Add back legacy UserRepository

Author: mpgxvii

buildSrc/src/main/kotlin/Versions.kt

@@ -11,6 +11,8 @@ object Versions {
     const val kafka = "$confluent-ce"
     const val avro = "1.11.0"
 
+    const val managementPortal = "2.0.0"
+
     // From image
     const val jackson = "2.14.2"
 

kafka-connect-fitbit-source/build.gradle.kts

@@ -6,7 +6,9 @@ dependencies {
     api("io.confluent:kafka-connect-avro-converter:${Versions.confluent}")
     api("org.radarbase:radar-schemas-commons:${Versions.radarSchemas}")
     implementation("org.radarbase:radar-commons-kotlin:${Versions.radarCommons}")
+    implementation("org.radarbase:oauth-client-util:${Versions.managementPortal}")
 
+    api("com.squareup.okhttp3:okhttp:${Versions.okhttp}")
     implementation(platform("com.fasterxml.jackson:jackson-bom:${Versions.jackson}"))
     implementation("com.fasterxml.jackson.dataformat:jackson-dataformat-yaml")
     implementation("com.fasterxml.jackson.datatype:jackson-datatype-jsr310")

kafka-connect-fitbit-source/src/main/java/org/radarbase/connect/rest/fitbit/FitbitRestSourceConnectorConfig.java

@@ -21,6 +21,8 @@
 import static org.apache.kafka.common.config.ConfigDef.NO_DEFAULT_VALUE;
 
 import java.lang.reflect.InvocationTargetException;
+import java.net.MalformedURLException;
+import java.net.URL;
 import java.nio.charset.StandardCharsets;
 import java.nio.file.Path;
 import java.nio.file.Paths;
@@ -33,6 +35,8 @@
 import io.ktor.http.URLParserException;
 import io.ktor.http.Url;
 import okhttp3.Headers;
+import okhttp3.HttpUrl;
+
 import org.apache.kafka.common.config.ConfigDef;
 import org.apache.kafka.common.config.ConfigDef.Importance;
 import org.apache.kafka.common.config.ConfigDef.NonEmptyString;
@@ -530,18 +534,18 @@ public Path getFitbitUserCredentialsPath() {
     return Paths.get(getString(FITBIT_USER_CREDENTIALS_DIR_CONFIG));
   }
 
-  public Url getFitbitUserRepositoryUrl() {
+  public HttpUrl getFitbitUserRepositoryUrl() {
     String urlString = getString(FITBIT_USER_REPOSITORY_URL_CONFIG).trim();
     if (urlString.charAt(urlString.length() - 1) != '/') {
       urlString += '/';
     }
-    try {
-      return URLBuilder(urlString).build();
-    } catch (URLParserException ex) {
+    HttpUrl url = HttpUrl.parse(urlString);
+    if (url == null) {
       throw new ConfigException(FITBIT_USER_REPOSITORY_URL_CONFIG,
           getString(FITBIT_USER_REPOSITORY_URL_CONFIG),
-          "User repository URL " + urlString + " cannot be parsed as URL: " + ex);
+          "User repository URL " + urlString + " cannot be parsed as URL.");
     }
+    return url;
   }
 
   public Headers getClientCredentials() {
@@ -584,17 +588,15 @@ public String getFitbitUserRepositoryClientSecret() {
     return getPassword(FITBIT_USER_REPOSITORY_CLIENT_SECRET_CONFIG).value();
   }
 
-  public Url getFitbitUserRepositoryTokenUrl() {
+  public URL getFitbitUserRepositoryTokenUrl() {
     String value = getString(FITBIT_USER_REPOSITORY_TOKEN_URL_CONFIG);
     if (value == null || value.isEmpty()) {
       return null;
     } else {
       try {
-        return URLBuilder(value).build();
-      } catch (URLParserException ex) {
-        throw new ConfigException(FITBIT_USER_REPOSITORY_URL_CONFIG,
-                getString(FITBIT_USER_REPOSITORY_URL_CONFIG),
-                "Fitbit user repository token URL " + value + " cannot be parsed as URL: " + ex);
+        return new URL(getString(FITBIT_USER_REPOSITORY_TOKEN_URL_CONFIG));
+      } catch (MalformedURLException ex) {
+        throw new ConfigException("Fitbit user repository token URL is invalid.");
       }
     }
   }

kafka-connect-fitbit-source/src/main/java/org/radarbase/connect/rest/fitbit/user/ServiceUserRepository.kt

@@ -37,6 +37,7 @@ import io.ktor.client.statement.request
 import io.ktor.http.ContentType
 import io.ktor.http.HttpMethod
 import io.ktor.http.HttpStatusCode
+import io.ktor.http.URLBuilder
 import io.ktor.http.Url
 import io.ktor.http.contentLength
 import io.ktor.http.contentType
@@ -85,8 +86,8 @@ class ServiceUserRepository : UserRepository {
         val containedUsers = config.fitbitUsers.toHashSet()
 
         client = createClient(
-            baseUrl = config.fitbitUserRepositoryUrl,
-            tokenUrl = config.fitbitUserRepositoryTokenUrl,
+            baseUrl = URLBuilder(config.fitbitUserRepositoryUrl.toString()).build(),
+            tokenUrl = URLBuilder(config.fitbitUserRepositoryTokenUrl.toString()).build(),
             clientId = config.fitbitUserRepositoryClientId,
             clientSecret = config.fitbitUserRepositoryClientSecret,
         )

kafka-connect-fitbit-source/src/main/java/org/radarbase/connect/rest/fitbit/user/ServiceUserRepositoryLegacy.java

