Gitiles
Code Review Sign In
korap.ids-mannheim.de / KorAP / Kustvakt / db5da3725936330410fdc1bb2ff1bbef84c9acd3 / . / full / src / main / java / de / ids_mannheim / korap / authentication / APIAuthentication.java
blob: 341c4d0a1aaee6f2baaff72531d868ef55d4ff25 [file] [log] [blame]
margaretha139d0f72017-11-14 18:56:22 +0100[diff] [blame]1package de.ids_mannheim.korap.authentication;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]2
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]3import java.text.ParseException;
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]4import java.time.ZoneId;
5import java.time.ZonedDateTime;
6import java.util.Date;
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]7import java.util.Map;
8
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]9import org.apache.logging.log4j.LogManager;
10import org.apache.logging.log4j.Logger;
11
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]12import com.nimbusds.jose.JOSEException;
13import com.nimbusds.jwt.SignedJWT;
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]14
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]15import de.ids_mannheim.korap.config.Attributes;
margaretha5225ed02018-06-25 18:38:40 +0200[diff] [blame]16import de.ids_mannheim.korap.config.FullConfiguration;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]17import de.ids_mannheim.korap.config.JWTSigner;
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]18import de.ids_mannheim.korap.constant.TokenType;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]19import de.ids_mannheim.korap.exceptions.KustvaktException;
20import de.ids_mannheim.korap.exceptions.StatusCodes;
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]21import de.ids_mannheim.korap.security.context.TokenContext;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]22import de.ids_mannheim.korap.user.User;
Michael Hanlf1e85e72016-01-21 16:55:45 +0100[diff] [blame]23import net.sf.ehcache.Cache;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]24import net.sf.ehcache.CacheManager;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]25
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]26/**
margaretha398f4722019-01-09 19:07:20 +0100[diff] [blame]27 * Authentication provider using JWT tokens
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]28 *
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]29 * Created by hanl on 5/23/14.
30 */
margarethabc3d3f72023-02-15 15:34:12 +0100[diff] [blame]31@Deprecated
margarethadfecb4b2017-12-12 19:32:30 +0100[diff] [blame]32public class APIAuthentication implements AuthenticationIface {
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]33
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]34 private static Logger jlog = LogManager.getLogger(APIAuthentication.class);
margarethadda4ef72018-12-06 14:20:51 +0100[diff] [blame]35 public static boolean DEBUG = false;
36
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]37 private JWTSigner signedToken;
38
margaretha5225ed02018-06-25 18:38:40 +0200[diff] [blame]39 public APIAuthentication (FullConfiguration config) throws JOSEException {
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]40 this.signedToken = new JWTSigner(config.getSharedSecret(),
41 config.getIssuer(), config.getTokenTTL());
42 }
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]43
44 /**
45 * EM: for testing
46 *
margarethadfecb4b2017-12-12 19:32:30 +0100[diff] [blame]47 * @param signedToken
48 */
49 public APIAuthentication (JWTSigner signedToken) {
50 this.signedToken = signedToken;
51 }
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]52
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]53 @Override
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]54 public TokenContext getTokenContext (String authToken)
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]55 throws KustvaktException {
Michael Hanlf1e85e72016-01-21 16:55:45 +0100[diff] [blame]56 TokenContext context;
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]57 // Element ein = invalided.get(authToken);
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]58 try {
59 context = signedToken.getTokenContext(authToken);
margaretha2afb97d2017-12-07 19:18:44 +0100[diff] [blame]60 context.setTokenType(getTokenType());
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]61 }
62 catch (JOSEException | ParseException ex) {
63 throw new KustvaktException(StatusCodes.ILLEGAL_ARGUMENT);
64 }
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]65 // context = (TokenContext) e.getObjectValue();
66 // throw new KustvaktException(StatusCodes.EXPIRED);
Michael Hanlf1e85e72016-01-21 16:55:45 +0100[diff] [blame]67 return context;
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]68 }
69
Michael Hanl8abaf9e2016-05-23 16:46:35 +0200[diff] [blame]70
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]71 @Override
margaretha4de41192017-11-15 11:47:11 +0100[diff] [blame]72 public TokenContext createTokenContext (User user, Map<String, Object> attr)
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]73 throws KustvaktException {
Michael Hanle25dea22015-09-24 19:37:56 +0200[diff] [blame]74 TokenContext c = new TokenContext();
75 c.setUsername(user.getUsername());
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]76 SignedJWT jwt = signedToken.createJWT(user, attr);
77 try {
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]78 c.setExpirationTime(
79 jwt.getJWTClaimsSet().getExpirationTime().getTime());
margarethadda4ef72018-12-06 14:20:51 +0100[diff] [blame]80 if (DEBUG ) {
81 jlog.debug(jwt.getJWTClaimsSet()
82 .getClaim(Attributes.AUTHENTICATION_TIME));
83 }
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]84 Date authTime = jwt.getJWTClaimsSet()
85 .getDateClaim(Attributes.AUTHENTICATION_TIME);
86 ZonedDateTime time = ZonedDateTime.ofInstant(authTime.toInstant(),
87 ZoneId.of(Attributes.DEFAULT_TIME_ZONE));
88 c.setAuthenticationTime(time);
Michael Hanl8abaf9e2016-05-23 16:46:35 +0200[diff] [blame]89 }
90 catch (ParseException e) {
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]91 throw new KustvaktException(StatusCodes.ILLEGAL_ARGUMENT);
92 }
margaretha2afb97d2017-12-07 19:18:44 +0100[diff] [blame]93 c.setTokenType(getTokenType());
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]94 c.setToken(jwt.serialize());
margaretha07a356a2018-07-11 19:12:21 +0200[diff] [blame]95 // id_tokens.put(new Element(c.getToken(), c));
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]96 return c;
97 }
98
Michael Hanl8abaf9e2016-05-23 16:46:35 +0200[diff] [blame]99
margaretha2afb97d2017-12-07 19:18:44 +0100[diff] [blame]100 @Override
101 public TokenType getTokenType () {
102 return TokenType.API;
103 }
Michael Hanl87106d12015-09-14 18:13:51 +0200[diff] [blame]104}