auth/auth-oauth/src/main/java/org/onap/aaf/auth/oauth/mapper/Mapper1_0.java

   1 /**
   2  * ============LICENSE_START====================================================
   3  * org.onap.aaf
   4  * ===========================================================================
   5  * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
   6  * ===========================================================================
   7  * Licensed under the Apache License, Version 2.0 (the "License");
   8  * you may not use this file except in compliance with the License.
   9  * You may obtain a copy of the License at
  10  *
  11  *      http://www.apache.org/licenses/LICENSE-2.0
  12  *
  13  * Unless required by applicable law or agreed to in writing, software
  14  * distributed under the License is distributed on an "AS IS" BASIS,
  15  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  16  * See the License for the specific language governing permissions and
  17  * limitations under the License.
  18  * ============LICENSE_END====================================================
  19  *
  20  */
  21
  22 package org.onap.aaf.auth.oauth.mapper;
  23
  24 import java.util.Map;
  25 import java.util.Map.Entry;
  26 import java.util.Set;
  27
  28 import javax.servlet.http.HttpServletRequest;
  29
  30 import org.onap.aaf.auth.dao.cass.OAuthTokenDAO;
  31 import org.onap.aaf.auth.dao.cass.OAuthTokenDAO.Data;
  32 import org.onap.aaf.auth.layer.Result;
  33 import org.onap.aaf.auth.oauth.service.OAuthService;
  34 import org.onap.aaf.auth.oauth.service.OCreds;
  35 import org.onap.aaf.auth.oauth.service.OAuthService.CLIENT_TYPE;
  36 import org.onap.aaf.auth.oauth.service.OAuthService.GRANT_TYPE;
  37 import org.onap.aaf.cadi.client.Holder;
  38 import org.onap.aaf.cadi.oauth.OAuth2Principal;
  39 import org.onap.aaf.cadi.util.Vars;
  40 import org.onap.aaf.misc.env.util.Split;
  41
  42 import aaf.v2_0.Error;
  43 import aafoauth.v2_0.Introspect;
  44 import aafoauth.v2_0.Token;
  45 import aafoauth.v2_0.TokenRequest;
  46
  47
  48 public class Mapper1_0 extends MapperIntrospect1_0 implements Mapper<TokenRequest,Token,Introspect,Error> {
  49         @Override
  50         public Class<?> getClass(API api) {
  51                 switch(api) {
  52                         case TOKEN_REQ:         return TokenRequest.class;
  53                         case TOKEN:             return Token.class;
  54                         case INTROSPECT:        return Introspect.class;
  55                         case ERROR:             return Error.class;
  56                         case VOID:                      return Void.class;
  57                 }
  58                 return null;
  59         }
  60
  61         @SuppressWarnings("unchecked")
  62         @Override
  63         public <A> A newInstance(API api) {
  64                 switch(api) {
  65                         case TOKEN_REQ:         return (A)new TokenRequest();
  66                         case TOKEN:             return (A)new Token();
  67                         case INTROSPECT:        return (A)new Introspect();
  68                         case ERROR:             return (A)new Error();
  69                         case VOID:                      return null;
  70                 }
  71                 return null;
  72         }
  73
  74         //////////////  Mapping Functions /////////////
  75         @Override
  76         public Error errorFromMessage(StringBuilder holder, String msgID, String text, String... var) {
  77                 Error err = new Error();
  78                 err.setMessageId(msgID);
  79                 // AT&T Restful Error Format requires numbers "%" placements
  80                 err.setText(Vars.convert(holder, text, var));
  81                 for(String s : var) {
  82                         err.getVariables().add(s);
  83                 }
  84                 return err;
  85         }
  86
  87         @Override
  88         public TokenRequest tokenReqFromParams(HttpServletRequest req) {
  89                 TokenRequest tr = new TokenRequest();
  90                 boolean data = false;
  91                 @SuppressWarnings("unchecked")
  92                 Map<String, String[]> map = req.getParameterMap();
  93                 for(Entry<String, String[]> es : map.entrySet()) {
  94                         switch(es.getKey()) {
  95                                 case "client_id":
  96                                         if(es.getValue().length==1) {
  97                                                 tr.setClientId(es.getValue()[0]);
  98                                                 data = true;
  99                                         }
 100                                         break;
 101                                 case "client_secret":
 102                                         if(es.getValue().length==1) {
 103                                                 tr.setClientSecret(es.getValue()[0]);
 104                                                 data = true;
 105                                         }
 106                                         break;
 107                                 case "username":
 108                                         if(es.getValue().length==1) {
 109                                                 tr.setUsername(es.getValue()[0]);
