java source code of BasicToken

robe-master
- robe-test
  - src
    - main
      - java
        io
        robe
        test
        Roadrunner.java
        request
        TestResponse.java
        HttpClient.java
        AuthenticationInterceptor.java
        HttpRequest.java
        TestRequest.java
        Order.java
  - pom.xml
- pom.xml
- robe-admin
  - src
    - main
      - java
        io
        robe
        admin
        dto
        UserDTO.java
        MenuItem.java
        JobInfoDTO.java
        TriggerInfoDTO.java
        PermissionUpdateDto.java
        guice
        module
        HibernateModule.java
        resources
        MetricsResource.java
        PermissionResource.java
        MenuResource.java
        ServiceResource.java
        UserResource.java
        AuthResource.java
        TriggerResource.java
        JobResource.java
        SystemParameterResource.java
        RoleResource.java
        websocket
        AuthenticatedWebSocket.java
        MessageWebSocket.java
        cli
        InitializeCommand.java
        RobeApplication.java
        util
        SystemParameterCache.java
        TemplateManager.java
        ExceptionMessages.java
        hibernate
        dao
        SystemParameterDao.java
        UserDao.java
        PermissionDao.java
        ActionLogDao.java
        TriggerDao.java
        TicketDao.java
        RoleGroupDao.java
        RoleDao.java
        ServiceDao.java
        MenuDao.java
        JobDao.java
        entity
        SystemParameter.java
        Service.java
        HTriggerInfo.java
        RoleGroup.java
        HJobInfo.java
        Menu.java
        ActionLog.java
        Role.java
        Permission.java
        Ticket.java
        User.java
        recaptcha
        ReCaptchaValidation.java
        ReCaptchaConfiguration.java
        ReCaptchaResponseBody.java
        RobeConfiguration.java
        quartz
        JobPersister.java
        HibernateJobInfoProvider.java
    - test
      - resources
        robe_test.yml
        logback.xml
      - java
        io
        robe
        admin
        dto
        MenuItemTest.java
        UserDTOTest.java
        JobInfoDTOTest.java
        PermissionUpdateDtoTest.java
        resources
        MenuResourceTest.java
        AuthenticationResourceTest.java
        BaseResourceTest.java
        RoleResourceTest.java
        PermissionResourceTest.java
        UserResourceTest.java
        SystemParameterResourceTest.java
        ServiceResourceTest.java
        util
        ExceptionMessagesTest.java
        Authenticator.java
        TemplateManagerTest.java
        SystemParameterCacheTest.java
        ReCaptchaValidationTest.java
        job
        SampleJob.java
        hibernate
        dao
        ActionLogDaoTest.java
        RoleDaoTest.java
        BaseDaoTest.java
        UserDaoTest.java
        ServiceDaoTest.java
        SystemParameterDaoTest.java
        QuartzHTriggerInfoDaoTest.java
        MenuDaoTest.java
        TicketDaoTest.java
        entity
        MenuTest.java
        TicketTest.java
        UserTest.java
        ServiceTest.java
        RoleTest.java
        SystemParameterTest.java
        EntityTest.java
        PermissionTest.java
        RoleGroupTest.java
        ActionLogTest.java
        RobeAdminTest.java
  - pom.xml
  - robe.yml
- robe-convert
  - src
    - main
      - java
        io
        robe
        convert
        xml
        parsers
        ParseInt.java
        ParseChar.java
        ParseDouble.java
        ParseBool.java
        ParseLong.java
        Parsers.java
        ParseString.java
        IsParser.java
        ParseDate.java
        ParseBigDecimal.java
        ParseEnum.java
        XMLExporter.java
        XMLImporter.java
        excel
        parsers
        ParseInt.java
        ParseChar.java
        ParseDouble.java
        ParseBool.java
        ParseLong.java
        ParseByte.java
        Parsers.java
        ParseString.java
        IsParser.java
        ParseDate.java
        ParseBigDecimal.java
        ParseEnum.java
        importer
        ExcelImporter.java
        XLSImporter.java
        XLSXImporter.java
        exporter
        ExcelExporter.java
        XLSXExporter.java
        XLSExporter.java
        csv
        parsers
        Parsers.java
        ParseDate.java
        ParseBigDecimal.java
        ParseEnum.java
        CSVUtil.java
        CSVImporter.java
        CSVExporter.java
        common
        Exporter.java
        Converter.java
        OnItemHandler.java
        annotation
        Convert.java
        Importer.java
        tsv
        TSVExporter.java
        TSVImporter.java
        json
        JSONImporter.java
        JSONExporter.java
    - test
      - resources
        sampleUTF16.tsv
        sample.csv
        sampleUTF16.json
        sample.xlsx
        logback.xml
        sample.xls
        sample.xml
        sample.tsv
        sampleUTF16.csv
        sampleWithTitle.xlsx
        sampleWithTitle.xls
        sample.json
        ParseDateTest-sample1.xls
        sampleUTF16.xml
        sampleError.xml
      - java
        io
        robe
        convert
        xml
        parsers
        ParseIntTest.java
        ParseEnumTest.java
        ParseLongTest.java
        ParsersTest.java
        ParseBoolTest.java
        ParseDoubleTest.java
        ParseBigDecimalTest.java
        ParseStringTest.java
        ParseDateTest.java
        ParseCharTest.java
        XMLExporterTest.java
        XMLImporterTest.java
        ParserUtil.java
        excel
        CellGenerateUtil.java
        XLSXExporterTest.java
        parsers
        ParseIntTest.java
        ParseEnumTest.java
        ParseLongTest.java
        ParseByteTest.java
        ParseBoolTest.java
        ParseDoubleTest.java
        ParseBigDecimalTest.java
        ParseStringTest.java
        ParseDateTest.java
        ParseCharTest.java
        ParsersTest.java
        XLSImporterTest.java
        parsedate
        ParseDateSamplePojo.java
        ParseDateSamplePojo1.java
        XLSExporterTest.java
        ParseDateTest.java
        XLSXImporterTest.java
        csv
        parsers
        ParseBigDecimalTest.java
        ParseDateTest.java
        CSVExporterTest.java
        CSVUtilTest.java
        CSVImporterTest.java
        common
        ConverterTest.java
        FieldEntryTest.java
        tsv
        TSVImporterTest.java
        TSVExporterTest.java
        TestData.java
        SamplePojo.java
        json
        JSONImporterTest.java
        JSONExporterTest.java
        SampleEnum.java
  - pom.xml
- robe-assets
  - src
    - main
      - java
        io
        robe
        assets
        HasAssetConfiguration.java
        file
        FileAssetServlet.java
        FileAsset.java
        http
        HttpAsset.java
        HttpAssetServlet.java
        AdvancedAssetBundle.java
        AssetConfiguration.java
  - pom.xml
- LICENSE
- deploy
  - pubring.gpg.enc
  - secring.gpg.enc
- robe-servlet
  - src
    - main
      - java
        io
        robe
        servlet
        ServletScanner.java
        RobeServlet.java
        ResourceServlet.java
        WrapperServlet.java
    - test
      - resources
        logback.xml
  - pom.xml
- robe-hibernate
  - src
    - main
      - java
        io
        robe
        hibernate
        RobeSessionFactoryFactory.java
        dao
        BaseDao.java
        criteria
        hql
        transformers
        AliasToEntityMapResultTransformer.java
        AliasToBeanResultTransformer.java
        TransformerImpl.java
        TransformerUtil.java
        HqlUtil.java
        EntityMetaFinderImpl.java
        api
        Result.java
        CriteriaParent.java
        Order.java
        criterion
        Restriction.java
        RestrictionList.java
        Restrictions.java
        projection
        Projections.java
        PropertyProjection.java
        FunctionProjection.java
        IdentifierProjection.java
        ProjectionList.java
        ProjectionElements.java
        Projection.java
        EnhancedProjection.java
        cache
        EntityMeta.java
        FieldReference.java
        EntityMetaFinder.java
        FieldMeta.java
        Criteria.java
        CriteriaJoin.java
        Transformer.java
        JoinRelation.java
        query
        search
        SearchFilter.java
        SearchField.java
        Query.java
        QueryUtility.java
        Operator.java
        entity
        RobeEntity.java
        BaseEntity.java
        transaction
        TransactionExceptionHandler.java
        Transaction.java
        TransactionWrapper.java
        HasHibernateConfiguration.java
        HibernateConfiguration.java
        RobeHibernateBundle.java
        conf
        RobeHibernateNamingStrategy.java
    - test
      - resources
        logback.xml
      - java
        io
        robe
        hibernate
        dao
        BaseDaoTest.java
        criteria
        impl
        hql
        TransformUtilTestTools.java
        HqlCriteriaTestTools.java
        api
        criteria
        CriteriaParentTest.java
        OrderTest.java
        criterion
        RestrictionsTest.java
        CriteriaTest.java
        projection
        ProjectionsTest.java
        query
        QueryTestTools.java
        query
        QueryTest.java
        QueryBenchmark.java
        AnotherTestEntity.java
        BenchMark.java
        entity
        inner
        InnerEntity.java
        TestEntity.java
        BaseEntityTest.java
        NotAnnotatedEntity.java
        test
        entity
        UserDTO.java
        Role.java
        Permission.java
        User.java
        HibernateUtil.java
        RobeSessionFactoryFactoryTest.java
        RobeHibernateNamingStrategyTest.java
        BaseEntityTest.java
        RobeHibernateBundleTest.java
  - pom.xml
  - docs
    - Criteria.md
- CHANGELOG.md
- robe-auth
  - src
    - main
      - resources
        ESAPI.properties
        antisamy-esapi.xml
      - java
        io
        robe
        auth
        RobeAuth.java
        SecurityHeadersFilter.java
        Credentials.java
        data
        store
        PermissionStore.java
        ServiceStore.java
        RoleGroupStore.java
        RoleStore.java
        UserStore.java
        entry
        RoleGroupEntry.java
        PermissionEntry.java
        UserEntry.java
        ServiceEntry.java
        RoleEntry.java
        token
        configuration
        TokenBasedAuthConfiguration.java
        HasTokenBasedAuthConfiguration.java
        jersey
        TokenFactory.java
        TokenBasedAuthResponseFilter.java
        TokenFactoryProvider.java
        TokenFeature.java
        TokenParamInjectionResolver.java
        TokenAuthenticator.java
        BasicToken.java
        TokenAuthBundle.java
        AbstractAuthResource.java
  - pom.xml
- robe-common
  - src
    - main
      - resources
        banner.txt
      - java
        io
        robe
        common
        dto
        BasicPair.java
        BooleanHolder.java
        RobeMessage.java
        Increment.java
        Pair.java
        utils
        Validations.java
        reflection
        Fields.java
        Generics.java
        Collections.java
        Files.java
        Arrays.java
        TypeReference.java
        Strings.java
        service
        stream
        BufferedStreamingOutput.java
        headers
        ResponseHeadersUtil.java
        search
        SearchFrom.java
        SearchFactory.java
        SearchableEnum.java
        SearchIgnore.java
        Relation.java
        SearchFactoryProvider.java
        model
        SearchModel.java
        SearchParam.java
        AutoHeaders.java
        RobeService.java
        exception
        ExceptionMapperBinder.java
        RobeExceptionMapper.java
        RobeRuntimeException.java
    - test
      - resources
        logback.xml
      - java
        io
        robe
        common
        dto
        RobeMessageTest.java
        BasicPairTest.java
        utils
        StringsTest.java
        FieldsTest.java
        StringsOperationsTest.java
        BufferedStreamingOutputTest.java
        ValidationsTest.java
        FilesTest.java
        ArraysTest.java
        TestUtils.java
        service
        headers
        ResponseHeadersUtilTest.java
        search
        SearchFactoryProviderTest.java
        SearchFactoryTest.java
        model
        SearchModelTest.java
        exceptions
        RobeExceptionMapperTest.java
        RobeRuntimeExceptionTest.java
  - pom.xml
- robe-websocket
  - src
    - main
      - java
        io
        robe
        websocket
        RobeWebSocket.java
        WebSocket.java
        WebSocketScanner.java
        Packet.java
        WebSocketServlet.java
  - pom.xml
- .travis.yml
- README.md
- robe-quartz
  - src
    - main
      - java
        io
        robe
        quartz
        configuration
        QuartzConfiguration.java
        HasQuartzConfiguration.java
        ManagedQuartz.java
        info
        JobInfo.java
        TriggerInfo.java
        annotation
        AnnotationTriggerInfo.java
        AnnotationJobInfoProvider.java
        AnnotationJobInfo.java
        JobInfoProvider.java
        RobeTrigger.java
        RobeJob.java
        JobManager.java
        QuartzBundle.java
  - pom.xml
  - README.md
- robe-guice
  - src
    - main
      - java
        io
        robe
        guice
        scanner
        HealthCheckScanner.java
        ManagedScanner.java
        InjectableProviderScanner.java
        TaskScanner.java
        ProviderScanner.java
        Scanner.java
        ResourceScanner.java
        GuiceConfiguration.java
        HK2Linker.java
        DropwizardEnvironmentModule.java
        ServiceLocatorDecorator.java
        HasGuiceConfiguration.java
        GuiceBundle.java
        JerseyModule.java
        JerseyUtil.java
  - pom.xml
- .gitignore
- docs
  - en
    - configuration
      - database
        postgresql.md
        oracle.md
        sqlserver.md
    - tutorial
      - BasicTutorial.md
    - modules
      - robe-auth.md
      - robe-hibernate.md
      - robe-common.md
      - robe-quartz.md
      - robe-convert.md
      - robe-mail.md
      - robe-assets.md
  - img
    - icon_BrowserStack.jpg
  - tr
    - configuration
      - database
        postgresql.md
        oracle.md
        sqlserver.md
    - tutorial
      - BasicTutorial.md
    - Welcome.md
    - modules
      - robe-auth.md
      - robe-hibernate.md
      - robe-common.md
      - robe-quartz.md
      - robe-convert.md
      - robe-mail.md
      - robe-assets.md
- robe-mail
  - src
    - main
      - java
        io
        robe
        mail
        MailEvent.java
        MailItem.java
        MailBundle.java
        MailManager.java
        HasMailConfiguration.java
        MailSender.java
        queue
        MailQueue.java
        InMemoryMailQueue.java
        MailConfiguration.java
    - test
      - resources
        logback.xml
      - java
        io
        robe
        mail
        MailManagerTest.java
        MailItemTest.java
        queue
        InMemoryMailQueueTest.java
        MailSenderTest.java
  - pom.xml

package io.robe.auth.token;

import com.google.common.cache.Cache;
import com.google.common.cache.CacheBuilder;
import com.google.common.hash.Hashing;
import com.google.common.io.BaseEncoding;
import io.robe.auth.Credentials;
import io.robe.auth.token.configuration.TokenBasedAuthConfiguration;
import org.jasypt.encryption.pbe.PooledPBEStringEncryptor;
import org.joda.time.DateTime;

import java.nio.charset.StandardCharsets;
import java.util.Date;
import java.util.Map;
import java.util.Set;
import java.util.UUID;
import java.util.concurrent.TimeUnit;

/**
 * A basic token implementation. Uses jasypt for encrypt & decrypt operations.
 * Takes all properties from configuration. Uses Guava for permission caching.
 * All cached permission entries will live with token.
 */
public class BasicToken implements Credentials {

    private static final PooledPBEStringEncryptor encryptor = new PooledPBEStringEncryptor();
    private static final String SEPARATOR = "--";
    private static int defaultMaxAge;

    private static Cache<String, Set<String>> cache;

    private String userId;
    private String username;
    private DateTime expireAt;
    private String attributesHash;
    private String tokenString;
    private int maxAge;

    /**
     * Creates an access token with the given parameters.
     *
     * @param username   Username
     * @param expireAt   expiration time of token
     * @param attributes extra attributes to customize token
     * @return an instance
     */
    public BasicToken(String userId, String username, DateTime expireAt, Map<String, String> attributes) {
        this.userId = userId;
        this.username = username;
        this.expireAt = expireAt;
        this.maxAge = defaultMaxAge;
        generateAttributesHash(attributes);
    }

    /**
     * Creates an access token with the given tokenString.
     *
     * @param tokenString to parse
     * @return and instance
     * @throws Exception throws in case of failing opening token
     */
    public BasicToken(String tokenString) throws Exception {
        tokenString = tokenString.replaceAll("\"", "");
        tokenString = new String(BaseEncoding.base16().decode(tokenString));
        String[] parts = encryptor.decrypt(tokenString).split(SEPARATOR);
        this.userId = parts[0];
        this.username = parts[1];
        this.expireAt = new DateTime(Long.valueOf(parts[2]));
        this.attributesHash = parts[3];
    }

