/*

 * reserved comment block

 * DO NOT REMOVE OR ALTER!

 */

/**

 * Licensed to the Apache Software Foundation (ASF) under one

 * or more contributor license agreements. See the NOTICE file

 * distributed with this work for additional information

 * regarding copyright ownership. The ASF licenses this file

 * to you under the Apache License, Version 2.0 (the

 * "License"); you may not use this file except in compliance

 * with the License. You may obtain a copy of the License at

 *

 * http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing,

 * software distributed under the License is distributed on an

 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY

 * KIND, either express or implied. See the License for the

 * specific language governing permissions and limitations

 * under the License.

 */

/*

 */

/*

 * $Id: ApacheTransform.java 1333869 2012-05-04 10:42:44Z coheigea $

 */

package org.jcp.xml.dsig.internal.dom;

import java.io.OutputStream;

import java.security.InvalidAlgorithmParameterException;

import java.security.spec.AlgorithmParameterSpec;

import java.util.Set;

import org.w3c.dom.Document;

import org.w3c.dom.Element;

import org.w3c.dom.Node;

import com.sun.org.apache.xml.internal.security.signature.XMLSignatureInput;

import com.sun.org.apache.xml.internal.security.transforms.Transform;

import com.sun.org.apache.xml.internal.security.transforms.Transforms;

import javax.xml.crypto.*;

import javax.xml.crypto.dom.DOMCryptoContext;

import javax.xml.crypto.dsig.*;

import javax.xml.crypto.dsig.spec.TransformParameterSpec;

/**

 * This is a wrapper/glue class which invokes the Apache XML-Security

 * Transform.

 *

 * @author Sean Mullan

 * @author Erwin van der Koogh

 */

public abstract class ApacheTransform extends TransformService {

    static {

        com.sun.org.apache.xml.internal.security.Init.init();

    }

    private static java.util.logging.Logger log =

        java.util.logging.Logger.getLogger("org.jcp.xml.dsig.internal.dom");

    private Transform apacheTransform;

    protected Document ownerDoc;

    protected Element transformElem;

    protected TransformParameterSpec params;

    public final AlgorithmParameterSpec getParameterSpec() {

        return params;

    }

    public void init(XMLStructure parent, XMLCryptoContext context)

        throws InvalidAlgorithmParameterException

    {

        if (context != null && !(context instanceof DOMCryptoContext)) {

            throw new ClassCastException

                ("context must be of type DOMCryptoContext");

        }

        if (parent == null) {

            throw new NullPointerException();

        }

        if (!(parent instanceof javax.xml.crypto.dom.DOMStructure)) {

            throw new ClassCastException("parent must be of type DOMStructure");

        }

        transformElem = (Element)

            ((javax.xml.crypto.dom.DOMStructure) parent).getNode();

        ownerDoc = DOMUtils.getOwnerDocument(transformElem);

    }

    public void marshalParams(XMLStructure parent, XMLCryptoContext context)

        throws MarshalException

    {

        if (context != null && !(context instanceof DOMCryptoContext)) {

            throw new ClassCastException

                ("context must be of type DOMCryptoContext");

        }

        if (parent == null) {

            throw new NullPointerException();

        }

        if (!(parent instanceof javax.xml.crypto.dom.DOMStructure)) {

            throw new ClassCastException("parent must be of type DOMStructure");

        }

        transformElem = (Element)

            ((javax.xml.crypto.dom.DOMStructure) parent).getNode();

        ownerDoc = DOMUtils.getOwnerDocument(transformElem);

    }

    public Data transform(Data data, XMLCryptoContext xc)

        throws TransformException

    {

        if (data == null) {

            throw new NullPointerException("data must not be null");

        }

        return transformIt(data, xc, (OutputStream)null);

    }

    public Data transform(Data data, XMLCryptoContext xc, OutputStream os)

        throws TransformException

    {

        if (data == null) {

            throw new NullPointerException("data must not be null");

        }

        if (os == null) {

            throw new NullPointerException("output stream must not be null");

        }

        return transformIt(data, xc, os);

    }

    private Data transformIt(Data data, XMLCryptoContext xc, OutputStream os)

        throws TransformException

    {

        if (ownerDoc == null) {

            throw new TransformException("transform must be marshalled");

        }

        if (apacheTransform == null) {

            try {

                apacheTransform =

                    new Transform(ownerDoc, getAlgorithm(), transformElem.getChildNodes());

                apacheTransform.setElement(transformElem, xc.getBaseURI());

                if (log.isLoggable(java.util.logging.Level.FINE)) {

                    log.log(java.util.logging.Level.FINE, "Created transform for algorithm: " +

                            getAlgorithm());

                }

            } catch (Exception ex) {

                throw new TransformException("Couldn't find Transform for: " +

                                             getAlgorithm(), ex);

            }

        }

        if (Utils.secureValidation(xc)) {

            String algorithm = getAlgorithm();

            if (Transforms.TRANSFORM_XSLT.equals(algorithm)) {

                throw new TransformException(

                    "Transform " + algorithm + " is forbidden when secure validation is enabled"

                );

            }

        }

        XMLSignatureInput in;

        if (data instanceof ApacheData) {

            if (log.isLoggable(java.util.logging.Level.FINE)) {

                log.log(java.util.logging.Level.FINE, "ApacheData = true");

            }

            in = ((ApacheData)data).getXMLSignatureInput();

        } else if (data instanceof NodeSetData) {

            if (log.isLoggable(java.util.logging.Level.FINE)) {

                log.log(java.util.logging.Level.FINE, "isNodeSet() = true");

            }

            if (data instanceof DOMSubTreeData) {

                if (log.isLoggable(java.util.logging.Level.FINE)) {

                    log.log(java.util.logging.Level.FINE, "DOMSubTreeData = true");

                }

                DOMSubTreeData subTree = (DOMSubTreeData)data;

                in = new XMLSignatureInput(subTree.getRoot());

                in.setExcludeComments(subTree.excludeComments());

            } else {

                Set<Node> nodeSet =

                    Utils.toNodeSet(((NodeSetData)data).iterator());

                in = new XMLSignatureInput(nodeSet);

            }

        } else {

            if (log.isLoggable(java.util.logging.Level.FINE)) {

                log.log(java.util.logging.Level.FINE, "isNodeSet() = false");

            }

            try {

                in = new XMLSignatureInput

                    (((OctetStreamData)data).getOctetStream());

            } catch (Exception ex) {

                throw new TransformException(ex);

            }

        }

        try {

            if (os != null) {

                in = apacheTransform.performTransform(in, os);

                if (!in.isNodeSet() && !in.isElement()) {

                    return null;

                }

            } else {

                in = apacheTransform.performTransform(in);

            }

            if (in.isOctetStream()) {

                return new ApacheOctetStreamData(in);

            } else {

                return new ApacheNodeSetData(in);

            }

        } catch (Exception ex) {

            throw new TransformException(ex);

        }

    }

    public final boolean isFeatureSupported(String feature) {

        if (feature == null) {

            throw new NullPointerException();

        } else {

            return false;

        }

    }

}