JWTOptions.java

  1. /*
  2.  * GovWay - A customizable API Gateway 
  3.  * https://govway.org
  4.  * 
  5.  * Copyright (c) 2005-2025 Link.it srl (https://link.it).
  6.  * 
  7.  * This program is free software: you can redistribute it and/or modify
  8.  * it under the terms of the GNU General Public License version 3, as published by
  9.  * the Free Software Foundation.
  10.  *
  11.  * This program is distributed in the hope that it will be useful,
  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14.  * GNU General Public License for more details.
  15.  *
  16.  * You should have received a copy of the GNU General Public License
  17.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18.  *
  19.  */

  21. package org.openspcoop2.utils.security;

  23. import java.util.ArrayList;
  24. import java.util.List;

  26. /**
  27.  * JWEOptions
  28.  * 
  29.  * @author Bussu Giovanni (bussu@link.it)
  30.  * @author  $Author$
  31.  * @version $Rev$, $Date$
  32.  * 
  33.  */
  34. public class JWTOptions {

  36.     private JOSESerialization serialization;
  37.     
  38.     private boolean permitUseHeaderX5C = true;
  39.     private boolean permitUseHeaderX5U = true;
  40.     private boolean permitUseHeaderX5T = true;
  41.     private boolean permitUseHeaderX5T_256 = true;
  42.     private boolean permitUseHeaderJWK= true;
  43.     private boolean permitUseHeaderJKU = true;
  44.     private boolean permitUseHeaderKID = true;
  45.     

  47.     public JWTOptions(JOSESerialization serialization) {
  48.         this.serialization = serialization;
  49.     }
  50.     
  51.     public JOSESerialization getSerialization() {
  52.         return this.serialization;
  53.     }
  54.     public void setSerialization(JOSESerialization serialization) {
  55.         this.serialization = serialization;
  56.     }
  57.     
  58.     public boolean isPermitUseHeaderX5C() {
  59.         return this.permitUseHeaderX5C;
  60.     }
  61.     public void setPermitUseHeaderX5C(boolean permitUseHeaderX5C) {
  62.         this.permitUseHeaderX5C = permitUseHeaderX5C;
  63.     }

  65.     public boolean isPermitUseHeaderX5U() {
  66.         return this.permitUseHeaderX5U;
  67.     }
  68.     public void setPermitUseHeaderX5U(boolean permitUseHeaderX5U) {
  69.         this.permitUseHeaderX5U = permitUseHeaderX5U;
  70.     }

  72.     public boolean isPermitUseHeaderX5T() {
  73.         return this.permitUseHeaderX5T;
  74.     }
  75.     public void setPermitUseHeaderX5T(boolean permitUseHeaderX5T) {
  76.         this.permitUseHeaderX5T = permitUseHeaderX5T;
  77.     }

  79.     public boolean isPermitUseHeaderX5T_256() {
  80.         return this.permitUseHeaderX5T_256;
  81.     }
  82.     public void setPermitUseHeaderX5T_256(boolean permitUseHeaderX5T_256) {
  83.         this.permitUseHeaderX5T_256 = permitUseHeaderX5T_256;
  84.     }
  85.     
  86.     public boolean isPermitUseHeaderJWK() {
  87.         return this.permitUseHeaderJWK;
  88.     }
  89.     public void setPermitUseHeaderJWK(boolean permitUseHeaderJWK) {
  90.         this.permitUseHeaderJWK = permitUseHeaderJWK;
  91.     }

  93.     public boolean isPermitUseHeaderJKU() {
  94.         return this.permitUseHeaderJKU;
  95.     }
  96.     public void setPermitUseHeaderJKU(boolean permitUseHeaderJKU) {
  97.         this.permitUseHeaderJKU = permitUseHeaderJKU;
  98.     }
  99.     
  100.     public boolean isPermitUseHeaderKID() {
  101.         return this.permitUseHeaderKID;
  102.     }
  103.     public void setPermitUseHeaderKID(boolean permitUseHeaderKID) {
  104.         this.permitUseHeaderKID = permitUseHeaderKID;
  105.     }
  106.     
  107.     
  108.     public List<String> headersNotPermitted(org.apache.cxf.rs.security.jose.common.JoseHeaders hdrs){
  109.         List<String> list = new ArrayList<>();
  110.         if(hdrs.getX509Chain()!=null && !hdrs.getX509Chain().isEmpty()) {
  111.             if(this.isPermitUseHeaderX5C()==false) {
  112.                 list.add(JwtHeaders.JWT_HDR_X5C);
  113.             }
  114.         }
  115.         if(hdrs.getJsonWebKey()!=null) {
  116.             if(this.isPermitUseHeaderJWK()==false) {
  117.                 list.add(JwtHeaders.JWT_HDR_JWK);
  118.             }
  119.         }
  120.         if(hdrs.getX509Url()!=null) {
  121.             if(this.isPermitUseHeaderX5U()==false) {
  122.                 list.add(JwtHeaders.JWT_HDR_X5U);
  123.             }
  124.         }
  125.         if(hdrs.getJsonWebKeysUrl()!=null) {
  126.             if(this.isPermitUseHeaderJKU()==false) {
  127.                 list.add(JwtHeaders.JWT_HDR_JKU);
  128.             }
  129.         }
  130.         if(hdrs.getX509Thumbprint()!=null) {
  131.             if(this.isPermitUseHeaderX5T()==false) {
  132.                 list.add(JwtHeaders.JWT_HDR_X5T);
  133.             }
  134.         }
  135.         if(hdrs.getX509ThumbprintSHA256()!=null) {
  136.             if(this.isPermitUseHeaderX5T_256()==false) {
  137.                 list.add(JwtHeaders.JWT_HDR_X5t_S256);
  138.             }
  139.         }
  140.         if(hdrs.getKeyId()!=null) {
  141.             if(this.isPermitUseHeaderKID()==false) {
  142.                 list.add(JwtHeaders.JWT_HDR_KID);
  143.             }
  144.         }
  145.         return list;
  146.     }
  147. }
Created with JaCoCo 0.8.8.202204050719