• Home
• nz.co.blinkpay
• blink-debit-api-client-java-spring6
• 1.2.0
• source code
• AccessTokenHandler.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

nz.co.blink.debit.helpers.AccessTokenHandler Maven / Gradle / Ivy

/**
 * Copyright (c) 2022 BlinkPay
 * 

 * Permission is hereby granted, free of charge, to any person obtaining a copy
 * of this software and associated documentation files (the "Software"), to deal
 * in the Software without restriction, including without limitation the rights
 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 * copies of the Software, and to permit persons to whom the Software is
 * furnished to do so, subject to the following conditions:
 * 

 * The above copyright notice and this permission notice shall be included in all
 * copies or substantial portions of the Software.
 * 

 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 * SOFTWARE.
 */
package nz.co.blink.debit.helpers;

import com.auth0.jwt.JWT;
import com.auth0.jwt.exceptions.JWTDecodeException;
import com.auth0.jwt.interfaces.DecodedJWT;
import nz.co.blink.debit.client.v1.OAuthApiClient;
import nz.co.blink.debit.dto.v1.AccessTokenResponse;
import nz.co.blink.debit.exception.BlinkInvalidValueException;
import nz.co.blink.debit.exception.BlinkServiceException;
import org.apache.commons.lang3.StringUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.http.HttpHeaders;
import org.springframework.stereotype.Component;
import org.springframework.web.reactive.function.client.ClientRequest;
import org.springframework.web.reactive.function.client.ExchangeFilterFunction;
import reactor.core.publisher.Mono;

import java.util.Date;
import java.util.concurrent.atomic.AtomicReference;

/**
 * The helper class for adding Authorization request header. If the client code does not have a shared access token
 * or if it has expired, this helper class will fetch a new one.
 */
@Component
public class AccessTokenHandler {

    private final OAuthApiClient client;

    private final AtomicReference accessTokenAtomicReference = new AtomicReference<>();

    /**
     * Default constructor.
     *
     * @param client the {@link OAuthApiClient}
     */
    @Autowired
    public AccessTokenHandler(OAuthApiClient client) {
        this.client = client;
    }

    /**
     * FOR TEST PURPOSES ONLY.
     * Stores the access token from the environment variable.
     *
     * @param accessToken the access token
     */
    @Value("${blinkpay.access.token:}")
    public void setAccessTokenAtomicReference(final String accessToken) {
        if (StringUtils.isNotBlank(accessToken)) {
            accessTokenAtomicReference.set(accessToken);
        }
    }

    /**
     * Sets the Authorization request header by reusing the access token or by replacing it with a new one
     * if it has expired.
     *
     * @param requestId the correlation ID
     * @return the {@link ExchangeFilterFunction}
     * @throws BlinkInvalidValueException thrown when an exception occurs
     */
    public ExchangeFilterFunction setAccessToken(final String requestId) throws BlinkServiceException {
        String currentAccessToken = accessTokenAtomicReference.get();
        if (StringUtils.isNotBlank(currentAccessToken)) {
            try {
                DecodedJWT jwt = JWT.decode(currentAccessToken);
                if (!jwt.getExpiresAt().before(new Date())) {
                    return ExchangeFilterFunction.ofRequestProcessor(clientRequest -> {
                        String authorization = "Bearer " + currentAccessToken;
                        ClientRequest authorizedRequest = ClientRequest.from(clientRequest)
                                .headers(headers -> headers.set(HttpHeaders.AUTHORIZATION, authorization))
                                .build();
                        return Mono.just(authorizedRequest);
                    });
                }
            } catch (JWTDecodeException ignored) {
                // fetch a new access token
            }
        }

        Mono accessTokenResponseMono = client.generateAccessToken(requestId);

        return ExchangeFilterFunction.ofRequestProcessor(clientRequest ->
                accessTokenResponseMono.flatMap(accessTokenResponse -> {
                    String newAccessToken = accessTokenResponse.getAccessToken();
                    accessTokenAtomicReference.set(newAccessToken);

                    String authorization = "Bearer " + newAccessToken;
                    ClientRequest authorizedRequest = ClientRequest.from(clientRequest)
                            .header(HttpHeaders.AUTHORIZATION, authorization)
                            .build();
                    return Mono.just(authorizedRequest);
                }));
    }
}