Example 1 with PowerAuthUpgradeException
use of io.getlime.security.powerauth.rest.api.spring.exception.PowerAuthUpgradeException in project powerauth-restful-integration by lime-company.
the class UpgradeService method upgradeCommit.
/**
* Commit upgrade of activation to version 3.
* @param signatureHeader PowerAuth signature HTTP header.
* @param httpServletRequest HTTP servlet request.
* @return Commit upgrade response.
* @throws PowerAuthAuthenticationException in case authentication fails.
* @throws PowerAuthUpgradeException In case upgrade commit fails.
*/
public Response upgradeCommit(String signatureHeader, HttpServletRequest httpServletRequest) throws PowerAuthAuthenticationException, PowerAuthUpgradeException {
try {
// Extract request body
final byte[] requestBodyBytes = authenticationProvider.extractRequestBodyBytes(httpServletRequest);
if (requestBodyBytes == null || requestBodyBytes.length == 0) {
// Expected request body is {}, do not accept empty body
logger.warn("Empty request body");
throw new PowerAuthInvalidRequestException();
}
// Verify signature, force signature version during upgrade to version 3
final List<PowerAuthSignatureTypes> allowedSignatureTypes = Collections.singletonList(PowerAuthSignatureTypes.POSSESSION);
final PowerAuthApiAuthentication authentication = authenticationProvider.validateRequestSignatureWithActivationDetails("POST", requestBodyBytes, "/pa/upgrade/commit", signatureHeader, allowedSignatureTypes, 3);
// In case signature verification fails, upgrade fails, too
if (!authentication.getAuthenticationContext().isValid() || authentication.getActivationContext().getActivationId() == null) {
logger.debug("Signature validation failed");
throw new PowerAuthSignatureInvalidException();
}
// Get signature HTTP headers
final String activationId = authentication.getActivationContext().getActivationId();
final PowerAuthSignatureHttpHeader httpHeader = (PowerAuthSignatureHttpHeader) authentication.getHttpHeader();
final String applicationKey = httpHeader.getApplicationKey();
// Commit upgrade on PowerAuth server
final CommitUpgradeResponse upgradeResponse = powerAuthClient.commitUpgrade(activationId, applicationKey);
if (upgradeResponse.isCommitted()) {
return new Response();
} else {
logger.debug("Upgrade commit failed");
throw new PowerAuthUpgradeException();
}
} catch (PowerAuthAuthenticationException ex) {
throw ex;
} catch (Exception ex) {
logger.warn("PowerAuth upgrade commit failed, error: {}", ex.getMessage());
logger.debug(ex.getMessage(), ex);
throw new PowerAuthUpgradeException();
}
}
Also used :
CommitUpgradeResponse(com.wultra.security.powerauth.client.v3.CommitUpgradeResponse)
PowerAuthSignatureInvalidException(io.getlime.security.powerauth.rest.api.spring.exception.authentication.PowerAuthSignatureInvalidException)
PowerAuthUpgradeException(io.getlime.security.powerauth.rest.api.spring.exception.PowerAuthUpgradeException)
PowerAuthAuthenticationException(io.getlime.security.powerauth.rest.api.spring.exception.PowerAuthAuthenticationException)
PowerAuthUpgradeException(io.getlime.security.powerauth.rest.api.spring.exception.PowerAuthUpgradeException)
PowerAuthAuthenticationException(io.getlime.security.powerauth.rest.api.spring.exception.PowerAuthAuthenticationException)
PowerAuthInvalidRequestException(io.getlime.security.powerauth.rest.api.spring.exception.authentication.PowerAuthInvalidRequestException)
PowerAuthSignatureInvalidException(io.getlime.security.powerauth.rest.api.spring.exception.authentication.PowerAuthSignatureInvalidException)
Response(io.getlime.core.rest.model.base.response.Response)
EciesEncryptedResponse(io.getlime.security.powerauth.rest.api.model.response.v3.EciesEncryptedResponse)
CommitUpgradeResponse(com.wultra.security.powerauth.client.v3.CommitUpgradeResponse)
StartUpgradeResponse(com.wultra.security.powerauth.client.v3.StartUpgradeResponse)
PowerAuthInvalidRequestException(io.getlime.security.powerauth.rest.api.spring.exception.authentication.PowerAuthInvalidRequestException)
PowerAuthSignatureHttpHeader(io.getlime.security.powerauth.http.PowerAuthSignatureHttpHeader)
PowerAuthSignatureTypes(io.getlime.security.powerauth.crypto.lib.enums.PowerAuthSignatureTypes)
PowerAuthApiAuthentication(io.getlime.security.powerauth.rest.api.spring.authentication.PowerAuthApiAuthentication)
Example 2 with PowerAuthUpgradeException
use of io.getlime.security.powerauth.rest.api.spring.exception.PowerAuthUpgradeException in project powerauth-restful-integration by lime-company.
the class UpgradeService method upgradeStart.
