org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService 連携図

公開メンバ関数
void	addBranch (final String userInum)

boolean	containsBranch (final String userInum)

void	prepareBranch (final String userInum)

DeviceRegistration	findUserDeviceRegistration (String userInum, String deviceId, String... returnAttributes)

List< DeviceRegistration >	findUserDeviceRegistrations (String userInum, String appId, String ... returnAttributes)

List< DeviceRegistration >	findDeviceRegistrationsByKeyHandle (String appId, String keyHandle, String ... returnAttributes)

DeviceRegistration	findOneStepUserDeviceRegistration (String deviceId, String... returnAttributes)

void	addUserDeviceRegistration (String userInum, DeviceRegistration deviceRegistration)

boolean	attachUserDeviceRegistration (String userInum, String oneStepDeviceId)

void	addOneStepDeviceRegistration (DeviceRegistration deviceRegistration)

void	updateDeviceRegistration (String userInum, DeviceRegistration deviceRegistration)

void	disableUserDeviceRegistration (DeviceRegistration deviceRegistration)

void	removeUserDeviceRegistration (DeviceRegistration deviceRegistration)

List< DeviceRegistration >	getExpiredDeviceRegistrations (BatchOperation< DeviceRegistration > batchOperation, Date expirationDate, String[] returnAttributes, int sizeLimit, int chunkSize)

int	getCountDeviceRegistrations (String appId)

String	getDnForU2fDevice (String userInum, String oxId)

String	getBaseDnForU2fUserDevices (String userInum)

String	getDnForOneStepU2fDevice (String deviceRegistrationId)

int	getKeyHandleHashCode (byte[] keyHandle)

非公開変数類
Logger	log

PersistenceEntryManager	ldapEntryManager

UserService	userService

StaticConfiguration	staticConfiguration

詳解

Provides operations with user U2F devices

著者: Yuriy Movchan Date: 05/14/2015

関数詳解

◆ addBranch()

void org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.addBranch ( final String userInum )

inline

                                                      {
                 SimpleBranch branch = new SimpleBranch();
                 branch.setOrganizationalUnitName("fido");
                 branch.setDn(getBaseDnForU2fUserDevices(userInum));
 
                 ldapEntryManager.persist(branch);
         }

◆ addOneStepDeviceRegistration()

void org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.addOneStepDeviceRegistration ( DeviceRegistration deviceRegistration )

inline

                                                                                         {
                 ldapEntryManager.persist(deviceRegistration);
         }

◆ addUserDeviceRegistration()

void org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.addUserDeviceRegistration	(	String	userInum,
		DeviceRegistration	deviceRegistration
	)

inline

                                                                                                       {
                 prepareBranch(userInum);
 
                 ldapEntryManager.persist(deviceRegistration);
         }

◆ attachUserDeviceRegistration()

boolean org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.attachUserDeviceRegistration	(	String	userInum,
		String	oneStepDeviceId
	)

inline

                                                                                              {
                 String oneStepDeviceDn = getDnForOneStepU2fDevice(oneStepDeviceId);
 
                 // Load temporary stored device registration
                 DeviceRegistration deviceRegistration = ldapEntryManager.find(DeviceRegistration.class, oneStepDeviceDn);
                 if (deviceRegistration == null) {
                         return false;
                 }
 
                 // Remove temporary stored device registration
                 removeUserDeviceRegistration(deviceRegistration);
 
                 // Attach user device registration to user
                 String deviceDn = getDnForU2fDevice(userInum, deviceRegistration.getId());
 
                 deviceRegistration.setDn(deviceDn);
                 addUserDeviceRegistration(userInum, deviceRegistration);
 
                 return true;
         }

◆ containsBranch()

boolean org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.containsBranch ( final String userInum )

inline

                                                              {
                 return ldapEntryManager.contains(SimpleBranch.class, getBaseDnForU2fUserDevices(userInum));
         }

◆ disableUserDeviceRegistration()

void org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.disableUserDeviceRegistration ( DeviceRegistration deviceRegistration )

inline

                                                                                          {
                 deviceRegistration.setStatus(DeviceRegistrationStatus.COMPROMISED);
 
                 ldapEntryManager.merge(deviceRegistration);
         }

◆ findDeviceRegistrationsByKeyHandle()

