Adding on/off settings for compression of SAML Requests and Responses. Be able to ask for deflated message on getEncodedAuthnRequest, getEncodedLogoutRequest and getEncodedLogoutResponse by a deflated parameter

Author: pitbulk

core/src/main/java/com/onelogin/saml2/authn/AuthnRequest.java

@@ -37,6 +37,11 @@ public class AuthnRequest {
 	 */
 	private final String id;
 
+	/**
+     * Settings data.
+     */
+	private final Saml2Settings settings;
+
 	/**
 	 * When true the AuthNRequest will set the ForceAuthn='true'
 	 */
@@ -78,6 +83,7 @@ public AuthnRequest(Saml2Settings settings, boolean forceAuthn, boolean isPassiv
 		this.id = Util.generateUniqueID();
 		issueInstant = Calendar.getInstance();
 		this.isPassive = isPassive;
+		this.settings = settings;
 		this.forceAuthn = forceAuthn;
 		this.setNameIdPolicy = setNameIdPolicy;
 
@@ -87,12 +93,33 @@ public AuthnRequest(Saml2Settings settings, boolean forceAuthn, boolean isPassiv
 	}
 
 	/**
-	 * @return deflated, base64 encoded, unsigned AuthnRequest.
+	 * @return the base64 encoded unsigned AuthnRequest (deflated or not)
+	 *
+	 * @param deflated 
+     *				If deflated or not the encoded AuthnRequest
+     *
+	 * @throws IOException 
+	 */
+	public String getEncodedAuthnRequest(Boolean deflated) throws IOException {
+		String encodedAuthnRequest;
+		if (deflated == null) {
+			deflated = settings.isCompressRequestEnabled();
+		}
+		if (deflated) {
+			encodedAuthnRequest = Util.deflatedBase64encoded(getAuthnRequestXml());
+		} else {
+			encodedAuthnRequest = Util.base64encoder(getAuthnRequestXml());
+		}
+		return encodedAuthnRequest;
+	}
+	
+	/**
+	 * @return base64 encoded, unsigned AuthnRequest (deflated or not)
 	 * 
 	 * @throws IOException 
 	 */
 	public String getEncodedAuthnRequest() throws IOException {
-		return Util.deflatedBase64encoded(getAuthnRequestXml());
+		return getEncodedAuthnRequest(null);
 	}
 
 	/**

core/src/main/java/com/onelogin/saml2/logout/LogoutRequest.java

@@ -149,12 +149,33 @@ public LogoutRequest(Saml2Settings settings, HttpRequest request) throws XMLEnti
 	}
 
 	/**
-	 * @return the deflated base64 encoded unsigned Logout Request
+	 * @return the base64 encoded unsigned Logout Request (deflated or not)
+	 *
+	 * @param deflated 
+     *				If deflated or not the encoded Logout Request
+     *
+	 * @throws IOException 
+	 */
+	public String getEncodedLogoutRequest(Boolean deflated) throws IOException {
+		String encodedLogoutRequest;
+		if (deflated == null) {
+			deflated = settings.isCompressRequestEnabled();
+		}
+		if (deflated) {
+			encodedLogoutRequest = Util.deflatedBase64encoded(getLogoutRequestXml());
+		} else {
+			encodedLogoutRequest = Util.base64encoder(getLogoutRequestXml());
+		}
+		return encodedLogoutRequest;
+	}
+	
+	/**
+	 * @return the base64 encoded unsigned Logout Request (deflated or not)
 	 *
 	 * @throws IOException 
 	 */
 	public String getEncodedLogoutRequest() throws IOException {
-		return Util.deflatedBase64encoded(getLogoutRequestXml());
+		return getEncodedLogoutRequest(null);
 	}
 
 	/**

core/src/main/java/com/onelogin/saml2/logout/LogoutResponse.java

@@ -106,12 +106,33 @@ public LogoutResponse(Saml2Settings settings, HttpRequest request) throws XMLEnt
 	}
 
 	/**
-	 * @return the deflated, base64 encoded, unsigned Logout Response.
+	 * @return the base64 encoded unsigned Logout Response (deflated or not)
+	 *
+	 * @param deflated 
+     *				If deflated or not the encoded Logout Response
+     *
+	 * @throws IOException 
+	 */
+	public String getEncodedLogoutResponse(Boolean deflated) throws IOException {
+		String encodedLogoutResponse;
+		if (deflated == null) {
+			deflated = settings.isCompressResponseEnabled();
+		}
+		if (deflated) {
+			encodedLogoutResponse = Util.deflatedBase64encoded(getLogoutResponseXml());
+		} else {
+			encodedLogoutResponse = Util.base64encoder(getLogoutResponseXml());
+		}
+		return encodedLogoutResponse;
+	}
+	
+	/**
+	 * @return the base64 encoded, unsigned Logout Response (deflated or not)
 	 *
 	 * @throws IOException 
 	 */
 	public String getEncodedLogoutResponse() throws IOException {
-		return Util.deflatedBase64encoded(getLogoutResponseXml());
+		return getEncodedLogoutResponse(null);
 	}
 
