Merge pull request #113 from madhavc/remove-jwt-from-client-token

Replaces the Partner Auth with the new Token Auth

Author: aoberoi

build.gradle

@@ -38,11 +38,12 @@ repositories {
 dependencies {
     testCompile group: 'junit', name: 'junit', version: '[4.3,5.0['
     testCompile group: 'com.github.tomakehurst', name: 'wiremock', version: '[1.45,1.99999)'
-    testCompile group: 'commons-lang', name: 'commons-lang', version: '[2.6,2.99999)'
+    compile group: 'commons-lang', name: 'commons-lang', version: '[2.6,2.99999)'
     compile group: 'com.ning', name: 'async-http-client', version: '[1.9,2.0['
     compile group: 'com.fasterxml.jackson.core', name: 'jackson-databind', version: '[2.3.1,2.99999)'
     compile group: 'commons-validator', name: 'commons-validator', version: '[1.4.0,1.99999)'
     compile group: 'commons-codec', name: 'commons-codec', version: '[1.9,1.99999]'
+    compile group: 'org.bitbucket.b_c', name: 'jose4j', version: '0.5.1'
     // TODO: find out how to initialize these dependencies properly, or remove them
     //compile group: 'org.slf4j', name: 'slf4j-api', version: '1.7.5'
     //compile group: 'org.slf4j', name: 'slf4j-simple', version: '1.7.5'

src/main/java/com/opentok/OpenTok.java

@@ -7,6 +7,20 @@
  */
 package com.opentok;
 
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.databind.ObjectReader;
+import com.opentok.exception.InvalidArgumentException;
+import com.opentok.exception.OpenTokException;
+import com.opentok.exception.RequestException;
+import com.opentok.util.Crypto;
+import com.opentok.util.HttpClient;
+import com.opentok.util.TokenGenerator;
+import org.xml.sax.InputSource;
+
+import javax.xml.xpath.XPath;
+import javax.xml.xpath.XPathExpressionException;
+import javax.xml.xpath.XPathFactory;
 import java.io.IOException;
 import java.io.StringReader;
 import java.io.UnsupportedEncodingException;
@@ -15,23 +29,6 @@
 import java.util.List;
 import java.util.Map;
 
-import javax.xml.xpath.XPath;
-import javax.xml.xpath.XPathExpressionException;
-import javax.xml.xpath.XPathFactory;
-
-import com.fasterxml.jackson.core.JsonParseException;
-import com.fasterxml.jackson.core.JsonProcessingException;
-import com.fasterxml.jackson.databind.JsonMappingException;
-import com.opentok.exception.OpenTokException;
-import com.opentok.exception.InvalidArgumentException;
-import com.opentok.exception.RequestException;
-import com.opentok.util.Crypto;
-import com.opentok.util.HttpClient;
-
-import com.fasterxml.jackson.databind.ObjectMapper;
-import com.fasterxml.jackson.databind.ObjectReader;
-import org.xml.sax.InputSource;
-
 /**
 * Contains methods for creating OpenTok sessions, generating tokens, and working with archives.
 * <p>
@@ -48,9 +45,9 @@ public class OpenTok {
     private String apiSecret;
     protected HttpClient client;
     static protected ObjectReader archiveReader = new ObjectMapper()
-            .reader(Archive.class);
+            .readerFor(Archive.class);
     static protected ObjectReader archiveListReader = new ObjectMapper()
-            .reader(ArchiveList.class);
+            .readerFor(ArchiveList.class);
     static final String defaultApiUrl = "https://api.opentok.com";
 
     /**
@@ -245,11 +242,8 @@ public Session createSession(SessionProperties properties) throws OpenTokExcepti
         String xpathQuery = "/sessions/Session/session_id";
 
         // NOTE: doing this null check twice is kind of ugly
-        if (properties != null) {
-            params = properties.toMap();
-        } else {
-            params = new SessionProperties.Builder().build().toMap();
-        }
+        params = properties != null ? properties.toMap() :
+                new SessionProperties.Builder().build().toMap();
 
         String xmlResponse = this.client.createSession(params);
 
@@ -358,12 +352,6 @@ public ArchiveList listArchives(int offset, int count) throws OpenTokException {
         String archives = this.client.getArchives(offset, count);
         try {
             return archiveListReader.readValue(archives);
-
-        // if we only wanted Java 7 and above, we could DRY this into one catch clause
-        } catch (JsonMappingException e) {
-            throw new RequestException("Exception mapping json: " + e.getMessage());
-        } catch (JsonParseException e) {
-            throw new RequestException("Exception mapping json: " + e.getMessage());
         } catch (JsonProcessingException e) {
             throw new RequestException("Exception mapping json: " + e.getMessage());
         } catch (IOException e) {

src/main/java/com/opentok/Session.java

@@ -7,6 +7,7 @@
  */
 package com.opentok;
 
+import com.opentok.exception.OpenTokException;
 import java.io.UnsupportedEncodingException;
 import java.net.URLEncoder;
 import java.security.InvalidKeyException;
@@ -18,7 +19,6 @@
 import com.opentok.util.Crypto;
 import org.apache.commons.codec.binary.Base64;
 
-import com.opentok.exception.OpenTokException;
 
 /**
 * Represents an OpenTok session. Use the {@link OpenTok#createSession(SessionProperties properties)}
@@ -103,7 +103,6 @@ public String generateToken() throws OpenTokException {
      * @return The token string.
      */
     public String generateToken(TokenOptions tokenOptions) throws OpenTokException {
-
         // Token format
         //
         // | ------------------------------  tokenStringBuilder ----------------------------- |
@@ -177,18 +176,12 @@ public String generateToken(TokenOptions tokenOptions) throws OpenTokException {
                     Base64.encodeBase64String(
                             innerBuilder.toString().getBytes("UTF-8")
                     )
-                    .replace("+", "-")
-                    .replace("/", "_")
+                            .replace("+", "-")
+                            .replace("/", "_")
             );
 
-        // if we only wanted Java 7 and above, we could DRY this into one catch clause
-        } catch (SignatureException e) {
-            throw new OpenTokException("Could not generate token, a signing error occurred.", e);
-        } catch (NoSuchAlgorithmException e) {
-            throw new OpenTokException("Could not generate token, a signing error occurred.", e);
-        } catch (InvalidKeyException e) {
-            throw new OpenTokException("Could not generate token, a signing error occurred.", e);
-        } catch (UnsupportedEncodingException e) {
+        } catch (SignatureException | NoSuchAlgorithmException
+                | InvalidKeyException | UnsupportedEncodingException e) {
             throw new OpenTokException("Could not generate token, a signing error occurred.", e);
         }
 

src/main/java/com/opentok/TokenOptions.java

@@ -9,6 +9,8 @@
 
 import com.opentok.exception.InvalidArgumentException;
 
+import java.util.List;
+
 /**
  * Defines values for the <code>tokenOptions</code> parameter of the
  * {@link OpenTok#generateToken(String sessionId, TokenOptions tokenOptions)} method
@@ -19,8 +21,9 @@
 public class TokenOptions {
 
     private Role role;
-    private double expireTime;
+    private long expireTime;
     private String data;
+    private List<String> initialLayoutClassList;
 
     private TokenOptions(Builder builder) {
         this.role = builder.role != null ? builder.role : Role.PUBLISHER;
@@ -30,6 +33,9 @@ private TokenOptions(Builder builder) {
 
         // default value of null means to omit the key "connection_data" from the token
         this.data = builder.data;
+
+        // default value of null means to omit the key "initialLayoutClassList" from the token
+        this.initialLayoutClassList = builder.initialLayoutClassList;
     }
 
     /**
@@ -41,9 +47,9 @@ public Role getRole() {
 
     /**
     * Returns the expiration time the token, as the number of seconds since the UNIX epoch.
-    * See {@link TokenOptions.Builder#expireTime(double expireTime)}.
+    * See {@link TokenOptions.Builder#expireTime(long expireTime)}.
     */
-    public double getExpireTime() {
+    public long getExpireTime() {
         return expireTime;
     }
 
@@ -55,15 +61,20 @@ public String getData() {
         return data;
     }
 
+    public List<String> getInitialLayoutClassList() {
+        return initialLayoutClassList;
+    }
+
     /**
      * Use this class to create a TokenOptions object.
      *
      * @see TokenOptions
      */
     public static class Builder {
         private Role role;
-        private double expireTime = 0;
+        private long expireTime = 0;
         private String data;
+        private List<String> initialLayoutClassList;
 
         /**
          * Sets the role for the token. Each role defines a set of permissions granted to the token.
@@ -93,7 +104,7 @@ public Builder role(Role role) {
          * the default expiration time of 24 hours after the token creation time. The maximum
          * expiration time is 30 days after the creation time.
          */
-        public Builder expireTime(double expireTime) {
+        public Builder expireTime(long expireTime) {
             // NOTE: since this object can be stored/cached, validation should occur at token generation time
             this.expireTime = expireTime;
             return this;
@@ -116,6 +127,11 @@ public Builder data(String data) throws InvalidArgumentException {
             return this;
         }
 
+        public Builder initialLayoutClassList (List<String> initialLayoutClassList) {
+            this.initialLayoutClassList = initialLayoutClassList;
+            return this;
+        }
+
         /**
          * Builds the TokenOptions object.
          *

src/main/java/com/opentok/util/HttpClient.java

@@ -60,13 +60,7 @@ public String createSession(Map<String, Collection<String>> params) throws Reque
                     throw new RequestException("Could not create an OpenTok Session. The server response was invalid." +
                             " response code: " + response.getStatusCode());
             }
-
-        // if we only wanted Java 7 and above, we could DRY this into one catch clause
-        } catch (InterruptedException e) {
-            throw new RequestException("Could not create an OpenTok Session", e);
-        } catch (ExecutionException e) {
-            throw new RequestException("Could not create an OpenTok Session", e);
-        } catch (IOException e) {
+        } catch (InterruptedException | ExecutionException | IOException e) {
             throw new RequestException("Could not create an OpenTok Session", e);
         }
         return responseString;
@@ -94,13 +88,7 @@ public String getArchive(String archiveId) throws RequestException {
                     throw new RequestException("Could not get an OpenTok Archive. The server response was invalid." +
                             " response code: " + response.getStatusCode());
             }
-
-        // if we only wanted Java 7 and above, we could DRY this into one catch clause
-        } catch (InterruptedException e) {
-            throw new RequestException("Could not get an OpenTok Archive", e);
-        } catch (ExecutionException e) {
-            throw new RequestException("Could not get an OpenTok Archive", e);
-        } catch (IOException e) {
+        } catch (InterruptedException | ExecutionException | IOException e) {
             throw new RequestException("Could not  get an OpenTok Archive", e);
         }
 
@@ -137,13 +125,7 @@ public String getArchives(int offset, int count) throws RequestException {
                     throw new RequestException("Could not get an OpenTok Archive. The server response was invalid." +
                             " response code: " + response.getStatusCode());
             }
-
-        // if we only wanted Java 7 and above, we could DRY this into one catch clause
-        } catch (InterruptedException e) {
-            throw new RequestException("Could not get OpenTok Archives", e);
-        } catch (ExecutionException e) {
-            throw new RequestException("Could not get OpenTok Archives", e);
-        } catch (IOException e) {
+        } catch (InterruptedException | ExecutionException | IOException e) {
             throw new RequestException("Could not get OpenTok Archives", e);
         }
 
@@ -197,13 +179,7 @@ public String startArchive(String sessionId, ArchiveProperties properties)
                     throw new RequestException("Could not start an OpenTok Archive. The server response was invalid." +
                             " response code: " + response.getStatusCode());
             }
-
-        // if we only wanted Java 7 and above, we could DRY this into one catch clause
-        } catch (InterruptedException e) {
-            throw new RequestException("Could not start an OpenTok Archive.", e);
-        } catch (ExecutionException e) {
-            throw new RequestException("Could not start an OpenTok Archive.", e);
-        } catch (IOException e) {
+        } catch (InterruptedException | ExecutionException | IOException e) {
             throw new RequestException("Could not start an OpenTok Archive.", e);
         }
         return responseString;
@@ -239,13 +215,7 @@ public String stopArchive(String archiveId) throws RequestException {
                     throw new RequestException("Could not stop an OpenTok Archive. The server response was invalid." +
                             " response code: " + response.getStatusCode());
             }
-
-        // if we only wanted Java 7 and above, we could DRY this into one catch clause
-        } catch (InterruptedException e) {
-            throw new RequestException("Could not stop an OpenTok Archive.", e);
-        } catch (ExecutionException e) {
-            throw new RequestException("Could not stop an OpenTok Archive.", e);
-        } catch (IOException e) {
+        } catch (InterruptedException | ExecutionException | IOException e) {
             throw new RequestException("Could not stop an OpenTok Archive.", e);
         }
         return responseString;
@@ -273,13 +243,7 @@ public String deleteArchive(String archiveId) throws RequestException {
                     throw new RequestException("Could not get an OpenTok Archive. The server response was invalid." +
                             " response code: " + response.getStatusCode());
             }
-
-        // if we only wanted Java 7 and above, we could DRY this into one catch clause
-        } catch (InterruptedException e) {
-            throw new RequestException("Could not delete an OpenTok Archive. archiveId = " + archiveId, e);
-        } catch (ExecutionException e) {
-            throw new RequestException("Could not delete an OpenTok Archive. archiveId = " + archiveId, e);
-        } catch (IOException e) {
+        } catch (InterruptedException | ExecutionException | IOException e) {
             throw new RequestException("Could not delete an OpenTok Archive. archiveId = " + archiveId, e);
         }
 
@@ -311,7 +275,7 @@ public Builder proxy(Proxy proxy) {
         public HttpClient build() {
             AsyncHttpClientConfig.Builder configBuilder = new AsyncHttpClientConfig.Builder()
                     .setUserAgent("Opentok-Java-SDK/" + Version.VERSION + " JRE/" + System.getProperty("java.version"))
-                    .addRequestFilter(new PartnerAuthRequestFilter(this.apiKey, this.apiSecret));
+                    .addRequestFilter(new TokenAuthRequestFilter(this.apiKey, this.apiSecret));
             if (this.apiUrl == null) {
                 this.apiUrl=DefaultApiUrl.DEFAULT_API_URI;
             }
@@ -352,22 +316,29 @@ static ProxyServer createProxyServer(final Proxy proxy) {
         }
     }
 
-    static class PartnerAuthRequestFilter implements RequestFilter {
+    static class TokenAuthRequestFilter implements RequestFilter {
 
         private int apiKey;
         private String apiSecret;
+        private final String authHeader = "X-OPENTOK-AUTH";
 
-        public PartnerAuthRequestFilter(int apiKey, String apiSecret) {
+        public TokenAuthRequestFilter(int apiKey, String apiSecret) {
             this.apiKey = apiKey;
             this.apiSecret = apiSecret;
         }
 
         public FilterContext filter(FilterContext ctx) throws FilterException {
-            return new FilterContext.FilterContextBuilder(ctx)
-                    .request(new RequestBuilder(ctx.getRequest())
-                            .addHeader("X-TB-PARTNER-AUTH", this.apiKey+":"+this.apiSecret)
-                            .build())
-                    .build();
+            try {
+                return new FilterContext.FilterContextBuilder(ctx)
+                        .request(new RequestBuilder(ctx.getRequest())
+                                .addHeader(authHeader,
+                                        TokenGenerator.generateToken(apiKey, apiSecret))
+                                .build())
+                        .build();
+            } catch (OpenTokException e) {
+                e.printStackTrace();
+                return null;
+            }
         }
     }
 }