dd/da1/_petition_signature_8cs_source.html

using System;

using System.Collections.Generic;

using System.Text;

using System.Threading.Tasks;

using System.Xml;

using Waher.Content;

using Waher.Content.Xml;

using Waher.IoTGateway;

using Waher.Networking.HTTP;

using Waher.Networking.XMPP.Server;

using Waher.Persistence;

using Waher.Persistence.Filters;

using Waher.Script;

using Waher.Script.Abstraction.Elements;

using Waher.Security;

using Waher.Service.IoTBroker.DataStorage;

using Waher.Service.IoTBroker.Legal;

using Waher.Service.IoTBroker.Legal.Identity;

using Waher.Service.IoTBroker.WebServices.Agent.Crypto;


namespace Waher.Service.IoTBroker.WebServices.Agent.Legal

{

    public class PetitionSignature : AgentPostResource

    {

        public PetitionSignature()

            : base("Legal/PetitionSignature",

                new KeyValuePair<Type, Expression>(typeof(Dictionary<string, object>), new Expression(jsonPattern)),

                new KeyValuePair<Type, Expression>(typeof(XmlDocument), new Expression(xmlPattern)))

        {

        }


        private static readonly string jsonPattern = Resources.LoadResourceAsText(typeof(PetitionSignature).Namespace + ".JSON.PetitionSignature.req");

        private static readonly string xmlPattern = Resources.LoadResourceAsText(typeof(PetitionSignature).Namespace + ".XML.PetitionSignature.req");


        public override async Task POST(HttpRequest Request, HttpResponse Response, Dictionary<string, IElement> Parameters)

        {

            AccountUser User = AssertUserAuthenticated(Request);


            string KeyId = (string)Parameters["PKeyId"].AssociatedObjectValue;

            if (string.IsNullOrEmpty(KeyId))

                throw new BadRequestException("Key ID cannot be empty.");


            CaseInsensitiveString LegalId = (string)Parameters["PLegalId"].AssociatedObjectValue;

            if (CaseInsensitiveString.IsNullOrEmpty(LegalId))

                throw new BadRequestException("No Legal ID specified.");


            XmppAddress LegalIdAddress = new XmppAddress(LegalId);

            if (!LegalIdAddress.IsBareJID)

                throw new BadRequestException("Invalid Legal ID.");


            if (!(XmppServerModule.Legal is null) && !XmppServerModule.Legal.IsComponentDomain(LegalIdAddress.Domain, true))

                throw new BadRequestException("Not a local Legal ID.");


            CaseInsensitiveString RemoteId = (string)Parameters["PRemoteId"].AssociatedObjectValue;

            if (CaseInsensitiveString.IsNullOrEmpty(RemoteId))

                throw new BadRequestException("No Remote ID specified.");


            XmppAddress RemoteAddress = new XmppAddress(RemoteId);

            if (!RemoteAddress.IsBareJID)

                throw new BadRequestException("Invalid Remote ID.");


            AgentKey AgentKey = await Database.FindFirstDeleteRest<AgentKey>(new FilterAnd(

                new FilterFieldEqualTo("Account", User.UserName),

                new FilterFieldEqualTo("Id", KeyId)))

                ?? throw new NotFoundException("Key not found.");


            string ContentBase64 = (string)Parameters["PContentBase64"].AssociatedObjectValue;

            byte[] Content;

            string PetitionId = (string)Parameters["PPetitionId"].AssociatedObjectValue;

            string Purpose = (string)Parameters["PPurpose"].AssociatedObjectValue;

            string KeySignature = (string)Parameters["PKeySignature"].AssociatedObjectValue;

            string RequestSignature = (string)Parameters["PRequestSignature"].AssociatedObjectValue;


            try

            {

                Content = Convert.FromBase64String(ContentBase64);

            }

            catch (Exception)

            {

                throw new BadRequestException("Invalid base64-encoded data.");

            }


            string s = Encoding.UTF8.GetString(Content);

            if (s.StartsWith("<identity") && s.EndsWith("</identity>"))

                throw new ForbiddenException("Use the PetitionPeerReview request to ask a peer to sign a legal identity.");


