Transition from Username/Password to Token Auth for TPP (#19)

* adding support for getting access token on tpp server

* VEN-60642 Provide support for Token Authentication on implemented operations.

* Added a new high level class to invoke the api methods using the token mechanism.
This new class VCertTknClient does contain the same methods as VCertClient but the low level implementation changes to make use of the token.
It also includes methods for token specific operations (refresh, revoke).

* Reverted changes in example classes that are no longer valid.

* Updated code according to @ttonchev review.

Co-authored-by: angelmoo <angel.moo@venafi.com>

Author: rvelaVenafi

.gitignore

@@ -25,4 +25,8 @@ hs_err_pid*
 
 .idea/
 *.iml
-target/
+target/
+/.settings/
+/.classpath
+/.factorypath
+/.project

src/main/java/com/venafi/vcert/sdk/VCertClient.java

@@ -19,11 +19,11 @@
 import com.venafi.vcert.sdk.connectors.tpp.TppConnector;
 import com.venafi.vcert.sdk.endpoint.Authentication;
 import com.venafi.vcert.sdk.endpoint.ConnectorType;
+import com.venafi.vcert.sdk.utils.VCertConstants;
 
 public class VCertClient implements Connector {
 
   private Connector connector;
-  private static final String defaultVendorAndProductName = "Venafi VCert-Java";
 
   public VCertClient(Config config) throws VCertException {
     Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());
@@ -42,7 +42,8 @@ public VCertClient(Config config) throws VCertException {
         throw new VCertException("ConnectorType is not defined");
     }
 
-    connector.setVendorAndProductName(isBlank(config.appInfo()) ? defaultVendorAndProductName : config.appInfo());
+    connector.setVendorAndProductName(isBlank(config.appInfo()) ? VCertConstants.DEFAULT_VENDOR_AND_PRODUCT_NAME :
+        config.appInfo());
   }
 
   @VisibleForTesting
@@ -59,7 +60,10 @@ public ConnectorType getType() {
   }
 
   /**
-   * {@inheritDoc}
+   * Method not implemented yet.
+   * Guaranteed to throw an exception.
+   *
+   * @throws UnsupportedOperationException always
    */
   @Override
   public void setBaseUrl(String url) throws VCertException {
@@ -207,13 +211,12 @@ public void revokeCertificate(RevocationRequest request) throws VCertException {
   @Override
   public String renewCertificate(RenewalRequest request) throws VCertException {
     try {
-      connector.renewCertificate(request);
+      return connector.renewCertificate(request);
     } catch (FeignException e) {
       throw VCertException.fromFeignException(e);
     } catch (Exception e) {
       throw new VCertException("Unexpected exception", e);
     }
-    return null;
   }
 
   /**
@@ -222,13 +225,12 @@ public String renewCertificate(RenewalRequest request) throws VCertException {
   @Override
   public ImportResponse importCertificate(ImportRequest request) throws VCertException {
     try {
-      connector.importCertificate(request);
+      return connector.importCertificate(request);
     } catch (FeignException e) {
       throw VCertException.fromFeignException(e);
     } catch (Exception e) {
       throw new VCertException("Unexpected exception", e);
     }
-    return null;
   }
 
   /**
@@ -237,13 +239,11 @@ public ImportResponse importCertificate(ImportRequest request) throws VCertExcep
   @Override
   public Policy readPolicyConfiguration(String zone) throws VCertException {
     try {
-      connector.readPolicyConfiguration(zone);
+      return connector.readPolicyConfiguration(zone);
     } catch (FeignException e) {
       throw VCertException.fromFeignException(e);
     } catch (Exception e) {
       throw new VCertException("Unexpected exception", e);
     }
-    return null;
   }
-
 }

src/main/java/com/venafi/vcert/sdk/VCertTknClient.java

@@ -0,0 +1,252 @@
+package com.venafi.vcert.sdk;
+
+import static org.apache.commons.lang3.StringUtils.isBlank;
+import java.security.Security;
+import com.google.common.annotations.VisibleForTesting;
+import feign.FeignException;
+import com.venafi.vcert.sdk.certificate.CertificateRequest;
+import com.venafi.vcert.sdk.certificate.ImportRequest;
+import com.venafi.vcert.sdk.certificate.ImportResponse;
+import com.venafi.vcert.sdk.certificate.PEMCollection;
+import com.venafi.vcert.sdk.certificate.RenewalRequest;
+import com.venafi.vcert.sdk.certificate.RevocationRequest;
+import com.venafi.vcert.sdk.connectors.Policy;
+import com.venafi.vcert.sdk.connectors.TokenConnector;
+import com.venafi.vcert.sdk.connectors.ZoneConfiguration;
+import com.venafi.vcert.sdk.connectors.tpp.TokenInfo;
+import com.venafi.vcert.sdk.connectors.tpp.Tpp;
+import com.venafi.vcert.sdk.connectors.tpp.TppTokenConnector;
+import com.venafi.vcert.sdk.endpoint.Authentication;
+import com.venafi.vcert.sdk.endpoint.ConnectorType;
+import com.venafi.vcert.sdk.utils.VCertConstants;
+
+
+public class VCertTknClient implements TokenConnector {
+
+    private TokenConnector connector;
+
+    public VCertTknClient(Config config) throws VCertException {
+        Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());
+        switch (config.connectorType()) {
+            case TPP_TOKEN:
+                connector = new TppTokenConnector(Tpp.connect(config));
+                break;
+            default:
+                throw new VCertException("ConnectorType is not defined");
+        }
+        connector.setVendorAndProductName(isBlank(config.appInfo()) ? VCertConstants.DEFAULT_VENDOR_AND_PRODUCT_NAME :
+            config.appInfo());
+    }
+
+    @VisibleForTesting
+    VCertTknClient(TokenConnector connector) {
+        this.connector = connector;
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public ConnectorType getType() {
+        return connector.getType();
+    }
+
+    /**
+     * Method not implemented yet.
+     * Guaranteed to throw an exception.
+     *
+     * @throws UnsupportedOperationException always
+     */
+    @Override
+    public void setBaseUrl(String url) throws VCertException {
+        connector.setBaseUrl(url);
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public void setZone(String zone) {
+        connector.setZone(zone);
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public void setVendorAndProductName(String vendorAndProductName) {
+        connector.setVendorAndProductName(vendorAndProductName);
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public String getVendorAndProductName() {
+        return connector.getVendorAndProductName();
+    }
+
+    //=========================================================================================\\
+    //=============================== VENAFI 20.2 OAUTH METHODS ===============================\\
+    //=========================================================================================\\
+
+    @Override
+    public TokenInfo getAccessToken(Authentication auth) throws VCertException{
+        try {
+            return connector.getAccessToken(auth);
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+
+    @Override
+    public TokenInfo refreshAccessToken(String refreshToken, String applicationId) throws VCertException{
+        return  connector.refreshAccessToken(refreshToken, applicationId);
+    }
+
+    @Override
+    public int revokeAccessToken(String accessToken) throws VCertException {
+        return connector.revokeAccessToken(accessToken);
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public void ping(String accessToken) throws VCertException {
+        try {
+            connector.ping(accessToken);
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public ZoneConfiguration readZoneConfiguration(String zone, String accessToken) throws VCertException {
+        try {
+            return connector.readZoneConfiguration(zone, accessToken);
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public CertificateRequest generateRequest(ZoneConfiguration config, CertificateRequest request, String accessToken)
+            throws VCertException {
+        try {
+            return connector.generateRequest(config, request, accessToken);
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+
+    @Override
+    public String requestCertificate(CertificateRequest request, String zone, String accessToken) throws VCertException {
+        try {
+            return connector.requestCertificate(request, zone, accessToken);
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public String requestCertificate(CertificateRequest request, ZoneConfiguration zoneConfiguration, String accessToken)
+            throws VCertException {
+        try {
+            return connector.requestCertificate(request, zoneConfiguration, accessToken);
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public PEMCollection retrieveCertificate(CertificateRequest request, String accessToken) throws VCertException {
+        try {
+            return connector.retrieveCertificate(request, accessToken);
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public void revokeCertificate(RevocationRequest request, String accessToken) throws VCertException {
+        try {
+            connector.revokeCertificate(request, accessToken);
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public String renewCertificate(RenewalRequest request, String accessToken) throws VCertException {
+        try {
+            return connector.renewCertificate(request, accessToken);
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public ImportResponse importCertificate(ImportRequest request, String accessToken) throws VCertException {
+        try {
+            return connector.importCertificate(request, accessToken);
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public Policy readPolicyConfiguration(String zone, String accessToken) throws VCertException {
+        try {
+            return connector.readPolicyConfiguration(zone, accessToken);
+        } catch (FeignException e) {
+            throw VCertException.fromFeignException(e);
+        } catch (Exception e) {
+            throw new VCertException("Unexpected exception", e);
+        }
+    }
+}