Token generation policy (#26)

* Provide a way to pass token generation policy

* Added generateTokenResponse methods to allow for handling optout

Old 'generateToken' method was not capable of handling optout responses
when user requested that no tokens should be generated if user had optedout.

The new class TokenGenerateResponse works in similar way as TokenRefreshResponse,
providing a way to check if response is opted out or successful

* Fixed javadoc for PublisherUid2Client

* Added integration test for not generating tokens on optout

Author: abazylewicz-id5

src/main/java/com/uid2/client/PublisherUid2Client.java

@@ -2,7 +2,7 @@
 
 import okhttp3.*;
 
-import java.io.*;
+import java.io.IOException;
 
 
 public class PublisherUid2Client {
@@ -21,7 +21,9 @@ public PublisherUid2Client(String uid2BaseUrl, String clientApiKey, String base6
      * @param tokenGenerateInput represents the input required for <a href="https://unifiedid.com/docs/endpoints/post-token-generate#unencrypted-json-body-parameters">/token/generate</a>
      * @return an IdentityTokens instance
      * @throws Uid2Exception if the response did not contain a "success" status, or the response code was not 200, or there was an error communicating with the provided UID2 Base URL
+     * @deprecated Use {@link PublisherUid2Client#generateTokenResponse}
      */
+    @Deprecated
     public IdentityTokens generateToken(TokenGenerateInput tokenGenerateInput) {
         EnvelopeV2 envelope = publisherUid2Helper.createEnvelopeForTokenGenerateRequest(tokenGenerateInput);
 
@@ -44,6 +46,33 @@ public IdentityTokens generateToken(TokenGenerateInput tokenGenerateInput) {
         }
     }
 
+    /**
+     * @param tokenGenerateInput represents the input required for <a href="https://unifiedid.com/docs/endpoints/post-token-generate#unencrypted-json-body-parameters">/token/generate</a>
+     * @return an TokenGenerateResponse instance, which will contain an IdentityTokens instance, if successful.
+     * @throws Uid2Exception if the response did not contain a "success" or "optout" status, or the response code was not 200, or there was an error communicating with the provided UID2 Base URL
+     */
+    public TokenGenerateResponse generateTokenResponse(TokenGenerateInput tokenGenerateInput) {
+        EnvelopeV2 envelope = publisherUid2Helper.createEnvelopeForTokenGenerateRequest(tokenGenerateInput);
+
+        Request request = new Request.Builder()
+                .url(uid2BaseUrl + "/v2/token/generate")
+                .headers(headers)
+                .post(RequestBody.create(envelope.getEnvelope(), FORM))
+                .build();
+
+
+        try (Response response = client.newCall(request).execute()) {
+            if (!response.isSuccessful()) {
+                throw new Uid2Exception("Unexpected code " + response);
+            }
+
+            String responseString = response.body() != null ? response.body().string() : "";
+            return publisherUid2Helper.createTokenGenerateResponse(responseString, envelope);
+        } catch (IOException e) {
+            throw new Uid2Exception("Error communicating with api endpoint", e);
+        }
+    }
+
     /**
      * @param currentIdentity the current IdentityTokens instance, typically retrieved from a user's session
      * @return the refreshed IdentityTokens instance (with a new advertising token and updated expiry times). Typically, this will be used to replace the current identity in the user's session

src/main/java/com/uid2/client/PublisherUid2Helper.java

@@ -34,11 +34,13 @@ public EnvelopeV2 createEnvelopeForTokenGenerateRequest(TokenGenerateInput token
     }
 
