feat(jans-auth-server): Token Status List support

agama/transpiler/src/main/java/io/jans/agama/dsl/Transpiler.java

@@ -5,47 +5,24 @@
 import freemarker.template.Template;
 import freemarker.template.TemplateException;
 import freemarker.template.TemplateExceptionHandler;
-
 import io.jans.agama.antlr.AuthnFlowLexer;
 import io.jans.agama.antlr.AuthnFlowParser;
-import io.jans.agama.dsl.error.SyntaxException;
 import io.jans.agama.dsl.error.RecognitionErrorListener;
+import io.jans.agama.dsl.error.SyntaxException;
+import net.sf.saxon.dom.NodeOverNodeInfo;
+import net.sf.saxon.s9api.*;
+import net.sf.saxon.sapling.SaplingDocument;
+import org.antlr.v4.runtime.*;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
 
-import java.io.ByteArrayInputStream;
-import java.io.IOException;
-import java.io.InputStream;
-import java.io.InputStreamReader;
-import java.io.OutputStream;
-import java.io.OutputStreamWriter;
-import java.io.Reader;
-import java.io.StringWriter;
+import java.io.*;
 import java.nio.file.Files;
 import java.nio.file.Paths;
-import java.util.HashSet;
-import java.util.List;
-import java.util.Objects;
-import java.util.Optional;
-import java.util.Map;
-import java.util.Set;
+import java.util.*;
 import java.util.stream.Collectors;
 import java.util.stream.Stream;
 
-import net.sf.saxon.dom.NodeOverNodeInfo;
-import net.sf.saxon.s9api.Processor;
-import net.sf.saxon.s9api.SaxonApiException;
-import net.sf.saxon.s9api.XPathCompiler;
-import net.sf.saxon.s9api.XdmItem;
-import net.sf.saxon.s9api.XdmNode;
-import net.sf.saxon.sapling.SaplingDocument;
-
-import org.antlr.v4.runtime.CharStream;
-import org.antlr.v4.runtime.CharStreams;
-import org.antlr.v4.runtime.CommonTokenStream;
-import org.antlr.v4.runtime.RecognitionException;
-import org.antlr.v4.runtime.Token;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-
 import static java.nio.charset.StandardCharsets.UTF_8;
 
 public class Transpiler {

jans-auth-server/client/src/main/java/io/jans/as/client/OpenIdConfigurationClient.java

@@ -105,6 +105,7 @@ public static void parse(String json, OpenIdConfigurationResponse response) {
         response.setIssuer(jsonObj.optString(ISSUER, null));
         response.setAuthorizationEndpoint(jsonObj.optString(AUTHORIZATION_ENDPOINT, null));
         response.setAuthorizationChallengeEndpoint(jsonObj.optString(AUTHORIZATION_CHALLENGE_ENDPOINT, null));
+        response.setStatusListEndpoint(jsonObj.optString(STATUS_LIST_ENDPOINT, null));
         response.setTokenEndpoint(jsonObj.optString(TOKEN_ENDPOINT, null));
         response.setRevocationEndpoint(jsonObj.optString(REVOCATION_ENDPOINT, null));
         response.setSessionRevocationEndpoint(jsonObj.optString(SESSION_REVOCATION_ENDPOINT, null));

jans-auth-server/client/src/main/java/io/jans/as/client/OpenIdConfigurationResponse.java

@@ -28,6 +28,7 @@ public class OpenIdConfigurationResponse extends BaseResponse implements Seriali
     private String issuer;
     private String authorizationEndpoint;
     private String authorizationChallengeEndpoint;
+    private String statusListEndpoint;
     private String tokenEndpoint;
     private String revocationEndpoint;
     private String sessionRevocationEndpoint;
@@ -239,6 +240,24 @@ public void setAuthorizationChallengeEndpoint(String authorizationChallengeEndpo
         this.authorizationChallengeEndpoint = authorizationChallengeEndpoint;
     }
 
