Upgrade sonar plugin

[vid.git] / vid-app-common / src / main / java / org / openecomp / aai / util / HttpsAuthClient.java

/*-\r
 * ============LICENSE_START=======================================================\r
 * VID\r
 * ================================================================================\r
 * Copyright (C) 2017 AT&T Intellectual Property. All rights reserved.\r
 * ================================================================================\r
 * Licensed under the Apache License, Version 2.0 (the "License");\r
 * you may not use this file except in compliance with the License.\r
 * You may obtain a copy of the License at\r
 * \r
 *      http://www.apache.org/licenses/LICENSE-2.0\r
 * \r
 * Unless required by applicable law or agreed to in writing, software\r
 * distributed under the License is distributed on an "AS IS" BASIS,\r
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r
 * See the License for the specific language governing permissions and\r
 * limitations under the License.\r
 * ============LICENSE_END=========================================================\r
 */\r
\r
package org.openecomp.aai.util;\r
\r
\r
import java.io.FileInputStream;\r
import java.security.KeyManagementException;\r
import java.security.KeyStore;\r
\r
import javax.net.ssl.HostnameVerifier;\r
import javax.net.ssl.HttpsURLConnection;\r
import javax.net.ssl.KeyManagerFactory;\r
import javax.net.ssl.SSLContext;\r
import javax.net.ssl.SSLSession;\r
import javax.ws.rs.client.Client;\r
import javax.ws.rs.client.ClientBuilder;\r
\r
import org.eclipse.jetty.util.security.Password;\r
import org.glassfish.jersey.client.ClientConfig;\r
import org.glassfish.jersey.client.HttpUrlConnectorProvider;\r
import org.openecomp.portalsdk.core.logging.logic.EELFLoggerDelegate;\r
import org.openecomp.portalsdk.core.util.SystemProperties;\r
/**\r
 * The Class HttpsAuthClient.\r
 */\r
public class HttpsAuthClient{\r
        /** The logger. */\r
        static EELFLoggerDelegate logger = EELFLoggerDelegate.getLogger(HttpsAuthClient.class);\r
        \r
        /**\r
         * Gets the client.\r
         *\r
         * @param certFilePath the cert file path\r
         * @return the client\r
         * @throws KeyManagementException the key management exception\r
         */\r
        public static Client getClient(String certFilePath) throws KeyManagementException {\r
\r
                ClientConfig config = new ClientConfig();\r
                //config.getFeatures().put(JSONConfiguration.FEATURE_POJO_MAPPING, Boolean.TRUE);\r
                //config.getClasses().add(org.openecomp.aai.util.CustomJacksonJaxBJsonProvider.class);\r
\r
                try {\r
                        \r
                    config.property(HttpUrlConnectorProvider.SET_METHOD_WORKAROUND, Boolean.TRUE );\r
                        \r
                        config.connectorProvider(new HttpUrlConnectorProvider().useSetMethodWorkaround());\r
                        String truststore_path = certFilePath + AAIProperties.FILESEPARTOR + SystemProperties.getProperty(AAIProperties.AAI_TRUSTSTORE_FILENAME);\r
                        String truststore_password = SystemProperties.getProperty(AAIProperties.AAI_TRUSTSTORE_PASSWD_X);\r
                        String decrypted_truststore_password = Password.deobfuscate(truststore_password);\r
                        \r
                        boolean useClientCert = false;\r
                        \r
                        String keystore_path = certFilePath + AAIProperties.FILESEPARTOR + SystemProperties.getProperty(AAIProperties.AAI_KEYSTORE_FILENAME);\r
                        String keystore_password = SystemProperties.getProperty(AAIProperties.AAI_KEYSTORE_PASSWD_X);\r
                        String decrypted_keystore_password = Password.deobfuscate(keystore_password);\r
                        \r
                        String clientCert = SystemProperties.getProperty(AAIProperties.AAI_USE_CLIENT_CERT);\r
                        \r
                        if (clientCert != null && \r
                                        SystemProperties.getProperty(AAIProperties.AAI_USE_CLIENT_CERT).equalsIgnoreCase("true")) {\r
                                useClientCert = true;\r
                        }\r
                        \r
                    System.setProperty("javax.net.ssl.trustStore", truststore_path);\r
                    System.setProperty("javax.net.ssl.trustStorePassword", decrypted_truststore_password);\r
                        HttpsURLConnection.setDefaultHostnameVerifier( new HostnameVerifier(){\r
                            public boolean verify(String string,SSLSession ssls) {\r
                                return true;\r
                            }\r
                        });\r
        \r
                        final SSLContext ctx = SSLContext.getInstance("TLS");\r
                        \r
                        KeyManagerFactory kmf = null;\r
                        if (useClientCert) {\r
                        \r
                                try {\r
                                        kmf = KeyManagerFactory.getInstance("SunX509");\r
                                        FileInputStream fin = new FileInputStream(keystore_path);\r
                                        KeyStore ks = KeyStore.getInstance("PKCS12");\r
                                        char[] pwd = decrypted_keystore_password.toCharArray();\r
                                        ks.load(fin, pwd);\r
                                        kmf.init(ks, pwd);\r
                                } catch (Exception e) {\r
                                        //System.out.println("Error setting up kmf: exiting");\r
                                        logger.debug(EELFLoggerDelegate.debugLogger, "Error setting up kmf: exiting");\r
                                        e.printStackTrace();\r
                                        return null;\r
                                }\r
                                ctx.init(kmf.getKeyManagers(), null, null);\r
                        \r
                                return ClientBuilder.newBuilder()\r
                                                .sslContext(ctx)\r
                                                .hostnameVerifier(new HostnameVerifier() {\r
                                                        @Override\r
                                                        public boolean verify( String s, SSLSession sslSession ) {\r
                                                                return true;\r
                                                        }\r
                                                }).withConfig(config)\r
                                                .build()\r
                                                .register(org.openecomp.aai.util.CustomJacksonJaxBJsonProvider.class);\r
                        } else { \r
                                return ClientBuilder.newBuilder()\r
                                                .hostnameVerifier(new HostnameVerifier() {\r
                                                        @Override\r
                                                        public boolean verify( String s, SSLSession sslSession ) {\r
                                                                return true;\r
                                                        }\r
                                                }).withConfig(config)\r
                                                .build()\r
                                                .register(org.openecomp.aai.util.CustomJacksonJaxBJsonProvider.class);\r
                        }\r
                } catch (Exception e) {\r
                        logger.debug(EELFLoggerDelegate.debugLogger, "Error setting up config: exiting");\r
                        //System.out.println("Error setting up config: exiting");\r
                        e.printStackTrace();\r
                        System.exit(1);\r
                        return null;\r
                }\r
        }\r
}  \r