     /**
+     * @deprecated Use {@link PublisherUid2Helper#createTokenGenerateResponse}
      * @param response the response body returned by a call to <a href="https://unifiedid.com/docs/endpoints/post-token-generate">/token/generate</a>
      * @param envelope the EnvelopeV2 instance returned by {@link #createEnvelopeForTokenGenerateRequest}
      * @return an IdentityTokens instance
      * @throws Uid2Exception if the response did not contain a "success" status
      */
+    @Deprecated
     public IdentityTokens createIdentityfromTokenGenerateResponse(String response, EnvelopeV2 envelope) {
         String identityJsonString = decrypt(response, secretKey, false, envelope.getNonce());
         JsonObject responseJson = new Gson().fromJson(identityJsonString, JsonObject.class);
@@ -50,6 +52,18 @@ public IdentityTokens createIdentityfromTokenGenerateResponse(String response, E
         return IdentityTokens.fromJson(TokenRefreshResponse.getBodyAsJson(responseJson));
     }
 
+    /**
+     * @param response the response body returned by a call to <a href="https://unifiedid.com/docs/endpoints/post-token-generate">/token/generate</a>
+     * @param envelope the EnvelopeV2 instance returned by {@link #createEnvelopeForTokenGenerateRequest}
+     * @return an TokenGenerateResponse instance
+     * @throws Uid2Exception if the response did not contain a "success" or "optout" status
+     */
+    public TokenGenerateResponse createTokenGenerateResponse(String response, EnvelopeV2 envelope) {
+        String identityJsonString = decrypt(response, secretKey, false, envelope.getNonce());
+
+        return new TokenGenerateResponse(identityJsonString);
+    }
+
     /**
      * @param encryptedResponse the response body returned by a call to <a href="https://unifiedid.com/docs/endpoints/post-token-refresh">/token/refresh</a>
      * @param currentIdentity the current IdentityTokens instance, typically retrieved from a user's session

src/main/java/com/uid2/client/TokenGenerateInput.java

@@ -51,13 +51,18 @@ TokenGenerateInput doNotHash() {
         return this;
     }
 
+    public TokenGenerateInput doNotGenerateTokensForOptedOut() {
+        generateForOptedOut = false;
+        return this;
+    }
+
     String getAsJsonString() {
         if (alreadyHashed) {
-            return createAlreadyHashedJsonRequestForGenerateToken(identityType, emailOrPhone, transparencyAndConsentString);
+            return createAlreadyHashedJsonRequestForGenerateToken(identityType, emailOrPhone, transparencyAndConsentString, generateForOptedOut);
         } else if (needHash) {
-            return createHashedJsonRequestForGenerateToken(identityType, emailOrPhone, transparencyAndConsentString);
+            return createHashedJsonRequestForGenerateToken(identityType, emailOrPhone, transparencyAndConsentString, generateForOptedOut);
         } else {
-            return createJsonRequestForGenerateToken(identityType, emailOrPhone, transparencyAndConsentString);
+            return createJsonRequestForGenerateToken(identityType, emailOrPhone, transparencyAndConsentString, generateForOptedOut);
         }
     }
 
@@ -70,52 +75,55 @@ private TokenGenerateInput(IdentityType identityType, String emailOrPhone, boole
 
 
 
-    private static String createJsonRequestForGenerateToken(IdentityType identityType, String value, String tcString) {
+    private static String createJsonRequestForGenerateToken(IdentityType identityType, String value, String tcString, boolean generateForOptedOut) {
         final String property = (identityType == IdentityType.Email) ? "email" : "phone";
-        return createJsonRequestForGenerateToken(property, value, tcString);
+        return createJsonRequestForGenerateToken(property, value, tcString, generateForOptedOut);
     }
 
-    private static String createJsonRequestForGenerateToken(String property, String value, String tcString) {
+    private static String createJsonRequestForGenerateToken(String property, String value, String tcString, boolean generateForOptedOut) {
         JsonObject json = new JsonObject();
 
         json.addProperty(property, value);
         if (tcString != null) {
             json.addProperty("tcf_consent_string", tcString);
         }
-
+        if(!generateForOptedOut){
+            json.addProperty("policy", 1);
+        }
         return json.toString();
     }
 
-    static String createHashedJsonRequestForGenerateToken(IdentityType identityType, String unhashedValue, String tcString) {
+    static String createHashedJsonRequestForGenerateToken(IdentityType identityType, String unhashedValue, String tcString, boolean generateForOptedOut) {
         if (identityType == IdentityType.Email) {
             String normalizedEmail = InputUtil.normalizeEmailString(unhashedValue);
             if (normalizedEmail == null) {
                 throw new IllegalArgumentException("invalid email address");
             }
             String hashedNormalizedEmail = InputUtil.getBase64EncodedHash(normalizedEmail);
-            return createJsonRequestForGenerateToken("email_hash", hashedNormalizedEmail, tcString);
+            return createJsonRequestForGenerateToken("email_hash", hashedNormalizedEmail, tcString, generateForOptedOut);
         } else {  //phone
             if (!InputUtil.isPhoneNumberNormalized(unhashedValue)) {
                 throw new IllegalArgumentException("phone number is not normalized");
             }
 
             String hashedNormalizedPhone = InputUtil.getBase64EncodedHash(unhashedValue);
-            return createJsonRequestForGenerateToken("phone_hash", hashedNormalizedPhone, tcString);
+            return createJsonRequestForGenerateToken("phone_hash", hashedNormalizedPhone, tcString, generateForOptedOut);
         }
     }
 
-    static String createAlreadyHashedJsonRequestForGenerateToken(IdentityType identityType, String hashedValue, String tcString) {
+    static String createAlreadyHashedJsonRequestForGenerateToken(IdentityType identityType, String hashedValue, String tcString, boolean generateForOptedOut) {
         if (identityType == IdentityType.Email) {
-            return createJsonRequestForGenerateToken("email_hash", hashedValue, tcString);
+            return createJsonRequestForGenerateToken("email_hash", hashedValue, tcString, generateForOptedOut);
         } else {  //phone
-            return createJsonRequestForGenerateToken("phone_hash", hashedValue, tcString);
+            return createJsonRequestForGenerateToken("phone_hash", hashedValue, tcString, generateForOptedOut);
         }
     }
 
     private final IdentityType identityType;
     private final String emailOrPhone;
     private boolean needHash;
-    private boolean alreadyHashed;
+    private final boolean alreadyHashed;
+    private boolean generateForOptedOut = true;
     private String transparencyAndConsentString;
 
 

src/main/java/com/uid2/client/TokenGenerateResponse.java

@@ -0,0 +1,57 @@
+package com.uid2.client;
+
+import com.google.gson.Gson;
+import com.google.gson.JsonObject;
+
+import java.time.Instant;
+
+public class TokenGenerateResponse {
+    /**
+     * @return {@link IdentityTokens#getJsonString()} if this was a successful response ({@link #isSuccess}), otherwise null
+     */
+    public String getIdentityJsonString() {
+        return isSuccess() ? getIdentity().getJsonString() : null;
+    }
+
+    /**
+     * @return whether this was a successful response
+     */
+    public boolean isSuccess() {
+        return "success".equals(status);
+    }
+
+    /**
+     * @return whether the user has opted out. See <a href="https://unifiedid.com/docs/endpoints/post-token-generate#optout">Optout</a>
+     */
+    public boolean isOptout() {
+        return "optout".equals(status);
+    }
+
+    /**
+     * @return the refreshed IdentityTokens instance if {@link #isSuccess} is true, otherwise null
+     */
+    public IdentityTokens getIdentity() {
+        return tokens;
+    }
+
+    static JsonObject getBodyAsJson(JsonObject jsonResponse) {
+        return jsonResponse.get("body").getAsJsonObject();
+    }
+
+    TokenGenerateResponse(String response) {
+        JsonObject responseJson = new Gson().fromJson(response, JsonObject.class);
+        status = responseJson.get("status").getAsString();
+
+        if (isOptout()) {
+            return;
+        } else if (!isSuccess()) {
+            throw new Uid2Exception("Got unexpected token generate status: " + status);
+        }
+
+        tokens = IdentityTokens.fromJson(getBodyAsJson(responseJson));
+    }
+
+
+    private final String status;
+    private IdentityTokens tokens;
+}