            StringBuilder sb = new StringBuilder();


            sb.Append(User.UserName);

            sb.Append(':');

            sb.Append(Request.Header.Host.Value);

            sb.Append(':');

            sb.Append(AgentKey.LocalName);

            sb.Append(':');

            sb.Append(AgentKey.Namespace);

            sb.Append(':');

            sb.Append(KeyId);


            //string s1 = sb.ToString();


            sb.Append(':');

            sb.Append(KeySignature);


            //string s2 = sb.ToString();


            sb.Append(':');

            sb.Append(PetitionId);

            sb.Append(':');

            sb.Append(Purpose);

            sb.Append(':');

            sb.Append(LegalId);

            sb.Append(':');

            sb.Append(RemoteId);

            sb.Append(':');

            sb.Append(ContentBase64);


            string s3 = sb.ToString();


            s = Convert.ToBase64String(

                Hashes.ComputeHMACSHA256Hash(

                    Encoding.UTF8.GetBytes(User.Account.Password),

                    Encoding.UTF8.GetBytes(s3)));


            if (s != RequestSignature)

            {

                string Msg = "Request Signature invalid.";

                throw new ForbiddenException(Msg);

            }


            LegalIdentity Identity = await LegalComponent.GetLocalLegalIdentity(LegalId)

                ?? throw new NotFoundException("Legal identity not found.");


            if (User.UserName != Identity.Account)

                throw new ForbiddenException("Not your identity.");


            if (!(XmppServerModule.Legal is null))

            {

                LegalComponent.ClientInformation ClientInfo = await XmppServerModule.Legal.GetNetworkIdentity(RemoteId, true, false, Identity.Version);

                CaseInsensitiveString RemoteJid = ClientInfo.Jid;

                CaseInsensitiveString From = User.UserName + "@" + Gateway.Domain;

                XmppServerModule.Legal.IdentityAuthorization(RemoteJid, From, LegalId, true);

                Dictionary<string, string> AttachmentUrls = XmppServerModule.Legal.GetAttachmentUrls(Identity);


                StringBuilder Msg = new StringBuilder();


                Msg.Append("<petitionSignatureMsg id=\"");

                Msg.Append(XML.Encode(RemoteId));

                Msg.Append("\" pid=\"");

                Msg.Append(XML.Encode(PetitionId));

                Msg.Append("\" from=\"");

                Msg.Append(XML.Encode(From));

                Msg.Append("\" purpose=\"");

                Msg.Append(XML.Encode(Purpose));

                Msg.Append("\" clientEp=\"");

                Msg.Append(XML.Encode(Request.RemoteEndPoint));

                Msg.Append("\" xmlns=\"");

                Msg.Append(LegalComponent.NamespaceLegalIdentity(Identity.Version));

                Msg.Append("\"><content>");

                Msg.Append(ContentBase64);

                Msg.Append("</content>");

                Identity.Serialize(Msg, false, true, true, true, true, true, true, AttachmentUrls, XmppServerModule.Legal);

                Msg.Append("</petitionSignatureMsg>");


                await XmppServerModule.Server.SendMessage(string.Empty, string.Empty,

                    XmppServerModule.Legal.MainDomain.Address, RemoteJid, string.Empty,

                    Msg.ToString());

            }


            await Response.Return(new NamedDictionary<string, object>("AckResponse", AgentNamespace));

        }

    }

}

Waher.Content.NamedDictionary
A Named dictionary is a dictionary, with a local name and a namespace. Use it to return content that ...
Definition: NamedDictionary.cs:13

Waher.Content.Resources
Static class managing loading of resources stored as embedded resources or in content files.
Definition: Resources.cs:15

Waher.Content.Resources.LoadResourceAsText
static string LoadResourceAsText(string ResourceName)
Loads a text resource from an embedded resource.
Definition: Resources.cs:96

Waher.Content.Xml.XML
Helps with common XML-related tasks.
Definition: XML.cs:19

Waher.Content.Xml.XML.Encode
static string Encode(string s)
Encodes a string for use in XML.
Definition: XML.cs:27

Waher.IoTGateway.Gateway
Static class managing the runtime environment of the IoT Gateway.
Definition: Gateway.cs:126

Waher.IoTGateway.Gateway.Domain
static CaseInsensitiveString Domain
Domain name.
Definition: Gateway.cs:2354

