Merge pull request #203 from AnuGayan/master-new

Improve OAuth flow when publish events

Author: lasanthaS

component/pom.xml

@@ -98,6 +98,10 @@
             <groupId>org.wso2.carbon.analytics</groupId>
             <artifactId>org.wso2.carbon.si.metrics.core</artifactId>
         </dependency>
+        <dependency>
+            <groupId>com.squareup.okhttp3</groupId>
+            <artifactId>okhttp</artifactId>
+        </dependency>
     </dependencies>
     <profiles>
         <profile>

component/src/main/java/io/siddhi/extension/io/http/sink/HttpSink.java

@@ -165,6 +165,19 @@
                         type = {DataType.STRING},
                         optional = true,
                         defaultValue = "-"),
+                @Parameter(
+                        name = "body.consumer.key",
+                        description = "Consumer key used for calling endpoints protected by OAuth 2.0 if it's " +
+                                "required to be sent in token request body",
+                        type = {DataType.STRING},
+                        optional = true,
+                        defaultValue = "-"),
+                @Parameter(
+                        name = "body.consumer.secret",
+                        description = "Consumer secret used for calling endpoints protected by OAuth 2.0",
+                        type = {DataType.STRING},
+                        optional = true,
+                        defaultValue = "-"),
                 @Parameter(
                         name = "token.url",
                         description = "Token URL to generate a new access tokens " +
@@ -179,6 +192,13 @@
                         type = {DataType.STRING},
                         optional = true,
                         defaultValue = "-"),
+                @Parameter(
+                        name = HttpConstants.OAUTH2_SCOPE_PARAMETER_NAME,
+                        description = "Standard OAuth 2.0 scope parameter",
+                        type = {DataType.STRING},
+                        optional = true,
+                        defaultValue = "default"
+                ),
                 @Parameter(
                         name = "headers",
                         description = "HTTP request headers in format `\"'<key>:<value>','<key>:<value>'\"`.\n" +
@@ -432,17 +452,22 @@
 )
 public class HttpSink extends Sink {
     private static final Logger log = Logger.getLogger(HttpSink.class);
-    String mapType;
-    Option httpHeaderOption;
-    Option httpMethodOption;
     protected String streamID;
     protected String consumerKey;
     protected String consumerSecret;
-    private String authorizationHeader;
     protected String userName;
     protected String userPassword;
     protected ClientConnector staticClientConnector;
     protected Option publisherURLOption;
+    protected SiddhiAppContext siddhiAppContext;
+    protected String oauthUsername;
+    protected String oauthUserPassword;
+    protected String authType;
+    protected String tokenURL;
+    String mapType;
+    Option httpHeaderOption;
+    Option httpMethodOption;
+    private String authorizationHeader;
     private String clientStoreFile;
     private String clientStorePass;
     private int socketIdleTimeout;
@@ -452,20 +477,18 @@ public class HttpSink extends Sink {
     private String parametersList;
     private String clientBootstrapConfiguration;
     private ConfigReader configReader;
-    protected SiddhiAppContext siddhiAppContext;
-    protected String oauthUsername;
-    protected String oauthUserPassword;
     private Option refreshToken;
-    protected String authType;
     private AccessTokenCache accessTokenCache = AccessTokenCache.getInstance();
-    protected String tokenURL;
     private String hostnameVerificationEnabled;
     private String sslVerificationDisabled;
     private Executor executor = null;
     private String publisherURL;
     protected SinkMetrics metrics;
     protected long startTime;
     protected long endTime;
+    private String bodyConsumerKey;
+    private String bodyConsumerSecret;
+    private String oauth2Scope;
 
