Introduce JDBC based persistence for SAML #6241
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## master #6241 +/- ##
============================================
+ Coverage 45.66% 45.87% +0.20%
- Complexity 14080 14183 +103
============================================
Files 1632 1636 +4
Lines 100764 101283 +519
Branches 17705 17781 +76
============================================
+ Hits 46016 46462 +446
- Misses 48036 48058 +22
- Partials 6712 6763 +51
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. |
darshanasbg
changed the title
darshanasbg
reviewed
Dec 21, 2024
| @@ -0,0 +1,193 @@ | |||
| /* | |||
| * Copyright (c) 2023, WSO2 LLC. (http://www.wso2.com). | |||
darshanasbg
reviewed
Dec 21, 2024
|
|
||
| package org.wso2.carbon.identity.core.dao; | ||
|
|
||
| public class SAMLSSOServiceProviderConstants { |
darshanasbg
reviewed
Dec 21, 2024
|
|
||
| } | ||
|
|
||
| } |
darshanasbg
reviewed
Dec 21, 2024
| return this.value; | ||
| } | ||
|
|
||
| } |
darshanasbg
reviewed
Dec 21, 2024
| package org.wso2.carbon.identity.core.model; | ||
|
|
||
| /** | ||
| * This class represents a tuple of key and value. |
There was a problem hiding this comment.
Can we improve a class comment a bit, indicating how this class related to the SAML
darshanasbg
reviewed
Dec 21, 2024
| return StringUtils.isNotBlank(ISSUER_QUALIFIER) ? | ||
| issuer + IdentityRegistryResources.QUALIFIER_ID + ISSUER_QUALIFIER : issuer; | ||
| } | ||
| } |
darshanasbg
reviewed
Dec 21, 2024
| @@ -0,0 +1,49 @@ | |||
| package org.wso2.carbon.identity.core.constant; | |||
darshanasbg
reviewed
Dec 21, 2024
| public static final String UPDATED_ISSUER_QUALIFIER = "updatedIssuerQualifier"; | ||
| public static final boolean UPDATED_DO_SINGLE_LOGOUT = false; | ||
| public static final String[] UPDATED_REQUESTED_RECIPIENTS = {"updatedRecipient1", "updatedRecipient2"}; | ||
| } |
darshanasbg
reviewed
Dec 21, 2024
| @@ -0,0 +1,65 @@ | |||
| package org.wso2.carbon.identity.core.util; | |||
darshanasbg
reviewed
Dec 21, 2024
| --SAML-- | ||
| CREATE INDEX IDX_SAML2_SP_ISSUER ON IDN_SAML2_SERVICE_PROVIDER (ISSUER, TENANT_ID); | ||
| CREATE INDEX IDX_SAML2_SP_TENANT_ID ON IDN_SAML2_SERVICE_PROVIDER (TENANT_ID); | ||
| CREATE INDEX IDX_SAML2_SP_PROPERTIES ON IDN_SAML2_SP_PROPERTIES (SP_ID); |
darshanasbg
reviewed
Dec 21, 2024
| CREATE INDEX IDX_SAML2_SP_TENANT_ID ON IDN_SAML2_SERVICE_PROVIDER (TENANT_ID); | ||
| / | ||
| CREATE INDEX IDX_SAML2_SP_PROPERTIES ON IDN_SAML2_SP_PROPERTIES (SP_ID); | ||
| / |
darshanasbg
reviewed
Dec 21, 2024
| -- SAML -- | ||
| CREATE INDEX IDX_SAML2_SP_ISSUER ON IDN_SAML2_SERVICE_PROVIDER (ISSUER, TENANT_ID); | ||
| CREATE INDEX IDX_SAML2_SP_TENANT_ID ON IDN_SAML2_SERVICE_PROVIDER (TENANT_ID); | ||
| CREATE INDEX IDX_SAML2_SP_PROPERTIES ON IDN_SAML2_SP_PROPERTIES (SP_ID); |
darshanasbg
reviewed
Dec 21, 2024
| @@ -1700,4 +1752,4 @@ GO | |||
| -- Trigger AUTHORIZED_API delete by API_ID on API_RESOURCE deletion by ID -- | |||
| CREATE TRIGGER API_RESOURCE_DELETE_TRIGGER ON API_RESOURCE INSTEAD OF DELETE AS BEGIN DELETE FROM AUTHORIZED_API WHERE API_ID IN (SELECT ID FROM DELETED) DELETE FROM API_RESOURCE WHERE ID IN (SELECT ID FROM deleted) END; | |||
|
|
|||
| GO | |||
| GO | |||
darshanasbg
reviewed
Dec 21, 2024
| -- SAML -- | ||
| CREATE INDEX IDX_SAML2_SP_ISSUER ON IDN_SAML2_SERVICE_PROVIDER (ISSUER, TENANT_ID); | ||
| CREATE INDEX IDX_SAML2_SP_TENANT_ID ON IDN_SAML2_SERVICE_PROVIDER (TENANT_ID); | ||
| CREATE INDEX IDX_SAML2_SP_PROPERTIES ON IDN_SAML2_SP_PROPERTIES (SP_ID); |
darshanasbg
reviewed
Dec 21, 2024
| --SAML-- | ||
| CREATE INDEX IDX_SAML2_SP_ISSUER ON IDN_SAML2_SERVICE_PROVIDER (ISSUER, TENANT_ID); | ||
| CREATE INDEX IDX_SAML2_SP_TENANT_ID ON IDN_SAML2_SERVICE_PROVIDER (TENANT_ID); | ||
| CREATE INDEX IDX_SAML2_SP_PROPERTIES ON IDN_SAML2_SP_PROPERTIES (SP_ID); |
darshanasbg
reviewed
Dec 21, 2024
| CREATE INDEX IDX_SAML2_SP_TENANT_ID ON IDN_SAML2_SERVICE_PROVIDER (TENANT_ID); | ||
| / | ||
| CREATE INDEX IDX_SAML2_SP_PROPERTIES ON IDN_SAML2_SP_PROPERTIES (SP_ID); | ||
| / |
darshanasbg
reviewed
Dec 21, 2024
| CREATE INDEX IDX_SAML2_SP_TENANT_ID ON IDN_SAML2_SERVICE_PROVIDER (TENANT_ID); | ||
| / | ||
| CREATE INDEX IDX_SAML2_SP_PROPERTIES ON IDN_SAML2_SP_PROPERTIES (SP_ID); | ||
| / |
darshanasbg
reviewed
Dec 21, 2024
| -- SAML -- | ||
| CREATE INDEX IDX_SAML2_SP_ISSUER ON IDN_SAML2_SERVICE_PROVIDER (ISSUER, TENANT_ID); | ||
| CREATE INDEX IDX_SAML2_SP_TENANT_ID ON IDN_SAML2_SERVICE_PROVIDER (TENANT_ID); | ||
| CREATE INDEX IDX_SAML2_SP_PROPERTIES ON IDN_SAML2_SP_PROPERTIES (SP_ID); |
darshanasbg
reviewed
Dec 21, 2024
| import static org.wso2.carbon.identity.core.dao.SAMLSSOServiceProviderConstants.SAML2TableColumns.SP_ID; | ||
|
|
||
| import static java.time.ZoneOffset.UTC; | ||
| /** |
darshanasbg
reviewed
Dec 21, 2024
| import java.util.Date; | ||
| import java.util.TimeZone; | ||
|
|
||
|
|
darshanasbg
reviewed
Dec 21, 2024
| return certificateId != null ? certificateId : -1; | ||
| } | ||
|
|
||
| } |
darshanasbg
reviewed
Dec 21, 2024
Comment on lines
-257
to
+268
| throws IdentityException { | ||
| /** | ||
|
|
||
| Registry registry = getRegistry(tenantId); | ||
| * Add the service provider information to the registry. | ||
|
|
||
| * @param serviceProviderDO Service provider information object. | ||
|
|
||
| * @return True if addition successful. | ||
|
|
||
| * @throws IdentityException Error while persisting to the registry. | ||
|
|
||
| */ | ||
|
|
There was a problem hiding this comment.
Remove the method comment.
darshanasbg
reviewed
Dec 21, 2024
Comment on lines
+271
to
+272
| registry = getRegistry(tenantId); | ||
| // Registry registry = getRegistry(tenantId); |
There was a problem hiding this comment.
registry = getRegistry(tenantId); part should be removed.
