Gitiles
Code Review Sign In
korap.ids-mannheim.de / KorAP / Kustvakt / 05554f96568741e430176cb4e3aa4e0505082c48 / . / full / src / main / java / de / ids_mannheim / korap / authentication / APIAuthentication.java
blob: ef9db774fb273a9d209d44c6565da67b48790bff [file] [log] [blame]
margaretha139d0f72017-11-14 18:56:22 +0100[diff] [blame]1package de.ids_mannheim.korap.authentication;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]2
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]3import java.text.ParseException;
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]4import java.time.ZoneId;
5import java.time.ZonedDateTime;
6import java.util.Date;
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]7import java.util.Map;
8
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]9import org.apache.logging.log4j.LogManager;
10import org.apache.logging.log4j.Logger;
11
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]12import com.nimbusds.jose.JOSEException;
13import com.nimbusds.jwt.SignedJWT;
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]14
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]15import de.ids_mannheim.korap.config.Attributes;
margaretha5225ed02018-06-25 18:38:40 +0200[diff] [blame]16import de.ids_mannheim.korap.config.FullConfiguration;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]17import de.ids_mannheim.korap.config.JWTSigner;
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]18import de.ids_mannheim.korap.constant.TokenType;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]19import de.ids_mannheim.korap.exceptions.KustvaktException;
20import de.ids_mannheim.korap.exceptions.StatusCodes;
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]21import de.ids_mannheim.korap.security.context.TokenContext;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]22import de.ids_mannheim.korap.user.User;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]23
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]24/**
margaretha398f4722019-01-09 19:07:20 +0100[diff] [blame]25 * Authentication provider using JWT tokens
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]26 *
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]27 * Created by hanl on 5/23/14.
28 */
margarethabc3d3f72023-02-15 15:34:12 +0100[diff] [blame]29@Deprecated
margarethadfecb4b2017-12-12 19:32:30 +0100[diff] [blame]30public class APIAuthentication implements AuthenticationIface {
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]31
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]32 private static Logger jlog = LogManager.getLogger(APIAuthentication.class);
margarethadda4ef72018-12-06 14:20:51 +0100[diff] [blame]33 public static boolean DEBUG = false;
34
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]35 private JWTSigner signedToken;
36
margaretha5225ed02018-06-25 18:38:40 +0200[diff] [blame]37 public APIAuthentication (FullConfiguration config) throws JOSEException {
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]38 this.signedToken = new JWTSigner(config.getSharedSecret(),
39 config.getIssuer(), config.getTokenTTL());
40 }
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]41
42 /**
43 * EM: for testing
44 *
margarethadfecb4b2017-12-12 19:32:30 +0100[diff] [blame]45 * @param signedToken
46 */
47 public APIAuthentication (JWTSigner signedToken) {
48 this.signedToken = signedToken;
49 }
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]50
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]51 @Override
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]52 public TokenContext getTokenContext (String authToken)
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]53 throws KustvaktException {
Michael Hanlf1e85e72016-01-21 16:55:45 +0100[diff] [blame]54 TokenContext context;
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]55 // Element ein = invalided.get(authToken);
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]56 try {
57 context = signedToken.getTokenContext(authToken);
margaretha2afb97d2017-12-07 19:18:44 +0100[diff] [blame]58 context.setTokenType(getTokenType());
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]59 }
60 catch (JOSEException | ParseException ex) {
61 throw new KustvaktException(StatusCodes.ILLEGAL_ARGUMENT);
62 }
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]63 // context = (TokenContext) e.getObjectValue();
64 // throw new KustvaktException(StatusCodes.EXPIRED);
Michael Hanlf1e85e72016-01-21 16:55:45 +0100[diff] [blame]65 return context;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]66 }
67
Michael Hanl8abaf9e2016-05-23 16:46:35 +0200[diff] [blame]68
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]69 @Override
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]70 public TokenContext createTokenContext (User user, Map<String, Object> attr)
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]71 throws KustvaktException {
Michael Hanle25dea22015-09-24 19:37:56 +0200[diff] [blame]72 TokenContext c = new TokenContext();
73 c.setUsername(user.getUsername());
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]74 SignedJWT jwt = signedToken.createJWT(user, attr);
75 try {
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]76 c.setExpirationTime(
77 jwt.getJWTClaimsSet().getExpirationTime().getTime());
margarethadda4ef72018-12-06 14:20:51 +0100[diff] [blame]78 if (DEBUG ) {
79 jlog.debug(jwt.getJWTClaimsSet()
80 .getClaim(Attributes.AUTHENTICATION_TIME));
81 }
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]82 Date authTime = jwt.getJWTClaimsSet()
83 .getDateClaim(Attributes.AUTHENTICATION_TIME);
84 ZonedDateTime time = ZonedDateTime.ofInstant(authTime.toInstant(),
85 ZoneId.of(Attributes.DEFAULT_TIME_ZONE));
86 c.setAuthenticationTime(time);
Michael Hanl8abaf9e2016-05-23 16:46:35 +0200[diff] [blame]87 }
88 catch (ParseException e) {
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]89 throw new KustvaktException(StatusCodes.ILLEGAL_ARGUMENT);
90 }
margaretha2afb97d2017-12-07 19:18:44 +0100[diff] [blame]91 c.setTokenType(getTokenType());
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]92 c.setToken(jwt.serialize());
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]93 // id_tokens.put(new Element(c.getToken(), c));
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]94 return c;
95 }
96
Michael Hanl8abaf9e2016-05-23 16:46:35 +0200[diff] [blame]97
margaretha2afb97d2017-12-07 19:18:44 +0100[diff] [blame]98 @Override
99 public TokenType getTokenType () {
100 return TokenType.API;
101 }
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]102}