    /**
     * Configure method for Token generation configurations and encryptor configure
     *
     * @param configuration confiuration for auth bundle
     */
    public static void configure(TokenBasedAuthConfiguration configuration) {
        encryptor.setPoolSize(configuration.getPoolSize());          // This would be a good value for a 4-core system
        if (configuration.getServerPassword().equals("auto")) {
            encryptor.setPassword(UUID.randomUUID().toString());
        } else {
            encryptor.setPassword(configuration.getServerPassword());
        }
        encryptor.setAlgorithm(configuration.getAlgorithm());
        encryptor.initialize();
        BasicToken.defaultMaxAge = configuration.getMaxage();

        //Create cache for permissions.
        cache = CacheBuilder.newBuilder()
                .expireAfterAccess(defaultMaxAge, TimeUnit.SECONDS)
                .expireAfterWrite(defaultMaxAge, TimeUnit.SECONDS)
                .build();

    }

    public static void clearPermissionCache(String username) {
        cache.invalidate(username);
        cache.cleanUp();
    }

    public static void clearAllPermissionCache() {
        cache.invalidateAll();
        cache.cleanUp();
    }

    public static Set<String> getCurrentUsernames() {
        cache.cleanUp();
        return cache.asMap().keySet();
    }


    @Override
    public String getUserId() {
        return userId;
    }

    @Override
    public String getUsername() {
        return username;
    }


    public boolean isExpired() {
        return !expireAt.isAfterNow();
    }


    public void setExpiration(int durationInSeconds) {
        expireAt = DateTime.now().plusSeconds(durationInSeconds);
        resetTokenString();
    }


    public Date getExpirationDate() {
        return expireAt.toDate();
    }

    public String getAttributesHash() {
        return attributesHash;
    }

    /**
     * Generates attribute has with 'userAgent', 'remoteAddr' keys.
     * Combines them and hashes with SHA256 and sets the variable.
     *
     * @param attributes
     */
    private void generateAttributesHash(Map<String, String> attributes) {
        StringBuilder attr = new StringBuilder();
        attr.append(attributes.get("userAgent"));
//        attr.append(attributes.get("remoteAddr")); TODO: add remote ip address after you find how to get remote IP from HttpContext
        attributesHash = Hashing.sha256().hashString(attr.toString(), StandardCharsets.UTF_8).toString();
        resetTokenString();
    }

    public String getTokenString() throws Exception {
        return tokenString == null ? generateTokenString() : tokenString;
    }

    /**
     * Generates a tokenString with a new expiration date and assigns it.
     *
     * @return new tokenString
     * @throws Exception
     */
    private String generateTokenString() throws Exception {
        //Renew age
        //Stringify token data
        StringBuilder dataString = new StringBuilder();
        dataString
                .append(getUserId())
                .append(SEPARATOR)
                .append(getUsername())
                .append(SEPARATOR)
                .append(getExpirationDate().getTime())
                .append(SEPARATOR)
                .append(attributesHash);

        // Encrypt token data string
        String newTokenString = encryptor.encrypt(dataString.toString());
        newTokenString = BaseEncoding.base16().encode(newTokenString.getBytes());
        tokenString = newTokenString;
        return newTokenString;
    }

    public int getMaxAge() {
        return maxAge < 1 ? defaultMaxAge : maxAge;
    }

    public void setMaxAge(int maxAge) {
        if (maxAge < 1) maxAge = defaultMaxAge;
        this.maxAge = maxAge;
    }

    public Set<String> getPermissions() {
        return cache.getIfPresent(getUsername());
    }

    /**
     * Sets permissions to the cache with current username
     *
     * @param permissions permission list for the current user.
     */
    public void setPermissions(Set<String> permissions) {
        cache.put(getUsername(), permissions);
    }

    private void resetTokenString() {
        tokenString = null;
    }

    @Override
    public boolean equals(Object o) {
        if (this == o) return true;
        if (!(o instanceof BasicToken)) return false;

        BasicToken that = (BasicToken) o;

        if (!userId.equals(that.userId)) return false;
        if (!username.equals(that.username)) return false;
        return attributesHash.equals(that.attributesHash);

    }

    @Override
    public int hashCode() {
        int result = userId.hashCode();
        result = 31 * result + username.hashCode();
        result = 31 * result + attributesHash.hashCode();
        return result;
    }

    public String getName() {
        return "BasicToken";
    }

    public static PooledPBEStringEncryptor getEncryptor() {
        return encryptor;
    }
}