feat: 1. rename AuthenticationUser to AuthUser; 2. support cookie forwards for rest api plugin

lvhuichao · lvhuichao · commit 9a55cc3bc3e7 · 2023-03-03T12:25:43.000+08:00
diff --git a/server/api-service/build-ee.sh b/server/api-service/build-ee.sh
@@ -0,0 +1,15 @@
+#!/bin/bash
+
+# Remove previous dist directory
+rm -rf dist/
+
+# Build the code. $@ accepts all the parameters from the input command line and uses it in the maven build command
+mvn clean package install "$@" -DskipTests -f ./pom-ee.xml -P selfhost-openblocks
+
+if [ $? -eq 0 ]
+then
+  echo "mvn Successful"
+else
+  echo "mvn Failed"
+  exit 1
+fi
diff --git a/server/api-service/build-majiang.sh b/server/api-service/build-majiang.sh
@@ -0,0 +1,15 @@
+#!/bin/bash
+
+# Remove previous dist directory
+rm -rf dist/
+
+# Build the code. $@ accepts all the parameters from the input command line and uses it in the maven build command
+mvn clean package install "$@" -DskipTests -f ./pom-ee.xml -P majiang
+
+if [ $? -eq 0 ]
+then
+  echo "mvn Successful"
+else
+  echo "mvn Failed"
+  exit 1
+fi
diff --git a/server/api-service/openblocks-domain/src/main/java/com/openblocks/domain/user/model/AuthUser.java b/server/api-service/openblocks-domain/src/main/java/com/openblocks/domain/user/model/AuthUser.java
@@ -21,7 +21,7 @@
 @Builder
 @NoArgsConstructor
 @AllArgsConstructor
-public class AuthenticationUser {
+public class AuthUser {
 
     private String uid;
     private String username;
diff --git a/server/api-service/openblocks-domain/src/main/java/com/openblocks/domain/user/service/UserService.java b/server/api-service/openblocks-domain/src/main/java/com/openblocks/domain/user/service/UserService.java
@@ -6,7 +6,7 @@
 import org.springframework.http.codec.multipart.Part;
 import org.springframework.web.server.ServerWebExchange;
 
-import com.openblocks.domain.user.model.AuthenticationUser;
+import com.openblocks.domain.user.model.AuthUser;
 import com.openblocks.domain.user.model.Connection;
 import com.openblocks.domain.user.model.User;
 import com.openblocks.domain.user.model.UserDetail;
@@ -33,9 +33,9 @@ public interface UserService {
 
     Mono<Boolean> bindEmail(User user, String email);
 
-    Mono<User> findByAuthUser(AuthenticationUser authenticationUser);
+    Mono<User> findByAuthUser(AuthUser authUser);
 
-    Mono<User> createNewUserByAuthUser(AuthenticationUser authenticationUser);
+    Mono<User> createNewUserByAuthUser(AuthUser authUser);
 
     Mono<Void> getUserAvatar(ServerWebExchange exchange, String userId);
 
diff --git a/server/api-service/openblocks-domain/src/main/java/com/openblocks/domain/user/service/UserServiceImpl.java b/server/api-service/openblocks-domain/src/main/java/com/openblocks/domain/user/service/UserServiceImpl.java
@@ -39,7 +39,7 @@
 import com.openblocks.domain.group.service.GroupService;
 import com.openblocks.domain.organization.model.OrgMember;
 import com.openblocks.domain.organization.service.OrgMemberService;
-import com.openblocks.domain.user.model.AuthenticationUser;
+import com.openblocks.domain.user.model.AuthUser;
 import com.openblocks.domain.user.model.Connection;
 import com.openblocks.domain.user.model.User;
 import com.openblocks.domain.user.model.User.TransformedUserInfo;
@@ -155,12 +155,12 @@ public Mono<User> update(String id, User updatedUser) {
     }
 
     @Override
-    public Mono<User> findByAuthUser(AuthenticationUser authenticationUser) {
-        return findBySourceAndId(authenticationUser.getSource(), authenticationUser.getUid());
+    public Mono<User> findByAuthUser(AuthUser authUser) {
+        return findBySourceAndId(authUser.getSource(), authUser.getUid());
     }
 
     @Override
-    public Mono<User> createNewUserByAuthUser(AuthenticationUser authUser) {
+    public Mono<User> createNewUserByAuthUser(AuthUser authUser) {
         User newUser = new User();
         newUser.setName(authUser.getUsername());
         newUser.setState(UserState.ACTIVATED);
diff --git a/server/api-service/openblocks-plugins/restApiPlugin/src/main/java/com/openblocks/plugin/restapi/RestApiExecutor.java b/server/api-service/openblocks-plugins/restApiPlugin/src/main/java/com/openblocks/plugin/restapi/RestApiExecutor.java
@@ -61,6 +61,7 @@
 import javax.annotation.Nullable;
 
 import org.apache.commons.collections4.CollectionUtils;
+import org.apache.commons.lang3.ObjectUtils;
 import org.apache.commons.lang3.StringUtils;
 import org.apache.commons.lang3.tuple.Pair;
 import org.bson.internal.Base64;
@@ -88,6 +89,7 @@
 import com.openblocks.plugin.restapi.model.QueryBody;
 import com.openblocks.plugin.restapi.model.RestApiQueryConfig;
 import com.openblocks.plugin.restapi.model.RestApiQueryExecutionContext;
+import com.openblocks.sdk.config.CommonConfig;
 import com.openblocks.sdk.exception.PluginException;
 import com.openblocks.sdk.models.Property;
 import com.openblocks.sdk.models.QueryExecutionResult;
@@ -114,13 +116,18 @@ public class RestApiExecutor implements QueryExecutor<RestApiDatasourceConfig, O
     private static final String DEFAULT_REST_ERROR_CODE = "REST_API_EXECUTION_ERROR";
     private static final int MAX_REDIRECTS = 7;
     private final DataUtils dataUtils = DataUtils.getInstance();
+    private final CommonConfig commonConfig;
 
     // Set an unlimited buffer size, because query payload limit will be handled in webFilter
     private final ExchangeStrategies exchangeStrategies = ExchangeStrategies
             .builder()
             .codecs(configurer -> configurer.defaultCodecs().maxInMemorySize(-1))
             .build();
 
+    public RestApiExecutor(CommonConfig commonConfig) {
+        this.commonConfig = commonConfig;
+    }
+
     @Override
     public RestApiQueryExecutionContext buildQueryExecutionContext(RestApiDatasourceConfig datasourceConfig,
             Map<String, Object> queryConfigMap,
@@ -348,14 +355,19 @@ private Consumer<MultiValueMap<String, String>> injectCookies(RestApiQueryExecut
             }
 
             if (request.isForwardAllCookies()) {
-                requestCookies.forEach(
-                        (cookieName, httpCookies) -> currentCookies.addAll(cookieName, collectList(httpCookies, HttpCookie::getValue)));
+                requestCookies.forEach((cookieName, httpCookies) -> {
+                    if (StringUtils.equals(cookieName, commonConfig.getCookieName())) {
+                        return;
+                    }
+                    currentCookies.addAll(cookieName, collectList(httpCookies, HttpCookie::getValue));
+                });
                 return;
             }
 
             requestCookies.entrySet()
                     .stream()
                     .filter(it -> forwardCookies.contains(it.getKey()))
+                    .filter(it -> ObjectUtils.notEqual(it.getKey(), commonConfig.getCookieName()))
                     .forEach(entry -> {
                         String cookieName = entry.getKey();
                         List<HttpCookie> httpCookies = entry.getValue();
diff --git a/server/api-service/openblocks-plugins/restApiPlugin/src/test/java/com/openblocks/plugin/restapi/RestApiEngineTest.java b/server/api-service/openblocks-plugins/restApiPlugin/src/test/java/com/openblocks/plugin/restapi/RestApiEngineTest.java
@@ -20,6 +20,7 @@
 import com.fasterxml.jackson.databind.node.TextNode;
 import com.google.common.collect.ImmutableMap;
 import com.openblocks.plugin.restapi.model.RestApiQueryExecutionContext;
+import com.openblocks.sdk.config.CommonConfig;
 import com.openblocks.sdk.models.Property;
 import com.openblocks.sdk.models.QueryExecutionResult;
 import com.openblocks.sdk.plugin.common.RestApiUriBuilder;
@@ -33,7 +34,7 @@
 
