ee.sk.smartid.rest.SmartIdRestConnector Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of smart-id-java-client Show documentation
Show all versions of smart-id-java-client Show documentation
Smart-ID Java client is a Java library that can be used for easy integration of the Smart-ID solution to information systems or e-services
package ee.sk.smartid.rest;
/*-
* #%L
* Smart ID sample Java client
* %%
* Copyright (C) 2018 SK ID Solutions AS
* %%
* Permission is hereby granted, free of charge, to any person obtaining a copy
* of this software and associated documentation files (the "Software"), to deal
* in the Software without restriction, including without limitation the rights
* to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
* copies of the Software, and to permit persons to whom the Software is
* furnished to do so, subject to the following conditions:
*
* The above copyright notice and this permission notice shall be included in
* all copies or substantial portions of the Software.
*
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
* AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
* OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
* THE SOFTWARE.
* #L%
*/
import ee.sk.smartid.exception.*;
import ee.sk.smartid.rest.dao.*;
import org.glassfish.jersey.client.ClientConfig;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import javax.ws.rs.*;
import javax.ws.rs.client.Client;
import javax.ws.rs.client.ClientBuilder;
import javax.ws.rs.client.Entity;
import javax.ws.rs.client.Invocation;
import javax.ws.rs.core.MediaType;
import javax.ws.rs.core.UriBuilder;
import java.net.URI;
import java.util.concurrent.TimeUnit;
import static javax.ws.rs.core.MediaType.APPLICATION_JSON_TYPE;
public class SmartIdRestConnector implements SmartIdConnector {
private static final Logger logger = LoggerFactory.getLogger(SmartIdRestConnector.class);
private static final String SESSION_STATUS_URI = "/session/{sessionId}";
private static final String CERTIFICATE_CHOICE_BY_NATIONAL_IDENTITY_PATH = "/certificatechoice/pno/{country}/{nationalIdentityNumber}";
private static final String CERTIFICATE_CHOICE_BY_DOCUMENT_NUMBER_PATH = "/certificatechoice/document/{documentNumber}";
private static final String CERTIFICATE_CHOICE_BY_NATURAL_PERSON_SEMANTICS_IDENTIFIER = "/certificatechoice/etsi/{semanticsIdentifier}";
private static final String SIGNATURE_BY_DOCUMENT_NUMBER_PATH = "/signature/document/{documentNumber}";
private static final String SIGNATURE_BY_NATURAL_PERSON_SEMANTICS_IDENTIFIER = "/signature/etsi/{semanticsIdentifier}";
private static final String AUTHENTICATE_BY_DOCUMENT_NUMBER_PATH = "/authentication/document/{documentNumber}";
private static final String AUTHENTICATE_BY_NATIONAL_IDENTITY_PATH = "/authentication/pno/{country}/{nationalIdentityNumber}";
private static final String AUTHENTICATE_BY_NATURAL_PERSON_SEMANTICS_IDENTIFIER = "/authentication/etsi/{semanticsIdentifier}";
private String endpointUrl;
private transient ClientConfig clientConfig;
private TimeUnit sessionStatusResponseSocketOpenTimeUnit;
private long sessionStatusResponseSocketOpenTimeValue;
private static final long serialVersionUID = 42L;
public SmartIdRestConnector(String endpointUrl) {
this.endpointUrl = endpointUrl;
}
public SmartIdRestConnector(String endpointUrl, ClientConfig clientConfig) {
this(endpointUrl);
this.clientConfig = clientConfig;
}
@Override
public SessionStatus getSessionStatus(String sessionId) throws SessionNotFoundException {
logger.debug("Getting session status for " + sessionId);
SessionStatusRequest request = createSessionStatusRequest(sessionId);
