initializer.java

开源的OpenId的一个java实现

        prop.setName("DriverName");
        prop.setValue(IdentityProviderConstants.Sample.DRIVER);
        db.create(prop);

        prop = new RealmConfigurationPropertyDO();
        prop.setConfig(realmConfig);
        prop.setName("UserTable");
        prop.setValue(IdentityProviderConstants.Sample.USER_TABLE);
        db.create(prop);

        prop = new RealmConfigurationPropertyDO();
        prop.setConfig(realmConfig);
        prop.setName("UserNameColumn");
        prop.setValue(IdentityProviderConstants.Sample.USER_NAME_COLUMN);
        db.create(prop);

        prop = new RealmConfigurationPropertyDO();
        prop.setConfig(realmConfig);
        prop.setName("UserCredentialColumn");
        prop.setValue(IdentityProviderConstants.Sample.PASSWORD_COLUMN);
        db.create(prop);

        prop = new RealmConfigurationPropertyDO();
        prop.setConfig(realmConfig);
        prop.setName("ColumnNames");
        prop.setValue(IdentityProviderConstants.Sample.COLUMN_NAME_EMAIL + ","
                + IdentityProviderConstants.Sample.COLUMN_NAME_FIRSTNAME + ","
                + IdentityProviderConstants.Sample.COLUMN_NAME_LASTNAME);
        db.create(prop);

    }

    private void addDialectsAndClaims() throws IdentityProviderException,
            AxisFault {
        IPPersistenceManager db = IPPersistenceManager.getPersistanceManager();
        if (log.isDebugEnabled()) {
            log.debug(messages.getMessage("addingInitialClaimsInfo"));
        }

        InitialClaimsProcessor claimsProcessor = new InitialClaimsProcessor();
        claimsProcessor
                .process(IdentityProviderConstants.INITIAL_CLAIMS_FILE_PATH);
        ArrayList dialects = claimsProcessor.getDialectList();
        for (Iterator iter = dialects.iterator(); iter.hasNext();) {
            DialectDO dialect = (DialectDO) iter.next();
            db.create(dialect);
        }

        ArrayList claims = claimsProcessor.getClaimList();
        for (Iterator iter = claims.iterator(); iter.hasNext();) {
            ClaimDO claim = (ClaimDO) iter.next();
            if (claim.getUri().equals(IdentityConstants.CLAIM_PPID)) {
                claim.setUserEditable(false);
            }
            db.create(claim);
        }

        // Setup claims for the sample
        ClaimsAdmin claimsAdmin = new ClaimsAdmin();
        ClaimDO[] claimDOs = claimsAdmin.getAllClaims();
        // Set supported
        for (int i = 0; i < claimDOs.length; i++) {

            if (log.isDebugEnabled()) {
                log.debug(messages.getMessage("enableClaimsForSample"));
            }

            ClaimDO claim = claimDOs[i];

            // Following claims or a subset of it is required by the OpenID
            // Simple Attribute Registration - So, we accept all these as
            // required parameters, at a time user registers with us - still
            // this configurable through the Admin UI.

            if (claim.getUri().equals(IdentityConstants.CLAIM_EMAIL_ADDRESS)) {
                claim.setAttrId(IdentityConstants.CLAIM_EMAIL_ADDRESS);
                claim.setRequired(true);
            } else if (claim.getUri().equals(IdentityConstants.CLAIM_NICKNAME)) {
                claim.setAttrId(IdentityConstants.CLAIM_NICKNAME);
            } else if (claim.getUri().equals(IdentityConstants.CLAIM_DOB)) {
                claim.setAttrId(IdentityConstants.CLAIM_DOB);
            } else if (claim.getUri().equals(IdentityConstants.CLAIM_GENDER)) {
                claim.setAttrId(IdentityConstants.CLAIM_GENDER);
            } else if (claim.getUri().equals(
                    IdentityConstants.CLAIM_POSTAL_CODE)) {
                claim.setAttrId(IdentityConstants.CLAIM_POSTAL_CODE);
            } else if (claim.getUri().equals(IdentityConstants.CLAIM_COUNTRY)) {
                claim.setAttrId(IdentityConstants.CLAIM_COUNTRY);
                claim.setRequired(true);
            } else if (claim.getUri().equals(IdentityConstants.CLAIM_LANGUAGE)) {
                claim.setAttrId(IdentityConstants.CLAIM_LANGUAGE);
            } else if (claim.getUri().equals(IdentityConstants.CLAIM_TIME_ZONE)) {
                claim.setAttrId(IdentityConstants.CLAIM_TIME_ZONE);
            } else if (claim.getUri().equals(IdentityConstants.CLAIM_FULLNAME)) {
                claim.setAttrId(IdentityConstants.CLAIM_FULLNAME);
            } else if (claim.getUri()
                    .equals(IdentityConstants.CLAIM_GIVEN_NAME)) {
                claim.setAttrId(IdentityConstants.CLAIM_GIVEN_NAME);
                claim.setRequired(true);
            } else if (claim.getUri().equals(IdentityConstants.CLAIM_SURNAME)) {
                claim.setAttrId(IdentityConstants.CLAIM_SURNAME);
                claim.setRequired(true);
            } else if (claim.getUri().equals(IdentityConstants.CLAIM_PPID)) {
                claim.setRequired(true);
            } else if (claim.getUri().equals(IdentityConstants.CLAIM_OPENID)) {
                claim.setAttrId(IdentityConstants.CLAIM_OPENID);
                claim.setUserEditable(false);
                claimsAdmin.updateClaim(claim);
            }

