All Downloads are FREE. Search and download functionalities are using the official Maven repository.

com.helger.smpclient.peppol.SMPClientReadOnly Maven / Gradle / Ivy

There is a newer version: 9.6.0
Show newest version
/*
 * Copyright (C) 2015-2024 Philip Helger
 * philip[at]helger[dot]com
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *         http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package com.helger.smpclient.peppol;

import java.net.URI;
import java.security.KeyStore;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import java.time.LocalDateTime;
import java.util.Locale;
import java.util.function.Consumer;
import java.util.function.Function;

import javax.annotation.Nonnull;
import javax.annotation.Nullable;

import org.apache.hc.client5.http.classic.methods.HttpGet;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import com.helger.commons.ValueEnforcer;
import com.helger.commons.annotation.Nonempty;
import com.helger.commons.collection.impl.CommonsArrayList;
import com.helger.commons.collection.impl.CommonsHashSet;
import com.helger.commons.collection.impl.ICommonsList;
import com.helger.commons.collection.impl.ICommonsSet;
import com.helger.commons.datetime.PDTFactory;
import com.helger.commons.equals.EqualsHelper;
import com.helger.commons.http.CHttpHeader;
import com.helger.commons.state.EContinue;
import com.helger.commons.string.StringHelper;
import com.helger.commons.wrapper.Wrapper;
import com.helger.http.basicauth.BasicAuthClientCredentials;
import com.helger.peppol.sml.ISMLInfo;
import com.helger.peppol.smp.ISMPTransportProfile;
import com.helger.peppolid.CIdentifier;
import com.helger.peppolid.IDocumentTypeIdentifier;
import com.helger.peppolid.IParticipantIdentifier;
import com.helger.peppolid.IProcessIdentifier;
import com.helger.peppolid.factory.IIdentifierFactory;
import com.helger.peppolid.factory.PeppolIdentifierFactory;
import com.helger.security.certificate.CertificateHelper;
import com.helger.smpclient.exception.SMPClientBadRequestException;
import com.helger.smpclient.exception.SMPClientException;
import com.helger.smpclient.exception.SMPClientNotFoundException;
import com.helger.smpclient.exception.SMPClientUnauthorizedException;
import com.helger.smpclient.httpclient.AbstractGenericSMPClient;
import com.helger.smpclient.httpclient.SMPHttpResponseHandlerSigned;
import com.helger.smpclient.httpclient.SMPHttpResponseHandlerUnsigned;
import com.helger.smpclient.peppol.PeppolWildcardSelector.EMode;
import com.helger.smpclient.peppol.marshal.SMPMarshallerCompleteServiceGroupType;
import com.helger.smpclient.peppol.marshal.SMPMarshallerServiceGroupReferenceListType;
import com.helger.smpclient.peppol.marshal.SMPMarshallerServiceGroupType;
import com.helger.smpclient.peppol.marshal.SMPMarshallerSignedServiceMetadataType;
import com.helger.smpclient.peppol.utils.W3CEndpointReferenceHelper;
import com.helger.smpclient.url.ISMPURLProvider;
import com.helger.smpclient.url.SMPDNSResolutionException;
import com.helger.xsds.peppol.id1.ProcessIdentifierType;
import com.helger.xsds.peppol.smp1.CompleteServiceGroupType;
import com.helger.xsds.peppol.smp1.EndpointType;
import com.helger.xsds.peppol.smp1.ProcessType;
import com.helger.xsds.peppol.smp1.RedirectType;
import com.helger.xsds.peppol.smp1.ServiceGroupReferenceListType;
import com.helger.xsds.peppol.smp1.ServiceGroupType;
import com.helger.xsds.peppol.smp1.ServiceInformationType;
import com.helger.xsds.peppol.smp1.ServiceMetadataReferenceType;
import com.helger.xsds.peppol.smp1.ServiceMetadataType;
import com.helger.xsds.peppol.smp1.SignedServiceMetadataType;
import com.helger.xsds.xmldsig.X509DataType;

import jakarta.xml.bind.JAXBElement;

/**
 * This class is used for calling the Peppol SMP REST interface. This particular
 * class only contains the read-only methods including the ones defined in the
 * Peppol SMP specification!
 *
 * @author Philip Helger
 */
public class SMPClientReadOnly extends AbstractGenericSMPClient  implements
                               ISMPServiceGroupProvider,
                               ISMPServiceMetadataProvider
{
  public static final String URL_PART_COMPLETE = "complete";
  public static final String URL_PART_LIST = "list";
  public static final String URL_PART_SERVICES = "services";

  private static final Logger LOGGER = LoggerFactory.getLogger (SMPClientReadOnly.class);

  /**
   * Constructor with SML lookup
   *
   * @param aURLProvider
   *        The URL provider to be used. May not be null.
   * @param aParticipantIdentifier
   *        The participant identifier to be used. Required to build the SMP
   *        access URI.
   * @param aSMLInfo
   *        The SML to be used. Required to build the SMP access URI.
   * @throws SMPDNSResolutionException
   *         if DNS resolution fails
   * @see ISMPURLProvider#getSMPURIOfParticipant(IParticipantIdentifier,
   *      ISMLInfo)
   */
  public SMPClientReadOnly (@Nonnull final ISMPURLProvider aURLProvider,
                            @Nonnull final IParticipantIdentifier aParticipantIdentifier,
                            @Nonnull final ISMLInfo aSMLInfo) throws SMPDNSResolutionException
  {
    this (aURLProvider.getSMPURIOfParticipant (aParticipantIdentifier, aSMLInfo));
  }

  /**
   * Constructor with SML lookup
   *
   * @param aURLProvider
   *        The URL provider to be used. May not be null.
   * @param aParticipantIdentifier
   *        The participant identifier to be used. Required to build the SMP
   *        access URI.
   * @param sSMLZoneName
   *        The SML DNS zone name to be used. Required to build the SMP access
   *        URI. Must end with a trailing dot (".") and may neither be
   *        null nor empty to build a correct URL. May not start
   *        with "http://". Example: sml.peppolcentral.org.
   * @throws SMPDNSResolutionException
   *         if DNS resolution fails
   * @see ISMPURLProvider#getSMPURIOfParticipant(IParticipantIdentifier, String)
   */
  public SMPClientReadOnly (@Nonnull final ISMPURLProvider aURLProvider,
                            @Nonnull final IParticipantIdentifier aParticipantIdentifier,
                            @Nonnull @Nonempty final String sSMLZoneName) throws SMPDNSResolutionException
  {
    this (aURLProvider.getSMPURIOfParticipant (aParticipantIdentifier, sSMLZoneName));
  }

  /**
   * Constructor with a direct SMP URL.
* Remember: must be HTTP and using port 80 only! * * @param aSMPHost * The address of the SMP service. Must be port 80 and basic http only * (no https!). Example: http://smpcompany.company.org */ public SMPClientReadOnly (@Nonnull final URI aSMPHost) { // Peppol limitations should be checked super (aSMPHost, true); } /** * Gets a list of references to the CompleteServiceGroup's owned by the * specified userId. This is a non-specification compliant method. * * @param sUserID * The username for which to retrieve service groups. * @param aCredentials * The user name and password to use as credentials. * @return A list of references to complete service groups and never * null. * @throws SMPClientException * in case something goes wrong * @throws SMPClientUnauthorizedException * The username or password was not correct. * @throws SMPClientNotFoundException * The userId did not exist. * @throws SMPClientBadRequestException * The request was not well formed. * @see #getServiceGroupReferenceListOrNull(String, * BasicAuthClientCredentials) */ @Nonnull public ServiceGroupReferenceListType getServiceGroupReferenceList (@Nonnull final String sUserID, @Nonnull final BasicAuthClientCredentials aCredentials) throws SMPClientException { ValueEnforcer.notNull (sUserID, "UserID"); ValueEnforcer.notNull (aCredentials, "Credentials"); final String sURI = getSMPHostURI () + URL_PART_LIST + "/" + CIdentifier.createPercentEncoded (sUserID); if (LOGGER.isDebugEnabled ()) LOGGER.debug ("SMPClient getServiceGroupReferenceList@" + sURI); final HttpGet aRequest = new HttpGet (sURI); aRequest.addHeader (CHttpHeader.AUTHORIZATION, aCredentials.getRequestValue ()); final SMPMarshallerServiceGroupReferenceListType aMarshaller = new SMPMarshallerServiceGroupReferenceListType (); aMarshaller.setUseSchema (isXMLSchemaValidation ()); customizeMarshaller (aMarshaller); return executeGenericRequest (aRequest, new SMPHttpResponseHandlerUnsigned <> (aMarshaller)); } /** * Gets a list of references to the CompleteServiceGroup's owned by the * specified userId. This is a non-specification compliant method. * * @param sUserID * The username for which to retrieve service groups. * @param aCredentials * The user name and password to use as credentials. * @return A list of references to complete service groups or * null if no such user exists. * @throws SMPClientException * in case something goes wrong * @throws SMPClientUnauthorizedException * The username or password was not correct. * @throws SMPClientBadRequestException * The request was not well formed. * @see #getServiceGroupReferenceList(String, BasicAuthClientCredentials) */ @Nullable public ServiceGroupReferenceListType getServiceGroupReferenceListOrNull (@Nonnull final String sUserID, @Nonnull final BasicAuthClientCredentials aCredentials) throws SMPClientException { try { return getServiceGroupReferenceList (sUserID, aCredentials); } catch (final SMPClientNotFoundException ex) { return null; } } /** * Returns a complete service group. A complete service group contains both * the service group and the service metadata. This is a non-specification * compliant method.
