• Home
• com.github.triceo.robozonky
• robozonky-app
• 4.0.0-beta-5
• source code
• RefreshableZonkyApiToken.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.github.triceo.robozonky.app.authentication.RefreshableZonkyApiToken Maven / Gradle / Ivy

/*
 * Copyright 2017 The RoboZonky Project
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package com.github.triceo.robozonky.app.authentication;

import java.io.Reader;
import java.io.StringReader;
import java.time.Duration;
import java.util.Optional;
import java.util.UUID;
import java.util.function.Supplier;
import javax.xml.bind.JAXBException;

import com.github.triceo.robozonky.api.Refreshable;
import com.github.triceo.robozonky.api.remote.entities.ZonkyApiToken;
import com.github.triceo.robozonky.common.remote.ApiProvider;
import com.github.triceo.robozonky.common.remote.OAuth;
import com.github.triceo.robozonky.common.secrets.SecretProvider;

/**
 * Will keep permanent user authentication running in the background.
 */
class RefreshableZonkyApiToken extends Refreshable {

    private final SecretProvider secrets;
    private final ApiProvider apis;
    public RefreshableZonkyApiToken(final ApiProvider apis, final SecretProvider secrets) {
        this.apis = apis;
        this.secrets = secrets;
    }

    private static Reader tokenToReader(final ZonkyApiToken token) throws JAXBException {
        return new StringReader(ZonkyApiToken.marshal(token));
    }

    private ZonkyApiToken withToken(final ZonkyApiToken token) {
        LOGGER.info("Authenticating as '{}', refreshing access token.", secrets.getUsername());
        try (final OAuth oauth = apis.oauth()) {
            return oauth.refresh(token);
        } catch (final Exception ex) { // possibly just an expired token, retry with password
            LOGGER.debug("Failed refreshing access token, using password.", ex);
            return withPassword();
        }
    }

    private ZonkyApiToken withPassword() {
        return PasswordBasedAccess.trigger(apis, secrets.getUsername(), secrets.getPassword());
    }

    @Override
    protected Supplier> getLatestSource() {
        return () -> Optional.of(UUID.randomUUID().toString()); // refresh every time it is scheduled
    }

    @Override
    protected Optional transform(final String source) {
        try {
            final ZonkyApiToken newToken = this.getLatest(Duration.ofNanos(1)) // don't wait if refreshable not run yet
                    .map(this::withToken) // subsequent runs = token refresh
                    .orElseGet(this::withPassword); // first run = password-based auth
            try { // store token so that it can be retrieved back in case of daemon restart
                secrets.setToken(RefreshableZonkyApiToken.tokenToReader(newToken));
            } catch (final JAXBException ex) {
                LOGGER.debug("Failed storing token into secure storage, may need to use password next time.", ex);
            }
            return Optional.of(newToken);
        } catch (final Exception ex) {
            LOGGER.warn("Authentication failed.", ex);
            return Optional.empty();
        }
    }
}