Registry registry = getRegistry(tenantId); part should be uncommented.
darshanasbg
reviewed
Dec 21, 2024
| @@ -78,6 +81,8 @@ public class SAMLSSOServiceProviderDO implements Serializable { | |||
| private boolean doFrontChannelLogout; | |||
| private String frontChannelLogoutBinding; | |||
|
|
|||
| private static final String BACKCHANNEL_LOGOUT_BINDING = "BackChannel"; | |||
There was a problem hiding this comment.
Better to move out this constant to a constants class.
darshanasbg
reviewed
Dec 21, 2024
| /** | ||
| * Implementation of the SAMLSSOServiceProviderDAO interface for JDBC-based persistence. | ||
| */ | ||
|
|
| } | ||
|
|
||
| private void setServiceProviderParameters(NamedPreparedStatement statement, | ||
| SAMLSSOServiceProviderDO serviceProviderDO, int tenantId) throws SQLException { |
There was a problem hiding this comment.
Let's add a new line here
Comment on lines
+590
to
+594
| * @param serviceProviderDO | ||
| * @param tenant | ||
| * @return | ||
| * @throws SQLException | ||
| * @throws CertificateRetrievingException |
There was a problem hiding this comment.
Let's add descriptions for parameters and return values
| private X509Certificate getApplicationCertificate(SAMLSSOServiceProviderDO serviceProviderDO, Tenant tenant) | ||
| throws CertificateRetrievingException, DataAccessException { | ||
|
|
||
| // Check whether there is a certificate stored against the service provider (in the database) |
There was a problem hiding this comment.
Suggested change
| // Check whether there is a certificate stored against the service provider (in the database) | |
| // Check whether there is a certificate stored against the service provider (in the database). |
Comment on lines
+615
to
+621
| /** | ||
| * Returns the certificate reference ID for the given issuer (Service Provider) if there is one. | ||
| * | ||
| * @param issuer | ||
| * @return | ||
| * @throws SQLException | ||
| */ |
There was a problem hiding this comment.
Let's add description for parameters and return statements
|
|
||
| } | ||
|
|
||
| // IDN_SAML2_SERVICE_PROVIDER table |
There was a problem hiding this comment.
Suggested change
| // IDN_SAML2_SERVICE_PROVIDER table | |
| // IDN_SAML2_SERVICE_PROVIDER table. |
| @@ -0,0 +1,49 @@ | |||
| package org.wso2.carbon.identity.core.constant; | |||
|
|
|||
| public class TestConstants { | |||
There was a problem hiding this comment.
Let's add the class comment.
|
|
||
| import static org.mockito.Mockito.spy; | ||
|
|
||
| public class TestUtils { |
There was a problem hiding this comment.
Let's add the class comment here.
| throw new RuntimeException("No data source initiated for database: " + DB_NAME); | ||
| } | ||
|
|
||
| } |
There was a problem hiding this comment.
Let's add the missing new line here.
Comment on lines
+2057
to
+2064
| CREATE OR REPLACE TRIGGER IDN_SAML2_SERVICE_PROVIDER_TRIG | ||
| BEFORE INSERT | ||
| ON IDN_SAML2_SERVICE_PROVIDER | ||
| REFERENCING NEW AS NEW | ||
| FOR EACH ROW | ||
| BEGIN | ||
| SELECT IDN_SAML2_SERVICE_PROVIDER_SEQ.nextval INTO :NEW.ID FROM dual; | ||
| END |
There was a problem hiding this comment.
Let's fix the indentation to align with other queries.
Comment on lines
+2077
to
+2084
| CREATE OR REPLACE TRIGGER IDN_SAML2_SP_PROPERTIES_TRIG | ||
| BEFORE INSERT | ||
| ON IDN_SAML2_SP_PROPERTIES | ||
| REFERENCING NEW AS NEW | ||
| FOR EACH ROW | ||
| BEGIN | ||
| SELECT IDN_SAML2_SP_PROPERTIES_SEQ.nextval INTO :NEW.ID FROM dual; | ||
| END |
There was a problem hiding this comment.
Let's fix the indentation to align with other queries.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Proposed changes in this pull request
Introduce JDBC based persistence for SAML. Related to,