replace local jwt with library version

- update DeviceController to handle hlaeja jwt instead of jwtService - update mapper sign with hlaeja jwt instead of jwtService - add dependency for hlaeja jwt - remove dependencies for jjwt - remove JwtService.kt - remove PrivateKeyProvider.kt - remove jwt key property explanation from additional-spring-configuration-metadata.json
2025-01-02 05:00:19 +01:00
parent 7d4ebab8f8
commit df9d2c59a4
11 changed files with 17 additions and 194 deletions
--- a/src/main/kotlin/ltd/hlaeja/controller/DeviceController.kt
+++ b/src/main/kotlin/ltd/hlaeja/controller/DeviceController.kt
@@ -1,9 +1,9 @@
 package ltd.hlaeja.controller

 import java.util.UUID
+import ltd.hlaeja.jwt.service.PrivateJwtService
 import ltd.hlaeja.library.deviceRegistry.Device
 import ltd.hlaeja.service.DeviceService
-import ltd.hlaeja.service.JwtService
 import ltd.hlaeja.util.toDeviceResponse
 import org.springframework.web.bind.annotation.GetMapping
 import org.springframework.web.bind.annotation.PathVariable
@@ -14,18 +14,18 @@ import org.springframework.web.bind.annotation.RestController
@RestController
 class DeviceController(
    private val deviceService: DeviceService,
-    private val jwtService: JwtService,
+    private val privateJwtService: PrivateJwtService,
 ) {

    @PostMapping("/device")
    suspend fun addDevice(
        @RequestBody request: Device.Request,
    ): Device.Response = deviceService.addDevice(request.type)
-        .toDeviceResponse(jwtService)
+        .toDeviceResponse(privateJwtService)

    @GetMapping("/device-{device}")
    suspend fun getDevice(
        @PathVariable device: UUID,
    ): Device.Response = deviceService.getDevice(device)
-        .toDeviceResponse(jwtService)
+        .toDeviceResponse(privateJwtService)
 }
--- a/src/main/kotlin/ltd/hlaeja/service/JwtService.kt
+++ b/src/main/kotlin/ltd/hlaeja/service/JwtService.kt
@@ -1,25 +0,0 @@
-package ltd.hlaeja.service
-
-import io.jsonwebtoken.Jwts
-import java.security.interfaces.RSAPrivateKey
-import java.util.UUID
-import ltd.hlaeja.property.JwtProperty
-import ltd.hlaeja.util.PrivateKeyProvider
-import org.springframework.stereotype.Service
-
-@Service
-class JwtService(
-    jwtProperty: JwtProperty,
-) {
-
-    private var privateKey: RSAPrivateKey = PrivateKeyProvider.load(jwtProperty.privateKey)
-
-    suspend fun makeIdentity(device: UUID): String {
-        return Jwts.builder()
-            .claims()
-            .add("device", device)
-            .and()
-            .signWith(privateKey)
-            .compact()
-    }
-}
--- a/src/main/kotlin/ltd/hlaeja/util/Mapping.kt
+++ b/src/main/kotlin/ltd/hlaeja/util/Mapping.kt
@@ -4,11 +4,11 @@ import java.time.ZonedDateTime
 import ltd.hlaeja.entity.DeviceEntity
 import ltd.hlaeja.entity.NodeEntity
 import ltd.hlaeja.entity.TypeEntity
+import ltd.hlaeja.jwt.service.PrivateJwtService
 import ltd.hlaeja.library.deviceRegistry.Device
 import ltd.hlaeja.library.deviceRegistry.Identity
 import ltd.hlaeja.library.deviceRegistry.Node
 import ltd.hlaeja.library.deviceRegistry.Type
-import ltd.hlaeja.service.JwtService
 import org.springframework.http.HttpStatus.EXPECTATION_FAILED
 import org.springframework.web.server.ResponseStatusException

@@ -40,10 +40,10 @@ fun NodeEntity.toIdentityResponse(): Identity.Response = Identity.Response(
    device,
 )

-suspend fun DeviceEntity.toDeviceResponse(
-    jwtService: JwtService,
+fun DeviceEntity.toDeviceResponse(
+    jwtService: PrivateJwtService,
 ): Device.Response = Device.Response(
    id ?: throw ResponseStatusException(EXPECTATION_FAILED),
    type,
-    jwtService.makeIdentity(id),
+    jwtService.sign("device" to id),
 )
--- a/src/main/kotlin/ltd/hlaeja/util/PrivateKeyProvider.kt
+++ b/src/main/kotlin/ltd/hlaeja/util/PrivateKeyProvider.kt
@@ -1,35 +0,0 @@
-package ltd.hlaeja.util
-
-import java.security.KeyFactory
-import java.security.interfaces.RSAPrivateKey
-import java.security.spec.PKCS8EncodedKeySpec
-import java.util.Base64.getDecoder
-import ltd.hlaeja.exception.KeyProviderException
-
-object PrivateKeyProvider {
-
-    fun load(
-        pemFile: String,
-    ): RSAPrivateKey = readPrivatePemFile(pemFile)
-        .let(::makePrivateKey)
-
-    private fun makePrivateKey(
-        privateKeyBytes: ByteArray,
-    ): RSAPrivateKey = KeyFactory.getInstance("RSA")
-        .generatePrivate(PKCS8EncodedKeySpec(privateKeyBytes)) as RSAPrivateKey
-
-    private fun readPrivatePemFile(
-        privateKey: String,
-    ): ByteArray = javaClass.classLoader
-        .getResource(privateKey)
-        ?.readText()
-        ?.let(::getPrivateKeyByteArray)
-        ?: throw KeyProviderException("Could not load private key")
-
-    private fun getPrivateKeyByteArray(
-        keyText: String,
-    ): ByteArray = keyText.replace(Regex("[\r\n]+"), "")
-        .removePrefix("-----BEGIN PRIVATE KEY-----")
-        .removeSuffix("-----END PRIVATE KEY-----")
-        .let { getDecoder().decode(it) }
-}
--- a/src/main/resources/META-INF/additional-spring-configuration-metadata.json
+++ b/src/main/resources/META-INF/additional-spring-configuration-metadata.json
@@ -19,11 +19,6 @@
      "name": "spring.application.build.os.version",
      "type": "java.lang.String",
      "description": "Application build os version."
-    },
-    {
-      "name": "jwt.private-key",
-      "type": "java.lang.String",
-      "description": "Jwt private key file."
    }
  ]
 }