org.aselect.server.authspprotocol.handler
Class DBAuthSPHandler

java.lang.Object
  extended by org.aselect.server.authspprotocol.handler.DBAuthSPHandler
All Implemented Interfaces:
IAuthSPProtocolHandler

public class DBAuthSPHandler
extends java.lang.Object
implements IAuthSPProtocolHandler

The DB AuthSP Handler.

Description:
The DB AuthSP Handler communicates with the DB AuthSP by redirecting the client.

Concurrency issues:
None

Protocol Description
Outgoing request going to the DB AuthSP:

name value
ridA-Select Server request id
as_urlA-Select Server url
uidA-Select Server user ID
a-select-serverA-Select Server ID
signature signature of all paramaters in the above sequence

Incoming response, which is returned by the DB AuthSP:
name value
ridA-Select Server request id
result_codeAuthSP result code
a-select-serverA-Select Server ID
signature Signature over the following data:
  1. rid
  2. The URL that was created in computeAuthenticationRequest()
  3. result_code
  4. a-select-server

Author:
Cristina Gavrila, BTTSD

Constructor Summary
DBAuthSPHandler()
           
 
Method Summary
 java.util.Hashtable computeAuthenticationRequest(java.lang.String sRid)
          Creates the authentication request URL.
 void init(java.lang.Object oAuthSPConfig, java.lang.Object oAuthSPResource)
          Initializes the AuthSP protocol handler.
 java.util.Hashtable verifyAuthenticationResponse(java.util.Hashtable htAuthspResponse)
          Verifies the response from the AuthSP.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

DBAuthSPHandler

public DBAuthSPHandler()
Method Detail

init

public void init(java.lang.Object oAuthSPConfig,
                 java.lang.Object oAuthSPResource)
          throws ASelectAuthSPException
Description copied from interface: IAuthSPProtocolHandler
Initializes the AuthSP protocol handler.
Description:
Initializes the AuthSP protocol handler with authsp handler specific configuration and resources.

Concurrency issues:
-
Preconditions:
-
Postconditions:
-

Specified by:
init in interface IAuthSPProtocolHandler
Parameters:
oAuthSPConfig - Object containing the authsp specific configuration.
oAuthSPResource - Object containing the authsp specific resource(s).
Throws:
ASelectAuthSPException - If initialization fails.

computeAuthenticationRequest

public java.util.Hashtable computeAuthenticationRequest(java.lang.String sRid)
Creates the authentication request URL.

Description:
This method creates a hashtable with the follwing contents:
key value
result Errors.ERROR_ASELECT_SUCCESS or an error code if creating the authentication request URL fails
redirect_url The URL to the AuthSP including the protocol parameters as specified if the class description.

Specified by:
computeAuthenticationRequest in interface IAuthSPProtocolHandler
Parameters:
sRid - Needed parameter in the redirect URL. Can also be used to retrieve session information from the SessionManager.
Returns:
Hashtable containing at least:
  • result
  • redirect_url
See Also:
IAuthSPProtocolHandler.computeAuthenticationRequest(java.lang.String)

verifyAuthenticationResponse

public java.util.Hashtable verifyAuthenticationResponse(java.util.Hashtable htAuthspResponse)
Verifies the response from the AuthSP.

Description:
This method verifies the response from the AuthSP. The response parameters are placed in htAuthspResponse and are described in the class description.

This method creates a hashtable with the following contents:
key value
result Errors.ERROR_ASELECT_SUCCESS or an error code if the authentication response was invalid or the user was not authenticated.
rid The A-Select request identifier of this authentication.

Specified by:
verifyAuthenticationResponse in interface IAuthSPProtocolHandler
Parameters:
htAuthspResponse - Hashtable containing all parameters that were received from the AuthSP. It should contain at least:
  • rid
Returns:
Hashtable containing at least:
  • result
  • rid
See Also:
IAuthSPProtocolHandler.verifyAuthenticationResponse(java.util.Hashtable)


Copyright © 2008 SURFnet BV. All Rights Reserved.