Package at.gv.egovernment.moa.id.storage

Class DBAuthenticationSessionStoreage

java.lang.Object

at.gv.egovernment.moa.id.storage.DBAuthenticationSessionStoreage

All Implemented Interfaces:

IAuthenticationSessionStoreage

@Repository("AuthenticationSessionStoreage")
@Transactional("sessionTransactionManager")
public class DBAuthenticationSessionStoreage
extends Object
implements IAuthenticationSessionStoreage

Constructor Summary

Constructors

Constructor	Description
DBAuthenticationSessionStoreage()

Method Summary

Modifier and Type	Method	Description
void	addFederatedSessionInformation(at.gv.egiz.eaaf.core.api.IRequest req, String idpEntityID, at.gv.egiz.eaaf.modules.pvp2.sp.impl.utils.AssertionAttributeExtractor extractor)	Add information of the federated IDP to MOASession
void	addSSOInformation(String internalSSOSessionID, String externalSSOSessionID, at.gv.egiz.eaaf.core.api.idp.slo.SLOInformationInterface SLOInfo, at.gv.egiz.eaaf.core.api.IRequest protocolRequest)	Add Single Sign-On processing information to a MOASession.
at.gv.egovernment.moa.id.commons.db.dao.session.OldSSOSessionIDStore	checkSSOTokenAlreadyUsed(String ssoId)
void	clean(Date now, long authDataTimeOutCreated, long authDataTimeOutUpdated)	Clean all MOASessions which has a timeOut
AuthenticationSession	createInternalSSOSession(at.gv.egiz.eaaf.core.api.IRequest target)	Create a new MOA SSO-Session object in database The SSO session object get populated with eID information from pending request
void	deleteIdpInformation(at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore nextIDPInformation)
void	destroyInternalSSOSession(String internalSsoSessionID)	Delete a MOASession
List<at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore>	getAllActiveIDPsFromMOASession(String ssoSessionId)	Get all active interfederation connections for a MOASession
List<at.gv.egovernment.moa.id.commons.db.dao.session.OASessionStore>	getAllActiveOAFromMOASession(String ssoSessionId)	Get all Single Sign-On authenticated Service-Provider of a MOASession
AuthenticationSessionExtensions	getAuthenticationSessionExtensions(String sessionID)	Get the session-data extension-object for a MOASession
AuthenticationSession	getInternalSSOSession(String sessionID)	Get a MOASession with sessionID
String	getInternalSSOSessionWithSSOID(String externelSSOId)	Find the internal SSO session identifier of an active Single Sign-On session
at.gv.egovernment.moa.id.commons.api.data.IAuthenticationSession	getSessionWithUserNameID(String nameID)	Search a active MOASession with a userID
boolean	isSSOSession(String sessionID)	Check if a MOASession is an active Single Sign-On session
at.gv.egovernment.moa.id.commons.db.dao.session.AuthenticatedSessionStore	isValidSessionWithSSOID(String SSOId)
void	markOAWithAttributeQueryUsedFlag(at.gv.egovernment.moa.id.commons.api.data.IAuthenticationSession session, String oaurl, String requestedModule)
void	persistIdpInformation(at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore nextIDPInformation)
boolean	removeInterfederetedSession(String entityID, String pedingRequestID)	Remove an active federation IDP from MOASession
at.gv.egovernment.moa.id.commons.db.dao.session.OASessionStore	searchActiveOASSOSession(at.gv.egovernment.moa.id.commons.api.data.IAuthenticationSession moaSession, String oaID, String protocolType)	Search a active Single Sign-On session for a specific Service-Provider
at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore	searchInterfederatedIDPFORAttributeQueryWithSessionID(String moaSessionID)	Search an active federation IDP which could be used for federated Single Sign-On by using an AttributeQuery
at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore	searchInterfederatedIDPFORSSOWithMOASession(String sessionID)	Search an active federation IDP which could be used for federated Single Sign-On
at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore	searchInterfederatedIDPFORSSOWithMOASessionIDPID(String sessionID, String idpID)	Get information to an active federated IDP of MOASession
String	searchSSOSessionWithNameIDandOAID(String oaID, String userNameID)	Search a SSO session by using already transfered authentication information
void	setAuthenticated(String moaSessionID, boolean isAuthenticated)	Set the isAuthenticated flag to MOASession
void	setAuthenticationSessionExtensions(String sessionID, AuthenticationSessionExtensions sessionExtensions)	Store a session-data extension-object to MOASession

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

DBAuthenticationSessionStoreage

public DBAuthenticationSessionStoreage()

Method Detail

createInternalSSOSession

public AuthenticationSession createInternalSSOSession(at.gv.egiz.eaaf.core.api.IRequest target)
                                               throws at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException,
                                                      BuildException

Description copied from interface: IAuthenticationSessionStoreage

Create a new MOA SSO-Session object in database The SSO session object get populated with eID information from pending request

Specified by:

createInternalSSOSession in interface IAuthenticationSessionStoreage

Parameters:

target - Pending Request which is associated with this MOASession

Returns:

MOASession object

Throws:

at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException - MOASession storage operation FAILED

BuildException - MOASession encryption FAILED

getInternalSSOSession

public AuthenticationSession getInternalSSOSession(String sessionID)
                                            throws at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException

Description copied from interface: IAuthenticationSessionStoreage

Get a MOASession with sessionID

Specified by:

getInternalSSOSession in interface IAuthenticationSessionStoreage

Parameters:

sessionID - Internal MOA SSO-Session identifier

Returns:

MOASession, or null if no session exists with this ID

Throws:

at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException - MOASession load operation FAILED

getAuthenticationSessionExtensions

public AuthenticationSessionExtensions getAuthenticationSessionExtensions(String sessionID)
                                                                   throws at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException

Description copied from interface: IAuthenticationSessionStoreage

Get the session-data extension-object for a MOASession

Specified by:

getAuthenticationSessionExtensions in interface IAuthenticationSessionStoreage

Parameters:

sessionID - Internal MOA SSO-Session identifier

Returns:

AuthenticationSessionExtensions, or null if no session exists with this ID or extensionobject is null

Throws:

at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException - MOASession load operation FAILED

setAuthenticationSessionExtensions

public void setAuthenticationSessionExtensions(String sessionID,
                                               AuthenticationSessionExtensions sessionExtensions)
                                        throws at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException

Description copied from interface: IAuthenticationSessionStoreage

Store a session-data extension-object to MOASession

Specified by:

setAuthenticationSessionExtensions in interface IAuthenticationSessionStoreage

Parameters:

sessionID - Internal MOA SSO-Session identifier

sessionExtensions - AuthenticationSessionExtensions object

Throws:

at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException - MOASession storage operation FAILED

destroyInternalSSOSession

public void destroyInternalSSOSession(String internalSsoSessionID)
                               throws at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException

Description copied from interface: IAuthenticationSessionStoreage

Delete a MOASession

Specified by:

destroyInternalSSOSession in interface IAuthenticationSessionStoreage

Parameters:

internalSsoSessionID - Internal MOA SSO-Session identifier

Throws:

at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException - MOASession delete operation FAILED

setAuthenticated

public void setAuthenticated(String moaSessionID,
                             boolean isAuthenticated)

Description copied from interface: IAuthenticationSessionStoreage

Set the isAuthenticated flag to MOASession

Specified by:

setAuthenticated in interface IAuthenticationSessionStoreage

Parameters:

moaSessionID - Internal MOA SSO-Session identifier

isAuthenticated - Is authenticated flag (true/false)

getInternalSSOSessionWithSSOID

public String getInternalSSOSessionWithSSOID(String externelSSOId)
                                      throws at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException

Description copied from interface: IAuthenticationSessionStoreage

Find the internal SSO session identifier of an active Single Sign-On session

Specified by:

getInternalSSOSessionWithSSOID in interface IAuthenticationSessionStoreage

Parameters:

externelSSOId - external Single Sign-On sessionID

Returns:

internal SSO-Session identifier

Throws:

at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException

isSSOSession

public boolean isSSOSession(String sessionID)
                     throws at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException

Description copied from interface: IAuthenticationSessionStoreage

Check if a MOASession is an active Single Sign-On session

Specified by:

isSSOSession in interface IAuthenticationSessionStoreage

Parameters:

sessionID - SessionID which corresponds to a MOASession

Returns:

true, if the MOASession is a SSO session, otherwise false

Throws:

at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException - MOASession load operation FAILED

isValidSessionWithSSOID

public at.gv.egovernment.moa.id.commons.db.dao.session.AuthenticatedSessionStore isValidSessionWithSSOID(String SSOId)

Specified by:

isValidSessionWithSSOID in interface IAuthenticationSessionStoreage

Returns:

addSSOInformation

public void addSSOInformation(String internalSSOSessionID,
                              String externalSSOSessionID,
                              at.gv.egiz.eaaf.core.api.idp.slo.SLOInformationInterface SLOInfo,
                              at.gv.egiz.eaaf.core.api.IRequest protocolRequest)
                       throws AuthenticationException

Description copied from interface: IAuthenticationSessionStoreage

Add Single Sign-On processing information to a MOASession. This processing information is required to execute a Single Log-Out process

Specified by:

addSSOInformation in interface IAuthenticationSessionStoreage

Parameters:

internalSSOSessionID - SessionID which corresponds to a MOASession

externalSSOSessionID - Single Sign-On sessionID

SLOInfo - Data object with Single LogOut information

protocolRequest - Protocol-request object of the authentication request

Throws:

AuthenticationException - Single Sign-On information store operation FAILED

getAllActiveOAFromMOASession

public List<at.gv.egovernment.moa.id.commons.db.dao.session.OASessionStore> getAllActiveOAFromMOASession(String ssoSessionId)

Description copied from interface: IAuthenticationSessionStoreage

Get all Single Sign-On authenticated Service-Provider of a MOASession

Specified by:

getAllActiveOAFromMOASession in interface IAuthenticationSessionStoreage

Parameters:

ssoSessionId - SSO session id

Returns:

List of Service-Provider information

getAllActiveIDPsFromMOASession

public List<at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore> getAllActiveIDPsFromMOASession(String ssoSessionId)

Description copied from interface: IAuthenticationSessionStoreage

Get all active interfederation connections for a MOASession

Specified by:

getAllActiveIDPsFromMOASession in interface IAuthenticationSessionStoreage

Parameters:

ssoSessionId - SSO session id

Returns:

List of Interfederation-IDP information

searchSSOSessionWithNameIDandOAID

public String searchSSOSessionWithNameIDandOAID(String oaID,
                                                String userNameID)

Description copied from interface: IAuthenticationSessionStoreage

Search a SSO session by using already transfered authentication information

Specified by:

searchSSOSessionWithNameIDandOAID in interface IAuthenticationSessionStoreage

Parameters:

oaID - Service-Provider identifier, which has received the authentication information

userNameID - UserId (bPK), which was send to this Service-Provider

Returns:

SSO-session identifier, or null if no corresponding SSO session is found

searchActiveOASSOSession

public at.gv.egovernment.moa.id.commons.db.dao.session.OASessionStore searchActiveOASSOSession(at.gv.egovernment.moa.id.commons.api.data.IAuthenticationSession moaSession,
                                                                                               String oaID,
                                                                                               String protocolType)

Description copied from interface: IAuthenticationSessionStoreage

Search a active Single Sign-On session for a specific Service-Provider

Specified by:

searchActiveOASSOSession in interface IAuthenticationSessionStoreage

Parameters:

moaSession - MOASession data object

oaID - Service-Provider identifier, which has received the authentication information

protocolType - Authentication protocol, which was used for SSO from this Service-Provider

Returns:

Internal Single Sign-On information for this Service-Provider

markOAWithAttributeQueryUsedFlag

public void markOAWithAttributeQueryUsedFlag(at.gv.egovernment.moa.id.commons.api.data.IAuthenticationSession session,
                                             String oaurl,
                                             String requestedModule)

Specified by:

markOAWithAttributeQueryUsedFlag in interface IAuthenticationSessionStoreage

getSessionWithUserNameID

public at.gv.egovernment.moa.id.commons.api.data.IAuthenticationSession getSessionWithUserNameID(String nameID)

Description copied from interface: IAuthenticationSessionStoreage

Search a active MOASession with a userID

Specified by:

getSessionWithUserNameID in interface IAuthenticationSessionStoreage

Parameters:

nameID - UserID (bPK)

Returns:

MOASession, or null if no corresponding MOASession is found

searchInterfederatedIDPFORSSOWithMOASession

public at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore searchInterfederatedIDPFORSSOWithMOASession(String sessionID)

