/**
* Verify a previously authenticated user with the provider
*
* @param adapter protocol adapter
* @param parameterMap request parameters
* @param receivedURL url where the response will be received
* @return
* @throws OpenIDMessageException
* @throws OpenIDDiscoveryException
* @throws OpenIDAssociationException
* @throws OpenIDLifeCycleException
*/
public boolean verify(
OpenIDProtocolAdapter adapter, Map<String, String> parameterMap, String receivedURL)
throws OpenIDMessageException, OpenIDDiscoveryException, OpenIDAssociationException,
OpenIDLifeCycleException {
OpenIDLifecycle lifeCycle = null;
if (adapter instanceof OpenIDLifecycle) {
lifeCycle = (OpenIDLifecycle) adapter;
}
ParameterList responselist = new ParameterList(parameterMap);
if (lifeCycle == null) throw new IllegalStateException("Lifecycle not found");
DiscoveryInformation discovered =
(DiscoveryInformation) lifeCycle.getAttributeValue(CONST.OPENID_DISC.get());
// verify the response; ConsumerManager needs to be the same
// (static) instance used to place the authentication request
try {
VerificationResult verification =
this.consumerManager.verify(receivedURL, responselist, discovered);
// examine the verification result and extract the verified identifier
Identifier verified = verification.getVerifiedId();
if (verified != null) {
AuthSuccess authSuccess = (AuthSuccess) verification.getAuthResponse();
// Create an lifecycle event array
OpenIDLifecycleEvent[] eventArr =
new OpenIDLifecycleEvent[] {
/** Store the id * */
new OpenIDLifecycleEvent(
OpenIDLifecycleEvent.TYPE.SESSION,
OpenIDLifecycleEvent.OP.ADD,
CONST.OPENID.get(),
authSuccess.getIdentity()),
/** Store the claimed * */
new OpenIDLifecycleEvent(
OpenIDLifecycleEvent.TYPE.SESSION,
OpenIDLifecycleEvent.OP.ADD,
CONST.OPENID_CLAIMED.get(),
authSuccess.getClaimed()),
/** Indicate success * */
new OpenIDLifecycleEvent(OpenIDLifecycleEvent.TYPE.SUCCESS, null, null, null)
};
lifeCycle.handle(eventArr);
return true;
}
} catch (MessageException e) {
throw new OpenIDMessageException(e);
} catch (DiscoveryException e) {
throw new OpenIDDiscoveryException(e);
} catch (AssociationException e) {
throw new OpenIDAssociationException(e);
}
return false;
}
/**
* Associate with a list of open id providers
*
* @param adapter Protocol adapter (such as http)
* @param listOfProviders (a list of providers from discovery)
* @return
* @throws OpenIDConsumerException
* @throws OpenIDLifeCycleException
*/
public OpenIDProviderInformation associate(
OpenIDProtocolAdapter adapter, OpenIDProviderList listOfProviders)
throws OpenIDConsumerException, OpenIDLifeCycleException {
OpenIDLifecycle lifeCycle = null;
if (adapter instanceof OpenIDLifecycle) {
lifeCycle = (OpenIDLifecycle) adapter;
}
List<DiscoveryInformation> discoveries = listOfProviders.get();
if (discoveries.size() == 0)
throw new OpenIDConsumerException("No open id endpoints discovered");
// attempt to associate with the OpenID provider
// and retrieve one service endpoint for authentication
DiscoveryInformation discovered = consumerManager.associate(discoveries);
// store the discovery information in the user's session for later use
// leave out for stateless operation / if there is no session
if (lifeCycle != null) {
OpenIDLifecycleEvent ev =
new OpenIDLifecycleEvent(
OpenIDLifecycleEvent.TYPE.SESSION,
OpenIDLifecycleEvent.OP.ADD,
CONST.OPENID_DISC.get(),
discovered);
lifeCycle.handle(ev);
}
return new OpenIDProviderInformation(discovered);
}
/**
* Log an user out from an openid provider
*
* @param adapter protocol adapter
* @throws OpenIDLifeCycleException
*/
public void logout(OpenIDProtocolAdapter adapter) throws OpenIDLifeCycleException {
OpenIDLifecycle lifeCycle = null;
if (adapter instanceof OpenIDLifecycle) {
lifeCycle = (OpenIDLifecycle) adapter;
}
if (lifeCycle != null) {
lifeCycle.handle(
new OpenIDLifecycleEvent(
OpenIDLifecycleEvent.TYPE.SESSION,
OpenIDLifecycleEvent.OP.REMOVE,
CONST.OPENID.get(),
null));
lifeCycle.handle(
new OpenIDLifecycleEvent(
OpenIDLifecycleEvent.TYPE.SESSION,
OpenIDLifecycleEvent.OP.REMOVE,
CONST.OPENID_CLAIMED.get(),
null));
}
}