add OAuth support for BackendApi + rename SamouraiFee -> MinerFee

zeroleak · zeroleak · commit c1a6d19105d4 · 2019-11-06T23:30:37.000+01:00
diff --git a/java/com/samourai/wallet/api/backend/BackendApi.java b/java/com/samourai/wallet/api/backend/BackendApi.java
@@ -4,31 +4,37 @@
 import com.samourai.wallet.api.backend.beans.MultiAddrResponse;
 import com.samourai.wallet.api.backend.beans.RefreshTokenResponse;
 import com.samourai.wallet.api.backend.beans.UnspentResponse;
+import com.samourai.wallet.util.oauth.OAuthApi;
+import com.samourai.wallet.util.oauth.OAuthManager;
 import org.apache.commons.lang3.StringUtils;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
 import java.util.*;
 
-public class BackendApi {
+public class BackendApi implements OAuthApi {
   private Logger log = LoggerFactory.getLogger(BackendApi.class);
 
   private static final String URL_UNSPENT = "/unspent?active=";
   private static final String URL_MULTIADDR = "/multiaddr?active=";
   private static final String URL_INIT_BIP84 = "/xpub";
-  private static final String URL_FEES = "/fees";
+  private static final String URL_MINER_FEES = "/fees";
   private static final String URL_PUSHTX = "/pushtx/";
   private static final String URL_GET_AUTH_LOGIN = "/auth/login";
   private static final String URL_GET_AUTH_REFRESH = "/auth/refresh";
 
   private IBackendClient httpClient;
   private String urlBackend;
-  private String apiKey;
+  private OAuthManager oAuthManager;
 
-  public BackendApi(IBackendClient httpClient, String urlBackend, String apiKey) {
+  public BackendApi(IBackendClient httpClient, String urlBackend, OAuthManager oAuthManager) {
     this.httpClient = httpClient;
     this.urlBackend = urlBackend;
-    this.apiKey = apiKey; // may be null
+    this.oAuthManager = oAuthManager; // may be null
+    if (log.isDebugEnabled()) {
+      String oAuthStr = oAuthManager != null ? "yes" : "no";
+      log.debug("urlBackend=" + urlBackend + ", oAuth=" + oAuthStr);
+    }
   }
 
   public List<UnspentResponse.UnspentOutput> fetchUtxos(String zpub) throws Exception {
@@ -92,14 +98,14 @@ public void initBip84(String zpub) throws Exception {
     httpClient.postUrlEncoded(url, Void.class, headers, postBody);
   }
 
-  public SamouraiFee fetchFees() throws Exception {
-    String url = computeAuthUrl(urlBackend + URL_FEES);
+  public MinerFee fetchMinerFee() throws Exception {
+    String url = computeAuthUrl(urlBackend + URL_MINER_FEES);
     Map<String,String> headers = computeHeaders();
     Map<String, Integer> feeResponse = httpClient.getJson(url, Map.class, headers);
     if (feeResponse == null) {
-      throw new Exception("Invalid fee response from server");
+      throw new Exception("Invalid miner fee response from server");
     }
-    return new SamouraiFee(feeResponse);
+    return new MinerFee(feeResponse);
   }
 
   public void pushTx(String txHex) throws Exception {
@@ -130,13 +136,48 @@ public void pushTx(String txHex) throws Exception {
     }
   }
 
-  protected RefreshTokenResponse.Authorization tokenAuthenticate() throws Exception {
+  public boolean testConnectivity() {
+    try {
+      fetchMinerFee();
+      return true;
+    } catch (Exception e) {
+      log.error("", e);
+      return false;
+    }
+  }
+
+  protected Map<String,String> computeHeaders() throws Exception {
+    Map<String,String> headers = new HashMap<String, String>();
+    if (oAuthManager != null) {
+      // add auth token
+      headers.put("Authorization<", "Bearer " + oAuthManager.computeAccessToken(this));
+    }
+    return headers;
+  }
+
+  protected String computeAuthUrl(String  url) throws Exception {
+    // override for auth support
+    return url;
+  }
+
+  protected IBackendClient getHttpClient() {
+    return httpClient;
+  }
+
+  public String getUrlBackend() {
+    return urlBackend;
+  }
+
+  // OAuthAPI
+
+  @Override
+  public RefreshTokenResponse.Authorization oAuthAuthenticate(String apiKey) throws Exception {
     String url = getUrlBackend() + URL_GET_AUTH_LOGIN;
     if (log.isDebugEnabled()) {
       log.debug("tokenAuthenticate");
     }
     Map<String, String> postBody = new HashMap<String, String>();
-    postBody.put("apikey", getApiKey());
+    postBody.put("apikey", apiKey);
     RefreshTokenResponse response =
             getHttpClient().postUrlEncoded(url, RefreshTokenResponse.class, null, postBody);
 