 	/**

core/src/main/java/com/onelogin/saml2/settings/Saml2Settings.java

@@ -72,6 +72,10 @@ public class Saml2Settings {
 	private String signatureAlgorithm = Constants.RSA_SHA1;
 	private boolean rejectUnsolicitedResponsesWithInResponseTo = false;
 
+	// Compress
+	private Boolean compressRequest = true;
+	private Boolean compressResponse = true;
+
 	// Misc
 	private List<Contact> contacts = new LinkedList<Contact>();
 	private Organization organization = null;
@@ -679,6 +683,40 @@ public boolean isRejectUnsolicitedResponsesWithInResponseTo() {
 		return rejectUnsolicitedResponsesWithInResponseTo;
 	}
 
+	/**
+	 * Set the compressRequest setting value
+	 *
+	 * @param compressRequest
+	 *            the compressRequest value to be set.
+	 */
+	public void setCompressRequest(boolean compressRequest) {
+		this.compressRequest = compressRequest;
+	}
+
+	/**
+	 * @return the compressRequest setting value
+	 */
+	public boolean isCompressRequestEnabled() {
+		return compressRequest;
+	}
+
+	/**
+	 * Set the compressResponse setting value
+	 *
+	 * @param compressResponse
+	 *            the compressResponse value to be set.
+	 */
+	public void setCompressResponse(boolean compressResponse) {
+		this.compressResponse = compressResponse;
+	}
+
+	/**
+	 * @return the compressResponse setting value
+	 */
+	public boolean isCompressResponseEnabled() {
+		return compressResponse;
+	}
+
 	/**
 	 * Set contacts info that will be listed on the Service Provider metadata
 	 * 

core/src/main/java/com/onelogin/saml2/settings/SettingsBuilder.java

@@ -85,6 +85,10 @@ public class SettingsBuilder {
 	public final static String SECURITY_SIGNATURE_ALGORITHM = "onelogin.saml2.security.signature_algorithm";
 	public final static String SECURITY_REJECT_UNSOLICITED_RESPONSES_WITH_INRESPONSETO = "onelogin.saml2.security.reject_unsolicited_responses_with_inresponseto";
 
+	// Compress
+	public final static String COMPRESS_REQUEST = "onelogin.saml2.compress.request";
+	public final static String COMPRESS_RESPONSE = "onelogin.saml2.compress.response";
+	
 	// Misc
 	public final static String CONTACT_TECHNICAL_GIVEN_NAME = "onelogin.saml2.contacts.technical.given_name";
 	public final static String CONTACT_TECHNICAL_EMAIL_ADDRESS = "onelogin.saml2.contacts.technical.email_address";
@@ -166,6 +170,7 @@ public Saml2Settings build() throws IOException {
 		this.loadSpSetting();
 		this.loadIdpSetting();
 		this.loadSecuritySetting();
+		this.loadCompressSetting();
 
 		saml2Setting.setContacts(loadContacts());
 
@@ -281,6 +286,21 @@ private void loadSecuritySetting() {
 		}
 	}
 
+	/**
+	 * Loads the compress settings from the properties file
+	 */
+	private void loadCompressSetting() {
+		Boolean compressRequest = loadBooleanProperty(COMPRESS_REQUEST);
+		if (compressRequest != null) {
+			saml2Setting.setCompressRequest(compressRequest);
+		}
+
+		Boolean compressResponse = loadBooleanProperty(COMPRESS_RESPONSE);
+		if (compressResponse != null) {
+			saml2Setting.setCompressResponse(compressResponse);
+		}		
+	}
+	
 	/**
 	 * Loads the organization settings from the properties file
 	 */

core/src/test/java/com/onelogin/saml2/test/authn/AuthnRequestTest.java

@@ -3,6 +3,7 @@
 import static org.hamcrest.CoreMatchers.containsString;
 import static org.hamcrest.CoreMatchers.not;
 import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertNotEquals;
 import static org.junit.Assert.assertThat;
 
 import java.util.ArrayList;
@@ -36,10 +37,42 @@ protected String getAuthnRequestXml() {
 			}
 		};
 