 public class RestApiEngineTest {
 
-    private final RestApiExecutor executor = new RestApiExecutor();
+    private final RestApiExecutor executor = new RestApiExecutor(new CommonConfig());
     private static final RestApiConnector connector = new RestApiConnector();
 
     private final QueryVisitorContext queryVisitorContext = new QueryVisitorContext("userId1",
diff --git a/server/api-service/openblocks-sdk/pom.xml b/server/api-service/openblocks-sdk/pom.xml
@@ -159,5 +159,9 @@
             <groupId>org.apache.httpcomponents</groupId>
             <artifactId>httpclient</artifactId>
         </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-autoconfigure</artifactId>
+        </dependency>
     </dependencies>
 </project>
diff --git a/server/api-service/openblocks-sdk/src/main/java/com/openblocks/sdk/auth/AbstractAuthConfig.java b/server/api-service/openblocks-sdk/src/main/java/com/openblocks/sdk/auth/AbstractAuthConfig.java
@@ -48,6 +48,9 @@ public void setSource(String source) {
         this.source = source;
     }
 
+    /**
+     * @see com.openblocks.sdk.auth.constants.AuthTypeConstants
+     */
     public abstract String getAuthType();
 
     public final boolean isEnable() {
diff --git a/server/api-service/openblocks-sdk/src/main/java/com/openblocks/sdk/exception/BizError.java b/server/api-service/openblocks-sdk/src/main/java/com/openblocks/sdk/exception/BizError.java
@@ -98,6 +98,7 @@ public enum BizError {
     LOGIN_EXPIRED(401, 5616),
     DISABLE_AUTH_CONFIG_FORBIDDEN(403, 5617),
     USER_NOT_EXIST(400, 5618),
+    JWT_NOT_FIND(400, 5619),
 
 
     // asset related, code range 5700 - 5799
diff --git a/server/api-service/openblocks-sdk/src/main/java/com/openblocks/sdk/util/CookieHelper.java b/server/api-service/openblocks-sdk/src/main/java/com/openblocks/sdk/util/CookieHelper.java
@@ -6,6 +6,8 @@
 
 import java.util.Optional;
 
+import javax.annotation.Nullable;
+
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.http.HttpCookie;
 import org.springframework.http.ResponseCookie;
@@ -48,13 +50,21 @@ public void saveCookie(String token, ServerWebExchange exchange) {
     }
 
     public String getCookieToken(ServerWebExchange exchange) {
+        return getCookieValue(exchange, getCookieName(), "");
+    }
+
+    @Nullable
+    public String getJWT(ServerWebExchange exchange) {
+        return getCookieValue(exchange, "JWT", null);
+    }
+
+    public String getCookieValue(ServerWebExchange exchange, String cookieName, String defaultValue) {
         MultiValueMap<String, HttpCookie> cookies = exchange.getRequest().getCookies();
-        return ofNullable(cookies.getFirst(getCookieName()))
+        return ofNullable(cookies.getFirst(cookieName))
                 .map(HttpCookie::getValue)
-                .orElse("");
+                .orElse(defaultValue);
     }
 
-
     public static String generateCookieToken() {
         return generate();
     }
diff --git a/server/api-service/openblocks-server/pom.xml b/server/api-service/openblocks-server/pom.xml
@@ -161,6 +161,13 @@
             <groupId>javax.servlet</groupId>
             <artifactId>javax.servlet-api</artifactId>
         </dependency>
+
+        <dependency>
+            <groupId>com.auth0</groupId>
+            <artifactId>java-jwt</artifactId>
+            <version>4.3.0</version>
+        </dependency>
+
         <dependency>
             <groupId>it.ozimov</groupId>
             <artifactId>embedded-redis</artifactId>
diff --git a/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/dto/AuthConfigRequest.java b/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/dto/AuthConfigRequest.java
@@ -8,6 +8,7 @@
 
 import org.apache.commons.collections4.MapUtils;
 import org.apache.commons.lang3.ObjectUtils;
+import org.apache.commons.lang3.StringUtils;
 
 public class AuthConfigRequest extends HashMap<String, Object> {
 
@@ -37,14 +38,20 @@ public String getClientSecret() {
         return getString("clientSecret");
     }
 
-    @Nullable
-    public String getSource() {
-        return getString("source");
+    public String getSource(String defaultValue) {
+        String source = getString("source");
+        if (StringUtils.isNotBlank(source)) {
+            return source;
+        }
+        return defaultValue;
     }
 