@@ -146,13 +187,14 @@ protected RefreshTokenResponse.Authorization tokenAuthenticate() throws Exceptio
     return response.authorizations;
   }
 
-  protected String tokenRefresh(String refreshToken) throws Exception {
+  @Override
+  public String oAuthRefresh(String refreshTokenStr) throws Exception {
     String url = getUrlBackend() + URL_GET_AUTH_REFRESH;
     if (log.isDebugEnabled()) {
       log.debug("tokenRefresh");
     }
     Map<String, String> postBody = new HashMap<String, String>();
-    postBody.put("rt", refreshToken);
+    postBody.put("rt", refreshTokenStr);
     RefreshTokenResponse response =
             getHttpClient().postUrlEncoded(url, RefreshTokenResponse.class, null, postBody);
 
@@ -161,26 +203,4 @@ protected String tokenRefresh(String refreshToken) throws Exception {
     }
     return response.authorizations.access_token;
   }
-
-  protected Map<String,String> computeHeaders() throws Exception {
-    Map<String,String> headers = new HashMap<String, String>();
-    return headers;
-  }
-
-  protected String computeAuthUrl(String  url) throws Exception {
-    // override for auth support
-    return url;
-  }
-
-  protected IBackendClient getHttpClient() {
-    return httpClient;
-  }
-
-  protected String getApiKey() {
-    return apiKey;
-  }
-
-  public String getUrlBackend() {
-    return urlBackend;
-  }
 }
diff --git a/java/com/samourai/wallet/api/backend/MinerFee.java b/java/com/samourai/wallet/api/backend/MinerFee.java
@@ -2,14 +2,14 @@
 
 import java.util.Map;
 
-public class SamouraiFee {
+public class MinerFee {
   private Map<String, Integer> feesResponse;
 
-  public SamouraiFee(Map<String, Integer> feesResponse) {
+  public MinerFee(Map<String, Integer> feesResponse) {
     this.feesResponse = feesResponse;
   }
 
-  public int get(SamouraiFeeTarget feeTarget) {
+  public int get(MinerFeeTarget feeTarget) {
     int fee = feesResponse.get(feeTarget.getValue());
     return fee;
   }
diff --git a/java/com/samourai/wallet/api/backend/MinerFeeTarget.java b/java/com/samourai/wallet/api/backend/MinerFeeTarget.java
@@ -1,6 +1,6 @@
 package com.samourai.wallet.api.backend;
 
-public enum SamouraiFeeTarget {
+public enum MinerFeeTarget {
   BLOCKS_2("2"),
   BLOCKS_4("4"),
   BLOCKS_6("6"),
@@ -9,7 +9,7 @@ public enum SamouraiFeeTarget {
 
   private String value;
 
-  SamouraiFeeTarget(String value) {
+  MinerFeeTarget(String value) {
     this.value = value;
   }
 