Waher.Networking.HTTP.BadRequestException
The request could not be understood by the server due to malformed syntax. The client SHOULD NOT repe...
Definition: BadRequestException.cs:9

Waher.Networking.HTTP.ForbiddenException
The server understood the request, but is refusing to fulfill it. Authorization will not help and the...
Definition: ForbiddenException.cs:13

Waher.Networking.HTTP.HttpRequestHeader.Host
HttpFieldHost Host
Host HTTP Field header. (RFC 2616, §14.23)
Definition: HttpRequestHeader.cs:302

Waher.Networking.HTTP.HttpRequest
Represents an HTTP request.
Definition: HttpRequest.cs:18

Waher.Networking.HTTP.HttpRequest.Header
HttpRequestHeader Header
Request header.
Definition: HttpRequest.cs:134

Waher.Networking.HTTP.HttpRequest.RemoteEndPoint
string RemoteEndPoint
Remote end-point.
Definition: HttpRequest.cs:195

Waher.Networking.HTTP.HttpResponse
Represets a response of an HTTP client request.
Definition: HttpResponse.cs:21

Waher.Networking.HTTP.HttpResponse.Return
async Task Return(object Object)
Returns an object to the client. This method can only be called once per response,...
Definition: HttpResponse.cs:895

Waher.Networking.HTTP.NotFoundException
The server has not found anything matching the Request-URI. No indication is given of whether the con...
Definition: NotFoundException.cs:9

Waher.Networking.XMPP.Server.Component.MainDomain
XmppAddress MainDomain
Main/principal domain address
Definition: Component.cs:86

Waher.Networking.XMPP.Server.Component.IsComponentDomain
bool IsComponentDomain(CaseInsensitiveString Domain, bool IncludeAlternativeDomains)
Checks if a domain is the component domain, or optionally, an alternative component domain.
Definition: Component.cs:123

Waher.Networking.XMPP.Server.XmppAddress
Contains information about one XMPP address.
Definition: XmppAddress.cs:9

Waher.Networking.XMPP.Server.XmppAddress.IsBareJID
bool IsBareJID
If the address is a Bare JID.
Definition: XmppAddress.cs:159

Waher.Networking.XMPP.Server.XmppAddress.Domain
CaseInsensitiveString Domain
Domain
Definition: XmppAddress.cs:97

Waher.Networking.XMPP.Server.XmppAddress.Address
CaseInsensitiveString Address
XMPP Address
Definition: XmppAddress.cs:37

Waher.Networking.XMPP.Server.XmppServer.SendMessage
Task< bool > SendMessage(string Type, string Id, string From, string To, string Language, string ContentXml)
Sends a Message stanza to a recipient.
Definition: XmppServer.cs:3412

Waher.Persistence.CaseInsensitiveString
Represents a case-insensitive string.
Definition: CaseInsensitiveString.cs:10

Waher.Persistence.CaseInsensitiveString.Empty
static readonly CaseInsensitiveString Empty
Empty case-insensitive string
Definition: CaseInsensitiveString.cs:304

Waher.Persistence.CaseInsensitiveString.IsNullOrEmpty
static bool IsNullOrEmpty(CaseInsensitiveString value)
Indicates whether the specified string is null or an CaseInsensitiveString.Empty string.
Definition: CaseInsensitiveString.cs:1029

Waher.Persistence.CaseInsensitiveString.ToString
override string ToString()
Definition: CaseInsensitiveString.cs:35

Waher.Persistence.Database
Static interface for database persistence. In order to work, a database provider has to be assigned t...
Definition: Database.cs:19

Waher.Persistence.Filters.FilterAnd
This filter selects objects that conform to all child-filters provided.
Definition: FilterAnd.cs:10

Waher.Persistence.Filters.FilterFieldEqualTo
This filter selects objects that have a named field equal to a given value.
Definition: FilterFieldEqualTo.cs:7

Waher.Script.Expression
Class managing a script expression.
Definition: Expression.cs:39

Waher.Security.Hashes
Contains methods for simple hash calculations.
Definition: Hashes.cs:59

Waher.Security.Hashes.ComputeHMACSHA256Hash
static byte[] ComputeHMACSHA256Hash(byte[] Key, byte[] Data)
Computes the HMAC-SHA-256 hash of a block of binary data.
Definition: Hashes.cs:585

