• Home
• io.paradoxical
• cassieq-core
• 0.11
• source code
• SignedUrlAuthParameters.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

io.paradoxical.cassieq.discoverable.auth.SignedUrlAuthParameters Maven / Gradle / Ivy

package io.paradoxical.cassieq.discoverable.auth;

import com.godaddy.logging.Logger;
import io.paradoxical.cassieq.model.QueueName;
import io.paradoxical.cassieq.model.accounts.AccountName;
import io.paradoxical.cassieq.model.auth.AuthorizationLevel;
import io.paradoxical.cassieq.model.auth.SignatureGenerator;
import io.paradoxical.cassieq.model.auth.SignedUrlSignatureGenerator;
import lombok.Builder;
import lombok.EqualsAndHashCode;
import lombok.NonNull;
import lombok.Value;
import org.joda.time.DateTime;
import org.joda.time.Instant;

import javax.validation.constraints.NotNull;
import java.util.EnumSet;
import java.util.Optional;

import static com.godaddy.logging.LoggerFactory.getLogger;

/**
 * Represents the parsed signed URL pamaters from a request
 */
@EqualsAndHashCode(callSuper = false)
@Value
@Builder
public class SignedUrlAuthParameters extends SignedAuthParametersBase implements RequestAuthParameters {

    private static final Logger logger = getLogger(SignedUrlAuthParameters.class);

    @NonNull
    @NotNull
    private final AccountName accountName;

    @NonNull
    @NotNull
    private final String querySignature;

    @NonNull
    @NotNull
    private final EnumSet authorizationLevels;

    @NonNull
    @NotNull
    private final Optional startDateTime;

    @NonNull
    @NotNull
    private final Optional endDateTime;

    @NonNull
    @NotNull
    private final Optional queueName;

    @Override
    public boolean verify(final VerificationContext context) {

        return super.verify(context) &&
               requestInAllowedTimeFrame(context) &&
               queueAllowed(context);

    }

    private boolean queueAllowed(final VerificationContext context) {
        return !queueName.isPresent() || // no queue restriction
               context.getQueueName().equals(queueName);
    }

    private boolean requestInAllowedTimeFrame(final VerificationContext context) {
        final Instant now = context.getClock().now();

        return startDateTime.map(now::isAfter).orElse(true) &&
               endDateTime.map(now::isBefore).orElse(true);
    }

    @Override
    protected SignatureGenerator getSignatureGenerator() {
        return new SignedUrlSignatureGenerator(accountName, authorizationLevels, startDateTime, endDateTime, queueName);
    }

    @Override
    protected String getProvidedSignature() {
        return querySignature;
    }
}