diff --git a/java/com/samourai/wallet/util/oauth/OAuthApi.java b/java/com/samourai/wallet/util/oauth/OAuthApi.java
@@ -0,0 +1,8 @@
+package com.samourai.wallet.util.oauth;
+
+import com.samourai.wallet.api.backend.beans.RefreshTokenResponse;
+
+public interface OAuthApi {
+    String oAuthRefresh(String refreshTokenStr) throws Exception;
+    RefreshTokenResponse.Authorization oAuthAuthenticate(String apiKey) throws Exception;
+}
diff --git a/java/com/samourai/wallet/util/oauth/OAuthImpl.java b/java/com/samourai/wallet/util/oauth/OAuthImpl.java
@@ -0,0 +1,33 @@
+package com.samourai.wallet.util.oauth;
+
+import com.auth0.jwt.JWT;
+import com.auth0.jwt.interfaces.DecodedJWT;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import java.util.Date;
+
+public class OAuthImpl {
+  private Logger log = LoggerFactory.getLogger(OAuthImpl.class);
+
+  public boolean validate(DecodedJWT token) {
+    // check expiration
+    boolean valid = token.getExpiresAt().after(new Date());
+    if (log.isDebugEnabled()) {
+      log.debug(
+          "accessToken is "
+              + (valid ? "VALID" : "EXPIRED")
+              + ", expiresAt="
+              + token.getExpiresAt());
+    }
+    return valid;
+  }
+
+  public DecodedJWT decode(String tokenStr) {
+    return JWT.decode(tokenStr);
+  }
+
+  public String tokenToString(DecodedJWT token) {
+    return token.getToken();
+  }
+}
diff --git a/java/com/samourai/wallet/util/oauth/OAuthManager.java b/java/com/samourai/wallet/util/oauth/OAuthManager.java
@@ -0,0 +1,46 @@
+package com.samourai.wallet.util.oauth;
+
+import com.auth0.jwt.interfaces.DecodedJWT;
+import com.samourai.wallet.api.backend.beans.RefreshTokenResponse;
+
+public class OAuthManager {
+    private OAuthImpl oAuthImpl;
+    private String apiKey;
+
+    private DecodedJWT accessToken;
+    private DecodedJWT refreshToken;
+
+    public OAuthManager(String apiKey) {
+        this.oAuthImpl = new OAuthImpl();
+        this.apiKey = apiKey;
+    }
+
+    public String computeAccessToken(OAuthApi oAuthApi) throws Exception {
+        if (accessToken != null) {
+            boolean valid = oAuthImpl.validate(accessToken);
+            if (valid) {
+                // accessToken is valid
+                return oAuthImpl.tokenToString(accessToken);
+            }
+        }
+        return newAccessToken(oAuthApi);
+    }
+
+    public String newAccessToken(OAuthApi oAuthApi) throws Exception {
+        if (refreshToken != null) {
+            boolean valid = oAuthImpl.validate(refreshToken);
+            if (valid) {
+                // refreshToken is valid => refresh
+                String accessTokenStr = oAuthApi.oAuthRefresh(oAuthImpl.tokenToString(refreshToken));
+                this.accessToken = oAuthImpl.decode(accessTokenStr);
+                return oAuthImpl.tokenToString(accessToken);
+            }
+        }
+
+        // no refreshToken => authenticate
+        RefreshTokenResponse.Authorization auth = oAuthApi.oAuthAuthenticate(apiKey);
+        this.accessToken = oAuthImpl.decode(auth.access_token);
+        this.refreshToken = oAuthImpl.decode(auth.refresh_token);
+        return oAuthImpl.tokenToString(accessToken);
+    }
+}
diff --git a/pom.xml b/pom.xml
@@ -26,18 +26,6 @@
 			<artifactId>json</artifactId>
 			<version>20180130</version>
 		</dependency>
-		<dependency>
-			<groupId>org.junit.platform</groupId>
-			<artifactId>junit-platform-launcher</artifactId>
-			<version>1.2.0</version>
-			<scope>test</scope>
-		</dependency>
-		<dependency>
-			<groupId>org.junit.jupiter</groupId>
-			<artifactId>junit-jupiter-engine</artifactId>
-			<version>5.2.0</version>
-			<scope>test</scope>
-		</dependency>
 		<dependency>
 			<groupId>com.github.Samourai-Wallet.bitcoinj</groupId>
 			<artifactId>bitcoinj-core</artifactId>
@@ -48,10 +36,26 @@
 			<artifactId>jackson-annotations</artifactId>
 			<version>2.9.0</version>
 		</dependency>
+		<dependency>
+			<groupId>com.auth0</groupId>
+			<artifactId>java-jwt</artifactId>
+			<version>3.8.1</version>
+		</dependency>
 		<dependency>
 			<groupId>com.fasterxml.jackson.core</groupId>
 			<artifactId>jackson-databind</artifactId>
-			<version>2.9.10</version>
+			<version>2.9.10.1</version>
+		</dependency>
+		<dependency>
+			<groupId>org.junit.platform</groupId>
+			<artifactId>junit-platform-launcher</artifactId>
+			<version>1.2.0</version>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.junit.jupiter</groupId>
+			<artifactId>junit-jupiter-engine</artifactId>
+			<version>5.2.0</version>
 			<scope>test</scope>
 		</dependency>
 	</dependencies>

Original file line number	Diff line number	Diff line change
`@@ -2,14 +2,14 @@`
`2`	`2`
`3`	`3`	`import java.util.Map;`
`4`	`4`
`5`		`-public class SamouraiFee {`
	`5`	`+public class MinerFee {`
`6`	`6`	`private Map<String, Integer> feesResponse;`
`7`	`7`
`8`		`- public SamouraiFee(Map<String, Integer> feesResponse) {`
	`8`	`+ public MinerFee(Map<String, Integer> feesResponse) {`
`9`	`9`	`this.feesResponse = feesResponse;`
`10`	`10`	`}`
`11`	`11`
`12`		`- public int get(SamouraiFeeTarget feeTarget) {`
	`12`	`+ public int get(MinerFeeTarget feeTarget) {`
`13`	`13`	`int fee = feesResponse.get(feeTarget.getValue());`
`14`	`14`	`return fee;`
`15`	`15`	`}`