com.microsoft.bot.connector.customizations.MicrosoftAppCredentials Maven / Gradle / Ivy
The newest version!
// Copyright (c) Microsoft Corporation. All rights reserved.
// Licensed under the MIT License.
package com.microsoft.bot.connector.customizations;
import com.fasterxml.jackson.annotation.JsonProperty;
import com.fasterxml.jackson.databind.ObjectMapper;
import com.microsoft.rest.credentials.ServiceClientCredentials;
import okhttp3.FormBody;
import okhttp3.OkHttpClient;
import okhttp3.Request;
import okhttp3.Response;
import java.io.IOException;
import java.net.MalformedURLException;
import java.net.URL;
import java.time.LocalDateTime;
import java.util.concurrent.ConcurrentHashMap;
import java.util.concurrent.ConcurrentMap;
import static com.microsoft.bot.connector.customizations.AuthenticationConstants.ToChannelFromBotLoginUrl;
import static com.microsoft.bot.connector.customizations.AuthenticationConstants.ToChannelFromBotOAuthScope;
public class MicrosoftAppCredentials implements ServiceClientCredentials {
private String appId;
private String appPassword;
private OkHttpClient client;
private ObjectMapper mapper;
private String currentToken = null;
private long expiredTime = 0;
public MicrosoftAppCredentials(String appId, String appPassword) {
this.appId = appId;
this.appPassword = appPassword;
client = new OkHttpClient.Builder().build();
mapper = new ObjectMapper().findAndRegisterModules();
}
public String getToken(Request request) throws IOException {
if (System.currentTimeMillis() < expiredTime) {
return currentToken;
}
Request reqToken = request.newBuilder()
.url(ToChannelFromBotLoginUrl)
.post(new FormBody.Builder()
.add("grant_type", "client_credentials")
.add("client_id", this.appId)
.add("client_secret", this.appPassword)
.add("scope", ToChannelFromBotOAuthScope)
.build()).build();
Response response = client.newCall(reqToken).execute();
if (response.isSuccessful()) {
String payload = response.body().string();
AuthenticationResponse authResponse = mapper.readValue(payload, AuthenticationResponse.class);
expiredTime = System.currentTimeMillis() + (authResponse.expiresIn * 1000);
currentToken = authResponse.accessToken;
}
return currentToken;
}
@Override
public void applyCredentialsFilter(OkHttpClient.Builder clientBuilder) {
clientBuilder.interceptors().add(new MicrosoftAppCredentialsInterceptor(this));
}
private static class AuthenticationResponse {
@JsonProperty(value = "token_type")
String tokenType;
@JsonProperty(value = "expires_in")
long expiresIn;
@JsonProperty(value = "ext_expires_in")
long extExpiresIn;
@JsonProperty(value = "access_token")
String accessToken;
}
public static void trustServiceUrl(String serviceUrl) {
trustServiceUrl(serviceUrl, LocalDateTime.now().plusDays(1));
}
public static void trustServiceUrl(String serviceUrl, LocalDateTime expirationTime) {
try {
URL url = new URL(serviceUrl);
trustServiceUrl(url, expirationTime);
} catch (MalformedURLException e) { }
}
public static void trustServiceUrl(URL serviceUrl, LocalDateTime expirationTime) {
_trustHostNames.putIfAbsent(serviceUrl.getHost(), expirationTime);
}
public static boolean isTrustedServiceUrl(String serviceUrl) {
try {
URL url = new URL(serviceUrl);
return isTrustedServiceUrl(url);
} catch (MalformedURLException e) {
return false;
}
}
public static boolean isTrustedServiceUrl(URL url) {
return !_trustHostNames.getOrDefault(url.getHost(), LocalDateTime.MIN).isBefore(LocalDateTime.now().minusMinutes(5));
}
private static ConcurrentMap _trustHostNames = new ConcurrentHashMap<>();
static {
_trustHostNames.putIfAbsent("state.botframework.com", LocalDateTime.MAX);
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy