View Javadoc
1   /*
2    * Copyright (c) 2002-2021, City of Paris
3    * All rights reserved.
4    *
5    * Redistribution and use in source and binary forms, with or without
6    * modification, are permitted provided that the following conditions
7    * are met:
8    *
9    *  1. Redistributions of source code must retain the above copyright notice
10   *     and the following disclaimer.
11   *
12   *  2. Redistributions in binary form must reproduce the above copyright notice
13   *     and the following disclaimer in the documentation and/or other materials
14   *     provided with the distribution.
15   *
16   *  3. Neither the name of 'Mairie de Paris' nor 'Lutece' nor the names of its
17   *     contributors may be used to endorse or promote products derived from
18   *     this software without specific prior written permission.
19   *
20   * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21   * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22   * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23   * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDERS OR CONTRIBUTORS BE
24   * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
25   * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
26   * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
27   * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
28   * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
29   * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
30   * POSSIBILITY OF SUCH DAMAGE.
31   *
32   * License 1.0
33   */
34  package fr.paris.lutece.util.signrequest;
35  
36  import java.util.List;
37  import java.util.Map;
38  
39  import javax.servlet.http.HttpServletRequest;
40  
41  import fr.paris.lutece.util.jwt.service.JWTUtil;
42  
43  public class JWTNoEncryptionAuthenticator extends AbstractJWTAuthenticator
44  {
45      /**
46       * Constructor
47       * 
48       * @param mapClaimsToCheck
49       *            The map of claims key/values to check in the JWT
50       * @param strJWTHttpHeader
51       *            The name of the header which contains the JWT
52       */
53      public JWTNoEncryptionAuthenticator( Map<String, String> mapClaimsToCheck, String strJWTHttpHeader, long lValidityTimePeriod )
54      {
55          super( mapClaimsToCheck, strJWTHttpHeader, lValidityTimePeriod );
56      }
57  
58      /**
59       * {@inheritDoc }
60       */
61      @Override
62      public boolean isRequestAuthenticated( HttpServletRequest request )
63      {
64          // No signature checking for this implementation
65          return super.isRequestAuthenticated( request );
66      }
67  
68      /**
69       * {@inheritDoc }
70       */
71      @Override
72      public AuthenticateRequestInformations  getSecurityInformations( List<String> elements )
73      {
74      	return new AuthenticateRequestInformations().addSecurityHeader( _strJWTHttpHeader, JWTUtil.buildBase64JWT( _mapClaimsToCheck, getExpirationDate( ), null, null ) );
75        
76      }
77  }