2 * ============LICENSE_START====================================================
4 * ===========================================================================
5 * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
6 * ===========================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END====================================================
22 package org.onap.aaf.auth.cm.mapper;
24 import java.io.IOException;
25 import java.util.ArrayList;
26 import java.util.List;
28 import org.onap.aaf.auth.cm.data.CertDrop;
29 import org.onap.aaf.auth.cm.data.CertRenew;
30 import org.onap.aaf.auth.cm.data.CertReq;
31 import org.onap.aaf.auth.cm.data.CertResp;
32 import org.onap.aaf.auth.cm.validation.CertmanValidator;
33 import org.onap.aaf.auth.dao.cass.ArtiDAO;
34 import org.onap.aaf.auth.dao.cass.CertDAO;
35 import org.onap.aaf.auth.dao.cass.ArtiDAO.Data;
36 import org.onap.aaf.auth.env.AuthzTrans;
37 import org.onap.aaf.auth.layer.Result;
38 import org.onap.aaf.cadi.util.FQI;
39 import org.onap.aaf.cadi.util.Vars;
41 import aaf.v2_0.Error;
42 import certman.v1_0.Artifacts;
43 import certman.v1_0.Artifacts.Artifact;
44 import certman.v1_0.BaseRequest;
45 import certman.v1_0.CertInfo;
46 import certman.v1_0.CertificateDrop;
47 import certman.v1_0.CertificateRenew;
48 import certman.v1_0.CertificateRequest;
51 public class Mapper1_0 implements Mapper<BaseRequest,CertInfo,Artifacts,Error> {
54 public Class<?> getClass(API api) {
56 case CERT_REQ: return CertificateRequest.class;
57 case CERT_RENEW: return CertificateRenew.class;
58 case CERT_DROP: return CertificateDrop.class;
59 case CERT: return CertInfo.class;
60 case ARTIFACTS: return Artifacts.class;
61 case ERROR: return Error.class;
62 case VOID: return Void.class;
67 @SuppressWarnings("unchecked")
69 public <A> A newInstance(API api) {
71 case CERT_REQ: return (A) new CertificateRequest();
72 case CERT_RENEW: return (A) new CertificateRenew();
73 case CERT_DROP: return (A) new CertificateDrop();
74 case CERT: return (A) new CertInfo();
75 case ARTIFACTS: return (A) new Artifacts();
76 case ERROR: return (A)new Error();
77 case VOID: return null;
82 ////////////// Mapping Functions /////////////
84 public Error errorFromMessage(StringBuilder holder, String msgID, String text, String... var) {
85 Error err = new Error();
86 err.setMessageId(msgID);
87 // AT&T Restful Error Format requires numbers "%" placements
88 err.setText(Vars.convert(holder, text, var));
90 err.getVariables().add(s);
96 * @see com.att.authz.certman.mapper.Mapper#toCert(org.onap.aaf.auth.env.test.AuthzTrans, org.onap.aaf.auth.layer.test.Result)
99 public Result<CertInfo> toCert(AuthzTrans trans, Result<CertResp> in, boolean withTrustChain) throws IOException {
101 CertResp cin = in.value;
102 CertInfo cout = newInstance(API.CERT);
103 cout.setPrivatekey(cin.privateString());
105 if((value=cin.challenge())!=null) {
106 cout.setChallenge(value);
108 cout.getCerts().add(cin.asCertString());
109 if(cin.trustChain()!=null) {
110 for(String c : cin.trustChain()) {
112 cout.getCerts().add(c);
116 // Adding all the Certs in one response is a mistake. Makes it very hard for Agent to setup
117 // Certs in keystore versus Truststore. Separate in Version 2_0
118 if(cin.trustCAs()!=null) {
119 for(String c : cin.trustCAs()) {
121 cout.getCerts().add(c);
125 if(cin.notes()!=null) {
126 boolean first = true;
127 StringBuilder sb = new StringBuilder();
128 for(String n : cin.notes()) {
136 cout.setNotes(sb.toString());
