TimestampMessageProcessor.java

  1. /*
  2.  * AdroitLogic UltraESB Enterprise Service Bus
  3.  *
  4.  * Copyright (c) 2010-2012 AdroitLogic Private Ltd. (http://adroitlogic.org). All Rights Reserved.
  5.  *
  6.  * GNU Affero General Public License Usage
  7.  *
  8.  * This program is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General
  9.  * Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option)
  10.  * any later version.
  11.  *
  12.  * This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied
  13.  * warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU Affero General Public License for
  14.  * more details.
  15.  *
  16.  * You should have received a copy of the GNU Affero General Public License along with this program (See LICENSE-AGPL.TXT).
  17.  * If not, see http://www.gnu.org/licenses/agpl-3.0.html
  18.  *
  19.  * Commercial Usage
  20.  *
  21.  * Licensees holding valid UltraESB Commercial licenses may use this file in accordance with the UltraESB Commercial
  22.  * License Agreement provided with the Software or, alternatively, in accordance with the terms contained in a written
  23.  * agreement between you and AdroitLogic.
  24.  *
  25.  * If you are unsure which license is appropriate for your use, or have questions regarding the use of this file,
  26.  * please contact AdroitLogic at info@adroitlogic.com
  27.  */
  28. /*
  29.  * Modificato da Link.it (https://link.it) per supportare le seguenti funzionalità:
  30.  * - firma e cifratura degli attachments
  31.  * - cifratura con chiave simmetrica
  32.  * - supporto CRL 
  33.  * 
  34.  * Copyright (c) 2011-2025 Link.it srl (https://link.it). 
  35.  * 
  36.  */

  38. package org.openspcoop2.security.message.soapbox;

  40. import java.util.Calendar;
  41. import java.util.Date;
  42. import java.util.GregorianCalendar;
  43. import java.util.TimeZone;

  45. import org.adroitlogic.soapbox.CryptoUtil;
  46. import org.adroitlogic.soapbox.InvalidMessageDataException;
  47. import org.adroitlogic.soapbox.MessageSecurityContext;
  48. import org.adroitlogic.soapbox.Processor;
  49. import org.adroitlogic.soapbox.SBConstants;
  50. import org.adroitlogic.soapbox.SecurityConfig;
  51. import org.apache.commons.lang.time.FastDateFormat;
  52. import org.openspcoop2.utils.UtilsException;
  53. import org.openspcoop2.utils.date.DateManager;
  54. import org.w3c.dom.Document;
  55. import org.w3c.dom.Element;

  57. /**
  58.  * TimestampMessageProcessor
  59.  *
  60.  * Author of the original AdroitLogic code:
  61.  * @author asankha
  62.  *
  63.  * Authors of the Link.it modification to the code:
  64.  * @author Andrea Poli (apoli@link.it)
  65.  * @author Giovanni Bussu (bussu@link.it)
  66.  * @author $Author$
  67.  * @version $Rev$, $Date$
  68.  */
  69. public class TimestampMessageProcessor implements Processor {

  71.     private final FastDateFormat zulu;
  72.     
  73.     public TimestampMessageProcessor() {
  74.         this.zulu = FastDateFormat.getInstance("yyyy-MM-dd'T'HH:mm:ss.SSS'Z'", TimeZone.getTimeZone("UTC"));
  75.     }
  76.     @Override
  77.     public void process(SecurityConfig secConfig, MessageSecurityContext msgSecCtx) {
  78.         // ensure existence of the wsse:Security header, and create one if none exists
  79.         Document doc = msgSecCtx.getDocument();
  80.         Element wsseSecurityElem = CryptoUtil.getWSSecurityHeader(doc);

  82.         // we will not timestamp an already timestamped document
  83.         if (CryptoUtil.getFirstChildOrNull(wsseSecurityElem, SBConstants.WSU, "Timestamp") != null) {
  84.             throw new InvalidMessageDataException("Message is already timestamped");
  85.         }

  87.         Element timestampElem = doc.createElementNS(SBConstants.WSU, "wsu:Timestamp");
  88.         CryptoUtil.setWsuId(timestampElem, CryptoUtil.getRandomId());
  89.         Element createdElem = doc.createElementNS(SBConstants.WSU, "wsu:Created");
  90.         Element expiresElem = doc.createElementNS(SBConstants.WSU, "wsu:Expires");

  92.         long ttl = msgSecCtx.getTimestampRequest().getTimeForExpiryMillis();
  93.         Calendar currentTime = null;
  94.         Calendar expiryTime = null;
  95.         try {
  96.             currentTime = DateManager.getCalendar();
  97.         } catch (UtilsException e) {
  98.             currentTime = new GregorianCalendar();
  99.             currentTime.setTimeInMillis(new Date().getTime());
  100.         }

  102.         expiryTime = new GregorianCalendar();
  103.         expiryTime.setTimeInMillis(currentTime.getTimeInMillis() + ttl);
  104.         
  105.         synchronized (this.zulu) {
  106.             createdElem.setTextContent(this.zulu.format(currentTime.getTime()));
  107.             expiresElem.setTextContent(this.zulu.format(expiryTime.getTime()));
  108.         }
  109.         timestampElem.appendChild(createdElem);
  110.         timestampElem.appendChild(expiresElem);
  111.         
  112.         Element firstChild = CryptoUtil.getFirstElementChild(wsseSecurityElem);
  113.         if (firstChild != null) {
  114.             wsseSecurityElem.insertBefore(timestampElem, firstChild);
  115.         } else {
  116.             wsseSecurityElem.appendChild(timestampElem);
  117.         }
  118.     }


  121. }
Created with JaCoCo 0.8.8.202204050719