• Home
• com.hp.autonomy.hod
• hod-sso-spring-security
• 0.8.0
• source code
• HodAuthenticationRequestServiceImpl.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.hp.autonomy.hod.sso.HodAuthenticationRequestServiceImpl Maven / Gradle / Ivy

/*
 * Copyright 2015 Hewlett-Packard Development Company, L.P.
 * Licensed under the MIT License (the "License"); you may not use this file except in compliance with the License.
 */

package com.hp.autonomy.hod.sso;

import com.hp.autonomy.frontend.configuration.ConfigService;
import com.hp.autonomy.hod.client.api.authentication.AuthenticationService;
import com.hp.autonomy.hod.client.api.authentication.SignedRequest;
import com.hp.autonomy.hod.client.api.authentication.TokenType;
import com.hp.autonomy.hod.client.error.HodErrorException;

import java.net.URL;
import java.util.Collection;
import java.util.Collections;

/**
 * Default implementation of HodAuthenticationRequestService
 */
public class HodAuthenticationRequestServiceImpl implements HodAuthenticationRequestService {

    private final ConfigService configService;

    private final AuthenticationService authenticationService;

    private final UnboundTokenService unboundTokenService;

    /**
     * Creates a new HodAuthenticationRequestServiceImpl
     * @param configService The configuration service which will provide the configuration
     * @param authenticationService The authentication service to use to sign the requests
     * @param unboundTokenService The unbound token service used to provide teh unbound token
     */
    public HodAuthenticationRequestServiceImpl(
        final ConfigService configService,
        final AuthenticationService authenticationService,
        final UnboundTokenService unboundTokenService
    ) {
        this.configService = configService;
        this.authenticationService = authenticationService;
        this.unboundTokenService = unboundTokenService;
    }

    @Override
    public SignedRequest getCombinedPatchRequest() throws HodErrorException {
        return authenticationService.combinedPatchRequest(getAllowedOrigins(), unboundTokenService.getUnboundToken());
    }

    @Override
    public SignedRequest getSsoPageCombinedPatchRequest(final URL redirectUrl) throws HodErrorException, InvalidOriginException {
        final String redirectOrigin = resolveOrigin(redirectUrl);

        if (getAllowedOrigins().contains(redirectOrigin)) {
            final URL ssoUrl = configService.getConfig().getSsoUrl();

            return authenticationService.combinedPatchRequest(
                    Collections.singleton(resolveOrigin(ssoUrl)),
                    redirectUrl.toString(),
                    unboundTokenService.getUnboundToken()
            );
        } else {
            throw new InvalidOriginException(redirectUrl);
        }
    }

    private Collection getAllowedOrigins() {
        return configService.getConfig().getAllowedOrigins();
    }

    private String resolveOrigin(final URL url) {
        return url.getProtocol() + "://" + url.getAuthority();
    }
}