java source code of JolokiaClientFactory

hawkular-agent-master
- hawkular-agent-itest-util
  - src
    - main
      - java
        org
        hawkular
        agent
        itest
        util
        ITestHelper.java
  - pom.xml
- pom.xml
- mvnw
- LICENSE
- hawkular-dmr-client
  - src
    - main
      - java
        org
        hawkular
        dmr
        api
        SubsystemDatasourceConstants.java
        OperationFailureException.java
        DmrUtils.java
        DmrApiException.java
        DmrApiLoggers.java
        MsgLogger.java
        DmrNodePath.java
        SubsystemLoggingConstants.java
        OperationBuilder.java
        dmrclient
        LoggingJBossASClient.java
        CoreJBossASClient.java
        SecurityDomainJBossASClient.java
        VaultJBossASClient.java
        DeploymentJBossASClient.java
        Address.java
        MessagingJBossASClient.java
        JBossASClient.java
        FailureException.java
        SocketBindingJBossASClient.java
        DatasourceJBossASClient.java
        WebJBossASClient.java
        InfinispanJBossASClient.java
        TransactionsJBossASClient.java
        modules
        AddModuleRequest.java
        Modules.java
    - test
      - resources
        org
        hawkular
        dmrclient
        modules
        complicated.xml
        minimal.xml
        usual.xml
      - java
        org
        hawkular
        dmrclient
        OperationBuilderTest.java
        AddressTest.java
        modules
        ModulesTest.java
  - pom.xml
- .travis.maven.settings.xml
- docker-dist
  - src
    - main
      - resources
        run_hawkular_javaagent.sh
  - example-env-file
  - pom.xml
  - README.adoc
  - hawkular-javaagent-example.yaml
  - Dockerfile
  - build.sh
- hawkular-javaagent-itest-parent
  - hawkular-javaagent-all-itests
    - pom.xml
    - hawkular-javaagent-domain-itest
      - src
        test
        resources
        hawkular-javaagent-itest-config.yaml
        logging.properties
        java
        org
        hawkular
        agent
        test
        AbstractDomainITestSuite.java
        DomainResourcesITest.java
        ControlDomainServersITest.java
        DomainDeployApplicationITest.java
      - server-provisioning-plain-wildfly.xml
      - pom.xml
      - server-provisioning-hawkular.xml
    - hawkular-javaagent-cmdgw-itest
      - src
        test
        resources
        hawkular-javaagent-itest-config.yaml
        logging.properties
        org
        hawkular
        agent
        ws
        test
        DatasourceCommandITest.testXaDs-after-add.node.txt
        DatasourceCommandITest.testH2Ds-after-update.node.txt
        JdbcDriverCommandITest.driver-after-add.node.txt
        DatasourceCommandITest.testH2Ds-after-add.node.txt
        DatasourceCommandITest.testXaDs-after-update.node.txt
        java
        org
        hawkular
        agent
        ws
        test
        StandaloneDeployApplicationITest.java
        DatasourceCommandITest.java
        JdbcDriverCommandITest.java
        StandaloneWildFlyITest.java
        ExportJdrCommandITest.java
        StatisticsControlCommandITest.java
        ExecuteOperationCommandITest.java
        AbstractCommandITest.java
        ImmutableITest.java
      - server-provisioning.xml
      - pom.xml
  - hawkular-javaagent-itest-feature-pack
    - src
      - main
        xsl
        configuration
        standalone
        hawkular-javaagent-itest-subsystems.xsl
        subsystem-templates
        hawkular-javaagent-itest-infinispan.xsl
        hawkular-javaagent-itest-messaging-activemq.xsl
        hawkular-javaagent-itest-logging.xsl
    - pom.xml
    - feature-pack-build.xml
    - assembly.xml
  - pom.xml
  - hawkular-javaagent-helloworld-war
    - src
      - main
        java
        org
        hawkular
        agent
        helloworld
        HelloWorldServlet.java
        SimpleMXBean.java
        SimpleMXBeanImpl.java
        webapp
        WEB-INF
        jboss-web.xml
        beans.xml
        web.xml
        index.html
    - pom.xml
  - hawkular-javaagent-itest-util
    - src
      - main
        java
        org
        hawkular
        javaagent
        itest
        util
        WildFlyClientConfig.java
        AbstractITest.java
    - pom.xml
- hawkular-agent-command-cli
  - src
    - main
      - resources
        logging.properties
        logging-debug.properties
      - java
        org
        hawkular
        agent
        commandcli
        CommandCli.java
  - pom.xml
  - README.adoc
- hawkular-agent-core
  - src
    - main
      - java
        org
        hawkular
        agent
        monitor
        prometheus
        JmxScraper.java
        WebServer.java
        JmxCollector.java
        diagnostics
        JBossLoggingReporter.java
        ProtocolDiagnostics.java
        Diagnostics.java
        DiagnosticsImpl.java
        storage
        HttpClientBuilder.java
        InventoryStorageProxy.java
        StorageAdapter.java
        NotificationDispatcher.java
        HawkularStorageAdapter.java
        AsyncInventoryStorage.java
        NotificationPayloadBuilderImpl.java
        api
        InventoryStorage.java
        InventoryListener.java
        HawkularAgentContext.java
        HawkularAgentContextImpl.java
        InventoryEvent.java
        NotificationStorage.java
        NotificationPayloadBuilder.java
        log
        AgentLoggers.java
        MsgLogger.java
        util
        ThreadFactoryGenerator.java
        WildflyCompatibilityUtils.java
        BaseHttpClientGenerator.java
        Consumer.java
        Util.java
        config
        AgentCoreEngineConfiguration.java
        service
        ServiceStatus.java
        Version.java
        AgentCoreEngine.java
        inventory
        MetricType.java
        InventoryIdUtil.java
        OperationParam.java
        NameSet.java
        Resource.java
        Operation.java
        ResourceConfigurationPropertyInstance.java
        IDObject.java
        AttributeLocation.java
        SupportedMetricType.java
        ResourceConfigurationPropertyType.java
        ResourceType.java
        ResourceTypeManager.java
        Interval.java
        MeasurementType.java
        TypeSet.java
        Name.java
        AttributeLocationProvider.java
        MonitoredEndpoint.java
        NodeLocation.java
        ResourceManager.java
        MeasurementInstance.java
        NodeLocationProvider.java
        TypeSets.java
        NamedObject.java
        Instance.java
        ConnectionData.java
        ID.java
        protocol
        Driver.java
        ProtocolException.java
        Session.java
        Discovery.java
        dmr
        ModelControllerClientFactory.java
        DMRNodeLocation.java
        DMRSession.java
        StatisticsControl.java
        DMREndpointService.java
        DMRDriver.java
        DMRLocationResolver.java
        ProtocolServices.java
        jmx
        JolokiaClientFactory.java
        JMXDriver.java
        JMXNodeLocation.java
        JMXSession.java
        JolokiaJMXDriver.java
        JMXLocationResolver.java
        MBeanServerConnectionJMXDriver.java
        JMXEndpointService.java
        platform
        PlatformMBeanGenerator.java
        Constants.java
        OshiPlatformCache.java
        ProtocolService.java
        LocationResolver.java
        EndpointService.java
        cmd
        EnableApplicationCommand.java
        GenericErrorResponseCommand.java
        ExecuteAgnosticOperationCommand.java
        AddDatasourceCommand.java
        AbstractJMXResourcePathCommand.java
        ExportJdrCommand.java
        CommandContext.java
        AbstractAgnosticResourcePathCommand.java
        DisableApplicationCommand.java
        UndeployApplicationCommand.java
        Command.java
        RemoveDatasourceCommand.java
        DeployApplicationCommand.java
        RestartApplicationCommand.java
        FeedCommProcessor.java
        AbstractResourceCommand.java
        EchoCommand.java
        InvalidCommandRequestException.java
        StatisticsControlCommand.java
        AbstractRemoveModelNodeCommand.java
        WebSocketClientBuilder.java
        AbstractDMRResourcePathCommand.java
        ExecuteJMXOperationCommand.java
        AddJdbcDriverCommand.java
        UpdateDatasourceCommand.java
        ExecuteDMROperationCommand.java
        RemoveJdbcDriverCommand.java
    - test
      - java
        org
        hawkular
        agent
        monitor
        storage
        AsyncInventoryStorageTest.java
        util
        UtilTest.java
        service
        ServiceStatusTest.java
        inventory
        ResourceTypeManagerTest.java
        InventoryIdUtilTest.java
        NamedObjectTest.java
        ResourceManagerTest.java
        protocol
        dmr
        DMRLocationResolverTest.java
        DMREndpointServiceTest.java
        jmx
        JMXLocationResolverTest.java
        platform
        PlatformMBeanGeneratorTest.java
        OshiPlatformCacheTest.java
        LocationResolverTest.java
  - pom.xml
- hawkular-javaagent-wildfly-feature-pack
  - src
    - main
      - resources
        featurepack
        content
        standalone
        configuration
        hawkular-javaagent-config.yaml
        hawkular-javaagent-config-metrics-only.yaml
        domain
        configuration
        host-hawkular.xml
        bin
        domain.conf
        start-with-hawkular.sh
        standalone.conf
  - pom.xml
  - feature-pack-build.xml
  - assembly.xml
- README.adoc
- .mvn
  - extensions.xml
  - wrapper
    - maven-wrapper.properties
  - srcdeps.yaml
- .travis.yml
- hawkular-javaagent-wildfly-dist
  - server-provisioning-plain-wildfly.xml
  - pom.xml
  - assembly.xml
- hawkular-javaagent
  - src
    - main
      - java
        org
        hawkular
        agent
        javaagent
        InventoryReport.java
        JavaAgentMXBean.java
        log
        MsgLogger.java
        JavaAgentLoggers.java
        config
        RemoteJMX.java
        WaitFor.java
        DMROperation.java
        StringPropertyReplacer.java
        BooleanExpression.java
        Validatable.java
        JMXResourceType.java
        Configuration.java
        LocalJMX.java
        ManagedServers.java
        LocalDMR.java
        DMRMetric.java
        JMXOperation.java
        StorageAdapter.java
        ConfigManager.java
        Platform.java
        Diagnostics.java
        SecurityRealm.java
        JMXMetricSet.java
        DMRResourceConfig.java
        MetricsExporter.java
        DMROperationParam.java
        JMXMetric.java
        JMXOperationParam.java
        DMRMetricSet.java
        TimeUnits.java
        MetricTypeJsonProperty.java
        JMXResourceTypeSet.java
        DMRNotification.java
        DMRResourceType.java
        ConfigConverter.java
        DMRResourceTypeSet.java
        MetricUnitJsonProperty.java
        Subsystem.java
        JMXResourceConfig.java
        RemoteDMR.java
        StringExpression.java
        MetricsExporterProxy.java
        IntegerExpression.java
        AbstractStringifiedProperty.java
        AbstractExpression.java
        JavaAgentEngine.java
        Util.java
        cmd
        EchoCommand.java
        JavaAgent.java
    - test
      - resources
        test-overlay2.yaml
        all-resource-type-sets-with-type-version.yaml
        test-overlay-all-resource-types-2.yaml
        test-config.yaml
        all-resource-type-sets.yaml
        simple.yaml
        test-overlay1.yaml
        real-config-jmx.yaml
        test-convert.yaml
        empty.yaml
        bad-notif.yaml
        test-overlay-all-resource-types-1.yaml
      - java
        org
        hawkular
        agent
        javaagent
        config
        ConfigExpressionTest.java
        UtilTest.java
        ConfigManagerTest.java
        StringPropertyReplacerTest.java
        ConfigConverterTest.java
        ConfigCopyTest.java
        GenerateFeedIdTest.java
  - pom.xml
  - README.adoc
  - AGENT-CONFIG.adoc
- .gitignore
- eap6-support
  - hawkular-javaagent-wildfly-feature-pack-eap6
    - src
      - main
        resources
        featurepack
        content
        standalone
        configuration
        hawkular-javaagent-config.yaml
        bin
        standalone-hawkular-javaagent-javaopts.conf
    - pom.xml
    - feature-pack-build.xml
    - assembly.xml
- mvnw.cmd

/*
 * Copyright 2015-2017 Red Hat, Inc. and/or its affiliates
 * and other contributors as indicated by the @author tags.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *    http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package org.hawkular.agent.monitor.protocol.jmx;

import java.io.IOException;

import javax.net.ssl.SSLContext;

import org.apache.http.Header;
import org.apache.http.HttpException;
import org.apache.http.HttpHost;
import org.apache.http.HttpRequest;
import org.apache.http.HttpRequestInterceptor;
import org.apache.http.auth.AuthScheme;
import org.apache.http.auth.AuthScope;
import org.apache.http.auth.AuthState;
import org.apache.http.auth.AuthenticationException;
import org.apache.http.auth.Credentials;
import org.apache.http.auth.UsernamePasswordCredentials;
import org.apache.http.client.CredentialsProvider;
import org.apache.http.client.protocol.HttpClientContext;
import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
import org.apache.http.impl.auth.BasicScheme;
import org.apache.http.impl.client.BasicCredentialsProvider;
import org.apache.http.impl.client.HttpClientBuilder;
import org.apache.http.message.BufferedHeader;
import org.apache.http.protocol.HttpContext;
import org.apache.http.util.Args;
import org.apache.http.util.CharArrayBuffer;
import org.hawkular.agent.monitor.config.AgentCoreEngineConfiguration.EndpointConfiguration;
import org.hawkular.agent.monitor.inventory.ConnectionData;
import org.hawkular.agent.monitor.inventory.MonitoredEndpoint;
import org.jolokia.client.BasicAuthenticator;
import org.jolokia.client.J4pAuthenticator;
import org.jolokia.client.J4pClient;

/**
 * Can create clients to remote JMX servers.
 *
 * @author John Mazzitelli
 */
public class JolokiaClientFactory {

    // if a username matches this, it means we are to use bearer token auth, not basic auth
    private static final String BEARER_TOKEN_USER_ID = "_bearer";

    private static class SecureBasicAuthenticator extends BasicAuthenticator {
        private final SSLContext sslContext;

        public SecureBasicAuthenticator(SSLContext sslContext) {
            this.sslContext = sslContext;
        }

        @Override
        public void authenticate(HttpClientBuilder pBuilder, String pUser, String pPassword) {
            pBuilder.setSSLSocketFactory(new SSLConnectionSocketFactory(sslContext));
            super.authenticate(pBuilder, pUser, pPassword);
        }
    }

    private class SecureBearerAuthenticator extends BearerAuthenticator {
        private final SSLContext sslContext;

        public SecureBearerAuthenticator(SSLContext sslContext) {
            this.sslContext = sslContext;
        }

        @Override
        public void authenticate(HttpClientBuilder pBuilder, String pUser, String pPassword) {
            pBuilder.setSSLSocketFactory(new SSLConnectionSocketFactory(sslContext));
            super.authenticate(pBuilder, pUser, pPassword);
        }
    }

    // should work just like basic authentication except Authentication header has Bearer with the token following
    private class BearerScheme extends BasicScheme {
        @Override
        public String getSchemeName() {
            return "bearer";
        }

        @Override
        public Header authenticate(Credentials credentials, HttpRequest request, HttpContext context)
                throws AuthenticationException {
            Args.notNull(credentials, "Credentials");
            Args.notNull(request, "HTTP request");

