org.lightningj.paywall.tokengenerator

Class AsymmetricKeyTokenGenerator

java.lang.Object

org.lightningj.paywall.tokengenerator.BaseTokenGenerator

org.lightningj.paywall.tokengenerator.AsymmetricKeyTokenGenerator

All Implemented Interfaces:

TokenGenerator

public class AsymmetricKeyTokenGenerator
extends BaseTokenGenerator

Token Manager to generate token using asymmetric key manager. Created by Philip Vendil on 2018-10-29.

Field Summary

Fields inherited from class org.lightningj.paywall.tokengenerator.BaseTokenGenerator

ALLOWED_CLOCK_SKEW, PREIMAGE_LENGTH

Constructor Summary

Constructors

Constructor and Description
AsymmetricKeyTokenGenerator(AsymmetricKeyManager keyManager, RecipientRepository recipientRepository) Default constructor.

Method Summary

Modifier and Type	Method and Description
java.lang.String	getIssuerName(java.lang.String context) Method to retrieve the issuer claim in generated JWT tokens.
protected void	populateJWEDecryptionAlgAndKey(TokenContext context, org.jose4j.jwe.JsonWebEncryption jwe) Method to set the encryption algorithm and key used to deencrypt the token.
protected void	populateJWEEncryptionAlgAndKey(TokenContext context, java.lang.String recipientSubject, org.jose4j.jwe.JsonWebEncryption jwe) Method to set the encryption algorithm and key used to encrypt the token.
protected void	populateJWSSignatureAlgAndKey(TokenContext context, org.jose4j.jws.JsonWebSignature jws) Method to set the used RSA_USING_SHA256 algorithm and the private key to sign the data with.
protected void	populateJWSVerifyAlgAndKey(TokenContext context, org.jose4j.jws.JsonWebSignature jws) Populates the JWS Signature with a whitelisting of asymmetric key algorithms and the finding the related public key.
void	rebuildCache()

Methods inherited from class org.lightningj.paywall.tokengenerator.BaseTokenGenerator

generateInvoiceToken, generatePaymentToken, generateSettlementToken, generateToken, genPreImageData, getSecureRandom, parseToken

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

AsymmetricKeyTokenGenerator

public AsymmetricKeyTokenGenerator(AsymmetricKeyManager keyManager,
                                   RecipientRepository recipientRepository)

Default constructor.

Parameters:

keyManager - the KeyManager storing the keys with the generated tokens

recipientRepository - an implementation of a recipient repository to lookup public key of encrypted recipients.

Method Detail

populateJWSSignatureAlgAndKey

protected void populateJWSSignatureAlgAndKey(TokenContext context,
                                             org.jose4j.jws.JsonWebSignature jws)
                                      throws java.io.IOException,
                                             InternalErrorException

Method to set the used RSA_USING_SHA256 algorithm and the private key to sign the data with.

Specified by:

populateJWSSignatureAlgAndKey in class BaseTokenGenerator

Parameters:

context - the related token context.

jws - the signature to populate used algorithm and key for.

Throws:

java.io.IOException - if communication problems occurred with underlying systems.

InternalErrorException - if internal problems occurred setting the private key.

populateJWSVerifyAlgAndKey

protected void populateJWSVerifyAlgAndKey(TokenContext context,
                                          org.jose4j.jws.JsonWebSignature jws)
                                   throws TokenException,
                                          org.jose4j.lang.JoseException,
                                          java.io.IOException,
                                          InternalErrorException

Populates the JWS Signature with a whitelisting of asymmetric key algorithms and the finding the related public key.

Specified by:

populateJWSVerifyAlgAndKey in class BaseTokenGenerator

Parameters:

context - the related token context.

jws - the JsonWebSignature to populate.

Throws:

java.io.IOException - if communication problems occurred with underlying systems.

InternalErrorException - if internal error occurred accessing the asymmetric key.

TokenException - if no trusted signing key could be found.

org.jose4j.lang.JoseException - if JWT problems occurred.

getIssuerName

public java.lang.String getIssuerName(java.lang.String context)
                               throws InternalErrorException

Method to retrieve the issuer claim in generated JWT tokens.

Parameters:

context - the related token context.

Returns:

should return the issuer name set in the JWT token. Usually the signers key id.

Throws:

InternalErrorException - if internal problems occurred retrieving the issuer name for the given context.

populateJWEEncryptionAlgAndKey

protected void populateJWEEncryptionAlgAndKey(TokenContext context,
                                              java.lang.String recipientSubject,
                                              org.jose4j.jwe.JsonWebEncryption jwe)
                                       throws TokenException,
                                              java.io.IOException,
                                              InternalErrorException

Method to set the encryption algorithm and key used to encrypt the token.

Specified by:

populateJWEEncryptionAlgAndKey in class BaseTokenGenerator

Parameters:

context - the related token context.

recipientSubject - the subject name of the recipient for the generated token, could be null if not applicable.

jwe - the encryption object to populate used algorithm and key for.

Throws:

TokenException - if no related encryption key could be found.

java.io.IOException - if communication problems occurred with underlying systems.

InternalErrorException - if internal problem occurred setting the JWE properties.

populateJWEDecryptionAlgAndKey

protected void populateJWEDecryptionAlgAndKey(TokenContext context,
                                              org.jose4j.jwe.JsonWebEncryption jwe)
                                       throws java.io.IOException,
                                              InternalErrorException

Method to set the encryption algorithm and key used to deencrypt the token.

Specified by:

populateJWEDecryptionAlgAndKey in class BaseTokenGenerator

Parameters:

context - the related token context.

jwe - the encryption object to populate used algorithm and key for.

Throws:

java.io.IOException - if communication problems occurred with underlying systems.

InternalErrorException - if internal problem occurred setting the JWE properties.

rebuildCache

public void rebuildCache()
                  throws InternalErrorException

Throws:

InternalErrorException