clean up crypto and exceptions

aoberoi · aoberoi · commit 8287b1e4c581 · 2014-04-15T01:21:37.000-04:00
diff --git a/src/main/java/com/opentok/api/Session.java b/src/main/java/com/opentok/api/Session.java
@@ -2,15 +2,18 @@
 
 import java.io.UnsupportedEncodingException;
 import java.net.URLEncoder;
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
+import java.security.SignatureException;
 import java.util.Random;
 
+import com.opentok.util.Crypto;
+import org.apache.commons.codec.binary.Base64;
+
 import com.opentok.api.constants.SessionProperties;
 import com.opentok.api.constants.TokenOptions;
 import com.opentok.exception.OpenTokException;
 import com.opentok.exception.OpenTokInvalidArgumentException;
-import com.opentok.exception.OpenTokRequestException;
-import com.opentok.util.Base64;
-import com.opentok.util.GenerateMac;
 
 public class Session {
 
@@ -84,8 +87,13 @@ public String generateToken() throws OpenTokException {
      *
      * @return The token string.
      */
-    public String generateToken(TokenOptions tokenOptions) throws
-            OpenTokInvalidArgumentException, OpenTokRequestException {
+    public String generateToken(TokenOptions tokenOptions) throws OpenTokException {
+
+        // Token format
+        //
+        // | ------------------------------  tokenStringBuilder ----------------------------- |
+        // | "T1=="+Base64Encode(| --------------------- innerBuilder --------------------- |)|
+        //                       | "partner_id={apiKey}&sig={sig}:| -- dataStringBuilder -- |
 
         if (tokenOptions == null) {
             throw new OpenTokInvalidArgumentException("Token options cannot be null");
@@ -94,10 +102,9 @@ public String generateToken(TokenOptions tokenOptions) throws
         String role = tokenOptions.getRole();
         double expireTime = tokenOptions.getExpireTime(); // will be 0 if nothing was explicitly set
         String data = tokenOptions.getData();             // will be null if nothing was explicitly set
-
         Long create_time = new Long(System.currentTimeMillis() / 1000).longValue();
+
         StringBuilder dataStringBuilder = new StringBuilder();
-        //Build the string
         Random random = new Random();
         int nonce = random.nextInt();
         dataStringBuilder.append("session_id=");
@@ -147,16 +154,21 @@ public String generateToken(TokenOptions tokenOptions) throws
 
             innerBuilder.append("&sig=");
 
-            // TODO: user a more concise crypto routine
-            innerBuilder.append(GenerateMac.calculateRFC2104HMAC(dataStringBuilder.toString(),
-                    this.apiSecret));
+            innerBuilder.append(Crypto.signData(dataStringBuilder.toString(), this.apiSecret));
             innerBuilder.append(":");
             innerBuilder.append(dataStringBuilder.toString());
 
-            tokenStringBuilder.append(Base64.encode(innerBuilder.toString()));
-
-        } catch (java.security.SignatureException e) {
-            throw new OpenTokRequestException(500, e.getMessage());
+            tokenStringBuilder.append(Base64.encodeBase64URLSafeString(innerBuilder.toString().getBytes("UTF-8")));
+
+        // if we only wanted Java 7 and above, we could DRY this into one catch clause
+        } catch (SignatureException e) {
+            throw new OpenTokException("Could not generate token, a signing error occurred.", e);
+        } catch (NoSuchAlgorithmException e) {
+            throw new OpenTokException("Could not generate token, a signing error occurred.", e);
+        } catch (InvalidKeyException e) {
+            throw new OpenTokException("Could not generate token, a signing error occurred.", e);
+        } catch (UnsupportedEncodingException e) {
+            throw new OpenTokException("Could not generate token, a signing error occurred.", e);
         }
 
         return tokenStringBuilder.toString();
diff --git a/src/main/java/com/opentok/api/constants/TokenOptions.java b/src/main/java/com/opentok/api/constants/TokenOptions.java
@@ -33,8 +33,6 @@ public String getData() {
         return data;
     }
 
-    // TODO: toMap() method?
-
     public static class Builder {
         private String role;
         private double expireTime = 0;
diff --git a/src/main/java/com/opentok/exception/OpenTokException.java b/src/main/java/com/opentok/exception/OpenTokException.java
@@ -3,29 +3,14 @@
 /**
 * Defines exceptions in the OpenTok SDK.
 */
-public abstract class OpenTokException extends Exception {
+public class OpenTokException extends Exception {
 	private static final long serialVersionUID = 6059658348908505724L;
 
-	int errorCode;
-    String statusMessage;
-
-    public OpenTokException(int code, String statusMessage) {
-        super();
-        this.errorCode = code;
-        this.statusMessage = statusMessage;
-    }
-
-    /**
-     * Returns the status message, providing details about the error.
-     */
-    public String getStatusMessage() {
-        return statusMessage;
+    public OpenTokException(String message) {
+        super(message);
     }
 
-    /**
-     * Returns the error code.
-     */
-    public int getErrorCode() {
-        return errorCode;
+    public OpenTokException(String message, Throwable cause) {
+        super(message, cause);
     }
 }
diff --git a/src/main/java/com/opentok/exception/OpenTokInvalidArgumentException.java b/src/main/java/com/opentok/exception/OpenTokInvalidArgumentException.java
@@ -4,7 +4,8 @@ public class OpenTokInvalidArgumentException extends OpenTokException {
 
     private static final long serialVersionUID = 6315168083117996091L;
 
-    public OpenTokInvalidArgumentException(String statusMessage) {
-        super(400, statusMessage);
+    public OpenTokInvalidArgumentException(String message) {
+        super(message);
     }
+
 }
diff --git a/src/main/java/com/opentok/exception/OpenTokRequestException.java b/src/main/java/com/opentok/exception/OpenTokRequestException.java
@@ -4,9 +4,8 @@ public class OpenTokRequestException extends OpenTokException {
 
     private static final long serialVersionUID = -3852834447530956514L;
 
-    public OpenTokRequestException(int code, String statusMessage) {
-        super(code, statusMessage);
-
+    public OpenTokRequestException(String message) {
+        super(message);
     }
 
 }
diff --git a/src/main/java/com/opentok/exception/OpenTokSessionNotFoundException.java b/src/main/java/com/opentok/exception/OpenTokSessionNotFoundException.java
@@ -4,8 +4,7 @@ public class OpenTokSessionNotFoundException extends OpenTokException {
 
     private static final long serialVersionUID = 1946440047275860231L;
 
-    public OpenTokSessionNotFoundException(String statusMessage) {
-        super(404, statusMessage);
+    public OpenTokSessionNotFoundException(String message) {
+        super(message);
     }
-
 }
diff --git a/src/main/java/com/opentok/util/Base64.java b/src/main/java/com/opentok/util/Base64.java
diff --git a/src/main/java/com/opentok/util/Crypto.java b/src/main/java/com/opentok/util/Crypto.java
@@ -0,0 +1,31 @@
+package com.opentok.util;
+
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
+import java.security.SignatureException;
+import java.util.Formatter;
+import javax.crypto.Mac;
+import javax.crypto.spec.SecretKeySpec;
+
+public class Crypto {
+	private static final String HMAC_SHA1_ALGORITHM = "HmacSHA1";
+
+    // -- credit: https://gist.github.com/ishikawa/88599
+
+    private static String toHexString(byte[] bytes) {
+        Formatter formatter = new Formatter();
+        for (byte b : bytes) {
+            formatter.format("%02x", b);
+        }
+        return formatter.toString();
+    }
+
+    public static String signData(String data, String key)
+            throws SignatureException, NoSuchAlgorithmException, InvalidKeyException
+    {
+        SecretKeySpec signingKey = new SecretKeySpec(key.getBytes(), HMAC_SHA1_ALGORITHM);
+        Mac mac = Mac.getInstance(HMAC_SHA1_ALGORITHM);
+        mac.init(signingKey);
+        return toHexString(mac.doFinal(data.getBytes()));
+    }
+}
diff --git a/src/main/java/com/opentok/util/GenerateMac.java b/src/main/java/com/opentok/util/GenerateMac.java
diff --git a/src/main/java/com/opentok/util/TokBoxUtils.java b/src/main/java/com/opentok/util/TokBoxUtils.java
@@ -33,7 +33,7 @@ public static Node parseXML(String matchToken, NodeList nodelist) {
 
 	public static Document setupDocument(String xmlResponse) throws ParserConfigurationException, SAXException, IOException, OpenTokException {
 		if(null == xmlResponse) {
-			throw new OpenTokRequestException(500, "There was an error in retrieving the response");
+			throw new OpenTokRequestException("There was an error in retrieving the response");
 		}
 
 		DocumentBuilderFactory dbFactory = DocumentBuilderFactory.newInstance();
@@ -45,7 +45,7 @@ public static Document setupDocument(String xmlResponse) throws ParserConfigurat
 		Node errorNodes = TokBoxUtils.parseXML("error", document.getElementsByTagName("error"));
 
 		if(null != errorNodes) {
-			throw new OpenTokRequestException(500, xmlResponse);
+			throw new OpenTokRequestException(xmlResponse);
 		}
 
 		return document;
diff --git a/src/main/java/com/opentok/util/TokBoxXML.java b/src/main/java/com/opentok/util/TokBoxXML.java
@@ -15,7 +15,7 @@ public TokBoxXML(String xmlString) throws OpenTokException {
 		try {
 			this.xml = TokBoxUtils.setupDocument(xmlString);
 		} catch(Exception e) {
-			throw new OpenTokRequestException(500, "Error response: message: " + e.getMessage());	
+			throw new OpenTokRequestException("Error response: message: " + e.getMessage());
 		}
 	}
 

Original file line number	Diff line number	Diff line change
`@@ -33,8 +33,6 @@ public String getData() {`
`33`	`33`	`return data;`
`34`	`34`	`}`
`35`	`35`
`36`		`- // TODO: toMap() method?`
`37`		`-`
`38`	`36`	`public static class Builder {`
`39`	`37`	`private String role;`
`40`	`38`	`private double expireTime = 0;`
Original file line number	Diff line number	Diff line change
`@@ -4,7 +4,8 @@ public class OpenTokInvalidArgumentException extends OpenTokException {`
`4`	`4`
`5`	`5`	`private static final long serialVersionUID = 6315168083117996091L;`
`6`	`6`
`7`		`- public OpenTokInvalidArgumentException(String statusMessage) {`
`8`		`- super(400, statusMessage);`
	`7`	`+ public OpenTokInvalidArgumentException(String message) {`
	`8`	`+ super(message);`
`9`	`9`	`}`
	`10`	`+`
`10`	`11`	`}`
Original file line number	Diff line number	Diff line change
`@@ -4,9 +4,8 @@ public class OpenTokRequestException extends OpenTokException {`
`4`	`4`
`5`	`5`	`private static final long serialVersionUID = -3852834447530956514L;`
`6`	`6`
`7`		`- public OpenTokRequestException(int code, String statusMessage) {`
`8`		`- super(code, statusMessage);`
`9`		`-`
	`7`	`+ public OpenTokRequestException(String message) {`
	`8`	`+ super(message);`
`10`	`9`	`}`
`11`	`10`
`12`	`11`	`}`
Original file line number	Diff line number	Diff line change
`@@ -4,8 +4,7 @@ public class OpenTokSessionNotFoundException extends OpenTokException {`
`4`	`4`
`5`	`5`	`private static final long serialVersionUID = 1946440047275860231L;`
`6`	`6`
`7`		`- public OpenTokSessionNotFoundException(String statusMessage) {`
`8`		`- super(404, statusMessage);`
	`7`	`+ public OpenTokSessionNotFoundException(String message) {`
	`8`	`+ super(message);`
`9`	`9`	`}`
`10`		`-`
`11`	`10`	`}`
Original file line number	Diff line number	Diff line change
`@@ -33,7 +33,7 @@ public static Node parseXML(String matchToken, NodeList nodelist) {`
`33`	`33`
`34`	`34`	`public static Document setupDocument(String xmlResponse) throws ParserConfigurationException, SAXException, IOException, OpenTokException {`
`35`	`35`	`if(null == xmlResponse) {`
`36`		`- throw new OpenTokRequestException(500, "There was an error in retrieving the response");`
	`36`	`+ throw new OpenTokRequestException("There was an error in retrieving the response");`
`37`	`37`	`}`
`38`	`38`
`39`	`39`	`DocumentBuilderFactory dbFactory = DocumentBuilderFactory.newInstance();`
`@@ -45,7 +45,7 @@ public static Document setupDocument(String xmlResponse) throws ParserConfigurat`
`45`	`45`	`Node errorNodes = TokBoxUtils.parseXML("error", document.getElementsByTagName("error"));`
`46`	`46`
`47`	`47`	`if(null != errorNodes) {`
`48`		`- throw new OpenTokRequestException(500, xmlResponse);`
	`48`	`+ throw new OpenTokRequestException(xmlResponse);`
`49`	`49`	`}`
`50`	`50`
`51`	`51`	`return document;`