• Home
• org.apereo.cas
• cas-server-support-webauthn-rest
• 7.1.0-RC4
• source code
• RestfulWebAuthnCredentialRepository.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.apereo.cas.webauthn.RestfulWebAuthnCredentialRepository Maven / Gradle / Ivy

package org.apereo.cas.webauthn;

import org.apereo.cas.configuration.CasConfigurationProperties;
import org.apereo.cas.util.CollectionUtils;
import org.apereo.cas.util.LoggingUtils;
import org.apereo.cas.util.crypto.CipherExecutor;
import org.apereo.cas.util.function.FunctionUtils;
import org.apereo.cas.util.http.HttpExecutionRequest;
import org.apereo.cas.util.http.HttpUtils;
import org.apereo.cas.webauthn.storage.BaseWebAuthnCredentialRepository;
import com.fasterxml.jackson.core.type.TypeReference;
import com.yubico.data.CredentialRegistration;
import lombok.extern.slf4j.Slf4j;
import lombok.val;
import org.apache.commons.io.IOUtils;
import org.apache.hc.core5.http.HttpEntityContainer;
import org.apache.hc.core5.http.HttpResponse;
import org.springframework.http.HttpMethod;
import org.springframework.http.HttpStatus;
import org.springframework.http.MediaType;
import java.nio.charset.StandardCharsets;
import java.util.ArrayList;
import java.util.Collection;
import java.util.List;
import java.util.Objects;
import java.util.stream.Stream;

/**
 * This is {@link RestfulWebAuthnCredentialRepository}.
 *
 * @author Misagh Moayyed
 * @since 6.4.0
 */
@Slf4j
public class RestfulWebAuthnCredentialRepository extends BaseWebAuthnCredentialRepository {
    public RestfulWebAuthnCredentialRepository(final CasConfigurationProperties properties,
                                               final CipherExecutor cipherExecutor) {
        super(properties, cipherExecutor);
    }

    @Override
    public Collection getRegistrationsByUsername(final String username) {
        val restProperties = getProperties().getAuthn().getMfa().getWebAuthn().getRest();
        HttpResponse response = null;
        try {
            val parameters = CollectionUtils.wrap("username", username);
            val exec = HttpExecutionRequest.builder()
                .basicAuthPassword(restProperties.getBasicAuthPassword())
                .basicAuthUsername(restProperties.getBasicAuthUsername())
                .method(HttpMethod.GET)
                .url(restProperties.getUrl())
                .parameters(parameters)
                .build();
            response = HttpUtils.execute(exec);
            if (Objects.requireNonNull(response).getCode() == HttpStatus.OK.value()) {
                try (val content = ((HttpEntityContainer) response).getEntity().getContent()) {
                    val result = getCipherExecutor().decode(IOUtils.toString(content, StandardCharsets.UTF_8));
                    return WebAuthnUtils.getObjectMapper().readValue(result, new TypeReference>() {
                    });
                }
            }
        } catch (final Exception e) {
            LoggingUtils.error(LOGGER, e);
        } finally {
            HttpUtils.close(response);
        }
        return new ArrayList<>(0);
    }

    @Override
    public Stream stream() {
        val restProperties = getProperties().getAuthn().getMfa().getWebAuthn().getRest();
        HttpResponse response = null;
        try {
            val exec = HttpExecutionRequest.builder()
                .basicAuthPassword(restProperties.getBasicAuthPassword())
                .basicAuthUsername(restProperties.getBasicAuthUsername())
                .method(HttpMethod.GET)
                .url(restProperties.getUrl())
                .build();
            response = HttpUtils.execute(exec);
            if (Objects.requireNonNull(response).getCode() == HttpStatus.OK.value()) {
                try (val content = ((HttpEntityContainer) response).getEntity().getContent()) {
                    val result = getCipherExecutor().decode(IOUtils.toString(content, StandardCharsets.UTF_8));
                    val records = WebAuthnUtils.getObjectMapper().readValue(result, new TypeReference>() {
                    });
                    return records.stream();
                }
            }
        } catch (final Exception e) {
            LoggingUtils.error(LOGGER, e);
        } finally {
            HttpUtils.close(response);
        }
        return Stream.empty();
    }

    @Override
    protected void update(final String username, final Collection records) {
        val restProperties = getProperties().getAuthn().getMfa().getWebAuthn().getRest();
        HttpResponse response = null;
        try {
            val headers = CollectionUtils.wrap("Content-Type", MediaType.APPLICATION_JSON_VALUE);
            headers.putAll(restProperties.getHeaders());
            val parameters = CollectionUtils.wrap("username", username);
            val jsonRecords = FunctionUtils.doUnchecked(() -> getCipherExecutor().encode(WebAuthnUtils.getObjectMapper().writeValueAsString(records)));
            val exec = HttpExecutionRequest.builder()
                .basicAuthPassword(restProperties.getBasicAuthPassword())
                .basicAuthUsername(restProperties.getBasicAuthUsername())
                .method(HttpMethod.POST)
                .url(restProperties.getUrl())
                .entity(jsonRecords)
                .headers(headers)
                .parameters(parameters)
                .build();
            response = HttpUtils.execute(exec);
        } finally {
            HttpUtils.close(response);
        }
    }
}