@@ -0,0 +1,249 @@
+/*
+ * Copyright 2018 The Hyve
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ */
+
+ package org.radarbase.connect.rest.fitbit.user;
+
+ import static org.radarbase.connect.rest.converter.PayloadToSourceRecordConverter.MIN_INSTANT;
+ import static org.radarbase.connect.rest.fitbit.request.FitbitRequestGenerator.JSON_READER;
+ 
+ import com.fasterxml.jackson.core.JsonProcessingException;
+ import com.fasterxml.jackson.databind.ObjectReader;
+ import java.io.IOException;
+ import java.net.ProtocolException;
+ import java.net.URL;
+ import java.time.Duration;
+ import java.time.Instant;
+ import java.util.HashMap;
+ import java.util.HashSet;
+ import java.util.Map;
+ import java.util.NoSuchElementException;
+ import java.util.Set;
+ import java.util.concurrent.atomic.AtomicReference;
+ import java.util.stream.Collectors;
+ import java.util.stream.Stream;
+ import okhttp3.Credentials;
+ import okhttp3.HttpUrl;
+ import okhttp3.MediaType;
+ import okhttp3.OkHttpClient;
+ import okhttp3.Request;
+ import okhttp3.RequestBody;
+ import okhttp3.Response;
+ import okhttp3.ResponseBody;
+ import org.apache.kafka.common.config.ConfigException;
+ import org.radarbase.connect.rest.RestSourceConnectorConfig;
+ import org.radarbase.connect.rest.fitbit.FitbitRestSourceConnectorConfig;
+ import org.radarbase.exception.TokenException;
+ import org.radarbase.oauth.OAuth2Client;
+ import org.slf4j.Logger;
+ import org.slf4j.LoggerFactory;
+ 
+ @SuppressWarnings("unused")
+ public class ServiceUserRepositoryLegacy implements UserRepository {
+   private static final Logger logger = LoggerFactory.getLogger(ServiceUserRepositoryLegacy.class);
+ 
+   private static final ObjectReader USER_LIST_READER = JSON_READER.forType(Users.class);
+   private static final ObjectReader USER_READER = JSON_READER.forType(User.class);
+   private static final ObjectReader OAUTH_READER = JSON_READER.forType(OAuth2UserCredentials.class);
+   private static final RequestBody EMPTY_BODY =
+       RequestBody.create("", MediaType.parse("application/json; charset=utf-8"));
+   private static final Duration FETCH_THRESHOLD = Duration.ofMinutes(1L);
+   private static final Duration CONNECTION_TIMEOUT = Duration.ofSeconds(60);
+   private static final Duration CONNECTION_READ_TIMEOUT = Duration.ofSeconds(90);
+ 
+   private final OkHttpClient client;
+   private final Map<String, OAuth2UserCredentials> cachedCredentials;
+   private final AtomicReference<Instant> nextFetch = new AtomicReference<>(MIN_INSTANT);
+ 
+   private HttpUrl baseUrl;
+   private final HashSet<String> containedUsers;
+   private Set<? extends User> timedCachedUsers = new HashSet<>();
+   private OAuth2Client repositoryClient;
+   private String basicCredentials;
+ 
+   public ServiceUserRepositoryLegacy() {
+     this.client = new OkHttpClient.Builder()
+         .connectTimeout(CONNECTION_TIMEOUT)
+         .readTimeout(CONNECTION_READ_TIMEOUT)
+         .build();
+     this.cachedCredentials = new HashMap<>();
+     this.containedUsers = new HashSet<>();
+   }
+ 
+   @Override
+   public User get(String key) throws IOException {
+     Request request = requestFor("users/" + key).build();
+     return makeRequest(request, USER_READER);
+   }
+ 
+   @Override
+   public void initialize(RestSourceConnectorConfig config) {
+     FitbitRestSourceConnectorConfig fitbitConfig = (FitbitRestSourceConnectorConfig) config;
+     this.baseUrl = fitbitConfig.getFitbitUserRepositoryUrl();
+     this.containedUsers.addAll(fitbitConfig.getFitbitUsers());
+ 
+     URL tokenUrl = fitbitConfig.getFitbitUserRepositoryTokenUrl();
+     String clientId = fitbitConfig.getFitbitUserRepositoryClientId();
+     String clientSecret = fitbitConfig.getFitbitUserRepositoryClientSecret();
+ 
+     if (tokenUrl != null) {
+       if (clientId.isEmpty()) {
+         throw new ConfigException("Client ID for user repository is not set.");
+       }
+       this.repositoryClient = new OAuth2Client.Builder()
+           .credentials(clientId, clientSecret)
+           .endpoint(tokenUrl)
+           .scopes("SUBJECT.READ MEASUREMENT.CREATE")
+           .httpClient(client)
+           .build();
+     } else if (clientId != null) {
+       basicCredentials = Credentials.basic(clientId, clientSecret);
+     }
+   }
+ 
+   @Override
+   public Stream<? extends User> stream() {
+     if (nextFetch.get().equals(MIN_INSTANT)) {
+       try {
+         applyPendingUpdates();
+       } catch (IOException ex) {
+         logger.error("Failed to initially get users from repository", ex);
+       }
+     }
+     return this.timedCachedUsers.stream()
+         .filter(User::isComplete);
+   }
+ 
+   @Override
+   public String getAccessToken(User user) throws IOException, UserNotAuthorizedException {
+     if (!user.isAuthorized()) {
+       throw new UserNotAuthorizedException("User is not authorized");
+     }
+     OAuth2UserCredentials credentials = cachedCredentials.get(user.getId());
+     if (credentials != null && !credentials.isAccessTokenExpired()) {
+       return credentials.getAccessToken();
+     } else {
+       Request request = requestFor("users/" + user.getId() + "/token").build();
+       return requestAccessToken(user, request);
+     }
+   }
+ 
+   @Override
+   public String refreshAccessToken(User user) throws IOException, UserNotAuthorizedException {
+     if (!user.isAuthorized()) {
+       throw new UserNotAuthorizedException("User is not authorized");
+     }
+     Request request = requestFor("users/" + user.getId() + "/token")
+             .post(EMPTY_BODY)
+             .build();
+     return requestAccessToken(user, request);
+   }
+ 
+   private String requestAccessToken(User user, Request request)
+           throws UserNotAuthorizedException, IOException {
+     try {
+       OAuth2UserCredentials credentials = makeRequest(request, OAUTH_READER);
+       cachedCredentials.put(user.getId(), credentials);
+       return credentials.getAccessToken();
+     } catch (HttpResponseException ex) {
+       if (ex.getStatusCode() == 407) {
+         cachedCredentials.remove(user.getId());
+         if (user instanceof LocalUser) {
+           ((LocalUser) user).setIsAuthorized(false);
+         }
+         throw new UserNotAuthorizedException(ex.getMessage());
+       }
+       throw ex;
+     }
+   }
+ 
+   @Override
+   public boolean hasPendingUpdates() {
+     Instant nextFetchTime = nextFetch.get();
+     Instant now = Instant.now();
+     return now.isAfter(nextFetchTime);
+   }
+ 
+   @Override
+   public void applyPendingUpdates() throws IOException {
+     logger.info("Requesting user information from webservice");
+     Request request = requestFor("users?source-type=FitBit").build();
+     this.timedCachedUsers =
+         this.<Users>makeRequest(request, USER_LIST_READER).getUsers().stream()
+             .filter(u -> u.isComplete()
+                 && (containedUsers.isEmpty()
+                 || containedUsers.contains(u.getVersionedId())))
+             .collect(Collectors.toSet());
+     nextFetch.set(Instant.now().plus(FETCH_THRESHOLD));
+   }
+ 
+   private Request.Builder requestFor(String relativeUrl) throws IOException {
+     HttpUrl url = baseUrl.resolve(relativeUrl);
+     if (url == null) {
+       throw new IllegalArgumentException("Relative URL is invalid");
+     }
+     Request.Builder builder = new Request.Builder().url(url);
+     String authorization = requestAuthorization();
+     if (authorization != null) {
+       builder.addHeader("Authorization", authorization);
+     }
+ 
+     return builder;
+   }
+ 
+   private String requestAuthorization() throws IOException {
+     if (repositoryClient != null) {
+       try {
+         return "Bearer " + repositoryClient.getValidToken().getAccessToken();
+       } catch (TokenException ex) {
+         throw new IOException(ex);
+       }
+     } else if (basicCredentials != null) {
+       return basicCredentials;
+     } else {
+       return null;
+     }
+   }
+ 
+   private <T> T makeRequest(Request request, ObjectReader reader) throws IOException {
+     logger.info("Requesting info from {}", request.url());
+     try (Response response = client.newCall(request).execute()) {
+       ResponseBody body = response.body();
+ 
+       if (response.code() == 404) {
+         throw new NoSuchElementException("URL " + request.url() + " does not exist");
+       } else if (!response.isSuccessful() || body == null) {
+         String message = "Failed to make request";
+         if (response.code() > 0) {
+           message += " (HTTP status code " + response.code() + ')';
+         }
+         if (body != null) {
+           message += body.string();
+         }
+         throw new HttpResponseException(message, response.code());
+       }
+       String bodyString = body.string();
+       try {
+         return reader.readValue(bodyString);
+       } catch (JsonProcessingException ex) {
+         logger.error("Failed to parse JSON: {}\n{}", ex, bodyString);
+         throw ex;
+       }
+     } catch (ProtocolException ex) {
+       throw new IOException("Failed to make request to user repository", ex);
+     }
+   }
+ }