List<DeviceRegistration> org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.findDeviceRegistrationsByKeyHandle	(	String	appId,
		String	keyHandle,
		String ...	returnAttributes
	)

inline

                                                                                                                                         {
                 if (org.xdi.util.StringHelper.isEmpty(appId) || StringHelper.isEmpty(keyHandle)) {
                         return new ArrayList<DeviceRegistration>(0);
                 }
 
                 byte[] keyHandleDecoded = Base64Util.base64urldecode(keyHandle);
 
                 String baseDn = userService.getDnForUser(null);
 
                 Filter deviceObjectClassFilter = Filter.createEqualityFilter("objectClass", "oxDeviceRegistration");
                 Filter deviceHashCodeFilter = Filter.createEqualityFilter("oxDeviceHashCode", String.valueOf(getKeyHandleHashCode(keyHandleDecoded)));
                 Filter deviceKeyHandleFilter = Filter.createEqualityFilter("oxDeviceKeyHandle", keyHandle);
                 Filter appIdFilter = Filter.createEqualityFilter("oxApplication", appId);
 
                 Filter filter = Filter.createANDFilter(deviceObjectClassFilter, deviceHashCodeFilter, appIdFilter, deviceKeyHandleFilter);
 
                 return ldapEntryManager.findEntries(baseDn, DeviceRegistration.class, filter, returnAttributes);
         }

◆ findOneStepUserDeviceRegistration()

DeviceRegistration org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.findOneStepUserDeviceRegistration	(	String	deviceId,
		String...	returnAttributes
	)

inline

                                                                                                                  {
                 String deviceDn = getDnForOneStepU2fDevice(deviceId);
 
                 return ldapEntryManager.find(DeviceRegistration.class, deviceDn);
         }

◆ findUserDeviceRegistration()

DeviceRegistration org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.findUserDeviceRegistration	(	String	userInum,
		String	deviceId,
		String...	returnAttributes
	)

inline

                                                                                                                            {
                 prepareBranch(userInum);
 
                 String deviceDn = getDnForU2fDevice(userInum, deviceId);
 
                 return ldapEntryManager.find(DeviceRegistration.class, deviceDn, returnAttributes);
         }

◆ findUserDeviceRegistrations()

List<DeviceRegistration> org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.findUserDeviceRegistrations	(	String	userInum,
		String	appId,
		String ...	returnAttributes
	)

inline

                                                                                                                                 {
                 prepareBranch(userInum);
 
                 String baseDnForU2fDevices = getBaseDnForU2fUserDevices(userInum);
                 Filter appIdFilter = Filter.createEqualityFilter("oxApplication", appId);
 
                 return ldapEntryManager.findEntries(baseDnForU2fDevices, DeviceRegistration.class, appIdFilter, returnAttributes);
         }

◆ getBaseDnForU2fUserDevices()

String org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.getBaseDnForU2fUserDevices ( String userInum )

inline

                                                                   {
                 final String userBaseDn = userService.getDnForUser(userInum); // "ou=fido,inum=1234,ou=people,o=@!1111,o=gluu"
                 return String.format("ou=fido,%s", userBaseDn);
         }

◆ getCountDeviceRegistrations()

int org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.getCountDeviceRegistrations ( String appId )

inline

                                                          {
         String baseDn = userService.getDnForUser(null);
         
         Filter appIdFilter = Filter.createEqualityFilter("oxApplication", appId);
         Filter activeDeviceFilter = Filter.createEqualityFilter("oxStatus", DeviceRegistrationStatus.ACTIVE.getValue());
         Filter resultFilter = Filter.createANDFilter(appIdFilter, activeDeviceFilter);
         
         return ldapEntryManager.countEntries(baseDn, DeviceRegistration.class, resultFilter);
     }

◆ getDnForOneStepU2fDevice()

String org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.getDnForOneStepU2fDevice ( String deviceRegistrationId )

inline

                                                                             {
                 final String u2fBaseDn = staticConfiguration.getBaseDn().getU2fBase(); // ou=registered_devices,ou=u2f,o=@!1111,o=gluu
                 if (StringHelper.isEmpty(deviceRegistrationId)) {
                         return String.format("ou=registered_devices,%s", u2fBaseDn);
                 }
 
                 return String.format("oxid=%s,ou=registered_devices,%s", deviceRegistrationId, u2fBaseDn);
         }

◆ getDnForU2fDevice()

String org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.getDnForU2fDevice	(	String	userInum,
		String	oxId
	)

inline

Build DN string for U2F user device

                                                                       {
                 String baseDnForU2fDevices = getBaseDnForU2fUserDevices(userInum);
                 if (StringHelper.isEmpty(oxId)) {
                         return baseDnForU2fDevices;
                 }
                 return String.format("oxId=%s,%s", oxId, baseDnForU2fDevices);
         }

◆ getExpiredDeviceRegistrations()

List<DeviceRegistration> org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.getExpiredDeviceRegistrations	(	BatchOperation< DeviceRegistration >	batchOperation,
		Date	expirationDate,
		String []	returnAttributes,
		int	sizeLimit,
		int	chunkSize
	)

inline

                                                                                                                                                                                                        {
                 final String u2fBaseDn = getDnForOneStepU2fDevice(null);
                 Filter expirationFilter = Filter.createLessOrEqualFilter("creationDate", ldapEntryManager.encodeTime(expirationDate));
 
                 List<DeviceRegistration> deviceRegistrations = ldapEntryManager.findEntries(u2fBaseDn, DeviceRegistration.class, expirationFilter, SearchScope.SUB, returnAttributes, batchOperation, 0, sizeLimit, chunkSize);
 
                 return deviceRegistrations;
         }

◆ getKeyHandleHashCode()

int org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.getKeyHandleHashCode ( byte [] keyHandle )

inline

                                                       {
                 int hash = 0;
                 for (int j = 0; j < keyHandle.length; j++) {
                         hash += keyHandle[j]*j;
                 }
 
                 return hash;
     }

◆ prepareBranch()

void org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.prepareBranch ( final String userInum )

inline

                                                          {
                 // Create U2F user device registrations branch if needed
                 if (!containsBranch(userInum)) {
                         addBranch(userInum);
                 }
         }

◆ removeUserDeviceRegistration()

void org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.removeUserDeviceRegistration ( DeviceRegistration deviceRegistration )

inline

                                                                                         {
                 ldapEntryManager.remove(deviceRegistration);
         }

◆ updateDeviceRegistration()

void org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.updateDeviceRegistration	(	String	userInum,
		DeviceRegistration	deviceRegistration
	)

inline

                                                                                                      {
                 prepareBranch(userInum);
 
                 ldapEntryManager.merge(deviceRegistration);
         }

メンバ詳解

◆ ldapEntryManager

PersistenceEntryManager org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.ldapEntryManager

private

◆ log

Logger org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.log

private

◆ staticConfiguration

StaticConfiguration org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.staticConfiguration

private

◆ userService

UserService org.xdi.oxauth.service.fido.u2f.DeviceRegistrationService.userService

private

このクラス詳解は次のファイルから抽出されました:

D:/AppData/OpenId/gluu/src/oxAuth/Server/src/main/java/org/xdi/oxauth/service/fido/u2f/DeviceRegistrationService.java

公開メンバ関数

非公開変数類

詳解

関数詳解

◆ addBranch()

◆ addOneStepDeviceRegistration()

◆ addUserDeviceRegistration()

◆ attachUserDeviceRegistration()

◆ containsBranch()

◆ disableUserDeviceRegistration()

◆ findDeviceRegistrationsByKeyHandle()

◆ findOneStepUserDeviceRegistration()

◆ findUserDeviceRegistration()

◆ findUserDeviceRegistrations()

◆ getBaseDnForU2fUserDevices()

◆ getCountDeviceRegistrations()

◆ getDnForOneStepU2fDevice()

◆ getDnForU2fDevice()

◆ getExpiredDeviceRegistrations()

◆ getKeyHandleHashCode()

◆ prepareBranch()

◆ removeUserDeviceRegistration()

◆ updateDeviceRegistration()

メンバ詳解

◆ ldapEntryManager

◆ log

◆ staticConfiguration

◆ userService