/**
* Start upgrade of activation to version 3.
* @param request ECIES encrypted upgrade start request.
* @param header PowerAuth encryption HTTP header.
* @return ECIES encrypted upgrade activation response.
* @throws PowerAuthUpgradeException In case upgrade start fails.
*/
public EciesEncryptedResponse upgradeStart(EciesEncryptedRequest request, PowerAuthEncryptionHttpHeader header) throws PowerAuthUpgradeException {
try {
// Fetch data from the request
final String ephemeralPublicKey = request.getEphemeralPublicKey();
final String encryptedData = request.getEncryptedData();
final String mac = request.getMac();
final String nonce = request.getNonce();
// Get ECIES headers
final String activationId = header.getActivationId();
final String applicationKey = header.getApplicationKey();
// Start upgrade on PowerAuth server
final StartUpgradeResponse upgradeResponse = powerAuthClient.startUpgrade(activationId, applicationKey, ephemeralPublicKey, encryptedData, mac, nonce);
// Prepare a response
final EciesEncryptedResponse response = new EciesEncryptedResponse();
response.setMac(upgradeResponse.getMac());
response.setEncryptedData(upgradeResponse.getEncryptedData());
return response;
} catch (Exception ex) {
logger.warn("PowerAuth upgrade start failed, error: {}", ex.getMessage());
logger.debug(ex.getMessage(), ex);
throw new PowerAuthUpgradeException();
}
}
Also used :
StartUpgradeResponse(com.wultra.security.powerauth.client.v3.StartUpgradeResponse)
PowerAuthUpgradeException(io.getlime.security.powerauth.rest.api.spring.exception.PowerAuthUpgradeException)
EciesEncryptedResponse(io.getlime.security.powerauth.rest.api.model.response.v3.EciesEncryptedResponse)
PowerAuthUpgradeException(io.getlime.security.powerauth.rest.api.spring.exception.PowerAuthUpgradeException)
PowerAuthAuthenticationException(io.getlime.security.powerauth.rest.api.spring.exception.PowerAuthAuthenticationException)
PowerAuthInvalidRequestException(io.getlime.security.powerauth.rest.api.spring.exception.authentication.PowerAuthInvalidRequestException)
PowerAuthSignatureInvalidException(io.getlime.security.powerauth.rest.api.spring.exception.authentication.PowerAuthSignatureInvalidException)
Aggregations
StartUpgradeResponse (com.wultra.security.powerauth.client.v3.StartUpgradeResponse)2
EciesEncryptedResponse (io.getlime.security.powerauth.rest.api.model.response.v3.EciesEncryptedResponse)2
PowerAuthAuthenticationException (io.getlime.security.powerauth.rest.api.spring.exception.PowerAuthAuthenticationException)2
PowerAuthUpgradeException (io.getlime.security.powerauth.rest.api.spring.exception.PowerAuthUpgradeException)2
PowerAuthInvalidRequestException (io.getlime.security.powerauth.rest.api.spring.exception.authentication.PowerAuthInvalidRequestException)2
PowerAuthSignatureInvalidException (io.getlime.security.powerauth.rest.api.spring.exception.authentication.PowerAuthSignatureInvalidException)2
CommitUpgradeResponse (com.wultra.security.powerauth.client.v3.CommitUpgradeResponse)1
Response (io.getlime.core.rest.model.base.response.Response)1
PowerAuthSignatureTypes (io.getlime.security.powerauth.crypto.lib.enums.PowerAuthSignatureTypes)1
PowerAuthSignatureHttpHeader (io.getlime.security.powerauth.http.PowerAuthSignatureHttpHeader)1
PowerAuthApiAuthentication (io.getlime.security.powerauth.rest.api.spring.authentication.PowerAuthApiAuthentication)1
