the Free
* Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
* 02110-1301 USA, or see the FSF site: http://www.fsf.org.
*/
package org.picketlink.identity.federation.core.sts.registry;
import org.picketlink.identity.federation.PicketLinkLogger;
import org.picketlink.identity.federation.PicketLinkLoggerFactory;
import javax.naming.Context;
import javax.naming.InitialContext;
import javax.naming.NamingException;
import javax.sql.DataSource;
import java.io.ByteArrayOutputStream;
import java.io.IOException;
import java.io.ObjectOutputStream;
import java.sql.*;
import java.util.Calendar;
import java.util.Date;
/**
* Implementation of {@link org.picketlink.identity.federation.core.sts.registry.SecurityTokenRegistry} using JDBC
* @author Anil Saldhana
* @since August 06, 2013
*/
public class JDBCRevocationRegistry extends AbstractJDBCRegistry implements RevocationRegistry{
public JDBCRevocationRegistry(){
super("jdbc/picketlink-sts");
}
public JDBCRevocationRegistry(String jndiName){
super(jndiName);
}
/**
* @see RevocationRegistry#isRevoked(String, String)
*/
public boolean isRevoked(String tokenType, String tokenID) {
if(dataSource == null){
throw logger.datasourceIsNull();
}
String existsTableSQL = "SELECT COUNT(*) FROM REVOCATION_REGISTRY WHERE TOKEN_ID =? AND TOKEN_TYPE = ?";
Connection conn = null;
PreparedStatement preparedStatement = null;
ResultSet resultSet = null;
try {
conn = dataSource.getConnection();
Date tokenCreationDate = Calendar.getInstance().getTime();
preparedStatement = conn.prepareStatement(existsTableSQL);
preparedStatement.setString(1, tokenID);
preparedStatement.setString(2, tokenType);
resultSet = preparedStatement.executeQuery();
return resultSet.getInt(1) > 0;
} catch (SQLException e) {
throw logger.runtimeException("revokeToken",e);
}finally {
safeClose(resultSet);
safeClose(preparedStatement);
safeClose(conn);
}
}
/**
* @see RevocationRegistry#revokeToken(String, String)
*/
public void revokeToken(String tokenType, String tokenID) {
if(dataSource == null){
throw logger.datasourceIsNull();
}
String insertTableSQL = "INSERT INTO REVOCATION_REGISTRY" + "(TOKEN_ID, TOKEN_TYPE, CREATED_DATE) VALUES" + "(?,?,?)";
Connection conn = null;
PreparedStatement preparedStatement = null;
try {
conn = dataSource.getConnection();
Date tokenCreationDate = Calendar.getInstance().getTime();
preparedStatement = conn.prepareStatement(insertTableSQL);
preparedStatement.setString(1, tokenID);
preparedStatement.setString(2, tokenType);
preparedStatement.setTimestamp(3, new Timestamp(tokenCreationDate.getTime()));
preparedStatement.executeUpdate();
} catch (SQLException e) {
throw logger.runtimeException("revokeToken",e);
}finally {
safeClose(preparedStatement);
safeClose(conn);
}
}
}