UriBuilder uriBuilder = UriBuilder
.fromUri(endpointUrl)
.path(SESSION_STATUS_URI);
addResponseSocketOpenTimeUrlParameter(request, uriBuilder);
URI uri = uriBuilder.build(request.getSessionId());
try {
return prepareClient(uri).get(SessionStatus.class);
} catch (NotFoundException e) {
logger.warn("Session " + request + " not found: " + e.getMessage());
throw new SessionNotFoundException();
}
}
@Override
public CertificateChoiceResponse getCertificate(NationalIdentity identity, CertificateRequest request) {
logger.debug("Getting certificate for " + identity);
URI uri = UriBuilder
.fromUri(endpointUrl)
.path(CERTIFICATE_CHOICE_BY_NATIONAL_IDENTITY_PATH)
.build(identity.getCountryCode(), identity.getNationalIdentityNumber());
return postCertificateRequest(uri, request);
}
@Override
public CertificateChoiceResponse getCertificate(String documentNumber, CertificateRequest request) {
logger.debug("Getting certificate for document " + documentNumber);
URI uri = UriBuilder
.fromUri(endpointUrl)
.path(CERTIFICATE_CHOICE_BY_DOCUMENT_NUMBER_PATH)
.build(documentNumber);
return postCertificateRequest(uri, request);
}
@Override
public CertificateChoiceResponse getCertificate(SemanticsIdentifier semanticsIdentifier,
CertificateRequest request) {
logger.debug("Getting certificate for identifier " + semanticsIdentifier.getIdentifier());
URI uri = UriBuilder
.fromUri(endpointUrl)
.path(CERTIFICATE_CHOICE_BY_NATURAL_PERSON_SEMANTICS_IDENTIFIER)
.build(semanticsIdentifier.getIdentifier());
System.out.println(uri);
return postCertificateRequest(uri, request);
}
@Override
public SignatureSessionResponse sign(String documentNumber, SignatureSessionRequest request) {
logger.debug("Signing for document " + documentNumber);
URI uri = UriBuilder
.fromUri(endpointUrl)
.path(SIGNATURE_BY_DOCUMENT_NUMBER_PATH)
.build(documentNumber);
try {
return postRequest(uri, request, SignatureSessionResponse.class);
} catch (NotFoundException e) {
logger.warn("User account not found for signing with document " + documentNumber);
throw new UserAccountNotFoundException();
} catch (ForbiddenException e) {
logger.warn("No permission to issue the request");
throw new RequestForbiddenException();
}
}
@Override
public SignatureSessionResponse sign(SemanticsIdentifier semanticsIdentifier,
SignatureSessionRequest request) {
logger.debug("Signing for semantics identifier " + semanticsIdentifier);
URI uri = UriBuilder
.fromUri(endpointUrl)
.path(SIGNATURE_BY_NATURAL_PERSON_SEMANTICS_IDENTIFIER)
.build(semanticsIdentifier.getIdentifier());
try {
return postRequest(uri, request, SignatureSessionResponse.class);
} catch (NotFoundException e) {
logger.warn("User account not found for semantics identifier " + semanticsIdentifier.getIdentifier());
throw new UserAccountNotFoundException();
} catch (ForbiddenException e) {
logger.warn("No permission to issue the request");
throw new RequestForbiddenException();
}
}
@Override
public AuthenticationSessionResponse authenticate(String documentNumber, AuthenticationSessionRequest request) {
logger.debug("Authenticating for document " + documentNumber);
URI uri = UriBuilder
.fromUri(endpointUrl)
.path(AUTHENTICATE_BY_DOCUMENT_NUMBER_PATH)
.build(documentNumber);
return postAuthenticationRequest(uri, request);
}
@Override
public AuthenticationSessionResponse authenticate(NationalIdentity identity, AuthenticationSessionRequest request) {
logger.debug("Authenticating for " + identity);
URI uri = UriBuilder
.fromUri(endpointUrl)
.path(AUTHENTICATE_BY_NATIONAL_IDENTITY_PATH)
.build(identity.getCountryCode(), identity.getNationalIdentityNumber());
