Example 1 with BasicAuthOptions
use of io.apiman.common.config.options.BasicAuthOptions in project apiman by apiman.
the class HttpApiConnection method connect.
/**
* Connects to the back end system.
*/
private void connect() throws ConnectorException {
try {
String endpoint = ApimanPathUtils.join(api.getEndpoint(), request.getDestination());
if (request.getQueryParams() != null && !request.getQueryParams().isEmpty()) {
// $NON-NLS-1$
String delim = "?";
for (Entry<String, String> entry : request.getQueryParams()) {
endpoint += delim + entry.getKey();
if (entry.getValue() != null) {
// $NON-NLS-1$ //$NON-NLS-2$
endpoint += "=" + URLEncoder.encode(entry.getValue(), "UTF-8");
}
// $NON-NLS-1$
delim = "&";
}
}
URL url = new URL(endpoint);
OkUrlFactory factory = new OkUrlFactory(client);
connection = factory.open(url);
boolean isSsl = connection instanceof HttpsURLConnection;
if (requiredAuthType == RequiredAuthType.MTLS && !isSsl) {
// $NON-NLS-1$
throw new ConnectorException("Mutually authenticating TLS requested, but insecure endpoint protocol was indicated.");
}
if (requiredAuthType == RequiredAuthType.BASIC) {
BasicAuthOptions options = new BasicAuthOptions(api.getEndpointProperties());
if (options.getUsername() != null && options.getPassword() != null) {
if (options.isRequireSSL() && !isSsl) {
// $NON-NLS-1$
throw new ConnectorException("Endpoint security requested (BASIC auth) but endpoint is not secure (SSL).");
}
String up = options.getUsername() + ':' + options.getPassword();
StringBuilder builder = new StringBuilder();
// $NON-NLS-1$
builder.append("Basic ");
builder.append(Base64.encodeBase64String(up.getBytes()));
// $NON-NLS-1$
connection.setRequestProperty("Authorization", builder.toString());
// $NON-NLS-1$
connectorConfig.suppressRequestHeader("Authorization");
}
}
if (hasDataPolicy) {
// $NON-NLS-1$
connectorConfig.suppressRequestHeader("Content-Length");
}
if (isSsl) {
HttpsURLConnection https = (HttpsURLConnection) connection;
SSLSocketFactory socketFactory = sslStrategy.getSocketFactory();
https.setSSLSocketFactory(socketFactory);
https.setHostnameVerifier(sslStrategy.getHostnameVerifier());
}
setConnectTimeout(connection);
setReadTimeout(connection);
if (request.getType().equalsIgnoreCase("PUT") || request.getType().equalsIgnoreCase("POST")) {
// $NON-NLS-1$ //$NON-NLS-2$
connection.setDoOutput(true);
} else {
connection.setDoOutput(false);
}
connection.setDoInput(true);
connection.setUseCaches(false);
connection.setRequestMethod(request.getType());
// Set the request headers
for (Entry<String, String> entry : request.getHeaders()) {
String hkey = entry.getKey();
String hval = entry.getValue();
if (!connectorConfig.getSuppressedRequestHeaders().contains(hkey)) {
connection.addRequestProperty(hkey, hval);
}
}
// Set or reset mandatory headers
// $NON-NLS-1$
connection.setRequestProperty("Host", url.getHost() + determinePort(url));
connection.connect();
connected = true;
} catch (IOException error) {
handleConnectionError(error);
}
}
Also used :
OkUrlFactory(io.apiman.gateway.platforms.servlet.connectors.ok.OkUrlFactory)
BasicAuthOptions(io.apiman.common.config.options.BasicAuthOptions)
ConnectorException(io.apiman.gateway.engine.beans.exceptions.ConnectorException)
IOException(java.io.IOException)
SSLSocketFactory(javax.net.ssl.SSLSocketFactory)
URL(java.net.URL)
HttpsURLConnection(javax.net.ssl.HttpsURLConnection)
Aggregations
BasicAuthOptions (io.apiman.common.config.options.BasicAuthOptions)1
ConnectorException (io.apiman.gateway.engine.beans.exceptions.ConnectorException)1
OkUrlFactory (io.apiman.gateway.platforms.servlet.connectors.ok.OkUrlFactory)1
IOException (java.io.IOException)1
URL (java.net.URL)1
HttpsURLConnection (javax.net.ssl.HttpsURLConnection)1
SSLSocketFactory (javax.net.ssl.SSLSocketFactory)1
