File NimbusJwt.java

Branches:

Statements:

Methods:

Classes:

LOC:

178

NCLOC:

144

Total complexity:

Complexity density:

0.26

Statements/Method:

8.71

Methods/Class:

Average method complexity:

2.29

Classes

Class	Line #	Total Statements	% Filtered	Complexity	Uncovered Elements	TOTAL Coverage	Actions
NimbusJwt	34	61	0%	16	17	0.7820512778.2%

Class NimbusJwt

Class NimbusJwt	Line # 34	Total Statements 61	% Filtered 0%	Complexity 16	Uncovered Elements 17	TOTAL Coverage 0.7820512778.2%
NimbusJwt() NimbusJwt()	4444	1.01	0.00%	1.01	0.00	1.0 1.0100%
buildHMAC512SignedJws(String) : String buildHMAC512SignedJws(String) : String	4848	14.014	0.00%	3.03	4.04	0.75 0.7575%
buildHMAC512SignedJwt(String,String,List<String>) : String buildHMAC512SignedJwt(String,String,List<String>) : String	7575	15.015	0.00%	3.03	4.04	0.7647059 0.764705976.5%
parseHMAC512SingedJws(String) : String parseHMAC512SingedJws(String) : String	112112	12.012	0.00%	3.03	4.04	0.71428573 0.7142857371.4%
parseHMAC512SingedJwt(String) : String parseHMAC512SingedJwt(String) : String	136136	12.012	0.00%	3.03	4.04	0.71428573 0.7142857371.4%
validateLengthOfSharedSecret(String) : boolean validateLengthOfSharedSecret(String) : boolean	161161	4.04	0.00%	2.02	1.01	0.8333333 0.833333383.3%
fetchSharedSecret() : void fetchSharedSecret() : void	170170	3.03	0.00%	1.01	0.00	1.0 1.0100%

Contributing tests

This file is covered by 6 tests. .

Contributing tests

Test contribution	Test	Result
0.43589744	org.europa.together.application.NimbusJwtTest.parseHMAC512SingedJwtorg.europa.together.application.NimbusJwtTest.parseHMAC512SingedJwt	1PASS
0.3846154	org.europa.together.application.NimbusJwtTest.failparseHMAC512SingedJwtorg.europa.together.application.NimbusJwtTest.failparseHMAC512SingedJwt	1PASS
0.30769232	org.europa.together.application.NimbusJwtTest.buildHMAC512SignedJwtorg.europa.together.application.NimbusJwtTest.buildHMAC512SignedJwt	1PASS
0.2948718	org.europa.together.application.NimbusJwtTest.buildHMAC512SignedJwsorg.europa.together.application.NimbusJwtTest.buildHMAC512SignedJws	1PASS
0.17948718	org.europa.together.application.NimbusJwtTest.parseHMAC512SingedJwsorg.europa.together.application.NimbusJwtTest.parseHMAC512SingedJws	1PASS
0.12820514	org.europa.together.application.NimbusJwtTest.failParseHMAC512SingedJwsorg.europa.together.application.NimbusJwtTest.failParseHMAC512SingedJws	1PASS

Source view

package org.europa.together.application;

import com.nimbusds.jose.JWSAlgorithm;

import com.nimbusds.jose.JWSHeader;

import com.nimbusds.jose.JWSObject;

import com.nimbusds.jose.JWSSigner;

import com.nimbusds.jose.JWSVerifier;

import com.nimbusds.jose.Payload;

import com.nimbusds.jose.crypto.MACSigner;

import com.nimbusds.jose.crypto.MACVerifier;

import com.nimbusds.jwt.JWTClaimsSet;

import com.nimbusds.jwt.SignedJWT;

import java.util.Date;

import java.util.List;

import org.europa.together.business.ConfigurationDAO;

import org.europa.together.business.JsonWebToken;

import org.europa.together.business.Logger;

import org.europa.together.domain.ConfigurationDO;

import org.europa.together.domain.LogLevel;

import org.europa.together.exceptions.DAOException;

import org.europa.together.exceptions.JsonProcessingException;

import org.europa.together.utils.Constraints;

import org.europa.together.utils.StringUtils;

import org.springframework.beans.factory.annotation.Autowired;

import org.springframework.stereotype.Repository;

import org.springframework.transaction.annotation.Transactional;

/**

* @author ed

@Repository

@Transactional

public class NimbusJwt implements JsonWebToken {

private static final long serialVersionUID = 16L;

private static final Logger LOGGER = new LogbackLogger(NimbusJwt.class);

private String sharedSecret = "";

@Autowired

private ConfigurationDAO configurationDAO;

public NimbusJwt() throws DAOException {

LOGGER.log("instance class", LogLevel.INFO);

}

@Override

public String buildHMAC512SignedJws(final String jsonPayload)

throws JsonProcessingException {

String jws = "";

try {

fetchSharedSecret();

if (!validateLengthOfSharedSecret(sharedSecret)) {

String msg = "The length of the secret is less than 128 characters.";

throw new JsonProcessingException(msg);

}

JWSSigner signer = new MACSigner(sharedSecret);

JWSHeader jswHeader = new JWSHeader(JWSAlgorithm.HS512);

Payload payload = new Payload(jsonPayload);

JWSObject jwsObject = new JWSObject(jswHeader, payload);

jwsObject.sign(signer);

jws = jwsObject.serialize();

} catch (Exception ex) {

throw new JsonProcessingException(ex.getClass().getTypeName()

+ " " + ex.getMessage());

}

return jws;

}

@Override

public String buildHMAC512SignedJwt(final String issuer, final String subject,

final List<String> audience)

throws JsonProcessingException {

String jwt = "";

try {

fetchSharedSecret();

if (!validateLengthOfSharedSecret(sharedSecret)) {

String msg = "The length of the secret is less than 128 characters.";

throw new JsonProcessingException(msg);

}

JWSSigner signer = new MACSigner(sharedSecret);

JWSHeader jswHeader = new JWSHeader(JWSAlgorithm.HS512);

Date currentTime = new Date();

//TODO: make json.expiration.time configurable: 1000 * 60 * 10 := 10 minutes

JWTClaimsSet jwtClaims = new JWTClaimsSet.Builder()

.issuer(issuer)

.subject(subject)

.audience(audience)

.expirationTime(new Date(new Date().getTime() + 600000))

.notBeforeTime(currentTime)

.issueTime(currentTime)

.jwtID(StringUtils.generateUUID())

100

.build();

101

102

SignedJWT signedJWT = new SignedJWT(jswHeader, jwtClaims);

103

signedJWT.sign(signer);

104

jwt = signedJWT.serialize();

105

} catch (Exception ex) {

106

throw new JsonProcessingException(ex.getClass().getTypeName()

107

+ " " + ex.getMessage());

}

return jwt;

}

@Override

public String parseHMAC512SingedJws(final String jws)

114

throws JsonProcessingException {

String payload = "";

try {

fetchSharedSecret();

JWSObject jwsObject = JWSObject.parse(jws);

120

JWSVerifier verifier = new MACVerifier(sharedSecret);

121

payload = jwsObject.getPayload().toString();

122

123

if (!jwsObject.verify(verifier)) {

124

LOGGER.log("JWS is not valid.", LogLevel.ERROR);

125

LOGGER.log("\t payload: " + payload, LogLevel.ERROR);

126

throw new Exception("JWS is not valid. - for security reasons rejected!");

127

}

128

129

} catch (Exception ex) {

130

throw new JsonProcessingException(ex.getClass().getTypeName()

131

+ " " + ex.getMessage());

}

return payload;

}

@Override

public String parseHMAC512SingedJwt(final String jwt)

138

throws JsonProcessingException {

String payload = "";

try {

fetchSharedSecret();

SignedJWT signedJWT = SignedJWT.parse(jwt);

144

JWSVerifier verifier = new MACVerifier(sharedSecret);

145

payload = signedJWT.getPayload().toString();

146

147

if (!signedJWT.verify(verifier)) {

148

LOGGER.log("JWT is not valid.", LogLevel.ERROR);

149

LOGGER.log("\t payload: " + payload, LogLevel.ERROR);

150

throw new Exception("JWT is not valid. - for security reasons rejected!");

151

}

152

153

} catch (Exception ex) {

154

throw new JsonProcessingException(ex.getClass().getTypeName()

155

+ " " + ex.getMessage());

}

return payload;

}

//--------------------------------------------------------------------------

161

private boolean validateLengthOfSharedSecret(final String secret) {

162

boolean success = false;

163

// 512 bits -> 64 byte = 128 chars

164

if (secret.length() >= Constraints.INT_128) {

success = true;

}

return success;

}

private void fetchSharedSecret() throws DAOException {

171

List<ConfigurationDO> configuration = configurationDAO

172

.getAllConfigurationSetEntries("core", VERSION, "json");

173

this.sharedSecret = configuration.get(0).getValue();

174

175

LOGGER.log("SEC: " + configuration.toString().substring(0, 30), LogLevel.DEBUG);

176

}

177

178

}

together Platform [Module:core] - Coverage Report

File NimbusJwt.java

Coverage histogram

Code metrics

Classes

Class NimbusJwt

Contributing tests

Contributing tests

Source view