Code clean

Author: pitbulk

core/src/main/java/com/onelogin/saml2/authn/AuthnRequest.java

@@ -63,6 +63,12 @@ public class AuthnRequest {
 	 */
 	private final Calendar issueInstant;
 
+	/**
+	 * Constructs the AuthnRequest object.
+	 *
+	 * @param settings
+	 *            OneLogin_Saml2_Settings
+	 */
 	public AuthnRequest(Saml2Settings settings) {
 		this(settings, false, false, true);
 	}

core/src/main/java/com/onelogin/saml2/authn/SamlResponse.java

@@ -6,10 +6,10 @@
 import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
+import java.util.Objects;
 
 import javax.xml.xpath.XPathExpressionException;
 
-import org.apache.commons.lang3.ObjectUtils;
 import org.joda.time.DateTime;
 import org.joda.time.Instant;
 import org.slf4j.Logger;
@@ -187,7 +187,7 @@ public boolean isValid(String requestId) {
 				}
 
 				// Check if the InResponseTo of the Response matches the ID of the AuthNRequest (requestId) if provided
-				if (requestId != null && !ObjectUtils.equals(responseInResponseTo, requestId)) {
+				if (requestId != null && !Objects.equals(responseInResponseTo, requestId)) {
 						throw new Exception("The InResponseTo of the Response: " + responseInResponseTo
 								+ ", does not match the ID of the AuthNRequest sent by the SP: " + requestId);
 				}
@@ -290,7 +290,7 @@ public boolean isValid(String requestId) {
 
 			LOGGER.debug("SAMLResponse validated --> " + samlResponseString);
 			return true;
-		} catch (Error | Exception e) {
+		} catch (Exception e) {
 			error = e.getMessage();
 			LOGGER.debug("SAMLResponse invalid --> " + samlResponseString);
 			LOGGER.error(error);
@@ -417,7 +417,6 @@ public HashMap<String,String> getNameIdData() throws Exception {
 					nameIdData.put("Format", nameIdElem.getAttribute("Format"));
 				}
 				if (nameIdElem.hasAttribute("SPNameQualifier")) {
-					String spId = settings.getSpEntityId();
 					String spNameQualifier = nameIdElem.getAttribute("SPNameQualifier");
 					if (settings.isStrict() && !spNameQualifier.equals(settings.getSpEntityId())) {
 						throw new Exception("The SPNameQualifier value mistmatch the SP entityID value.");
@@ -891,7 +890,7 @@ public void setDestinationUrl(String urld) {
      */
 	public String getError() {
 		if (error != null) {
-			return error.toString();
+			return error;
 		}
 		return null;
 	}

core/src/main/java/com/onelogin/saml2/http/HttpRequest.java

@@ -112,8 +112,14 @@ public Map<String, List<String>> getParameters() {
 
     @Override
     public boolean equals(Object o) {
-        if (this == o) return true;
-        if (o == null || getClass() != o.getClass()) return false;
+        if (this == o) {
+        	return true;
+        }
+
+        if (o == null || getClass() != o.getClass()) {
+        	return false;
+        }
+
         HttpRequest that = (HttpRequest) o;
         return Objects.equals(requestURL, that.requestURL) &&
                 Objects.equals(parameters, that.parameters);

core/src/main/java/com/onelogin/saml2/logout/LogoutRequest.java

@@ -105,7 +105,7 @@ public LogoutRequest(Saml2Settings settings, HttpRequest request, String nameId,
 
 		if (request != null) {
 			samlLogoutRequest = request.getParameter("SAMLRequest");
-			currentUrl = request.getRequestURL().toString();
+			currentUrl = request.getRequestURL();
 		}
 
 		if (samlLogoutRequest == null) {

core/src/main/java/com/onelogin/saml2/logout/LogoutResponse.java

@@ -95,7 +95,7 @@ public LogoutResponse(Saml2Settings settings, HttpRequest request) throws XMLEnt
 
 		String samlLogoutResponse = null;
 		if (request != null) {
-			currentUrl = request.getRequestURL().toString();
+			currentUrl = request.getRequestURL();
 			samlLogoutResponse = request.getParameter("SAMLResponse");
 		}
 
@@ -148,8 +148,6 @@ protected String getLogoutResponseXml() {
      * @param requestId
      *              The ID of the LogoutRequest sent by this SP to the IdP
      *
-     * @throws Exception
-     * 
      * @return if the SAML LogoutResponse is or not valid
      */
 	public Boolean isValid(String requestId) {

core/src/main/java/com/onelogin/saml2/model/RequestedAttribute.java

@@ -1,6 +1,5 @@
 package com.onelogin.saml2.model;
 
-import java.util.ArrayList;
 import java.util.List;
 
 

core/src/main/java/com/onelogin/saml2/settings/Metadata.java

@@ -1,7 +1,6 @@
 package com.onelogin.saml2.settings;
 
 import java.net.URL;
-import java.util.ArrayList;
 import java.util.Calendar;
 import java.util.HashMap;
 import java.util.List;
@@ -147,11 +146,11 @@ private StrSubstitutor generateSubstitutor(Saml2Settings settings) throws Certif
 		valueMap.put("spNameIDFormat", settings.getSpNameIDFormat());
 		valueMap.put("spAssertionConsumerServiceBinding", settings.getSpAssertionConsumerServiceBinding());
 		valueMap.put("spAssertionConsumerServiceUrl", settings.getSpAssertionConsumerServiceUrl().toString());
-		valueMap.put("sls", toSLSXml(settings.getSpSingleLogoutServiceUrl(), settings.getSpSingleLogoutServiceBinding()).toString());
+		valueMap.put("sls", toSLSXml(settings.getSpSingleLogoutServiceUrl(), settings.getSpSingleLogoutServiceBinding()));
 
 		valueMap.put("strAttributeConsumingService", getAttributeConsumingServiceXml());
 