* NOTE: this API is NOT supported by all SMP implementations. It is based on * a proprietary API provided by the Peppol reference implementation and now * supported by phoss SMP but not all other SMPs. * * @param sCompleteURI * The complete URL for the full service group to query. * @return The complete service group containing service group and service * metadata. Never null. * @throws SMPClientException * in case something goes wrong * @throws SMPClientUnauthorizedException * A HTTP Forbidden was received, should not happen. * @throws SMPClientNotFoundException * The service group id did not exist. * @throws SMPClientBadRequestException * The request was not well formed. * @see #getCompleteServiceGroup(IParticipantIdentifier) * @see #getCompleteServiceGroupOrNull(IParticipantIdentifier) */ @Nonnull public CompleteServiceGroupType getCompleteServiceGroup (@Nonnull final String sCompleteURI) throws SMPClientException { ValueEnforcer.notEmpty (sCompleteURI, "CompleteURL"); if (LOGGER.isDebugEnabled ()) LOGGER.debug ("SMPClient getCompleteServiceGroup@" + sCompleteURI); final HttpGet aRequest = new HttpGet (sCompleteURI); final SMPMarshallerCompleteServiceGroupType aMarshaller = new SMPMarshallerCompleteServiceGroupType (); aMarshaller.setUseSchema (isXMLSchemaValidation ()); customizeMarshaller (aMarshaller); return executeGenericRequest (aRequest, new SMPHttpResponseHandlerUnsigned <> (aMarshaller)); } /** * Returns a complete service group. A complete service group contains both * the service group and the service metadata. This is a non-specification * compliant method.
* NOTE: this API is NOT supported by all SMP implementations. It is based on * a proprietary API provided by the Peppol reference implementation and now * supported by phoss SMP but not all other SMPs. * * @param aServiceGroupID * The service group id corresponding to the service group which one * wants to get. * @return The complete service group containing service group and service * metadata. Never null. * @throws SMPClientException * in case something goes wrong * @throws SMPClientUnauthorizedException * A HTTP Forbidden was received, should not happen. * @throws SMPClientNotFoundException * The service group id did not exist. * @throws SMPClientBadRequestException * The request was not well formed. * @see #getCompleteServiceGroup(String) * @see #getCompleteServiceGroupOrNull(IParticipantIdentifier) */ @Nonnull public CompleteServiceGroupType getCompleteServiceGroup (@Nonnull final IParticipantIdentifier aServiceGroupID) throws SMPClientException { ValueEnforcer.notNull (aServiceGroupID, "ServiceGroupID"); return getCompleteServiceGroup (getSMPHostURI () + URL_PART_COMPLETE + "/" + aServiceGroupID.getURIPercentEncoded ()); } /** * Returns a complete service group. A complete service group contains both * the service group and the service metadata. This is a non-specification * compliant method.
* NOTE: this API is NOT supported by all SMP implementations. It is based on * a proprietary API provided by the Peppol reference implementation and now * supported by phoss SMP but not all other SMPs. * * @param aServiceGroupID * The service group id corresponding to the service group which one * wants to get. * @return The complete service group containing service group and service * metadata or null if no such service group exists. * @throws SMPClientException * in case something goes wrong * @throws SMPClientUnauthorizedException * A HTTP Forbidden was received, should not happen. * @throws SMPClientBadRequestException * The request was not well formed. * @see #getCompleteServiceGroup(String) * @see #getCompleteServiceGroup(IParticipantIdentifier) */ @Nullable public CompleteServiceGroupType getCompleteServiceGroupOrNull (@Nonnull final IParticipantIdentifier aServiceGroupID) throws SMPClientException { try { return getCompleteServiceGroup (aServiceGroupID); } catch (final SMPClientNotFoundException ex) { return null; } } /** * Returns a service group. A service group references to the service * metadata. This is a specification compliant method. * * @param aServiceGroupID * The service group id corresponding to the service group which one * wants to get. * @return The service group. Never null. * @throws SMPClientException * in case something goes wrong * @throws SMPClientUnauthorizedException * A HTTP Forbidden was received, should not happen. * @throws SMPClientNotFoundException * The service group id did not exist. * @throws SMPClientBadRequestException * The request was not well formed. * @see #getServiceGroupOrNull(IParticipantIdentifier) */ @Nonnull public ServiceGroupType getServiceGroup (@Nonnull final IParticipantIdentifier aServiceGroupID) throws SMPClientException { ValueEnforcer.notNull (aServiceGroupID, "ServiceGroupID"); final String sURI = getSMPHostURI () + aServiceGroupID.getURIPercentEncoded (); if (LOGGER.isDebugEnabled ()) LOGGER.debug ("SMPClient getServiceGroup@" + sURI); final HttpGet aRequest = new HttpGet (sURI); final SMPMarshallerServiceGroupType aMarshaller = new SMPMarshallerServiceGroupType (); aMarshaller.setUseSchema (isXMLSchemaValidation ()); customizeMarshaller (aMarshaller); final ServiceGroupType ret = executeGenericRequest (aRequest, new SMPHttpResponseHandlerUnsigned <> (aMarshaller)); if (LOGGER.isDebugEnabled ()) LOGGER.debug ("Received response: " + ret); return ret; } @Nullable public ServiceGroupType getServiceGroupOrNull (@Nonnull final IParticipantIdentifier aServiceGroupID) throws SMPClientException { try { return getServiceGroup (aServiceGroupID); } catch (final SMPClientNotFoundException ex) { if (LOGGER.isDebugEnabled ()) LOGGER.debug ("Found no ServiceGroup"); return null; } } /** * Extract all parsable document types from the passed Service group. This * method always uses {@link PeppolIdentifierFactory} to parse the document * type identifiers. * * @param aSG * The service group to parse. May be null. * @return Never null but a maybe empty list. * @since 8.0.4 */ @Nonnull public static ICommonsList getAllDocumentTypes (@Nullable final ServiceGroupType aSG) { return getAllDocumentTypes (aSG, PeppolIdentifierFactory.INSTANCE, null); } /** * Extract all parsable document types from the passed Service group. This * method uses the provided {@link IIdentifierFactory} to parse the document * type identifiers. * * @param aSG * The service group to parse. May be null. * @param aIdentifierFactory * The identifier factory to be used. May not be null. * @param aUnhandledHrefHandler * An optional consumer for Hrefs that could not be parsed into a * document type identifier. May be null. * @return Never null but a maybe empty list. * @since 8.0.4 */ @Nonnull public static ICommonsList getAllDocumentTypes (@Nullable final ServiceGroupType aSG, @Nonnull final IIdentifierFactory aIdentifierFactory, @Nullable final Consumer aUnhandledHrefHandler) { ValueEnforcer.notNull (aIdentifierFactory, "IdentifierFactory"); final ICommonsList ret = new CommonsArrayList <> (); if (aSG != null && aSG.getParticipantIdentifier () != null && aSG.getServiceMetadataReferenceCollection () != null) { final String sPathStart = "/" + CIdentifier.getURIEncoded (aSG.getParticipantIdentifier ()) + "/" + URL_PART_SERVICES + "/"; for (final ServiceMetadataReferenceType aSMR : aSG.getServiceMetadataReferenceCollection () .getServiceMetadataReference ()) { final String sOriginalHref = aSMR.getHref (); // Decoded href is important for unification final String sHref = CIdentifier.createPercentDecoded (sOriginalHref); boolean bSuccess = false; // Case insensitive "indexOf" here final int nPathStart = StringHelper.getIndexOfIgnoreCase (sHref, sPathStart, Locale.US); if (nPathStart >= 0) { final String sDocType = sHref.substring (nPathStart + sPathStart.length ()); final IDocumentTypeIdentifier aDocType = aIdentifierFactory.parseDocumentTypeIdentifier (sDocType); if (aDocType != null) { // Found a document type ret.add (aDocType); bSuccess = true; } } if (!bSuccess) { // Failed to parse as doc type if (LOGGER.isDebugEnabled ()) LOGGER.debug ("Failed to parse '" + sOriginalHref + "' as a document type identifier"); if (aUnhandledHrefHandler != null) aUnhandledHrefHandler.accept (sOriginalHref); } } } return ret; } /** * Gets a signed service metadata object given by its service group id and its * document type. This is a specification compliant method. * * @param aServiceGroupID * The service group id of the service metadata to get. May not be * null. * @param aDocumentTypeID * The document type of the service metadata to get. May not be * null. * @return A signed service metadata object. Never null. * @throws SMPClientException * in case something goes wrong * @throws SMPClientUnauthorizedException * A HTTP Forbidden was received, should not happen. * @throws SMPClientNotFoundException * The service group id or document type did not exist. * @throws SMPClientBadRequestException * The request was not well formed. * @see #getServiceMetadataOrNull(IParticipantIdentifier, * IDocumentTypeIdentifier) * @since v8.0.0 */ @Nonnull public SignedServiceMetadataType getServiceMetadata (@Nonnull final IParticipantIdentifier aServiceGroupID, @Nonnull final IDocumentTypeIdentifier aDocumentTypeID) throws SMPClientException { ValueEnforcer.notNull (aServiceGroupID, "ServiceGroupID"); ValueEnforcer.notNull (aDocumentTypeID, "DocumentTypeID"); final String sURI = getSMPHostURI () + aServiceGroupID.getURIPercentEncoded () + "/" + URL_PART_SERVICES + "/" + aDocumentTypeID.getURIPercentEncoded (); if (LOGGER.isDebugEnabled ()) LOGGER.debug ("SMPClient getServiceRegistration@" + sURI); final boolean bXSDValidation = isXMLSchemaValidation (); final boolean bVerifySignature = isVerifySignature (); final boolean bSecureValidation = isSecureValidation (); final KeyStore aTrustStore = getTrustStore (); if (bVerifySignature && aTrustStore == null) LOGGER.error ("Peppol SMP client Verify Signature is enabled, but no TrustStore is provided. This will not work."); SignedServiceMetadataType aMetadata; { final HttpGet aRequest = new HttpGet (sURI); final SMPMarshallerSignedServiceMetadataType aMarshaller = new SMPMarshallerSignedServiceMetadataType (); aMarshaller.setUseSchema (bXSDValidation); customizeMarshaller (aMarshaller); // Deal with signed responses final SMPHttpResponseHandlerSigned aResponseHandler = new SMPHttpResponseHandlerSigned <> (aMarshaller, aTrustStore); aResponseHandler.setVerifySignature (bVerifySignature); aResponseHandler.setSecureValidation (bSecureValidation); // Main execution aMetadata = executeGenericRequest (aRequest, aResponseHandler); if (LOGGER.isDebugEnabled ()) LOGGER.debug ("Received response: " + aMetadata); } // If the Redirect element is present, then follow 1 redirect. if (isFollowSMPRedirects ()) { if (aMetadata.getServiceMetadata () != null && aMetadata.getServiceMetadata ().getRedirect () != null) { final RedirectType aRedirect = aMetadata.getServiceMetadata ().getRedirect (); // Follow the redirect LOGGER.info ("Following a redirect from '" + sURI + "' to '" + aRedirect.getHref () + "'"); final HttpGet aRequest = new HttpGet (aRedirect.getHref ()); // Create a new Marshaller to ensure customization is simple final SMPMarshallerSignedServiceMetadataType aMarshaller = new SMPMarshallerSignedServiceMetadataType (); aMarshaller.setUseSchema (bXSDValidation); customizeMarshaller (aMarshaller); // Deal with signed responses final SMPHttpResponseHandlerSigned aResponseHandler = new SMPHttpResponseHandlerSigned <> (aMarshaller, aTrustStore); aResponseHandler.setVerifySignature (bVerifySignature); aResponseHandler.setSecureValidation (bSecureValidation); // Main execution aMetadata = executeGenericRequest (aRequest, aResponseHandler); // Check that the certificateUID is correct. boolean bCertificateSubjectFound = false; for (final Object aObj : aMetadata.getSignature ().getKeyInfo ().getContent ()) if (aObj instanceof JAXBElement ) { final Object aInfoValue = ((JAXBElement ) aObj).getValue (); if (aInfoValue instanceof X509DataType) { final X509DataType aX509Data = (X509DataType) aInfoValue; if (containsRedirectSubject (aX509Data, aRedirect.getCertificateUID ())) { bCertificateSubjectFound = true; break; } } } if (!bCertificateSubjectFound) throw new SMPClientException ("The X509 certificate did not contain a certificate subject."); } } else { if (LOGGER.isDebugEnabled ()) LOGGER.debug ("Following SMP redirects is disabled"); } return aMetadata; } /** * Gets a signed service metadata object given by its service group id and its * document type. This is a specification compliant method. * * @param aServiceGroupID * The service group id of the service metadata to get. May not be * null. * @param aDocumentTypeID * The document type of the service metadata to get. May not be * null. * @return A signed service metadata object or null if no such * registration is present. * @throws SMPClientException * in case something goes wrong * @throws SMPClientUnauthorizedException * A HTTP Forbidden was received, should not happen. * @throws SMPClientBadRequestException * The request was not well formed. * @see #getServiceMetadata(IParticipantIdentifier, IDocumentTypeIdentifier) * @since v8.0.0 */ @Nullable public SignedServiceMetadataType getServiceMetadataOrNull (@Nonnull final IParticipantIdentifier aServiceGroupID, @Nonnull final IDocumentTypeIdentifier aDocumentTypeID) throws SMPClientException { try { return getServiceMetadata (aServiceGroupID, aDocumentTypeID); } catch (final SMPClientNotFoundException ex) { if (LOGGER.isDebugEnabled ()) LOGGER.debug ("Found no ServiceMetadata"); return null; } } private static boolean _hasSameContent (@Nonnull final ProcessIdentifierType aPI1, @Nonnull final IProcessIdentifier aPI2) { return EqualsHelper.equals (aPI1.getScheme (), aPI2.getScheme ()) && EqualsHelper.equals (aPI1.getValue (), aPI2.getValue ()); } /** * Extract the Endpoint from the signedServiceMetadata that matches the passed * process ID and the optional required transport profile. This method checks * the validity of the endpoint at the current point in time. * * @param aSignedServiceMetadata * The signed service meta data object (e.g. from a call to * {@link #getServiceMetadataOrNull(IParticipantIdentifier, IDocumentTypeIdentifier)} * . May not be null. * @param aProcessID * The process identifier to be looked up. May not be null * . * @param aTransportProfile * The required transport profile to be used. May not be * null. * @return null if no matching endpoint was found */ @Nullable public static EndpointType getEndpoint (@Nonnull final SignedServiceMetadataType aSignedServiceMetadata, @Nonnull final IProcessIdentifier aProcessID, @Nonnull final ISMPTransportProfile aTransportProfile) { ValueEnforcer.notNull (aSignedServiceMetadata, "SignedServiceMetadata"); return getEndpoint (aSignedServiceMetadata.getServiceMetadata (), aProcessID, aTransportProfile); } /** * Extract the Endpoint from the signedServiceMetadata that matches the passed * process ID and the optional required transport profile. * * @param aSignedServiceMetadata * The signed service meta data object (e.g. from a call to * {@link #getServiceMetadataOrNull(IParticipantIdentifier, IDocumentTypeIdentifier)} * . May not be null. * @param aProcessID * The process identifier to be looked up. May not be null * . * @param aTransportProfile * The required transport