Examples with AbstractLwM2MBootstrapServerCredential org.thingsboard.server.common.data.device.profile.lwm2m.bootstrap.AbstractLwM2MBootstrapServerCredential used on opensource projects

Example 1 with AbstractLwM2MBootstrapServerCredential

use of org.thingsboard.server.common.data.device.profile.lwm2m.bootstrap.AbstractLwM2MBootstrapServerCredential in project thingsboard by thingsboard.

the class LwM2MBootstrapSecurityStore method getValidatedSecurityMode.

/**
 * Bootstrap security have to sync between (bootstrapServer in credential and  bootstrapServer in profile)
 * and (lwm2mServer  in credential and lwm2mServer  in profile
 *
 * @return false if not sync between SecurityMode of Bootstrap credential and profile
 */
private boolean getValidatedSecurityMode(LwM2MBootstrapConfig lwM2MBootstrapConfig) {
    LwM2MSecurityMode bootstrapServerSecurityMode = lwM2MBootstrapConfig.getBootstrapServer().getSecurityMode();
    LwM2MSecurityMode lwm2mServerSecurityMode = lwM2MBootstrapConfig.getLwm2mServer().getSecurityMode();
    AtomicBoolean validBs = new AtomicBoolean(true);
    AtomicBoolean validLw = new AtomicBoolean(true);
    lwM2MBootstrapConfig.getServerConfiguration().forEach(serverCredential -> {
        if (((AbstractLwM2MBootstrapServerCredential) serverCredential).isBootstrapServerIs()) {
            if (!bootstrapServerSecurityMode.equals(serverCredential.getSecurityMode())) {
                validBs.set(false);
            }
        } else {
            if (!lwm2mServerSecurityMode.equals(serverCredential.getSecurityMode())) {
                validLw.set(false);
            }
        }
    });
    return validBs.get() && validLw.get();
}

Example 2 with AbstractLwM2MBootstrapServerCredential

use of org.thingsboard.server.common.data.device.profile.lwm2m.bootstrap.AbstractLwM2MBootstrapServerCredential in project thingsboard by thingsboard.

the class AbstractLwM2MIntegrationTest method getBootstrapServerCredentialNoSec.

private AbstractLwM2MBootstrapServerCredential getBootstrapServerCredentialNoSec(boolean isBootstrap) {
    AbstractLwM2MBootstrapServerCredential bootstrapServerCredential = new NoSecLwM2MBootstrapServerCredential();
    bootstrapServerCredential.setServerPublicKey("");
    bootstrapServerCredential.setShortServerId(isBootstrap ? shortServerIdBs : shortServerId);
    bootstrapServerCredential.setBootstrapServerIs(isBootstrap);
    bootstrapServerCredential.setHost(isBootstrap ? hostBs : host);
    bootstrapServerCredential.setPort(isBootstrap ? portBs : port);
    return bootstrapServerCredential;
}

Example 3 with AbstractLwM2MBootstrapServerCredential

use of org.thingsboard.server.common.data.device.profile.lwm2m.bootstrap.AbstractLwM2MBootstrapServerCredential in project thingsboard by thingsboard.

the class DeviceProfileDataValidator method validateLwm2mServersConfigOfBootstrapForClient.

private void validateLwm2mServersConfigOfBootstrapForClient(List<LwM2MBootstrapServerCredential> lwM2MBootstrapServersConfigurations, boolean isBootstrapServerUpdateEnable) {
    Set<String> uris = new HashSet<>();
    Set<Integer> shortServerIds = new HashSet<>();
    for (LwM2MBootstrapServerCredential bootstrapServerCredential : lwM2MBootstrapServersConfigurations) {
        AbstractLwM2MBootstrapServerCredential serverConfig = (AbstractLwM2MBootstrapServerCredential) bootstrapServerCredential;
        if (!isBootstrapServerUpdateEnable && serverConfig.isBootstrapServerIs()) {
            throw new DeviceCredentialsValidationException("Bootstrap config must not include \"Bootstrap Server\". \"Include Bootstrap Server updates\" is " + isBootstrapServerUpdateEnable + ".");
        }
        String server = serverConfig.isBootstrapServerIs() ? "Bootstrap Server" : "LwM2M Server" + " shortServerId: " + serverConfig.getShortServerId() + ":";
        if (serverConfig.getShortServerId() < 1 || serverConfig.getShortServerId() > 65534) {
            throw new DeviceCredentialsValidationException(server + " ShortServerId must not be less than 1 and more than 65534!");
        }
        if (!shortServerIds.add(serverConfig.getShortServerId())) {
            throw new DeviceCredentialsValidationException(server + " \"Short server Id\" value = " + serverConfig.getShortServerId() + ". This value must be a unique value for all servers!");
        }
        String uri = serverConfig.getHost() + ":" + serverConfig.getPort();
        if (!uris.add(uri)) {
            throw new DeviceCredentialsValidationException(server + " \"Host + port\" value = " + uri + ". This value must be a unique value for all servers!");
        }
        Integer port;
        if (LwM2MSecurityMode.NO_SEC.equals(serverConfig.getSecurityMode())) {
            port = serverConfig.isBootstrapServerIs() ? 5687 : 5685;
        } else {
            port = serverConfig.isBootstrapServerIs() ? 5688 : 5686;
        }
        if (serverConfig.getPort() == null || serverConfig.getPort().intValue() != port) {
            String errMsg = server + " \"Port\" value = " + serverConfig.getPort() + ". This value for security " + serverConfig.getSecurityMode().name() + " must be " + port + "!";
            throw new DeviceCredentialsValidationException(errMsg);
        }
    }
}

