rt/rs/security/jose-parent/jose-jaxrs/src/main/java/org/apache/cxf/rs/security/jose/jaxrs/JweClientResponseFilter.java - cxf - Git at Google

 /**
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements. See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership. The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License. You may obtain a copy of the License at
  *
  * http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing,
  * software distributed under the License is distributed on an
  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
  * KIND, either express or implied. See the License for the
  * specific language governing permissions and limitations
  * under the License.
  */
 package org.apache.cxf.rs.security.jose.jaxrs;

 import java.io.ByteArrayInputStream;
 import java.io.IOException;

 import javax.annotation.Priority;
 import javax.ws.rs.HttpMethod;
 import javax.ws.rs.client.ClientRequestContext;
 import javax.ws.rs.client.ClientResponseContext;
 import javax.ws.rs.client.ClientResponseFilter;
 import javax.ws.rs.core.Response;

 import org.apache.cxf.helpers.IOUtils;
 import org.apache.cxf.jaxrs.utils.HttpUtils;
 import org.apache.cxf.rs.security.jose.common.JoseUtils;
 import org.apache.cxf.rs.security.jose.jwe.JweDecryptionOutput;

 @Priority(Priorities.JWE_CLIENT_READ_PRIORITY)
 public class JweClientResponseFilter extends AbstractJweDecryptingFilter implements ClientResponseFilter {
     @Override
     public void filter(ClientRequestContext req, ClientResponseContext res) throws IOException {
         if (isMethodWithNoContent(req.getMethod())
                 || isStatusCodeWithNoContent(res.getStatus())
                 || isCheckEmptyStream() && !res.hasEntity()) {
             return;
         }
         final byte[] encryptedContent = IOUtils.readBytesFromStream(res.getEntityStream());
         if (encryptedContent.length == 0) {
             return;
         }
         JweDecryptionOutput out = decrypt(encryptedContent);
         byte[] bytes = out.getContent();
         res.setEntityStream(new ByteArrayInputStream(bytes));
         res.getHeaders().putSingle("Content-Length", Integer.toString(bytes.length));
         String ct = JoseUtils.checkContentType(out.getHeaders().getContentType(), getDefaultMediaType());
         if (ct != null) {
             res.getHeaders().putSingle("Content-Type", ct);
         }
         if (super.isValidateHttpHeaders()) {
             super.validateHttpHeadersIfNeeded(res.getHeaders(), out.getHeaders());
         }
     }

     protected boolean isMethodWithNoContent(String method) {
         return HttpMethod.DELETE.equals(method) || HttpUtils.isMethodWithNoResponseContent(method);
     }

     protected boolean isStatusCodeWithNoContent(int statusCode) {
         return statusCode == Response.Status.NO_CONTENT.getStatusCode();
     }
 }
	/**
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing,
	* software distributed under the License is distributed on an
	* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	* KIND, either express or implied. See the License for the
	* specific language governing permissions and limitations
	* under the License.
	*/
	package org.apache.cxf.rs.security.jose.jaxrs;

	import java.io.ByteArrayInputStream;
	import java.io.IOException;

	import javax.annotation.Priority;
	import javax.ws.rs.HttpMethod;
	import javax.ws.rs.client.ClientRequestContext;
	import javax.ws.rs.client.ClientResponseContext;
	import javax.ws.rs.client.ClientResponseFilter;
	import javax.ws.rs.core.Response;

	import org.apache.cxf.helpers.IOUtils;
	import org.apache.cxf.jaxrs.utils.HttpUtils;
	import org.apache.cxf.rs.security.jose.common.JoseUtils;
	import org.apache.cxf.rs.security.jose.jwe.JweDecryptionOutput;

	@Priority(Priorities.JWE_CLIENT_READ_PRIORITY)
	public class JweClientResponseFilter extends AbstractJweDecryptingFilter implements ClientResponseFilter {
	@Override
	public void filter(ClientRequestContext req, ClientResponseContext res) throws IOException {
	if (isMethodWithNoContent(req.getMethod())
	\|\| isStatusCodeWithNoContent(res.getStatus())
	\|\| isCheckEmptyStream() && !res.hasEntity()) {
	return;
	}
	final byte[] encryptedContent = IOUtils.readBytesFromStream(res.getEntityStream());
	if (encryptedContent.length == 0) {
	return;
	}
	JweDecryptionOutput out = decrypt(encryptedContent);
	byte[] bytes = out.getContent();
	res.setEntityStream(new ByteArrayInputStream(bytes));
	res.getHeaders().putSingle("Content-Length", Integer.toString(bytes.length));
	String ct = JoseUtils.checkContentType(out.getHeaders().getContentType(), getDefaultMediaType());
	if (ct != null) {
	res.getHeaders().putSingle("Content-Type", ct);
	}
	if (super.isValidateHttpHeaders()) {
	super.validateHttpHeadersIfNeeded(res.getHeaders(), out.getHeaders());
	}
	}

	protected boolean isMethodWithNoContent(String method) {
	return HttpMethod.DELETE.equals(method) \|\| HttpUtils.isMethodWithNoResponseContent(method);
	}

	protected boolean isStatusCodeWithNoContent(int statusCode) {
	return statusCode == Response.Status.NO_CONTENT.getStatusCode();
	}
	}