+    /**
+     * Gets status list
+     *
+     * @return status list
+     */
+    public String getStatusListEndpoint() {
+        return statusListEndpoint;
+    }
+
+    /**
+     * Sets status list
+     *
+     * @param statusListEndpoint status list
+     */
+    public void setStatusListEndpoint(String statusListEndpoint) {
+        this.statusListEndpoint = statusListEndpoint;
+    }
+
     /**
      * Returns the URL of the Token endpoint.
      *
@@ -1300,6 +1319,7 @@ public String toString() {
                 "issuer='" + issuer + '\'' +
                 ", authorizationEndpoint='" + authorizationEndpoint + '\'' +
                 ", authorizationChallengeEndpoint='" + authorizationChallengeEndpoint + '\'' +
+                ", statusListEndpoint='" + statusListEndpoint + '\'' +
                 ", tokenEndpoint='" + tokenEndpoint + '\'' +
                 ", revocationEndpoint='" + revocationEndpoint + '\'' +
                 ", userInfoEndpoint='" + userInfoEndpoint + '\'' +

jans-auth-server/client/src/main/java/io/jans/as/client/StatusListClient.java

@@ -0,0 +1,54 @@
+package io.jans.as.client;
+
+import jakarta.ws.rs.HttpMethod;
+import jakarta.ws.rs.client.Invocation;
+import org.apache.log4j.Logger;
+
+/**
+ * @author Yuriy Z
+ */
+public class StatusListClient extends BaseClient<StatusListRequest, StatusListResponse> {
+
+    private static final Logger LOG = Logger.getLogger(StatusListClient.class);
+
+    /**
+     * Constructs a client for status list.
+     *
+     * @param url status list endpoint
+     */
+    public StatusListClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.POST;
+    }
+
+    public StatusListResponse exec(StatusListRequest request) {
+        setRequest(request);
+        return exec();
+    }
+
+    public StatusListResponse exec() {
+        initClient();
+
+        Invocation.Builder clientRequest = webTarget.request();
+        applyCookies(clientRequest);
+
+        clientRequest.header("Content-Type", request.getContentType());
+
+        try {
+            clientResponse = clientRequest.buildGet().invoke();
+
+            final StatusListResponse response = new StatusListResponse(clientResponse);
+            setResponse(response);
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+}

jans-auth-server/client/src/main/java/io/jans/as/client/StatusListRequest.java

@@ -0,0 +1,18 @@
+package io.jans.as.client;
+
+import io.jans.as.model.config.Constants;
+
+/**
+ * @author Yuriy Z
+ */
+public class StatusListRequest extends BaseRequest {
+
+    public StatusListRequest() {
+        setContentType(Constants.CONTENT_TYPE_STATUSLIST_JSON);
+    }
+
+    @Override
+    public String getQueryString() {
+        return null;
+    }
+}

