Use azure-json in claims classes

Avery-Dunn · Avery-Dunn · commit 0ea43624c918 · 2025-05-05T15:23:24.000-07:00
diff --git a/msal4j-sdk/src/main/java/com/microsoft/aad/msal4j/ClaimsRequest.java b/msal4j-sdk/src/main/java/com/microsoft/aad/msal4j/ClaimsRequest.java
@@ -3,24 +3,24 @@
 
 package com.microsoft.aad.msal4j;
 
+import com.azure.json.JsonProviders;
+import com.azure.json.JsonReader;
+import com.azure.json.JsonSerializable;
+import com.azure.json.JsonToken;
+import com.azure.json.JsonWriter;
 
-import com.fasterxml.jackson.core.type.TypeReference;
-import com.fasterxml.jackson.databind.JsonNode;
-import com.fasterxml.jackson.databind.ObjectMapper;
-import com.fasterxml.jackson.databind.ObjectReader;
-import com.fasterxml.jackson.databind.node.ObjectNode;
-
+import java.io.ByteArrayOutputStream;
 import java.io.IOException;
+import java.nio.charset.StandardCharsets;
 import java.util.ArrayList;
-import java.util.Iterator;
 import java.util.List;
 
 /**
  * Represents the claims request parameter as an object
  *
  * @see <a href="https://openid.net/specs/openid-connect-core-1_0-final.html#ClaimsParameter">https://openid.net/specs/openid-connect-core-1_0-final.html#ClaimsParameter</a>
  */
-public class ClaimsRequest {
+public class ClaimsRequest implements JsonSerializable<ClaimsRequest> {
 
     List<RequestedClaim> idTokenRequestedClaims = new ArrayList<>();
     List<RequestedClaim> userInfoRequestedClaims = new ArrayList<>();
@@ -62,31 +62,47 @@ protected void requestClaimInAccessToken(String claim, RequestedClaimAdditionalI
      * @return a String following JSON formatting
      */
     public String formatAsJSONString() {
-        ObjectMapper mapper = new ObjectMapper();
-        ObjectNode rootNode = mapper.createObjectNode();
+        try (ByteArrayOutputStream outputStream = new ByteArrayOutputStream();
+             JsonWriter jsonWriter = JsonProviders.createWriter(outputStream)) {
+            toJson(jsonWriter);
 
-        if (!idTokenRequestedClaims.isEmpty()) {
-            rootNode.set("id_token", convertClaimsToObjectNode(idTokenRequestedClaims));
-        }
-        if (!userInfoRequestedClaims.isEmpty()) {
-            rootNode.set("userinfo", convertClaimsToObjectNode(userInfoRequestedClaims));
-        }
-        if (!accessTokenRequestedClaims.isEmpty()) {
-            rootNode.set("access_token", convertClaimsToObjectNode(accessTokenRequestedClaims));
+            jsonWriter.flush();
+            return outputStream.toString(StandardCharsets.UTF_8.name());
+        } catch (IOException e) {
+            throw new MsalClientException("Could not convert ClaimsRequest to string: " + e.getMessage(), AuthenticationErrorCode.INVALID_JSON);
         }
+    }
+
+    @Override
+    public JsonWriter toJson(JsonWriter jsonWriter) throws IOException {
+        jsonWriter.writeStartObject();
 
-        return mapper.valueToTree(rootNode).toString();
+        writeClaimsToJsonWriter(jsonWriter, "id_token", idTokenRequestedClaims);
+        writeClaimsToJsonWriter(jsonWriter, "userinfo", userInfoRequestedClaims);
+        writeClaimsToJsonWriter(jsonWriter, "access_token", accessTokenRequestedClaims);
+
+        jsonWriter.writeEndObject();
+        return jsonWriter;
     }
 
-    private ObjectNode convertClaimsToObjectNode(List<RequestedClaim> claims) {
-        ObjectMapper mapper = new ObjectMapper();
-        ObjectNode claimsNode = mapper.createObjectNode();
+    private void writeClaimsToJsonWriter(JsonWriter jsonWriter, String sectionName, List<RequestedClaim> claims) throws IOException {
+        if (claims.isEmpty()) {
+            return;
+        }
 
+        jsonWriter.writeStartObject(sectionName);
 
         for (RequestedClaim claim : claims) {
-            claimsNode.setAll((ObjectNode) mapper.valueToTree(claim));
+            if (claim.name != null) {
+                if (claim.getRequestedClaimAdditionalInfo() != null) {
+                    jsonWriter.writeJsonField(claim.name,  claim.getRequestedClaimAdditionalInfo());
+                } else {
+                    jsonWriter.writeNullField(claim.name);
+                }
+            }
         }
-        return claimsNode;
+
+        jsonWriter.writeEndObject();
     }
 
     /**
@@ -96,49 +112,74 @@ private ObjectNode convertClaimsToObjectNode(List<RequestedClaim> claims) {
      * @return a ClaimsRequest instance
      */
     public static ClaimsRequest formatAsClaimsRequest(String claims) {
-        try {
-            ClaimsRequest cr = new ClaimsRequest();
+        try (JsonReader jsonReader = JsonProviders.createReader(claims)) {
+            ClaimsRequest claimsRequest = new ClaimsRequest();
 
-            ObjectMapper mapper = new ObjectMapper();
-            ObjectReader reader = mapper.readerFor(new TypeReference<List<String>>() {
-            });
-
-            JsonNode jsonClaims = mapper.readTree(claims);
+            return jsonReader.readObject(reader -> {
+                if (reader.currentToken() != JsonToken.START_OBJECT) {
+                    throw new IllegalStateException("Expected start of object but was " + reader.currentToken());
+                }
 
-            addClaimsFromJsonNode(jsonClaims.get("id_token"), "id_token", cr, reader);
-            addClaimsFromJsonNode(jsonClaims.get("userinfo"), "userinfo", cr, reader);
-            addClaimsFromJsonNode(jsonClaims.get("access_token"), "access_token", cr, reader);
+                while (reader.nextToken() != JsonToken.END_OBJECT) {
+                    parseClaims(reader, claimsRequest, reader.getFieldName());
+                }
 
-            return cr;
+                return claimsRequest;
+            });
         } catch (IOException e) {
-            throw new MsalClientException("Could not convert string to ClaimsRequest: " + e.getMessage(), AuthenticationErrorCode.INVALID_JSON);
+            throw new MsalClientException("Could not convert string to ClaimsRequest: " + e.getMessage(),
+                    AuthenticationErrorCode.INVALID_JSON);
         }
     }
 
-    private static void addClaimsFromJsonNode(JsonNode claims, String group, ClaimsRequest cr, ObjectReader reader) throws IOException {
-        Iterator<String> claimsIterator;
+    private static void parseClaims(JsonReader jsonReader, ClaimsRequest claimsRequest, String section) throws IOException {
+        if (jsonReader.currentToken() != JsonToken.FIELD_NAME) {
+            jsonReader.nextToken();
+        }
 
-        if (claims != null) {
-            claimsIterator = claims.fieldNames();
-            while (claimsIterator.hasNext()) {
-                String claim = claimsIterator.next();
-                Boolean essential = null;
+        jsonReader.nextToken();
+        if (jsonReader.currentToken() != JsonToken.START_OBJECT) {
+            throw new IllegalStateException("Expected start of object but was " + jsonReader.currentToken());
+        }
+
+        while (jsonReader.nextToken() != JsonToken.END_OBJECT) {
+            String claimName = jsonReader.getFieldName();
+            jsonReader.nextToken();
+
+            RequestedClaimAdditionalInfo claimInfo = null;
+            if (jsonReader.currentToken() == JsonToken.START_OBJECT) {
+                boolean essential = false;
                 String value = null;
                 List<String> values = null;
-                RequestedClaimAdditionalInfo claimInfo = null;
 
-                if (claims.get(claim).has("essential")) essential = claims.get(claim).get("essential").asBoolean();
-                if (claims.get(claim).has("value")) value = claims.get(claim).get("value").textValue();
-                if (claims.get(claim).has("values")) values = reader.readValue(claims.get(claim).get("values"));
+                while (jsonReader.nextToken() != JsonToken.END_OBJECT) {
+                    String fieldName = jsonReader.getFieldName();
+                    jsonReader.nextToken();
+
+                    switch (fieldName) {
+                        case "essential": essential = jsonReader.getBoolean(); break;
+                        case "value": value = jsonReader.getString(); break;
+                        case "values":
+                            values = new ArrayList<>();
+                            if (jsonReader.currentToken() == JsonToken.START_ARRAY) {
+                                while (jsonReader.nextToken() != JsonToken.END_ARRAY) {
+                                    values.add(jsonReader.getString());
+                                }
+                            }
+                            break;
+                        default: jsonReader.skipChildren(); break;
+                    }
+                }
 
-                //'null' is a valid value for RequestedClaimAdditionalInfo, so only initialize it if one of the parameters is not null
-                if (essential != null || value != null || values != null) {
-                    claimInfo = new RequestedClaimAdditionalInfo(essential == null ? false : essential, value, values);
+                if (essential || value != null || values != null) {
+                    claimInfo = new RequestedClaimAdditionalInfo(essential, value, values);
                 }
+            }
 
-                if (group.equals("id_token")) cr.requestClaimInIdToken(claim, claimInfo);
-                if (group.equals("userinfo")) cr.requestClaimInUserInfo(claim, claimInfo);
-                if (group.equals("access_token")) cr.requestClaimInAccessToken(claim, claimInfo);
+            switch (section) {
+                case "access_token": claimsRequest.requestClaimInAccessToken(claimName, claimInfo); break;
+                case "id_token": claimsRequest.requestClaimInIdToken(claimName, claimInfo); break;
+                case "userinfo": claimsRequest.requestClaimInUserInfo(claimName, claimInfo); break;
             }
         }
     }
@@ -150,4 +191,4 @@ public List<RequestedClaim> getIdTokenRequestedClaims() {
     public void setIdTokenRequestedClaims(List<RequestedClaim> idTokenRequestedClaims) {
         this.idTokenRequestedClaims = idTokenRequestedClaims;
     }
-}
+}
diff --git a/msal4j-sdk/src/main/java/com/microsoft/aad/msal4j/RequestedClaim.java b/msal4j-sdk/src/main/java/com/microsoft/aad/msal4j/RequestedClaim.java
@@ -3,10 +3,12 @@
 
 package com.microsoft.aad.msal4j;
 
-import com.fasterxml.jackson.annotation.JsonAnyGetter;
-import com.fasterxml.jackson.annotation.JsonIgnore;
-import com.fasterxml.jackson.annotation.JsonInclude;
+import com.azure.json.JsonReader;
+import com.azure.json.JsonSerializable;
+import com.azure.json.JsonToken;
+import com.azure.json.JsonWriter;
 
+import java.io.IOException;
 import java.util.Collections;
 import java.util.Map;
 
@@ -15,21 +17,56 @@
  *
  * @see <a href="https://openid.net/specs/openid-connect-core-1_0-final.html#ClaimsParameter">https://openid.net/specs/openid-connect-core-1_0-final.html#ClaimsParameter</a>
  */
-@JsonInclude(JsonInclude.Include.NON_NULL)
-public class RequestedClaim {
+public class RequestedClaim implements JsonSerializable<RequestedClaim> {
 
-    @JsonIgnore
     public String name;
+    private RequestedClaimAdditionalInfo requestedClaimAdditionalInfo;
 
-    RequestedClaimAdditionalInfo requestedClaimAdditionalInfo;
+    RequestedClaim() {}
 
     public RequestedClaim(String name, RequestedClaimAdditionalInfo requestedClaimAdditionalInfo) {
         this.name = name;
         this.requestedClaimAdditionalInfo = requestedClaimAdditionalInfo;
     }
 
-    @JsonAnyGetter
+    static RequestedClaim fromJson(JsonReader jsonReader) throws IOException {
+        RequestedClaim claim = new RequestedClaim();
+        return jsonReader.readObject(reader -> {
+            if (reader.currentToken() != JsonToken.START_OBJECT) {
+                throw new IllegalStateException("Expected start of object but was " + reader.currentToken());
+            }
+
+            claim.name = reader.getFieldName();
+
+            RequestedClaimAdditionalInfo info = new RequestedClaimAdditionalInfo(false, null, null);
+            claim.requestedClaimAdditionalInfo = info.fromJson(reader);
+
+            return claim;
+        });
+    }
+
+    @Override
+    public JsonWriter toJson(JsonWriter jsonWriter) throws IOException {
+        jsonWriter.writeStartObject();
+
+        if (name != null && requestedClaimAdditionalInfo != null) {
+            jsonWriter.writeString(name);
+            requestedClaimAdditionalInfo.toJson(jsonWriter);
+        }
+
+        jsonWriter.writeEndObject();
+        return jsonWriter;
+    }
+
+    RequestedClaimAdditionalInfo getRequestedClaimAdditionalInfo() {
+        return requestedClaimAdditionalInfo;
+    }
+
+    void setRequestedClaimAdditionalInfo(RequestedClaimAdditionalInfo requestedClaimAdditionalInfo) {
+        this.requestedClaimAdditionalInfo = requestedClaimAdditionalInfo;
+    }
+
     protected Map<String, Object> any() {
         return Collections.singletonMap(name, requestedClaimAdditionalInfo);
     }
-}
+}
diff --git a/msal4j-sdk/src/main/java/com/microsoft/aad/msal4j/RequestedClaimAdditionalInfo.java b/msal4j-sdk/src/main/java/com/microsoft/aad/msal4j/RequestedClaimAdditionalInfo.java
@@ -3,35 +3,90 @@
 
 package com.microsoft.aad.msal4j;
 
-import com.fasterxml.jackson.annotation.JsonInclude;
-import com.fasterxml.jackson.annotation.JsonProperty;
+import com.azure.json.JsonReader;
+import com.azure.json.JsonSerializable;
+import com.azure.json.JsonToken;
+import com.azure.json.JsonWriter;
 
+import java.io.IOException;
+import java.util.ArrayList;
 import java.util.List;
 
 /**
  * Represents the additional information that can be sent to an authorization server for a request claim in the claim request parameter
  *
  * @see <a href="https://openid.net/specs/openid-connect-core-1_0-final.html#ClaimsParameter">https://openid.net/specs/openid-connect-core-1_0-final.html#ClaimsParameter</a>
  */
-@JsonInclude(JsonInclude.Include.NON_NULL)
-public class RequestedClaimAdditionalInfo {
+public class RequestedClaimAdditionalInfo implements JsonSerializable<RequestedClaimAdditionalInfo> {
 
-    @JsonInclude(JsonInclude.Include.NON_DEFAULT)
-    @JsonProperty("essential")
-    boolean essential;
-
-    @JsonProperty("value")
-    String value;
-
-    @JsonProperty("values")
-    List<String> values;
+    private boolean essential;
+    private String value;
+    private List<String> values;
 
     public RequestedClaimAdditionalInfo(boolean essential, String value, List<String> values) {
         this.essential = essential;
         this.value = value;
         this.values = values;
     }
 
+    public RequestedClaimAdditionalInfo fromJson(JsonReader jsonReader) throws IOException {
+        if (jsonReader.currentToken() != JsonToken.START_OBJECT) {
+            jsonReader.nextToken();
+            if (jsonReader.currentToken() != JsonToken.START_OBJECT) {
+                throw new IllegalStateException("Expected start of object but was " + jsonReader.currentToken());
+            }
+        }
+
+        while (jsonReader.nextToken() != JsonToken.END_OBJECT) {
+            String fieldName = jsonReader.getFieldName();
+            jsonReader.nextToken();
+
+            switch (fieldName) {
+                case "essential":
+                    essential = jsonReader.getBoolean();
+                    break;
+                case "value":
+                    value = jsonReader.getString();
+                    break;
+                case "values":
+                    values = new ArrayList<>();
+                    while (jsonReader.nextToken() != JsonToken.END_ARRAY) {
+                        values.add(jsonReader.getString());
+                    }
+                    break;
+                default:
+                    jsonReader.skipChildren();
+                    break;
+            }
+        }
+
+        return this;
+    }
+
+    @Override
+    public JsonWriter toJson(JsonWriter jsonWriter) throws IOException {
+        jsonWriter.writeStartObject();
+
+        if (essential) {
+            jsonWriter.writeBooleanField("essential", essential);
+        }
+
+        if (value != null) {
+            jsonWriter.writeStringField("value", value);
+        }
+
+        if (values != null && !values.isEmpty()) {
+            jsonWriter.writeStartArray("values");
+            for (String val : values) {
+                jsonWriter.writeString(val);
+            }
+            jsonWriter.writeEndArray();
+        }
+
+        jsonWriter.writeEndObject();
+        return jsonWriter;
+    }
+
     public boolean isEssential() {
         return this.essential;
     }
@@ -55,4 +110,4 @@ public void setValue(String value) {
     public void setValues(List<String> values) {
         this.values = values;
     }
-}
+}
diff --git a/msal4j-sdk/src/test/java/com/microsoft/aad/msal4j/ClaimsTest.java b/msal4j-sdk/src/test/java/com/microsoft/aad/msal4j/ClaimsTest.java
