io.getlime.security.powerauth.rest.api.spring.service.RecoveryService Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of powerauth-restful-security-spring Show documentation
Show all versions of powerauth-restful-security-spring Show documentation
PowerAuth 2.0 RESTful API Security Additions for Spring
The newest version!
/*
* PowerAuth integration libraries for RESTful API applications, examples and
* related software components
*
* Copyright (C) 2019 Wultra s.r.o.
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as published
* by the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public License
* along with this program. If not, see PowerAuth protocol versions:
*
* - 3.0
*
*
* @author Roman Strobl, [email protected]
*/
@Service
public class RecoveryService {
private static final Logger logger = LoggerFactory.getLogger(RecoveryService.class);
private final PowerAuthClient powerAuthClient;
private final HttpCustomizationService httpCustomizationService;
/**
* Controller constructor.
* @param powerAuthClient PowerAuth client.
* @param httpCustomizationService HTTP customization service.
*/
@Autowired
public RecoveryService(PowerAuthClient powerAuthClient, HttpCustomizationService httpCustomizationService) {
this.powerAuthClient = powerAuthClient;
this.httpCustomizationService = httpCustomizationService;
}
/**
* Confirm recovery code.
* @param request ECIES encrypted request.
* @param authentication PowerAuth API authentication object.
* @return ECIES encrypted response.
* @throws PowerAuthAuthenticationException In case confirm recovery fails.
*/
public EciesEncryptedResponse confirmRecoveryCode(EciesEncryptedRequest request,
PowerAuthApiAuthentication authentication) throws PowerAuthAuthenticationException {
try {
final String activationId = authentication.getActivationContext().getActivationId();
final PowerAuthSignatureHttpHeader httpHeader = (PowerAuthSignatureHttpHeader) authentication.getHttpHeader();
final String applicationKey = httpHeader.getApplicationKey();
if (activationId == null || applicationKey == null) {
logger.warn("PowerAuth confirm recovery failed because of invalid request");
throw new PowerAuthInvalidRequestException();
}
final ConfirmRecoveryCodeRequest confirmRequest = new ConfirmRecoveryCodeRequest();
confirmRequest.setActivationId(activationId);
confirmRequest.setApplicationKey(applicationKey);
confirmRequest.setTemporaryKeyId(request.getTemporaryKeyId());
confirmRequest.setEphemeralPublicKey(request.getEphemeralPublicKey());
confirmRequest.setEncryptedData(request.getEncryptedData());
confirmRequest.setMac(request.getMac());
confirmRequest.setNonce(request.getNonce());
confirmRequest.setProtocolVersion(httpHeader.getVersion());
confirmRequest.setTimestamp(request.getTimestamp());
final ConfirmRecoveryCodeResponse paResponse = powerAuthClient.confirmRecoveryCode(
confirmRequest,
httpCustomizationService.getQueryParams(),
httpCustomizationService.getHttpHeaders()
);
if (!paResponse.getActivationId().equals(activationId)) {
logger.warn("PowerAuth confirm recovery failed because of invalid activation ID in response");
throw new PowerAuthInvalidRequestException();
}
return new EciesEncryptedResponse(
paResponse.getEncryptedData(),
paResponse.getMac(),
paResponse.getNonce(),
paResponse.getTimestamp());
} catch (Exception ex) {
logger.warn("PowerAuth confirm recovery failed, error: {}", ex.getMessage());
logger.debug(ex.getMessage(), ex);
throw new PowerAuthRecoveryConfirmationException();
}
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy