Added HMAC validate code example (#124)

* added a new code example

* refactoring the code

* fixed links to examples

* added a skip for authentication for Connect example

* fix for fileSystem link

* fix for linter

* dependabot requested fixes

---------

Co-authored-by: AaronWDS <[email protected]>

Author: annahileta

Quick_ACG/pom.xml

@@ -116,7 +116,7 @@
         <dependency>
             <groupId>org.springframework.boot</groupId>
             <artifactId>spring-boot-autoconfigure</artifactId>
-            <version>2.4.4</version>
+            <version>2.5.15</version>
         </dependency>
     </dependencies>
 

pom.xml

@@ -133,7 +133,7 @@
         <dependency>
             <groupId>org.json</groupId>
             <artifactId>json</artifactId>
-            <version>20230618</version>
+            <version>20231013</version>
         </dependency>
 
         <!-- To compile JSP files -->

src/main/java/com/docusign/WebSecurityConfig.java

@@ -28,7 +28,7 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                     try {
                         authorize
                                 .antMatchers("/", "/error**", "/assets/**", "/ds/mustAuthenticate**",
-                                        "/ds/authenticate**", "/ds/selectApi**")
+                                        "/ds/authenticate**", "/ds/selectApi**", "/con001")
                                 .permitAll()
                                 .anyRequest().authenticated()
                                 .and()

src/main/java/com/docusign/common/ApiIndex.java

@@ -5,8 +5,8 @@ public enum ApiIndex {
     ROOMS("/pages/rooms/index", "/restapi", "/r001", "/r"),
     CLICK("/pages/click/index", "/clickapi", "/c001", "/c"),
     MONITOR("/pages/monitor/index", "", "/m001", "/m"),
-    ADMIN("/pages/admin/index", "/management", "/a001", "/a");
-
+    ADMIN("/pages/admin/index", "/management", "/a001", "/a"),
+    CONNECT("/pages/connect/index", "", "/con001", "/con");
     private final String indexPath;
 
     private final String baseUrlSuffix;

src/main/java/com/docusign/common/WorkArguments.java

@@ -171,4 +171,8 @@ public class WorkArguments {
     private String targetAccountLastName;
 
     private String targetAccountEmail;
+
+    private String hmacSecret;
+
+    private String jsonPayload;
 }

src/main/java/com/docusign/controller/connect/examples/AbstractConnectController.java

@@ -0,0 +1,22 @@
+package com.docusign.controller.connect.examples;
+
+import com.docusign.DSConfiguration;
+import com.docusign.core.controller.AbstractController;
+import org.springframework.stereotype.Controller;
+
+/**
+ * Abstract base class for all Connect controllers.
+ */
+@Controller
+public abstract class AbstractConnectController extends AbstractController {
+
+    private static final String EXAMPLE_PAGES_PATH = "pages/connect/examples/";
+
+    public AbstractConnectController(DSConfiguration config, String exampleName) {
+        super(config, exampleName);
+    }
+
+    protected String getExamplePagesPath() {
+        return AbstractConnectController.EXAMPLE_PAGES_PATH;
+    }
+}

src/main/java/com/docusign/controller/connect/examples/EG001ControllerValidateUsingHMAC.java

@@ -0,0 +1,42 @@
+package com.docusign.controller.connect.examples;
+
+import com.docusign.DSConfiguration;
+import com.docusign.common.WorkArguments;
+import com.docusign.controller.connect.services.ValidateUsingHmacService;
+import com.docusign.core.model.DoneExample;
+import com.docusign.esign.client.ApiException;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.ModelMap;
+import org.springframework.web.bind.annotation.RequestMapping;
+
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
+
+@Controller
+@RequestMapping("/con001")
+public class EG001ControllerValidateUsingHMAC extends AbstractConnectController {
+
+    @Autowired
+    public EG001ControllerValidateUsingHMAC(DSConfiguration config) {
+        super(config, "con001");
+    }
+
+    @Override
+    protected Object doWork(WorkArguments args, ModelMap model,
+                            HttpServletResponse response) throws ApiException, IOException, NoSuchAlgorithmException, InvalidKeyException {
+        String hashedOutput = new ValidateUsingHmacService().computeHash(
+            args.getHmacSecret(),
+            args.getJsonPayload().getBytes()
+        );
+
+        DoneExample.createDefault(getTextForCodeExampleByApiType().ExampleName)
+            .withMessage(getTextForCodeExampleByApiType().ResultsPageText
+                .replaceFirst("\\{0}", hashedOutput)
+            )
+            .addToModel(model, config);
+        return DONE_EXAMPLE_PAGE;
+    }
+}

src/main/java/com/docusign/controller/connect/services/ValidateUsingHmacService.java

@@ -0,0 +1,27 @@
+package com.docusign.controller.connect.services;
+
+import javax.crypto.Mac;
+import javax.crypto.spec.SecretKeySpec;
+import java.io.UnsupportedEncodingException;
+import java.security.InvalidKeyException;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
+import java.util.Base64;
+
+public final class ValidateUsingHmacService {
+    public static String computeHash(String secret, byte[] payload)
+            throws InvalidKeyException, NoSuchAlgorithmException {
+        String digest = "HmacSHA256";
+        Mac mac = Mac.getInstance(digest);
+        mac.init(new SecretKeySpec(secret.getBytes(), digest));
+        String base64Hash = new String(Base64.getEncoder().encode(mac.doFinal(payload)));
+        return base64Hash;
+    }
+
+    public static boolean isValid(String secret, byte[] payload, String verify)
+            throws InvalidKeyException, NoSuchAlgorithmException, UnsupportedEncodingException {
+        String computedHash = computeHash(secret, payload);
+        return MessageDigest.isEqual(computedHash.getBytes("UTF-8"),
+            verify.getBytes("UTF-8"));
+    }
+}

src/main/java/com/docusign/core/controller/AbstractController.java

@@ -85,7 +85,7 @@ public AbstractController(DSConfiguration config, String exampleName) {
     }
 
     public CodeExampleText getTextForCodeExampleByApiType() {
-        ApiType apiType = ApiType.getAPITypeFromLink(this.exampleName);
+        ApiType apiType = ApiType.giveTypeByName(this.exampleName);
         if (codeExampleText != null) {
             return codeExampleText;
         }
@@ -100,11 +100,11 @@ public CodeExampleText getTextForCodeExampleByApiType() {
 
     @GetMapping
     public String get(WorkArguments args, ModelMap model) {
-        if (isTokenExpired()) {
+        if (ApiType.giveTypeByName(this.exampleName) != ApiType.CONNECT && isTokenExpired()) {
             return REDIRECT_AUTHENTICATION_PAGE;
         }
 
-        if (ApiType.getAPITypeFromLink(this.exampleName) == ApiType.MONITOR && session.getAuthTypeSelected() != AuthType.JWT) {
+        if(ApiType.giveTypeByName(this.exampleName) == ApiType.MONITOR && session.getAuthTypeSelected() != AuthType.JWT){
             session.setMonitorExampleRedirect("/" + this.exampleName);
             return REDIRECT_AUTHENTICATION_PAGE;
         }
@@ -124,7 +124,7 @@ public String get(WorkArguments args, ModelMap model) {
 
     @PostMapping
     public Object create(WorkArguments args, ModelMap model, HttpServletResponse response) {
-        if (isTokenExpired()) {
+        if (ApiType.giveTypeByName(this.exampleName) != ApiType.CONNECT && isTokenExpired()) {
             return REDIRECT_AUTHENTICATION_PAGE;
         }
 
@@ -163,8 +163,10 @@ protected void onInitModel(WorkArguments args, ModelMap model) throws Exception
     }
 
     public void setTheCurrentApiTypeAndBaseUrl() {
-        config.setSelectedApiType(ApiType.getAPITypeFromLink(this.exampleName).toString());
-        String basePath = this.config.getBaseUrl(config.getSelectedApiIndex(), session.getOauthAccount()) + config.getSelectedApiIndex().getBaseUrlSuffix();
+        config.setSelectedApiType(ApiType.giveTypeByName(this.exampleName).toString());
+        String basePath = session.getOauthAccount() != null ?
+                this.config.getBaseUrl(config.getSelectedApiIndex(), session.getOauthAccount()) + config.getSelectedApiIndex().getBaseUrlSuffix()
+                : null;
         session.setBasePath(basePath);
     }
 
@@ -235,7 +237,7 @@ private boolean isTokenExpired() {
 
     protected CodeExampleText getTextForCodeExample() {
         List<ManifestGroup> manifestGroups = config.getCodeExamplesText().APIs.stream()
-                .filter(x -> ApiType.getAPITypeFromLink(this.exampleName).name().toLowerCase().contains(x.Name.toLowerCase()))
+                .filter(x -> ApiType.giveTypeByName(this.exampleName).name().toLowerCase().contains(x.Name.toLowerCase()))
                 .findFirst()
                 .orElse(null).Groups;
 

src/main/java/com/docusign/core/model/ApiType.java

@@ -1,36 +1,39 @@
 package com.docusign.core.model;
 
+import java.util.Arrays;
+
 public enum ApiType {
-    ESIGNATURE("eSignature API", new String[]{"signature"}),
-    ROOMS("Rooms API", new String[]{"signature", "dtr.rooms.read", "dtr.rooms.write", "dtr.documents.read", "dtr.documents.write", "dtr.profile.read", "dtr.profile.write", "dtr.company.read", "dtr.company.write", "room_forms"}),
-    CLICK("Click API", new String[] {"click.manage", "click.send"}),
-    MONITOR("Monitor API", new String[] {"signature", "impersonation"}),
-    ADMIN("Admin API",  new String[] {"user_write", "signature", "impersonation", "group_read", "organization_read", "permission_read", "user_read", "account_read", "domain_read", "identity_provider_read", "user_data_redact", "asset_group_account_read", "asset_group_account_clone_write", "asset_group_account_clone_read"});
+    ESIGNATURE("eSignature API", new String[]{"signature"}, "eg"),
+    ROOMS("Rooms API", new String[]{"signature", "dtr.rooms.read", "dtr.rooms.write", "dtr.documents.read", "dtr.documents.write", "dtr.profile.read", "dtr.profile.write", "dtr.company.read", "dtr.company.write", "room_forms"}, "r"),
+    CONNECT("Connect", new String[] {}, "con"),
+    CLICK("Click API", new String[] {"click.manage", "click.send"}, "c"),
+    MONITOR("Monitor API", new String[] {"signature", "impersonation"}, "m"),
+    ADMIN("Admin API",  new String[] {"user_write", "signature", "impersonation", "group_read", "organization_read", "permission_read", "user_read", "account_read", "domain_read", "identity_provider_read", "user_data_redact", "asset_group_account_read", "asset_group_account_clone_write", "asset_group_account_clone_read"}, "a");
 
     final String value;
 
     final String[] scopes;
 
-    ApiType(String value, String[] scopes) {
+    final String codeName;
+
+    ApiType(String value, String[] scopes, String codeName) {
         this.value = value;
         this.scopes = scopes;
+        this.codeName = codeName;
     }
 
-    public static ApiType getAPITypeFromLink(String exampleName) {
-        if (exampleName.contains("m")) {
-            return ApiType.MONITOR;
-        } else if (exampleName.contains("a")) {
-            return ApiType.ADMIN;
-        } else if (exampleName.contains("c")) {
-            return ApiType.CLICK;
-        } else if (exampleName.contains("r")) {
-            return ApiType.ROOMS;
-        }
-
-        return ApiType.ESIGNATURE;
+    public static ApiType giveTypeByName(String exampleName) {
+        return Arrays.stream(ApiType.values())
+            .filter(x -> exampleName.contains(x.getCodeName()))
+            .findFirst()
+            .get();
     }
 
     public String[] getScopes() {
         return scopes;
     }
+
+    public String getCodeName() {
+        return codeName;
+    }
 }