            if (claim.getUri().equals(IdentityConstants.CLAIM_EMAIL_ADDRESS)
                    || claim.getUri().equals(IdentityConstants.CLAIM_NICKNAME)
                    || claim.getUri().equals(IdentityConstants.CLAIM_DOB)
                    || claim.getUri().equals(IdentityConstants.CLAIM_GENDER)
                    || claim.getUri().equals(
                            IdentityConstants.CLAIM_POSTAL_CODE)
                    || claim.getUri().equals(IdentityConstants.CLAIM_COUNTRY)
                    || claim.getUri().equals(IdentityConstants.CLAIM_LANGUAGE)
                    || claim.getUri().equals(IdentityConstants.CLAIM_TIME_ZONE)
                    || claim.getUri().equals(IdentityConstants.CLAIM_FULLNAME)
                    || claim.getUri()
                            .equals(IdentityConstants.CLAIM_GIVEN_NAME)
                    || claim.getUri().equals(IdentityConstants.CLAIM_SURNAME)
                    || claim.getUri().equals(IdentityConstants.CLAIM_PPID)) {
                claim.setSupported(true);
                claimsAdmin.updateClaim(claim);
            }
        }

    }

    /**
     * Called only when the Identity Solution is coming up for the first time
     */
    private void setupRelyingPartyUserAccounts() throws Exception {
        UserAdmin admin = new UserAdmin();
        String[] roleNames = admin.getRoleNames();
        boolean found = false;
        for (int i = 0; i < roleNames.length; i++) {
            if (IdentityProviderConstants.RP_USER_ROLE.equals(roleNames[i])) {
                found = true;
                break;
            }
        }
        if (!found) {
            admin.addRole(IdentityProviderConstants.RP_USER_ROLE,
                    "Relying Party Users");
        }

    }

    private void initializeEmailVerifier() throws Exception {
        ParameterAdmin admin = new ParameterAdmin();
        boolean enableEmailVerification = admin
                .getParameter(IdentityProviderConstants.PARAM_NAME_ENABLE_EMAIL_VERIFICATION) != null;

        if (!enableEmailVerification) {
            return;
        }
        String value = admin
                .getParameterValue(IdentityProviderConstants.PARAM_NAME_EMAIL_PORT);
        int port = 0;

        if (value != null) {
            port = Integer.parseInt(value);
        }

        String host = admin
                .getParameterValue(IdentityProviderConstants.PARAM_NAME_EMAIL_HOST);
        String fromAddress = admin
                .getParameterValue(IdentityProviderConstants.PARAM_NAME_EMAIL_FROM_ADDRESS);
        String username = admin
                .getParameterValue(IdentityProviderConstants.PARAM_NAME_EMAIL_USERNAME);
        String password = admin
                .getParameterValue(IdentityProviderConstants.PARAM_NAME_EMAIL_PASSWORD);

        UserStore store = UserStore.getInstance();
        Realm realm = store.getRealm();

        EmailVerifierConfig config = new EmailVerifierConfig();
        config.setFromAddress(fromAddress);
        config.setHost(host);
        if (username != null && username.length() != 0) {
            config.setPassword(password);
            config.setUsername(username);
        }

        String verificationAddress = admin
                .getParameterValue(IdentityProviderConstants.PARAM_NAME_EMAIL_VERIFICATION_EPR);

        config.setRegistrationServiceEPR(verificationAddress);
        config.setPort(port);
        if (realm.getClass().getName().equals(DefaultRealm.class.getName())) {
            EmailVerifier.init(realm, config);
        } else {
            throw new IdentityProviderException("emailNotActivated");
        }

    }

    /**
     * Called only when the Identity Solution is coming up for the first time
     */
    private void addParameters() throws Exception {
        ParameterAdmin admin = new ParameterAdmin();

        admin.createOrUpdatearameter(
                IdentityConstants.PARAM_SUPPORTED_TOKEN_TYPES,
                IdentityConstants.SAML10_URL + ","
                        + IdentityConstants.SAML11_URL + ","
                        + IdentityConstants.SAML20_URL + ","
                        + IdentityConstants.OpenId.OPENID_URL);

        admin.createOrUpdatearameter(IdentityConstants.PARAM_CARD_NAME,
                IdentityConstants.PARAM_VALUE_CARD_NAME);
        admin.createOrUpdatearameter(IdentityConstants.PARAM_VALID_PERIOD,
                IdentityConstants.PARAM_VALUE_VALID_PERIOD);

    }

    private void addActions() throws Exception {
        IPPersistenceManager db = IPPersistenceManager.getPersistanceManager();
        for (int i = 0; i < ActionDO.actions.length; i++) {
            ActionDO act = new ActionDO();
            act.setActionId(ActionDO.actions[i]);
            db.create(act);
        }
    }

}