-    @Nullable
-    public String getSourceName() {
-        return getString("sourceName");
+    public String getSourceName(String defaultValue) {
+        String sourceName = getString("sourceName");
+        if (StringUtils.isNotBlank(sourceName)) {
+            return sourceName;
+        }
+        return defaultValue;
     }
 
     public String getString(String key) {
diff --git a/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/request/AuthRequest.java b/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/request/AuthRequest.java
@@ -1,7 +1,7 @@
 package com.openblocks.api.authentication.request;
 
 import com.openblocks.domain.authentication.context.AuthRequestContext;
-import com.openblocks.domain.user.model.AuthenticationUser;
+import com.openblocks.domain.user.model.AuthUser;
 import com.openblocks.domain.user.model.ConnectionAuthToken;
 
 import reactor.core.publisher.Mono;
@@ -11,7 +11,7 @@
  */
 public interface AuthRequest {
 
-    Mono<AuthenticationUser> auth(AuthRequestContext authRequestContext);
+    Mono<AuthUser> auth(AuthRequestContext authRequestContext);
 
     default Mono<ConnectionAuthToken> refresh(ConnectionAuthToken old) {
         return Mono.error(new UnsupportedOperationException());
diff --git a/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/request/form/FormAuthRequest.java b/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/request/form/FormAuthRequest.java
@@ -9,7 +9,7 @@
 import com.openblocks.domain.authentication.context.AuthRequestContext;
 import com.openblocks.domain.authentication.context.FormAuthRequestContext;
 import com.openblocks.domain.encryption.EncryptionService;
-import com.openblocks.domain.user.model.AuthenticationUser;
+import com.openblocks.domain.user.model.AuthUser;
 import com.openblocks.domain.user.service.UserService;
 import com.openblocks.sdk.auth.AbstractAuthConfig;
 import com.openblocks.sdk.auth.EmailAuthConfig;
@@ -28,7 +28,7 @@ public class FormAuthRequest implements AuthRequest {
     private EncryptionService encryptionService;
 
     @Override
-    public Mono<AuthenticationUser> auth(AuthRequestContext authRequestContext) {
+    public Mono<AuthUser> auth(AuthRequestContext authRequestContext) {
         FormAuthRequestContext context = (FormAuthRequestContext) authRequestContext;
 
         return Mono.defer(() -> {
@@ -57,6 +57,6 @@ public Mono<AuthenticationUser> auth(AuthRequestContext authRequestContext) {
                                 return Mono.empty();
                             });
                 })
-                .thenReturn(AuthenticationUser.builder().uid(context.getLoginId()).username(context.getLoginId()).build());
+                .thenReturn(AuthUser.builder().uid(context.getLoginId()).username(context.getLoginId()).build());
     }
 }
diff --git a/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/request/oauth2/request/AbstractOauth2Request.java b/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/request/oauth2/request/AbstractOauth2Request.java
@@ -10,7 +10,7 @@
 import com.openblocks.api.authentication.util.AuthenticationUtils;
 import com.openblocks.domain.authentication.context.AuthRequestContext;
 import com.openblocks.domain.user.model.AuthToken;
-import com.openblocks.domain.user.model.AuthenticationUser;
+import com.openblocks.domain.user.model.AuthUser;
 import com.openblocks.domain.user.model.ConnectionAuthToken;
 import com.openblocks.sdk.auth.Oauth2SimpleAuthConfig;
 
@@ -30,15 +30,15 @@ public AbstractOauth2Request(T config, Oauth2Source source, OAuth2RequestContext
         this.context = context;
     }
 
-    public Mono<AuthenticationUser> auth(AuthRequestContext authRequestContext) {
+    public Mono<AuthUser> auth(AuthRequestContext authRequestContext) {
         return Mono.defer(() -> {
                     try {
                         OAuth2RequestContext context = (OAuth2RequestContext) authRequestContext;
 