     private DefaultHttpWsConnectorFactory httpConnectorFactory;
     private ProxyServerConfiguration proxyServerConfiguration;
@@ -519,6 +542,9 @@ protected StateFactory init(StreamDefinition outputStreamDefinition, OptionHolde
         this.httpMethodOption = optionHolder.getOrCreateOption(HttpConstants.METHOD, HttpConstants.DEFAULT_METHOD);
         this.consumerKey = optionHolder.validateAndGetStaticValue(HttpConstants.CONSUMER_KEY, EMPTY_STRING);
         this.consumerSecret = optionHolder.validateAndGetStaticValue(HttpConstants.CONSUMER_SECRET, EMPTY_STRING);
+        this.bodyConsumerKey = optionHolder.validateAndGetStaticValue(HttpConstants.BODY_CONSUMER_KEY, EMPTY_STRING);
+        this.bodyConsumerSecret = optionHolder.validateAndGetStaticValue(HttpConstants.BODY_CONSUMER_SECRET,
+                EMPTY_STRING);
         this.oauthUsername = optionHolder.validateAndGetStaticValue(HttpConstants.RECEIVER_OAUTH_USERNAME,
                 EMPTY_STRING);
         this.oauthUserPassword = optionHolder.validateAndGetStaticValue(HttpConstants.RECEIVER_OAUTH_PASSWORD,
@@ -527,6 +553,8 @@ protected StateFactory init(StreamDefinition outputStreamDefinition, OptionHolde
         this.tokenURL = optionHolder.validateAndGetStaticValue(HttpConstants.TOKEN_URL, EMPTY_STRING);
         this.clientStoreFile = optionHolder.validateAndGetStaticValue(HttpConstants.CLIENT_TRUSTSTORE_PATH_PARAM,
                 HttpSinkUtil.trustStorePath(configReader));
+        this.oauth2Scope = optionHolder.validateAndGetStaticValue(HttpConstants.OAUTH2_SCOPE_PARAMETER_NAME,
+                "default");
         clientStorePass = optionHolder.validateAndGetStaticValue(HttpConstants.CLIENT_TRUSTSTORE_PASSWORD_PARAM,
                 HttpSinkUtil.trustStorePassword(configReader));
         socketIdleTimeout = Integer.parseInt(optionHolder.validateAndGetStaticValue
@@ -554,6 +582,8 @@ protected StateFactory init(StreamDefinition outputStreamDefinition, OptionHolde
             authType = HttpConstants.BASIC_AUTH;
         } else if ((!HttpConstants.EMPTY_STRING.equals(consumerKey)
                 && !HttpConstants.EMPTY_STRING.equals(consumerSecret)) ||
+                (!HttpConstants.EMPTY_STRING.equals(bodyConsumerKey)
+                        && !HttpConstants.EMPTY_STRING.equals(bodyConsumerSecret)) ||
                 (!HttpConstants.EMPTY_STRING.equals(oauthUsername)
                         && !HttpConstants.EMPTY_STRING.equals(oauthUserPassword))) {
             authType = HttpConstants.OAUTH;
@@ -676,6 +706,7 @@ protected int sendRequest(Object payload, DynamicOptions dynamicOptions, List<He
                         clientConnector.getPublisherURL() + ", " + e + ". Message dropped.");
             }
             HttpCarbonMessage response = listener.getHttpResponseMessage();
+            log.info(" Response: *********** " + response.getNettyHttpResponse().status());
             return response.getNettyHttpResponse().status().code();
         } else {
             HttpResponseFuture responseFuture = clientConnector.send(cMessage);
@@ -707,7 +738,14 @@ protected void sendOauthRequest(Object payload, DynamicOptions dynamicOptions, L
                                     ClientConnector clientConnector)
             throws ConnectionUnavailableException {
         //generate encoded base64 auth for getting refresh token
-        String consumerKeyValue = consumerKey + ":" + consumerSecret;
+        String consumerKeyValue;
+
+        if (!HttpConstants.EMPTY_STRING.equals(this.consumerKey)
+                && !HttpConstants.EMPTY_STRING.equals(this.consumerSecret)) {
+            consumerKeyValue = consumerKey + ":" + consumerSecret;
+        } else {
+            consumerKeyValue = bodyConsumerKey + ":" + bodyConsumerSecret;
+        }
         String encodedAuth = "Basic " + encodeBase64(consumerKeyValue)
                 .replaceAll(HttpConstants.NEW_LINE, HttpConstants.EMPTY_STRING);
         //check the availability of access token in the header
@@ -858,14 +896,15 @@ private void requestForNewAccessToken(Object payload, DynamicOptions dynamicOpti
     void getAccessToken(DynamicOptions dynamicOptions, String encodedAuth, String tokenURL) {
         this.tokenURL = tokenURL;
         HttpsClient httpsClient = new HttpsClient();
-        if (!HttpConstants.EMPTY_STRING.equals(oauthUsername) &&
-                !HttpConstants.EMPTY_STRING.equals(oauthUserPassword)) {
-            httpsClient.getPasswordGrantAccessToken(tokenURL, clientStoreFile,
-                    clientStorePass, oauthUsername, oauthUserPassword, encodedAuth);
-        } else if (!HttpConstants.EMPTY_STRING.equals(refreshToken.getValue(dynamicOptions)) ||
+        if (!HttpConstants.EMPTY_STRING.equals(refreshToken.getValue(dynamicOptions)) ||
                 accessTokenCache.getRefreshtoken(encodedAuth) != null) {
             httpsClient.getRefreshGrantAccessToken(tokenURL, clientStoreFile,
-                    clientStorePass, encodedAuth, refreshToken.getValue(dynamicOptions));
+                    clientStorePass, encodedAuth, refreshToken.getValue(dynamicOptions), oauthUsername,
+                    oauthUserPassword, bodyConsumerKey, bodyConsumerSecret, oauth2Scope);
+        } else if (!HttpConstants.EMPTY_STRING.equals(oauthUsername) &&
+                !HttpConstants.EMPTY_STRING.equals(oauthUserPassword)) {
+            httpsClient.getPasswordGrantAccessToken(tokenURL, clientStoreFile, clientStorePass, oauthUsername,
+                    oauthUserPassword, encodedAuth, bodyConsumerKey, bodyConsumerSecret, oauth2Scope);
         } else {
             httpsClient.getClientGrantAccessToken(tokenURL, clientStoreFile,
                     clientStorePass, encodedAuth);
@@ -1062,7 +1101,8 @@ public ClientConnector createClientConnector(DynamicOptions dynamicOptions) {
             publisherURL = publisherURLOption.getValue(dynamicOptions);
         }
         if (authType.equals(HttpConstants.OAUTH)) {
-            if (EMPTY_STRING.equals(consumerSecret) || EMPTY_STRING.equals(consumerKey)) {
+            if ((EMPTY_STRING.equals(consumerSecret) || EMPTY_STRING.equals(consumerKey))
+                    && (EMPTY_STRING.equals(bodyConsumerKey) || EMPTY_STRING.equals(bodyConsumerSecret))) {
                 throw new SiddhiAppCreationException(HttpConstants.CONSUMER_KEY + " and " +
                         HttpConstants.CONSUMER_SECRET + " found empty but it is Mandatory field in " +
                         HttpConstants.HTTP_SINK_ID + " in " + streamID);

