2 * ============LICENSE_START====================================================
4 * ===========================================================================
5 * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
6 * ===========================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END====================================================
22 package org.onap.aaf.auth.oauth.mapper;
25 import java.util.Map.Entry;
28 import javax.servlet.http.HttpServletRequest;
30 import org.onap.aaf.auth.dao.cass.OAuthTokenDAO;
31 import org.onap.aaf.auth.dao.cass.OAuthTokenDAO.Data;
32 import org.onap.aaf.auth.layer.Result;
33 import org.onap.aaf.auth.oauth.service.OAuthService;
34 import org.onap.aaf.auth.oauth.service.OCreds;
35 import org.onap.aaf.auth.oauth.service.OAuthService.CLIENT_TYPE;
36 import org.onap.aaf.auth.oauth.service.OAuthService.GRANT_TYPE;
37 import org.onap.aaf.cadi.client.Holder;
38 import org.onap.aaf.cadi.oauth.OAuth2Principal;
39 import org.onap.aaf.cadi.util.Vars;
40 import org.onap.aaf.misc.env.util.Split;
42 import aaf.v2_0.Error;
43 import aafoauth.v2_0.Introspect;
44 import aafoauth.v2_0.Token;
45 import aafoauth.v2_0.TokenRequest;
48 public class Mapper1_0 extends MapperIntrospect1_0 implements Mapper<TokenRequest,Token,Introspect,Error> {
50 public Class<?> getClass(API api) {
52 case TOKEN_REQ: return TokenRequest.class;
53 case TOKEN: return Token.class;
54 case INTROSPECT: return Introspect.class;
55 case ERROR: return Error.class;
56 case VOID: return Void.class;
61 @SuppressWarnings("unchecked")
63 public <A> A newInstance(API api) {
65 case TOKEN_REQ: return (A)new TokenRequest();
66 case TOKEN: return (A)new Token();
67 case INTROSPECT: return (A)new Introspect();
68 case ERROR: return (A)new Error();
69 case VOID: return null;
74 ////////////// Mapping Functions /////////////
76 public Error errorFromMessage(StringBuilder holder, String msgID, String text, String... var) {
77 Error err = new Error();
78 err.setMessageId(msgID);
79 // AT&T Restful Error Format requires numbers "%" placements
80 err.setText(Vars.convert(holder, text, var));
82 err.getVariables().add(s);
88 public TokenRequest tokenReqFromParams(HttpServletRequest req) {
89 TokenRequest tr = new TokenRequest();
91 Map<String, String[]> map = req.getParameterMap();
92 for(Entry<String, String[]> es : map.entrySet()) {
95 if(es.getValue().length==1) {
96 tr.setClientId(es.getValue()[0]);
100 case "client_secret":
101 if(es.getValue().length==1) {
102 tr.setClientSecret(es.getValue()[0]);
107 if(es.getValue().length==1) {
108 tr.setUsername(es.getValue()[0]);
113 if(es.getValue().length==1) {
114 tr.setPassword(es.getValue()[0]);
119 if(es.getValue().length==1) {
120 tr.setScope(es.getValue()[0]);
125 if(es.getValue().length==1) {
126 tr.setGrantType(es.getValue()[0]);
130 case "refresh_token":
131 if(es.getValue().length==1) {
132 tr.setRefreshToken(es.getValue()[0]);
145 * @see org.onap.aaf.auth.oauth.mapper.Mapper#credsFromReq(javax.servlet.http.HttpServletRequest)
148 public OCreds credsFromReq(TokenRequest tokReq) {
149 return new OCreds(tokReq.getClientId(),tokReq.getClientSecret(),
150 tokReq.getUsername(),tokReq.getPassword());
154 * @see org.onap.aaf.auth.oauth.mapper.Mapper#tokenReq(java.lang.Object)
157 public Data clientTokenReq(TokenRequest tokReq, Holder<GRANT_TYPE> hgt) {
158 OAuthTokenDAO.Data tdd = new OAuthTokenDAO.Data();
159 tdd.client_id = tokReq.getClientId();
160 tdd.user = tokReq.getUsername();
161 if(tokReq.getRefreshToken()!=null) {
162 tdd.refresh=tokReq.getRefreshToken();
165 for(GRANT_TYPE ttt : GRANT_TYPE.values()) {
166 if(ttt.name().equals(tokReq.getGrantType())) {
173 case client_credentials:
176 tdd.type = CLIENT_TYPE.confidential.ordinal();
179 tdd.type = CLIENT_TYPE.unknown.ordinal();
182 String scopes=tokReq.getScope();
184 Set<String> ss = tdd.scopes(true);
185 for(String s: Split.split(' ', tokReq.getScope())) {
190 tdd.state = tokReq.getState();
195 public Result<Token> tokenFromData(Result<Data> rd) {
197 return Result.err(rd);
200 Token token = new Token();
201 if(OAuthService.TOKEN_TYPE.values().length>d.type) {
202 token.setTokenType(OAuthService.TOKEN_TYPE.values()[d.type].name());
204 token.setTokenType("Invalid");
206 token.setAccessToken(d.id);
207 token.setRefreshToken(d.refresh);
208 token.setExpiresIn((int)(d.exp_sec-(System.currentTimeMillis())/1000));
209 token.setScope(getScopes(d.scopes(false)));
210 token.setState(d.state);
211 return Result.ok(token);
217 * @see org.onap.aaf.auth.oauth.mapper.Mapper#fromPrincipal(org.onap.aaf.cadi.oauth.OAuth2Principal)
220 public Introspect fromPrincipal(OAuth2Principal p) {
221 return p.tokenPerm().getIntrospect();
Code Review / aaf / authz.git / blob