return postAuthenticationRequest(uri, request);
}
@Override
public AuthenticationSessionResponse authenticate(SemanticsIdentifier semanticsIdentifier, AuthenticationSessionRequest request) {
logger.debug("Authenticating for " + semanticsIdentifier);
URI uri = UriBuilder
.fromUri(endpointUrl)
.path(AUTHENTICATE_BY_NATURAL_PERSON_SEMANTICS_IDENTIFIER)
.build(semanticsIdentifier.getIdentifier());
return postAuthenticationRequest(uri, request);
}
@Override
public void setSessionStatusResponseSocketOpenTime(TimeUnit sessionStatusResponseSocketOpenTimeUnit, long sessionStatusResponseSocketOpenTimeValue) {
this.sessionStatusResponseSocketOpenTimeUnit = sessionStatusResponseSocketOpenTimeUnit;
this.sessionStatusResponseSocketOpenTimeValue = sessionStatusResponseSocketOpenTimeValue;
}
private Invocation.Builder prepareClient(URI uri) {
Client client = clientConfig == null ? ClientBuilder.newClient() : ClientBuilder.newClient(clientConfig);
return client
.register(new LoggingFilter())
.target(uri)
.request()
.accept(APPLICATION_JSON_TYPE);
}
private CertificateChoiceResponse postCertificateRequest(URI uri, CertificateRequest request) {
try {
return postRequest(uri, request, CertificateChoiceResponse.class);
} catch (NotFoundException e) {
logger.warn("Certificate not found for URI " + uri + ": " + e.getMessage());
throw new CertificateNotFoundException();
} catch (ForbiddenException e) {
logger.warn("No permission to issue the request");
throw new RequestForbiddenException();
}
}
private AuthenticationSessionResponse postAuthenticationRequest(URI uri, AuthenticationSessionRequest request) {
try {
return postRequest(uri, request, AuthenticationSessionResponse.class);
} catch (NotFoundException e) {
logger.warn("User account not found for URI " + uri + ": " + e.getMessage());
throw new UserAccountNotFoundException();
} catch (ForbiddenException e) {
logger.warn("No permission to issue the request");
throw new RequestForbiddenException();
}
}
private T postRequest(URI uri, V request, Class responseType) {
try {
Entity requestEntity = Entity.entity(request, MediaType.APPLICATION_JSON);
return prepareClient(uri).post(requestEntity, responseType);
} catch (NotAuthorizedException e) {
logger.warn("Request is unauthorized for URI " + uri + ": " + e.getMessage());
throw new UnauthorizedException();
} catch (BadRequestException e) {
logger.warn("Request is invalid for URI " + uri + ": " + e.getMessage());
throw new InvalidParametersException();
} catch (ClientErrorException e) {
if (e.getResponse().getStatus() == 480) {
logger.warn("Client-side API is too old and not supported anymore");
throw new ClientNotSupportedException();
}
throw e;
} catch (ServerErrorException e) {
if (e.getResponse().getStatus() == 580) {
logger.warn("Server is under maintenance, retry later");
throw new ServerMaintenanceException();
}
throw e;
}
}
private SessionStatusRequest createSessionStatusRequest(String sessionId) {
SessionStatusRequest request = new SessionStatusRequest(sessionId);
if (sessionStatusResponseSocketOpenTimeUnit != null && sessionStatusResponseSocketOpenTimeValue > 0) {
request.setResponseSocketOpenTime(sessionStatusResponseSocketOpenTimeUnit, sessionStatusResponseSocketOpenTimeValue);
}
return request;
}
private void addResponseSocketOpenTimeUrlParameter(SessionStatusRequest request, UriBuilder uriBuilder) {
if (request.isResponseSocketOpenTimeSet()) {
TimeUnit timeUnit = request.getResponseSocketOpenTimeUnit();
long timeValue = request.getResponseSocketOpenTimeValue();
long queryTimeoutInMilliseconds = timeUnit.toMillis(timeValue);
uriBuilder.queryParam("timeoutMs", queryTimeoutInMilliseconds);
}
}
}