rt/rs/security/jose-parent/jose-jaxrs/src/main/java/org/apache/cxf/rs/security/jose/jaxrs/JweJsonWriterInterceptor.java - cxf - Git at Google

 /**
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements. See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership. The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License. You may obtain a copy of the License at
  *
  * http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing,
  * software distributed under the License is distributed on an
  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
  * KIND, either express or implied. See the License for the
  * specific language governing permissions and limitations
  * under the License.
  */
 package org.apache.cxf.rs.security.jose.jaxrs;

 import java.io.ByteArrayInputStream;
 import java.io.IOException;
 import java.io.OutputStream;
 import java.util.ArrayList;
 import java.util.List;
 import java.util.Set;

 import javax.annotation.Priority;
 import javax.ws.rs.WebApplicationException;
 import javax.ws.rs.core.MediaType;
 import javax.ws.rs.ext.WriterInterceptor;
 import javax.ws.rs.ext.WriterInterceptorContext;

 import org.apache.cxf.common.util.StringUtils;
 import org.apache.cxf.helpers.IOUtils;
 import org.apache.cxf.io.CachedOutputStream;
 import org.apache.cxf.jaxrs.utils.JAXRSUtils;
 import org.apache.cxf.rs.security.jose.common.JoseConstants;
 import org.apache.cxf.rs.security.jose.jwe.JweEncryptionProvider;
 import org.apache.cxf.rs.security.jose.jwe.JweHeaders;
 import org.apache.cxf.rs.security.jose.jwe.JweJsonProducer;

 @Priority(Priorities.JWE_WRITE_PRIORITY)
 public class JweJsonWriterInterceptor extends AbstractJweJsonWriterProvider implements WriterInterceptor {
     private Set<String> protectedHttpHeaders;
     private boolean protectHttpHeaders;
     private boolean contentTypeRequired = true;
     private boolean useJweOutputStream;
     @Override
     public void aroundWriteTo(WriterInterceptorContext ctx) throws IOException, WebApplicationException {
         if (ctx.getEntity() == null) {
             ctx.proceed();
             return;
         }
         OutputStream actualOs = ctx.getOutputStream();
         JweHeaders sharedProtectedHeaders = new JweHeaders();
         List<String> propLocs = getPropertyLocations();
         List<JweHeaders> perRecipientUnprotectedHeaders = new ArrayList<>(propLocs.size());
         for (int i = 0; i < propLocs.size(); i++) {
             perRecipientUnprotectedHeaders.add(new JweHeaders());
         }
         List<JweEncryptionProvider> providers = getInitializedEncryptionProviders(propLocs,
                                                                                   sharedProtectedHeaders,
                                                                                   perRecipientUnprotectedHeaders);

         String ctString = null;
         MediaType contentMediaType = ctx.getMediaType();
         if (contentTypeRequired && contentMediaType != null) {
             if ("application".equals(contentMediaType.getType())) {
                 ctString = contentMediaType.getSubtype();
             } else {
                 ctString = JAXRSUtils.mediaTypeToString(contentMediaType);
             }
         }
         if (ctString != null) {
             sharedProtectedHeaders.setContentType(ctString);
         }
         protectHttpHeadersIfNeeded(ctx, sharedProtectedHeaders);
         if (useJweOutputStream) {
             //TODO
         } else {
             CachedOutputStream cos = new CachedOutputStream();
             ctx.setOutputStream(cos);
             ctx.proceed();


             JweJsonProducer producer = new JweJsonProducer(sharedProtectedHeaders, cos.getBytes());
             String jweContent = producer.encryptWith(providers, perRecipientUnprotectedHeaders);

             setJoseMediaType(ctx);
             IOUtils.copy(new ByteArrayInputStream(StringUtils.toBytesUTF8(jweContent)),
                          actualOs);
             actualOs.flush();
         }
     }

     private void setJoseMediaType(WriterInterceptorContext ctx) {
         MediaType joseMediaType = JAXRSUtils.toMediaType(JoseConstants.MEDIA_TYPE_JOSE_JSON);
         ctx.setMediaType(joseMediaType);
     }

     public void setUseJweOutputStream(boolean useJweOutputStream) {
         this.useJweOutputStream = useJweOutputStream;
     }

     protected void protectHttpHeadersIfNeeded(WriterInterceptorContext ctx, JweHeaders jweHeaders) {
         if (protectHttpHeaders) {
             JoseJaxrsUtils.protectHttpHeaders(ctx.getHeaders(),
                                               jweHeaders,
                                               protectedHttpHeaders);
         }

     }

     public void setProtectHttpHeaders(boolean protectHttpHeaders) {
         this.protectHttpHeaders = protectHttpHeaders;
     }

     public void setProtectedHttpHeaders(Set<String> protectedHttpHeaders) {
         this.protectedHttpHeaders = protectedHttpHeaders;
     }

 }
	/**
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing,
	* software distributed under the License is distributed on an
	* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	* KIND, either express or implied. See the License for the
	* specific language governing permissions and limitations
	* under the License.
	*/
	package org.apache.cxf.rs.security.jose.jaxrs;

	import java.io.ByteArrayInputStream;
	import java.io.IOException;
	import java.io.OutputStream;
	import java.util.ArrayList;
	import java.util.List;
	import java.util.Set;

	import javax.annotation.Priority;
	import javax.ws.rs.WebApplicationException;
	import javax.ws.rs.core.MediaType;
	import javax.ws.rs.ext.WriterInterceptor;
	import javax.ws.rs.ext.WriterInterceptorContext;

	import org.apache.cxf.common.util.StringUtils;
	import org.apache.cxf.helpers.IOUtils;
	import org.apache.cxf.io.CachedOutputStream;
	import org.apache.cxf.jaxrs.utils.JAXRSUtils;
	import org.apache.cxf.rs.security.jose.common.JoseConstants;
	import org.apache.cxf.rs.security.jose.jwe.JweEncryptionProvider;
	import org.apache.cxf.rs.security.jose.jwe.JweHeaders;
	import org.apache.cxf.rs.security.jose.jwe.JweJsonProducer;

	@Priority(Priorities.JWE_WRITE_PRIORITY)
	public class JweJsonWriterInterceptor extends AbstractJweJsonWriterProvider implements WriterInterceptor {
	private Set<String> protectedHttpHeaders;
	private boolean protectHttpHeaders;
	private boolean contentTypeRequired = true;
	private boolean useJweOutputStream;
	@Override
	public void aroundWriteTo(WriterInterceptorContext ctx) throws IOException, WebApplicationException {
	if (ctx.getEntity() == null) {
	ctx.proceed();
	return;
	}
	OutputStream actualOs = ctx.getOutputStream();
	JweHeaders sharedProtectedHeaders = new JweHeaders();
	List<String> propLocs = getPropertyLocations();
	List<JweHeaders> perRecipientUnprotectedHeaders = new ArrayList<>(propLocs.size());
	for (int i = 0; i < propLocs.size(); i++) {
	perRecipientUnprotectedHeaders.add(new JweHeaders());
	}
	List<JweEncryptionProvider> providers = getInitializedEncryptionProviders(propLocs,
	sharedProtectedHeaders,
	perRecipientUnprotectedHeaders);

	String ctString = null;
	MediaType contentMediaType = ctx.getMediaType();
	if (contentTypeRequired && contentMediaType != null) {
	if ("application".equals(contentMediaType.getType())) {
	ctString = contentMediaType.getSubtype();
	} else {
	ctString = JAXRSUtils.mediaTypeToString(contentMediaType);
	}
	}
	if (ctString != null) {
	sharedProtectedHeaders.setContentType(ctString);
	}
	protectHttpHeadersIfNeeded(ctx, sharedProtectedHeaders);
	if (useJweOutputStream) {
	//TODO
	} else {
	CachedOutputStream cos = new CachedOutputStream();
	ctx.setOutputStream(cos);
	ctx.proceed();



	JweJsonProducer producer = new JweJsonProducer(sharedProtectedHeaders, cos.getBytes());
	String jweContent = producer.encryptWith(providers, perRecipientUnprotectedHeaders);

	setJoseMediaType(ctx);
	IOUtils.copy(new ByteArrayInputStream(StringUtils.toBytesUTF8(jweContent)),
	actualOs);
	actualOs.flush();
	}
	}

	private void setJoseMediaType(WriterInterceptorContext ctx) {
	MediaType joseMediaType = JAXRSUtils.toMediaType(JoseConstants.MEDIA_TYPE_JOSE_JSON);
	ctx.setMediaType(joseMediaType);
	}

	public void setUseJweOutputStream(boolean useJweOutputStream) {
	this.useJweOutputStream = useJweOutputStream;
	}

	protected void protectHttpHeadersIfNeeded(WriterInterceptorContext ctx, JweHeaders jweHeaders) {
	if (protectHttpHeaders) {
	JoseJaxrsUtils.protectHttpHeaders(ctx.getHeaders(),
	jweHeaders,
	protectedHttpHeaders);
	}

	}

	public void setProtectHttpHeaders(boolean protectHttpHeaders) {
	this.protectHttpHeaders = protectHttpHeaders;
	}

	public void setProtectedHttpHeaders(Set<String> protectedHttpHeaders) {
	this.protectedHttpHeaders = protectedHttpHeaders;
	}

	}