profile to be used. May not be * null. * @param aCheckDT * The date and time for when the endpoint is meant to be valid if the * end point contains a ServiceActivationDate and/or a * ServiceExpirationDate. May not be null. * @return null if no matching endpoint was found * @since 8.7.3 */ @Nullable public static EndpointType getEndpointAt (@Nonnull final SignedServiceMetadataType aSignedServiceMetadata, @Nonnull final IProcessIdentifier aProcessID, @Nonnull final ISMPTransportProfile aTransportProfile, @Nonnull final LocalDateTime aCheckDT) { ValueEnforcer.notNull (aSignedServiceMetadata, "SignedServiceMetadata"); return getEndpointAt (aSignedServiceMetadata.getServiceMetadata (), aProcessID, aTransportProfile, aCheckDT); } /** * Extract the Endpoint from the ServiceMetadata that matches the passed * process ID and the optional required transport profile. This method checks * the validity of the endpoint at the current point in time. * * @param aServiceMetadata * The unsigned service meta data object. May not be null. * @param aProcessID * The process identifier to be looked up. May not be null * . * @param aTransportProfile * The required transport profile to be used. May not be * null. * @return null if no matching endpoint was found * @since 8.2.6 */ @Nullable public static EndpointType getEndpoint (@Nonnull final ServiceMetadataType aServiceMetadata, @Nonnull final IProcessIdentifier aProcessID, @Nonnull final ISMPTransportProfile aTransportProfile) { return getEndpointAt (aServiceMetadata, aProcessID, aTransportProfile, PDTFactory.getCurrentLocalDateTime ()); } /** * Check if the provided SMP endpoint is valid at the provided date and time. * This is to ensure the ServiceActionDate and ServiceExpirationDate values * are honoured according to the changes in the Peppol SMP 1.2.0 * specification. * * @param aEndpoint * The SMP endpoint to check. May not be null. * @param aCheckDT * The date and time at which the check is performed. May not be * null. * @return true if the endpoint is valid, false if * not. * @since 8.7.3 */ public static boolean isEndpointValidAt (@Nonnull final EndpointType aEndpoint, @Nonnull final LocalDateTime aCheckDT) { ValueEnforcer.notNull (aEndpoint, "Endpoint"); ValueEnforcer.notNull (aCheckDT, "CheckDT"); // Check not before time final LocalDateTime aNotBefore = aEndpoint.getServiceActivationDateLocal (); if (aNotBefore != null) { if (aCheckDT.isBefore (aNotBefore)) { if (LOGGER.isDebugEnabled ()) LOGGER.debug ("SMP endpoint activation date " + aNotBefore + " is after the check DT " + aCheckDT); return false; } } // Check not after time final LocalDateTime aNotAfter = aEndpoint.getServiceExpirationDateLocal (); if (aNotAfter != null) { if (aCheckDT.isAfter (aNotAfter)) { if (LOGGER.isDebugEnabled ()) LOGGER.debug ("SMP endpoint expiration date " + aNotAfter + " is before the check DT " + aCheckDT); return false; } } return true; } /** * Extract the Endpoint from the ServiceMetadata that matches the passed * process ID and the optional required transport profile. * * @param aServiceMetadata * The unsigned service meta data object. May not be null. * @param aProcessID * The process identifier to be looked up. May not be null * . * @param aTransportProfile * The required transport profile to be used. May not be * null. * @param aCheckDT * The date and time for when the endpoint is meant to be valid if the * end point contains a ServiceActivationDate and/or a * ServiceExpirationDate. May not be null. * @return null if no matching endpoint was found * @since 8.7.3 */ @Nullable public static EndpointType getEndpointAt (@Nonnull final ServiceMetadataType aServiceMetadata, @Nonnull final IProcessIdentifier aProcessID, @Nonnull final ISMPTransportProfile aTransportProfile, @Nonnull final LocalDateTime aCheckDT) { ValueEnforcer.notNull (aServiceMetadata, "ServiceMetadata"); final ServiceInformationType aServiceInformation = aServiceMetadata.getServiceInformation (); if (aServiceInformation == null) { // It seems to be a redirect and not service information return null; } ValueEnforcer.notNull (aServiceInformation.getProcessList (), "ServiceMetadata.ServiceInformation.ProcessList"); ValueEnforcer.notNull (aProcessID, "ProcessID"); ValueEnforcer.notNull (aTransportProfile, "TransportProfile"); ValueEnforcer.notNull (aCheckDT, "CheckDT"); // Iterate all processes final ICommonsSet aUsedProcessIDs = new CommonsHashSet <> (); for (final ProcessType aProcessType : aServiceInformation.getProcessList ().getProcess ()) { final String sProcessID = CIdentifier.getURIEncoded (aProcessType.getProcessIdentifier ()); if (!aUsedProcessIDs.add (sProcessID)) LOGGER.warn ("The Process ID '" + sProcessID + "' is contained more then once within a ServiceMetadataType"); // Matches the requested one? if (_hasSameContent (aProcessType.getProcessIdentifier (), aProcessID)) { // Filter all endpoints by required transport profile final ICommonsList aRelevantEndpoints = new CommonsArrayList <> (); final ICommonsSet aUsedTransportProfiles = new CommonsHashSet <> (); for (final EndpointType aEndpoint : aProcessType.getServiceEndpointList ().getEndpoint ()) { final String sTransportProfile = aEndpoint.getTransportProfile (); if (!aUsedTransportProfiles.add (sTransportProfile)) LOGGER.warn ("The Transport Profile '" + sTransportProfile + "' is contained more then once within the Process '" + sProcessID + "'"); if (aTransportProfile.getID ().equals (sTransportProfile) && isEndpointValidAt (aEndpoint, aCheckDT)) aRelevantEndpoints.add (aEndpoint); } if (aRelevantEndpoints.size () != 1) { LOGGER.warn ("Found " + aRelevantEndpoints.size () + " endpoints for process " + aProcessID + " and transport profile '" + aTransportProfile.getID () + "' valid at " + aCheckDT + (aRelevantEndpoints.isEmpty () ? "" : ": " + aRelevantEndpoints.toString () + " - using the first one")); } // Use the first endpoint final EndpointType ret = aRelevantEndpoints.getFirstOrNull (); if (LOGGER.isDebugEnabled ()) LOGGER.debug ("Found matching SMP endpoint: " + ret); return ret; } } if (LOGGER.isDebugEnabled ()) LOGGER.debug ("Found no matching SMP endpoint"); return null; } /** * Get the endpoint address URI from the provided SMP endpoint. * * @param aEndpoint * The endpoint to be used. May be null. * @return null if the endpoint is null if the * endpoint has no address URI. */ @Nullable public static String getEndpointAddress (@Nullable final EndpointType aEndpoint) { return aEndpoint == null || aEndpoint.getEndpointReference () == null ? null : W3CEndpointReferenceHelper.getAddress (aEndpoint.getEndpointReference ()); } /** * Get the certificate string from the provided SMP endpoint. * * @param aEndpoint * The endpoint to be used. May be null. * @return null if the endpoint is null if the * endpoint has no certificate. */ @Nullable public static String getEndpointCertificateString (@Nullable final EndpointType aEndpoint) { return aEndpoint == null ? null : aEndpoint.getCertificate (); } /** * Get the certificate bytes from the specified endpoint. * * @param aEndpoint * The endpoint to be used. May be null. * @return null if no such endpoint exists, or if the endpoint * has no certificate * @throws CertificateException * In case the conversion from byte to X509 certificate failed */ @Nullable public static X509Certificate getEndpointCertificate (@Nullable final EndpointType aEndpoint) throws CertificateException { final String sCertString = getEndpointCertificateString (aEndpoint); return CertificateHelper.convertStringToCertficate (sCertString); } /** * Helper method to iterate all matching document type identifiers. This * method prefers direct matches ("busdox-docid-qns") over wildcard matches * ("peppol-doctype-wildcard"). * * @param aBaseDocTypes * The list of document types to filter. Usually this list was obtained * from an SMP query "get all receiving capabilities of participant". * May not be null, but maybe empty. * @param sDocTypeValue * The document type identifier value (!) without the scheme to * search. The schemes are added internally automatically. * @param aMatchingDocTypeConsumer * The consumer to be invoked for each match. May not be * null. * @since 8.8.1 * @deprecated Use {@link PeppolWildcardSelector} instead */ @Deprecated (forRemoval = true, since = "9.2.0") public static void forEachMatchingWildcardDocumentType (@Nonnull final ICommonsList aBaseDocTypes, @Nonnull @Nonempty final String sDocTypeValue, @Nonnull final Function aMatchingDocTypeConsumer) { // For backwards compatibility new PeppolWildcardSelector (EMode.BUSDOX_THEN_WILDCARD).forEachMatchingDocumentType (aBaseDocTypes, sDocTypeValue, aMatchingDocTypeConsumer); } /** * Wildcard (DDTS) aware SMP lookup. It interprets the wildcard character * (*) appropriately and tries all possibilities. Internally it * works by first querying all the document types via * {@link #getServiceGroupOrNull(IParticipantIdentifier)} and afterwards find * the closest possible match. * * @param aReceiverID * Receiver ID. May not be null. * @param aDocTypeID * Source document type ID. May not be null. The document * type may use any document type identifier scheme. * @return null if no matching SMP entry was found * @throws SMPClientException * In case of error * @since 8.8.1 * @deprecated Because the wildcard selection mode is hard coded and may not * be ideal in all cases. Use * {@link #getWildcardServiceMetadataOrNull(IParticipantIdentifier, IDocumentTypeIdentifier, EMode)} * instead. */ @Nullable @Deprecated (forRemoval = true, since = "9.2.0") public SignedServiceMetadataType getWildcardServiceMetadataOrNull (@Nonnull final IParticipantIdentifier aReceiverID, @Nonnull final IDocumentTypeIdentifier aDocTypeID) throws SMPClientException { return getWildcardServiceMetadataOrNull (aReceiverID, aDocTypeID, EMode.BUSDOX_THEN_WILDCARD); } @Nullable public SignedServiceMetadataType getWildcardServiceMetadataOrNull (@Nonnull final IParticipantIdentifier aReceiverID, @Nonnull final IDocumentTypeIdentifier aDocTypeID, @Nonnull final PeppolWildcardSelector.EMode eSelectionMode) throws SMPClientException { ValueEnforcer.notNull (aReceiverID, "ReceiverID"); ValueEnforcer.notNull (aDocTypeID, "DocTypeID"); ValueEnforcer.notNull (eSelectionMode, "SelectionMode"); final