• Home
• be.looorent
• keycloak-micronaut-adapter
• 2.0.0
• source code
• SecurityService.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

be.looorent.micronaut.security.SecurityService Maven / Gradle / Ivy

package be.looorent.micronaut.security;

import io.micronaut.http.HttpRequest;
import io.reactivex.Flowable;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import javax.inject.Singleton;

import static be.looorent.micronaut.security.FailedSecurityContext.securityErrorFound;
import static be.looorent.micronaut.security.FailedSecurityContext.unexpectedErrorDuringVerification;
import static be.looorent.micronaut.security.SecurityErrorType.*;
import static io.reactivex.Flowable.fromCallable;
import static io.reactivex.schedulers.Schedulers.io;

/**
 * This service reads the Authorization header in an HTTP requests to validates its content.
 * @author Lorent Lempereur - [email protected]
 */
@Singleton
class SecurityService {
    private static final Logger LOG = LoggerFactory.getLogger(SecurityService.class);

    private static final String HEADER_NAME = "Authorization";
    private static final String BEARER_SCHEME = "Bearer";

    private TokenParser tokenParser;

    SecurityService(TokenParser tokenParser) {
        if (tokenParser == null) {
            throw new IllegalArgumentException("No implementation of TokenParser has been found");
        }
        this.tokenParser = tokenParser;
    }

    Flowable readAndVerifyTokenIn(HttpRequest request)  {
        return fromCallable(() -> {
            try {
                String token = readTokenInHeadersOf(request);
                return tokenParser.parse(token);
            }
            catch (SecurityException e) {
                LOG.warn("A security error occurred when reading and verifying the request's token", e);
                return securityErrorFound(e);
            }
            catch (Throwable e) {
                LOG.error("An unexpected error occurred when reading and verifying the request's token", e);
                return unexpectedErrorDuringVerification(e);
            }
        }).subscribeOn(io());
    }

    private String readTokenInHeadersOf(HttpRequest request) throws SecurityException {
        String authorizationHeader = request.getHeaders().get(HEADER_NAME);
        if (authorizationHeader == null) {
            throw AUTHORIZATION_HEADER_MISSING.toException();
        }

        String[] schemeAndToken = authorizationHeader.split(" ");
        if (schemeAndToken.length != 2) {
            throw AUTHORIZATION_HEADER_WRONG_FORMAT.toException();
        }

        if (!BEARER_SCHEME.equalsIgnoreCase(schemeAndToken[0])) {
            throw AUTHORIZATION_HEADER_WRONG_SCHEME.toException();
        }
        return schemeAndToken[1];
    }
}