Example 4 with AbstractLwM2MBootstrapServerCredential

use of org.thingsboard.server.common.data.device.profile.lwm2m.bootstrap.AbstractLwM2MBootstrapServerCredential in project thingsboard by thingsboard.

the class AbstractSecurityLwM2MIntegrationTest method getBootstrapServerCredential.

private AbstractLwM2MBootstrapServerCredential getBootstrapServerCredential(LwM2MSecurityMode mode, boolean isBootstrap) {
    AbstractLwM2MBootstrapServerCredential bootstrapServerCredential;
    switch(mode) {
        case PSK:
            bootstrapServerCredential = new PSKLwM2MBootstrapServerCredential();
            bootstrapServerCredential.setServerPublicKey("");
            break;
        case RPK:
            bootstrapServerCredential = new RPKLwM2MBootstrapServerCredential();
            if (isBootstrap) {
                bootstrapServerCredential.setServerPublicKey(Base64.encodeBase64String(serverPublicKeyFromCertBs.getEncoded()));
            } else {
                bootstrapServerCredential.setServerPublicKey(Base64.encodeBase64String(serverPublicKeyFromCert.getEncoded()));
            }
            break;
        case X509:
            bootstrapServerCredential = new X509LwM2MBootstrapServerCredential();
            try {
                if (isBootstrap) {
                    bootstrapServerCredential.setServerPublicKey(Base64.encodeBase64String(serverX509CertBs.getEncoded()));
                } else {
                    bootstrapServerCredential.setServerPublicKey(Base64.encodeBase64String(serverX509Cert.getEncoded()));
                }
            } catch (CertificateEncodingException e) {
                e.printStackTrace();
            }
            break;
        default:
            throw new IllegalStateException("Unexpected value: " + mode);
    }
    bootstrapServerCredential.setShortServerId(isBootstrap ? shortServerIdBs : shortServerId);
    bootstrapServerCredential.setBootstrapServerIs(isBootstrap);
    bootstrapServerCredential.setHost(isBootstrap ? hostBs : host);
    bootstrapServerCredential.setPort(isBootstrap ? securityPortBs : securityPort);
    return bootstrapServerCredential;
}

Example 5 with AbstractLwM2MBootstrapServerCredential

use of org.thingsboard.server.common.data.device.profile.lwm2m.bootstrap.AbstractLwM2MBootstrapServerCredential in project thingsboard by thingsboard.

the class LwM2MBootstrapConfig method getLwM2MBootstrapConfig.

@JsonIgnore
public BootstrapConfig getLwM2MBootstrapConfig() {
    BootstrapConfig configBs = new BootstrapConfig();
    configBs.autoIdForSecurityObject = true;
    int id = 0;
    for (LwM2MBootstrapServerCredential serverCredential : serverConfiguration) {
        BootstrapConfig.ServerConfig serverConfig = setServerConfig((AbstractLwM2MBootstrapServerCredential) serverCredential);
        configBs.servers.put(id, serverConfig);
        BootstrapConfig.ServerSecurity serverSecurity = setServerSecurity((AbstractLwM2MBootstrapServerCredential) serverCredential, serverCredential.getSecurityMode());
        configBs.security.put(id, serverSecurity);
        id++;
    }
    return configBs;
}