From 984be8b1eecf7762cd649f80b3d127274563e49b Mon Sep 17 00:00:00 2001 From: curry772 Date: Wed, 17 Jun 2026 19:22:10 +0900 Subject: [PATCH] =?UTF-8?q?KJB=20=EC=86=8C=EC=8A=A4=20=EC=A0=95=EB=A6=AC?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- ...ller.java => DJBApiAdapterController.java} | 101 +- ...Service.java => DJBApiAdapterService.java} | 2 +- .../custom/BearerTokenController.java | 200 ---- ....java => DJBOAuth2AccessTokenRequest.java} | 2 +- ...java => DJBOAuth2AccessTokenResponse.java} | 2 +- ...ntroller.java => DJBOAuth2Controller.java} | 12 +- .../custom/KjbMGOAuth2AccessTokenRequest.java | 63 -- .../KjbMGOAuth2AccessTokenResponse.java | 105 -- .../custom/KjbMGOAuth2Controller.java | 360 ------- .../custom/SnapOAuth2AccessTokenRequest.java | 49 - .../custom/SnapOAuth2AccessTokenResponse.java | 72 -- .../custom/SnapOAuth2Controller.java | 222 ----- .../impl/HttpClient5AdapterServiceBase64.java | 897 ------------------ .../impl/HttpClient5AdapterServiceBypass.java | 680 ------------- .../impl/HttpClient5AdapterServiceKbank.java | 888 ----------------- 15 files changed, 74 insertions(+), 3581 deletions(-) rename src/main/java/com/eactive/eai/adapter/controller/{DJErpApiAdapterController.java => DJBApiAdapterController.java} (75%) rename src/main/java/com/eactive/eai/adapter/service/{DJErpApiAdapterService.java => DJBApiAdapterService.java} (99%) delete mode 100644 src/main/java/com/eactive/eai/authserver/custom/BearerTokenController.java rename src/main/java/com/eactive/eai/authserver/custom/{DJErpOAuth2AccessTokenRequest.java => DJBOAuth2AccessTokenRequest.java} (94%) rename src/main/java/com/eactive/eai/authserver/custom/{DJErpOAuth2AccessTokenResponse.java => DJBOAuth2AccessTokenResponse.java} (96%) rename src/main/java/com/eactive/eai/authserver/custom/{DJErpOAuth2Controller.java => DJBOAuth2Controller.java} (96%) delete mode 100644 src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2AccessTokenRequest.java delete mode 100644 src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2AccessTokenResponse.java delete mode 100644 src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2Controller.java delete mode 100644 src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2AccessTokenRequest.java delete mode 100644 src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2AccessTokenResponse.java delete mode 100644 src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2Controller.java delete mode 100644 src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceBase64.java delete mode 100644 src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceBypass.java delete mode 100644 src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceKbank.java diff --git a/src/main/java/com/eactive/eai/adapter/controller/DJErpApiAdapterController.java b/src/main/java/com/eactive/eai/adapter/controller/DJBApiAdapterController.java similarity index 75% rename from src/main/java/com/eactive/eai/adapter/controller/DJErpApiAdapterController.java rename to src/main/java/com/eactive/eai/adapter/controller/DJBApiAdapterController.java index a3ee048..577b55b 100644 --- a/src/main/java/com/eactive/eai/adapter/controller/DJErpApiAdapterController.java +++ b/src/main/java/com/eactive/eai/adapter/controller/DJBApiAdapterController.java @@ -23,10 +23,12 @@ import com.eactive.eai.adapter.handler.AdapterErrorMessageHandler; import com.eactive.eai.adapter.handler.AdapterErrorMessageHandlerFactory; import com.eactive.eai.adapter.http.HttpStatusException; import com.eactive.eai.adapter.http.dynamic.HttpAdapterServiceKey; +import com.eactive.eai.adapter.http.dynamic.HttpAdapterServiceSupport; import com.eactive.eai.adapter.http.dynamic.HttpDynamicInAdapterManager; import com.eactive.eai.adapter.http.dynamic.HttpDynamicInAdapterUri; +import com.eactive.eai.adapter.http.dynamic.filter.FilterException; import com.eactive.eai.adapter.http.dynamic.filter.JwtAuthException; -import com.eactive.eai.adapter.service.DJErpApiAdapterService; +import com.eactive.eai.adapter.service.DJBApiAdapterService; import com.eactive.eai.common.TransactionContextKeys; import com.eactive.eai.common.exception.ExceptionUtil; import com.eactive.eai.common.server.EAIServerManager; @@ -38,13 +40,14 @@ import com.eactive.eai.common.util.TxFileLogger; import com.eactive.eai.common.util.TxSiftContext; import com.eactive.eai.common.util.UUIDGenerator; import com.eactive.eai.inbound.error.InboundErrorInfoVO; +import com.eactive.eai.util.HexaConverter; @RestController -public class DJErpApiAdapterController implements HttpAdapterServiceKey { +public class DJBApiAdapterController implements HttpAdapterServiceKey { static Logger logger = Logger.getLogger(Logger.LOGGER_ADAPTER); @Autowired - DJErpApiAdapterService service; + DJBApiAdapterService service; /** * DJErp OAuth 조기 적용을 위한 Controller @@ -137,13 +140,20 @@ public class DJErpApiAdapterController implements HttpAdapterServiceKey { errorMsg = genErrorResponseMessage(adapterGroupName, adapterName, transactionProp, e, adptMsgType, encode, errorResponseFormat); - if (e instanceof HttpStatusException) { - logger.warn("ApiAdapterController] " + adapterGroupName + "-" + adapterName + ">>" + e.getMessage()); - HttpStatusException e1 = (HttpStatusException) e; + if (e instanceof FilterException) { + FilterException e1 = (FilterException) e; + this.logError(servletRequest, uuid, adapterGroupName, e1.getCode(), errorMsg, transactionProp, e); + logger.error("ApiAdapterController] " + adapterGroupName + "-" + adapterName + ">>" + e.getMessage()); responseEntity = ResponseEntity.status(e1.getStatus()).contentType(mediaType).body(errorMsg); } else if (e instanceof JwtAuthException) { - logger.error(adapterGroupName + "-" + adapterName + ">>" + e.getMessage(), e); + JwtAuthException e1 = (JwtAuthException) e; + this.logError(servletRequest, uuid, adapterGroupName, e1.getCode(), errorMsg, transactionProp, e); + logger.error("ApiAdapterController] " + adapterGroupName + "-" + adapterName + ">>" + e.getMessage(), e); responseEntity = ResponseEntity.status(HttpStatus.UNAUTHORIZED).contentType(mediaType).body(errorMsg); + } else if (e instanceof HttpStatusException) { + logger.error("ApiAdapterController] " + adapterGroupName + "-" + adapterName + ">>" + e.getMessage()); + HttpStatusException e1 = (HttpStatusException) e; + responseEntity = ResponseEntity.status(e1.getStatus()).contentType(mediaType).body(errorMsg); } else { logger.error(adapterGroupName + "-" + adapterName + ">>" + e.getMessage(), e); responseEntity = ResponseEntity.status(HttpStatus.INTERNAL_SERVER_ERROR).contentType(mediaType).body(errorMsg); @@ -236,38 +246,57 @@ public class DJErpApiAdapterController implements HttpAdapterServiceKey { } private void logError(HttpServletRequest request) { - InboundErrorInfoVO errorInfoVO = new InboundErrorInfoVO(); + try { + String errorCode = "RECEAIIRP010"; + String[] msgArgs = new String[1]; + msgArgs[0] = request.getRequestURI(); + EAIServerManager eaiServerManager = EAIServerManager.getInstance(); + String serverName = eaiServerManager.getLocalServerName(); - EAIServerManager eaiServerManager = EAIServerManager.getInstance(); - String serverName = eaiServerManager.getLocalServerName(); - String uuid = null; - StringBuffer sb = new StringBuffer(); - - String instanceid1 = serverName.substring(0, 2); - String instanceid2 = serverName.substring(serverName.length() - 2, serverName.length()); - String instid = instanceid1 + instanceid2; - uuid = instid + UUIDGenerator.getUUID(); - - String[] msgArgs = new String[1]; - msgArgs[0] = request.getRequestURI(); - - String errorCode = "RECEAIIRP010"; - String errorMsg = ExceptionUtil.make(new Exception("cat not find uri"), errorCode, msgArgs); - - errorInfoVO.setEaiSvcSno(uuid); // EAI서비스일련번호 - errorInfoVO.setAdptBwkGrpNm("HTTP_IN_NO_URI"); // 어댑터업무그룹명 - errorInfoVO.setErrCd(errorCode); // 에러코드 - errorInfoVO.setErrTxt(errorMsg); // 에러내용 - errorInfoVO.setErrTm(DatetimeUtil.getCurrentTime(new Date().getTime())); // 에러발생시각 - errorInfoVO.setErrDstcd(" "); - sb.append("Remote Addr : ").append(request.getRemoteAddr()).append("\n").append("Request URI : ") - .append(request.getRequestURI()); - errorInfoVO.setBwkDataTxt(sb.toString()); // 업무데이터내용 - errorInfoVO.setEaiSvrInstNm(serverName); // EAI서버인스턴스명 - - InboundErrorLogger.error(errorInfoVO); + String instanceid1 = serverName.substring(0, 2); + String instanceid2 = serverName.substring(serverName.length() - 2, serverName.length()); + String instid = instanceid1 + instanceid2; + String uuid = instid + UUIDGenerator.getUUID(); + this.logError(request, uuid, "HTTP_IN_NO_URI", errorCode, + ExceptionUtil.make(new Exception("cat not find uri"), errorCode, msgArgs), null, null); + } catch (Throwable t) { + logger.warn("inbound logging failed", t); + } } + + private void logError(HttpServletRequest request, String uuid, String adapterGroupName, String errorCode, + String errorMsg, Properties prop, Exception e) { + try { + EAIServerManager eaiServerManager = EAIServerManager.getInstance(); + String serverName = eaiServerManager.getLocalServerName(); + + InboundErrorInfoVO errorInfoVO = new InboundErrorInfoVO(); + + errorInfoVO.setEaiSvcSno(uuid); // EAI서비스일련번호 + errorInfoVO.setAdptBwkGrpNm(adapterGroupName); // 어댑터업무그룹명 + errorInfoVO.setErrCd(errorCode); // 에러코드 + errorInfoVO.setErrTxt(errorMsg); // 에러내용 + errorInfoVO.setErrTm(DatetimeUtil.getCurrentTime(new Date().getTime())); // 에러발생시각 + errorInfoVO.setErrDstcd(" "); + StringBuffer sb = new StringBuffer(); + String clientId = prop.getProperty(HttpAdapterServiceSupport.PROPERTIES_NAME_CLIENT_ID); + String hexClientId = clientId != null ? HexaConverter.bytesToHexa(clientId.getBytes()) : ""; + + sb.append(errorMsg).append("\n").append("Remote Addr : ").append(request.getRemoteAddr()).append("\n") + .append("Request URI : ").append(request.getRequestURI()).append("\n").append("clientId=") + .append(clientId).append(",hexClientId=").append(hexClientId).append(",txProp=").append(prop) + .append("\n"); + if (e != null) + sb.append("Exception : ").append(e.getMessage()); + errorInfoVO.setBwkDataTxt(sb.toString()); // 업무데이터내용 + errorInfoVO.setEaiSvrInstNm(serverName); // EAI서버인스턴스명 + + InboundErrorLogger.error(errorInfoVO); + } catch (Throwable t) { + logger.warn("inbound logging failed", t); + } + } // private String makeResponseBodyMsg() { // // Map dataMap = new HashMap<>(); diff --git a/src/main/java/com/eactive/eai/adapter/service/DJErpApiAdapterService.java b/src/main/java/com/eactive/eai/adapter/service/DJBApiAdapterService.java similarity index 99% rename from src/main/java/com/eactive/eai/adapter/service/DJErpApiAdapterService.java rename to src/main/java/com/eactive/eai/adapter/service/DJBApiAdapterService.java index 5e8cf28..4585a89 100644 --- a/src/main/java/com/eactive/eai/adapter/service/DJErpApiAdapterService.java +++ b/src/main/java/com/eactive/eai/adapter/service/DJBApiAdapterService.java @@ -61,7 +61,7 @@ import com.fasterxml.jackson.databind.node.ObjectNode; @Service -public class DJErpApiAdapterService extends HttpAdapterServiceSupport { +public class DJBApiAdapterService extends HttpAdapterServiceSupport { static Logger logger = Logger.getLogger(Logger.LOGGER_ADAPTER); static Logger siftLogger = Logger.getLogger(Logger.LOGGER_SIFT); diff --git a/src/main/java/com/eactive/eai/authserver/custom/BearerTokenController.java b/src/main/java/com/eactive/eai/authserver/custom/BearerTokenController.java deleted file mode 100644 index 20d4d30..0000000 --- a/src/main/java/com/eactive/eai/authserver/custom/BearerTokenController.java +++ /dev/null @@ -1,200 +0,0 @@ -package com.eactive.eai.authserver.custom; - -import java.time.LocalDateTime; -import java.util.HashMap; -import java.util.HashSet; -import java.util.Map; -import java.util.Set; - -import javax.servlet.http.HttpServletRequest; - -import org.apache.commons.lang3.StringUtils; -import org.json.simple.JSONObject; -import org.springframework.beans.factory.annotation.Autowired; -import org.springframework.http.ResponseEntity; -import org.springframework.security.oauth2.provider.ClientDetails; -import org.springframework.util.MultiValueMap; -import org.springframework.web.bind.annotation.PostMapping; -import org.springframework.web.bind.annotation.RequestBody; -import org.springframework.web.bind.annotation.RequestMapping; -import org.springframework.web.bind.annotation.RequestMethod; -import org.springframework.web.bind.annotation.RequestParam; -import org.springframework.web.bind.annotation.ResponseBody; -import org.springframework.web.bind.annotation.RestController; - -import com.eactive.eai.adapter.http.dynamic.filter.JwtAuthException; -import com.eactive.eai.authserver.config.RequestContextData; -import com.eactive.eai.authserver.dao.TokenIssuanceLogDAO; -import com.eactive.eai.authserver.service.BearerTokenService; -import com.eactive.eai.authserver.service.OAuth2Manager; -import com.eactive.eai.authserver.vo.ClientVO; -import com.eactive.eai.common.logger.EAIDBLogControl; -import com.eactive.eai.common.util.Logger; -import com.eactive.eai.common.util.MessageUtil; -import com.eactive.eai.data.entity.onl.authserver.TokenIssuanceLog; - -@RestController -@RequestMapping("/auth/oauth/v2") -public class BearerTokenController { - - public static Logger logger = Logger.getLogger(Logger.LOGGER_DEFAULT); - private final BearerTokenService tokenService; - - @Autowired - private TokenIssuanceLogDAO tokenIssuanceLogDAO; - - public BearerTokenController(BearerTokenService tokenService) { - this.tokenService = tokenService; - } - - @RequestMapping( - value = "/token", - method = {RequestMethod.POST, RequestMethod.GET} - ) - public ResponseEntity issueCAToken(HttpServletRequest request, @RequestParam MultiValueMap req) throws JwtAuthException { - JSONObject resObject = new JSONObject(); - String clientId = req.getFirst("client_id"); - String grantType = req.getFirst("grant_type"); - String clientSecret = req.getFirst("client_secret"); - String scopes = req.getFirst("scope"); - - try { - - - RequestContextData data = new RequestContextData(); - data.setClientId(request.getParameter("client_id")); - data.setIpAddress(extractIpAddress(request)); - data.setGrantType(request.getParameter("grant_type")); - data.setScope(request.getParameter("scope")); - data.setUsername(request.getParameter("username")); - data.setResource(request.getParameter("resource")); - - RequestContextData.ThreadLocalRequestContext.set(data); - - - - if (!StringUtils.equals(grantType, "client_credentials") ) { - throw new JwtAuthException("unsupported_grant_type", "Unsupported grant type"); - } - - ClientDetails clientDetails = OAuth2Manager.getInstance().getClientDeatilsStore().get(clientId); - if (clientDetails == null) { - throw new JwtAuthException("invalid_client", "Bad client credentials(not found)"); - } - - String tokenType = "Bearer"; - - - - - Long expiresIn = Long.valueOf(clientDetails.getAccessTokenValiditySeconds()); - - String[] reqScopeArr = org.springframework.util.StringUtils.tokenizeToStringArray(scopes, " "); - Set scopeSet = new HashSet(); - for (String scope : reqScopeArr) { - scopeSet.add(scope); - } - veryfyClient(clientDetails, clientSecret, scopeSet); - - String token = tokenService.generateCAToken(clientId, expiresIn, scopeSet); - - Map tokenMap = new HashMap<>(); - tokenMap.put("token_type", tokenType); - tokenMap.put("access_token", token); - tokenMap.put("expires_in", expiresIn); - tokenMap.put("scope", scopes); - // ... and so on for all key-value pairs - resObject.putAll(tokenMap); - - logTokenIssuance(true,false, resObject.toJSONString(), token); - - return ResponseEntity.ok(resObject); - } catch (JwtAuthException e) { - logger.error("Token request[/auth/oauth/v2/token] => clientId: {}, grantType: {}, scope: {}", - clientId, grantType, scopes); - logger.error(e); - String errorJson = MessageUtil.makeJsonErrorMessage(MessageUtil.ERROR_CODE_AUTH_FAIL, e.getMessage()); - logTokenIssuance(false ,false, e.getMessage(), null); - return ResponseEntity.status(401).body(errorJson); - } catch (Exception e) { - logger.error("Token request[/auth/oauth/v2/token] => clientId: {}, grantType: {}, scope: {}", - clientId, grantType, scopes); - logger.error(e); - String errorJson = MessageUtil.makeJsonErrorMessage(MessageUtil.ERROR_CODE_AP_ERROR, e.getMessage()); - logTokenIssuance(false ,false, e.getMessage(), null); - return ResponseEntity.status(500).body(errorJson); - }finally { - RequestContextData.ThreadLocalRequestContext.clear(); - } - } - - private String extractIpAddress(HttpServletRequest request) { - String ipAddress = request.getHeader("X-Forwarded-For"); - if (ipAddress == null || ipAddress.length() == 0 || "unknown".equalsIgnoreCase(ipAddress)) { - ipAddress = request.getHeader("Proxy-Client-IP"); - } - if (ipAddress == null || ipAddress.length() == 0 || "unknown".equalsIgnoreCase(ipAddress)) { - ipAddress = request.getHeader("WL-Proxy-Client-IP"); - } - if (ipAddress == null || ipAddress.length() == 0 || "unknown".equalsIgnoreCase(ipAddress)) { - ipAddress = request.getHeader("HTTP_CLIENT_IP"); - } - if (ipAddress == null || ipAddress.length() == 0 || "unknown".equalsIgnoreCase(ipAddress)) { - ipAddress = request.getHeader("HTTP_X_FORWARDED_FOR"); - } - if (ipAddress == null || ipAddress.length() == 0 || "unknown".equalsIgnoreCase(ipAddress)) { - ipAddress = request.getRemoteAddr(); - } - return ipAddress; - } - - private void logTokenIssuance(boolean isSuccess, boolean isRestrictionExempt, String resultMessage, String accessToken) { - try { - if (!EAIDBLogControl.isEnable()) { - logger.warn("DB logging is disabled. Skipping token issuance logging."); - return; - } - RequestContextData data = RequestContextData.ThreadLocalRequestContext.get(); - OAuth2Manager.getInstance(); - - TokenIssuanceLog log = new TokenIssuanceLog(); - String clientId = data.getClientId(); - log.setClientId(clientId); - - if(StringUtils.isNotBlank(clientId)) { - ClientVO clientVO = OAuth2Manager.getInstance().getClientInfo(clientId); - log.setAppName(clientVO.getClientName()); - log.setOrgId(clientVO.getOrgId()); - log.setOrgName(clientVO.getOrgName()); - } - - log.setGrantType(data.getGrantType()); - log.setScope(data.getScope()); - log.setIpAddress(data.getIpAddress()); - log.setSuccessYn(isSuccess ? "Y" : "N"); - log.setIssuanceDateTime(LocalDateTime.now()); - log.setRestrictionExemptYn(isRestrictionExempt ? "Y" : "N"); - log.setResultMessage(resultMessage); - log.setAccessToken(accessToken); // Add access token value to the log - - tokenIssuanceLogDAO.saveTokenIssuanceLog(log); - } catch (Throwable th) { - logger.error("Error while logging token issuance: " + th.getMessage(), th); - } - } - - private void veryfyClient(ClientDetails clientDetails, String clientSecret, Set scopeSet) throws JwtAuthException { - if (!StringUtils.equals(clientDetails.getClientSecret(), clientSecret)) { - throw new JwtAuthException("invalid_client", "Bad client credentials(client_secret is empty or not match)"); - } - - if (scopeSet.isEmpty()) { - throw new JwtAuthException("invalid_client", "Bad client credentials(Scope is empty)"); - } - - if (!clientDetails.getScope().containsAll(scopeSet)) { - throw new JwtAuthException("invalid_client", "Bad client credentials(Include unacceptable scope)"); - } - } -} - diff --git a/src/main/java/com/eactive/eai/authserver/custom/DJErpOAuth2AccessTokenRequest.java b/src/main/java/com/eactive/eai/authserver/custom/DJBOAuth2AccessTokenRequest.java similarity index 94% rename from src/main/java/com/eactive/eai/authserver/custom/DJErpOAuth2AccessTokenRequest.java rename to src/main/java/com/eactive/eai/authserver/custom/DJBOAuth2AccessTokenRequest.java index 21eba2a..35ce839 100644 --- a/src/main/java/com/eactive/eai/authserver/custom/DJErpOAuth2AccessTokenRequest.java +++ b/src/main/java/com/eactive/eai/authserver/custom/DJBOAuth2AccessTokenRequest.java @@ -5,7 +5,7 @@ import java.io.Serializable; import com.fasterxml.jackson.annotation.JsonProperty; @SuppressWarnings("serial") -public class DJErpOAuth2AccessTokenRequest implements Serializable { +public class DJBOAuth2AccessTokenRequest implements Serializable { @JsonProperty("grant_type") private String grantType; diff --git a/src/main/java/com/eactive/eai/authserver/custom/DJErpOAuth2AccessTokenResponse.java b/src/main/java/com/eactive/eai/authserver/custom/DJBOAuth2AccessTokenResponse.java similarity index 96% rename from src/main/java/com/eactive/eai/authserver/custom/DJErpOAuth2AccessTokenResponse.java rename to src/main/java/com/eactive/eai/authserver/custom/DJBOAuth2AccessTokenResponse.java index d7429eb..7ad04ff 100644 --- a/src/main/java/com/eactive/eai/authserver/custom/DJErpOAuth2AccessTokenResponse.java +++ b/src/main/java/com/eactive/eai/authserver/custom/DJBOAuth2AccessTokenResponse.java @@ -10,7 +10,7 @@ import com.fasterxml.jackson.annotation.JsonInclude.Include; @SuppressWarnings("serial") @JsonInclude(Include.NON_NULL) @JsonPropertyOrder({ "access_token", "token_type", "expires_in", "scope", "jti", "client_id" }) -public class DJErpOAuth2AccessTokenResponse implements Serializable { +public class DJBOAuth2AccessTokenResponse implements Serializable { @JsonProperty("access_token") private String accessToken; diff --git a/src/main/java/com/eactive/eai/authserver/custom/DJErpOAuth2Controller.java b/src/main/java/com/eactive/eai/authserver/custom/DJBOAuth2Controller.java similarity index 96% rename from src/main/java/com/eactive/eai/authserver/custom/DJErpOAuth2Controller.java rename to src/main/java/com/eactive/eai/authserver/custom/DJBOAuth2Controller.java index b6c47f2..a6242d6 100644 --- a/src/main/java/com/eactive/eai/authserver/custom/DJErpOAuth2Controller.java +++ b/src/main/java/com/eactive/eai/authserver/custom/DJBOAuth2Controller.java @@ -46,7 +46,7 @@ import com.eactive.eai.data.entity.onl.authserver.TokenIssuanceLog; import com.fasterxml.jackson.databind.ObjectMapper; @Controller -public class DJErpOAuth2Controller { +public class DJBOAuth2Controller { public static Logger logger = Logger.getLogger(Logger.LOGGER_DEFAULT); private static final String HEADER_TRACEID = "traceId"; @@ -58,7 +58,7 @@ public class DJErpOAuth2Controller { @RequestMapping(value = { "/dj/oauth/token", "/dj/oauth2/token" }, method = RequestMethod.POST, consumes = "application/json", produces = "application/json; charset=UTF-8") @ResponseBody - public ResponseEntity tokenJson(@RequestBody DJErpOAuth2AccessTokenRequest tokenRequest, + public ResponseEntity tokenJson(@RequestBody DJBOAuth2AccessTokenRequest tokenRequest, HttpServletRequest request, HttpServletResponse response) { return issueToken(tokenRequest, request, response); } @@ -68,7 +68,7 @@ public class DJErpOAuth2Controller { @ResponseBody public ResponseEntity tokenForm(@RequestParam Map params, HttpServletRequest request, HttpServletResponse response) { - DJErpOAuth2AccessTokenRequest tokenRequest = new DJErpOAuth2AccessTokenRequest(); + DJBOAuth2AccessTokenRequest tokenRequest = new DJBOAuth2AccessTokenRequest(); tokenRequest.setGrantType(params.get("grant_type")); tokenRequest.setClientId(params.get("client_id")); tokenRequest.setClientSecret(params.get("client_secret")); @@ -80,7 +80,7 @@ public class DJErpOAuth2Controller { @ResponseBody public ResponseEntity tokenGet(@RequestParam Map params, HttpServletRequest request, HttpServletResponse response) { - DJErpOAuth2AccessTokenRequest tokenRequest = new DJErpOAuth2AccessTokenRequest(); + DJBOAuth2AccessTokenRequest tokenRequest = new DJBOAuth2AccessTokenRequest(); tokenRequest.setGrantType(params.get("grant_type")); tokenRequest.setClientId(params.get("client_id")); tokenRequest.setClientSecret(params.get("client_secret")); @@ -88,7 +88,7 @@ public class DJErpOAuth2Controller { return issueToken(tokenRequest, request, response); } - private ResponseEntity issueToken(DJErpOAuth2AccessTokenRequest tokenRequest, + private ResponseEntity issueToken(DJBOAuth2AccessTokenRequest tokenRequest, HttpServletRequest request, HttpServletResponse response) { if (logger.isDebug()) { @@ -143,7 +143,7 @@ public class DJErpOAuth2Controller { ResponseEntity result = tokenEndpoint().postAccessToken(principal, authorizationParameters); OAuth2AccessToken token = result.getBody(); - DJErpOAuth2AccessTokenResponse responseToken = new DJErpOAuth2AccessTokenResponse(); + DJBOAuth2AccessTokenResponse responseToken = new DJBOAuth2AccessTokenResponse(); responseToken.setAccessToken(token.getValue()); responseToken.setTokenType(token.getTokenType()); responseToken.setExpiresIn(Long.valueOf(token.getExpiresIn())); diff --git a/src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2AccessTokenRequest.java b/src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2AccessTokenRequest.java deleted file mode 100644 index dcd880b..0000000 --- a/src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2AccessTokenRequest.java +++ /dev/null @@ -1,63 +0,0 @@ -package com.eactive.eai.authserver.custom; - -import java.io.Serializable; - -import com.fasterxml.jackson.annotation.JsonProperty; - -@SuppressWarnings("serial") -public class KjbMGOAuth2AccessTokenRequest implements Serializable { - @JsonProperty("grant_type") - private String grantType; - @JsonProperty("client_id") - private String clientId; - @JsonProperty("client_secret") - private String clientSecret; - private String resource; - private String scope; - - public String getGrantType() { - return grantType; - } - - public void setGrantType(String grantType) { - this.grantType = grantType; - } - - public String getClientId() { - return clientId; - } - - public void setClientId(String clientId) { - this.clientId = clientId; - } - - public String getClientSecret() { - return clientSecret; - } - - public void setClientSecret(String clientSecret) { - this.clientSecret = clientSecret; - } - - public String getResource() { - return resource; - } - - public void setResource(String resource) { - this.resource = resource; - } - - public String getScope() { - return scope; - } - - public void setScope(String scope) { - this.scope = scope; - } - - @Override - public String toString() { - return "KjbMGOAuth2AccessTokenRequest [grantType=" + grantType + ", clientId=" + clientId + ", clientSecret=" - + clientSecret + ", resource=" + resource + ", scope=" + scope + "]"; - } -} diff --git a/src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2AccessTokenResponse.java b/src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2AccessTokenResponse.java deleted file mode 100644 index b99ffe1..0000000 --- a/src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2AccessTokenResponse.java +++ /dev/null @@ -1,105 +0,0 @@ -package com.eactive.eai.authserver.custom; - -import java.io.Serializable; - -import com.fasterxml.jackson.annotation.JsonInclude; -import com.fasterxml.jackson.annotation.JsonProperty; -import com.fasterxml.jackson.annotation.JsonInclude.Include; - -@SuppressWarnings("serial") -@JsonInclude(Include.NON_NULL) -public class KjbMGOAuth2AccessTokenResponse implements Serializable { - private String responseCode; - private String responseMessage; - @JsonProperty("access_token") - private String accessToken; - @JsonProperty("refresh_token") - private String refreshToken; - @JsonProperty("token_type") - private String tokenType; - @JsonProperty("expires_in") - private Long expiresIn; - @JsonProperty("expires_on") - private Long expiresOn; - private String resource; - private String scope; - - public String getResponseCode() { - return responseCode; - } - - public void setResponseCode(String responseCode) { - this.responseCode = responseCode; - } - - public String getResponseMessage() { - return responseMessage; - } - - public void setResponseMessage(String responseMessage) { - this.responseMessage = responseMessage; - } - - public String getAccessToken() { - return accessToken; - } - - public void setAccessToken(String accessToken) { - this.accessToken = accessToken; - } - - public String getrefreshToken() { - return refreshToken; - } - - public void setrefreshToken(String refreshToken) { - this.refreshToken = refreshToken; - } - - public String getTokenType() { - return tokenType; - } - - public void setTokenType(String tokenType) { - this.tokenType = tokenType; - } - - public Long getExpiresIn() { - return expiresIn; - } - - public void setExpiresIn(Long expiresIn) { - this.expiresIn = expiresIn; - } - - public Long getExpiresOn() { - return expiresOn; - } - - public void setExpiresOn(Long expiresOn) { - this.expiresOn = expiresOn; - } - - public String getResource() { - return resource; - } - - public void setResource(String resource) { - this.resource = resource; - } - - public String getScope() { - return scope; - } - - public void setScope(String scope) { - this.scope = scope; - } - - @Override - public String toString() { - return "KjbMGOAuth2AccessTokenResponse [responseCode=" + responseCode + ", responseMessage=" + responseMessage - + ", accessToken=" + accessToken + ", tokenType=" + tokenType + ", expiresIn=" + expiresIn - + ", refreshToken=" + refreshToken+ ", expiresOn=" + expiresOn+ ", resource=" + resource+ ", scope=" + scope + "]"; - } -} diff --git a/src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2Controller.java b/src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2Controller.java deleted file mode 100644 index 5899759..0000000 --- a/src/main/java/com/eactive/eai/authserver/custom/KjbMGOAuth2Controller.java +++ /dev/null @@ -1,360 +0,0 @@ -package com.eactive.eai.authserver.custom; - -import java.nio.charset.StandardCharsets; -import java.security.KeyPair; -import java.security.KeyPairGenerator; -import java.security.Principal; -import java.security.SecureRandom; -import java.security.Signature; -import java.time.LocalDateTime; -import java.util.Base64; -import java.util.HashMap; -import java.util.HashSet; -import java.util.Map; -import java.util.Set; - -import javax.crypto.Cipher; -import javax.servlet.http.HttpServletRequest; -import javax.servlet.http.HttpServletResponse; - -import org.apache.commons.lang3.StringUtils; -import org.apache.commons.lang3.math.NumberUtils; -import org.springframework.beans.factory.annotation.Autowired; -import org.springframework.http.HttpStatus; -import org.springframework.http.ResponseEntity; -import org.springframework.security.oauth2.common.OAuth2AccessToken; -import org.springframework.security.oauth2.common.util.OAuth2Utils; -import org.springframework.security.oauth2.provider.ClientDetails; -import org.springframework.security.oauth2.provider.OAuth2Authentication; -import org.springframework.security.oauth2.provider.OAuth2Request; -import org.springframework.security.oauth2.provider.endpoint.TokenEndpoint; -import org.springframework.security.oauth2.provider.token.TokenEnhancer; -import org.springframework.stereotype.Controller; -import org.springframework.web.bind.annotation.GetMapping; -import org.springframework.web.bind.annotation.ModelAttribute; -import org.springframework.web.bind.annotation.RequestBody; -import org.springframework.web.bind.annotation.RequestMapping; -import org.springframework.web.bind.annotation.RequestMethod; -import org.springframework.web.bind.annotation.RequestParam; -import org.springframework.web.bind.annotation.ResponseBody; - -import com.eactive.eai.adapter.http.dynamic.filter.JwtAuthException; -import com.eactive.eai.authserver.config.IssueLimitOAuth2Exception; -import com.eactive.eai.authserver.config.RequestContextData; -import com.eactive.eai.authserver.dao.TokenIssuanceLogDAO; -import com.eactive.eai.authserver.service.OAuth2Manager; -import com.eactive.eai.authserver.util.BeanUtils; -import com.eactive.eai.authserver.vo.ClientVO; -import com.eactive.eai.common.dao.DAOException; -import com.eactive.eai.common.logger.EAIDBLogControl; -import com.eactive.eai.common.util.Logger; -import com.eactive.eai.common.util.MessageUtil; -import com.eactive.eai.common.util.UUID; -import com.eactive.eai.data.entity.onl.authserver.TokenIssuanceLog; -import com.fasterxml.jackson.databind.ObjectMapper; - -@Controller -public class KjbMGOAuth2Controller { - public static Logger logger = Logger.getLogger(Logger.LOGGER_DEFAULT); - - private static final String HEADER_TRACEID = "traceId"; - - private static final String SERVICE_CODE_ACCESS_TOKEN = "00"; // 임시설정 - @Autowired - private TokenIssuanceLogDAO tokenIssuanceLogDAO; - - - @RequestMapping(value = "/mapi/oauth2/token", method = RequestMethod.POST, consumes = "application/json", produces = "application/json; charset=UTF-8") - @ResponseBody - public ResponseEntity tokenJson(@RequestBody KjbMGOAuth2AccessTokenRequest tokenRequest, - HttpServletRequest request, HttpServletResponse response) { - - return issueToken(tokenRequest, request, response); - } - - @RequestMapping(value = "/mapi/oauth2/token", method = RequestMethod.POST, consumes = "application/x-www-form-urlencoded", produces = "application/json; charset=UTF-8") - @ResponseBody - public ResponseEntity tokenForm(@RequestParam Map params, HttpServletRequest request, - HttpServletResponse response) { - - KjbMGOAuth2AccessTokenRequest tokenRequest = new KjbMGOAuth2AccessTokenRequest(); - - tokenRequest.setGrantType(params.get("grant_type")); - tokenRequest.setClientId(params.get("client_id")); - tokenRequest.setClientSecret(params.get("client_secret")); - tokenRequest.setScope(params.get("scope")); - tokenRequest.setResource(params.get("resource")); - - return issueToken(tokenRequest, request, response); - } - - @GetMapping(value = "/mapi/oauth2/token", produces = "application/json; charset=UTF-8") - @ResponseBody - public ResponseEntity tokenGet(@RequestParam Map params, HttpServletRequest request, - HttpServletResponse response) { - - KjbMGOAuth2AccessTokenRequest tokenRequest = new KjbMGOAuth2AccessTokenRequest(); - - tokenRequest.setGrantType(params.get("grant_type")); - tokenRequest.setClientId(params.get("client_id")); - tokenRequest.setClientSecret(params.get("client_secret")); - tokenRequest.setScope(params.get("scope")); - tokenRequest.setResource(params.get("resource")); - - return issueToken(tokenRequest, request, response); - } - - private ResponseEntity issueToken( - KjbMGOAuth2AccessTokenRequest tokenRequest, - HttpServletRequest request, - HttpServletResponse response) { - - if (logger.isDebug()) { - logger.debug(tokenRequest.toString()); - } - - RequestContextData data = new RequestContextData(); - data.setClientId(tokenRequest.getClientId()); - data.setIpAddress(extractIpAddress(request)); - data.setGrantType(tokenRequest.getGrantType()); - data.setScope(tokenRequest.getScope()); - data.setUsername("none"); - data.setResource("none"); - - RequestContextData.ThreadLocalRequestContext.set(data); - - - KjbMGOAuth2AccessTokenResponse responseToken = new KjbMGOAuth2AccessTokenResponse(); - - String grantType = tokenRequest.getGrantType(); - String clientId = tokenRequest.getClientId(); - String clientSecret = tokenRequest.getClientSecret(); - String scopes = tokenRequest.getScope(); - - try { - if (!StringUtils.equals(tokenRequest.getGrantType(), "client_credentials")) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.BAD_REQUEST.value(), SERVICE_CODE_ACCESS_TOKEN, "02"), - "Invalid Mandatory Field {grantType}"); - } - - String[] scopeArr = org.springframework.util.StringUtils.tokenizeToStringArray(scopes, " "); - Set scopeSet = new HashSet(); - for (String scope : scopeArr) { - scopeSet.add(scope); - } - - String[] resourceArr = org.springframework.util.StringUtils.tokenizeToStringArray(tokenRequest.getResource(), ","); - Set resourceSet = new HashSet(); - for (String resource : resourceArr) { - resourceSet.add(resource); - } - - ClientDetails clientDetails = OAuth2Manager.getInstance().getClientDeatilsStore().get(clientId); - verifyClient(clientDetails, clientId, clientSecret, scopeSet); - - String traceId = UUID.randomUUID().toString().replace("-", ""); - response.setHeader(HEADER_TRACEID, traceId); - - HashMap authorizationParameters = new HashMap(); - authorizationParameters.put(OAuth2Utils.GRANT_TYPE, grantType); - authorizationParameters.put(OAuth2Utils.CLIENT_ID, clientId); - authorizationParameters.put("client_secret", clientSecret); - - Set responseType = new HashSet(); - responseType.add(tokenRequest.getGrantType()); - - OAuth2Request authorizationRequest = new OAuth2Request(authorizationParameters, clientId, null, true, scopeSet, - resourceSet, "", responseType, null); - - Principal principal = new OAuth2Authentication(authorizationRequest, null); - ResponseEntity result = tokenEndpoint().postAccessToken(principal, - authorizationParameters); - OAuth2AccessToken token = result.getBody(); - if(StringUtils.isNotBlank(token.getTokenType()) && StringUtils.equalsIgnoreCase(token.getTokenType(), "bearer")) { - responseToken.setTokenType("Bearer"); - } else { responseToken.setTokenType(token.getTokenType()); } - responseToken.setAccessToken(token.getValue()); - responseToken.setExpiresIn(Long.valueOf(token.getExpiresIn())); - responseToken.setrefreshToken(""); - responseToken.setExpiresOn(System.currentTimeMillis() + (token.getExpiresIn() * 1000)); - responseToken.setScope(tokenRequest.getScope()); - responseToken.setResource(tokenRequest.getResource()); - - // 성공 시 JSON 문자열로 변환하여 반환 - ObjectMapper mapper = new ObjectMapper(); - String successJson = mapper.writeValueAsString(responseToken); - - return ResponseEntity.ok(successJson); - - } catch (JwtAuthException e) { - logger.info("Token request[/mapi/oauth2/token] => clientId: {}, grantType: {}, scope: {}", - clientId, grantType, scopes); - logger.error(e.getMessage()); - String errorJson = MessageUtil.makeJsonErrorMessage(MessageUtil.ERROR_CODE_AUTH_FAIL, e.getMessage()); - int statusCode = NumberUtils.toInt(StringUtils.left(e.getCode(), 3), HttpStatus.UNAUTHORIZED.value()); - logTokenIssuance(false ,false, e.getMessage(), null); - return ResponseEntity.status(statusCode).body(errorJson); - - } catch (Exception e) { - logger.info("Token request[/mapi/oauth2/token] => clientId: {}, grantType: {}, scope: {}", - clientId, grantType, scopes); - logger.error(e.getMessage()); - String errorJson = MessageUtil.makeJsonErrorMessage(MessageUtil.ERROR_CODE_AUTH_FAIL, "Unauthorized. [Unknown]"); - logTokenIssuance(false ,false, e.getMessage(), null); - return ResponseEntity.status(HttpStatus.UNAUTHORIZED).body(errorJson); - }finally { - RequestContextData.ThreadLocalRequestContext.clear(); - } - - - } - - private String extractIpAddress(HttpServletRequest request) { - String ipAddress = request.getHeader("X-Forwarded-For"); - if (ipAddress == null || ipAddress.length() == 0 || "unknown".equalsIgnoreCase(ipAddress)) { - ipAddress = request.getHeader("Proxy-Client-IP"); - } - if (ipAddress == null || ipAddress.length() == 0 || "unknown".equalsIgnoreCase(ipAddress)) { - ipAddress = request.getHeader("WL-Proxy-Client-IP"); - } - if (ipAddress == null || ipAddress.length() == 0 || "unknown".equalsIgnoreCase(ipAddress)) { - ipAddress = request.getHeader("HTTP_CLIENT_IP"); - } - if (ipAddress == null || ipAddress.length() == 0 || "unknown".equalsIgnoreCase(ipAddress)) { - ipAddress = request.getHeader("HTTP_X_FORWARDED_FOR"); - } - if (ipAddress == null || ipAddress.length() == 0 || "unknown".equalsIgnoreCase(ipAddress)) { - ipAddress = request.getRemoteAddr(); - } - return ipAddress; - } - - private void verifyClient(ClientDetails clientDetails, String clientId, String clientSecret, Set scopeSet) - throws JwtAuthException { - - if (StringUtils.isBlank(clientId)) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.BAD_REQUEST.value(), SERVICE_CODE_ACCESS_TOKEN, "02"), - "Invalid Mandatory Field {client_id}"); - } - - if (clientDetails == null) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.UNAUTHORIZED.value(), SERVICE_CODE_ACCESS_TOKEN, "00"), - "Unauthorized. [client not found]"); - } - - if (StringUtils.isBlank(clientSecret)) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.BAD_REQUEST.value(), SERVICE_CODE_ACCESS_TOKEN, "02"), - "Invalid Mandatory Field {client_secret}"); - } - - if (!StringUtils.equals(clientDetails.getClientSecret(), clientSecret)) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.UNAUTHORIZED.value(), SERVICE_CODE_ACCESS_TOKEN, "00"), - "Unauthorized. [Bad client credentials(Client Secret is not match)]"); - } - - if (scopeSet.isEmpty()) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.BAD_REQUEST.value(), SERVICE_CODE_ACCESS_TOKEN, "02"), - "Invalid Mandatory Field {scope}"); - } - - if (!clientDetails.getScope().containsAll(scopeSet)) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.UNAUTHORIZED.value(), SERVICE_CODE_ACCESS_TOKEN, "00"), - "Unauthorized. [Bad client credentials(Include unacceptable scope)]"); - } - - } - - private TokenEndpoint tokenEndpoint() { - return BeanUtils.getBean("tokenEndpoint", TokenEndpoint.class); - } - - private void logTokenIssuance(boolean isSuccess, boolean isRestrictionExempt, String resultMessage, String accessToken) { - try { - if (!EAIDBLogControl.isEnable()) { - logger.warn("DB logging is disabled. Skipping token issuance logging."); - return; - } - RequestContextData data = RequestContextData.ThreadLocalRequestContext.get(); - OAuth2Manager.getInstance(); - - TokenIssuanceLog log = new TokenIssuanceLog(); - String clientId = data.getClientId(); - log.setClientId(clientId); - - if(StringUtils.isNotBlank(clientId)) { - ClientVO clientVO = OAuth2Manager.getInstance().getClientInfo(clientId); - log.setAppName(clientVO.getClientName()); - log.setOrgId(clientVO.getOrgId()); - log.setOrgName(clientVO.getOrgName()); - } - - log.setGrantType(data.getGrantType()); - log.setScope(data.getScope()); - log.setIpAddress(data.getIpAddress()); - log.setSuccessYn(isSuccess ? "Y" : "N"); - log.setIssuanceDateTime(LocalDateTime.now()); - log.setRestrictionExemptYn(isRestrictionExempt ? "Y" : "N"); - log.setResultMessage(resultMessage); - log.setAccessToken(accessToken); // Add access token value to the log - - tokenIssuanceLogDAO.saveTokenIssuanceLog(log); - } catch (Throwable th) { - logger.error("Error while logging token issuance: " + th.getMessage(), th); - } - } - - public static void main(String[] args) throws Exception { - // First generate a public/private key pair - KeyPairGenerator generator = KeyPairGenerator.getInstance("RSA"); - // generator.initialize(512, new SecureRandom()); - //generator.initialize(1024, new SecureRandom()); - generator.initialize(2048, new SecureRandom()); - KeyPair pair = generator.generateKeyPair(); - - // The private key can be used to sign (not encrypt!) a message. The public key - // holder can then verify the message. - - String message = "sSGJDwlJsel5WeXodzd3J3MQ20KYCZpL|2022-12-21T14:36:19+07:00"; - - // Let's sign our message - Signature privateSignature = Signature.getInstance("SHA256withRSA"); - privateSignature.initSign(pair.getPrivate()); - privateSignature.update(message.getBytes(StandardCharsets.UTF_8)); - // System.out.println("private key=" + Base64.getEncoder().encodeToString(pair.getPrivate().getEncoded())); - byte[] signature = privateSignature.sign(); - //System.out.println("signature=" + new String(signature, StandardCharsets.UTF_8)); - // System.out.println("signature=" + Base64.getEncoder().encodeToString(signature)); - - // Let's check the signature - Signature publicSignature = Signature.getInstance("SHA256withRSA"); - publicSignature.initVerify(pair.getPublic()); - publicSignature.update(message.getBytes(StandardCharsets.UTF_8)); - boolean isCorrect = publicSignature.verify(signature); - // System.out.println("public key=" + Base64.getEncoder().encodeToString(pair.getPublic().getEncoded())); - - // System.out.println("Signature correct: " + isCorrect); - - // The public key can be used to encrypt a message, the private key can be used - // to decrypt it. - // Encrypt the message - Cipher encryptCipher = Cipher.getInstance("RSA"); - encryptCipher.init(Cipher.ENCRYPT_MODE, pair.getPublic()); - - byte[] cipherText = encryptCipher.doFinal(message.getBytes(StandardCharsets.UTF_8)); - - // Now decrypt it - Cipher decriptCipher = Cipher.getInstance("RSA"); - decriptCipher.init(Cipher.DECRYPT_MODE, pair.getPrivate()); - - String decipheredMessage = new String(decriptCipher.doFinal(cipherText), StandardCharsets.UTF_8); - - // System.out.println(decipheredMessage); - } -} diff --git a/src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2AccessTokenRequest.java b/src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2AccessTokenRequest.java deleted file mode 100644 index 617bf5a..0000000 --- a/src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2AccessTokenRequest.java +++ /dev/null @@ -1,49 +0,0 @@ -package com.eactive.eai.authserver.custom; - -import java.io.Serializable; - -@SuppressWarnings("serial") -public class SnapOAuth2AccessTokenRequest implements Serializable { - private String grantType; - private String authCode; - private String refreshToken; - private Object additionalInfo; - - public String getGrantType() { - return grantType; - } - - public void setGrantType(String grantType) { - this.grantType = grantType; - } - - public String getAuthCode() { - return authCode; - } - - public void setAuthCode(String authCode) { - this.authCode = authCode; - } - - public String getRefreshToken() { - return refreshToken; - } - - public void setRefreshToken(String refreshToken) { - this.refreshToken = refreshToken; - } - - public Object getAdditionalInfo() { - return additionalInfo; - } - - public void setAdditionalInfo(Object additionalInfo) { - this.additionalInfo = additionalInfo; - } - - @Override - public String toString() { - return "SnapOAuth2AccessTokenRequest [grantType=" + grantType + ", authCode=" + authCode + ", refreshToken=" - + refreshToken + ", additionalInfo=" + additionalInfo + "]"; - } -} diff --git a/src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2AccessTokenResponse.java b/src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2AccessTokenResponse.java deleted file mode 100644 index 2973d57..0000000 --- a/src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2AccessTokenResponse.java +++ /dev/null @@ -1,72 +0,0 @@ -package com.eactive.eai.authserver.custom; - -import java.io.Serializable; - -import com.fasterxml.jackson.annotation.JsonInclude; -import com.fasterxml.jackson.annotation.JsonInclude.Include; - -@SuppressWarnings("serial") -@JsonInclude(Include.NON_NULL) -public class SnapOAuth2AccessTokenResponse implements Serializable { - private String responseCode; - private String responseMessage; - private String accessToken; - private String tokenType; - private String expiresIn; - private Object additionalInfo; - - public String getResponseCode() { - return responseCode; - } - - public void setResponseCode(String responseCode) { - this.responseCode = responseCode; - } - - public String getResponseMessage() { - return responseMessage; - } - - public void setResponseMessage(String responseMessage) { - this.responseMessage = responseMessage; - } - - public String getAccessToken() { - return accessToken; - } - - public void setAccessToken(String accessToken) { - this.accessToken = accessToken; - } - - public String getTokenType() { - return tokenType; - } - - public void setTokenType(String tokenType) { - this.tokenType = tokenType; - } - - public String getExpiresIn() { - return expiresIn; - } - - public void setExpiresIn(String expiresIn) { - this.expiresIn = expiresIn; - } - - public Object getAdditionalInfo() { - return additionalInfo; - } - - public void setAdditionalInfo(Object additionalInfo) { - this.additionalInfo = additionalInfo; - } - - @Override - public String toString() { - return "SnapOAuth2AccessTokenResponse [responseCode=" + responseCode + ", responseMessage=" + responseMessage - + ", accessToken=" + accessToken + ", tokenType=" + tokenType + ", expiresIn=" + expiresIn - + ", additionalInfo=" + additionalInfo + "]"; - } -} diff --git a/src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2Controller.java b/src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2Controller.java deleted file mode 100644 index 697cdc4..0000000 --- a/src/main/java/com/eactive/eai/authserver/custom/SnapOAuth2Controller.java +++ /dev/null @@ -1,222 +0,0 @@ -package com.eactive.eai.authserver.custom; - -import java.nio.charset.StandardCharsets; -import java.security.KeyFactory; -import java.security.KeyPair; -import java.security.KeyPairGenerator; -import java.security.Principal; -import java.security.PublicKey; -import java.security.SecureRandom; -import java.security.Signature; -import java.security.spec.X509EncodedKeySpec; -import java.util.Base64; -import java.util.HashMap; -import java.util.HashSet; -import java.util.Set; - -import javax.crypto.Cipher; -import javax.servlet.http.HttpServletRequest; -import javax.servlet.http.HttpServletResponse; - -import org.apache.commons.lang3.StringUtils; -import org.apache.commons.lang3.math.NumberUtils; -import org.springframework.http.HttpStatus; -import org.springframework.http.ResponseEntity; -import org.springframework.security.oauth2.common.OAuth2AccessToken; -import org.springframework.security.oauth2.common.util.OAuth2Utils; -import org.springframework.security.oauth2.provider.ClientDetails; -import org.springframework.security.oauth2.provider.OAuth2Authentication; -import org.springframework.security.oauth2.provider.OAuth2Request; -import org.springframework.security.oauth2.provider.endpoint.TokenEndpoint; -import org.springframework.stereotype.Controller; -import org.springframework.web.bind.annotation.RequestBody; -import org.springframework.web.bind.annotation.RequestMapping; -import org.springframework.web.bind.annotation.RequestMethod; -import org.springframework.web.bind.annotation.ResponseBody; - -import com.eactive.eai.adapter.http.dynamic.filter.JwtAuthException; -import com.eactive.eai.authserver.service.OAuth2Manager; -import com.eactive.eai.authserver.util.BeanUtils; -import com.eactive.eai.authserver.vo.ClientVO; -import com.eactive.eai.common.util.Logger; - -@Controller -public class SnapOAuth2Controller { - public static Logger logger = Logger.getLogger(Logger.LOGGER_DEFAULT); - - private static final String HEADER_TIMESTAMP = "X-TIMESTAMP"; - private static final String HEADER_CLIENT_ID = "X-CLIENT-KEY"; - private static final String HEADER_SIGNATURE = "X-SIGNATURE"; - - private static final String SERVICE_CODE_ACCESS_TOKEN = "00"; // 임시설정 - - @RequestMapping(value = "/bukopin_snap_api/v1.0/access-token/b2b", method = RequestMethod.POST, produces = "application/json; charset=\"UTF-8\"") - @ResponseBody - public SnapOAuth2AccessTokenResponse token(@RequestBody SnapOAuth2AccessTokenRequest tokenRequest, - HttpServletRequest request, HttpServletResponse response) { - if (logger.isDebug()) { - logger.debug(tokenRequest.toString()); - } - - SnapOAuth2AccessTokenResponse responseToken = new SnapOAuth2AccessTokenResponse(); - try { - if (!StringUtils.equals(tokenRequest.getGrantType(), "client_credentials")) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.BAD_REQUEST.value(), SERVICE_CODE_ACCESS_TOKEN, "02"), - "Invalid Mandatory Field {grantType}"); - } - - String timeStamp = request.getHeader(HEADER_TIMESTAMP); - String clientId = request.getHeader(HEADER_CLIENT_ID); - String signature = request.getHeader(HEADER_SIGNATURE); - - ClientDetails clientDetails = OAuth2Manager.getInstance().getClientDeatilsStore().get(clientId); - verifyClient(clientDetails, timeStamp, clientId, signature); - - response.setHeader(HEADER_TIMESTAMP, timeStamp); - response.setHeader(HEADER_CLIENT_ID, clientId); - - HashMap authorizationParameters = new HashMap(); - authorizationParameters.put(OAuth2Utils.GRANT_TYPE, tokenRequest.getGrantType()); - authorizationParameters.put(OAuth2Utils.CLIENT_ID, clientId); - authorizationParameters.put("client_secret", clientDetails.getClientSecret()); - - Set responseType = new HashSet(); - responseType.add(tokenRequest.getGrantType()); - - OAuth2Request authorizationRequest = new OAuth2Request(authorizationParameters, clientId, null, true, null, - null, "", responseType, null); - - Principal principal = new OAuth2Authentication(authorizationRequest, null); - ResponseEntity result = tokenEndpoint().postAccessToken(principal, - authorizationParameters); - OAuth2AccessToken token = result.getBody(); - responseToken.setAccessToken(token.getValue()); - responseToken.setExpiresIn(String.valueOf(token.getExpiresIn())); - responseToken.setTokenType(token.getTokenType()); - } catch (JwtAuthException e) { - response.setStatus(NumberUtils.toInt(StringUtils.left(e.getCode(), 3), HttpStatus.UNAUTHORIZED.value())); - responseToken.setResponseCode(e.getCode()); - responseToken.setResponseMessage(e.getMessage()); - } catch (Exception e) { - logger.error(e.getMessage()); - response.setStatus(HttpStatus.UNAUTHORIZED.value()); - responseToken.setResponseCode( - String.format("%d%s%s", HttpStatus.UNAUTHORIZED.value(), SERVICE_CODE_ACCESS_TOKEN, "00")); - responseToken.setResponseMessage("Unauthorized. [Unknown]"); - } - - return responseToken; - } - - private void verifyClient(ClientDetails clientDetails, String timeStamp, String clientId, String signatureStr) - throws JwtAuthException { - if (StringUtils.isBlank(timeStamp)) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.BAD_REQUEST.value(), SERVICE_CODE_ACCESS_TOKEN, "02"), - "Invalid Mandatory Field {" + HEADER_TIMESTAMP + "}"); - } - - if (StringUtils.isBlank(clientId)) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.BAD_REQUEST.value(), SERVICE_CODE_ACCESS_TOKEN, "02"), - "Invalid Mandatory Field {" + HEADER_CLIENT_ID + "}"); - } - - if (StringUtils.isBlank(signatureStr)) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.BAD_REQUEST.value(), SERVICE_CODE_ACCESS_TOKEN, "02"), - "Invalid Mandatory Field {" + HEADER_SIGNATURE + "}"); - } - - if (clientDetails == null) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.UNAUTHORIZED.value(), SERVICE_CODE_ACCESS_TOKEN, "00"), - "Unauthorized. [client not found]"); - } - - String publicKeyStr = ((ClientVO) clientDetails).getSecurityKey(); - if (StringUtils.isBlank(publicKeyStr)) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.UNAUTHORIZED.value(), SERVICE_CODE_ACCESS_TOKEN, "00"), - "Unauthorized. [public key not found]"); - } - - try { - String message = clientId + "|" + timeStamp; - X509EncodedKeySpec keySpec = new X509EncodedKeySpec(Base64.getDecoder().decode(publicKeyStr)); - KeyFactory keyFactory = KeyFactory.getInstance("RSA"); - PublicKey publicKey = keyFactory.generatePublic(keySpec); - - Signature signature = Signature.getInstance("SHA256withRSA"); - signature.initVerify(publicKey); - signature.update(message.getBytes(StandardCharsets.UTF_8)); - if (!signature.verify(Base64.getDecoder().decode(signatureStr))) { - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.UNAUTHORIZED.value(), SERVICE_CODE_ACCESS_TOKEN, "00"), - "Unauthorized. [Signature not matched]"); - } - } catch (JwtAuthException e) { - throw e; - } catch (Exception e) { - logger.error(e.getMessage()); - throw new JwtAuthException( - String.format("%d%s%s", HttpStatus.UNAUTHORIZED.value(), SERVICE_CODE_ACCESS_TOKEN, "00"), - "Unauthorized. [Signature fail]"); - } - } - - private TokenEndpoint tokenEndpoint() { - return BeanUtils.getBean("tokenEndpoint", TokenEndpoint.class); - } - - public static void main(String[] args) throws Exception { - // First generate a public/private key pair - KeyPairGenerator generator = KeyPairGenerator.getInstance("RSA"); - // generator.initialize(512, new SecureRandom()); - //generator.initialize(1024, new SecureRandom()); - generator.initialize(2048, new SecureRandom()); - KeyPair pair = generator.generateKeyPair(); - - // The private key can be used to sign (not encrypt!) a message. The public key - // holder can then verify the message. - - String message = "sSGJDwlJsel5WeXodzd3J3MQ20KYCZpL|2022-12-21T14:36:19+07:00"; - - // Let's sign our message - Signature privateSignature = Signature.getInstance("SHA256withRSA"); - privateSignature.initSign(pair.getPrivate()); - privateSignature.update(message.getBytes(StandardCharsets.UTF_8)); - System.out.println( - "private key=" + Base64.getEncoder().encodeToString(pair.getPrivate().getEncoded())); - - byte[] signature = privateSignature.sign(); - //System.out.println("signature=" + new String(signature, StandardCharsets.UTF_8)); - System.out.println("signature=" + Base64.getEncoder().encodeToString(signature)); - - // Let's check the signature - Signature publicSignature = Signature.getInstance("SHA256withRSA"); - publicSignature.initVerify(pair.getPublic()); - publicSignature.update(message.getBytes(StandardCharsets.UTF_8)); - boolean isCorrect = publicSignature.verify(signature); - System.out.println("public key=" + Base64.getEncoder().encodeToString(pair.getPublic().getEncoded())); - - System.out.println("Signature correct: " + isCorrect); - - // The public key can be used to encrypt a message, the private key can be used - // to decrypt it. - // Encrypt the message - Cipher encryptCipher = Cipher.getInstance("RSA"); - encryptCipher.init(Cipher.ENCRYPT_MODE, pair.getPublic()); - - byte[] cipherText = encryptCipher.doFinal(message.getBytes(StandardCharsets.UTF_8)); - - // Now decrypt it - Cipher decriptCipher = Cipher.getInstance("RSA"); - decriptCipher.init(Cipher.DECRYPT_MODE, pair.getPrivate()); - - String decipheredMessage = new String(decriptCipher.doFinal(cipherText), StandardCharsets.UTF_8); - - System.out.println(decipheredMessage); - } -} diff --git a/src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceBase64.java b/src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceBase64.java deleted file mode 100644 index c49db01..0000000 --- a/src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceBase64.java +++ /dev/null @@ -1,897 +0,0 @@ -package com.eactive.eai.custom.adapter.http.client.impl; - -import java.io.IOException; -import java.io.StringReader; -import java.math.BigDecimal; -import java.net.ConnectException; -import java.net.SocketTimeoutException; -import java.net.URI; -import java.nio.charset.StandardCharsets; -import java.util.ArrayList; -import java.util.HashMap; -import java.util.List; -import java.util.Map; -import java.util.Properties; -import java.util.regex.Matcher; -import java.util.regex.Pattern; - -import org.apache.commons.lang3.ArrayUtils; -import org.apache.commons.lang3.StringUtils; -import org.apache.commons.lang3.time.StopWatch; -import org.apache.commons.codec.binary.Base64; -import org.apache.hc.client5.http.classic.HttpClient; -import org.apache.hc.client5.http.classic.methods.HttpDelete; -import org.apache.hc.client5.http.classic.methods.HttpGet; -import org.apache.hc.client5.http.classic.methods.HttpPost; -import org.apache.hc.client5.http.classic.methods.HttpPut; -import org.apache.hc.client5.http.classic.methods.HttpUriRequestBase; -import org.apache.hc.client5.http.config.RequestConfig; -import org.apache.hc.client5.http.entity.UrlEncodedFormEntity; -import org.apache.hc.client5.http.impl.classic.CloseableHttpResponse; -import org.apache.hc.core5.http.*; -import org.apache.hc.core5.http.io.entity.EntityUtils; -import org.apache.hc.core5.http.io.entity.StringEntity; -import org.apache.hc.core5.http.message.BasicNameValuePair; -import org.apache.hc.core5.http.protocol.BasicHttpContext; -import org.apache.hc.core5.http.protocol.HttpContext; -import org.apache.hc.core5.net.URIBuilder; -import org.dom4j.Document; -import org.dom4j.Element; -import org.dom4j.io.SAXReader; -import org.json.simple.JSONArray; -import org.json.simple.JSONObject; -import org.json.simple.JSONValue; -import org.json.simple.parser.JSONParser; -import org.json.simple.parser.ParseException; -import org.springframework.web.util.UriComponents; -import org.springframework.web.util.UriComponentsBuilder; - -import com.eactive.eai.adapter.http.HttpMemoryLogger; -import com.eactive.eai.adapter.http.HttpMethodType; -import com.eactive.eai.adapter.http.client.HttpClient5AdapterServiceSupport; -import com.eactive.eai.adapter.http.client.HttpClientAdapterServiceKey; -import com.eactive.eai.adapter.http.client.HttpClientAdapterVO; -import com.eactive.eai.adapter.http.dynamic.HttpAdapterServiceKey; -import com.eactive.eai.common.TransactionContextKeys; -import com.eactive.eai.common.authoutbound.AccessTokenManagerByDB; -import com.eactive.eai.common.exception.ExceptionUtil; -import com.eactive.eai.common.message.MessageType; -import com.eactive.eai.common.util.CommonLib; -import com.jayway.jsonpath.DocumentContext; -import com.jayway.jsonpath.JsonPath; -import com.openbanking.eai.common.token.AccessTokenManager; -import com.openbanking.eai.common.token.AccessTokenVO; -import com.openbanking.eai.common.token.OAuth2AccessTokenVO; - -import com.eactive.eai.common.property.PropManager; - -public class HttpClient5AdapterServiceBase64 extends HttpClient5AdapterServiceSupport - implements HttpClientAdapterServiceKey { - - public static final String TYPE_VARIABLE_URL_REQUEST = "variableUrlRequest"; - public static final String TYPE_SIMPLE_REQUEST = "simpleRequest"; - public static final String REST_OPTION = "REST_OPTION"; - //public static final String HEADER_CONTENT_TYPE = "Content-Type"; - public static final String HEADER_GROUP = "HEADER_GROUP"; - public static final String HTTP_STATUS = "HTTP_STATUS"; - public static final String HEADER_KEYS = "HEADER_KEYS"; - public static final String AUTH_TOKEN = "AUTH_TOKEN"; - - /** - * 1. 기능 : REST API 통신에 사용
- * 2. 처리 개요 : - 속성 정보를 설정 하고 수동 시스템 서비스를 호출 한다.
- * 3. 주의사항
- * - * @param prop Http Adapter 속성 정보 - * @return 반환 된 Object - * @exception Exception 수동 시스템 간 통신 중 발생 - **/ - @SuppressWarnings({ "unchecked" }) - public Object execute(Properties prop, Object data, Properties tempProp) throws Exception { - HttpClientAdapterVO vo = super.setting(prop, tempProp); - - // 2025.04.09 Authorization 헤더값을 프로퍼티(AUTH_TOKEN)에서 지정하여 설정할 수 있도록 수정 - String bizCode = ""; - String authToken = ""; - try { - Properties authProp = PropManager.getInstance().getProperties(AUTH_TOKEN); //Authorization - bizCode = vo.getAdapterGroupName().substring(1, 4); - authToken = authProp.getProperty(bizCode, ""); - } catch (Exception e) { - logger.debug("Property Group AUTH_TOKEN is not Exist !!"); - } - - logger.debug("authToken :::::::::::::::::::::::::::::::::::" + authToken); - - String headerGroupName = prop.getProperty(HEADER_GROUP); - String relayResponseHeaderKeys = prop.getProperty(HEADER_KEYS, ""); - boolean useAdapterToken = StringUtils.equalsIgnoreCase(prop.getProperty("ADAPTER_TOKEN_USE_YN", "N"), "Y"); - - boolean useForwardProxy = StringUtils.equalsIgnoreCase(prop.getProperty("FORWARD_PROXY_USE_YN", "N"), "Y"); - String forwardProxyUrl = prop.getProperty("FORWARD_PROXY_URL"); - - // ex) $.dataHeader.GW_RSLT_CD - String tokenErrorCodeKey = prop.getProperty("ADAPTER_TOKEN_ERROR_CODE_KEY"); - String tokenErrorCodeValues = prop.getProperty("ADAPTER_TOKEN_ERROR_CODE_VALUES"); - String tokenErrorHttpStatusCode = prop.getProperty("ADAPTER_TOKEN_ERROR_HTTP_STATUS_CODE"); // 200 or 400번대 - - // 레이아웃 메시지 타입 REST URL 추출 시 활용. Default JSON - String messageType = prop.getProperty("MESSAGE_TYPE", MessageType.JSON); - String inboundMethod = tempProp.getProperty(HttpAdapterServiceKey.INBOUND_METHOD, "POST"); - - /** - * @formatter:off - * TSEAIHE02.RESTOPTION 정보 => JSON 형태로 구성 - * - type : simpleRequest, variableUrlRequest - * - extraPath : 어댑터 프로퍼티 URL에 추가될 HTTP REST URL - * - method : get, delete, post, put - * - contentType: application/json(default), application/x-www-form-urlencoded - * - adapterTokenUseYn: Y, N(default) - * ex) - * {"type":"simpleRequest","extraPath":"v2.0/accout/balance","method":"post"} - * @formatter:on - */ - - String restOptionData = tempProp.getProperty(REST_OPTION); - - JSONObject restOptionObject = parseJson(restOptionData); - if (restOptionObject == null) { - throw new Exception("OptionData parsing result is NULL"); - } - - String rmethod = (String) restOptionObject.getOrDefault("method", inboundMethod); - String contentType = (String) restOptionObject.getOrDefault("contentType", "application/json"); - String adapterTokenUseYn = (String) restOptionObject.get("adapterTokenUseYn"); - if (StringUtils.isNotBlank(adapterTokenUseYn)) { // interface 에 설정된게 우선한다. - useAdapterToken = StringUtils.equalsIgnoreCase(adapterTokenUseYn, "Y"); - } - - HttpClient mclient = this.client; - String sendData = ""; - if (data instanceof String) { - sendData = (String) data; - } else if (data instanceof byte[]) { - sendData = new String((byte[]) data, vo.getEncode()); - } - - ////mclient.getParams().setContentCharset(vo.getEncode()); - - JSONObject dataObject = null; - - Object httpHeader = null; - Object dataContent = null; - - if (MessageType.JSON.equals(messageType)) { - - Object parsed = parseJsonGeneric(sendData); - - if(parsed instanceof JSONObject) { - dataObject = parseJson(sendData); - if (dataObject != null && StringUtils.isNotBlank(headerGroupName)) { - httpHeader = dataObject.get(headerGroupName); - dataObject.remove(headerGroupName); - } - - dataContent = dataObject; - if (dataObject.containsKey("innerList")) { - JSONArray innerList = (JSONArray) dataObject.get("innerList"); - dataContent = innerList; - } - } - } - - logger.debug("HttpClientAdapterServiceRest] dataObject1 = [" + dataObject + "]"); - logger.debug("HttpClientAdapterServiceRest] dataContent = [" + dataContent + "]"); - - // interface 에 설정된게 우선한다. - String uri = null; - if (dataObject == null) { - uri = changeUrl(messageType, vo.getUrl(), restOptionData, sendData); - } else { - uri = changeUrl(messageType, vo.getUrl(), restOptionData, dataObject); - } - -// ////if (vo.getConnectionTimeout() != 0) { -// mclient.getHttpConnectionManager().getParams().setConnectionTimeout(vo.getConnectionTimeout()); -// } - - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") URL=[" + vo.getUrl() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") PARAMETER_NAME=[" + vo.getParameterName() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") ENCODE=[" + vo.getEncode() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") RESPONSE_TYPE=[" + vo.getResponseType() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") URL_ENCODE_YN=[" + vo.getUrlEncodeYn() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") CONNECTION_TIMEOUT=[" + vo.getConnectionTimeout() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") REST_OPTION=[" + restOptionData + "] "); - } - - HttpUriRequestBase method = null; - - // 메소드 타입에 따라 HttpRequestBase 인스턴스 생성 - switch (HttpMethodType.getValue(rmethod)) { - case GET: - method = new HttpGet(uri); - break; - case DELETE: - method = new HttpDelete(uri); - break; - case POST: - method = new HttpPost(uri); - break; - case PUT: - method = new HttpPut(uri); - break; - default: - method = new HttpGet(uri); - break; - } - - RequestConfig.Builder requestConfigBuilder = RequestConfig.custom(); - - if(useForwardProxy) { - java.net.URL url = new java.net.URL(forwardProxyUrl); - - // 프로토콜, 호스트, 포트 추출 - String protocol = url.getProtocol(); - String host = url.getHost(); - int port = url.getPort(); - HttpHost proxy = new HttpHost(protocol,host, port); - requestConfigBuilder.setProxy(proxy); - } - - configureHttpClient(requestConfigBuilder, vo, method); - - switch (HttpMethodType.getValue(rmethod)) { - case GET: - case DELETE: - HashMap h = getParameters(dataObject); - URIBuilder uriBuilder = new URIBuilder(uri); - for (Map.Entry entry : h.entrySet()) { - uriBuilder.addParameter(entry.getKey(), entry.getValue()); - } - URI fullUri = uriBuilder.build(); - if (method instanceof HttpGet) { - ((HttpGet) method).setUri(fullUri); - } else if (method instanceof HttpDelete) { - ((HttpDelete) method).setUri(fullUri); - } - if (logger.isDebug()) { - logger.debug("HttpClientAdapterServiceRest] (get Method) QueryString = [" + fullUri.getQuery() + "]"); - } - break; - case PUT: - case POST: - //assignPostBody(dataObject, contentType, vo.getEncode(), method); - assignPostBody(dataContent, contentType, vo.getEncode(), method); - break; - default: - break; - } - - if (logger.isDebugEnabled()) { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") method.getParams()=[" - + method.getEntity() + "] "); - } - - OAuth2AccessTokenVO accessToken = null; - if (useAdapterToken) { - AccessTokenManagerByDB tokenManager = AccessTokenManagerByDB.getInstance(); - accessToken = (OAuth2AccessTokenVO) tokenManager.getAccessTokenVO(vo.getAdapterGroupName()); - - // 토큰이 없거나 만료 됐으면 재발급 - if (accessToken == null || accessToken.isExpired()) { - String oldToken = accessToken == null ? null : accessToken.getAccessToken(); - accessToken = (OAuth2AccessTokenVO) tokenManager.retryAccessTokenVO(vo.getAdapterGroupName(), prop, - oldToken); - } - - if (logger.isDebug()) { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") TOKEN = [" - + accessToken + "]"); - } - - setAuthHeaders(method, accessToken); - - if (logger.isDebug()) { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() - + ") RequestHeader [Authorization=" + method.getHeader("Authorization") + "]"); - } - } - - // 2025.04.09 Authorization 헤더값을 프로퍼티(AUTH_TOKEN)에서 지정하여 설정할 수 있도록 수정 - if(!StringUtils.isBlank(authToken)) { - setAuthHeaders(method, authToken); - } - - // 전달 header 셋팅 - // Adapter 레벨 header 보다 data로 넘어온 httpHeader를 우선 적용(header명이 같다면 덮어씀) - assignRequestHeaders(method, httpHeader); - - int status = -1; - - try { - byte[] responseMessage = null; - Header[] responseHeaders; - - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - if (dataContent != null) { //dataObject - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") = [" - + dataContent.toString() + "]"); //dataObject.toJSONString() - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") = " - + CommonLib.getDumpMessage(dataContent.toString())); //dataObject.toJSONString() - } else { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") = [" + sendData - + "]"); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") = " - + CommonLib.getDumpMessage(sendData)); - } - } - StopWatch stopWatch = new StopWatch(); - stopWatch.start(); - - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.txlog(vo.getAdapterGroupName() + vo.getAdapterName(), - "SEND [" + sendData + "]" + CommonLib.getDumpMessage(sendData)); - } - - String uuid = tempProp.getProperty(TransactionContextKeys.TRANSACTION_UUID); - HttpContext context = new BasicHttpContext(); - context.setAttribute(TransactionContextKeys.TRANSACTION_UUID, uuid); - context.setAttribute(HttpClientAdapterServiceKey.ADAPTER_GROUP_NAME, vo.getAdapterGroupName()); - context.setAttribute(HttpClientAdapterServiceKey.ADAPTER_NAME, vo.getAdapterName()); - Integer logProcessNo = (Integer) tempProp.get(HttpClientAdapterServiceKey.LOG_PROCESS_NO); - if (logProcessNo != null && logProcessNo > 0) { - context.setAttribute(HttpClientAdapterServiceKey.LOG_PROCESS_NO, logProcessNo); - } - - try { - if (logger.isDebug()) { - logger.debug("[method getName]" + method.getMethod()); - logger.debug("[method getEntity]" + method.getEntity()); - logger.debug("[method getRequestHeaders]" + method.getHeaders().toString()); - logger.debug("[method getURI]" + method.getPath()); - } - try (CloseableHttpResponse response = (CloseableHttpResponse) mclient.execute(method, context)) { - status = response.getCode(); - - if (status >= 200 && status <= 207) { - status = 200; - } - -// if (status == 404) { -// status = 200; -// } - -// responseMessage = EntityUtils.toByteArray(response.getEntity()); - responseHeaders = response.getHeaders(); - // 2025/08/06 Response body를 Base64로 Encode 해서 Json으로 만들어서 전달하도록 수정 - HttpEntity entity = response.getEntity(); - if (entity != null) { - byte[] entityBytes = EntityUtils.toByteArray(response.getEntity()); - String b64 = Base64.encodeBase64String(entityBytes); - JSONObject resultJson = new JSONObject(); - resultJson.put("base64_file_data", b64); - responseMessage = resultJson.toString().getBytes(); - } else { - responseMessage = EntityUtils.toByteArray(response.getEntity()); - } - - - if (logger.isDebug()) { - logger.debug("[received status]" + status); - logger.debug("HttpClientAdapterServiceRest] RECV (" + vo.getAdapterGroupName() + ") = [" + responseMessage + "]"); - } - } - } catch (ConnectException e) { - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] responseType =" + vo.getResponseType()); - } - throw new Exception("excuteMethod java.net.ConnectException = " + e.getMessage()); - } - - stopWatch.stop(); - - /** - * @formatter:off - * OAuth 토큰 응답 체크(Adapter properties로 설정) - * 응답코드에 따라 유효한 토큰 확인(토큰 재발급 여부 확인) - * API 서비스 마다 정책이 다름(보통 400대에서 체크하나 200에서도 체크할 수 있음) - * - * TOKEN_ERROR_CODE_KEY: 응답 json error code key - * __ex) $.dataHeader.resultCode - * TOKEN_ERROR_CODE_VALUES: 토큰 재발급이 필요한 응답 error codes(ex: O0001,O0002,O0003) - * TOKEN_ERROR_HTTP_STATUS_CODE: 보통 400대에서 체크하나 API 제공자에 따라 200에서도 체클할수 있음 - * ex) TOKEN_ERROR_HTTP_STATUS_CODE = 200 - * @formatter:on - */ - boolean needReissue = false; - - Properties responseHeaderProp = assignRelayDataToInbound(tempProp, responseHeaders); - String responseString = new String(responseMessage, vo.getEncode()); - - Map map = new HashMap(); - tempProp.put(HttpAdapterServiceKey.OUTBOUND_PROPERTY_MAP, map); - map.put(HttpAdapterServiceKey.OUTBOUND_RESPONSE_HEADERS, responseHeaderProp); - map.put(HttpAdapterServiceKey.OUTBOUND_RESPONSE_MESSAGE, responseString); - map.put(HttpAdapterServiceKey.OUTBOUND_RESPONSE_STATUS, status); - - if (status >= 200 && status <= 207) { - if (useAdapterToken && StringUtils.equals(tokenErrorHttpStatusCode, "200")) { - needReissue = checkTokenRetry(responseMessage, tokenErrorCodeKey, tokenErrorCodeValues, - vo.getEncode()); - } - } else if (status == 302) { - if (!StringUtils.contains(relayResponseHeaderKeys, "Location")) { - relayResponseHeaderKeys += ",Location"; - } - } else { - String errMsg = String.format( - "http receive status fail value=%d adapterName=%s.%s uri=%s method=%s response Data=%s", - status, vo.getAdapterGroupName(), vo.getAdapterName(), uri, rmethod, responseString); -// logger.error(errMsg); - - if (status >= 400 && status < 500) { - if (useAdapterToken) { - needReissue = checkTokenRetry(responseMessage, tokenErrorCodeKey, tokenErrorCodeValues, - vo.getEncode()); - } - -// if (!needReissue) { -// throw new Exception(errMsg); -// } - } else { - - throw new Exception(errMsg); - } - } - - // ---------------------------------------------------------- - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] responseType =" + vo.getResponseType()); - logger.debug("HttpClientAdapterServiceRest] RECV " + vo.getEncode() + "(" + vo.getAdapterGroupName() + ") = [" + new String(responseMessage, vo.getEncode()) + "]"); -// logger.debug("HttpClientAdapterServiceRest] RECV MS949 (" + vo.getAdapterGroupName() + ") = [" + new String(responseMessage, "MS949") + "]"); -// logger.debug("HttpClientAdapterServiceRest] RECV euc-kr (" + vo.getAdapterGroupName() + ") = [" + new String(responseMessage, "euc-kr") + "]"); - logger.debug("HttpClientAdapterServiceRest] RECV (" + vo.getAdapterGroupName() + ") = " + CommonLib.getDumpMessage(responseMessage)); - } - - if (useAdapterToken) { - if (responseMessage == null) { - throw new Exception("responseMessage is NULL, HttpStatus=" + status); - } - - // OAuth 토큰 재요청 코드 확인 - if (needReissue) { - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] retry access token response code = [" - + vo.getResponseType() + "] message = [" + new String(responseMessage, vo.getEncode()) - + "]"); - } - - // 토큰 재발급 - AccessTokenManager tokenManager = AccessTokenManager.getInstance(); - String oldToken = accessToken == null ? null : accessToken.getAccessToken(); - OAuth2AccessTokenVO newaccessToken = (OAuth2AccessTokenVO) tokenManager - .retryAccessTokenVO(vo.getAdapterGroupName(), prop, oldToken); - method.setHeader("Authorization", newaccessToken.getAuthorization()); - - setAuthHeaders(method, newaccessToken); - - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() - + ") RETRY TOKEN = [" + newaccessToken + "]"); - } - - try (CloseableHttpResponse response = (CloseableHttpResponse) mclient.execute(method)) { - status = response.getCode(); - responseMessage = EntityUtils.toByteArray(response.getEntity()); - - if (logger.isDebug()) { - logger.debug("[received status]" + status); - logger.debug("HttpClientAdapterServiceRest] RECV (" + vo.getAdapterGroupName() + ") = [" + new String(responseMessage, vo.getEncode()) + "]"); - } - }catch (IOException e){ - throw new Exception("retry excuteMethod Exceptioin = " + e.getMessage()); - } - - - if (status == 302) { - if (!StringUtils.contains(relayResponseHeaderKeys, "Location")) { - relayResponseHeaderKeys += ",Location"; - } - } else { - String errMsg = String.format( - "http receive status fail value=%d adapterName=%s.%s uri=%s method=%s response Data=%s", - status, vo.getAdapterGroupName(), vo.getAdapterName(), uri, rmethod, responseMessage); - throw new Exception(errMsg); - } - - // ---------------------------------------------------------- - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] RETRY responseType =" + vo.getResponseType()); - logger.debug("HttpClientAdapterServiceRest] RETRY RECV " + vo.getEncode() + "(" - + vo.getAdapterGroupName() + ") = [" + new String(responseMessage, vo.getEncode()) - + "]"); - logger.debug("HttpClientAdapterServiceRest] RETRY RECV (" + vo.getAdapterGroupName() + ") = " - + CommonLib.getDumpMessage(responseMessage)); - } - // ---------------------------------------------------------- - } - } - - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.txlog(vo.getAdapterGroupName() + vo.getAdapterName(), - "RECV [" + new String(responseMessage, vo.getEncode()) + "]" - + CommonLib.getDumpMessage(responseMessage)); - } - - - return assignResponseHeaders(method, responseMessage, headerGroupName, vo.getEncode(), messageType, - relayResponseHeaderKeys, status, responseHeaderProp); - } catch (SocketTimeoutException ste) { // Read Timeout :: HttpClient 3.1일 경우 - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.error(vo.getAdapterGroupName() + vo.getAdapterName(), - "HttpClientAdapterServiceRest] SocketTimeoutException (" + vo.getAdapterGroupName() + ") : " - + ste.toString(), - ste); - } - logger.error("HttpClientAdapterServiceRest] SocketTimeoutException (" + vo.getAdapterGroupName() + ") : " - + ste.toString(), ste); - throw ste; - } catch (ConnectException ce) { - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.error(vo.getAdapterGroupName() + vo.getAdapterName(), - "HttpClientAdapterServiceRest] Connection Exception (" + vo.getAdapterGroupName() + ") : " - + ce.toString(), - ce); - } - logger.error("HttpClientAdapterServiceRest] Connection Exception (" + vo.getAdapterGroupName() + ") : " - + ce.toString(), ce); - throw ce; - } catch (Exception e) { - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.error(vo.getAdapterGroupName() + vo.getAdapterName(), e.toString(), e); - } - logger.error("HttpClientAdapterServiceRest] Exception (" + vo.getAdapterGroupName() + ") : " + e.toString(), - e); - throw e; - } finally { - if (status != HttpStatus.SC_OK) { - String[] msgArgs = new String[1]; - msgArgs[0] = String.valueOf(status); - String resMsg = ExceptionUtil.make("RDCEAIAHA013", msgArgs); - if (logger.isDebug()) { - logger.debug(resMsg); - } - } - } - } - - private Properties assignRelayDataToInbound(Properties prop, Header[] responseHeaders) { - Properties headerProp = new Properties(); - if (responseHeaders == null || responseHeaders.length == 0) { - return headerProp; - } - - for (Header header : responseHeaders) { - headerProp.put(header.getName(), header.getValue()); - } - - return headerProp; - } - - /** - * 현재 1단계 레이아웃에만 적용되도록 구현됨. - * - * @param method - * @param responseMessage - * @param headerGroupName - * @param encode - * @param messageType - * @param relayHeaderKeys - * @return - * @throws Exception - */ - @SuppressWarnings("unchecked") - private String assignResponseHeaders(HttpUriRequestBase method, byte[] responseMessage, String headerGroupName, - String encode, String messageType, String relayHeaderKeys, int status, Properties responseHeaderProp) throws Exception { - if (!MessageType.JSON.equals(messageType) || StringUtils.isBlank(headerGroupName) - || StringUtils.isBlank(relayHeaderKeys)) { - return new String(responseMessage, encode); - } - - String[] relayKeyArr = org.springframework.util.StringUtils.tokenizeToStringArray(relayHeaderKeys, ","); - JSONObject headerJson = new JSONObject(); - for (String key : relayKeyArr) { - String value = responseHeaderProp.getProperty(key); - if (StringUtils.isNotBlank(value)) { - headerJson.put(key, value); - } - } - - headerJson.put(HTTP_STATUS, String.valueOf(status)); - - if (headerJson.size() <= 0) { - return new String(responseMessage, encode); - } - - JSONObject message = null; - if (responseMessage == null || responseMessage.length == 0) { - message = new JSONObject(); - } else { - message = parseJson(new String(responseMessage, encode)); - if (message == null) { - message = new JSONObject(); - message.put("Malformed_Response_Message", new String(responseMessage, encode)); - } - } - - if (StringUtils.isNotBlank(headerGroupName) && message != null) - message.put(headerGroupName, headerJson); - - logger.info("------------- message --------------- : {} ", message); - - return message.toJSONString(); - } - - // 2025.04.09 Authorization 헤더값을 프로퍼티(AUTH_TOKEN)에서 지정하여 설정할 수 있도록 수정 - private void setAuthHeaders(HttpUriRequestBase method, String authorization) throws Exception { - method.setHeader("Authorization", - String.format("%s", authorization)); - } - - private void setAuthHeaders(HttpUriRequestBase method, OAuth2AccessTokenVO accessToken) throws Exception { - method.setHeader("Authorization", - String.format("%s %s", AccessTokenVO.BEARER_TYPE, accessToken.getAccessToken())); - } - - private boolean checkTokenRetry(byte[] responseMessage, String tokenErrorCodeKey, String tokenErrorCodeValues, - String encode) { - if (responseMessage == null) { - return false; - } - - if (StringUtils.isBlank(tokenErrorCodeKey)) { - return false; - } - - if (StringUtils.isBlank(tokenErrorCodeValues)) { - return false; - } - - try { - DocumentContext jsonContext = JsonPath.parse(new String(responseMessage, encode)); - String responseCode = jsonContext.read(tokenErrorCodeKey); - if (StringUtils.isBlank(responseCode)) { - return false; - } - - String[] arr = org.springframework.util.StringUtils.tokenizeToStringArray(tokenErrorCodeValues, ","); - return ArrayUtils.contains(arr, responseCode); - } catch (Exception e) { - logger.error("HttpClientAdapterServiceRest] checkTokenRetry error=" + e.getMessage()); - } - - return false; - } - - private void assignRequestHeaders(HttpUriRequestBase method, Object httpHeader) { - if (httpHeader == null) { - return; - } - - if (httpHeader instanceof JSONObject) { - JSONObject jsonObject = (JSONObject) httpHeader; - for (Object key : jsonObject.keySet()) { - Object obj = jsonObject.get(key); - if ((obj instanceof JSONObject) || (obj instanceof JSONArray)) { - continue; - } - - method.setHeader((String) key, (String) obj); - - if (logger.isDebugEnabled()) { - logger.debug("Request Header :" + (String) key + "=[" + (String) obj + "]"); - } - - } - } - } - - @SuppressWarnings("deprecation") - private void assignPostBody(Object eaiBody, String contentType, String charset, HttpUriRequestBase method) { - if (eaiBody == null) { - return; - } - - if (StringUtils.contains(contentType, "application/x-www-form-urlencoded")) { - if (eaiBody instanceof JSONObject) { - List params = new ArrayList<>(); - JSONObject jsonObject = (JSONObject) eaiBody; - for (Object key : jsonObject.keySet()) { - params.add(new BasicNameValuePair((String) key, (String) jsonObject.get(key))); - } - - UrlEncodedFormEntity entity = new UrlEncodedFormEntity(params, StandardCharsets.UTF_8); - method.setEntity(entity); - } - - } else { - ContentType contentTypeObj = ContentType.create(contentType, charset); - - // 요청 본문을 StringEntity 객체로 생성 - StringEntity entity = new StringEntity(eaiBody.toString(), contentTypeObj); - - // 요청에 본문 추가 - method.setEntity(entity); - } - } - - private HashMap getParameters(Object message) throws Exception { - - HashMap result = new HashMap(); - - if (message != null) { - if (message instanceof JSONObject) { - JSONObject jsonObject = (JSONObject) message; - for (Object key : jsonObject.keySet()) { - Object obj = jsonObject.get(key); - if ((obj instanceof JSONObject) || (obj instanceof JSONArray)) { - continue; - } - result.put((String) key, getStringValue(obj)); - } - } else { - String[] messages = ((String) message).split("&"); - String[] data = null; - - for (int i = 0; i < messages.length; i++) { - data = messages[i].split("=", 2); - if (data.length == 2) { - result.put(data[0], data[1]); - } - } - } - } - - return result; - } - - public String getStringValue(Object obj) { - if (obj == null) { - return null; - } - - if (obj instanceof String) { - return (String) obj; - } else if (obj instanceof Long) { - return Long.toString((Long) obj); - } else if (obj instanceof BigDecimal) { - return ((BigDecimal) obj).toPlainString(); - } else { - return (String) obj; - } - } - - public static Object parseJsonGeneric(String jsonData) { - if (StringUtils.isBlank(jsonData)) { - return null; - } - - try { - JSONParser parser = new JSONParser(); - Object parsedObj = parser.parse(jsonData); - return parsedObj; - } catch (ParseException e) { - e.printStackTrace(); - return null; - } - } - - @SuppressWarnings("deprecation") - private JSONObject parseJson(String message) throws Exception { - if (message == null) { - return null; - } - - return (JSONObject) JSONValue.parse(message); - } - - private Document convertXmlDocument(String message) throws Exception { - SAXReader builder = new SAXReader(); - Document document = builder.read(new StringReader(message)); - return document; - } - - @SuppressWarnings("deprecation") - private String changeUrl(String messageType, String url, String restOption, Object sendData) { - if ((MessageType.JSON.equals(messageType) || MessageType.XML.equals(messageType))) { - try { - if (StringUtils.isBlank(restOption)) { - return url; - } - List urlVariableList = new ArrayList(); - JSONObject restOptionObject = parseJson(restOption); - - if (restOptionObject == null) - throw new Exception("restOption is NULL"); - - String type = (String) restOptionObject.get("type"); - String requestExtraPath = (String) restOptionObject.get("extraPath"); - url = getUrl(url, requestExtraPath); - if (TYPE_VARIABLE_URL_REQUEST.equals(type)) { - Pattern p = Pattern.compile("\\{(.*?)\\}"); - Matcher m = p.matcher(requestExtraPath); - List uriVariables = new ArrayList<>(); - while(m.find()) { - String fieldName = m.group(1); - uriVariables.add(fieldName); - } - if (MessageType.JSON.equals(messageType)) { - JSONObject jsonObject; - if (sendData instanceof JSONObject) { - jsonObject = (JSONObject) sendData; - } else { - jsonObject = (JSONObject) JSONValue.parse((String) sendData); - } - for (Object tempObject : uriVariables) { - String urlVaribleId = (String) tempObject; - String uriVariable = (String) jsonObject.get(urlVaribleId); - urlVariableList.add(uriVariable); - jsonObject.remove(urlVaribleId); - } - } else if (MessageType.XML.equals(messageType)) { - Document doc; - if (sendData instanceof Document) { - doc = (Document) sendData; - } else { - doc = convertXmlDocument((String) sendData); - } - for (Object tempObject : uriVariables) { - String urlVaribleId = (String) tempObject; - Element element = (Element) doc.selectSingleNode("//" + urlVaribleId); - urlVariableList.add(element.getText()); - if (doc.getRootElement() == element) { - doc = null; - } else { - element.getParent().remove(element); - } - } - } - if (urlVariableList.size() > 0) { - UriComponents uriComponents = UriComponentsBuilder.fromUriString(url).build(); - Object[] urls = urlVariableList.toArray(); - url = uriComponents.expand(urls).toUriString(); - logger.debug("HttpClientAdapterServiceRest] after extand url=[" + url + "] "); - } - } - } catch (Exception e) { - logger.error("Failed to change url", e); - } - } - return url; - } - - private String getUrl(String baseUrl, String extraPath) { - if (StringUtils.isBlank(extraPath)) { - return baseUrl; - } - - if (StringUtils.contains(extraPath, "http://") || StringUtils.contains(extraPath, "https://")) { - return extraPath; - } - - String targetUrl = baseUrl; - if (!targetUrl.endsWith("/")) { - targetUrl += "/"; - } - if (extraPath.startsWith("/")) { - targetUrl += extraPath.substring(1); - } else { - targetUrl += extraPath; - } - - logger.debug("HttpClientAdapterServiceRest] after concatenate url=[" + targetUrl + "] "); - return targetUrl; - } - -} diff --git a/src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceBypass.java b/src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceBypass.java deleted file mode 100644 index b25ec75..0000000 --- a/src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceBypass.java +++ /dev/null @@ -1,680 +0,0 @@ -package com.eactive.eai.custom.adapter.http.client.impl; - -import java.io.IOException; -import java.net.ConnectException; -import java.net.SocketTimeoutException; -import java.util.ArrayList; -import java.util.BitSet; -import java.util.Formatter; -import java.util.HashMap; -import java.util.LinkedHashMap; -import java.util.List; -import java.util.Map; -import java.util.Map.Entry; -import java.util.Properties; - -import org.apache.commons.lang3.ArrayUtils; -import org.apache.commons.lang3.StringUtils; -import org.apache.commons.lang3.time.StopWatch; -import org.apache.hc.client5.http.classic.HttpClient; -import org.apache.hc.client5.http.classic.methods.HttpDelete; -import org.apache.hc.client5.http.classic.methods.HttpGet; -import org.apache.hc.client5.http.classic.methods.HttpPost; -import org.apache.hc.client5.http.classic.methods.HttpPut; -import org.apache.hc.client5.http.classic.methods.HttpUriRequestBase; -import org.apache.hc.client5.http.config.RequestConfig; -import org.apache.hc.client5.http.impl.classic.CloseableHttpResponse; -import org.apache.hc.core5.http.Header; -import org.apache.hc.core5.http.HttpStatus; -import org.apache.hc.core5.http.io.entity.ByteArrayEntity; -import org.apache.hc.core5.http.io.entity.EntityUtils; -import org.apache.hc.core5.http.protocol.BasicHttpContext; -import org.apache.hc.core5.http.protocol.HttpContext; -import org.json.simple.JSONArray; -import org.json.simple.JSONObject; -import org.json.simple.JSONValue; -import org.springframework.http.HttpHeaders; -import org.springframework.http.MediaType; -import org.springframework.web.util.UriComponents; -import org.springframework.web.util.UriComponentsBuilder; - -import com.eactive.eai.adapter.http.HttpMemoryLogger; -import com.eactive.eai.adapter.http.HttpMethodType; -import com.eactive.eai.adapter.http.client.HttpClient5AdapterServiceSupport; -import com.eactive.eai.adapter.http.client.HttpClientAdapterServiceKey; -import com.eactive.eai.adapter.http.client.HttpClientAdapterVO; -import com.eactive.eai.adapter.http.client.impl.HttpClientAdapterServiceRest; -import com.eactive.eai.adapter.http.dynamic.HttpAdapterServiceKey; -import com.eactive.eai.adapter.http.dynamic.impl.HttpAdapterServiceBypass; -import com.eactive.eai.common.TransactionContextKeys; -import com.eactive.eai.common.exception.ExceptionUtil; -import com.eactive.eai.common.util.CommonLib; -import com.jayway.jsonpath.DocumentContext; -import com.jayway.jsonpath.JsonPath; -import com.openbanking.eai.common.token.AccessTokenManager; -import com.openbanking.eai.common.token.AccessTokenVO; -import com.openbanking.eai.common.token.OAuth2AccessTokenVO; - -public class HttpClient5AdapterServiceBypass extends HttpClient5AdapterServiceSupport - implements HttpClientAdapterServiceKey { - public static final String TYPE_BYPASS_REQUEST = "bypassRequest"; - public static final String REST_OPTION = "REST_OPTION"; - - protected boolean doSendUrlFragment = true; - protected boolean doHandleCompression = false; - protected boolean doForwardIP = false; - - @SuppressWarnings({ "unchecked" }) - public Object execute(Properties prop, Object data, Properties tempProp) throws Exception { - HttpClientAdapterVO vo = super.setting(prop, tempProp); - - boolean useAdapterToken = StringUtils.equalsIgnoreCase(prop.getProperty("ADAPTER_TOKEN_USE_YN", "N"), "Y"); - - // ex) $.dataHeader.GW_RSLT_CD - String tokenErrorCodeKey = prop.getProperty("ADAPTER_TOKEN_ERROR_CODE_KEY"); - String tokenErrorCodeValues = prop.getProperty("ADAPTER_TOKEN_ERROR_CODE_VALUES"); - String tokenErrorHttpStatusCode = prop.getProperty("ADAPTER_TOKEN_ERROR_HTTP_STATUS_CODE"); // 200 or 400번대 - - /** - * @formatter:off - * TSEAIHE02.RESTOPTION 정보 => JSON 형태로 구성 - * - type : simpleRequest, variableUrlRequest - * - extraPath : 어댑터 프로퍼티 URL에 추가될 HTTP REST URL - * - method : get, delete, post, put - * - contentType : application/json, application/x-www-form-urlencoded - * - adapterTokenUseYn: Y, N(default) - * ex) - * {"type":"variableUrlRequest","extraPath":"/aaa/{userId}","uriVariables":["userId"]} - * @formatter:on - */ - String restOptionData = tempProp.getProperty(REST_OPTION, "{}"); - - JSONObject restOptionObject = parseJson(restOptionData); - - String adapterTokenUseYn = (String) restOptionObject.get("adapterTokenUseYn"); - if (StringUtils.isNotBlank(adapterTokenUseYn)) { // interface 에 설정된게 우선한다. - useAdapterToken = StringUtils.equalsIgnoreCase(adapterTokenUseYn, "Y"); - } - - String inboundMethod = tempProp.getProperty(HttpAdapterServiceKey.INBOUND_METHOD, "POST"); - String inboundRewritePath = tempProp.getProperty(HttpAdapterServiceKey.INBOUND_REWRITE_PATH, ""); - String inboundQueryString = tempProp.getProperty(HttpAdapterServiceKey.INBOUND_QUERY_STRING, ""); - Properties inboundHeaders = (Properties) tempProp.get(HttpAdapterServiceKey.INBOUND_HEADER); - Map inboundPathVariables = (Map) tempProp - .get(HttpAdapterServiceKey.INBOUND_PATH_VARIABLES); - - String restMethod = (String) restOptionObject.get("method"); - if (StringUtils.isBlank(restMethod)) { - restMethod = inboundMethod; - } - - String url = getRewriteUrl(vo, inboundRewritePath, inboundQueryString, restOptionObject, inboundPathVariables); - if (logger.isDebug()) { - logger.debug("HttpClient5AdapterServiceBypass] url = [" + url + "]"); - } - - HttpClient mclient = this.client; - HttpUriRequestBase method = generateMethod(restMethod, url); - - assignRequestHeaders(method, inboundHeaders, tempProp); - - if (hasBody(data, method)) { - byte[] bodyBytes; - if (data instanceof byte[]) { - bodyBytes = (byte[]) data; - } else if (data instanceof String) { - bodyBytes = ((String) data).getBytes(vo.getEncode()); - } else { - bodyBytes = new byte[0]; - } - method.setEntity(new ByteArrayEntity(bodyBytes, null)); - } - - String contentType = (String) restOptionObject.get("contentType"); - if (StringUtils.isBlank(contentType) && inboundHeaders != null) { - contentType = getIgnoreCaseProp(inboundHeaders, HttpHeaders.CONTENT_TYPE); - contentType = StringUtils.substringBefore(contentType, ";"); - } - - RequestConfig.Builder requestConfigBuilder = RequestConfig.custom(); - configureHttpClient(requestConfigBuilder, vo, method); - - OAuth2AccessTokenVO accessToken = null; - if (useAdapterToken) { - AccessTokenManager tokenManager = AccessTokenManager.getInstance(); - accessToken = (OAuth2AccessTokenVO) tokenManager.getAccessTokenVO(vo.getAdapterGroupName()); - - // 토큰이 없거나 만료 됐으면 재발급 - if (accessToken == null || accessToken.isExpired()) { - String oldToken = accessToken == null ? null : accessToken.getAccessToken(); - accessToken = (OAuth2AccessTokenVO) tokenManager.retryAccessTokenVO(vo.getAdapterGroupName(), prop, - oldToken); - } - - if (logger.isDebug()) { - logger.debug("HttpClient5AdapterServiceBypass] SEND (" + vo.getAdapterGroupName() + ") TOKEN = [" - + accessToken + "]"); - } - - setAuthHeaders(method, accessToken); - - if (logger.isDebug()) { - logger.debug("HttpClient5AdapterServiceBypass] SEND (" + vo.getAdapterGroupName() - + ") RequestHeader [Authorization=" + method.getFirstHeader("Authorization") + "]"); - } - } - - // 로깅 인터셉터에 전달할 컨텍스트 정보 설정 - String uuid = tempProp.getProperty(TransactionContextKeys.TRANSACTION_UUID); - HttpContext context = new BasicHttpContext(); - context.setAttribute(TransactionContextKeys.TRANSACTION_UUID, uuid); - context.setAttribute(HttpClientAdapterServiceKey.ADAPTER_GROUP_NAME, vo.getAdapterGroupName()); - context.setAttribute(HttpClientAdapterServiceKey.ADAPTER_NAME, vo.getAdapterName()); - Integer logProcessNo = (Integer) tempProp.get(HttpClientAdapterServiceKey.LOG_PROCESS_NO); - if (logProcessNo != null && logProcessNo > 0) { - context.setAttribute(HttpClientAdapterServiceKey.LOG_PROCESS_NO, logProcessNo); - } - - int status = -1; - - try { - StopWatch stopWatch = new StopWatch(); - stopWatch.start(); - - byte[] responseMessage = null; - Header[] responseHeaders = null; - - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.txlog(vo.getAdapterGroupName() + vo.getAdapterName(), - "SEND [Bypass Request..]" + CommonLib.getDumpMessage(data)); - } - try { - if (logger.isDebug()) { - logger.debug("[method getName]" + method.getMethod()); - logger.debug("[method getRequestHeaders]" + java.util.Arrays.toString(method.getHeaders())); - logger.debug("[method getURI]" + method.getPath()); - } - try (CloseableHttpResponse response = (CloseableHttpResponse) mclient.execute(method, context)) { - status = response.getCode(); - responseHeaders = response.getHeaders(); - responseMessage = EntityUtils.toByteArray(response.getEntity()); - if (logger.isDebug()) { - logger.debug("[received status]" + status); - } - } - } catch (ConnectException e) { - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClient5AdapterServiceBypass] responseType =" + vo.getResponseType()); - logger.debug("HttpClient5AdapterServiceBypass] RECV (" + vo.getAdapterGroupName() + ") = " - + CommonLib.getDumpMessage(responseMessage)); - } - throw new Exception("excuteMethod java.net.ConnectException = " + e.getMessage()); - } - - stopWatch.stop(); - - /** - * @formatter:off - * OAuth 토큰 응답 체크(Adapter properties로 설정) - * 응답코드에 따라 유효한 토큰 확인(토큰 재발급 여부 확인) - * API 서비스 마다 정책이 다름(보통 400대에서 체크하나 200에서도 체크할 수 있음) - * - * TOKEN_ERROR_CODE_KEY: 응답 json error code key - * __ex) $.dataHeader.resultCode - * TOKEN_ERROR_CODE_VALUES: 토큰 재발급이 필요한 응답 error codes(ex: O0001,O0002,O0003) - * TOKEN_ERROR_HTTP_STATUS_CODE: 보통 400대에서 체크하나 API 제공자에 따라 200에서도 체클할수 있음 - * ex) TOKEN_ERROR_HTTP_STATUS_CODE = 200 - * @formatter:on - */ - boolean needReissue = false; - - if (status == 200) { - if (useAdapterToken && StringUtils.equals(tokenErrorHttpStatusCode, "200")) { - needReissue = checkTokenRetry(responseMessage, tokenErrorCodeKey, tokenErrorCodeValues, - vo.getEncode()); - } - } else if (status >= 400 && status < 500) { - if (useAdapterToken) { - needReissue = checkTokenRetry(responseMessage, tokenErrorCodeKey, tokenErrorCodeValues, - vo.getEncode()); - } - - if (!needReissue) { - // body 값이 없을때만 exception 처리하고, body가 있으면 bypass 한다. - if (responseMessage == null || responseMessage.length == 0) { - String errMsg = String.format( - "http receive status fail value=%d adapterName=%s.%s uri=%s method=%s response Data=%s", - status, vo.getAdapterGroupName(), vo.getAdapterName(), url, restMethod, responseMessage); - throw new Exception(errMsg); - } - } - } else if (status != 200) { - responseMessage = responseMessage != null ? responseMessage : new byte[0]; - // body 값이 없을때만 exception 처리하고, body가 있으면 bypass 한다. - if (responseMessage.length == 0) { - String errMsg = String.format( - "http receive status fail value=%d adapterName=%s.%s uri=%s method=%s response Data=%s", - status, vo.getAdapterGroupName(), vo.getAdapterName(), url, restMethod, responseMessage); - throw new Exception(errMsg); - } - } - - if (useAdapterToken) { - if (responseMessage == null) { - throw new Exception("responseMessage is NULL, HttpStatus=" + status); - } - - // OAuth 토큰 재요청 코드 확인 - if (needReissue) { - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClient5AdapterServiceBypass] retry access token response code = [" - + vo.getResponseType() + "] message = [" + new String(responseMessage, vo.getEncode()) - + "]"); - } - - // 토큰 재발급 - AccessTokenManager tokenManager = AccessTokenManager.getInstance(); - String oldToken = accessToken == null ? null : accessToken.getAccessToken(); - OAuth2AccessTokenVO newAccessToken = (OAuth2AccessTokenVO) tokenManager - .retryAccessTokenVO(vo.getAdapterGroupName(), prop, oldToken); - method.setHeader("Authorization", newAccessToken.getAuthorization()); - setAuthHeaders(method, newAccessToken); - - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClient5AdapterServiceBypass] SEND (" + vo.getAdapterGroupName() - + ") RETRY TOKEN = [" + newAccessToken + "]"); - } - - try (CloseableHttpResponse retryResponse = (CloseableHttpResponse) mclient.execute(method, context)) { - status = retryResponse.getCode(); - responseHeaders = retryResponse.getHeaders(); - responseMessage = EntityUtils.toByteArray(retryResponse.getEntity()); - } catch (IOException e) { - throw new Exception("retry excuteMethod Exception = " + e.getMessage()); - } - - if (status != 200) { - responseMessage = responseMessage != null ? responseMessage : new byte[0]; - if (responseMessage.length == 0) { - String errMsg = String.format( - "http receive status fail value=%d adapterName=%s.%s uri=%s method=%s response Data=%s", - status, vo.getAdapterGroupName(), vo.getAdapterName(), url, restMethod, - responseMessage); - throw new Exception(errMsg); - } - } - - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClient5AdapterServiceBypass] RETRY responseType =" + vo.getResponseType()); - logger.debug("HttpClient5AdapterServiceBypass] RETRY RECV (" + vo.getAdapterGroupName() + ") = " - + CommonLib.getDumpMessage(responseMessage)); - } - } - } - - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.txlog(vo.getAdapterGroupName() + vo.getAdapterName(), - "RECV [Bypass Request..]" + CommonLib.getDumpMessage(responseMessage)); - } - // 응답 Content-Type charset 기반 인코딩 결정, 없으면 어댑터 encoding 사용 - String responseEncode = vo.getEncode(); - if (responseHeaders != null) { - for (Header header : responseHeaders) { - if (StringUtils.equalsIgnoreCase(header.getName(), HttpHeaders.CONTENT_TYPE)) { - try { - MediaType mediaType = MediaType.parseMediaType(header.getValue()); - if (mediaType.getCharset() != null) { - responseEncode = mediaType.getCharset().name(); - } - } catch (Exception ignored) {} - break; - } - } - } - assignRelayDataToInbound(tempProp, responseHeaders, status); - return responseMessage != null ? new String(responseMessage, responseEncode) : ""; - } catch (SocketTimeoutException ste) { - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.error(vo.getAdapterGroupName() + vo.getAdapterName(), - "HttpClient5AdapterServiceBypass] SocketTimeoutException (" + vo.getAdapterGroupName() + ") : " - + ste.toString(), - ste); - } - logger.error("HttpClient5AdapterServiceBypass] SocketTimeoutException (" + vo.getAdapterGroupName() + ") : " - + ste.toString(), ste); - throw ste; - } catch (ConnectException ce) { - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.error(vo.getAdapterGroupName() + vo.getAdapterName(), - "HttpClient5AdapterServiceBypass] Connection Exception (" + vo.getAdapterGroupName() + ") : " - + ce.toString(), - ce); - } - logger.error("HttpClient5AdapterServiceBypass] Connection Exception (" + vo.getAdapterGroupName() + ") : " - + ce.toString(), ce); - throw ce; - } catch (Exception e) { - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.error(vo.getAdapterGroupName() + vo.getAdapterName(), e.toString(), e); - } - logger.error( - "HttpClient5AdapterServiceBypass] Exception (" + vo.getAdapterGroupName() + ") : " + e.toString(), - e); - throw e; - } finally { - if (status != HttpStatus.SC_OK) { - String[] msgArgs = new String[1]; - msgArgs[0] = String.valueOf(status); - String resMsg = ExceptionUtil.make("RDCEAIAHA013", msgArgs); - if (logger.isDebug()) { - logger.debug(resMsg); - } - } - } - } - - private boolean hasBody(Object data, HttpUriRequestBase method) { - if (data == null) { - return false; - } - // GET, DELETE는 표준 HTTP에서 body를 지원하지 않음 - return method instanceof HttpPost || method instanceof HttpPut; - } - - private HttpUriRequestBase generateMethod(String restMethod, String url) { - switch (HttpMethodType.getValue(restMethod)) { - case GET: - return new HttpGet(url); - case DELETE: - return new HttpDelete(url); - case POST: - return new HttpPost(url); - case PUT: - return new HttpPut(url); - default: - return new HttpPost(url); - } - } - - private String getRewriteUrl(HttpClientAdapterVO vo, String inboundRewritePath, String queryString, - JSONObject restOptionObject, Map inboundPathVariables) { - String fragment = null; - if (StringUtils.isNotBlank(queryString)) { - int fragIdx = queryString.indexOf('#'); - if (fragIdx >= 0) { - fragment = queryString.substring(fragIdx + 1); - queryString = queryString.substring(0, fragIdx); - } - } - - String restExtraPath = (String) restOptionObject.get("extraPath"); - if (StringUtils.isBlank(restExtraPath)) { - StringBuilder uri = new StringBuilder(500); - String baseUrl = StringUtils.removeEnd(vo.getUrl(), "/"); - String rewritePath = inboundRewritePath != null && !inboundRewritePath.startsWith("/") - ? "/" + inboundRewritePath : inboundRewritePath; - uri.append(baseUrl).append(StringUtils.defaultString(rewritePath)); - - if (StringUtils.isNotBlank(queryString)) { - uri.append('?'); - uri.append(encodeUriQuery(queryString, false)); - } - - if (doSendUrlFragment && fragment != null) { - uri.append('#'); - uri.append(encodeUriQuery(fragment, false)); - } - - return uri.toString(); - } else { - String type = (String) restOptionObject.get("type"); - String url = getUrl(vo.getUrl(), restExtraPath); - - if (StringUtils.equalsIgnoreCase(type, HttpClientAdapterServiceRest.TYPE_VARIABLE_URL_REQUEST)) { - inboundPathVariables = mergeInboundPathVariables(inboundPathVariables, queryString); - List urlVariableValueList = new ArrayList<>(); - JSONArray uriVariables = (JSONArray) restOptionObject.get("uriVariables"); - if (uriVariables != null && !uriVariables.isEmpty() && inboundPathVariables != null - && !inboundPathVariables.isEmpty()) { - for (Object tempObject : uriVariables) { - String urlVaribleId = (String) tempObject; - String uriVariableValue = inboundPathVariables.get(urlVaribleId); - urlVariableValueList.add(uriVariableValue); - } - - if (!urlVariableValueList.isEmpty()) { - UriComponents uriComponents = UriComponentsBuilder.fromUriString(url).build(); - Object[] urls = urlVariableValueList.toArray(); - url = uriComponents.expand(urls).toUriString(); - } - } - } else { - if (StringUtils.isNotBlank(queryString)) { - url += "?" + encodeUriQuery(queryString, false); - } - - if (doSendUrlFragment && fragment != null) { - url += "#" + encodeUriQuery(fragment, false); - } - } - - return url; - } - } - - private Map mergeInboundPathVariables(Map inboundPathVariables, - String queryString) { - if (StringUtils.isBlank(queryString)) { - return inboundPathVariables; - } - - if (inboundPathVariables == null) { - inboundPathVariables = new LinkedHashMap<>(); - } - - String[] pairs = queryString.split("&"); - for (String pair : pairs) { - int idx = pair.indexOf("="); - inboundPathVariables.put(pair.substring(0, idx), pair.substring(idx + 1)); - } - - return inboundPathVariables; - } - - private String getUrl(String baseUrl, String extraPath) { - if (StringUtils.isBlank(extraPath)) { - return baseUrl; - } - - if (StringUtils.contains(extraPath, "http://") || StringUtils.contains(extraPath, "https://")) { - return extraPath; - } - - String targetUrl = baseUrl; - if (!targetUrl.endsWith("/")) { - targetUrl += "/"; - } - if (extraPath.startsWith("/")) { - targetUrl += extraPath.substring(1); - } else { - targetUrl += extraPath; - } - - return targetUrl; - } - - protected CharSequence encodeUriQuery(CharSequence in, boolean encodePercent) { - StringBuilder outBuf = null; - Formatter formatter = null; - for (int i = 0; i < in.length(); i++) { - char c = in.charAt(i); - boolean escape = true; - if (c < 128) { - if (asciiQueryChars.get(c) && !(encodePercent && c == '%')) { - escape = false; - } - } else if (!Character.isISOControl(c) && !Character.isSpaceChar(c)) { - escape = false; - } - if (!escape) { - if (outBuf != null) - outBuf.append(c); - } else { - if (outBuf == null) { - outBuf = new StringBuilder(in.length() + 5 * 3); - outBuf.append(in, 0, i); - formatter = new Formatter(outBuf); - } - formatter.format("%%%02X", (int) c); - } - } - return outBuf != null ? outBuf : in; - } - - protected static final BitSet asciiQueryChars; - static { - char[] c_unreserved = "_-!.~'()*".toCharArray(); - char[] c_punct = ",;:$&+=".toCharArray(); - char[] c_reserved = "/@".toCharArray(); - asciiQueryChars = new BitSet(128); - for (char c = 'a'; c <= 'z'; c++) - asciiQueryChars.set(c); - for (char c = 'A'; c <= 'Z'; c++) - asciiQueryChars.set(c); - for (char c = '0'; c <= '9'; c++) - asciiQueryChars.set(c); - for (char c : c_unreserved) - asciiQueryChars.set(c); - for (char c : c_punct) - asciiQueryChars.set(c); - for (char c : c_reserved) - asciiQueryChars.set(c); - asciiQueryChars.set('%'); - } - - private void assignRelayDataToInbound(Properties prop, Header[] responseHeaders, int status) { - Properties headerProp = new Properties(); - if (responseHeaders != null) { - for (Header header : responseHeaders) { - String name = header.getName(); - String value = header.getValue(); - String existing = headerProp.getProperty(name); - if (existing != null) { - // 동일 이름의 헤더가 여러 개인 경우 콤마로 합침 (RFC 7230) - headerProp.put(name, existing + ", " + value); - } else { - headerProp.put(name, value); - } - } - } - - headerProp.put(HttpAdapterServiceBypass.HTTP_STATUS, String.valueOf(status)); - - Map map = new HashMap(); - map.put(HttpAdapterServiceKey.OUTBOUND_RESPONSE_HEADERS, headerProp); - - prop.put(HttpAdapterServiceKey.OUTBOUND_PROPERTY_MAP, map); - } - - private void setAuthHeaders(HttpUriRequestBase method, OAuth2AccessTokenVO accessToken) throws Exception { - method.setHeader("Authorization", - String.format("%s %s", AccessTokenVO.BEARER_TYPE, accessToken.getAccessToken())); - } - - private boolean checkTokenRetry(byte[] responseMessage, String tokenErrorCodeKey, String tokenErrorCodeValues, - String encode) { - if (responseMessage == null) { - return false; - } - - if (StringUtils.isBlank(tokenErrorCodeKey)) { - return false; - } - - if (StringUtils.isBlank(tokenErrorCodeValues)) { - return false; - } - - try { - DocumentContext jsonContext = JsonPath.parse(new String(responseMessage, encode)); - String responseCode = jsonContext.read(tokenErrorCodeKey); - if (StringUtils.isBlank(responseCode)) { - return false; - } - - String[] arr = org.springframework.util.StringUtils.tokenizeToStringArray(tokenErrorCodeValues, ","); - return ArrayUtils.contains(arr, responseCode); - } catch (Exception e) { - logger.error("HttpClient5AdapterServiceBypass] checkTokenRetry error=" + e.getMessage()); - } - - return false; - } - - private void assignRequestHeaders(HttpUriRequestBase method, Properties headerProp, Properties inProp) { - if (headerProp == null) { - return; - } - - for (Entry e : headerProp.entrySet()) { - String key = (String) e.getKey(); - String value = (String) e.getValue(); - - if (StringUtils.equalsAnyIgnoreCase(key, HttpAdapterServiceBypass.HOP_BY_HOP_HEADERS) - || StringUtils.equalsIgnoreCase(key, HttpHeaders.CONTENT_LENGTH)) { - continue; - } - - if (doHandleCompression && StringUtils.equalsIgnoreCase(key, HttpHeaders.ACCEPT_ENCODING)) { - continue; - } - - method.addHeader(key, value); - - if (logger.isDebugEnabled()) { - logger.debug("Request Header :" + key + "=[" + value + "]"); - } - } - - if (doForwardIP) { - String forHeaderName = "X-Forwarded-For"; - String forHeader = inProp.getProperty(HttpAdapterServiceKey.INBOUND_REMOTE_ADDR); - if (StringUtils.isNotBlank(forHeader)) { - String existingForHeader = headerProp.getProperty(forHeaderName); - if (existingForHeader != null) { - forHeader = existingForHeader + ", " + forHeader; - } - method.addHeader(forHeaderName, forHeader); - } - - String protoHeaderName = "X-Forwarded-Proto"; - String protoHeader = inProp.getProperty(HttpAdapterServiceKey.INBOUND_SCHEME); - if (StringUtils.isNotBlank(protoHeader)) { - method.addHeader(protoHeaderName, protoHeader); - } - } - } - - @SuppressWarnings("deprecation") - private JSONObject parseJson(String message) throws Exception { - if (message == null) { - return null; - } - - return (JSONObject) JSONValue.parse(message); - } - - public static final String getIgnoreCaseProp(Properties prop, String key) { - if (prop == null) { - return null; - } - - for (Entry e : prop.entrySet()) { - if (StringUtils.equalsIgnoreCase(key, (String) e.getKey())) { - return (String) e.getValue(); - } - } - - return null; - } -} diff --git a/src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceKbank.java b/src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceKbank.java deleted file mode 100644 index 2859b45..0000000 --- a/src/main/java/com/eactive/eai/custom/adapter/http/client/impl/HttpClient5AdapterServiceKbank.java +++ /dev/null @@ -1,888 +0,0 @@ -package com.eactive.eai.custom.adapter.http.client.impl; - -import java.io.IOException; -import java.io.StringReader; -import java.math.BigDecimal; -import java.net.ConnectException; -import java.net.SocketTimeoutException; -import java.net.URI; -import java.nio.charset.StandardCharsets; -import java.util.ArrayList; -import java.util.HashMap; -import java.util.List; -import java.util.Map; -import java.util.Properties; -import java.util.regex.Matcher; -import java.util.regex.Pattern; - -import org.apache.commons.lang3.ArrayUtils; -import org.apache.commons.lang3.StringUtils; -import org.apache.commons.lang3.time.StopWatch; -import org.apache.hc.client5.http.classic.HttpClient; -import org.apache.hc.client5.http.classic.methods.HttpDelete; -import org.apache.hc.client5.http.classic.methods.HttpGet; -import org.apache.hc.client5.http.classic.methods.HttpPost; -import org.apache.hc.client5.http.classic.methods.HttpPut; -import org.apache.hc.client5.http.classic.methods.HttpUriRequestBase; -import org.apache.hc.client5.http.config.RequestConfig; -import org.apache.hc.client5.http.entity.UrlEncodedFormEntity; -import org.apache.hc.client5.http.impl.classic.CloseableHttpResponse; -import org.apache.hc.core5.http.ContentType; -import org.apache.hc.core5.http.Header; -import org.apache.hc.core5.http.HttpHost; -import org.apache.hc.core5.http.HttpStatus; -import org.apache.hc.core5.http.NameValuePair; -import org.apache.hc.core5.http.io.entity.EntityUtils; -import org.apache.hc.core5.http.io.entity.StringEntity; -import org.apache.hc.core5.http.message.BasicNameValuePair; -import org.apache.hc.core5.http.protocol.BasicHttpContext; -import org.apache.hc.core5.http.protocol.HttpContext; -import org.apache.hc.core5.net.URIBuilder; -import org.dom4j.Document; -import org.dom4j.Element; -import org.dom4j.io.SAXReader; -import org.json.simple.JSONArray; -import org.json.simple.JSONObject; -import org.json.simple.JSONValue; -import org.json.simple.parser.JSONParser; -import org.json.simple.parser.ParseException; -import org.springframework.web.util.UriComponents; -import org.springframework.web.util.UriComponentsBuilder; - -import com.eactive.eai.adapter.http.HttpMemoryLogger; -import com.eactive.eai.adapter.http.HttpMethodType; -import com.eactive.eai.adapter.http.client.HttpClient5AdapterServiceSupport; -import com.eactive.eai.adapter.http.client.HttpClientAdapterServiceKey; -import com.eactive.eai.adapter.http.client.HttpClientAdapterVO; -import com.eactive.eai.adapter.http.dynamic.HttpAdapterServiceKey; -import com.eactive.eai.common.TransactionContextKeys; -import com.eactive.eai.common.authoutbound.AccessTokenManagerByDB; -import com.eactive.eai.common.exception.ExceptionUtil; -import com.eactive.eai.common.message.MessageType; -import com.eactive.eai.common.util.CommonLib; -import com.jayway.jsonpath.DocumentContext; -import com.jayway.jsonpath.JsonPath; -import com.openbanking.eai.common.token.AccessTokenManager; -import com.openbanking.eai.common.token.AccessTokenVO; -import com.openbanking.eai.common.token.OAuth2AccessTokenVO; - -import com.eactive.eai.common.property.PropManager; - -public class HttpClient5AdapterServiceKbank extends HttpClient5AdapterServiceSupport - implements HttpClientAdapterServiceKey { - - public static final String TYPE_VARIABLE_URL_REQUEST = "variableUrlRequest"; - public static final String TYPE_SIMPLE_REQUEST = "simpleRequest"; - public static final String REST_OPTION = "REST_OPTION"; - //public static final String HEADER_CONTENT_TYPE = "Content-Type"; - public static final String HEADER_GROUP = "HEADER_GROUP"; - public static final String HTTP_STATUS = "HTTP_STATUS"; - public static final String HEADER_KEYS = "HEADER_KEYS"; - public static final String AUTH_TOKEN = "AUTH_TOKEN"; - - /** - * 1. 기능 : REST API 통신에 사용
- * 2. 처리 개요 : - 속성 정보를 설정 하고 수동 시스템 서비스를 호출 한다.
- * 3. 주의사항
- * - * @param prop Http Adapter 속성 정보 - * @return 반환 된 Object - * @exception Exception 수동 시스템 간 통신 중 발생 - **/ - @SuppressWarnings({ "unchecked" }) - public Object execute(Properties prop, Object data, Properties tempProp) throws Exception { - HttpClientAdapterVO vo = super.setting(prop, tempProp); - - // 2025.04.09 Authorization 헤더값을 프로퍼티(AUTH_TOKEN)에서 지정하여 설정할 수 있도록 수정 - String bizCode = ""; - String authToken = ""; - try { - Properties authProp = PropManager.getInstance().getProperties(AUTH_TOKEN); //Authorization - bizCode = vo.getAdapterGroupName().substring(1, 4); - authToken = authProp.getProperty(bizCode, ""); - } catch (Exception e) { - logger.debug("Property Group AUTH_TOKEN is not Exist !!"); - } - - logger.debug("authToken :::::::::::::::::::::::::::::::::::" + authToken); - - String headerGroupName = prop.getProperty(HEADER_GROUP); - String relayResponseHeaderKeys = prop.getProperty(HEADER_KEYS, ""); - boolean useAdapterToken = StringUtils.equalsIgnoreCase(prop.getProperty("ADAPTER_TOKEN_USE_YN", "N"), "Y"); - - boolean useForwardProxy = StringUtils.equalsIgnoreCase(prop.getProperty("FORWARD_PROXY_USE_YN", "N"), "Y"); - String forwardProxyUrl = prop.getProperty("FORWARD_PROXY_URL"); - - // ex) $.dataHeader.GW_RSLT_CD - String tokenErrorCodeKey = prop.getProperty("ADAPTER_TOKEN_ERROR_CODE_KEY"); - String tokenErrorCodeValues = prop.getProperty("ADAPTER_TOKEN_ERROR_CODE_VALUES"); - String tokenErrorHttpStatusCode = prop.getProperty("ADAPTER_TOKEN_ERROR_HTTP_STATUS_CODE"); // 200 or 400번대 - - // 레이아웃 메시지 타입 REST URL 추출 시 활용. Default JSON - String messageType = prop.getProperty("MESSAGE_TYPE", MessageType.JSON); - String inboundMethod = tempProp.getProperty(HttpAdapterServiceKey.INBOUND_METHOD, "POST"); - - /** - * @formatter:off - * TSEAIHE02.RESTOPTION 정보 => JSON 형태로 구성 - * - type : simpleRequest, variableUrlRequest - * - extraPath : 어댑터 프로퍼티 URL에 추가될 HTTP REST URL - * - method : get, delete, post, put - * - contentType: application/json(default), application/x-www-form-urlencoded - * - adapterTokenUseYn: Y, N(default) - * ex) - * {"type":"simpleRequest","extraPath":"v2.0/accout/balance","method":"post"} - * @formatter:on - */ - - String restOptionData = tempProp.getProperty(REST_OPTION); - - JSONObject restOptionObject = parseJson(restOptionData); - if (restOptionObject == null) { - throw new Exception("OptionData parsing result is NULL"); - } - - String rmethod = (String) restOptionObject.getOrDefault("method", inboundMethod); - String contentType = (String) restOptionObject.getOrDefault("contentType", "application/json"); - String adapterTokenUseYn = (String) restOptionObject.get("adapterTokenUseYn"); - if (StringUtils.isNotBlank(adapterTokenUseYn)) { // interface 에 설정된게 우선한다. - useAdapterToken = StringUtils.equalsIgnoreCase(adapterTokenUseYn, "Y"); - } - - HttpClient mclient = this.client; - String sendData = ""; - if (data instanceof String) { - sendData = (String) data; - } else if (data instanceof byte[]) { - sendData = new String((byte[]) data, vo.getEncode()); - } - - ////mclient.getParams().setContentCharset(vo.getEncode()); - - JSONObject dataObject = null; - - Object httpHeader = null; - Object dataContent = null; - - if (MessageType.JSON.equals(messageType)) { - - Object parsed = parseJsonGeneric(sendData); - - if(parsed instanceof JSONObject) { - dataObject = parseJson(sendData); - if (dataObject != null && StringUtils.isNotBlank(headerGroupName)) { - httpHeader = dataObject.get(headerGroupName); - dataObject.remove(headerGroupName); - } - - dataContent = dataObject; - if (dataObject.containsKey("innerList")) { - JSONArray innerList = (JSONArray) dataObject.get("innerList"); - dataContent = innerList; - } - } - } - - logger.debug("HttpClientAdapterServiceRest] dataObject1 = [" + dataObject + "]"); - logger.debug("HttpClientAdapterServiceRest] dataContent = [" + dataContent + "]"); - - // interface 에 설정된게 우선한다. - String uri = null; - if (dataObject == null) { - uri = changeUrl(messageType, vo.getUrl(), restOptionData, sendData); - } else { - uri = changeUrl(messageType, vo.getUrl(), restOptionData, dataObject); - } - -// ////if (vo.getConnectionTimeout() != 0) { -// mclient.getHttpConnectionManager().getParams().setConnectionTimeout(vo.getConnectionTimeout()); -// } - - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") URL=[" + vo.getUrl() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") PARAMETER_NAME=[" + vo.getParameterName() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") ENCODE=[" + vo.getEncode() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") RESPONSE_TYPE=[" + vo.getResponseType() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") URL_ENCODE_YN=[" + vo.getUrlEncodeYn() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") CONNECTION_TIMEOUT=[" + vo.getConnectionTimeout() + "] "); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") REST_OPTION=[" + restOptionData + "] "); - } - - HttpUriRequestBase method = null; - - // 메소드 타입에 따라 HttpRequestBase 인스턴스 생성 - switch (HttpMethodType.getValue(rmethod)) { - case GET: - method = new HttpGet(uri); - break; - case DELETE: - method = new HttpDelete(uri); - break; - case POST: - method = new HttpPost(uri); - break; - case PUT: - method = new HttpPut(uri); - break; - default: - method = new HttpGet(uri); - break; - } - - RequestConfig.Builder requestConfigBuilder = RequestConfig.custom(); - - if(useForwardProxy) { - java.net.URL url = new java.net.URL(forwardProxyUrl); - - // 프로토콜, 호스트, 포트 추출 - String protocol = url.getProtocol(); - String host = url.getHost(); - int port = url.getPort(); - HttpHost proxy = new HttpHost(protocol,host, port); - requestConfigBuilder.setProxy(proxy); - } - - configureHttpClient(requestConfigBuilder, vo, method); - - switch (HttpMethodType.getValue(rmethod)) { - case GET: - case DELETE: - HashMap h = getParameters(dataObject); - URIBuilder uriBuilder = new URIBuilder(uri); - for (Map.Entry entry : h.entrySet()) { - uriBuilder.addParameter(entry.getKey(), entry.getValue()); - } - URI fullUri = uriBuilder.build(); - if (method instanceof HttpGet) { - ((HttpGet) method).setUri(fullUri); - } else if (method instanceof HttpDelete) { - ((HttpDelete) method).setUri(fullUri); - } - if (logger.isDebug()) { - logger.debug("HttpClientAdapterServiceRest] (get Method) QueryString = [" + fullUri.getQuery() + "]"); - } - break; - case PUT: - case POST: - //assignPostBody(dataObject, contentType, vo.getEncode(), method); - assignPostBody(dataContent, contentType, vo.getEncode(), method); - break; - default: - break; - } - - if (logger.isDebugEnabled()) { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") method.getParams()=[" - + method.getEntity() + "] "); - } - - OAuth2AccessTokenVO accessToken = null; - if (useAdapterToken) { - AccessTokenManagerByDB tokenManager = AccessTokenManagerByDB.getInstance(); - accessToken = (OAuth2AccessTokenVO) tokenManager.getAccessTokenVO(vo.getAdapterGroupName()); - - // 토큰이 없거나 만료 됐으면 재발급 - if (accessToken == null || accessToken.isExpired()) { - String oldToken = accessToken == null ? null : accessToken.getAccessToken(); - accessToken = (OAuth2AccessTokenVO) tokenManager.retryAccessTokenVO(vo.getAdapterGroupName(), prop, - oldToken); - } - - if (logger.isDebug()) { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") TOKEN = [" - + accessToken + "]"); - } - - setAuthHeaders(method, accessToken); - - if (logger.isDebug()) { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() - + ") RequestHeader [Authorization=" + method.getHeader("Authorization") + "]"); - } - } - - // 2025.04.09 Authorization 헤더값을 프로퍼티(AUTH_TOKEN)에서 지정하여 설정할 수 있도록 수정 - if(!StringUtils.isBlank(authToken)) { - setAuthHeaders(method, authToken); - } - - // 전달 header 셋팅 - // Adapter 레벨 header 보다 data로 넘어온 httpHeader를 우선 적용(header명이 같다면 덮어씀) - assignRequestHeaders(method, httpHeader); - - int status = -1; - - try { - byte[] responseMessage = null; - Header[] responseHeaders; - - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - if (dataContent != null) { //dataObject - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") = [" - + dataContent.toString() + "]"); //dataObject.toJSONString() - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") = " - + CommonLib.getDumpMessage(dataContent.toString())); //dataObject.toJSONString() - } else { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") = [" + sendData - + "]"); - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() + ") = " - + CommonLib.getDumpMessage(sendData)); - } - } - StopWatch stopWatch = new StopWatch(); - stopWatch.start(); - - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.txlog(vo.getAdapterGroupName() + vo.getAdapterName(), - "SEND [" + sendData + "]" + CommonLib.getDumpMessage(sendData)); - } - - String uuid = tempProp.getProperty(TransactionContextKeys.TRANSACTION_UUID); - HttpContext context = new BasicHttpContext(); - context.setAttribute(TransactionContextKeys.TRANSACTION_UUID, uuid); - context.setAttribute(HttpClientAdapterServiceKey.ADAPTER_GROUP_NAME, vo.getAdapterGroupName()); - context.setAttribute(HttpClientAdapterServiceKey.ADAPTER_NAME, vo.getAdapterName()); - Integer logProcessNo = (Integer) tempProp.get(HttpClientAdapterServiceKey.LOG_PROCESS_NO); - if (logProcessNo != null && logProcessNo > 0) { - context.setAttribute(HttpClientAdapterServiceKey.LOG_PROCESS_NO, logProcessNo); - } - - try { - if (logger.isDebug()) { - logger.debug("[method getName]" + method.getMethod()); - logger.debug("[method getEntity]" + method.getEntity()); - logger.debug("[method getRequestHeaders]" + method.getHeaders().toString()); - logger.debug("[method getURI]" + method.getPath()); - } - try (CloseableHttpResponse response = (CloseableHttpResponse) mclient.execute(method, context)) { - status = response.getCode(); - - if (status >= 200 && status <= 207) { - status = 200; - } - -// if (status == 404) { -// status = 200; -// } - - responseMessage = EntityUtils.toByteArray(response.getEntity()); - responseHeaders = response.getHeaders(); - - if (logger.isDebug()) { - logger.debug("[received status]" + status); - logger.debug("HttpClientAdapterServiceRest] RECV (" + vo.getAdapterGroupName() + ") = [" + responseMessage + "]"); - } - } - } catch (ConnectException e) { - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] responseType =" + vo.getResponseType()); - } - throw new Exception("excuteMethod java.net.ConnectException = " + e.getMessage()); - } - - stopWatch.stop(); - - /** - * @formatter:off - * OAuth 토큰 응답 체크(Adapter properties로 설정) - * 응답코드에 따라 유효한 토큰 확인(토큰 재발급 여부 확인) - * API 서비스 마다 정책이 다름(보통 400대에서 체크하나 200에서도 체크할 수 있음) - * - * TOKEN_ERROR_CODE_KEY: 응답 json error code key - * __ex) $.dataHeader.resultCode - * TOKEN_ERROR_CODE_VALUES: 토큰 재발급이 필요한 응답 error codes(ex: O0001,O0002,O0003) - * TOKEN_ERROR_HTTP_STATUS_CODE: 보통 400대에서 체크하나 API 제공자에 따라 200에서도 체클할수 있음 - * ex) TOKEN_ERROR_HTTP_STATUS_CODE = 200 - * @formatter:on - */ - boolean needReissue = false; - - Properties responseHeaderProp = assignRelayDataToInbound(tempProp, responseHeaders); - String responseString = new String(responseMessage, vo.getEncode()); - - Map map = new HashMap(); - tempProp.put(HttpAdapterServiceKey.OUTBOUND_PROPERTY_MAP, map); - map.put(HttpAdapterServiceKey.OUTBOUND_RESPONSE_HEADERS, responseHeaderProp); - map.put(HttpAdapterServiceKey.OUTBOUND_RESPONSE_MESSAGE, responseString); - map.put(HttpAdapterServiceKey.OUTBOUND_RESPONSE_STATUS, status); - - if (status >= 200 && status <= 207) { - if (useAdapterToken && StringUtils.equals(tokenErrorHttpStatusCode, "200")) { - needReissue = checkTokenRetry(responseMessage, tokenErrorCodeKey, tokenErrorCodeValues, - vo.getEncode()); - } - } else if (status == 302) { - if (!StringUtils.contains(relayResponseHeaderKeys, "Location")) { - relayResponseHeaderKeys += ",Location"; - } - } else { - String errMsg = String.format( - "http receive status fail value=%d adapterName=%s.%s uri=%s method=%s response Data=%s", - status, vo.getAdapterGroupName(), vo.getAdapterName(), uri, rmethod, responseString); -// logger.error(errMsg); - - if (status >= 400 && status < 500) { - if (useAdapterToken) { - needReissue = checkTokenRetry(responseMessage, tokenErrorCodeKey, tokenErrorCodeValues, - vo.getEncode()); - } - -// if (!needReissue) { -// throw new Exception(errMsg); -// } - } else { - - throw new Exception(errMsg); - } - } - - // ---------------------------------------------------------- - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] responseType =" + vo.getResponseType()); - logger.debug("HttpClientAdapterServiceRest] RECV " + vo.getEncode() + "(" + vo.getAdapterGroupName() + ") = [" + new String(responseMessage, vo.getEncode()) + "]"); -// logger.debug("HttpClientAdapterServiceRest] RECV MS949 (" + vo.getAdapterGroupName() + ") = [" + new String(responseMessage, "MS949") + "]"); -// logger.debug("HttpClientAdapterServiceRest] RECV euc-kr (" + vo.getAdapterGroupName() + ") = [" + new String(responseMessage, "euc-kr") + "]"); - logger.debug("HttpClientAdapterServiceRest] RECV (" + vo.getAdapterGroupName() + ") = " + CommonLib.getDumpMessage(responseMessage)); - } - - if (useAdapterToken) { - if (responseMessage == null) { - throw new Exception("responseMessage is NULL, HttpStatus=" + status); - } - - // OAuth 토큰 재요청 코드 확인 - if (needReissue) { - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] retry access token response code = [" - + vo.getResponseType() + "] message = [" + new String(responseMessage, vo.getEncode()) - + "]"); - } - - // 토큰 재발급 - AccessTokenManager tokenManager = AccessTokenManager.getInstance(); - String oldToken = accessToken == null ? null : accessToken.getAccessToken(); - OAuth2AccessTokenVO newaccessToken = (OAuth2AccessTokenVO) tokenManager - .retryAccessTokenVO(vo.getAdapterGroupName(), prop, oldToken); - method.setHeader("Authorization", newaccessToken.getAuthorization()); - - setAuthHeaders(method, newaccessToken); - - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] SEND (" + vo.getAdapterGroupName() - + ") RETRY TOKEN = [" + newaccessToken + "]"); - } - - try (CloseableHttpResponse response = (CloseableHttpResponse) mclient.execute(method)) { - status = response.getCode(); - responseMessage = EntityUtils.toByteArray(response.getEntity()); - - if (logger.isDebug()) { - logger.debug("[received status]" + status); - logger.debug("HttpClientAdapterServiceRest] RECV (" + vo.getAdapterGroupName() + ") = [" + new String(responseMessage, vo.getEncode()) + "]"); - } - }catch (IOException e){ - throw new Exception("retry excuteMethod Exceptioin = " + e.getMessage()); - } - - - if (status == 302) { - if (!StringUtils.contains(relayResponseHeaderKeys, "Location")) { - relayResponseHeaderKeys += ",Location"; - } - } else { - String errMsg = String.format( - "http receive status fail value=%d adapterName=%s.%s uri=%s method=%s response Data=%s", - status, vo.getAdapterGroupName(), vo.getAdapterName(), uri, rmethod, responseMessage); - throw new Exception(errMsg); - } - - // ---------------------------------------------------------- - if (logger.isDebug() && "N".equals(vo.getTestCallYn())) { - logger.debug("HttpClientAdapterServiceRest] RETRY responseType =" + vo.getResponseType()); - logger.debug("HttpClientAdapterServiceRest] RETRY RECV " + vo.getEncode() + "(" - + vo.getAdapterGroupName() + ") = [" + new String(responseMessage, vo.getEncode()) - + "]"); - logger.debug("HttpClientAdapterServiceRest] RETRY RECV (" + vo.getAdapterGroupName() + ") = " - + CommonLib.getDumpMessage(responseMessage)); - } - // ---------------------------------------------------------- - } - } - - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.txlog(vo.getAdapterGroupName() + vo.getAdapterName(), - "RECV [" + new String(responseMessage, vo.getEncode()) + "]" - + CommonLib.getDumpMessage(responseMessage)); - } - - - return assignResponseHeaders(method, responseMessage, headerGroupName, vo.getEncode(), messageType, - relayResponseHeaderKeys, status, responseHeaderProp); - } catch (SocketTimeoutException ste) { // Read Timeout :: HttpClient 3.1일 경우 - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.error(vo.getAdapterGroupName() + vo.getAdapterName(), - "HttpClientAdapterServiceRest] SocketTimeoutException (" + vo.getAdapterGroupName() + ") : " - + ste.toString(), - ste); - } - logger.error("HttpClientAdapterServiceRest] SocketTimeoutException (" + vo.getAdapterGroupName() + ") : " - + ste.toString(), ste); - throw ste; - } catch (ConnectException ce) { - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.error(vo.getAdapterGroupName() + vo.getAdapterName(), - "HttpClientAdapterServiceRest] Connection Exception (" + vo.getAdapterGroupName() + ") : " - + ce.toString(), - ce); - } - logger.error("HttpClientAdapterServiceRest] Connection Exception (" + vo.getAdapterGroupName() + ") : " - + ce.toString(), ce); - throw ce; - } catch (Exception e) { - if (vo.getTraceLevel() >= 3) { - HttpMemoryLogger.error(vo.getAdapterGroupName() + vo.getAdapterName(), e.toString(), e); - } - logger.error("HttpClientAdapterServiceRest] Exception (" + vo.getAdapterGroupName() + ") : " + e.toString(), - e); - throw e; - } finally { - if (status != HttpStatus.SC_OK) { - String[] msgArgs = new String[1]; - msgArgs[0] = String.valueOf(status); - String resMsg = ExceptionUtil.make("RDCEAIAHA013", msgArgs); - if (logger.isDebug()) { - logger.debug(resMsg); - } - } - } - } - - private Properties assignRelayDataToInbound(Properties prop, Header[] responseHeaders) { - Properties headerProp = new Properties(); - if (responseHeaders == null || responseHeaders.length == 0) { - return headerProp; - } - - for (Header header : responseHeaders) { - headerProp.put(header.getName(), header.getValue()); - } - - return headerProp; - } - - /** - * 현재 1단계 레이아웃에만 적용되도록 구현됨. - * - * @param method - * @param responseMessage - * @param headerGroupName - * @param encode - * @param messageType - * @param relayHeaderKeys - * @return - * @throws Exception - */ - @SuppressWarnings("unchecked") - private String assignResponseHeaders(HttpUriRequestBase method, byte[] responseMessage, String headerGroupName, - String encode, String messageType, String relayHeaderKeys, int status, Properties responseHeaderProp) throws Exception { - if (!MessageType.JSON.equals(messageType) || StringUtils.isBlank(headerGroupName) - || StringUtils.isBlank(relayHeaderKeys)) { - return new String(responseMessage, encode); - } - - String[] relayKeyArr = org.springframework.util.StringUtils.tokenizeToStringArray(relayHeaderKeys, ","); - JSONObject headerJson = new JSONObject(); - for (String key : relayKeyArr) { - String value = responseHeaderProp.getProperty(key); - if (StringUtils.isNotBlank(value)) { - headerJson.put(key, value); - } - } - - headerJson.put(HTTP_STATUS, String.valueOf(status)); - - if (headerJson.size() <= 0) { - return new String(responseMessage, encode); - } - - JSONObject message = null; - if (responseMessage == null || responseMessage.length == 0) { - message = new JSONObject(); - } else { - message = parseJson(new String(responseMessage, encode)); - if (message == null) { - message = new JSONObject(); - message.put("Malformed_Response_Message", new String(responseMessage, encode)); - } - } - - if (StringUtils.isNotBlank(headerGroupName) && message != null) - message.put(headerGroupName, headerJson); - - logger.info("------------- message --------------- : {} ", message); - - return message.toJSONString(); - } - - // 2025.04.09 Authorization 헤더값을 프로퍼티(AUTH_TOKEN)에서 지정하여 설정할 수 있도록 수정 - private void setAuthHeaders(HttpUriRequestBase method, String authorization) throws Exception { - method.setHeader("Authorization", - String.format("%s", authorization)); - } - - private void setAuthHeaders(HttpUriRequestBase method, OAuth2AccessTokenVO accessToken) throws Exception { - method.setHeader("Authorization", - String.format("%s %s", AccessTokenVO.BEARER_TYPE, accessToken.getAccessToken())); - } - - private boolean checkTokenRetry(byte[] responseMessage, String tokenErrorCodeKey, String tokenErrorCodeValues, - String encode) { - if (responseMessage == null) { - return false; - } - - if (StringUtils.isBlank(tokenErrorCodeKey)) { - return false; - } - - if (StringUtils.isBlank(tokenErrorCodeValues)) { - return false; - } - - try { - DocumentContext jsonContext = JsonPath.parse(new String(responseMessage, encode)); - String responseCode = jsonContext.read(tokenErrorCodeKey); - if (StringUtils.isBlank(responseCode)) { - return false; - } - - String[] arr = org.springframework.util.StringUtils.tokenizeToStringArray(tokenErrorCodeValues, ","); - return ArrayUtils.contains(arr, responseCode); - } catch (Exception e) { - logger.error("HttpClientAdapterServiceRest] checkTokenRetry error=" + e.getMessage()); - } - - return false; - } - - private void assignRequestHeaders(HttpUriRequestBase method, Object httpHeader) { - if (httpHeader == null) { - return; - } - - if (httpHeader instanceof JSONObject) { - JSONObject jsonObject = (JSONObject) httpHeader; - for (Object key : jsonObject.keySet()) { - Object obj = jsonObject.get(key); - if ((obj instanceof JSONObject) || (obj instanceof JSONArray)) { - continue; - } - - method.setHeader((String) key, (String) obj); - - if (logger.isDebugEnabled()) { - logger.debug("Request Header :" + (String) key + "=[" + (String) obj + "]"); - } - - } - } - } - - @SuppressWarnings("deprecation") - private void assignPostBody(Object eaiBody, String contentType, String charset, HttpUriRequestBase method) { - if (eaiBody == null) { - return; - } - - if (StringUtils.contains(contentType, "application/x-www-form-urlencoded")) { - if (eaiBody instanceof JSONObject) { - List params = new ArrayList<>(); - JSONObject jsonObject = (JSONObject) eaiBody; - for (Object key : jsonObject.keySet()) { - params.add(new BasicNameValuePair((String) key, (String) jsonObject.get(key))); - } - - UrlEncodedFormEntity entity = new UrlEncodedFormEntity(params, StandardCharsets.UTF_8); - method.setEntity(entity); - } - - } else { - ContentType contentTypeObj = ContentType.create(contentType, charset); - - // 요청 본문을 StringEntity 객체로 생성 - StringEntity entity = new StringEntity(eaiBody.toString(), contentTypeObj); - - // 요청에 본문 추가 - method.setEntity(entity); - } - } - - private HashMap getParameters(Object message) throws Exception { - - HashMap result = new HashMap(); - - if (message != null) { - if (message instanceof JSONObject) { - JSONObject jsonObject = (JSONObject) message; - for (Object key : jsonObject.keySet()) { - Object obj = jsonObject.get(key); - if ((obj instanceof JSONObject) || (obj instanceof JSONArray)) { - continue; - } - result.put((String) key, getStringValue(obj)); - } - } else { - String[] messages = ((String) message).split("&"); - String[] data = null; - - for (int i = 0; i < messages.length; i++) { - data = messages[i].split("=", 2); - if (data.length == 2) { - result.put(data[0], data[1]); - } - } - } - } - - return result; - } - - public String getStringValue(Object obj) { - if (obj == null) { - return null; - } - - if (obj instanceof String) { - return (String) obj; - } else if (obj instanceof Long) { - return Long.toString((Long) obj); - } else if (obj instanceof BigDecimal) { - return ((BigDecimal) obj).toPlainString(); - } else { - return (String) obj; - } - } - - public static Object parseJsonGeneric(String jsonData) { - if (StringUtils.isBlank(jsonData)) { - return null; - } - - try { - JSONParser parser = new JSONParser(); - Object parsedObj = parser.parse(jsonData); - return parsedObj; - } catch (ParseException e) { - e.printStackTrace(); - return null; - } - } - - @SuppressWarnings("deprecation") - private JSONObject parseJson(String message) throws Exception { - if (message == null) { - return null; - } - - return (JSONObject) JSONValue.parse(message); - } - - private Document convertXmlDocument(String message) throws Exception { - SAXReader builder = new SAXReader(); - Document document = builder.read(new StringReader(message)); - return document; - } - - @SuppressWarnings("deprecation") - private String changeUrl(String messageType, String url, String restOption, Object sendData) { - if ((MessageType.JSON.equals(messageType) || MessageType.XML.equals(messageType))) { - try { - if (StringUtils.isBlank(restOption)) { - return url; - } - List urlVariableList = new ArrayList(); - JSONObject restOptionObject = parseJson(restOption); - - if (restOptionObject == null) - throw new Exception("restOption is NULL"); - - String type = (String) restOptionObject.get("type"); - String requestExtraPath = (String) restOptionObject.get("extraPath"); - url = getUrl(url, requestExtraPath); - if (TYPE_VARIABLE_URL_REQUEST.equals(type)) { - Pattern p = Pattern.compile("\\{(.*?)\\}"); - Matcher m = p.matcher(requestExtraPath); - List uriVariables = new ArrayList<>(); - while(m.find()) { - String fieldName = m.group(1); - uriVariables.add(fieldName); - } - if (MessageType.JSON.equals(messageType)) { - JSONObject jsonObject; - if (sendData instanceof JSONObject) { - jsonObject = (JSONObject) sendData; - } else { - jsonObject = (JSONObject) JSONValue.parse((String) sendData); - } - for (Object tempObject : uriVariables) { - String urlVaribleId = (String) tempObject; - String uriVariable = (String) jsonObject.get(urlVaribleId); - urlVariableList.add(uriVariable); - jsonObject.remove(urlVaribleId); - } - } else if (MessageType.XML.equals(messageType)) { - Document doc; - if (sendData instanceof Document) { - doc = (Document) sendData; - } else { - doc = convertXmlDocument((String) sendData); - } - for (Object tempObject : uriVariables) { - String urlVaribleId = (String) tempObject; - Element element = (Element) doc.selectSingleNode("//" + urlVaribleId); - urlVariableList.add(element.getText()); - if (doc.getRootElement() == element) { - doc = null; - } else { - element.getParent().remove(element); - } - } - } - if (urlVariableList.size() > 0) { - UriComponents uriComponents = UriComponentsBuilder.fromUriString(url).build(); - Object[] urls = urlVariableList.toArray(); - url = uriComponents.expand(urls).toUriString(); - logger.debug("HttpClientAdapterServiceRest] after extand url=[" + url + "] "); - } - } - } catch (Exception e) { - logger.error("Failed to change url", e); - } - } - return url; - } - - private String getUrl(String baseUrl, String extraPath) { - if (StringUtils.isBlank(extraPath)) { - return baseUrl; - } - - if (StringUtils.contains(extraPath, "http://") || StringUtils.contains(extraPath, "https://")) { - return extraPath; - } - - String targetUrl = baseUrl; - if (!targetUrl.endsWith("/")) { - targetUrl += "/"; - } - if (extraPath.startsWith("/")) { - targetUrl += extraPath.substring(1); - } else { - targetUrl += extraPath; - } - - logger.debug("HttpClientAdapterServiceRest] after concatenate url=[" + targetUrl + "] "); - return targetUrl; - } - -}