2 * ============LICENSE_START====================================================
4 * ===========================================================================
5 * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
6 * ===========================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END====================================================
22 package org.onap.aaf.auth.cm.mapper;
24 import java.io.IOException;
25 import java.util.ArrayList;
26 import java.util.List;
28 import org.onap.aaf.auth.cm.data.CertDrop;
29 import org.onap.aaf.auth.cm.data.CertRenew;
30 import org.onap.aaf.auth.cm.data.CertReq;
31 import org.onap.aaf.auth.cm.data.CertResp;
32 import org.onap.aaf.auth.cm.validation.CertmanValidator;
33 import org.onap.aaf.auth.dao.cass.ArtiDAO;
34 import org.onap.aaf.auth.dao.cass.CertDAO;
35 import org.onap.aaf.auth.dao.cass.ArtiDAO.Data;
36 import org.onap.aaf.auth.env.AuthzTrans;
37 import org.onap.aaf.auth.layer.Result;
38 import org.onap.aaf.cadi.util.FQI;
39 import org.onap.aaf.cadi.util.Vars;
41 import aaf.v2_0.Error;
42 import certman.v1_0.Artifacts;
43 import certman.v1_0.Artifacts.Artifact;
44 import certman.v1_0.BaseRequest;
45 import certman.v1_0.CertInfo;
46 import certman.v1_0.CertificateDrop;
47 import certman.v1_0.CertificateRenew;
48 import certman.v1_0.CertificateRequest;
51 public class Mapper1_0 implements Mapper<BaseRequest,CertInfo,Artifacts,Error> {
54 public Class<?> getClass(API api) {
56 case CERT_REQ: return CertificateRequest.class;
57 case CERT_RENEW: return CertificateRenew.class;
58 case CERT_DROP: return CertificateDrop.class;
59 case CERT: return CertInfo.class;
60 case ARTIFACTS: return Artifacts.class;
61 case ERROR: return Error.class;
62 case VOID: return Void.class;
67 @SuppressWarnings("unchecked")
69 public <A> A newInstance(API api) {
71 case CERT_REQ: return (A) new CertificateRequest();
72 case CERT_RENEW: return (A) new CertificateRenew();
73 case CERT_DROP: return (A) new CertificateDrop();
74 case CERT: return (A) new CertInfo();
75 case ARTIFACTS: return (A) new Artifacts();
76 case ERROR: return (A)new Error();
77 case VOID: return null;
82 ////////////// Mapping Functions /////////////
84 public Error errorFromMessage(StringBuilder holder, String msgID, String text, String... var) {
85 Error err = new Error();
86 err.setMessageId(msgID);
87 // AT&T Restful Error Format requires numbers "%" placements
88 err.setText(Vars.convert(holder, text, var));
90 err.getVariables().add(s);
96 * @see com.att.authz.certman.mapper.Mapper#toCert(org.onap.aaf.auth.env.test.AuthzTrans, org.onap.aaf.auth.layer.test.Result)
99 public Result<CertInfo> toCert(AuthzTrans trans, Result<CertResp> in, boolean withTrustChain) throws IOException {
101 return Result.err(in);
104 CertResp cin = in.value;
105 CertInfo cout = newInstance(API.CERT);
106 cout.setPrivatekey(cin.privateString());
108 if((value=cin.challenge())!=null) {
109 cout.setChallenge(value);
111 cout.getCerts().add(cin.asCertString());
112 if(cin.trustChain()!=null) {
113 for(String c : cin.trustChain()) {
115 cout.getCerts().add(c);
119 // Adding all the Certs in one response is a mistake. Makes it very hard for Agent to setup
120 // Certs in keystore versus Truststore. Separate in Version 2_0
121 if(cin.trustCAs()!=null) {
122 for(String c : cin.trustCAs()) {
124 cout.getCerts().add(c);
128 if(cin.notes()!=null) {
129 boolean first = true;
130 StringBuilder sb = new StringBuilder();
131 for(String n : cin.notes()) {
139 cout.setNotes(sb.toString());