            // the bearer token is stored in the password field, not credentials.getUserPrincipal().getName()
            String bearerToken = credentials.getPassword();

            CharArrayBuffer buffer = new CharArrayBuffer(64);
            if (isProxy()) {
                buffer.append("Proxy-Authorization");
            } else {
                buffer.append("Authorization");
            }
            buffer.append(": Bearer ");
            buffer.append(bearerToken);

            return new BufferedHeader(buffer);
        }
    }

    private class BearerAuthenticator implements J4pAuthenticator {
        @Override
        public void authenticate(HttpClientBuilder pBuilder, String pUser, String pPassword) {
            CredentialsProvider credentialsProvider = new BasicCredentialsProvider();
            credentialsProvider.setCredentials(
                    new AuthScope(AuthScope.ANY),
                    new UsernamePasswordCredentials(pUser, pPassword));
            pBuilder.setDefaultCredentialsProvider(credentialsProvider);
            pBuilder.addInterceptorFirst(new PreemptiveAuthInterceptor(new BearerScheme()));
        }

        class PreemptiveAuthInterceptor implements HttpRequestInterceptor {
            private AuthScheme authScheme;

            PreemptiveAuthInterceptor(AuthScheme pScheme) {
                authScheme = pScheme;
            }

            public void process(final HttpRequest request, final HttpContext context)
                    throws HttpException, IOException {
                AuthState authState = (AuthState) context.getAttribute(HttpClientContext.TARGET_AUTH_STATE);

                if (authState.getAuthScheme() == null) {
                    CredentialsProvider credsProvider = (CredentialsProvider) context
                            .getAttribute(HttpClientContext.CREDS_PROVIDER);
                    HttpHost targetHost = (HttpHost) context.getAttribute(HttpClientContext.HTTP_TARGET_HOST);
                    Credentials creds = credsProvider
                            .getCredentials(new AuthScope(targetHost.getHostName(), targetHost.getPort()));
                    if (creds == null) {
                        throw new HttpException("No credentials given for preemptive authentication");
                    }
                    authState.update(authScheme, creds);
                }
            }
        }
    }

    private final MonitoredEndpoint<EndpointConfiguration> endpoint;

    public JolokiaClientFactory(MonitoredEndpoint<EndpointConfiguration> endpoint) {
        this.endpoint = endpoint;
    }

    public J4pClient createClient() {
        J4pAuthenticator authenticator;

        ConnectionData cnData = endpoint.getConnectionData();
        SSLContext sslContext = endpoint.getSSLContext();

        SSLConnectionSocketFactory sslFactory;

        boolean useBearerAuth = false;
        if (cnData.getUsername() != null) {
            if (cnData.getUsername().equalsIgnoreCase(BEARER_TOKEN_USER_ID)) {
                if (cnData.getPassword() == null) {
                    throw new IllegalStateException("Bearer token is missing. Must be specified as the password");
                }
                useBearerAuth = true;
            }
        }

        if (sslContext != null && cnData.getUri().getScheme().equalsIgnoreCase("https")) {
            sslFactory = new SSLConnectionSocketFactory(sslContext);
            if (useBearerAuth) {
                authenticator = new SecureBearerAuthenticator(sslContext);
            } else {
                authenticator = new SecureBasicAuthenticator(sslContext).preemptive();
            }
        } else {
            sslFactory = null;
            if (useBearerAuth) {
                authenticator = new BearerAuthenticator();
            } else {
                authenticator = new BasicAuthenticator().preemptive();
            }
        }

        J4pClient client = J4pClient
                .url(cnData.getUri().toString())
                .user(cnData.getUsername())
                .password(cnData.getPassword())
                .authenticator(authenticator)
                .connectionTimeout(60000)
                .sslConnectionSocketFactory(sslFactory)
                .build();
        return client;
    }
}