create a more flexible interface for the creation of access tokens

Provide a AccessTokenBuilderFactory to simplify the creation of access tokens and a default implementation which is based on JWT. Added also an AccessTokenCookieIssuer to unify the creation of access token cookies. Removed old BearerTokenGenerator.
2025-11-14 01:15:44 +01:00 · 2017-01-17 14:40:50 +01:00
parent e7d6f50fd9
commit 2388cfd35d
15 changed files with 912 additions and 349 deletions
--- a/scm-webapp/src/main/java/sonia/scm/security/JwtAccessToken.java
+++ b/scm-webapp/src/main/java/sonia/scm/security/JwtAccessToken.java
@@ -0,0 +1,93 @@
+/**
+ * Copyright (c) 2014, Sebastian Sdorra
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions are met:
+ *
+ * 1. Redistributions of source code must retain the above copyright notice,
+ *    this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright notice,
+ *    this list of conditions and the following disclaimer in the documentation
+ *    and/or other materials provided with the distribution.
+ * 3. Neither the name of SCM-Manager; nor the names of its
+ *    contributors may be used to endorse or promote products derived from this
+ *    software without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
+ * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+ * DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY
+ * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+ * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+ * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON
+ * ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+ * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+ * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ *
+ * http://bitbucket.org/sdorra/scm-manager
+ *
+ */
+package sonia.scm.security;
+
+import io.jsonwebtoken.Claims;
+import java.util.Date;
+import java.util.Optional;
+
+/**
+ * Jwt implementation of {@link AccessToken}.
+ * 
+ * @author Sebastian Sdorra
+ * @since 2.0.0
+ */
+public final class JwtAccessToken implements AccessToken {
+  
+  private final Claims claims;
+  private final String compact;
+
+  JwtAccessToken(Claims claims, String compact) {
+    this.claims = claims;
+    this.compact = compact;
+  }
+
+  @Override
+  public String getId() {
+    return claims.getId();
+  }
+
+  @Override
+  public String getSubject() {
+    return claims.getSubject();
+  }
+
+  @Override
+  public Optional<String> getIssuer() {
+    return Optional.ofNullable(claims.getIssuer());
+  }
+
+  @Override
+  public Date getIssuedAt() {
+    return claims.getIssuedAt();
+  }
+
+  @Override
+  public Date getExpiration() {
+    return claims.getExpiration();
+  }
+
+  @Override
+  public Scope getScope() {
+    return Scopes.fromClaims(claims);
+  }
+  
+  @Override
+  public Optional<Object> getCustom(String key) {
+    return Optional.ofNullable(claims.get(key));
+  }
+
+  @Override
+  public String compact() {
+    return compact;
+  }
+  
+}