-                        AuthToken token = this.getAccessToken(context);
-                        AuthenticationUser authenticationUser = this.getUserInfo(token);
-                        authenticationUser.setAuthToken(token);
-                        return Mono.just(authenticationUser);
+                        AuthToken token = this.getAuthToken(context);
+                        AuthUser authUser = this.getAuthUser(token);
+                        authUser.setAuthToken(token);
+                        return Mono.just(authUser);
                     } catch (Exception e) {
                         log.error("get oidc failed: {}", toJson(authRequestContext), e);
                         return deferredError(FAIL_TO_GET_OIDC_INFO, "FAIL_TO_GET_OIDC_INFO", e.getMessage());
@@ -47,9 +47,9 @@ public Mono<AuthenticationUser> auth(AuthRequestContext authRequestContext) {
                 .subscribeOn(AuthenticationUtils.AUTH_REQUEST_THREAD_POOL);
     }
 
-    protected abstract AuthToken getAccessToken(OAuth2RequestContext context);
+    protected abstract AuthToken getAuthToken(OAuth2RequestContext context);
 
-    protected abstract AuthenticationUser getUserInfo(AuthToken authToken);
+    protected abstract AuthUser getAuthUser(AuthToken authToken);
 
     public Mono<ConnectionAuthToken> refresh(ConnectionAuthToken old) {
         return Mono.fromSupplier(() -> {
diff --git a/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/request/oauth2/request/GithubRequest.java b/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/request/oauth2/request/GithubRequest.java
@@ -16,7 +16,7 @@
 import com.openblocks.sdk.util.HttpUtils;
 import com.openblocks.api.authentication.request.AuthException;
 import com.openblocks.domain.user.model.AuthToken;
-import com.openblocks.domain.user.model.AuthenticationUser;
+import com.openblocks.domain.user.model.AuthUser;
 import com.openblocks.sdk.auth.Oauth2SimpleAuthConfig;
 
 public class GithubRequest extends AbstractOauth2Request<Oauth2SimpleAuthConfig> {
@@ -26,7 +26,7 @@ public GithubRequest(Oauth2SimpleAuthConfig config, OAuth2RequestContext context
     }
 
     @Override
-    protected AuthToken getAccessToken(OAuth2RequestContext context) {
+    protected AuthToken getAuthToken(OAuth2RequestContext context) {
         String result;
 
         try {
@@ -66,14 +66,14 @@ private Map<String, String> parseStringToMap(String s) {
     }
 
     @Override
-    protected AuthenticationUser getUserInfo(AuthToken authToken) {
+    protected AuthUser getAuthUser(AuthToken authToken) {
         String response = HttpUtils.get(source.userInfo(), null, Map.of("Authorization", "token " + authToken.getAccessToken()));
 
         JSONObject object = new JSONObject(response);
 
         this.checkResponse(object);
 
-        return AuthenticationUser.builder()
+        return AuthUser.builder()
                 .uid(object.get("id").toString())
                 .username(object.getString("login"))
                 .avatar(object.getString("avatar_url"))
diff --git a/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/request/oauth2/request/GoogleRequest.java b/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/request/oauth2/request/GoogleRequest.java
diff --git a/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/service/AuthenticationApiService.java b/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/service/AuthenticationApiService.java
diff --git a/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/service/AuthenticationApiServiceImpl.java b/server/api-service/openblocks-server/src/main/java/com/openblocks/api/authentication/service/AuthenticationApiServiceImpl.java
diff --git a/server/api-service/openblocks-server/src/main/java/com/openblocks/api/config/ConfigView.java b/server/api-service/openblocks-server/src/main/java/com/openblocks/api/config/ConfigView.java
diff --git a/server/api-service/openblocks-server/src/main/java/com/openblocks/api/framework/security/SecurityConfig.java b/server/api-service/openblocks-server/src/main/java/com/openblocks/api/framework/security/SecurityConfig.java
diff --git a/server/api-service/openblocks-server/src/main/java/com/openblocks/api/usermanagement/OrgApiServiceImpl.java b/server/api-service/openblocks-server/src/main/java/com/openblocks/api/usermanagement/OrgApiServiceImpl.java

Original file line number	Diff line number	Diff line change
`@@ -48,6 +48,9 @@ public void setSource(String source) {`
`48`	`48`	`this.source = source;`
`49`	`49`	`}`
`50`	`50`
	`51`	`+ /**`
	`52`	`+ * @see com.openblocks.sdk.auth.constants.AuthTypeConstants`
	`53`	`+ */`
`51`	`54`	`public abstract String getAuthType();`
`52`	`55`
`53`	`56`	`public final boolean isEnable() {`