• Home
• com.aliyun.schedulerx
• schedulerx-client
• 2.100.1
• source code
• SecurityCheck.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.alibaba.dts.client.security.SecurityCheck Maven / Gradle / Ivy

package com.alibaba.dts.client.security;


import com.alibaba.dts.client.executor.job.context.ClientContextImpl;
import com.alibaba.dts.common.constants.Constants;
import com.alibaba.dts.common.domain.result.Result;
import com.alibaba.dts.common.domain.result.ResultCode;
import com.alibaba.dts.common.exception.InitException;
import com.alibaba.dts.common.logger.SchedulerXLoggerFactory;
import com.alibaba.dts.common.logger.innerlog.Logger;
import com.taobao.spas.sdk.client.SpasSdkClientFacade;
import com.taobao.spas.sdk.client.identity.Credentials;
import com.taobao.spas.sdk.common.sign.SpasSigner;


/**
 * Created by yanshan.sy on 2016/5/4.
 */
public class SecurityCheck implements Constants {

    private static final Logger logger = SchedulerXLoggerFactory.getLogger(SecurityCheck.class);

    private static Credentials credentials= SpasSdkClientFacade.getCredential();
    
    private final ClientContextImpl clientContext;

    public SecurityCheck(final ClientContextImpl clientContext) {
    	this.clientContext = clientContext;
    }

    public void init() throws InitException {
        String userSpecifiedAK = clientContext.getClientConfig().getAccessKey();
        String userSpecifiedSK = clientContext.getClientConfig().getSecretKey();
        if (userSpecifiedAK != null && userSpecifiedSK != null) {
    	    credentials.setAccessKey(userSpecifiedAK);
    	    credentials.setSecretKey(userSpecifiedSK);
        }
        if (credentials.getAccessKey()==null || credentials.getSecretKey()==null){
            throw new InitException("[SecurityCheck]: AK or SK is Null!");
        }
    	this.clientContext.getClientConfig().setAccessKey(credentials.getAccessKey());
    }

    public String getSignatureStr(long connectTime){
        if(ENVIRONMENT_SCX.equals(clientContext.getClientConfig().getEnvironment())) {

            if (credentials.getAccessKey()==null || credentials.getSecretKey()==null){
                return "Invalid AKSK";
            }

            String signdata = this.clientContext.getClientConfig().getGroupId()+connectTime;
            String sign = SpasSigner.sign(signdata, credentials.getSecretKey());
            return sign;
        }
        return "";
    }


    public void doSecurityCheck() throws InitException{

        String signdata = RESOURCE_NAME+RESOURCE_SEPARATOR+this.clientContext.getClientConfig().getServiceGroup()+System.currentTimeMillis();
        String sign = SpasSigner.sign(signdata, credentials.getSecretKey());

        Result result = this.clientContext.getHttpService().securityCheck(this.clientContext.getClientConfig().getDomainName(),
                this.clientContext.getClientConfig().getAccessKey(),
                RESOURCE_NAME+RESOURCE_SEPARATOR+this.clientContext.getClientConfig().getServiceGroup(),
                signdata, java.net.URLEncoder.encode(sign));


        if (result.getResultCode()==null){
            throw new InitException("[SecurityCheck]: check ak error, return null!");
        }

        if (result.getResultCode()!=ResultCode.SUCCESS){
            throw new InitException("[SecurityCheck]: check ak error,"+result.getResultCode().getInformation());
        }

    }

}