Description copied from interface: IAuthenticationSessionStoreage

Search an active federation IDP which could be used for federated Single Sign-On

Specified by:

searchInterfederatedIDPFORSSOWithMOASession in interface IAuthenticationSessionStoreage

Parameters:

sessionID - SessionID which corresponds to a MOASession

Returns:

Information of the federated IDP, or null if no active federated IDP is found

searchInterfederatedIDPFORSSOWithMOASessionIDPID

public at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore searchInterfederatedIDPFORSSOWithMOASessionIDPID(String sessionID,
                                                                                                                                    String idpID)

Description copied from interface: IAuthenticationSessionStoreage

Get information to an active federated IDP of MOASession

Specified by:

searchInterfederatedIDPFORSSOWithMOASessionIDPID in interface IAuthenticationSessionStoreage

Parameters:

sessionID - SessionID which corresponds to a MOASession

idpID - Unique identifier of the federated IDP

Returns:

Information of the federated IDP, or null if no active federated IDP is found

addFederatedSessionInformation

public void addFederatedSessionInformation(at.gv.egiz.eaaf.core.api.IRequest req,
                                           String idpEntityID,
                                           at.gv.egiz.eaaf.modules.pvp2.sp.impl.utils.AssertionAttributeExtractor extractor)
                                    throws at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException,
                                           at.gv.egiz.eaaf.modules.pvp2.sp.exception.AssertionAttributeExtractorExeption,
                                           BuildException,
                                           at.gv.egiz.eaaf.core.exceptions.EAAFConfigurationException

Description copied from interface: IAuthenticationSessionStoreage

Add information of the federated IDP to MOASession

Specified by:

addFederatedSessionInformation in interface IAuthenticationSessionStoreage

Parameters:

req - Pending request of the service-provider request, never null

idpEntityID - The SAML2 EntityID of the federated IDP, never null

extractor - AssertionAttributeExtractor which holds the SAML2 response of the federated IDP, never null

Throws:

at.gv.egovernment.moa.id.commons.db.ex.MOADatabaseException

at.gv.egiz.eaaf.modules.pvp2.sp.exception.AssertionAttributeExtractorExeption

BuildException

at.gv.egiz.eaaf.core.exceptions.EAAFConfigurationException

searchInterfederatedIDPFORAttributeQueryWithSessionID

public at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore searchInterfederatedIDPFORAttributeQueryWithSessionID(String moaSessionID)

Description copied from interface: IAuthenticationSessionStoreage

Search an active federation IDP which could be used for federated Single Sign-On by using an AttributeQuery

Specified by:

searchInterfederatedIDPFORAttributeQueryWithSessionID in interface IAuthenticationSessionStoreage

Parameters:

moaSessionID - ID of a active MOASession

Returns:

Information of the federated IDP, or null if no active federated IDP is found

removeInterfederetedSession

public boolean removeInterfederetedSession(String entityID,
                                           String pedingRequestID)

Description copied from interface: IAuthenticationSessionStoreage

Remove an active federation IDP from MOASession

Specified by:

removeInterfederetedSession in interface IAuthenticationSessionStoreage

Parameters:

entityID - Unique identifier of the federated IDP

Returns:

true if the federated IDP could be remove, otherwise false

clean

public void clean(Date now,
                  long authDataTimeOutCreated,
                  long authDataTimeOutUpdated)

Description copied from interface: IAuthenticationSessionStoreage

Clean all MOASessions which has a timeOut

Specified by:

clean in interface IAuthenticationSessionStoreage

Parameters:

now - Current Time

authDataTimeOutCreated - timeOut after MOASession is created [ms]

authDataTimeOutUpdated - timeOut after MOASession is updated last time [ms]

deleteIdpInformation

public void deleteIdpInformation(at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore nextIDPInformation)

Specified by:

deleteIdpInformation in interface IAuthenticationSessionStoreage

persistIdpInformation

public void persistIdpInformation(at.gv.egovernment.moa.id.commons.db.dao.session.InterfederationSessionStore nextIDPInformation)

Specified by:

persistIdpInformation in interface IAuthenticationSessionStoreage

checkSSOTokenAlreadyUsed

public at.gv.egovernment.moa.id.commons.db.dao.session.OldSSOSessionIDStore checkSSOTokenAlreadyUsed(String ssoId)

Specified by:

checkSSOTokenAlreadyUsed in interface IAuthenticationSessionStoreage

Returns: