d2/d3b/SignedElementHelper_8php_source.html

<?php


namespace SAML2;


use RobRichards\XMLSecLibs\XMLSecurityKey;


class SignedElementHelper implements SignedElement

{

    private $signatureKey;


    private $certificates;


    private $validators;


    protected function __construct(\DOMElement $xml = null)

    {

        $this->certificates = array();

        $this->validators = array();


        if ($xml === null) {

            return;

        }


        /* Validate the signature element of the message. */

        try {

            $sig = Utils::validateElement($xml);


            if ($sig !== false) {

                $this->certificates = $sig['Certificates'];

                $this->validators[] = array(

                    'Function' => array('\SAML2\Utils', 'validateSignature'),

                    'Data' => $sig,

                );

            }

        } catch (\Exception $e) {

            /* Ignore signature validation errors. */

        }

    }


    public function addValidator($function, $data)

    {

        assert(is_callable($function));


        $this->validators[] = array(

            'Function' => $function,

            'Data' => $data,

        );

    }


    public function validate(XMLSecurityKey $key)

    {

        if (count($this->validators) === 0) {

            return false;

        }


        $exceptions = array();


        foreach ($this->validators as $validator) {

            $function = $validator['Function'];

            $data = $validator['Data'];


            try {

                call_user_func($function, $data, $key);

                /* We were able to validate the message with this validator. */


                return true;

            } catch (\Exception $e) {

                $exceptions[] = $e;

            }

        }


        /* No validators were able to validate the message. */

        throw $exceptions[0];

    }


    public function getSignatureKey()

    {

        return $this->signatureKey;

    }


    public function setSignatureKey(XMLSecurityKey $signatureKey = null)

    {

        $this->signatureKey = $signatureKey;

    }


    public function setCertificates(array $certificates)

    {

        $this->certificates = $certificates;

    }


    public function getCertificates()

    {

        return $this->certificates;

    }


    public function getValidatingCertificates()

    {

        $ret = array();

        foreach ($this->certificates as $cert) {


            /* Construct a PEM formatted certificate */

            $pemCert = "-----BEGIN CERTIFICATE-----\n" .

                chunk_split($cert, 64) .

                "-----END CERTIFICATE-----\n";


            /* Extract the public key from the certificate for validation. */

            $key = new XMLSecurityKey(XMLSecurityKey::RSA_SHA1, array('type'=>'public'));

            $key->loadKey($pemCert);


            try {

                /* Check the signature. */

                if ($this->validate($key)) {

                    $ret[] = $cert;

                }

            } catch (\Exception $e) {

                /* This certificate does not sign this element. */

            }

        }


        return $ret;

    }


    protected function signElement(\DOMElement $root, \DOMElement $insertBefore = null)

    {

        if ($this->signatureKey === null) {

            /* We cannot sign this element. */


            return null;

        }


        Utils::insertSignature($this->signatureKey, $this->certificates, $root, $insertBefore);


        return $root;

    }

}

$exceptions
$exceptions
Definition: Utf8Test.php:67

$function
$function
Definition: cas.php:28

php
An exception for terminatinating execution or to throw for unit testing.

RobRichards\XMLSecLibs\XMLSecurityKey
xmlseclibs.php
Definition: XMLSecurityKey.php:48

SAML2\SignedElementHelper
Definition: SignedElementHelper.php:15

SAML2\SignedElementHelper\signElement
signElement(\DOMElement $root, \DOMElement $insertBefore=null)
Sign the given XML element.
Definition: SignedElementHelper.php:207

SAML2\SignedElementHelper\setSignatureKey
setSignatureKey(XMLSecurityKey $signatureKey=null)
Set the private key we should use to sign the message.
Definition: SignedElementHelper.php:141

SAML2\SignedElementHelper\$certificates
$certificates
Definition: SignedElementHelper.php:30

SAML2\SignedElementHelper\addValidator
addValidator($function, $data)
Add a method for validating this element.
Definition: SignedElementHelper.php:77

SAML2\SignedElementHelper\setCertificates
setCertificates(array $certificates)
Set the certificates that should be included in the message.
Definition: SignedElementHelper.php:153

SAML2\SignedElementHelper\getSignatureKey
getSignatureKey()
Retrieve the private key we should use to sign the message.
Definition: SignedElementHelper.php:129

SAML2\SignedElementHelper\__construct
__construct(\DOMElement $xml=null)
Initialize the helper class.
Definition: SignedElementHelper.php:44

SAML2\SignedElementHelper\validate
validate(XMLSecurityKey $key)
Validate this element against a public key.
Definition: SignedElementHelper.php:98

SAML2\SignedElementHelper\$validators
$validators
Definition: SignedElementHelper.php:37

SAML2\SignedElementHelper\getCertificates
getCertificates()
Retrieve the certificates that are included in the message.
Definition: SignedElementHelper.php:163

SAML2\SignedElementHelper\getValidatingCertificates
getValidatingCertificates()
Retrieve certificates that sign this element.
Definition: SignedElementHelper.php:173

SAML2\SignedElementHelper\$signatureKey
$signatureKey
Definition: SignedElementHelper.php:23

$key
$key
Definition: croninfo.php:18

SAML2\SignedElement
Definition: SignedElement.php:13

$xml
$xml
Definition: metadata.php:240

$certificates
$certificates
Definition: metarefresh.php:39

SAML2
Definition: ArtifactResolve.php:3

$ret
$ret
Definition: parser.php:6

$data
$data
Definition: test-settings.sample.php:14