Changed the way the token is passed and used by the client. Now the token will be stored and reused by the client instead of being required for each method call.

- Changed relevant test cases to properly test the new changes.

Author: rvelaVenafi

src/main/java/com/venafi/vcert/sdk/VCertTknClient.java

@@ -103,6 +103,17 @@ public TokenInfo getAccessToken(Authentication auth) throws VCertException{
         }
     }
 
+    @Override
+    public TokenInfo getAccessToken() throws VCertException{
+        try {
+            return connector.getAccessToken();
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+
     @Override
     public TokenInfo refreshAccessToken(String applicationId) throws VCertException{
         return  connector.refreshAccessToken(applicationId);

src/main/java/com/venafi/vcert/sdk/connectors/TokenConnector.java

@@ -1,5 +1,6 @@
 package com.venafi.vcert.sdk.connectors;
 
+import com.venafi.vcert.sdk.Config;
 import com.venafi.vcert.sdk.VCertException;
 import com.venafi.vcert.sdk.certificate.*;
 import com.venafi.vcert.sdk.connectors.tpp.TokenInfo;
@@ -52,6 +53,14 @@ public interface TokenConnector {
      */
     TokenInfo getAccessToken (Authentication auth ) throws VCertException;
 
+    /**
+     * returns a new access token. This method uses the {@link Authentication} object passed earlier
+     * with the {@link Config} object.
+     * @return the new token.
+     * @throws VCertException throws this exception when authentication info is null.
+     */
+    TokenInfo getAccessToken () throws VCertException;
+
     /**
      * this is for refreshing a token.
      * @param applicationId the application id.

src/main/java/com/venafi/vcert/sdk/connectors/tpp/TppTokenConnector.java

@@ -1,5 +1,6 @@
 package com.venafi.vcert.sdk.connectors.tpp;
 
+import com.google.common.annotations.VisibleForTesting;
 import com.venafi.vcert.sdk.VCertException;
 import com.venafi.vcert.sdk.certificate.*;
 import com.venafi.vcert.sdk.connectors.*;
@@ -26,7 +27,9 @@
 public class TppTokenConnector extends AbstractTppConnector implements TokenConnector {
 
     public TppTokenConnector(Tpp tpp){ super(tpp); }
+
     @Setter
+    @VisibleForTesting
     private Authentication credentials;
 
     @Override
@@ -77,8 +80,9 @@ private Response doPing() throws VCertException{
 
     @Override
     public TokenInfo getAccessToken(Authentication auth) throws VCertException {
-
-        VCertException.throwIfNull( auth, MISSING_CREDENTIALS_MESSAGE );
+        if(isEmptyCredentials(auth)) {
+            throw new VCertException(MISSING_CREDENTIALS_MESSAGE);
+        }
 
         AuthorizeTokenRequest info = new AuthorizeTokenRequest( auth.user(), auth.password(), auth.clientId(), auth.scope(), auth.state(), auth.redirectUri() );
         AuthorizeTokenResponse response = tpp.authorizeToken( info );
@@ -91,6 +95,11 @@ public TokenInfo getAccessToken(Authentication auth) throws VCertException {
         return accessTokenInfo;
     }
 
+    @Override
+    public TokenInfo getAccessToken() throws VCertException {
+        return getAccessToken(credentials);
+    }
+
     @Override
     public TokenInfo refreshAccessToken(String clientId ) throws VCertException{
         if(isBlank(credentials.refreshToken())){
@@ -116,6 +125,10 @@ public TokenInfo refreshAccessToken(String clientId ) throws VCertException{
     @Override
     public int revokeAccessToken() throws VCertException {
 
+        if(isEmptyToken()){
+            throw new VCertException(MISSING_ACCESS_TOKEN_MESSAGE);
+        }
+
         String requestHeader = getAuthHeaderValue();//"Bearer "+accessToken;
 
         Response response = tpp.revokeToken( requestHeader );
@@ -438,4 +451,28 @@ private ImportResponse doImportCertificate(ImportRequest request) throws VCertEx
     public Policy readPolicyConfiguration(String zone) throws VCertException {
         throw new UnsupportedOperationException("Method not yet implemented");
     }
+
+    private boolean isEmptyCredentials(Authentication credentials){
+        if(credentials == null){
+            return true;
+        }
+
+        if(credentials.user() == null || credentials.user().isEmpty()){
+            return true;
+        }
+
+        if(credentials.password() == null || credentials.password().isEmpty()){
+            return true;
+        }
+
+        return false;
+    }
+
+    private boolean isEmptyToken(){
+        if(credentials == null || isBlank(credentials.accessToken())){
+            return true;
+        }
+
+        return false;
+    }
 }

src/test/java/com/venafi/vcert/sdk/connectors/tpp/TppTokenConnectorAT.java

@@ -11,6 +11,7 @@
 import org.bouncycastle.openssl.PEMParser;
 import org.bouncycastle.pkcs.PKCS10CertificationRequest;
 import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.DisplayName;
 import org.junit.jupiter.api.Test;
 
 import java.io.IOException;
@@ -39,19 +40,54 @@ class TppTokenConnectorAT {
     @BeforeEach
     void authenticate() throws VCertException {
         Security.addProvider(new BouncyCastleProvider());
+        //Executes only once to ensure the same token is used across the tests
+        if(TppTokenConnectorAT.info == null){
+            Authentication authentication = Authentication.builder()
+                    .user(System.getenv("TPPUSER"))
+                    .password(System.getenv("TPPPASSWORD"))
+                    .scope("certificate:manage,revoke,discover")
+                    .build();
+
+            TokenInfo info = classUnderTest.getAccessToken(authentication);
+
+            assertThat(info).isNotNull();
+            assertThat(info.accessToken()).isNotNull();
+            assertThat(info.refreshToken()).isNotNull();
+
+            TppTokenConnectorAT.info = info;
+        }
+    }
+
+    @Test
+    @DisplayName("Authenticate with credentials from Config object")
+    void authenticateNoParameter() throws VCertException{
         Authentication authentication = Authentication.builder()
-                .user(System.getenv("TPPUSER"))
-                .password(System.getenv("TPPPASSWORD"))
-                .scope("certificate:manage,revoke,discover")
-                .build();
+            .user(System.getenv("TPPUSER"))
+            .password(System.getenv("TPPPASSWORD"))
+            .scope("certificate:manage,revoke,discover")
+            .build();
 
-        TokenInfo info = classUnderTest.getAccessToken(authentication);
+        classUnderTest.credentials(authentication);
+
+        TokenInfo info = classUnderTest.getAccessToken();
 
         assertThat(info).isNotNull();
         assertThat(info.accessToken()).isNotNull();
         assertThat(info.refreshToken()).isNotNull();
+    }
 
-        TppTokenConnectorAT.info = info;
+    @Test
+    @DisplayName("Authenticate with invalid credentials")
+    void authenticateInvalid(){
+        Authentication authentication = Authentication.builder()
+            .user("sample")
+            .password("password")
+            .scope("certificate:manage,revoke,discover")
+            .build();
+
+        classUnderTest.credentials(authentication);
+
+        assertThrows(VCertException.class, () ->classUnderTest.getAccessToken());
     }
 
     @Test
@@ -286,21 +322,34 @@ void refreshToken() throws VCertException{
 
         assertThat(refreshInfo).isNotNull();
         assertThat(refreshInfo.accessToken()).isNotEqualTo(info.accessToken());
+        assertThat(refreshInfo.refreshToken()).isNotEqualTo(info.refreshToken());
     }
 
-//    @Test
-//    void refreshTokenInvalid() throws VCertException{
-//        assertThrows(VCertException.class, () -> classUnderTest.refreshAccessToken("1234-1234-12345-123", "vcert-sdk"));
-//    }
+    @Test
+    void refreshTokenInvalid() throws VCertException{
+        Authentication invalidCredentials = Authentication.builder()
+            .accessToken("abcde==")
+            .refreshToken("1234-1234-12345-123")
+            .build();
+        classUnderTest.credentials(invalidCredentials);
+
+        assertThrows(VCertException.class, () -> classUnderTest.refreshAccessToken("vcert-sdk"));
+    }
 
     @Test
     void revokeToken() throws VCertException{
         int status = classUnderTest.revokeAccessToken();
         assertThat(status).isEqualTo(200);
     }
 
-//    @Test
-//    void revokeTokenInvalid() throws VCertException{
-//        assertThrows(VCertException.class, () ->classUnderTest.revokeAccessToken());
-//    }
+    @Test
+    void revokeTokenInvalid() throws VCertException{
+        Authentication invalidCredentials = Authentication.builder()
+            .accessToken("abcde==")
+            .refreshToken("1234-1234-12345-123")
+            .build();
+        classUnderTest.credentials(invalidCredentials);
+
+        assertThrows(VCertException.class, () ->classUnderTest.revokeAccessToken());
+    }
 }

src/test/java/com/venafi/vcert/sdk/connectors/tpp/TppTokenConnectorIT.java

@@ -34,7 +34,8 @@ void setup() throws VCertException {
                 .user("user")
                 .password("pass")
                 .build();
-        info = classUnderTest.getAccessToken(auth);
+        classUnderTest.credentials(auth);
+        info = classUnderTest.getAccessToken();
     }
 
     @Test