Merge pull request #47 from skyforce77/feat/cendential-offer-issue

[feature] Crendential offer issue / info

Author: skyforce77

pom.xml

@@ -12,8 +12,8 @@
   <properties>
     <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
 
-    <authlete.java.common.version>3.52</authlete.java.common.version>
-    <authlete.java.jaxrs.version>2.56</authlete.java.jaxrs.version>
+    <authlete.java.common.version>3.68</authlete.java.common.version>
+    <authlete.java.jaxrs.version>2.59</authlete.java.jaxrs.version>
     <javax.servlet-api.version>3.0.1</javax.servlet-api.version>
     <jersey.version>2.30.1</jersey.version>
     <jetty.version>9.4.27.v20200227</jetty.version>
@@ -134,6 +134,17 @@
       <artifactId>slf4j-api</artifactId>
       <version>1.7.32</version>
     </dependency>
+
+    <dependency>
+      <groupId>com.google.zxing</groupId>
+      <artifactId>core</artifactId>
+      <version>3.5.1</version>
+    </dependency>
+    <dependency>
+      <groupId>com.google.zxing</groupId>
+      <artifactId>javase</artifactId>
+      <version>3.5.1</version>
+    </dependency>
   </dependencies>
 
   <build>

src/main/java/com/authlete/jaxrs/server/api/AuthorizationDecisionEndpoint.java

@@ -34,6 +34,7 @@
 import com.authlete.jaxrs.AuthorizationDecisionHandler.Params;
 import com.authlete.jaxrs.BaseAuthorizationDecisionEndpoint;
 import com.authlete.jaxrs.server.db.UserDao;
+import com.authlete.jaxrs.server.util.ProcessingUtil;
 import com.authlete.jaxrs.spi.AuthorizationDecisionHandlerSpi;
 
 
@@ -74,15 +75,15 @@ public Response post(
             MultivaluedMap<String, String> parameters)
     {
         // Get the existing session.
-        HttpSession session = getSession(request);
+        HttpSession session = ProcessingUtil.getSession(request);
 
         // Retrieve some variables from the session. See the implementation
         // of AuthorizationRequestHandlerSpiImpl.getAuthorizationPage().
         Params params = (Params)  takeAttribute(session, "params");
         String[] acrs = (String[])takeAttribute(session, "acrs");
         Client client = (Client)  takeAttribute(session, "client");
-        User user     = getUser(session, parameters);
-        Date authTime = (Date)session.getAttribute("authTime");
+        User user     = ProcessingUtil.getUser(session, parameters);
+        Date authTime = (Date)    session.getAttribute("authTime");
 
         // Implementation of AuthorizationDecisionHandlerSpi.
         AuthorizationDecisionHandlerSpi spi =
@@ -93,50 +94,4 @@ public Response post(
         return handle(AuthleteApiFactory.getDefaultApi(), spi, params);
     }
 
-
-    /**
-     * Get the existing session.
-     */
-    private HttpSession getSession(HttpServletRequest request)
-    {
-        // Get the existing session.
-        HttpSession session = request.getSession(false);
-
-        // If there exists a session.
-        if (session != null)
-        {
-            // OK.
-            return session;
-        }
-
-        // A session does not exist. Make a response of "400 Bad Request".
-        throw badRequestException("A session does not exist.");
-    }
-
-
-    /**
-     * Look up an end-user.
-     */
-    private static User getUser(HttpSession session, MultivaluedMap<String, String> parameters)
-    {
-        // Look up the user in the session to see if they're already logged in.
-        User sessionUser = (User) session.getAttribute("user");
-
-        if (sessionUser != null)
-        {
-            return sessionUser;
-        }
-
-        // Look up an end-user who has the login credentials.
-        User loginUser = UserDao.getByCredentials(parameters.getFirst("loginId"),
-                parameters.getFirst("password"));
-
-        if (loginUser != null)
-        {
-            session.setAttribute("user", loginUser);
-            session.setAttribute("authTime", new Date());
-        }
-
-        return loginUser;
-    }
 }

src/main/java/com/authlete/jaxrs/server/api/CredentialOfferEndpoint.java

@@ -0,0 +1,39 @@
+/*
+ * Copyright (C) 2023 Authlete, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
+ * either express or implied. See the License for the specific
+ * language governing permissions and limitations under the
+ * License.
+ */
+package com.authlete.jaxrs.server.api;
+
+
+import javax.ws.rs.GET;
+import javax.ws.rs.Path;
+import javax.ws.rs.PathParam;
+import javax.ws.rs.core.Response;
+import com.authlete.common.api.AuthleteApiFactory;
+import com.authlete.common.dto.CredentialOfferInfoRequest;
+import com.authlete.jaxrs.BaseCredentialOfferUriEndpoint;
+
+
+@Path("/api/offer/{identifier}")
+public class CredentialOfferEndpoint extends BaseCredentialOfferUriEndpoint
+{
+    @GET
+    public Response get(
+            @PathParam("identifier") String identifier)
+    {
+        return this.handle(AuthleteApiFactory.getDefaultApi(),
+                           new CredentialOfferInfoRequest().setIdentifier(identifier));
+    }
+}

src/main/java/com/authlete/jaxrs/server/api/CredentialOfferIssueEndpoint.java

@@ -0,0 +1,99 @@
+/*
+ * Copyright (C) 2023 Authlete, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
+ * either express or implied. See the License for the specific
+ * language governing permissions and limitations under the
+ * License.
+ */
+package com.authlete.jaxrs.server.api;
+
+
+import java.util.Map;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpSession;
+import javax.ws.rs.Consumes;
+import javax.ws.rs.GET;
+import javax.ws.rs.POST;
+import javax.ws.rs.Path;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedMap;
+import javax.ws.rs.core.Response;
+import org.glassfish.jersey.server.mvc.Viewable;
+import com.authlete.common.api.AuthleteApi;
+import com.authlete.common.api.AuthleteApiFactory;
+import com.authlete.common.dto.CredentialOfferCreateRequest;
+import com.authlete.common.dto.CredentialOfferCreateResponse;
+import com.authlete.common.types.User;
+import com.authlete.jaxrs.BaseEndpoint;
+import com.authlete.jaxrs.server.util.ExceptionUtil;
+import com.authlete.jaxrs.server.util.ProcessingUtil;
+
+
+@Path("/api/offer/issue")
+public class CredentialOfferIssueEndpoint extends BaseEndpoint
+{
+    @GET
+    public Response get()
+    {
+        // Create a Viewable instance that represents the credential offer page.
+        // Viewable is a class provided by Jersey for MVC.
+        final Viewable viewable = new Viewable("/credential-offer", new CredentialOfferPageModel());
+
+        // Create a response that has the viewable as its content.
+        return Response.ok(viewable, MediaType.TEXT_HTML_TYPE.withCharset("UTF-8")).build();
+    }
+
+
+    @POST
+    @Consumes(MediaType.APPLICATION_FORM_URLENCODED)
+    public Response post(
+            @Context HttpServletRequest request,
+            MultivaluedMap<String, String> parameters)
+    {
+        // Get the existing session.
+        final HttpSession session = ProcessingUtil.getSession(request);
+
+        // Read request
+        final Map<String, String> flatMap = ProcessingUtil.flattenMultivaluedMap(parameters);
+        final CredentialOfferPageModel model = new CredentialOfferPageModel()
+                .setValues(flatMap);
+
+        final AuthleteApi api = AuthleteApiFactory.getDefaultApi();
+        final User user = ProcessingUtil.getUser(session, parameters);
+
+        if (user == null)
+        {
+            throw ExceptionUtil.badRequestException("Bad authentication.");
+        }
+
+        final CredentialOfferCreateRequest createRequest = model.toRequest(user);
+        final CredentialOfferCreateResponse response = api.credentialOfferCreate(createRequest);
+
+        switch (response.getAction())
+        {
+            case CREATED:
+                model.setInfo(response.getInfo());
+                model.setUser(user);
+
+                // Create a Viewable instance that represents the credential offer page.
+                // Viewable is a class provided by Jersey for MVC.
+                final Viewable viewable = new Viewable("/credential-offer", model);
+
+                // Create a response that has the viewable as its content.
+                return Response.ok(viewable, MediaType.TEXT_HTML_TYPE.withCharset("UTF-8")).build();
+
+            default:
+                throw ExceptionUtil.badRequestException("An exception occured: " + response.getResultMessage());
+        }
+    }
+}