Example 21 with CreateSignatureInterceptor
use of org.apache.cxf.rs.security.httpsignature.filters.CreateSignatureInterceptor in project cxf by apache.
the class JAXRSHTTPSignatureTest method testHttpSignatureSignSpecificHeader.
@Test
public void testHttpSignatureSignSpecificHeader() throws Exception {
URL busFile = JAXRSHTTPSignatureTest.class.getResource("client.xml");
CreateSignatureInterceptor signatureFilter = new CreateSignatureInterceptor();
KeyStore keyStore = KeyStore.getInstance("JKS");
keyStore.load(ClassLoaderUtils.getResourceAsStream("keys/alice.jks", this.getClass()), "password".toCharArray());
PrivateKey privateKey = (PrivateKey) keyStore.getKey("alice", "password".toCharArray());
assertNotNull(privateKey);
List<String> headerList = Arrays.asList("accept", "(request-target)");
MessageSigner messageSigner = new MessageSigner(keyId -> privateKey, "alice-key-id", headerList);
signatureFilter.setMessageSigner(messageSigner);
String address = "http://localhost:" + PORT + "/httpsig/bookstore/books";
WebClient client = WebClient.create(address, Collections.singletonList(signatureFilter), busFile.toString());
client.type("application/xml").accept("application/xml");
Response response = client.post(new Book("CXF", 126L));
assertEquals(200, response.getStatus());
Book returnedBook = response.readEntity(Book.class);
assertEquals(126L, returnedBook.getId());
}
Also used :
Response(javax.ws.rs.core.Response)
MessageSigner(org.apache.cxf.rs.security.httpsignature.MessageSigner)
PrivateKey(java.security.PrivateKey)
CreateSignatureInterceptor(org.apache.cxf.rs.security.httpsignature.filters.CreateSignatureInterceptor)
Book(org.apache.cxf.systest.jaxrs.security.Book)
KeyStore(java.security.KeyStore)
WebClient(org.apache.cxf.jaxrs.client.WebClient)
URL(java.net.URL)
Test(org.junit.Test)
Example 22 with CreateSignatureInterceptor
use of org.apache.cxf.rs.security.httpsignature.filters.CreateSignatureInterceptor in project cxf by apache.
the class JAXRSHTTPSignatureTest method testHttpSignatureRsaSha512.
@Test
public void testHttpSignatureRsaSha512() throws Exception {
URL busFile = JAXRSHTTPSignatureTest.class.getResource("client.xml");
CreateSignatureInterceptor signatureFilter = new CreateSignatureInterceptor();
KeyStore keyStore = KeyStore.getInstance("JKS");
keyStore.load(ClassLoaderUtils.getResourceAsStream("keys/alice.jks", this.getClass()), "password".toCharArray());
PrivateKey privateKey = (PrivateKey) keyStore.getKey("alice", "password".toCharArray());
assertNotNull(privateKey);
MessageSigner messageSigner = new MessageSigner("rsa-sha512", keyId -> privateKey, "alice-key-id");
signatureFilter.setMessageSigner(messageSigner);
String address = "http://localhost:" + PORT + "/httpsigrsasha512/bookstore/books";
WebClient client = WebClient.create(address, Collections.singletonList(signatureFilter), busFile.toString());
client.type("application/xml").accept("application/xml");
Response response = client.post(new Book("CXF", 126L));
assertEquals(200, response.getStatus());
Book returnedBook = response.readEntity(Book.class);
assertEquals(126L, returnedBook.getId());
}
Also used :
Response(javax.ws.rs.core.Response)
MessageSigner(org.apache.cxf.rs.security.httpsignature.MessageSigner)
PrivateKey(java.security.PrivateKey)
CreateSignatureInterceptor(org.apache.cxf.rs.security.httpsignature.filters.CreateSignatureInterceptor)
Book(org.apache.cxf.systest.jaxrs.security.Book)
KeyStore(java.security.KeyStore)
WebClient(org.apache.cxf.jaxrs.client.WebClient)
URL(java.net.URL)
Test(org.junit.Test)
Example 23 with CreateSignatureInterceptor
use of org.apache.cxf.rs.security.httpsignature.filters.CreateSignatureInterceptor in project cxf by apache.
the class JAXRSHTTPSignatureTest method testMissingSignedDigestHeader.
@Test
public void testMissingSignedDigestHeader() throws Exception {
URL busFile = JAXRSHTTPSignatureTest.class.getResource("client.xml");
CreateSignatureInterceptor signatureFilter = new CreateSignatureInterceptor();
KeyStore keyStore = KeyStore.getInstance("JKS");
keyStore.load(ClassLoaderUtils.getResourceAsStream("keys/alice.jks", this.getClass()), "password".toCharArray());
PrivateKey privateKey = (PrivateKey) keyStore.getKey("alice", "password".toCharArray());
assertNotNull(privateKey);
List<String> headerList = Arrays.asList("accept", "(request-target)");
MessageSigner messageSigner = new MessageSigner(keyId -> privateKey, "alice-key-id", headerList);
signatureFilter.setMessageSigner(messageSigner);
String address = "http://localhost:" + PORT + "/httpsigprops/bookstore/books";
WebClient client = WebClient.create(address, Collections.singletonList(signatureFilter), busFile.toString());
client.type("application/xml").accept("application/xml");
Response response = client.post(new Book("CXF", 126L));
assertEquals(400, response.getStatus());
String address2 = "http://localhost:" + PORT + "/httpsigrequired/bookstore/books";
client = WebClient.create(address2, Collections.singletonList(signatureFilter), busFile.toString());
client.type("application/xml").accept("application/xml");
response = client.post(new Book("CXF", 126L));
assertEquals(400, response.getStatus());
}
Also used :
Response(javax.ws.rs.core.Response)
MessageSigner(org.apache.cxf.rs.security.httpsignature.MessageSigner)
PrivateKey(java.security.PrivateKey)
CreateSignatureInterceptor(org.apache.cxf.rs.security.httpsignature.filters.CreateSignatureInterceptor)
Book(org.apache.cxf.systest.jaxrs.security.Book)
KeyStore(java.security.KeyStore)
WebClient(org.apache.cxf.jaxrs.client.WebClient)
URL(java.net.URL)
Test(org.junit.Test)
Example 24 with CreateSignatureInterceptor
use of org.apache.cxf.rs.security.httpsignature.filters.CreateSignatureInterceptor in project cxf by apache.
the class JAXRSHTTPSignatureTest method testHeaderTrailingWhitespace.
@Test
public void testHeaderTrailingWhitespace() throws Exception {
URL busFile = JAXRSHTTPSignatureTest.class.getResource("client.xml");
CreateSignatureInterceptor signatureFilter = new CreateSignatureInterceptor();
KeyStore keyStore = KeyStore.getInstance("JKS");
keyStore.load(ClassLoaderUtils.getResourceAsStream("keys/alice.jks", this.getClass()), "password".toCharArray());
PrivateKey privateKey = (PrivateKey) keyStore.getKey("alice", "password".toCharArray());
assertNotNull(privateKey);
List<String> headerList = Arrays.asList("custom", "(request-target)");
MessageSigner messageSigner = new MessageSigner(keyid -> privateKey, "alice-key-id", headerList);
signatureFilter.setMessageSigner(messageSigner);
String address = "http://localhost:" + PORT + "/httpsig/bookstore/books";
WebClient client = WebClient.create(address, Collections.singletonList(signatureFilter), busFile.toString());
client.type("application/xml").accept("application/xml");
client.header("custom", " someval ");
Response response = client.post(new Book("CXF", 126L));
assertEquals(200, response.getStatus());
Book returnedBook = response.readEntity(Book.class);
assertEquals(126L, returnedBook.getId());
}
Also used :
Response(javax.ws.rs.core.Response)
MessageSigner(org.apache.cxf.rs.security.httpsignature.MessageSigner)
PrivateKey(java.security.PrivateKey)
CreateSignatureInterceptor(org.apache.cxf.rs.security.httpsignature.filters.CreateSignatureInterceptor)
Book(org.apache.cxf.systest.jaxrs.security.Book)
KeyStore(java.security.KeyStore)
WebClient(org.apache.cxf.jaxrs.client.WebClient)
URL(java.net.URL)
Test(org.junit.Test)
Example 25 with CreateSignatureInterceptor
use of org.apache.cxf.rs.security.httpsignature.filters.CreateSignatureInterceptor in project cxf by apache.
the class JAXRSHTTPSignatureTest method testUnknownKeyId.
@Test
public void testUnknownKeyId() throws Exception {
URL busFile = JAXRSHTTPSignatureTest.class.getResource("client.xml");
CreateSignatureInterceptor signatureFilter = new CreateSignatureInterceptor();
KeyStore keyStore = KeyStore.getInstance("JKS");
keyStore.load(ClassLoaderUtils.getResourceAsStream("keys/alice.jks", this.getClass()), "password".toCharArray());
PrivateKey privateKey = (PrivateKey) keyStore.getKey("alice", "password".toCharArray());
assertNotNull(privateKey);
MessageSigner messageSigner = new MessageSigner(keyId -> privateKey, "unknown-key-id");
signatureFilter.setMessageSigner(messageSigner);
String address = "http://localhost:" + PORT + "/httpsig/bookstore/books";
WebClient client = WebClient.create(address, Collections.singletonList(signatureFilter), busFile.toString());
client.type("application/xml").accept("application/xml");
Response response = client.post(new Book("CXF", 126L));
assertEquals(400, response.getStatus());
}
Also used :
Response(javax.ws.rs.core.Response)
MessageSigner(org.apache.cxf.rs.security.httpsignature.MessageSigner)
PrivateKey(java.security.PrivateKey)
CreateSignatureInterceptor(org.apache.cxf.rs.security.httpsignature.filters.CreateSignatureInterceptor)
Book(org.apache.cxf.systest.jaxrs.security.Book)
KeyStore(java.security.KeyStore)
WebClient(org.apache.cxf.jaxrs.client.WebClient)
URL(java.net.URL)
Test(org.junit.Test)
Aggregations
CreateSignatureInterceptor (org.apache.cxf.rs.security.httpsignature.filters.CreateSignatureInterceptor)30
Test (org.junit.Test)30
URL (java.net.URL)27
WebClient (org.apache.cxf.jaxrs.client.WebClient)27
Book (org.apache.cxf.systest.jaxrs.security.Book)27
Response (javax.ws.rs.core.Response)26
KeyStore (java.security.KeyStore)22
PrivateKey (java.security.PrivateKey)22
MessageSigner (org.apache.cxf.rs.security.httpsignature.MessageSigner)21
HashMap (java.util.HashMap)9
VerifySignatureClientFilter (org.apache.cxf.rs.security.httpsignature.filters.VerifySignatureClientFilter)8
ArrayList (java.util.ArrayList)5
MessageVerifier (org.apache.cxf.rs.security.httpsignature.MessageVerifier)5
ClientRequestContext (javax.ws.rs.client.ClientRequestContext)4
IOException (java.io.IOException)3
NoSuchAlgorithmException (java.security.NoSuchAlgorithmException)3
ContainerRequestContext (javax.ws.rs.container.ContainerRequestContext)3
MultivaluedHashMap (javax.ws.rs.core.MultivaluedHashMap)3
Message (org.apache.cxf.message.Message)3
MessageImpl (org.apache.cxf.message.MessageImpl)3
