• Home
• com.tencentcloudapi
• tencentcloud-sdk-java-common
• 3.1.1097
• source code
• STSCredential.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.tencentcloudapi.common.provider.STSCredential Maven / Gradle / Ivy

package com.tencentcloudapi.common.provider;

import com.google.gson.Gson;
import com.google.gson.reflect.TypeToken;
import com.tencentcloudapi.common.CommonClient;
import com.tencentcloudapi.common.Credential;
import com.tencentcloudapi.common.exception.TencentCloudSDKException;
import com.tencentcloudapi.common.profile.ClientProfile;
import com.tencentcloudapi.common.profile.HttpProfile;

import java.util.Date;
import java.util.HashMap;
import java.util.Map;

public class STSCredential extends Credential {
    private String secretId;
    private String secretKey;
    private String roleArn;
    private String roleSessionName;
    private String tmpSecretId;
    private String tmpSecretKey;
    private String token;
    private int expiredTime;

    public STSCredential(String secretId, String secretKey, String roleArn, String roleSessionName) {
        this.secretId = secretId;
        this.secretKey = secretKey;
        this.roleArn = roleArn;
        this.roleSessionName = roleSessionName;
    }

    public String getSecretId() {
        if (tmpSecretId == null || needRefresh()) {
            try {
                updateCredential();
            } catch (TencentCloudSDKException e) {
                return null;
            }
        }
        return tmpSecretId;
    }

    public String getSecretKey() {
        if (tmpSecretKey == null || needRefresh()) {
            try {
                updateCredential();
            } catch (TencentCloudSDKException e) {
                return null;
            }
        }
        return tmpSecretKey;
    }

    public String getToken() {
        if (token == null || needRefresh()) {
            try {
                updateCredential();
            } catch (TencentCloudSDKException e) {
                return null;
            }
        }
        return token;
    }

    private void updateCredential() throws TencentCloudSDKException {
        Credential cred = new Credential(secretId, secretKey);
        HttpProfile httpProfile = new HttpProfile();
        httpProfile.setEndpoint("sts.tencentcloudapi.com");
        ClientProfile clientProfile = new ClientProfile();
        clientProfile.setHttpProfile(httpProfile);
        CommonClient client = new CommonClient("sts", "2018-08-13", cred, "ap-guangzhou", clientProfile);
        String resp = client.call("AssumeRole", "{\"RoleArn\":\"" + roleArn + "\","
                + "\"RoleSessionName\":\"" + roleSessionName + "\"}");
        Map map = new Gson().fromJson(resp, new TypeToken>() {
        }.getType());
        Map respmap = (Map) map.get("Response");
        Map credmap = (Map) respmap.get("Credentials");
        tmpSecretId = credmap.get("TmpSecretId");
        tmpSecretKey = credmap.get("TmpSecretKey");
        token = credmap.get("Token");
        expiredTime = ((Double) respmap.get("ExpiredTime")).intValue();
    }

    private boolean needRefresh() {
        if (expiredTime - new Date().getTime() / 1000 <= 300) {
            return true;
        } else {
            return false;
        }
    }
}