|
14 | 14 | using System; |
15 | 15 | using System.Buffers.Text; |
16 | 16 | using System.Security.Cryptography.X509Certificates; |
| 17 | +using System.Xml; |
| 18 | +using System.Xml.Linq; |
17 | 19 | using AasSecurity.Models; |
18 | 20 | using AasxServer; |
19 | 21 | using AdminShellNS; |
@@ -145,14 +147,97 @@ private static void ParseAuthenticationServer(AdminShellPackageEnv env, Submodel |
145 | 147 | GlobalSecurityVariables.ServerCertFileNames.Add(serverName + ".cer"); |
146 | 148 | GlobalSecurityVariables.ServerDomain.Add(domain); |
147 | 149 | GlobalSecurityVariables.ServerJwksUrl.Add(""); |
148 | | - GlobalSecurityVariables.ServerKid.Add(""); |
| 150 | + GlobalSecurityVariables.ServerKid.Add(""); |
149 | 151 | } |
150 | 152 | else if (insideBas64) |
151 | 153 | { |
152 | 154 | base64 += line; |
153 | 155 | } |
154 | 156 | } |
155 | 157 | } |
| 158 | + } |
| 159 | + else if (System.IO.File.Exists("trustlist.xml")) |
| 160 | + { |
| 161 | + Console.WriteLine("Read trustlist.xml"); |
| 162 | + |
| 163 | + |
| 164 | + // Load the XML |
| 165 | + var doc = XDocument.Load("trustlist.xml"); |
| 166 | + |
| 167 | + // Default ETSI namespace present in the document |
| 168 | + XNamespace ns = "http://uri.etsi.org/02231/v2#"; // <- critical |
| 169 | + // (There's also an XMLDSIG signature later in a different ns; we can ignore it.) |
| 170 | + |
| 171 | + XNamespace nsDs = "http://www.w3.org/2000/09/xmldsig#"; // XMLDSIG ns (for <Signature>) |
| 172 | + |
| 173 | + |
| 174 | + // Navigate to <TrustServiceProviderList> |
| 175 | + var tspList = doc |
| 176 | + .Root // <TrustServiceStatusList> |
| 177 | + ?.Element(ns + "TrustServiceProviderList"); // <TrustServiceProviderList> |
| 178 | + |
| 179 | + |
| 180 | + // Enumerate <TrustServiceProvider> |
| 181 | + var providers = tspList.Elements(ns + "TrustServiceProvider") |
| 182 | + .Select(tsp => new |
| 183 | + { |
| 184 | + TspName = tsp |
| 185 | + .Element(ns + "TSPInformation") |
| 186 | + ?.Element(ns + "TSPName") |
| 187 | + ?.Elements(ns + "Name") |
| 188 | + .Select(n => (string)n) |
| 189 | + .FirstOrDefault(), |
| 190 | + |
| 191 | + Domain = tsp |
| 192 | + .Element(ns + "TSPInformation") |
| 193 | + ?.Element(ns + "TSPInformationExtensions") |
| 194 | + ?.Elements(ns + "Extension") |
| 195 | + .Elements(ns + "TSPDomainName") |
| 196 | + .Select(x => (string)x) |
| 197 | + .FirstOrDefault(), |
| 198 | + |
| 199 | + // Grab one service’s basics (if available) |
| 200 | + Service = tsp |
| 201 | + .Element(ns + "TSPServices") |
| 202 | + ?.Elements(ns + "TSPService") |
| 203 | + .Select(svc => new |
| 204 | + { |
| 205 | + Type = (string)svc |
| 206 | + .Element(ns + "ServiceInformation") |
| 207 | + ?.Element(ns + "ServiceTypeIdentifier"), |
| 208 | + |
| 209 | + Name = svc |
| 210 | + .Element(ns + "ServiceInformation") |
| 211 | + ?.Element(ns + "ServiceName") |
| 212 | + ?.Elements(ns + "Name") |
| 213 | + .Select(n => (string)n) |
| 214 | + .FirstOrDefault(), |
| 215 | + |
| 216 | + SupplyPoint = svc |
| 217 | + .Element(ns + "ServiceInformation") |
| 218 | + ?.Element(ns + "ServiceSupplyPoints") |
| 219 | + ?.Elements(ns + "ServiceSupplyPoint") |
| 220 | + .Select(sp => (string)sp) |
| 221 | + .FirstOrDefault() |
| 222 | + }) |
| 223 | + .FirstOrDefault() |
| 224 | + }) |
| 225 | + .ToList(); |
| 226 | + |
| 227 | + foreach (var provider in providers) |
| 228 | + { |
| 229 | + var serverName = provider?.Service?.Name; |
| 230 | + var domain = provider?.Domain; |
| 231 | + var jwks = provider?.Service?.SupplyPoint; |
| 232 | + var kid = ""; |
| 233 | + |
| 234 | + GlobalSecurityVariables.ServerCertificates.Add(null); |
| 235 | + GlobalSecurityVariables.ServerCertFileNames.Add(""); |
| 236 | + GlobalSecurityVariables.ServerCertFileNames.Add(serverName + ".cer"); |
| 237 | + GlobalSecurityVariables.ServerDomain.Add(domain); |
| 238 | + GlobalSecurityVariables.ServerJwksUrl.Add(jwks); |
| 239 | + GlobalSecurityVariables.ServerKid.Add(kid); |
| 240 | + } |
156 | 241 | } |
157 | 242 | if (authServer == null || authServer.Value == null) |
158 | 243 | { |
|
0 commit comments