001 //$HeadURL: svn+ssh://rbezema@svn.wald.intevation.org/deegree/base/branches/2.2_testing/src/org/deegree/security/owsrequestvalidator/wms/GetMapResponseValidator.java $
002 /*---------------- FILE HEADER ------------------------------------------
003
004 This file is part of deegree.
005 Copyright (C) 2001-2008 by:
006 EXSE, Department of Geography, University of Bonn
007 http://www.giub.uni-bonn.de/deegree/
008 lat/lon GmbH
009 http://www.lat-lon.de
010
011 This library is free software; you can redistribute it and/or
012 modify it under the terms of the GNU Lesser General Public
013 License as published by the Free Software Foundation; either
014 version 2.1 of the License, or (at your option) any later version.
015
016 This library is distributed in the hope that it will be useful,
017 but WITHOUT ANY WARRANTY; without even the implied warranty of
018 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
019 Lesser General Public License for more details.
020
021 You should have received a copy of the GNU Lesser General Public
022 License along with this library; if not, write to the Free Software
023 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
024
025 Contact:
026
027 Andreas Poth
028 lat/lon GmbH
029 Aennchenstr. 19
030 53177 Bonn
031 Germany
032 E-Mail: poth@lat-lon.de
033
034 Prof. Dr. Klaus Greve
035 Department of Geography
036 University of Bonn
037 Meckenheimer Allee 166
038 53115 Bonn
039 Germany
040 E-Mail: greve@giub.uni-bonn.de
041
042 ---------------------------------------------------------------------------*/
043 package org.deegree.security.owsrequestvalidator.wms;
044
045 import org.deegree.framework.util.MimeTypeMapper;
046 import org.deegree.ogcwebservices.InvalidParameterValueException;
047 import org.deegree.ogcwebservices.OGCWebServiceRequest;
048 import org.deegree.security.drm.model.User;
049 import org.deegree.security.owsproxy.Request;
050 import org.deegree.security.owsrequestvalidator.Policy;
051 import org.deegree.security.owsrequestvalidator.ResponseValidator;
052
053 /**
054 *
055 * @author <a href="mailto:poth@lat-lon.de">Andreas Poth </a>
056 * @author last edited by: $Author: apoth $
057 *
058 * @version $Revision: 9346 $, $Date: 2007-12-27 17:39:07 +0100 (Do, 27 Dez 2007) $
059 */
060 class GetMapResponseValidator extends ResponseValidator {
061
062 /**
063 * @param policy
064 */
065 public GetMapResponseValidator( Policy policy ) {
066 super( policy );
067 }
068
069 /**
070 * validates the passed object as a response to a OWS request. The validity of the response may
071 * is assigned to specific user rights. If the passed user is <>null this will be evaluated.
072 * <br>
073 * the reponse may contain three valid kinds of objects:
074 * <ul>
075 * <li>a serialized image
076 * <li>a xml encoded exception
077 * <li>a svg-encoded vector image
078 * </ul>
079 * Each of these types can be identified by the mime-type of the response that is also passed to
080 * the method. <br>
081 * If something basic went wrong it is possible that not further specified kind of object is
082 * passed as response. In this case the method will throw an
083 * <tt>InvalidParameterValueException</tt> to avoid sending bad responses to the client.
084 *
085 * @param service
086 * service which produced the response (WMS, WFS ...)
087 * @param response
088 * @param mime
089 * mime-type of the response
090 * @param user
091 * @return
092 * @throws InvalidParameterValueException
093 * @see GetMapRequestValidator#validateRequest(OGCWebServiceRequest, User)
094 */
095 public byte[] validateResponse( String service, byte[] response, String mime, User user )
096 throws InvalidParameterValueException {
097
098 Request req = policy.getRequest( service, "GetMap" );
099 // request is valid because no restrictions are made
100 if ( req.isAny() )
101 return response;
102
103 //Condition postCondition = req.getPostConditions();
104
105 if ( MimeTypeMapper.isKnownImageType( mime ) ) {
106 response = validateImage( response, mime, user );
107 } else if ( MimeTypeMapper.isKnownOGCType( mime ) ) {
108 // if the mime-type isn't an image type but a known
109 // OGC mime-type it must be an XML document.
110 // probably it is an exception but it also could be
111 // a GML document
112 response = validateXML( response, mime, user );
113 } else if ( mime.equals( "text/xml" ) ) {
114 // if the mime-type isn't an image type but 'text/xml'
115 // it could be an exception
116 response = validateXML( response, mime, user );
117 } else {
118 throw new InvalidParameterValueException( UNKNOWNMIMETYPE + mime );
119 }
120
121 return response;
122 }
123
124 /**
125 * validates the passed object/image to be valid against the policy
126 *
127 * @param image
128 * @param mime
129 * @param user
130 * @throws InvalidParameterValueException
131 */
132 private byte[] validateImage( byte[] image, String mime, User user )
133 throws InvalidParameterValueException {
134 // TODO
135 // define useful post-validation for images
136 // at the moment everything is valid
137
138 return image;
139 }
140
141 /**
142 * validates the passed object/xml to be valid against the policy
143 *
144 * @param xml
145 * @param mime
146 * @param user
147 * @throws InvalidParameterValueException
148 */
149 private byte[] validateXML( byte[] xml, String mime, User user )
150 throws InvalidParameterValueException {
151 // TODO
152 // define useful post-validation for xml-documents
153 // at the moment everything is valid
154 return xml;
155 }
156 }