-		String expectedAuthnRequestStringBase64 = Util.getFileAsString("data/requests/authn_request.xml.deflated.base64");
-		String authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
+		String expectedAuthnRequestStringBase64Deflated = Util.getFileAsString("data/requests/authn_request.xml.deflated.base64");
+		String expectedAuthnRequestStringBase64 = Util.getFileAsString("data/requests/authn_request.xml.base64");
+
+		String authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest();
+		assertEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);
+
+		authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest(null);
+		assertEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);
+
+		authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest(true);
+		assertEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);
+
+		authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest(false);
+		assertNotEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);
+		assertEquals(authnRequestStringBase64Deflated,expectedAuthnRequestStringBase64);
+		
+		settings.setCompressRequest(true);		
+		authnRequest = new AuthnRequest(settings) {
+			@Override
+			protected String getAuthnRequestXml() {
+				return authnRequestString;
+			}
+		};
+		authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest(null);
+		assertEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);
 
-		assertEquals(authnRequestStringBase64, expectedAuthnRequestStringBase64);
+		settings.setCompressRequest(false);
+		authnRequest = new AuthnRequest(settings) {
+			@Override
+			protected String getAuthnRequestXml() {
+				return authnRequestString;
+			}
+		};
+		authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest(null);
+		assertNotEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);
+		assertEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64);
 	}
 
 	/**

core/src/test/java/com/onelogin/saml2/test/logout/LogoutRequestTest.java

@@ -6,6 +6,7 @@
 import static org.junit.Assert.assertThat;
 import static org.junit.Assert.assertNull;
 import static org.junit.Assert.assertFalse;
+import static org.junit.Assert.assertNotEquals;
 import static org.junit.Assert.assertTrue;
 
 import java.util.ArrayList;
@@ -23,6 +24,7 @@
 
 import com.onelogin.saml2.logout.LogoutRequest;
 import com.onelogin.saml2.http.HttpRequest;
+import com.onelogin.saml2.authn.AuthnRequest;
 import com.onelogin.saml2.exception.XMLEntityException;
 import com.onelogin.saml2.settings.Saml2Settings;
 import com.onelogin.saml2.settings.SettingsBuilder;
@@ -49,10 +51,42 @@ protected String getLogoutRequestXml() {
 			}
 		};
 
-		String expectedLogoutRequestStringBase64 = Util.getFileAsString("data/logout_requests/logout_request_deflated.xml.base64");
-		String logoutRequestStringBase64 = logoutRequest.getEncodedLogoutRequest();
+		String expectedLogoutRequestStringBase64Deflated = Util.getFileAsString("data/logout_requests/logout_request_deflated.xml.base64");
+		String expectedLogoutRequestStringBase64 = Util.getFileAsString("data/logout_requests/logout_request.xml.base64");
+
+		String logoutRequestStringBase64Deflated = logoutRequest.getEncodedLogoutRequest();
+		assertEquals(logoutRequestStringBase64Deflated, expectedLogoutRequestStringBase64Deflated);
+
+		logoutRequestStringBase64Deflated = logoutRequest.getEncodedLogoutRequest(null);
+		assertEquals(logoutRequestStringBase64Deflated, expectedLogoutRequestStringBase64Deflated);
+
+		logoutRequestStringBase64Deflated = logoutRequest.getEncodedLogoutRequest(true);
+		assertEquals(logoutRequestStringBase64Deflated, expectedLogoutRequestStringBase64Deflated);
+
+		logoutRequestStringBase64Deflated = logoutRequest.getEncodedLogoutRequest(false);
+		assertNotEquals(logoutRequestStringBase64Deflated, expectedLogoutRequestStringBase64Deflated);
+		assertEquals(logoutRequestStringBase64Deflated,expectedLogoutRequestStringBase64);
+		
+		settings.setCompressRequest(true);
+		logoutRequest = new LogoutRequest(settings) {
+			@Override
+			protected String getLogoutRequestXml() {
+				return logoutRequestString;
+			}
+		};
+		logoutRequestStringBase64Deflated = logoutRequest.getEncodedLogoutRequest(null);
+		assertEquals(logoutRequestStringBase64Deflated, expectedLogoutRequestStringBase64Deflated);
 
-		assertEquals(logoutRequestStringBase64, expectedLogoutRequestStringBase64);
+		settings.setCompressRequest(false);
+		logoutRequest = new LogoutRequest(settings) {
+			@Override
+			protected String getLogoutRequestXml() {
+				return logoutRequestString;
+			}
+		};
+		logoutRequestStringBase64Deflated = logoutRequest.getEncodedLogoutRequest(null);
+		assertNotEquals(logoutRequestStringBase64Deflated, expectedLogoutRequestStringBase64Deflated);
+		assertEquals(logoutRequestStringBase64Deflated, expectedLogoutRequestStringBase64);
 	}
 
 	/**