141 cout.getCaIssuerDNs().addAll(cin.caIssuerDNs());
142 cout.setEnv(cin.env());
143 return Result.ok(cout);
148 public Result<CertInfo> toCert(AuthzTrans trans, Result<List<CertDAO.Data>> in) {
150 CertInfo cout = newInstance(API.CERT);
151 List<String> certs = cout.getCerts();
152 for(CertDAO.Data cdd : in.value) {
155 return Result.ok(cout);
157 return Result.err(in);
162 * @see com.att.authz.certman.mapper.Mapper#toReq(org.onap.aaf.auth.env.test.AuthzTrans, java.lang.Object)
165 public Result<CertReq> toReq(AuthzTrans trans, BaseRequest req) {
166 CertificateRequest in;
168 in = (CertificateRequest)req;
169 } catch(ClassCastException e) {
170 return Result.err(Result.ERR_BadData,"Request is not a CertificateRequest");
173 CertReq out = new CertReq();
174 CertmanValidator v = new CertmanValidator();
175 out.mechid=in.getMechid();
176 out.fqdns=in.getFqdns();
177 v.isNull("CertRequest", req).nullOrBlank("MechID", out.mechid);
178 v.nullBlankMin("FQDNs", out.fqdns,1);
180 return Result.err(Result.ERR_BadData, v.errs());
182 out.emails = in.getEmail();
183 out.sponsor=in.getSponsor();
184 out.start = in.getStart();
185 out.end = in.getEnd();
186 out.fqdns = in.getFqdns();
187 return Result.ok(out);
191 * @see com.att.authz.certman.mapper.Mapper#toRenew(org.onap.aaf.auth.env.test.AuthzTrans, java.lang.Object)
194 public Result<CertRenew> toRenew(AuthzTrans trans, BaseRequest req) {
195 return Result.err(Result.ERR_NotImplemented,"Not Implemented... yet");
199 * @see com.att.authz.certman.mapper.Mapper#toDrop(org.onap.aaf.auth.env.test.AuthzTrans, java.lang.Object)
202 public Result<CertDrop> toDrop(AuthzTrans trans, BaseRequest req) {
203 return Result.err(Result.ERR_NotImplemented,"Not Implemented... yet");
207 * @see org.onap.aaf.auth.cm.mapper.Mapper#toArtifact(org.onap.aaf.auth.env.test.AuthzTrans, java.lang.Object)
210 public List<ArtiDAO.Data> toArtifact(AuthzTrans trans, Artifacts artifacts) {
211 List<ArtiDAO.Data> ladd = new ArrayList<>();
212 for(Artifact arti : artifacts.getArtifact()) {
213 ArtiDAO.Data data = new ArtiDAO.Data();
214 data.mechid = arti.getMechid();
215 data.machine = arti.getMachine();
216 data.type(true).addAll(arti.getType());
217 data.ca = arti.getCa();
218 data.dir = arti.getDir();
219 data.os_user = arti.getOsUser();
220 // Optional (on way in)
221 data.ns = arti.getNs();
222 data.renewDays = arti.getRenewDays();
223 data.notify = arti.getNotification();
225 // Ignored on way in for create/update
226 data.sponsor = arti.getSponsor();
229 // Derive Optional Data from Machine (Domain) if exists
230 if(data.machine!=null) {
231 if(data.ca==null && data.machine.endsWith(".att.com")) {
232 data.ca = "aaf"; // default
235 data.ns=FQI.reverseDomain(data.machine);
238 data.sans(true).addAll(arti.getSans());
245 * @see org.onap.aaf.auth.cm.mapper.Mapper#fromArtifacts(org.onap.aaf.auth.layer.test.Result)
248 public Result<Artifacts> fromArtifacts(Result<List<Data>> lArtiDAO) {
249 if(lArtiDAO.isOK()) {
250 Artifacts artis = new Artifacts();
251 for(ArtiDAO.Data arti : lArtiDAO.value) {
252 Artifact a = new Artifact();
253 a.setMechid(arti.mechid);
254 a.setMachine(arti.machine);
255 a.setSponsor(arti.sponsor);
259 a.getType().addAll(arti.type(false));
260 a.setOsUser(arti.os_user);
261 a.setRenewDays(arti.renewDays);
262 a.setNotification(arti.notify);
263 a.getSans().addAll(arti.sans(false));
264 artis.getArtifact().add(a);
266 return Result.ok(artis);
268 return Result.err(lArtiDAO);
Code Review / aaf / authz.git / blob