 110                                                 data = true;
 111                                         }
 112                                         break;
 113                                 case "password":
 114                                         if(es.getValue().length==1) {
 115                                                 tr.setPassword(es.getValue()[0]);
 116                                                 data = true;
 117                                         }
 118                                         break;
 119                                 case "scope":
 120                                         if(es.getValue().length==1) {
 121                                                 tr.setScope(es.getValue()[0]);
 122                                                 data = true;
 123                                         }
 124                                         break;
 125                                 case "grant_type":
 126                                         if(es.getValue().length==1) {
 127                                                 tr.setGrantType(es.getValue()[0]);
 128                                                 data = true;
 129                                         }
 130                                         break;
 131                                 case "refresh_token":
 132                                         if(es.getValue().length==1) {
 133                                                 tr.setRefreshToken(es.getValue()[0]);
 134                                                 data = true;
 135                                         }
 136                                         break;
 137
 138                         }
 139                 }
 140                 return data?tr:null;
 141         }
 142
 143
 144
 145         /* (non-Javadoc)
 146          * @see org.onap.aaf.auth.oauth.mapper.Mapper#credsFromReq(javax.servlet.http.HttpServletRequest)
 147          */
 148         @Override
 149         public OCreds credsFromReq(TokenRequest tokReq) {
 150                 return new OCreds(tokReq.getClientId(),tokReq.getClientSecret(),
 151                                                  tokReq.getUsername(),tokReq.getPassword());
 152         }
 153
 154         /* (non-Javadoc)
 155          * @see org.onap.aaf.auth.oauth.mapper.Mapper#tokenReq(java.lang.Object)
 156          */
 157         @Override
 158         public Data clientTokenReq(TokenRequest tokReq, Holder<GRANT_TYPE> hgt) {
 159                 OAuthTokenDAO.Data tdd = new OAuthTokenDAO.Data();
 160                 tdd.client_id = tokReq.getClientId();
 161                 tdd.user = tokReq.getUsername();
 162                 if(tokReq.getRefreshToken()!=null) {
 163                         tdd.refresh=tokReq.getRefreshToken();
 164                 }
 165
 166                 for(GRANT_TYPE ttt : GRANT_TYPE.values()) {
 167                         if(ttt.name().equals(tokReq.getGrantType())) {
 168                                 hgt.set(ttt);
 169                                 break;
 170                         }
 171                 }
 172
 173                 switch(hgt.get()) {
 174                         case client_credentials:
 175                         case password:
 176                         case refresh_token:
 177                                 tdd.type = CLIENT_TYPE.confidential.ordinal();
 178                                 break;
 179                         default:
 180                                 tdd.type = CLIENT_TYPE.unknown.ordinal();
 181                                 break;
 182                 }
 183                 String scopes=tokReq.getScope();
 184                 if(scopes!=null) {
 185                         Set<String> ss = tdd.scopes(true);
 186                         for(String s: Split.split(' ', tokReq.getScope())) {
 187                                 ss.add(s);
 188                         }
 189                 }
 190
 191                 tdd.state = tokReq.getState();
 192                 return tdd;
 193         }
 194
 195         @Override
 196         public Result<Token> tokenFromData(Result<Data> rd) {
 197                 if(rd.notOK()) {
 198                         return Result.err(rd);
 199                 }
 200                 Data d = rd.value;
 201                 Token token = new Token();
 202                 if(OAuthService.TOKEN_TYPE.values().length>d.type) {
 203                         token.setTokenType(OAuthService.TOKEN_TYPE.values()[d.type].name());
 204                 } else {
 205                         token.setTokenType("Invalid");
 206                 }
 207                 token.setAccessToken(d.id);
 208                 token.setRefreshToken(d.refresh);
 209                 token.setExpiresIn((int)(d.exp_sec-(System.currentTimeMillis())/1000));
 210                 token.setScope(getScopes(d.scopes(false)));
 211                 token.setState(d.state);
 212                 return Result.ok(token);
 213         }
 214
 215
 216
 217         /* (non-Javadoc)
 218          * @see org.onap.aaf.auth.oauth.mapper.Mapper#fromPrincipal(org.onap.aaf.cadi.oauth.OAuth2Principal)
 219          */
 220         @Override
 221         public Introspect fromPrincipal(OAuth2Principal p) {
 222                 return p.tokenPerm().getIntrospect();
 223         }
 224
 225 }