io.castle.client.internal.CastleApiImpl Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of castle-java Show documentation
Show all versions of castle-java Show documentation
Castle adds real-time monitoring of your authentication stack, instantly notifying you and your users
on potential account hijacks.
package io.castle.client.internal;
import com.google.common.base.Preconditions;
import com.google.gson.JsonElement;
import com.google.gson.JsonObject;
import io.castle.client.api.CastleApi;
import io.castle.client.internal.backend.RestApi;
import io.castle.client.internal.config.CastleSdkInternalConfiguration;
import io.castle.client.internal.utils.CastleContextBuilder;
import io.castle.client.internal.utils.ContextMerge;
import io.castle.client.internal.utils.Timestamp;
import io.castle.client.internal.utils.VerdictBuilder;
import io.castle.client.model.*;
import javax.annotation.Nullable;
import javax.servlet.http.HttpServletRequest;
public class CastleApiImpl implements CastleApi {
private final boolean doNotTrack;
private final CastleSdkInternalConfiguration configuration;
private final JsonObject contextJson;
public CastleApiImpl(HttpServletRequest request, boolean doNotTrack, CastleSdkInternalConfiguration configuration) {
this.doNotTrack = doNotTrack;
this.configuration = configuration;
CastleContext castleContext = buildContext(request);
this.contextJson = configuration.getModel().getGson().toJsonTree(castleContext).getAsJsonObject();
}
public CastleApiImpl(CastleSdkInternalConfiguration configuration, boolean doNotTrack) {
this.doNotTrack = doNotTrack;
this.configuration = configuration;
this.contextJson = null;
}
private CastleApiImpl(boolean doNotTrack, CastleSdkInternalConfiguration configuration, JsonObject contextJson) {
this.doNotTrack = doNotTrack;
this.configuration = configuration;
this.contextJson = contextJson;
}
private CastleContext buildContext(HttpServletRequest request) {
CastleContextBuilder builder = new CastleContextBuilder(configuration.getConfiguration(), configuration.getModel());
CastleContext context = builder
.fromHttpServletRequest(request)
.build();
return context;
}
@Override
public CastleApi mergeContext(Object additionalContext) {
JsonObject contextToMerge = null;
if (additionalContext != null) {
contextToMerge = configuration.getModel().getGson().toJsonTree(additionalContext).getAsJsonObject();
}
JsonObject mergedContext = new ContextMerge().merge(this.contextJson, contextToMerge);
return new CastleApiImpl(doNotTrack, configuration, mergedContext);
}
@Override
public CastleApi doNotTrack(boolean doNotTrack) {
return new CastleApiImpl(doNotTrack, configuration, contextJson);
}
@Override
public Verdict authenticate(String event, String userId) {
return authenticate(event, userId, null, null);
}
@Override
public Verdict authenticate(String event, String userId, @Nullable Object properties, @Nullable Object traits) {
return authenticate(buildMessage(event, userId, properties, traits));
}
@Override
public Verdict authenticate(CastleMessage message) {
JsonElement request = buildAuthenticateRequest(message);
return sendAuthenticateRequest(request);
}
@Override
public JsonElement buildAuthenticateRequest(CastleMessage message) {
return buildJson(message);
}
@Override
public Verdict sendAuthenticateRequest(JsonElement request) {
Preconditions.checkNotNull(request, "Request json can not be null");
if (doNotTrack) {
return buildVerdictForDoNotTrack(request.getAsJsonObject().get("user_id").getAsString());
}
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendAuthenticateSync(request);
}
@Override
public void sendAuthenticateRequest(JsonElement request, AsyncCallbackHandler asyncCallbackHandler) {
Preconditions.checkNotNull(request, "Request json can not be null");
if (doNotTrack) {
asyncCallbackHandler.onResponse(buildVerdictForDoNotTrack(request.getAsJsonObject().get("user_id").getAsString()));
} else {
Preconditions.checkNotNull(asyncCallbackHandler, "The async handler can not be null");
RestApi restApi = configuration.getRestApiFactory().buildBackend();
restApi.sendAuthenticateAsync(request, asyncCallbackHandler);
}
}
private Verdict buildVerdictForDoNotTrack(String userId) {
return VerdictBuilder.failover("Castle set to do not track.")