138 cout.getCaIssuerDNs().addAll(cin.caIssuerDNs());
139 cout.setEnv(cin.env());
140 return Result.ok(cout);
142 return Result.err(in);
147 public Result<CertInfo> toCert(AuthzTrans trans, Result<List<CertDAO.Data>> in) {
149 CertInfo cout = newInstance(API.CERT);
150 List<String> certs = cout.getCerts();
151 for(CertDAO.Data cdd : in.value) {
154 return Result.ok(cout);
156 return Result.err(in);
161 * @see com.att.authz.certman.mapper.Mapper#toReq(org.onap.aaf.auth.env.test.AuthzTrans, java.lang.Object)
164 public Result<CertReq> toReq(AuthzTrans trans, BaseRequest req) {
165 CertificateRequest in;
167 in = (CertificateRequest)req;
168 } catch(ClassCastException e) {
169 return Result.err(Result.ERR_BadData,"Request is not a CertificateRequest");
172 CertReq out = new CertReq();
173 CertmanValidator v = new CertmanValidator();
174 v.isNull("CertRequest", req)
175 .nullOrBlank("MechID", out.mechid=in.getMechid());
176 v.nullBlankMin("FQDNs", out.fqdns=in.getFqdns(),1);
178 return Result.err(Result.ERR_BadData, v.errs());
180 out.emails = in.getEmail();
181 out.sponsor=in.getSponsor();
182 out.start = in.getStart();
183 out.end = in.getEnd();
184 out.fqdns = in.getFqdns();
185 return Result.ok(out);
189 * @see com.att.authz.certman.mapper.Mapper#toRenew(org.onap.aaf.auth.env.test.AuthzTrans, java.lang.Object)
192 public Result<CertRenew> toRenew(AuthzTrans trans, BaseRequest req) {
193 return Result.err(Result.ERR_NotImplemented,"Not Implemented... yet");
197 * @see com.att.authz.certman.mapper.Mapper#toDrop(org.onap.aaf.auth.env.test.AuthzTrans, java.lang.Object)
200 public Result<CertDrop> toDrop(AuthzTrans trans, BaseRequest req) {
201 return Result.err(Result.ERR_NotImplemented,"Not Implemented... yet");
205 * @see org.onap.aaf.auth.cm.mapper.Mapper#toArtifact(org.onap.aaf.auth.env.test.AuthzTrans, java.lang.Object)
208 public List<ArtiDAO.Data> toArtifact(AuthzTrans trans, Artifacts artifacts) {
209 List<ArtiDAO.Data> ladd = new ArrayList<ArtiDAO.Data>();
210 for(Artifact arti : artifacts.getArtifact()) {
211 ArtiDAO.Data data = new ArtiDAO.Data();
212 data.mechid = arti.getMechid();
213 data.machine = arti.getMachine();
214 data.type(true).addAll(arti.getType());
215 data.ca = arti.getCa();
216 data.dir = arti.getDir();
217 data.os_user = arti.getOsUser();
218 // Optional (on way in)
219 data.ns = arti.getNs();
220 data.renewDays = arti.getRenewDays();
221 data.notify = arti.getNotification();
223 // Ignored on way in for create/update
224 data.sponsor = arti.getSponsor();
227 // Derive Optional Data from Machine (Domain) if exists
228 if(data.machine!=null) {
230 if(data.machine.endsWith(".att.com")) {
231 data.ca = "aaf"; // default
235 data.ns=FQI.reverseDomain(data.machine);
238 data.sans(true).addAll(arti.getSans());
245 * @see org.onap.aaf.auth.cm.mapper.Mapper#fromArtifacts(org.onap.aaf.auth.layer.test.Result)
248 public Result<Artifacts> fromArtifacts(Result<List<Data>> lArtiDAO) {
249 if(lArtiDAO.isOK()) {
250 Artifacts artis = new Artifacts();
251 for(ArtiDAO.Data arti : lArtiDAO.value) {
252 Artifact a = new Artifact();
253 a.setMechid(arti.mechid);
254 a.setMachine(arti.machine);
255 a.setSponsor(arti.sponsor);
259 a.getType().addAll(arti.type(false));
260 a.setOsUser(arti.os_user);
261 a.setRenewDays(arti.renewDays);
262 a.setNotification(arti.notify);
263 a.getSans().addAll(arti.sans(false));
264 artis.getArtifact().add(a);
266 return Result.ok(artis);
268 return Result.err(lArtiDAO);
Code Review / aaf / authz.git / blob