org.ow2.proactive.scheduling.api.graphql.service.AuthenticationService.java Source code

Java tutorial

  1. HOME
  2. Java
  3. org.ow2.proactive.scheduling.api.graphql.service.AuthenticationService.java

Introduction

Here is the source code for org.ow2.proactive.scheduling.api.graphql.service.AuthenticationService.java

Source

/*
 * ProActive Parallel Suite(TM):
 * The Open Source library for parallel and distributed
 * Workflows & Scheduling, Orchestration, Cloud Automation
 * and Big Data Analysis on Enterprise Grids & Clouds.
 *
 * Copyright (c) 2007 - 2017 ActiveEon
 * Contact: contact@activeeon.com
 *
 * This library is free software: you can redistribute it and/or
 * modify it under the terms of the GNU Affero General Public License
 * as published by the Free Software Foundation: version 3 of
 * the License.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program. If not, see <http://www.gnu.org/licenses/>.
 *
 * If needed, contact us to obtain a release under GPL Version 2 or 3
 * or a different license than the AGPL.
 */
package org.ow2.proactive.scheduling.api.graphql.service;

import java.security.KeyManagementException;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import java.util.concurrent.TimeUnit;

import javax.annotation.PostConstruct;

import org.apache.http.conn.ssl.NoopHostnameVerifier;
import org.apache.http.impl.client.CloseableHttpClient;
import org.apache.http.impl.client.HttpClients;
import org.apache.http.ssl.SSLContextBuilder;
import org.apache.http.ssl.TrustStrategy;
import org.ow2.proactive.scheduling.api.graphql.service.exceptions.InvalidSessionIdException;
import org.ow2.proactive.scheduling.api.graphql.service.exceptions.MissingSessionIdException;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.http.HttpStatus;
import org.springframework.http.client.HttpComponentsClientHttpRequestFactory;
import org.springframework.stereotype.Service;
import org.springframework.web.client.HttpClientErrorException;
import org.springframework.web.client.RestTemplate;

import com.google.common.base.Strings;
import com.google.common.cache.CacheBuilder;
import com.google.common.cache.CacheLoader;
import com.google.common.cache.LoadingCache;

/**
 * @author ActiveEon Team
 */
@Service
public class AuthenticationService {

    @Value("${pa.scheduler.rest.url}")
    private String schedulerRestUrl;

    private String schedulerLoginFetchUrl;

    @Value("${pa.scheduling.api.session_cache.expire_after}")
    private String sessionCacheExpireAfter;

    @Value("${pa.scheduling.api.session_cache.max_size}")
    private String sessionCacheMaxSize;

    @Autowired
    private RestTemplate restTemplate;

    private LoadingCache<String, String> sessionCache;

    @PostConstruct
    protected void init() throws KeyStoreException, NoSuchAlgorithmException, KeyManagementException {

        schedulerLoginFetchUrl = createLoginFetchUrl(schedulerRestUrl);

        sessionCache = CacheBuilder.newBuilder().maximumSize(Integer.parseInt(sessionCacheMaxSize))
                .expireAfterWrite(Integer.parseInt(sessionCacheExpireAfter), TimeUnit.MILLISECONDS)
                .build(new CacheLoader<String, String>() {
                    @Override
                    public String load(String sessionId) throws Exception {
                        return getLoginFromSessionId(sessionId);
                    }
                });

        if (schedulerLoginFetchUrl.startsWith("https")) {
            CloseableHttpClient httpClient = HttpClients.custom().setSSLHostnameVerifier(new NoopHostnameVerifier())
                    .setSSLContext(new SSLContextBuilder().loadTrustMaterial(null, new TrustStrategy() {
                        public boolean isTrusted(X509Certificate[] arg0, String arg1) throws CertificateException {
                            return true;
                        }
                    }).build()).build();
            HttpComponentsClientHttpRequestFactory requestFactory = new HttpComponentsClientHttpRequestFactory();
            requestFactory.setHttpClient(httpClient);

            restTemplate.setRequestFactory(requestFactory);
        }

    }

    private String createLoginFetchUrl(String schedulerRestUrl) {
        String result = schedulerRestUrl;

        if (!schedulerRestUrl.endsWith("/")) {
            result += '/';
        }

        result += "scheduler/logins/sessionid/";

        return result;
    }

    public String authenticate(String sessionId) throws InvalidSessionIdException {
        return sessionCache.getUnchecked(sessionId);
    }

    private String getLoginFromSessionId(String sessionId) {
        try {

            String login = restTemplate.getForObject(schedulerLoginFetchUrl + sessionId, String.class);

            if (!Strings.isNullOrEmpty(login)) {
                return login;
            }

            throw new MissingSessionIdException();
        } catch (HttpClientErrorException e) {
            if (e.getStatusCode() == HttpStatus.NOT_FOUND) {
                throw new InvalidSessionIdException();
            } else {
                throw e;
            }
        }
    }

}