.withAction(AuthenticateAction.ALLOW)
.withUserId(userId)
.build();
}
@Override
public void authenticateAsync(String event, String userId, @Nullable Object properties, @Nullable Object traits, AsyncCallbackHandler asyncCallbackHandler) {
authenticateAsync(
buildMessage(event, userId, properties, traits),
asyncCallbackHandler
);
}
@Override
public void authenticateAsync(String event, String userId, AsyncCallbackHandler asyncCallbackHandler) {
authenticateAsync(
CastleMessage.builder(event).userId(userId).build(),
asyncCallbackHandler
);
}
@Override
public void authenticateAsync(CastleMessage message, AsyncCallbackHandler asyncCallbackHandler) {
JsonElement request = buildAuthenticateRequest(message);
sendAuthenticateRequest(request, asyncCallbackHandler);
}
@Override
public void track(String event) {
track(event, null, null, null, null);
}
@Override
public void track(String event, String userId) {
track(event, userId, null, null, null);
}
@Override
public void track(String event, @Nullable String userId, @Nullable String reviewId) {
track(event, userId, reviewId, null, null, null);
}
@Override
public void track(String event, String userId, String reviewId, Object properties) {
track(event, userId, reviewId, properties, null, null);
}
@Override
public void track(String event, @Nullable String userId, @Nullable String reviewId, @Nullable Object properties, @Nullable Object traits) {
track(event, userId, reviewId, properties, traits, null);
}
@Override
public void track(String event, @Nullable String userId, @Nullable String reviewId, @Nullable Object properties, @Nullable Object traits, AsyncCallbackHandler asyncCallbackHandler) {
CastleMessage message = buildMessage(event, userId, properties, traits);
if (reviewId != null) {
message.setReviewId(reviewId);
}
track(message, asyncCallbackHandler);
}
@Override
public void track(CastleMessage message) {
track(message, null);
}
@Override
public JsonElement buildTrackRequest(CastleMessage message) {
Preconditions.checkNotNull(message.getEvent());
return buildJson(message);
}
@Override
public void sendTrackRequest(JsonElement request) {
sendTrackRequest(request, null);
}
@Override
public void sendTrackRequest(JsonElement request, AsyncCallbackHandler asyncCallbackHandler) {
Preconditions.checkNotNull(request, "Request json can not be null");
if (doNotTrack) {
if (asyncCallbackHandler != null) {
asyncCallbackHandler.onResponse(true);
}
return;
}
RestApi restApi = configuration.getRestApiFactory().buildBackend();
restApi.sendTrackRequest(request, asyncCallbackHandler);
}
@Override
public void track(CastleMessage message, @Nullable AsyncCallbackHandler asyncCallbackHandler) {
JsonElement messageJson = buildTrackRequest(message);
sendTrackRequest(messageJson, asyncCallbackHandler);
}
@Override
public void identify(String userId, @Nullable Object traits, boolean active) {
Preconditions.checkNotNull(userId);
if (doNotTrack) {
return;
}
JsonElement traitsJson = null;
if (traits != null) {
traitsJson = configuration.getModel().getGson().toJsonTree(traits);
}
RestApi restApi = configuration.getRestApiFactory().buildBackend();
restApi.sendIdentifyRequest(userId, contextJson, active, traitsJson);
}
@Override
public void identify(String userId) {
identify(userId, null, true);
}
@Override
public void identify(String userId, @Nullable Object traits) {
Preconditions.checkNotNull(userId);
identify(userId, traits, true);
}
@Override
public Review review(String reviewId) {
Preconditions.checkNotNull(reviewId);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendReviewRequestSync(reviewId);
}
@Override
public void reviewAsync(String reviewId, AsyncCallbackHandler asyncCallbackHandler) {
Preconditions.checkNotNull(reviewId);
Preconditions.checkNotNull(asyncCallbackHandler);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
restApi.sendReviewRequestAsync(reviewId, asyncCallbackHandler);
}
@Override
public Boolean removeUser(String userId) {
Preconditions.checkNotNull(userId);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendPrivacyRemoveUser(userId);
}
@Override
public CastleUserDevice approve(String deviceToken) {
Preconditions.checkNotNull(deviceToken);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendApproveDeviceRequestSync(deviceToken);
}
@Override
public CastleUserDevice report(String deviceToken) {
Preconditions.checkNotNull(deviceToken);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendReportDeviceRequestSync(deviceToken);
}
@Override
public CastleUserDevices userDevices(String userId) {
Preconditions.checkNotNull(userId);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendGetUserDevicesRequestSync(userId);
}
@Override
public CastleUser archiveUserDevices(String userId) {
Preconditions.checkNotNull(userId);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendArchiveUserDevicesRequestSync(userId);
}
@Override
public CastleUserDevice device(String deviceToken) {
Preconditions.checkNotNull(deviceToken);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendGetUserDeviceRequestSync(deviceToken);
}
@Override
public CastleSuccess impersonateStart(String userId) {
Preconditions.checkNotNull(userId);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendImpersonateStartRequestSync(userId, null, contextJson);
}
@Override
public CastleSuccess impersonateStart(String userId, String impersonator) {
Preconditions.checkNotNull(userId);
Preconditions.checkNotNull(impersonator);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendImpersonateStartRequestSync(userId, impersonator, contextJson);
}
@Override
public CastleSuccess impersonateEnd(String userId) {
Preconditions.checkNotNull(userId);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendImpersonateEndRequestSync(userId, "", contextJson);
}
@Override
public CastleSuccess impersonateEnd(String userId, String impersonator) {
Preconditions.checkNotNull(userId);
Preconditions.checkNotNull(impersonator);
RestApi restApi = configuration.getRestApiFactory().buildBackend();
return restApi.sendImpersonateEndRequestSync(userId, impersonator, contextJson);
}
private CastleMessage buildMessage(String event, String userId, @Nullable Object properties, @Nullable Object traits) {
CastleMessage message = new CastleMessage(event);
message.setUserId(userId);
if (properties != null) {
JsonElement propertiesJson = configuration.getModel().getGson().toJsonTree(properties);
message.setProperties(propertiesJson);
}
if (traits != null) {
JsonElement traitsJson = configuration.getModel().getGson().toJsonTree(traits);
message.setUserTraits(traitsJson);
}
return message;
}
private JsonElement buildJson(CastleMessage message) throws CastleRuntimeException {
JsonObject contextJson;
// Context can be either from the message or from the instance of this
// class. Make sure we have one
CastleContext context = message.getContext();
if (context == null) {
contextJson = this.contextJson;
} else {
contextJson = configuration.getModel().getGson().toJsonTree(context).getAsJsonObject();
}
JsonElement messageJson = configuration.getModel().getGson().toJsonTree(message);
JsonObject messageObj = messageJson.getAsJsonObject();
messageObj.add("context", contextJson);
// Add sent_at to json
messageObj.addProperty("sent_at", Timestamp.timestamp());
return messageObj;
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy