GamUtilsEO simplification and module refactor + tests

(cherry picked from commit 055badf)

Author: sgrampone

gamutils/src/main/java/com/genexus/gam/GamUtilsEO.java

@@ -4,8 +4,10 @@
 import com.genexus.gam.utils.cryptography.Encryption;
 import com.genexus.gam.utils.cryptography.Hash;
 import com.genexus.gam.utils.json.Jwk;
-import com.genexus.gam.utils.json.Jwks;
 import com.genexus.gam.utils.json.Jwt;
+import com.genexus.gam.utils.json.UnixTimestamp;
+
+import java.util.Date;
 
 public class GamUtilsEO {
 
@@ -45,27 +47,25 @@ public static String getPublicJwk(String jwkString) {
 		return Jwk.getPublic(jwkString);
 	}
 
-	public static boolean jwk_verifyJWT(String jwkString, String token) {
-		return Jwk.verifyJWT(jwkString, token);
+	//**JWT**//
+	public static boolean verifyJwt(String path, String alias, String password, String token) {
+		return Jwt.verify(path, alias, password, token);
 	}
 
-	public static String jwk_createJwt(String jwkString, String payload, String header) {
-		return Jwk.createJwt(jwkString, payload, header);
+	public static String createJwt(String path, String alias, String password, String payload, String header) {
+		return Jwt.create(path, alias, password, payload, header);
 	}
 
-	//**JWKS**//
-
-	public static boolean jwks_verifyJWT(String jwksString, String token, String kid) {
-		return Jwks.verifyJWT(jwksString, token, kid);
+	public static long createUnixTimestamp(Date date) {
+		return UnixTimestamp.create(date);
 	}
 
-	//**JWT**//
-	public static boolean verifyJWTWithFile(String path, String alias, String password, String token) {
-		return Jwt.verify(path, alias, password, token);
+	public static String getJwtHeader(String token) {
+		return Jwt.getHeader(token);
 	}
 
-	public static String createJWTWithFile(String path, String alias, String password, String payload, String header) {
-		return Jwt.create(path, alias, password, payload, header);
+	public static String getJwtPayload(String token) {
+		return Jwt.getPayload(token);
 	}
 
 	/********EXTERNAL OBJECT PUBLIC METHODS  - END ********/

gamutils/src/main/java/com/genexus/gam/utils/json/Jwk.java

@@ -44,7 +44,7 @@ public static String getPublic(String jwkString) {
 		}
 	}
 
-	public static boolean verifyJWT(String jwkString, String token) {
+	/*public static boolean verifyJWT(String jwkString, String token) {
 		if (jwkString.isEmpty()) {
 			logger.error("verifyJWT jwkString parameter is empty");
 			return false;
@@ -83,5 +83,5 @@ public static String createJwt(String jwkString, String payload, String header)
 			logger.error("createJwt", e);
 			return "";
 		}
-	}
+	}*/
 }

gamutils/src/main/java/com/genexus/gam/utils/json/Jwks.java

@@ -1,7 +1,7 @@
 package com.genexus.gam.utils.json;
 
-import com.genexus.gam.utils.keys.CertificateUtil;
 import com.genexus.gam.utils.keys.PrivateKeyUtil;
+import com.genexus.gam.utils.keys.PublicKeyUtil;
 import com.nimbusds.jose.JWSHeader;
 import com.nimbusds.jose.JWSVerifier;
 import com.nimbusds.jose.crypto.RSASSASigner;
@@ -16,42 +16,73 @@
 
 public class Jwt {
 
-	private static Logger logger = LogManager.getLogger(Jwt.class);
+	private static final Logger logger = LogManager.getLogger(Jwt.class);
 
 	/******** EXTERNAL OBJECT PUBLIC METHODS - BEGIN ********/
 
-	public static boolean verify(RSAPublicKey publicKey, String token) {
+	public static boolean verify(String path, String alias, String password, String token) {
+		logger.debug("verify");
 		try {
-			SignedJWT signedJWT = SignedJWT.parse(token);
-			JWSVerifier verifier = new RSASSAVerifier(publicKey);
-			return signedJWT.verify(verifier);
+			return verify(PublicKeyUtil.getPublicKey(path, alias, password, token), token);
 		} catch (Exception e) {
 			logger.error("verify", e);
 			return false;
 		}
 	}
 
-	public static String create(RSAPrivateKey privateKey, String payload, String header) {
+	public static String create(String path, String alias, String password, String payload, String header) {
+		logger.debug("create");
 		try {
-			SignedJWT signedJWT = new SignedJWT(JWSHeader.parse(header), JWTClaimsSet.parse(payload));
-			signedJWT.sign(new RSASSASigner(privateKey));
-			return signedJWT.serialize();
-		} catch (Exception e) {
+			return create(PrivateKeyUtil.getPrivateKey(path, alias, password), payload, header);
+		}catch (Exception e)
+		{
 			logger.error("create", e);
 			return "";
 		}
 	}
 
-	public static boolean verify(String path, String alias, String password, String token) {
-		return verify((RSAPublicKey) CertificateUtil.getCertificate(path, alias, password).getPublicKey(), token);
+	public static String getHeader(String token) {
+		logger.debug("getHeader");
+		try {
+			return SignedJWT.parse(token).getHeader().toString();
+		} catch (Exception e) {
+			logger.error("getHeader", e);
+			return "";
+		}
 	}
 
-	public static String create(String path, String alias, String password, String payload, String header)
-	{
-		return create(PrivateKeyUtil.getPrivateKey(path, alias, password), payload, header);
+	public static String getPayload(String token) {
+		logger.debug("getPayload");
+		try {
+			return SignedJWT.parse(token).getPayload().toString();
+		} catch (Exception e) {
+			logger.error("getPayload", e);
+			return "";
+		}
 	}
 
 	/******** EXTERNAL OBJECT PUBLIC METHODS - END ********/
 
+	private static boolean verify(RSAPublicKey publicKey, String token) {
+		try {
+			SignedJWT signedJWT = SignedJWT.parse(token);
+			JWSVerifier verifier = new RSASSAVerifier(publicKey);
+			return signedJWT.verify(verifier);
+		} catch (Exception e) {
+			logger.error("verify", e);
+			return false;
+		}
+	}
+
+	private static String create(RSAPrivateKey privateKey, String payload, String header) {
+		try {
+			SignedJWT signedJWT = new SignedJWT(JWSHeader.parse(header), JWTClaimsSet.parse(payload));
+			signedJWT.sign(new RSASSASigner(privateKey));
+			return signedJWT.serialize();
+		} catch (Exception e) {
+			logger.error("create", e);
+			return "";
+		}
+	}
 
 }

gamutils/src/main/java/com/genexus/gam/utils/json/Jwt.java

@@ -0,0 +1,11 @@
+package com.genexus.gam.utils.json;
+
+import java.util.Date;
+
+public class UnixTimestamp {
+
+	public static long create(Date gxdate) {
+		return gxdate.toInstant().getEpochSecond();
+	}
+
+}

gamutils/src/main/java/com/genexus/gam/utils/json/UnixTimestamp.java

@@ -1,5 +1,6 @@
 package com.genexus.gam.utils.keys;
 
+import com.nimbusds.jose.jwk.JWK;
 import org.apache.commons.io.FilenameUtils;
 import org.apache.logging.log4j.LogManager;
 import org.apache.logging.log4j.Logger;
@@ -24,10 +25,11 @@
 import java.security.Security;
 import java.security.interfaces.RSAPrivateKey;
 import java.security.spec.PKCS8EncodedKeySpec;
+import java.util.Objects;
 
 public enum PrivateKeyUtil {
 
-	pfx, jks, pkcs12, p12, pem, key, b64;
+	pfx, jks, pkcs12, p12, pem, key, b64, json;
 
 	private static Logger logger = LogManager.getLogger(PrivateKeyUtil.class);
 
@@ -47,16 +49,17 @@ public static PrivateKeyUtil value(String ext) {
 				return key;
 			case "b64":
 				return b64;
+			case "json":
+				return json;
 			default:
-				logger.error("Invalid certificate file extension");
+				logger.error("Invalid private key file extension");
 				return null;
 		}
 	}
 
-	public static RSAPrivateKey getPrivateKey(String path, String alias, String password) {
-		String extension = FilenameUtils.getExtension(path);
-		PrivateKeyUtil ext = extension.isEmpty() ? PrivateKeyUtil.value("b64") : PrivateKeyUtil.value(extension);
-		switch (ext) {
+	public static RSAPrivateKey getPrivateKey(String path, String alias, String password) throws Exception{
+		PrivateKeyUtil ext = PrivateKeyUtil.value(fixType(path));
+		switch (Objects.requireNonNull(ext)) {
 			case pfx:
 			case jks:
 			case pkcs12:
@@ -67,12 +70,37 @@ public static RSAPrivateKey getPrivateKey(String path, String alias, String pass
 				return loadFromPkcs8(path, password);
 			case b64:
 				return loadFromBase64(path);
+			case json:
+				return loadFromJson(path);
 			default:
 				logger.error("Invalid private key file extension");
 				return null;
 		}
 	}
 
+	private static RSAPrivateKey loadFromJson(String json)
+	{
+		logger.debug("loadFromJson");
+		try {
+			JWK jwk = JWK.parse(json);
+			return jwk.toRSAKey().toRSAPrivateKey();
+		} catch (Exception e) {
+			logger.error("loadFromJson", e);
+			return null;
+		}
+	}
+
+	private static String fixType(String input)
+	{
+		try {
+			String extension = FilenameUtils.getExtension(input);
+			return extension.isEmpty() ? "b64" : extension;
+		}catch (IllegalArgumentException e)
+		{
+			return "json";
+		}
+	}
+
 	private static RSAPrivateKey loadFromBase64(String base64) {
 		logger.debug("loadFromBase64");
 		try (ASN1InputStream stream = new ASN1InputStream(Base64.decode(base64))) {