component/src/main/java/io/siddhi/extension/io/http/sink/updatetoken/HttpRequest.java

@@ -18,87 +18,52 @@
  */
 package io.siddhi.extension.io.http.sink.updatetoken;
 
-import io.netty.buffer.Unpooled;
-import io.netty.handler.codec.http.DefaultHttpRequest;
-import io.netty.handler.codec.http.DefaultLastHttpContent;
-import io.netty.handler.codec.http.HttpMethod;
-import io.netty.handler.codec.http.HttpVersion;
+import io.netty.handler.codec.http.HttpHeaderValues;
 import io.siddhi.extension.io.http.util.HttpConstants;
+import okhttp3.Headers;
+import okhttp3.MediaType;
+import okhttp3.OkHttpClient;
+import okhttp3.Request;
+import okhttp3.RequestBody;
+import okhttp3.Response;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
-import org.wso2.transport.http.netty.contract.Constants;
-import org.wso2.transport.http.netty.contract.HttpClientConnector;
-import org.wso2.transport.http.netty.contract.HttpResponseFuture;
-import org.wso2.transport.http.netty.message.HttpCarbonMessage;
-import org.wso2.transport.http.netty.message.HttpMessageDataStreamer;
 
-import java.io.BufferedReader;
 import java.io.IOException;
-import java.io.InputStream;
-import java.io.InputStreamReader;
-import java.nio.ByteBuffer;
-import java.nio.charset.Charset;
+import java.nio.charset.StandardCharsets;
 import java.util.ArrayList;
+import java.util.List;
 import java.util.Map;
-import java.util.concurrent.CountDownLatch;
-import java.util.concurrent.TimeUnit;
-import java.util.stream.Collectors;
+
+import static io.siddhi.extension.io.http.util.HttpConstants.HTTP_CONTENT_TYPE;
+import static io.siddhi.extension.io.http.util.HttpConstants.HTTP_METHOD_POST;
 
 /**
  * {@code HttpRequest} Handle the HTTP request for invalid access token.
  */
 public class HttpRequest {
 
