mirror of
https://github.com/google/nomulus.git
synced 2025-05-02 04:57:51 +02:00
9d532cb507
This uses an extensibility mechanism similar to that of WhoisCommandFactory and CustomLogicFactory, namely, that a fully qualified Java class is specified in the YAML file for each environment with the allocation token custom logic to be used. By default, this points to a no-op base class that does nothing. Users that wish to add their own allocation token custom logic can simply create a new class that extends AllocationTokenCustomLogic and then configure it in their .yaml config files. This also renames the existing *FlowCustomLogic *Flow instance variables from customLogic to flowCustomLogic, to avoid the potential confusion with the new AllocationTokenCustomLogic class that also now exists. ------------- Created by MOE: https://github.com/google/moe MOE_MIGRATED_REVID=183003112
113 lines
4.5 KiB
Java
113 lines
4.5 KiB
Java
// Copyright 2017 The Nomulus Authors. All Rights Reserved.
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package google.registry.flows.domain.token;
|
|
|
|
import static google.registry.model.ofy.ObjectifyService.ofy;
|
|
|
|
import com.google.common.collect.ImmutableMap;
|
|
import com.google.common.net.InternetDomainName;
|
|
import com.googlecode.objectify.Key;
|
|
import google.registry.flows.EppException;
|
|
import google.registry.flows.EppException.AssociationProhibitsOperationException;
|
|
import google.registry.flows.EppException.ParameterValueSyntaxErrorException;
|
|
import google.registry.model.domain.AllocationToken;
|
|
import google.registry.model.registry.Registry;
|
|
import google.registry.model.reporting.HistoryEntry;
|
|
import java.util.List;
|
|
import java.util.function.Function;
|
|
import javax.inject.Inject;
|
|
|
|
/** Utility functions for dealing with {@link AllocationToken}s in domain flows. */
|
|
// TODO: Add a test class.
|
|
public class AllocationTokenFlowUtils {
|
|
|
|
final AllocationTokenCustomLogic tokenCustomLogic;
|
|
|
|
@Inject
|
|
AllocationTokenFlowUtils(AllocationTokenCustomLogic tokenCustomLogic) {
|
|
this.tokenCustomLogic = tokenCustomLogic;
|
|
}
|
|
|
|
/**
|
|
* Verifies that a given allocation token string is valid.
|
|
*
|
|
* @return the loaded {@link AllocationToken} for that string.
|
|
* @throws InvalidAllocationTokenException if the token doesn't exist.
|
|
*/
|
|
public AllocationToken verifyToken(
|
|
InternetDomainName domainName, String token, Registry registry, String clientId)
|
|
throws EppException {
|
|
AllocationToken tokenEntity = ofy().load().key(Key.create(AllocationToken.class, token)).now();
|
|
if (tokenEntity == null) {
|
|
throw new InvalidAllocationTokenException();
|
|
}
|
|
if (tokenEntity.isRedeemed()) {
|
|
throw new AlreadyRedeemedAllocationTokenException();
|
|
}
|
|
return tokenCustomLogic.verifyToken(domainName, tokenEntity, registry, clientId);
|
|
}
|
|
|
|
/**
|
|
* Checks if the allocation token applies to the given domain names, used for domain checks.
|
|
*
|
|
* @return A map of domain names to domain check error response messages. If a message is present
|
|
* for a a given domain then it does not validate with this allocation token; domains that do
|
|
* validate have blank messages (i.e. no error).
|
|
*/
|
|
public ImmutableMap<String, String> checkDomainsWithToken(
|
|
List<String> domainNames, String token, String clientId) {
|
|
AllocationToken tokenEntity = ofy().load().key(Key.create(AllocationToken.class, token)).now();
|
|
String result;
|
|
if (tokenEntity == null) {
|
|
result = new InvalidAllocationTokenException().getMessage();
|
|
} else if (tokenEntity.isRedeemed()) {
|
|
result = AlreadyRedeemedAllocationTokenException.ERROR_MSG_SHORT;
|
|
} else {
|
|
result = "";
|
|
}
|
|
ImmutableMap<String, String> checkResults =
|
|
domainNames
|
|
.stream()
|
|
.collect(ImmutableMap.toImmutableMap(Function.identity(), domainName -> result));
|
|
return tokenCustomLogic.checkDomainsWithToken(checkResults, tokenEntity, clientId);
|
|
}
|
|
|
|
/** Redeems an {@link AllocationToken}, returning the redeemed copy. */
|
|
public AllocationToken redeemToken(
|
|
AllocationToken token, Key<HistoryEntry> redemptionHistoryEntry) {
|
|
return token.asBuilder().setRedemptionHistoryEntry(redemptionHistoryEntry).build();
|
|
}
|
|
|
|
/** The allocation token was already redeemed. */
|
|
public static class AlreadyRedeemedAllocationTokenException
|
|
extends AssociationProhibitsOperationException {
|
|
|
|
public static final String ERROR_MSG_LONG = "The allocation token was already redeemed";
|
|
|
|
/** A short error message fitting within 32 characters for use in domain check responses. */
|
|
public static final String ERROR_MSG_SHORT = "Alloc token was already redeemed";
|
|
|
|
public AlreadyRedeemedAllocationTokenException() {
|
|
super(ERROR_MSG_LONG);
|
|
}
|
|
}
|
|
|
|
/** The allocation token is invalid. */
|
|
public static class InvalidAllocationTokenException extends ParameterValueSyntaxErrorException {
|
|
public InvalidAllocationTokenException() {
|
|
super("The allocation token is invalid");
|
|
}
|
|
}
|
|
}
|