001    //$HeadURL: svn+ssh://rbezema@svn.wald.intevation.org/deegree/base/branches/2.2_testing/src/org/deegree/security/owsrequestvalidator/wfs/GetFeatureResponseValidator.java $
002    /*----------------    FILE HEADER  ------------------------------------------
003    
004     This file is part of deegree.
005     Copyright (C) 2001-2008 by:
006     EXSE, Department of Geography, University of Bonn
007     http://www.giub.uni-bonn.de/deegree/
008     lat/lon GmbH
009     http://www.lat-lon.de
010    
011     This library is free software; you can redistribute it and/or
012     modify it under the terms of the GNU Lesser General Public
013     License as published by the Free Software Foundation; either
014     version 2.1 of the License, or (at your option) any later version.
015    
016     This library is distributed in the hope that it will be useful,
017     but WITHOUT ANY WARRANTY; without even the implied warranty of
018     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
019     Lesser General Public License for more details.
020    
021     You should have received a copy of the GNU Lesser General Public
022     License along with this library; if not, write to the Free Software
023     Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
024    
025     Contact:
026    
027     Andreas Poth
028     lat/lon GmbH
029     Aennchenstr. 19
030     53177 Bonn
031     Germany
032     E-Mail: poth@lat-lon.de
033    
034     Prof. Dr. Klaus Greve
035     Department of Geography
036     University of Bonn
037     Meckenheimer Allee 166
038     53115 Bonn
039     Germany
040     E-Mail: greve@giub.uni-bonn.de
041    
042     ---------------------------------------------------------------------------*/
043    package org.deegree.security.owsrequestvalidator.wfs;
044    
045    import java.io.ByteArrayInputStream;
046    import java.io.ObjectInputStream;
047    
048    import org.deegree.framework.util.MimeTypeMapper;
049    import org.deegree.i18n.Messages;
050    import org.deegree.model.feature.FeatureCollection;
051    import org.deegree.ogcwebservices.InvalidParameterValueException;
052    import org.deegree.ogcwebservices.OGCWebServiceRequest;
053    import org.deegree.security.drm.model.User;
054    import org.deegree.security.owsproxy.Request;
055    import org.deegree.security.owsrequestvalidator.Policy;
056    import org.deegree.security.owsrequestvalidator.ResponseValidator;
057    import org.deegree.security.owsrequestvalidator.wms.GetMapRequestValidator;
058    
059    /**
060     * 
061     * @author <a href="mailto:poth@lat-lon.de">Andreas Poth </a>
062     * @author last edited by: $Author: apoth $
063     * 
064     * @version $Revision: 9346 $, $Date: 2007-12-27 17:39:07 +0100 (Do, 27 Dez 2007) $
065     */
066    class GetFeatureResponseValidator extends ResponseValidator {
067    
068        /**
069         * @param policy
070         */
071        public GetFeatureResponseValidator( Policy policy ) {
072            super( policy );
073        }
074    
075        /**
076         * validates the passed object as a response to a OWS request. The validity of the response may
077         * is assigned to specific user rights. If the passed user is <>null this will be evaluated.
078         * <br>
079         * the reponse may contain three valid kinds of objects:
080         * <ul>
081         * <li>a xml encoded exception
082         * <li>a GML document
083         * <li>a XML document
084         * <li>a serialized deegree FeatureCollection
085         * <li>any other kind of document that is valid against the formats defined for GetFeature in
086         * the capabilities
087         * </ul>
088         * Each of these types can be identified by the mime-type of the response that is also passed to
089         * the method. <br>
090         * If something basic went wrong it is possible that not further specified kind of object is
091         * passed as response. In this case the method will throw an
092         * <tt>InvalidParameterValueException</tt> to avoid sending bad responses to the client.
093         * 
094         * @param service
095         *            service which produced the response (WMS, WFS ...)
096         * @param response
097         * @param mime
098         *            mime-type of the response
099         * @param user
100         * @return
101         * @throws InvalidParameterValueException
102         * @see GetMapRequestValidator#validateRequest(OGCWebServiceRequest, User)
103         */
104        public byte[] validateResponse( String service, byte[] response, String mime, User user )
105                                throws InvalidParameterValueException {
106    
107            Request req = policy.getRequest( service, "GetFeature" );
108            // request is valid because no restrictions are made
109            if ( req.isAny() ) {
110                return response;
111            }
112    
113            // Condition condition = req.getPostConditions();
114    
115            if ( MimeTypeMapper.isKnownOGCType( mime ) ) {
116                // if the mime-type isn't an image type but a known
117                // OGC mime-type it must be an XML document.
118                // probably it is an exception but it also could be
119                // a GML document
120                response = validateXML( response, mime, user );
121            } else if ( mime.equals( "text/xml" ) ) {
122                // if the mime-type isn't an image type but 'text/xml'
123                // it could be an exception
124                response = validateXML( response, mime, user );
125            } else if ( mime.equals( "application/octet-stream" ) ) {
126                response = validateBinaryResult( response, user );
127            } else {
128                throw new InvalidParameterValueException( UNKNOWNMIMETYPE + mime );
129            }
130    
131            return response;
132        }
133    
134        /**
135         * validates the passed byte array to be valid against the policy
136         * 
137         * @param xml
138         * @param mime
139         * @param user
140         * @throws InvalidParameterValueException
141         */
142        private byte[] validateXML( byte[] xml, String mime, User user )
143                                throws InvalidParameterValueException {
144            // TODO
145            // define useful post-validation for xml-documents
146            // at the moment everything is valid
147            return xml;
148        }
149    
150        /**
151         * validates the passed byte array to be valid against the policy. At the moment just a
152         * org.deegree.model.feature.FeatureCollection is a valid response if mime type is
153         * application/octet-stream. This may be enhanced in future versions.
154         * 
155         * @param objects
156         * @param user
157         * @throws InvalidParameterValueException
158         */
159        private byte[] validateBinaryResult( byte[] object, User user )
160                                throws InvalidParameterValueException {
161            try {
162                ByteArrayInputStream bis = new ByteArrayInputStream( object );
163                ObjectInputStream ois = new ObjectInputStream( bis );
164                Object obj = ois.readObject();
165    
166                if ( !( obj instanceof FeatureCollection ) ) {
167                    String s = Messages.getMessage( "OWSPROXY_INVALID_GETFEATURE_RESPONSETYPE" );
168                    throw new InvalidParameterValueException( s );
169                }
170            } catch ( Exception e ) {
171                throw new InvalidParameterValueException( e );
172            }
173    
174            return object;
175        }
176    }