jans-auth-server/client/src/main/java/io/jans/as/client/StatusListResponse.java

@@ -0,0 +1,98 @@
+package io.jans.as.client;
+
+import io.jans.as.model.config.Constants;
+import io.jans.as.model.jwt.Jwt;
+import io.jans.as.model.session.EndSessionErrorResponseType;
+import io.jans.model.tokenstatus.StatusList;
+import jakarta.ws.rs.core.Response;
+import org.json.JSONObject;
+
+import java.io.IOException;
+
+/**
+ * @author Yuriy Z
+ */
+public class StatusListResponse extends BaseResponseWithErrors<EndSessionErrorResponseType> {
+
+    private String lst;
+    private int bits;
+    private Jwt jwt;
+
+    public StatusListResponse() {
+    }
+
+    public StatusListResponse(Response clientResponse) {
+        super(clientResponse);
+        injectData(clientResponse);
+    }
+
+    public StatusList getStatusList() throws IOException {
+        return StatusList.fromEncoded(lst, bits);
+    }
+
+    @Override
+    public EndSessionErrorResponseType fromString(String params) {
+        return EndSessionErrorResponseType.fromString(params);
+    }
+
+    public void injectData(Response clientResponse) {
+        injectErrorIfExistSilently(entity);
+        if (getErrorType() != null) {
+            return;
+        }
+
+        if (clientResponse.getStatus() != 200) {
+            return;
+        }
+
+        final String contentType = clientResponse.getHeaderString("Content-Type");
+        if (Constants.CONTENT_TYPE_STATUSLIST_JWT.equalsIgnoreCase(contentType)) {
+            jwt = Jwt.parseSilently(entity);
+            if (jwt != null) {
+                final JSONObject statusList = jwt.getClaims().getClaimAsJSON("status_list");
+                lst = statusList.getString("lst");
+                bits = statusList.getInt("bits");
+            }
+        } else if (Constants.CONTENT_TYPE_STATUSLIST_JSON.equalsIgnoreCase(contentType)) {
+            final JSONObject json = new JSONObject(entity);
+            final JSONObject statusList = json.getJSONObject("status_list");
+            lst = statusList.getString("lst");
+            bits = statusList.getInt("bits");
+        } else {
+            throw new UnsupportedOperationException("Unable to recognize content-type: " + contentType);
+        }
+    }
+
+    public String getLst() {
+        return lst;
+    }
+
+    public void setLst(String lst) {
+        this.lst = lst;
+    }
+
+    public int getBits() {
+        return bits;
+    }
+
+    public void setBits(int bits) {
+        this.bits = bits;
+    }
+
+    public Jwt getJwt() {
+        return jwt;
+    }
+
+    public void setJwt(Jwt jwt) {
+        this.jwt = jwt;
+    }
+
+    @Override
+    public String toString() {
+        return "StatusListResponse{" +
+                "lst='" + lst + '\'' +
+                ", bits=" + bits +
+                ", jwt=" + jwt +
+                "} " + super.toString();
+    }
+}

jans-auth-server/client/src/test/java/io/jans/as/client/BaseTest.java

@@ -94,6 +94,7 @@ public abstract class BaseTest {
     protected String gluuConfigurationEndpoint;
     protected String tokenEndpoint;
     protected String tokenRevocationEndpoint;
+    protected String statusListEndpoint;
     protected String userInfoEndpoint;
     protected String clientInfoEndpoint;
     protected String checkSessionIFrame;
@@ -304,6 +305,14 @@ public void setAuthorizationChallengeEndpoint(String authorizationChallengeEndpo
         this.authorizationChallengeEndpoint = authorizationChallengeEndpoint;
     }
 
+    public String getStatusListEndpoint() {
+        return statusListEndpoint;
+    }
+
+    public void setStatusListEndpoint(String statusListEndpoint) {
+        this.statusListEndpoint = statusListEndpoint;
+    }
+
     public String getTokenEndpoint() {
         return tokenEndpoint;
     }
@@ -1000,6 +1009,7 @@ public void discovery(ITestContext context) throws Exception {
 
             authorizationEndpoint = response.getAuthorizationEndpoint();
             authorizationChallengeEndpoint = response.getAuthorizationChallengeEndpoint();
+            statusListEndpoint = response.getStatusListEndpoint();
             tokenEndpoint = response.getTokenEndpoint();
             tokenRevocationEndpoint = response.getRevocationEndpoint();
             userInfoEndpoint = response.getUserInfoEndpoint();
@@ -1024,6 +1034,7 @@ public void discovery(ITestContext context) throws Exception {
 
             authorizationEndpoint = context.getCurrentXmlTest().getParameter("authorizationEndpoint");
             authorizationChallengeEndpoint = context.getCurrentXmlTest().getParameter("authorizationChallengeEndpoint");
+            statusListEndpoint = context.getCurrentXmlTest().getParameter("statusListEndpoint");
             tokenEndpoint = context.getCurrentXmlTest().getParameter("tokenEndpoint");
             tokenRevocationEndpoint = context.getCurrentXmlTest().getParameter("tokenRevocationEndpoint");
             userInfoEndpoint = context.getCurrentXmlTest().getParameter("userInfoEndpoint");