-		valueMap.put("strKeyDescriptor", toX509KeyDescriptorsXML(settings.getSPcert()).toString());
+		valueMap.put("strKeyDescriptor", toX509KeyDescriptorsXML(settings.getSPcert()));
 		valueMap.put("strContacts", toContactsXml(settings.getContacts()));
 		valueMap.put("strOrganization", toOrganizationXml(settings.getOrganization(), "en"));
 

core/src/main/java/com/onelogin/saml2/util/Constants.java

@@ -6,10 +6,12 @@
  * A class that contains several constants related to the SAML protocol
  */ 
 public final class Constants {
-	// Value added to the current time in time condition validations
+	/**
+     * Value added to the current time in time condition validations.
+     */
 	public static Integer ALOWED_CLOCK_DRIFT = 180; // 3 min in seconds
 
-	// NameID Formats
+	// NameID Formats	
 	public static String NAMEID_EMAIL_ADDRESS = "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress";
 	public static String NAMEID_X509_SUBJECT_NAME = "urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName";
 	public static String NAMEID_WINDOWS_DOMAIN_QUALIFIED_NAME = "urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName";
@@ -95,4 +97,8 @@ public final class Constants {
 
 	public static String ENVSIG = "http://www.w3.org/2000/09/xmldsig#enveloped-signature";
 
+	private Constants() {
+	      //not called
+	}
+	
 }

core/src/main/java/com/onelogin/saml2/util/SchemaFactory.java

@@ -13,6 +13,11 @@
  * A class that read SAML schemas that will be used to validate XMLs of the OneLogin's Java Toolkit 
  */ 
 public abstract class SchemaFactory {
+	
+	private SchemaFactory() {
+	      //not called
+	}
+	
 	public static final URL SAML_SCHEMA_METADATA_2_0 = SchemaFactory.class
 			.getResource("/schemas/saml-schema-metadata-2.0.xsd");
 	public static final URL SAML_SCHEMA_PROTOCOL_2_0 = SchemaFactory.class

core/src/main/java/com/onelogin/saml2/util/Util.java

@@ -54,7 +54,6 @@
 import org.apache.commons.codec.binary.Base64;
 import org.apache.commons.codec.digest.DigestUtils;
 import org.apache.commons.lang3.StringUtils;
-import org.apache.xml.security.encryption.CipherData;
 import org.apache.xml.security.encryption.EncryptedData;
 import org.apache.xml.security.encryption.EncryptedKey;
 import org.apache.xml.security.encryption.XMLCipher;
@@ -102,6 +101,10 @@ public final class Util {
 
 	private static final Logger log = LoggerFactory.getLogger(Util.class);
 
+	private Util() {
+	      //not called
+	}
+	
 	/**
 	 * This function load an XML string in a save way. Prevent XEE/XXE Attacks
 	 *
@@ -144,6 +147,7 @@ public static NodeList query(Document dom, String query, Node context) throws XP
 		XPath xpath = XPathFactory.newInstance().newXPath();
 		xpath.setNamespaceContext(new NamespaceContext() {
 
+			@Override
 			public String getNamespaceURI(String prefix) {
 				String result = null;
 				if (prefix.equals("samlp") || prefix.equals("samlp2")) {
@@ -160,11 +164,13 @@ public String getNamespaceURI(String prefix) {
 				return result;
 			}
 
+			@Override
 			public String getPrefix(String namespaceURI) {
 				return null;
 			}
 
 			@SuppressWarnings("rawtypes")
+			@Override
 			public Iterator getPrefixes(String namespaceURI) {
 				return null;
 			}
@@ -262,28 +268,28 @@ public static Document convertStringToDocument(String xmlStr) throws ParserConfi
 		try {
 			// do not include external general entities
 			docfactory.setAttribute("http://xml.org/sax/features/external-general-entities", Boolean.FALSE);
-		} catch (Throwable t) {}
+		} catch (Exception e) {}
 		try {
 			// do not include external parameter entities or the external DTD subset
 			docfactory.setAttribute("http://xml.org/sax/features/external-parameter-entities", Boolean.FALSE);
-		} catch (Throwable t) {}
+		} catch (Exception e) {}
 		try {
 			docfactory.setAttribute("http://apache.org/xml/features/disallow-doctype-decl", Boolean.TRUE);
-		} catch (Throwable t) {}
+		} catch (Exception e) {}
 		try {
 			docfactory.setAttribute("http://javax.xml.XMLConstants/feature/secure-processing", Boolean.TRUE);
-		} catch (Throwable t) {}
+		} catch (Exception e) {}
 		try {
 			// ignore the external DTD completely
 			docfactory.setAttribute("http://apache.org/xml/features/nonvalidating/load-external-dtd", Boolean.FALSE);
-		} catch (Throwable t) {}
+		} catch (Exception e) {}
 		try {
 			// build the grammar but do not use the default attributes and attribute types information it contains
 			docfactory.setAttribute("http://apache.org/xml/features/nonvalidating/load-dtd-grammar", Boolean.FALSE);
-		} catch (Throwable t) {}
+		} catch (Exception e) {}
 		try {
 			docfactory.setFeature(XMLConstants.FEATURE_SECURE_PROCESSING, true);
-		} catch (Throwable t) {}
+		} catch (Exception e) {}
 
 		DocumentBuilder builder = docfactory.newDocumentBuilder();
 		Document doc = builder.parse(new InputSource(new StringReader(xmlStr)));