Waher.Service.IoTBroker.DataStorage.Account.Password
string Password
Password of account
Definition: Account.cs:109

Waher.Service.IoTBroker.DataStorage.AccountUser
Account user object.
Definition: AccountUser.cs:16

Waher.Service.IoTBroker.DataStorage.AccountUser.Account
Account Account
Account object.
Definition: AccountUser.cs:31

Waher.Service.IoTBroker.DataStorage.AccountUser.UserName
string UserName
User Name.
Definition: AccountUser.cs:36

Waher.Service.IoTBroker.Legal.Identity.LegalIdentity
Definition: LegalIdentity.cs:27

Waher.Service.IoTBroker.Legal.LegalComponent
Provisioning and registry service component.
Definition: LegalComponent.cs:55

Waher.Service.IoTBroker.Legal.LegalComponent.NamespaceLegalIdentity
static string NamespaceLegalIdentity(NamespaceSet Version)
Returns the namespace for legal identities.
Definition: LegalComponent.cs:109

Waher.Service.IoTBroker.WebServices.Agent.AgentPostResource
Abstract base class for agent resources supporting the POST method.
Definition: AgentPostResource.cs:15

Waher.Service.IoTBroker.WebServices.Agent.AgentResource.AssertUserAuthenticated
static AccountUser AssertUserAuthenticated(HttpRequest Request)
Makes sure the request is made by an authenticated API user.
Definition: AgentResource.cs:211

Waher.Service.IoTBroker.WebServices.Agent.AgentResource.AgentNamespace
const string AgentNamespace
https://waher.se/Schema/BrokerAgent.xsd
Definition: AgentResource.cs:28

Waher.Service.IoTBroker.WebServices.Agent.Crypto.AgentKey
Contains an encrypted key for an agent.
Definition: AgentKey.cs:13

Waher.Service.IoTBroker.WebServices.Agent.Crypto.AgentKey.Namespace
string Namespace
Namespace of algorithm
Definition: AgentKey.cs:45

Waher.Service.IoTBroker.WebServices.Agent.Crypto.AgentKey.LocalName
string LocalName
Local Name of algorithm
Definition: AgentKey.cs:40

Waher.Service.IoTBroker.WebServices.Agent.Legal.PetitionId
Petitions access to a remote legal identity.
Definition: PetitionId.cs:27

Waher.Service.IoTBroker.WebServices.Agent.Legal.PetitionSignature
Petitions a remote entity to sign some data.
Definition: PetitionSignature.cs:27

Waher.Service.IoTBroker.WebServices.Agent.Legal.PetitionSignature.POST
override async Task POST(HttpRequest Request, HttpResponse Response, Dictionary< string, IElement > Parameters)
Executes the POST method on the resource.
Definition: PetitionSignature.cs:49

Waher.Service.IoTBroker.WebServices.Agent.Legal.PetitionSignature.PetitionSignature
PetitionSignature()
Petitions a remote entity to sign some data.
Definition: PetitionSignature.cs:31

Waher.Service.IoTBroker.XmppServerModule
Service Module hosting the XMPP broker and its components.
Definition: XmppServerModule.cs:109

Waher.Content.Xml
Definition: XmlCodec.cs:11

Waher.Content
Definition: Array.cs:6

Waher.IoTGateway
Definition: App.xaml.cs:23

Waher.Networking.HTTP
Definition: Page.cs:6

Waher.Networking.XMPP.Server
Definition: AccountRecipient.cs:5

Waher.Persistence.Filters
Definition: Filter.cs:2

Waher.Persistence
Definition: Bookmark.cs:4

Waher.Script.Abstraction.Elements
Definition: AbelianGroupElement.cs:5

Waher.Script
Definition: Duration.cs:8

Waher.Security
Definition: AcmeAccount.cs:8

Waher.Service.IoTBroker.DataStorage
Definition: Account.cs:15

Waher.Service.IoTBroker.Legal.Identity
Definition: Enumerations.cs:4

Waher.Service.IoTBroker.Legal
Definition: Attachment.cs:6

Waher.Service.IoTBroker.WebServices.Agent.Crypto
Definition: AgentKey.cs:5

Waher.Service.IoTBroker.WebServices.Agent.Legal
Definition: AddIdAttachment.cs:29