-
Notifications
You must be signed in to change notification settings - Fork 215
/
JwtAuthenticationResultProvider.java
87 lines (72 loc) · 3.49 KB
/
JwtAuthenticationResultProvider.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
/*
* Copyright (c) 2017 Contributors to the Eclipse Foundation
*
* See the NOTICE file(s) distributed with this work for additional
* information regarding copyright ownership.
*
* This program and the accompanying materials are made available under the
* terms of the Eclipse Public License 2.0 which is available at
* http://www.eclipse.org/legal/epl-2.0
*
* SPDX-License-Identifier: EPL-2.0
*/
package org.eclipse.ditto.gateway.service.security.authentication.jwt;
import static org.eclipse.ditto.base.model.common.ConditionChecker.checkNotNull;
import java.util.concurrent.CompletionStage;
import org.eclipse.ditto.base.model.headers.DittoHeaders;
import org.eclipse.ditto.base.service.DittoExtensionIds;
import org.eclipse.ditto.base.service.DittoExtensionPoint;
import org.eclipse.ditto.jwt.model.JsonWebToken;
import com.typesafe.config.Config;
import com.typesafe.config.ConfigFactory;
import akka.actor.ActorSystem;
/**
* Responsible for extraction of an {@link org.eclipse.ditto.gateway.service.security.authentication.AuthenticationResult} out of a
* {@link JsonWebToken JSON web token}.
*/
public interface JwtAuthenticationResultProvider extends DittoExtensionPoint {
/**
* Extracts an {@code AuthenticationResult} out of a given JsonWebToken.
*
* @param jwt the JSON web token that contains the information to be extracted into an authorization context.
* @param dittoHeaders the DittoHeaders to use for the extracted authentication result.
* @return the authentication result based on the given JSON web token.
* @throws NullPointerException if any argument is {@code null}.
*/
CompletionStage<JwtAuthenticationResult> getAuthenticationResult(JsonWebToken jwt,
DittoHeaders dittoHeaders);
/**
* Loads the implementation of {@code JwtAuthenticationResultProvider} which is configured for the {@code ActorSystem}.
*
* @param actorSystem the actorSystem in which the {@code JwtAuthenticationResultProvider} should be loaded.
* @param config the configuration for this extension.
* @return the {@code JwtAuthenticationResultProvider} implementation.
* @throws NullPointerException if {@code actorSystem} is {@code null}.
* @since 3.0.0
*/
static JwtAuthenticationResultProvider get(final ActorSystem actorSystem, final Config config) {
checkNotNull(actorSystem, "actorSystem");
checkNotNull(config, "config");
final var extensionIdConfig = ExtensionId.computeConfig(config);
return DittoExtensionIds.get(actorSystem)
.computeIfAbsent(extensionIdConfig, ExtensionId::new)
.get(actorSystem);
}
final class ExtensionId extends DittoExtensionPoint.ExtensionId<JwtAuthenticationResultProvider> {
private static final String CONFIG_KEY = "jwt-authentication-result-provider";
private static final String CONFIG_PATH = "ditto.extensions." + CONFIG_KEY;
private ExtensionId(final ExtensionIdConfig<JwtAuthenticationResultProvider> extensionIdConfig) {
super(extensionIdConfig);
}
static ExtensionIdConfig<JwtAuthenticationResultProvider> computeConfig(final Config config) {
return ExtensionIdConfig.of(
JwtAuthenticationResultProvider.class,
config.hasPath(CONFIG_KEY) ? config.getConfig(CONFIG_KEY) : ConfigFactory.empty()
);
}
@Override
protected String getConfigPath() {
return CONFIG_PATH;
}
}
}