com.linecorp.armeria.spring.web.reactive.DefaultSslInfo Maven / Gradle / Ivy
/*
* Copyright 2018 LINE Corporation
*
* LINE Corporation licenses this file to you under the Apache License,
* version 2.0 (the "License"); you may not use this file except in compliance
* with the License. You may obtain a copy of the License at:
*
* https://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
* License for the specific language governing permissions and limitations
* under the License.
*/
/*
* Copyright 2002-2018 the original author or authors.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package com.linecorp.armeria.spring.web.reactive;
import java.security.cert.Certificate;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.List;
import javax.net.ssl.SSLSession;
import org.springframework.http.server.reactive.SslInfo;
import org.springframework.util.Assert;
import com.linecorp.armeria.common.annotation.Nullable;
/**
* Default implementation of {@link SslInfo}.
*
* @author Rossen Stoyanchev
* @since 5.0.2
*/
final class DefaultSslInfo implements SslInfo {
// Forked from spring-web-5.1.5.RELEASE at 1e4a3a2370b9ded44a62155aea59c0d81c36149f
@Nullable
private final String sessionId;
@Nullable
private final X509Certificate[] peerCertificates;
DefaultSslInfo(SSLSession session) {
Assert.notNull(session, "SSLSession is required");
sessionId = initSessionId(session);
peerCertificates = initCertificates(session);
}
@Override
@Nullable
public String getSessionId() {
return sessionId;
}
@Override
@Nullable
public X509Certificate[] getPeerCertificates() {
return peerCertificates;
}
@Nullable
private static String initSessionId(SSLSession session) {
final byte[] bytes = session.getId();
if (bytes == null) {
return null;
}
final StringBuilder sb = new StringBuilder();
for (byte b : bytes) {
String digit = Integer.toHexString(b);
if (digit.length() < 2) {
sb.append('0');
}
if (digit.length() > 2) {
digit = digit.substring(digit.length() - 2);
}
sb.append(digit);
}
return sb.toString();
}
@Nullable
private static X509Certificate[] initCertificates(SSLSession session) {
final Certificate[] certificates;
try {
certificates = session.getPeerCertificates();
} catch (Throwable ex) {
return null;
}
final List result = new ArrayList<>(certificates.length);
for (Certificate certificate : certificates) {
if (certificate instanceof X509Certificate) {
result.add((X509Certificate) certificate);
}
}
return !result.isEmpty() ? result.toArray(new X509Certificate[0]) : null;
}
}