TokenKeystoreInjectUtilities.java

  1. /*
  2.  * GovWay - A customizable API Gateway 
  3.  * https://govway.org
  4.  * 
  5.  * Copyright (c) 2005-2025 Link.it srl (https://link.it).
  6.  * 
  7.  * This program is free software: you can redistribute it and/or modify
  8.  * it under the terms of the GNU General Public License version 3, as published by
  9.  * the Free Software Foundation.
  10.  *
  11.  * This program is distributed in the hope that it will be useful,
  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14.  * GNU General Public License for more details.
  15.  *
  16.  * You should have received a copy of the GNU General Public License
  17.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18.  *
  19.  */


  22. package org.openspcoop2.pdd.core.token;

  24. import java.util.Map;
  25. import java.util.Properties;

  27. import org.openspcoop2.core.config.PortaApplicativa;
  28. import org.openspcoop2.core.config.PortaDelegata;
  29. import org.openspcoop2.core.config.driver.DriverConfigurazioneException;
  30. import org.openspcoop2.pdd.core.connettori.ConnettoreBase;
  31. import org.openspcoop2.pdd.core.connettori.ConnettoreBaseWithResponse;
  32. import org.openspcoop2.pdd.core.controllo_traffico.PolicyTimeoutConfig;
  33. import org.openspcoop2.pdd.core.controllo_traffico.ReadTimeoutConfigurationUtils;
  34. import org.openspcoop2.pdd.core.controllo_traffico.ReadTimeoutContextParam;
  35. import org.openspcoop2.pdd.core.controllo_traffico.SogliaReadTimeout;
  36. import org.openspcoop2.pdd.core.controllo_traffico.TimeoutNotifier;
  37. import org.openspcoop2.pdd.core.controllo_traffico.TimeoutNotifierType;
  38. import org.openspcoop2.pdd.core.dynamic.DynamicMapBuilderUtils;
  39. import org.openspcoop2.protocol.sdk.Busta;
  40. import org.openspcoop2.protocol.sdk.Context;
  41. import org.openspcoop2.protocol.sdk.IProtocolFactory;
  42. import org.openspcoop2.protocol.sdk.ProtocolException;
  43. import org.openspcoop2.protocol.sdk.state.IState;
  44. import org.openspcoop2.protocol.sdk.state.RequestInfo;
  45. import org.openspcoop2.security.SecurityException;
  46. import org.openspcoop2.security.message.jose.JOSECostanti;
  47. import org.openspcoop2.security.message.jose.JOSEUtils;
  48. import org.openspcoop2.utils.transport.http.HttpUtilities;
  49. import org.slf4j.Logger;

  51. /**     
  52.  * TokenKeystoreInjectUtilities
  53.  *
  54.  * @author Poli Andrea (poli@link.it)
  55.  * @author $Author$
  56.  * @version $Rev$, $Date$
  57.  */
  58. public class TokenKeystoreInjectUtilities {
  59.     
  60.     private Logger log;
  61.     private RequestInfo requestInfo;
  62.     private IProtocolFactory<?> protocolFactory;
  63.     private Context context;
  64.     private IState state;
  65.     private Busta busta;
  66.     
  67.     private boolean portaDelegata;
  68.     private PortaDelegata pd;
  69.     private PortaApplicativa pa;
  70.     
  71.     private PolicyTimeoutConfig policyTimeoutConfig;
  72.     private int connectionTimeout = -1;
  73.     private boolean connectionTimeoutConfigurazioneGlobale = true;
  74.     private int readConnectionTimeout = -1;
  75.     private boolean readConnectionTimeoutConfigurazioneGlobale = true;
  76.     
  77.     public TokenKeystoreInjectUtilities(Logger log, RequestInfo requestInfo,IProtocolFactory<?> protocolFactory,Context context,IState state,Busta busta) {
  78.         this.log = log;
  79.         this.requestInfo = requestInfo;
  80.         this.protocolFactory = protocolFactory;
  81.         this.context = context;
  82.         this.state = state;
  83.         this.busta = busta;
  84.     }
  85.         
  86.     public void initTokenPolicyValidazioneJwt(String nomePolicy,boolean portaDelegata, PortaDelegata pd, PortaApplicativa pa, Properties p) {
  87.         this.policyTimeoutConfig = new PolicyTimeoutConfig();
  88.         this.policyTimeoutConfig.setPolicyValidazioneJwt(nomePolicy);
  89.         init(portaDelegata, pd, pa, p);
  90.     }
  91.     public void initAttributeAuthorityValidazioneRispostaJwt(String nomePolicy,boolean portaDelegata, PortaDelegata pd, PortaApplicativa pa, Properties p) {
  92.         this.policyTimeoutConfig = new PolicyTimeoutConfig();
  93.         this.policyTimeoutConfig.setAttributeAuthorityResponseJwt(nomePolicy);
  94.         init(portaDelegata, pd, pa, p);
  95.     }
  96.     private void init(boolean portaDelegata, PortaDelegata pd, PortaApplicativa pa, Properties p) {
  97.         this.portaDelegata = portaDelegata;
  98.         this.pd = pd;
  99.         this.pa = pa;
  100.         
  101.         String trustStoreSslConnectionTimeoutPropertyName =  JOSECostanti.ID_TRUSTSTORE_SSL_KEYSTORE_CONNECTION_TIMEOUT;
  102.         String trustStoreSslReadTimeoutPropertyName =  JOSECostanti.ID_TRUSTSTORE_SSL_KEYSTORE_READ_TIMEOUT;
  103.         String trustStoreSslConnectionTimeoutProperty =  p.getProperty(trustStoreSslConnectionTimeoutPropertyName);
  104.         String trustStoreSslReadTimeoutProperty =  p.getProperty(trustStoreSslReadTimeoutPropertyName);
  105.         if(trustStoreSslConnectionTimeoutProperty!=null && trustStoreSslReadTimeoutProperty!=null) {
  106.             this.connectionTimeout = Integer.valueOf(trustStoreSslConnectionTimeoutProperty);
  107.             this.readConnectionTimeout = Integer.valueOf(trustStoreSslReadTimeoutProperty);
  108.             this.connectionTimeoutConfigurazioneGlobale = false;
  109.             this.readConnectionTimeoutConfigurazioneGlobale = false;
  110.         }
  111.         else {
  112.             this.connectionTimeout = HttpUtilities.HTTP_CONNECTION_TIMEOUT;
  113.             this.readConnectionTimeout = HttpUtilities.HTTP_READ_CONNECTION_TIMEOUT;
  114.         }
  115.     }
  116.     
  117.     public void inject(Properties p) throws SecurityException {
  118.         
  119.         try {
  120.             boolean throwError = true;
  121.             Map<String,Object> dynamicMap = DynamicMapBuilderUtils.buildDynamicMap(this.busta, this.requestInfo, this.context, this.log);
  122.             JOSEUtils.injectKeystore(this.requestInfo, dynamicMap, p, this.log, throwError); // serve per leggere il keystore dalla cache
  123.         }catch(SecurityException e) {
  124.             
  125.             String msgErrore = ConnettoreBase.readConnectionExceptionMessageFromException(e);
  126.             
  127.             this.processConnectionTimeoutException(this.connectionTimeout, this.connectionTimeoutConfigurazioneGlobale, e, msgErrore);
  128.             
  129.             this.processReadTimeoutException(this.readConnectionTimeout, this.readConnectionTimeoutConfigurazioneGlobale, e, msgErrore);
  130.             
  131.             throw e;
  132.         }
  133.         
  134.     }
  135.     
  136.     private void processReadTimeoutException(int timeout, boolean configurazioneGlobale, Exception e, String message) {
  137.         try {
  138.             if(timeout>0 && ConnettoreBaseWithResponse.containsReadTimeoutException(e, message)) {
  139.                 TimeoutNotifier notifier = getTimeoutNotifier(timeout, configurazioneGlobale, TimeoutNotifierType.WAIT_RESPONSE);
  140.                 notifier.notify(timeout);
  141.             }
  142.         }catch(Exception error) {
  143.             if(this.log!=null) {
  144.                 this.log.error("Errore avvenuto durante la registrazione dell'evento di read timeout: "+error.getMessage(),error);
  145.             }
  146.         }
  147.     }
  148.     
  149.     private void processConnectionTimeoutException(int timeout, boolean configurazioneGlobale, Exception e, String message) {
  150.         try {
  151.             if(timeout>0 && ConnettoreBaseWithResponse.containsConnectionTimeoutException(e, message)) {
  152.                 TimeoutNotifier notifier = getTimeoutNotifier(timeout, configurazioneGlobale, TimeoutNotifierType.CONNECTION);
  153.                 notifier.notify(timeout);
  154.             }
  155.         }catch(Exception error) {
  156.             if(this.log!=null) {
  157.                 this.log.error("Errore avvenuto durante la registrazione dell'evento di connection timeout: "+error.getMessage(),error);
  158.             }
  159.         }
  160.     }
  161.     
  162.     private TimeoutNotifier getTimeoutNotifier(int timeout, boolean configurazioneGlobale, TimeoutNotifierType type) throws DriverConfigurazioneException, ProtocolException {
  163.         SogliaReadTimeout soglia = null;
  164.         if(!this.portaDelegata) {
  165.             soglia = (this.pa!=null) ? 
  166.                     ReadTimeoutConfigurationUtils.buildSogliaResponseTimeout(timeout, configurazioneGlobale, this.pa, null, this.policyTimeoutConfig,
  167.                             new ReadTimeoutContextParam(this.requestInfo, this.protocolFactory, this.context, this.state)) : 
  168.                         ReadTimeoutConfigurationUtils.buildSogliaResponseTimeout(timeout, false, this.protocolFactory);
  169.         }
  170.         else {
  171.             soglia = (this.pd!=null) ? 
  172.                     ReadTimeoutConfigurationUtils.buildSogliaResponseTimeout(timeout, configurazioneGlobale, this.pd, this.policyTimeoutConfig,
  173.                             new ReadTimeoutContextParam(this.requestInfo, this.protocolFactory, this.context, this.state)) : 
  174.                         ReadTimeoutConfigurationUtils.buildSogliaResponseTimeout(timeout, true, this.protocolFactory);
  175.         }
  176.         boolean saveInContext = !(this.policyTimeoutConfig!=null && 
  177.                                     (this.policyTimeoutConfig.getAttributeAuthority()!=null || this.policyTimeoutConfig.getAttributeAuthorityResponseJwt()!=null)
  178.                                 );
  179.         return new TimeoutNotifier(this.context, this.protocolFactory, 
  180.                 soglia, type, this.log, saveInContext);
  181.     }
  182. }
Created with JaCoCo 0.8.8.202204050719