Feature dpop rest

component/org.wso2.carbon.identity.dpop/pom.xml

@@ -0,0 +1,127 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+ ~ Copyright (c) 2021, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
+ ~
+ ~ WSO2 Inc. licenses this file to you under the Apache License,
+ ~ Version 2.0 (the "License"); you may not use this file except
+ ~ in compliance with the License.
+ ~ You may obtain a copy of the License at
+ ~
+ ~    http://www.apache.org/licenses/LICENSE-2.0
+ ~
+ ~ Unless required by applicable law or agreed to in writing,
+ ~ software distributed under the License is distributed on an
+ ~ "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ ~ KIND, either express or implied.  See the License for the
+ ~ specific language governing permissions and limitations
+ ~ under the License.
+	 -->
+
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <parent>
+        <artifactId>identity-oauth2-extenstions</artifactId>
+        <groupId>org.wso2.carbon.extension.identity.oauth.addons</groupId>
+        <version>2.3.6-SNAPSHOT</version>
+        <relativePath>../../pom.xml</relativePath>
+    </parent>
+    <modelVersion>4.0.0</modelVersion>
+
+    <artifactId>org.wso2.carbon.identity.dpop</artifactId>
+    <packaging>bundle</packaging>
+
+    <dependencies>
+        <dependency>
+            <groupId>org.wso2.eclipse.osgi</groupId>
+            <artifactId>org.eclipse.osgi.services</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.wso2.orbit.com.nimbusds</groupId>
+            <artifactId>nimbus-jose-jwt</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.wso2.carbon.identity.inbound.auth.oauth2</groupId>
+            <artifactId>org.wso2.carbon.identity.oauth</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.wso2.carbon.identity.inbound.auth.oauth2</groupId>
+            <artifactId>org.wso2.carbon.identity.oauth.common</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.wso2.carbon.identity.framework</groupId>
+            <artifactId>org.wso2.carbon.identity.event</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.wso2.carbon.identity.framework</groupId>
+            <artifactId>org.wso2.carbon.identity.base</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.wso2.carbon.identity.framework</groupId>
+            <artifactId>org.wso2.carbon.identity.core</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.wso2.carbon.identity.auth.rest</groupId>
+            <artifactId>org.wso2.carbon.identity.auth.service</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.wso2.carbon</groupId>
+            <artifactId>org.wso2.carbon.core.common</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.felix</groupId>
+            <artifactId>org.apache.felix.scr.ds-annotations</artifactId>
+        </dependency>
+    </dependencies>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.felix</groupId>
+                <artifactId>maven-bundle-plugin</artifactId>
+                <extensions>true</extensions>
+                <configuration>
+                    <instructions>
+                        <Bundle-SymbolicName>org.wso2.carbon.identity.dpop</Bundle-SymbolicName>
+                        <Bundle-Name>${project.artifactId}</Bundle-Name>
+                        <Private-Package>
+                            org.wso2.carbon.identity.dpop.internal,
+                        </Private-Package>
+                        <Import-Package>
+                            com.nimbusds.jose.*; version="${nimbusds.osgi.version.range}",
+                            com.nimbusds.jwt; version="${nimbusds.osgi.version.range}",
+                            javax.servlet.http; version="${javax.servlet.http.package.import.version.range}",
+                            org.osgi.framework; version="${osgi.framework.package.import.version.range}",
+                            org.osgi.service.component;
+                            version="${osgi.service.component.package.import.version.range}",
+                            org.apache.commons.logging;
+                            version="${apache.commons.logging.package.import.version.range}",
+                            org.wso2.carbon.identity.oauth.*;
+                            version="${identity.inbound.auth.oauth.imp.pkg.version}",
+                            org.wso2.carbon.identity.oauth2.*;
+                            version="${identity.inbound.auth.oauth.imp.pkg.version}",
+                            org.wso2.carbon.identity.auth.service.*;
+                            version="${identity.carbon.auth.rest.version}",
+                            org.wso2.carbon.identity.base;
+                            version="${carbon.identity.package.import.version.range}",
+                            org.wso2.carbon.identity.core.*;
+                            version="${carbon.identity.package.import.version.range}",
+                            org.wso2.carbon.user.core.util;
+                            version="${carbon.kernel.package.import.version.range}",
+                            org.wso2.carbon.identity.application.common.*;
+                            version="${carbon.identity.package.import.version.range}",
+                            org.wso2.carbon.utils.multitenancy;
+                            version="${carbon.kernel.package.import.version.range}",
+                            org.apache.catalina.*;version="${apache.catalina.version}"
+                        </Import-Package>
+                        <Export-Package>
+                            !org.wso2.carbon.identity.dpop.internal,
+                            org.wso2.carbon.identity.dpop.*; version="${project.version}"
+                        </Export-Package>
+                    </instructions>
+                </configuration>
+            </plugin>
+        </plugins>
+    </build>
+</project>

component/org.wso2.carbon.identity.dpop/src/main/java/org/wso2/carbon/identity/dpop/constant/Constants.java

@@ -0,0 +1,45 @@
+/*
+ * Copyright (c) 2021, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
+ *
+ * WSO2 Inc. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License
+ */
+
+package org.wso2.carbon.identity.dpop.constant;
+
+/**
+ * This class defines constants for Oauth2 DPoP validation.
+ */
+public class Constants {
+
+    public static final String DPOP_CONFIG_ELEMENT = "OAuth.DPoPConfig";
+    public static final String HEADER_VALIDITY = "HeaderValidity";
+    public static final int DEFAULT_HEADER_VALIDITY = 60000;
+    public static final String DPOP_ISSUED_AT = "iat";
+    public static final String DPOP_HTTP_URI = "htu";
+    public static final String DPOP_HTTP_METHOD = "htm";
+    public static final String DPOP_JWT_TYPE = "dpop+jwt";
+    public static final String DPOP_TOKEN_TYPE = "DPoP";
+    public static final String INVALID_DPOP_PROOF = "invalid_dpop_proof";
+
+    public static final String ECDSA_ENCRYPTION = "EC";
+    public static final String RSA_ENCRYPTION = "RSA";
+
+    public static final String OAUTH_HEADER = "Bearer";
+    public static final String OAUTH_DPOP_HEADER = "DPoP";
+    public static final String CONSUMER_KEY = "consumer-key";
+    public static final String SERVICE_PROVIDER = "serviceProvider";
+    public static final String SERVICE_PROVIDER_TENANT_DOMAIN = "serviceProviderTenantDomain";
+    public static final String SCIM_ME_ENDPOINT_URI = "scim2/me";
+}