SignedServiceMetadataType aSSM; // PINT/DDTS specific lookup LOGGER.info ("Using SMP wildcard lookup for '" + aReceiverID.getURIEncoded () + "' on '" + aDocTypeID.getURIEncoded () + "' with selection mode " + eSelectionMode); // 1. query all document types from SMP final ServiceGroupType aSG = getServiceGroupOrNull (aReceiverID); if (aSG == null) { // Invalid participant ID aSSM = null; } else { // Extract all document types from SMP result final ICommonsList aSupportedDocTypes = SMPClientReadOnly.getAllDocumentTypes (aSG); LOGGER.info ("Found " + aSupportedDocTypes.size () + " supported document types for '" + aReceiverID.getURIEncoded () + "'"); // Main matching final Wrapper aMatchingDocType = new Wrapper <> (); new PeppolWildcardSelector (eSelectionMode).forEachMatchingDocumentType (aSupportedDocTypes, aDocTypeID.getValue (), dt -> { aMatchingDocType.set (dt); return EContinue.BREAK; }); final IDocumentTypeIdentifier aSelectedDocTypeID = aMatchingDocType.get (); if (aSelectedDocTypeID != null) { LOGGER.info ("Using '" + aSelectedDocTypeID.getURIEncoded () + "' for defacto querying the SMP"); // Do the main SMP lookup on the metadata aSSM = getServiceMetadataOrNull (aReceiverID, aSelectedDocTypeID); } else { LOGGER.info ("Found no matching document type ID to be queried via Wildcard"); aSSM = null; } } return aSSM; } /** * Returns a complete service group. A complete service group contains both * the service group and the service metadata.
* NOTE: this API is NOT supported by all SMP implementations. It is based on * a proprietary API provided by the Peppol reference implementation and now * supported by phoss SMP but not all other SMPs. * * @param aURLProvider * The URL provider to be used. May not be null. * @param aSMLInfo * The SML object to be used * @param aServiceGroupID * The service group id corresponding to the service group which one * wants to get. * @return The complete service group containing service group and service * metadata * @throws SMPClientException * in case something goes wrong * @throws SMPDNSResolutionException * if DNS resolution fails * @throws SMPClientUnauthorizedException * A HTTP Forbidden was received, should not happen. * @throws SMPClientNotFoundException * The service group id did not exist. * @throws SMPClientBadRequestException * The request was not well formed. */ @Nonnull public static CompleteServiceGroupType getCompleteServiceGroupByDNS (@Nonnull final ISMPURLProvider aURLProvider, @Nonnull final ISMLInfo aSMLInfo, @Nonnull final IParticipantIdentifier aServiceGroupID) throws SMPClientException, SMPDNSResolutionException { return new SMPClientReadOnly (aURLProvider, aServiceGroupID, aSMLInfo).getCompleteServiceGroup (aServiceGroupID); } /** * Returns a service group. A service group references to the service * metadata. * * @param aURLProvider * The URL provider to be used. May not be null. * @param aSMLInfo * The SML object to be used * @param aServiceGroupID * The service group id corresponding to the service group which one * wants to get. * @return The service group * @throws SMPClientException * in case something goes wrong * @throws SMPDNSResolutionException * If DNS resolution fails * @throws SMPClientUnauthorizedException * A HTTP Forbidden was received, should not happen. * @throws SMPClientNotFoundException * The service group id did not exist. * @throws SMPClientBadRequestException * The request was not well formed. */ @Nonnull public static ServiceGroupType getServiceGroupByDNS (@Nonnull final ISMPURLProvider aURLProvider, @Nonnull final ISMLInfo aSMLInfo, @Nonnull final IParticipantIdentifier aServiceGroupID) throws SMPClientException, SMPDNSResolutionException { return new SMPClientReadOnly (aURLProvider, aServiceGroupID, aSMLInfo).getServiceGroup (aServiceGroupID); } /** * Gets a signed service metadata object given by its service group id and its * document type. * * @param aURLProvider * The URL provider to be used. May not be null. * @param aSMLInfo * The SML object to be used * @param aServiceGroupID * The service group id of the service metadata to get. * @param aDocumentTypeID * The document type of the service metadata to get. * @return A signed service metadata object. * @throws SMPClientException * in case something goes wrong * @throws SMPDNSResolutionException * if DNS resolution fails * @throws SMPClientUnauthorizedException * A HTTP Forbidden was received, should not happen. * @throws SMPClientNotFoundException * The service group id or document type did not exist. * @throws SMPClientBadRequestException * The request was not well formed. */ @Nonnull public static SignedServiceMetadataType getServiceRegistrationByDNS (@Nonnull final ISMPURLProvider aURLProvider, @Nonnull final ISMLInfo aSMLInfo, @Nonnull final IParticipantIdentifier aServiceGroupID, @Nonnull final IDocumentTypeIdentifier aDocumentTypeID) throws SMPClientException, SMPDNSResolutionException { return new SMPClientReadOnly (aURLProvider, aServiceGroupID, aSMLInfo).getServiceMetadata (aServiceGroupID, aDocumentTypeID); } }




© 2015 - 2025 Weber Informatics LLC | Privacy Policy