• Home
• com.ionoscloud.s3
• ionos-cloud-sdk-s3
• 0.0.1-DEV
• source code
• CertificateIdentityProvider.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.ionoscloud.s3.credentials.CertificateIdentityProvider Maven / Gradle / Ivy

package com.ionoscloud.s3.credentials;

import java.io.IOException;
import java.security.GeneralSecurityException;
import java.util.Objects;
import javax.annotation.Nonnull;
import javax.annotation.Nullable;
import javax.net.ssl.SSLSocketFactory;
import javax.net.ssl.X509TrustManager;
import okhttp3.HttpUrl;
import okhttp3.MediaType;
import okhttp3.OkHttpClient;
import okhttp3.Request;
import okhttp3.RequestBody;
import org.simpleframework.xml.Element;
import org.simpleframework.xml.Namespace;
import org.simpleframework.xml.Path;
import org.simpleframework.xml.Root;

/** Credential provider */
public class CertificateIdentityProvider extends AssumeRoleBaseProvider {
  private static final RequestBody EMPTY_BODY =
      RequestBody.create(new byte[] {}, MediaType.parse("application/octet-stream"));
  private final Request request;

  public CertificateIdentityProvider(
      @Nonnull String stsEndpoint,
      @Nullable SSLSocketFactory sslSocketFactory,
      @Nullable X509TrustManager trustManager,
      @Nullable Integer durationSeconds,
      @Nullable OkHttpClient customHttpClient)
      throws GeneralSecurityException, IOException {
    super(customHttpClient, sslSocketFactory, trustManager);
    stsEndpoint = Objects.requireNonNull(stsEndpoint, "STS endpoint cannot be empty");
    HttpUrl url = Objects.requireNonNull(HttpUrl.parse(stsEndpoint), "Invalid STS endpoint");
    if (!url.isHttps()) {
      throw new IllegalArgumentException("STS endpoint scheme must be HTTPS");
    }

    HttpUrl.Builder urlBuilder =
        newUrlBuilder(
            url,
            "AssumeRoleWithCertificate",
            getValidDurationSeconds(durationSeconds),
            null,
            null,
            null);
    url = urlBuilder.build();
    this.request = new Request.Builder().url(url).method("POST", EMPTY_BODY).build();
  }

  @Override
  protected Request getRequest() {
    return this.request;
  }

  @Override
  protected Class getResponseClass() {
    return CertificateIdentityResponse.class;
  }

  /** Object representation of response XML of AssumeRoleWithCertificate API. */
  @Root(name = "AssumeRoleWithCertificateResponse", strict = false)
  @Namespace(reference = "https://sts.amazonaws.com/doc/2011-06-15/")
  public static class CertificateIdentityResponse implements AssumeRoleBaseProvider.Response {
    @Path(value = "AssumeRoleWithCertificateResult")
    @Element(name = "Credentials")
    private Credentials credentials;

    public Credentials getCredentials() {
      return credentials;
    }
  }
}