Mastercard · karen-avetisyan-mc · Sep 10, 2024 · Oct 24, 2024 · Oct 24, 2024 · Oct 24, 2024
diff --git a/pom.xml b/pom.xml
@@ -95,6 +95,13 @@
             <artifactId>oauth1-signer</artifactId>
             <version>1.5.3</version>
         </dependency>
+        <dependency>
+            <groupId>com.mastercard.developer</groupId>
+            <artifactId>oauth2-signer</artifactId>
+            <version>0.0.1-SNAPSHOT</version>
+            <scope>system</scope>
+            <systemPath>${project.basedir}/oauth2-signer/oauth2-signer-0.0.1-SNAPSHOT.jar</systemPath>
+        </dependency>
         <dependency>
             <groupId>org.mockito</groupId>
             <artifactId>mockito-inline</artifactId>

diff --git a/src/main/java/com/mastercard/app/petstore/utils/OAuth2Utils.java b/src/main/java/com/mastercard/app/petstore/utils/OAuth2Utils.java
@@ -0,0 +1,134 @@
+package com.mastercard.app.petstore.utils;
+
+import com.mastercard.developer.oauth2.core.OAuth2Configuration;
+import com.mastercard.developer.oauth2.interceptors.OkHttp3OAuth2Interceptor;
+import com.mastercard.developer.utils.AuthenticationUtils;
+import org.openapitools.client.ApiClient;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Profile;
+
+import java.security.InvalidAlgorithmParameterException;
+import java.security.PrivateKey;
+import java.util.logging.Logger;
+
+@Profile({"oauth2stage"})
+@org.springframework.context.annotation.Configuration
+public class OAuth2Utils {
+
+    private final String signingKeyContainer;
+    private final String signingKeyAlias;
+    private final String signingKeyPassword;
+    private final String basePath;
+    private final String tokenUrl;
+    private final String audience;
+    private final String keyId;
+    private final String clientId;
+    private final String scope;
+    private final String dpopKeyType;
+
+    @Autowired
+    public OAuth2Utils(
+            @Value("${mastercard.oauth2.pkcs12KeyFile}") String signingKeyContainer,
+            @Value("${mastercard.oauth2.keyAlias}") String signingKeyAlias,
+            @Value("${mastercard.oauth2.keyPassword}") String signingKeyPassword,
+            @Value("${mastercard.basePath}") String basePath,
+            @Value("${mastercard.oauth2.audience}") String audience,
+            @Value("${mastercard.oauth2.tokenUrl}") String tokentUri,
+            @Value("${mastercard.oauth2.keyId}") String keyId,
+            @Value("${mastercard.oauth2.clientId}") String clientId,
+            @Value("${mastercard.oauth2.scope}") String scope,
+            @Value("${mastercard.oauth2.dpopKeyType}") String dpopSigningAlgorithm) {
+
+        if (isNullOrEmpty(basePath)) {
+            throw new IllegalArgumentException("basePath in application.properties is empty");
+        }
+        this.basePath = basePath;
+        if (isNullOrEmpty(signingKeyContainer)) {
+            throw new IllegalArgumentException("pkcs12KeyFile in application-oauth2.properties is empty");
+        }
+        this.signingKeyContainer = signingKeyContainer;
+        if (isNullOrEmpty(clientId)) {
+            throw new IllegalArgumentException("client id in application-oauth2.properties is empty");
+        }
+        this.clientId = clientId;
+        if (isNullOrEmpty(signingKeyAlias)) {
+            throw new IllegalArgumentException("keyAlias in application-oauth2.properties is empty");
+        }
+        this.signingKeyAlias = signingKeyAlias;
+        if (isNullOrEmpty(signingKeyPassword)) {
+            throw new IllegalArgumentException("keyPassword in application-oauth2.properties is empty");
+        }
+        this.signingKeyPassword = signingKeyPassword;
+
+        if (isNullOrEmpty(tokentUri)) {
+            throw new IllegalArgumentException("tokentUri in application-oauth2.properties is empty");
+        }
+        this.tokenUrl = tokentUri;
+        if (isNullOrEmpty(audience)) {
+            throw new IllegalArgumentException("audience in application-oauth2.properties is empty");
+        }
+        this.audience = audience;
+
+        if (isNullOrEmpty(keyId)) {
+            throw new IllegalArgumentException("keyId in application-oauth2.properties is empty");
+        }
+
+        this.keyId = keyId;
+        if (isNullOrEmpty(scope)) {
+            throw new IllegalArgumentException("scope in application-oauth2.properties is empty");
+        }
+        this.scope = scope;
+        if (isNullOrEmpty(dpopSigningAlgorithm)) {
+            this.dpopKeyType = "ES256";
+        } else {
+            this.dpopKeyType = dpopSigningAlgorithm;
+        }
+    }
+
+    private boolean isNullOrEmpty(String str) {
+        return str == null || str.isEmpty();
+    }
+    /**
+     * Sets an oAuth api client without encryption. This will be used to send authenticated requests to the server.
+     *
+     * @return the oAuth api client
+     */
+    @Bean
+    public ApiClient apiClient() {
+        ApiClient client = newGenericClient();
+        try {
+            var config = OAuth2Configuration.productionConfigWithConsoleLogging();
+            client.setHttpClient(
+                    client.getHttpClient()
+                            .newBuilder()
+                            .addInterceptor(
+                                    new OkHttp3OAuth2Interceptor(config, clientId, getSigningKey(), tokenUrl, keyId, scope))
+                            .build()
+            );
+
+        } catch (InvalidAlgorithmParameterException e) {
+            System.out.println(e.getMessage());
+        }
+        return client;
+    }
+
+    private PrivateKey getSigningKey() {
+        PrivateKey signingKey = null;
+        try {
+            signingKey = AuthenticationUtils.loadSigningKey(signingKeyContainer, signingKeyAlias, signingKeyPassword);
+        } catch (Exception e) {
+            e.printStackTrace();
+        }
+        return signingKey;
+    }
+
+    private ApiClient newGenericClient() {
+        ApiClient client = new ApiClient();
+        client.setLenientOnJson(true);
+        client.setBasePath(basePath);
+        client.setDebugging(false);
+        return client;
+    }
+}
diff --git a/src/main/resources/application-oauth1.properties b/src/main/resources/application-oauth1.properties
@@ -0,0 +1,5 @@
+#OAUTH
+mastercard.oauth.pkcs12KeyFile=
+mastercard.oauth.consumerKey=
+mastercard.oauth.keyAlias=
+mastercard.oauth.keyPassword=
diff --git a/src/main/resources/application-oauth2.properties b/src/main/resources/application-oauth2.properties
@@ -0,0 +1,13 @@
+mastercard.basePath=https://api.mastercard.com/oauth-petstore/petstore
+server.port=${port:8081}
+
+mastercard.encryption.encryptionCert=
+mastercard.encryption.decryptionKeys=
+mastercard.encryption.decryptionKeyAlias=
+mastercard.encryption.decryptionKeyPassword=
+mastercard.encryption.encryptionCert=
+mastercard.encryption.decryptionKeys=
+mastercard.encryption.decryptionKeyAlias=
+mastercard.encryption.decryptionKeyPassword=
+
+