-    private static final Logger LOG = LoggerFactory.getLogger(HttpRequest.class);
+    private static final Logger log = LoggerFactory.getLogger(HttpRequest.class);
 
-    public static ArrayList<String> sendPostRequest(HttpClientConnector httpClientConnector, String serverScheme,
-                                                    String serverHost, int serverPort, String serverPath,
-                                                    String payload, Map<String, String> headers) {
-        ArrayList<String> responses = new ArrayList<>();
+    public static List<String> getResponse(String tokenUrl, String encodedAuth, String payload, OkHttpClient client,
+                                           Map<String, String> headers) {
+        List<String> responses = new ArrayList<>();
+        MediaType mediaType = MediaType.parse(String.valueOf(HttpHeaderValues.APPLICATION_X_WWW_FORM_URLENCODED));
+        RequestBody requestBody = RequestBody.create(payload.getBytes(StandardCharsets.UTF_8), mediaType);
+        headers.put(HTTP_CONTENT_TYPE, String.valueOf(HttpHeaderValues.APPLICATION_X_WWW_FORM_URLENCODED));
+        headers.put(HttpConstants.AUTHORIZATION_HEADER, encodedAuth);
 
-        HttpCarbonMessage msg = createHttpPostReq(serverScheme, serverHost, serverPort, serverPath, payload);
-        for (Map.Entry<String, String> entry : headers.entrySet()) {
-            msg.setHeader(entry.getKey(), entry.getValue());
-        }
-        CountDownLatch latch = new CountDownLatch(1);
-        DefaultListener listener = new DefaultListener(latch, HttpConstants.OAUTH);
-        HttpResponseFuture responseFuture = httpClientConnector.send(msg);
-        responseFuture.setHttpConnectorListener(listener);
+        Headers headerbuilder = Headers.of(headers);
+
+        Request request = new Request.Builder().url(tokenUrl).method(HTTP_METHOD_POST, requestBody)
+                .headers(headerbuilder).build();
         try {
-            boolean latchCount = latch.await(30, TimeUnit.SECONDS);
-            if (!latchCount) {
-                LOG.debug("Time out due to getting new access token. ");
-            }
-        } catch (InterruptedException e) {
-            LOG.debug("Time out due to getting new access token. " + e);
-        }
-        HttpCarbonMessage response = listener.getHttpResponseMessage();
-        String statusCode = Integer.toString(response.getNettyHttpResponse().status().code());
-        responses.add(statusCode);
-        InputStream httpMessageDataStreamer = new HttpMessageDataStreamer(response).getInputStream();
-        InputStreamReader inputStreamReader = new InputStreamReader(httpMessageDataStreamer, Charset.defaultCharset());
-        try (BufferedReader buffer = new BufferedReader(inputStreamReader)) {
-            String responsePayload = buffer.lines().collect(Collectors.joining("\n"));
-            responses.add(responsePayload);
+            Response response = client.newCall(request).execute();
+            responses.add(String.valueOf(response.code()));
+            responses.add(response.body().string());
         } catch (IOException e) {
-            LOG.debug("There was an error in reading the file while generating new access token. " + e);
+            log.error("Error occurred while generating a new access token ", e);
         }
         return responses;
     }
-
-    private static HttpCarbonMessage createHttpPostReq(String serverScheme, String serverHost, int serverPort,
-                                                       String serverPath, String payload) {
-        HttpCarbonMessage httpPostRequest = new HttpCarbonMessage(
-                new DefaultHttpRequest(HttpVersion.HTTP_1_1, HttpMethod.POST, serverPath));
-        httpPostRequest.setProperty(Constants.PROTOCOL, serverScheme);
-        httpPostRequest.setProperty(Constants.HTTP_HOST, serverHost);
-        httpPostRequest.setProperty(Constants.HTTP_PORT, serverPort);
-        httpPostRequest.setProperty(Constants.TO, serverPath);
-        httpPostRequest.setHttpMethod(Constants.HTTP_POST_METHOD);
-        // this header is mandatory otherwise the request would result in 400 status
-        httpPostRequest.setHeader(Constants.HTTP_HOST, serverHost);
-        ByteBuffer byteBuffer = ByteBuffer.wrap(payload.getBytes(Charset.forName("UTF-8")));
-        httpPostRequest.addHttpContent(new DefaultLastHttpContent(Unpooled.wrappedBuffer(byteBuffer)));
-        return httpPostRequest;
-    }
 }