io.getlime.security.powerauth.lib.cmd.steps.VerifyTokenStep Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of powerauth-java-cmd-lib Show documentation
Show all versions of powerauth-java-cmd-lib Show documentation
PowerAuth Command-line Utility - Java Library
The newest version!
/*
* PowerAuth Command-line utility
* Copyright 2018 Wultra s.r.o.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package io.getlime.security.powerauth.lib.cmd.steps;
import io.getlime.security.powerauth.lib.cmd.consts.BackwardCompatibilityConst;
import io.getlime.security.powerauth.lib.cmd.consts.PowerAuthStep;
import io.getlime.security.powerauth.lib.cmd.consts.PowerAuthVersion;
import io.getlime.security.powerauth.lib.cmd.logging.StepLogger;
import io.getlime.security.powerauth.lib.cmd.logging.StepLoggerFactory;
import io.getlime.security.powerauth.lib.cmd.header.PowerAuthHeaderFactory;
import io.getlime.security.powerauth.lib.cmd.status.ResultStatusService;
import io.getlime.security.powerauth.lib.cmd.steps.context.RequestContext;
import io.getlime.security.powerauth.lib.cmd.steps.context.StepContext;
import io.getlime.security.powerauth.lib.cmd.steps.model.VerifyTokenStepModel;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.core.ParameterizedTypeReference;
import org.springframework.http.HttpMethod;
import org.springframework.stereotype.Component;
import java.util.HashMap;
import java.util.Map;
/**
* Step for the token validation activity.
*
* PowerAuth protocol versions:
*
* - 3.0
* - 3.1
* - 3.2
* - 3.3
*
*
* @author Lukas Lukovsky, [email protected]
* @author Petr Dvorak, [email protected]
*/
@Component
public class VerifyTokenStep extends AbstractBaseStep> {
private static final ParameterizedTypeReference> RESPONSE_TYPE_REFERENCE = new ParameterizedTypeReference<>() {};
private final PowerAuthHeaderFactory powerAuthHeaderFactory;
/**
* Constructor
* @param powerAuthHeaderFactory PowerAuth header factory
* @param resultStatusService Result status service
* @param stepLoggerFactory Step logger factory
*/
@Autowired
public VerifyTokenStep(
PowerAuthHeaderFactory powerAuthHeaderFactory,
ResultStatusService resultStatusService,
StepLoggerFactory stepLoggerFactory) {
super(PowerAuthStep.TOKEN_VALIDATE, PowerAuthVersion.ALL_VERSIONS, resultStatusService, stepLoggerFactory);
this.powerAuthHeaderFactory = powerAuthHeaderFactory;
}
/**
* Constructor for backward compatibility
*/
public VerifyTokenStep() {
this(
BackwardCompatibilityConst.POWER_AUTH_HEADER_FACTORY,
BackwardCompatibilityConst.RESULT_STATUS_SERVICE,
BackwardCompatibilityConst.STEP_LOGGER_FACTORY
);
}
@Override
public ParameterizedTypeReference> getResponseTypeReference() {
return RESPONSE_TYPE_REFERENCE;
}
@Override
public StepContext> prepareStepContext(StepLogger stepLogger, Map context) throws Exception {
VerifyTokenStepModel model = new VerifyTokenStepModel();
model.fromMap(context);
RequestContext requestContext = RequestContext.builder()
.httpMethod(HttpMethod.valueOf(model.getHttpMethod()))
.uri(model.getUriString())
.build();
StepContext> stepContext =
buildStepContext(stepLogger, model, requestContext);
Map map = new HashMap<>();
map.put("tokenId", model.getTokenId());
map.put("tokenSecret", model.getTokenSecret());
stepLogger.writeItem(
"token-validate-start",
"Token Digest Validation Started",
null,
"OK",
map
);
powerAuthHeaderFactory.getHeaderProvider(model).addHeader(stepContext);
if (model.getHttpMethod() == null) {
stepLogger.writeError("token-validate-error-http-method", "HTTP method not specified", "Specify HTTP method to use for sending request");
stepLogger.writeDoneFailed("token-validate-failed");
return null;
}
// Construct the signature base string data part based on HTTP method (GET requires different code).
byte[] requestDataBytes = null;
if (!HttpMethod.GET.name().equals(model.getHttpMethod().toUpperCase())) {
// Read data input file
requestDataBytes = model.getData();
if (requestDataBytes == null || requestDataBytes.length == 0) {
requestDataBytes = new byte[0];
stepLogger.writeItem(
"token-validate-warning-empty-data",
"Empty data",
"Data file was not found, signature will contain no data",
"WARNING",
null
);
}
}
requestContext.setRequestObject(requestDataBytes);
return stepContext;
}
/**
* Log information about the token value successfully computed.
*/
@Override
public void logDryRun(StepLogger stepLogger) {
stepLogger.writeItem(
getStep().id() + "-token-computed",
"Token value computed (dry run)",
"Token value header was computed successfully",
"OK",
null
);
}
@Override
public void processResponse(StepContext> stepContext) {
stepContext.getStepLogger().writeItem(
getStep().id() + "-digest-verified",
"Token digest verified",
"Token based authentication was successful",
"OK",
null
);
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy