Basic Authorization as trait

This change updates the Basic Authorization behavior to be automatically
applied to requests that are implementation of the BasicAuthorized interface.
This change ensures that implementations do not have to remember to add this
behavior to their invocation.

Author: nebhale

cloudfoundry-client-spring/src/main/java/org/cloudfoundry/reactor/uaa/AbstractUaaOperations.java

@@ -17,7 +17,6 @@
 package org.cloudfoundry.reactor.uaa;
 
 import com.fasterxml.jackson.databind.ObjectMapper;
-import io.netty.util.AsciiString;
 import org.cloudfoundry.reactor.client.QueryBuilder;
 import org.cloudfoundry.reactor.util.AbstractReactorOperations;
 import org.cloudfoundry.reactor.util.AuthorizationProvider;
@@ -27,13 +26,10 @@
 import reactor.io.netty.http.HttpInbound;
 import reactor.io.netty.http.HttpOutbound;
 
-import java.util.Base64;
 import java.util.function.Function;
 
 public abstract class AbstractUaaOperations extends AbstractReactorOperations {
 
-    private static final AsciiString BASIC_PREAMBLE = new AsciiString("Basic ");
-
     protected AbstractUaaOperations(AuthorizationProvider authorizationProvider, HttpClient httpClient, ObjectMapper objectMapper, Mono<String> root) {
         super(authorizationProvider, httpClient, objectMapper, root);
     }
@@ -45,12 +41,6 @@ protected static Function<UriComponentsBuilder, UriComponentsBuilder> getUriAugm
         };
     }
 
-    protected final HttpOutbound basicAuth(HttpOutbound outbound, String clientId, String clientSecret) {
-        String encoded = Base64.getEncoder().encodeToString(new AsciiString(clientId).concat(":").concat(clientSecret).toByteArray());
-        outbound.headers().set(AUTHORIZATION, BASIC_PREAMBLE + encoded);
-        return outbound;
-    }
-
     protected final <T> Mono<T> delete(Object request, Class<T> responseType, Function<UriComponentsBuilder, UriComponentsBuilder> uriTransformer) {
         return doDelete(request, responseType, getUriAugmenter(request, uriTransformer), getRequestTransformer(request));
     }
@@ -85,12 +75,29 @@ protected final <T> Mono<T> post(Object request, Class<T> responseType, Function
         return doPost(request, responseType, getUriAugmenter(request, uriTransformer), getRequestTransformer(request));
     }
 
+    protected final <T> Mono<T> postForm(Object request, Class<T> responseType, Function<UriComponentsBuilder, UriComponentsBuilder> uriTransformer) {
+        return postForm(request, responseType, uriTransformer, outbound -> outbound);
+    }
+
+    protected final <T> Mono<T> postForm(Object request, Class<T> responseType, Function<UriComponentsBuilder, UriComponentsBuilder> uriTransformer, Function<HttpOutbound, HttpOutbound>
+        requestTransformer) {
+        return doPost(responseType, getUriAugmenter(request, uriTransformer), outbound -> {
+            outbound.headers().remove(AUTHORIZATION);
+            getRequestTransformer(request).apply(outbound);
+            return requestTransformer.apply(outbound)
+                .addHeader(CONTENT_TYPE, APPLICATION_X_WWW_FORM_URLENCODED)
+                .removeTransferEncodingChunked()
+                .sendHeaders();
+        });
+    }
+
     protected final <T> Mono<T> put(Object request, Class<T> responseType, Function<UriComponentsBuilder, UriComponentsBuilder> uriTransformer) {
         return doPut(request, responseType, getUriAugmenter(request, uriTransformer), getRequestTransformer(request));
     }
 
     private static Function<HttpOutbound, HttpOutbound> getRequestTransformer(Object request) {
         return outbound -> {
+            BasicAuthorizationBuilder.augment(outbound, request);
             IdentityZoneBuilder.augment(outbound, request);
             VersionBuilder.augment(outbound, request);
             return outbound;

cloudfoundry-client-spring/src/main/java/org/cloudfoundry/reactor/uaa/BasicAuthorizationBuilder.java

@@ -0,0 +1,41 @@
+/*
+ * Copyright 2013-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.cloudfoundry.reactor.uaa;
+
+import io.netty.util.AsciiString;
+import org.cloudfoundry.uaa.BasicAuthorized;
+import reactor.io.netty.http.HttpOutbound;
+
+import java.util.Base64;
+
+final class BasicAuthorizationBuilder {
+
+    private static final AsciiString AUTHORIZATION = new AsciiString("Authorization");
+
+    private static final AsciiString BASIC_PREAMBLE = new AsciiString("Basic ");
+
+    private BasicAuthorizationBuilder(){}
+
+    static void augment(HttpOutbound outbound, Object request) {
+        if(request instanceof BasicAuthorized) {
+            BasicAuthorized basicAuthorized = (BasicAuthorized)request;
+            String encoded = Base64.getEncoder().encodeToString(new AsciiString(basicAuthorized.getClientId()).concat(":").concat(basicAuthorized.getClientSecret()).toByteArray());
+            outbound.headers().set(AUTHORIZATION, BASIC_PREAMBLE + encoded);
+        }
+    }
+
+}

cloudfoundry-client-spring/src/main/java/org/cloudfoundry/reactor/uaa/VersionBuilder.java

@@ -26,8 +26,8 @@ private VersionBuilder() {
 
     static void augment(HttpOutbound outbound, Object request) {
         if (request instanceof Versioned) {
-            Versioned identityZoned = (Versioned) request;
-            outbound.addHeader("If-Match", identityZoned.getVersion());
+            Versioned versioned = (Versioned) request;
+            outbound.addHeader("If-Match", versioned.getVersion());
         }
     }
 

cloudfoundry-client-spring/src/main/java/org/cloudfoundry/reactor/uaa/tokens/ReactorTokens.java

@@ -38,12 +38,8 @@
 import org.cloudfoundry.uaa.tokens.RefreshTokenRequest;
 import org.cloudfoundry.uaa.tokens.RefreshTokenResponse;
 import org.cloudfoundry.uaa.tokens.Tokens;
-import org.springframework.web.util.UriComponentsBuilder;
 import reactor.core.publisher.Mono;
 import reactor.io.netty.http.HttpClient;
-import reactor.io.netty.http.HttpOutbound;
-
-import java.util.function.Function;
 
 
 public final class ReactorTokens extends AbstractUaaOperations implements Tokens {
@@ -62,8 +58,7 @@ public ReactorTokens(AuthorizationProvider authorizationProvider, HttpClient htt
 
     @Override
     public Mono<CheckTokenResponse> check(CheckTokenRequest request) {
-        return post(request, CheckTokenResponse.class, builder -> builder.pathSegment("check_token"),
-            outbound -> basicAuth(outbound, request.getClientId(), request.getClientSecret()));
+        return post(request, CheckTokenResponse.class, builder -> builder.pathSegment("check_token"));
     }
 
     @Override
@@ -80,9 +75,7 @@ public Mono<GetTokenByClientCredentialsResponse> getByClientCredentials(GetToken
 
     @Override
     public Mono<GetTokenByOneTimePasscodeResponse> getByOneTimePasscode(GetTokenByOneTimePasscodeRequest request) {
-        return postForm(request, GetTokenByOneTimePasscodeResponse.class,
-            builder -> builder.pathSegment("oauth", "token").queryParam("grant_type", "password").queryParam("response_type", "token"),
-            outbound -> basicAuth(outbound, request.getClientId(), request.getClientSecret()));
+        return postForm(request, GetTokenByOneTimePasscodeResponse.class, builder -> builder.pathSegment("oauth", "token").queryParam("grant_type", "password").queryParam("response_type", "token"));
     }
 
     @Override
@@ -111,19 +104,4 @@ public Mono<RefreshTokenResponse> refresh(RefreshTokenRequest request) {
         return postForm(request, RefreshTokenResponse.class, builder -> builder.pathSegment("oauth", "token").queryParam("grant_type", "refresh_token"));
     }
 
-    private <T> Mono<T> postForm(Object request, Class<T> responseType, Function<UriComponentsBuilder, UriComponentsBuilder> uriTransformer) {
-        return postForm(request, responseType, uriTransformer, outbound -> outbound);
-    }
-
-    private <T> Mono<T> postForm(Object request, Class<T> responseType, Function<UriComponentsBuilder, UriComponentsBuilder> uriTransformer, Function<HttpOutbound, HttpOutbound> requestTransformer) {
-        return doPost(responseType, getUriAugmenter(request, uriTransformer), outbound -> {
-            outbound.headers().remove(AUTHORIZATION);
-
-            return requestTransformer.apply(outbound)
-                .addHeader(CONTENT_TYPE, APPLICATION_X_WWW_FORM_URLENCODED)
-                .removeTransferEncodingChunked()
-                .sendHeaders();
-        });
-    }
-
 }

cloudfoundry-client/src/main/java/org/cloudfoundry/uaa/BasicAuthorized.java

@@ -0,0 +1,38 @@
+/*
+ * Copyright 2013-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.cloudfoundry.uaa;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+
+/**
+ * An interface that indicates that a UAA request should use basic authorization
+ */
+public interface BasicAuthorized {
+
+    /**
+     * The client id
+     */
+    @JsonIgnore
+    String getClientId();
+
+    /**
+     * The client secret
+     */
+    @JsonIgnore
+    String getClientSecret();
+
+}

cloudfoundry-client/src/main/java/org/cloudfoundry/uaa/tokens/_CheckTokenRequest.java

@@ -16,9 +16,9 @@
 
 package org.cloudfoundry.uaa.tokens;
 
-import com.fasterxml.jackson.annotation.JsonIgnore;
 import org.cloudfoundry.Nullable;
 import org.cloudfoundry.QueryParameter;
+import org.cloudfoundry.uaa.BasicAuthorized;
 import org.immutables.value.Value;
 
 import java.util.List;
@@ -27,19 +27,7 @@
  * The request payload for the check token operation
  */
 @Value.Immutable
-abstract class _CheckTokenRequest {
-
-    /**
-     * The client identifier
-     */
-    @JsonIgnore
-    abstract String getClientId();
-
-    /**
-     * The client's secret passphrase
-     */
-    @JsonIgnore
-    abstract String getClientSecret();
+abstract class _CheckTokenRequest implements BasicAuthorized {
 
     /**
      * The scopes authorized by the user for this client

cloudfoundry-client/src/main/java/org/cloudfoundry/uaa/tokens/_GetTokenByOneTimePasscodeRequest.java

@@ -16,28 +16,16 @@
 
 package org.cloudfoundry.uaa.tokens;
 
-import com.fasterxml.jackson.annotation.JsonIgnore;
 import org.cloudfoundry.Nullable;
 import org.cloudfoundry.QueryParameter;
+import org.cloudfoundry.uaa.BasicAuthorized;
 import org.immutables.value.Value;
 
 /**
  * The request payload for the get token by one-time passcode operation
  */
 @Value.Immutable
-abstract class _GetTokenByOneTimePasscodeRequest {
-
-    /**
-     * The client identifier
-     */
-    @JsonIgnore
-    abstract String getClientId();
-
-    /**
-     * The client's secret passphrase
-     */
-    @JsonIgnore
-    abstract String getClientSecret();
+abstract class _GetTokenByOneTimePasscodeRequest implements BasicAuthorized {
 
     /**
      * The passcode