feat: add api call to liferay

lgdd · lgdd · commit 5b125c1c2ea1 · 2025-03-06T02:23:17.000+01:00
diff --git a/sample-etc-bun/client-extension.yaml b/sample-etc-bun/client-extension.yaml
@@ -3,7 +3,7 @@ sample-etc-bun-oauth-application-user-agent:
   .serviceScheme: http
   name: Sample Etc Bun OAuth Application User Agent
   scopes:
-    - Liferay.Headless.Admin.User.read
+    - Liferay.Headless.Admin.User.everything.read
   type: oAuthApplicationUserAgent
 sample-etc-bun-object-action-1:
   name: Sample Etc Golang Object Action 1
diff --git a/sample-etc-bun/src/index.ts b/sample-etc-bun/src/index.ts
@@ -3,7 +3,7 @@ import {log} from "./log.ts";
 import {type JSONWebKeySet, type JWK, type JWTPayload, jwtVerify} from "jose";
 import {getConfigMap} from "./config.ts";
 
-const configMap  = await getConfigMap()
+const configMap = await getConfigMap()
 const externalReferenceCode = configMap.get("liferay.oauth.application.external.reference.codes")?.split(",")[0]
 const liferayHost = `${configMap.get("com.liferay.lxc.dxp.server.protocol")}://${configMap.get("com.liferay.lxc.dxp.mainDomain")}`
 
@@ -13,37 +13,73 @@ const AuthError = (message: string) => {
   return error;
 }
 
-const validateJWT = async (req: Request) => {
+const getJWT = async (req: Request) => {
   const authorization = req.headers.get("Authorization")
+
   if (authorization == null) {
     throw AuthError("Authorization header is missing")
   }
+
   if (!authorization.startsWith("Bearer")) {
     throw AuthError("Bearer token is missing")
   }
-  const jwt = authorization.slice("Bearer ".length)
+
+  return authorization.slice("Bearer ".length)
+}
+
+const validateJWT = async (jwt: string) => {
   const response = await fetch(`${liferayHost}/o/oauth2/jwks`)
   const jwks: JSONWebKeySet = await response.json()
   const jwk: JWK = jwks.keys[0]
-  const { payload } = await jwtVerify(jwt, jwk)
+  const {payload} = await jwtVerify(jwt, jwk)
   log.info(`Decoded JWT: ${JSON.stringify(payload)}`)
   return payload
 }
+
 const validateClientId = async (req: Request, decodedToken: JWTPayload) => {
   const response = await fetch(`${liferayHost}/o/oauth2/application?externalReferenceCode=${externalReferenceCode}`)
   const jsonResponse = await response.json()
   const clientId = jsonResponse["client_id"]
-  if(clientId !== decodedToken["client_id"]) {
+  if (clientId !== decodedToken["client_id"]) {
     throw AuthError("Client id from token and OAuth application don't match")
   }
 }
 
 const objectAction1 = async (req: Request) => {
-  const decodedToken = await validateJWT(req)
+  const jwt = await getJWT(req)
+  const decodedToken = await validateJWT(jwt)
   await validateClientId(req, decodedToken)
 
-  const objectEntry = await req.json()
-  log.info(JSON.stringify(objectEntry))
+  const data = await req.json()
+  log.info(JSON.stringify(data))
+
+  const authorUserId = data.objectEntry.userId
+
+  const authorUserInfoURL = `${liferayHost}/o/headless-admin-user/v1.0/user-accounts/${authorUserId}`
+  const headers = new Headers();
+  headers.set('Authorization', `Bearer ${jwt}`);
+  headers.set('Content-Type', 'application/json');
+
+  const requestOptions = {
+    method: 'GET',
+    headers: headers
+  };
+
+  log.info(`Fetching author user information at ${authorUserInfoURL}`)
+  const userInfoResponse = await fetch(`${authorUserInfoURL}`, requestOptions)
+
+  if (userInfoResponse.status / 100 != 2) {
+    const errorMessage = `Could not fetch author user information: ${userInfoResponse.status} error`
+    log.error(errorMessage)
+    return new Response('', {
+      status: 500,
+      statusText: errorMessage
+    })
+  }
+
+  const authorUserInfo = await userInfoResponse.json()
+
+  log.info(JSON.stringify(authorUserInfo));
 
   return new Response('', {
     status: 202
diff --git a/sample-etc-golang/client-extension.yaml b/sample-etc-golang/client-extension.yaml
@@ -3,7 +3,7 @@ sample-etc-golang-oauth-application-user-agent:
   .serviceScheme: http
   name: Sample Etc Golang OAuth Application User Agent
   scopes:
-    - Liferay.Headless.Admin.User.read
+    - Liferay.Headless.Admin.User.everything.read
   type: oAuthApplicationUserAgent
 sample-etc-golang-object-action-1:
   name: Sample Etc Golang Object Action 1
diff --git a/sample-etc-golang/main.go b/sample-etc-golang/main.go
@@ -222,10 +222,33 @@ func validateClientId(token jwt.Token) error {
 	return errors.New("client id from token and oauth application don't match")
 }
 
+func getJWT(r *http.Request) (string, error) {
+	authHeader := r.Header.Get("Authorization")
+
+	if authHeader == "" {
+		errorMessage := "authorization header is missing"
+		slog.Error(errorMessage)
+		return "", errors.New(errorMessage)
+	}
+
+	tokenString := strings.Split(authHeader, "Bearer ")[1]
+
+	if tokenString == "" {
+		errorMessage := "bearer token is missing"
+		slog.Error(errorMessage)
+		return "", errors.New(errorMessage)
+	}
+	return tokenString, nil
+}
+
 func jwtHandler(next http.Handler) http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		authHeader := r.Header.Get("Authorization")
-		tokenString := strings.Split(authHeader, "Bearer ")[1]
+		tokenString, error := getJWT(r)
+
+		if error != nil {
+			http.Error(w, error.Error(), 401)
+			return
+		}
 
 		token, err := validateJWT(tokenString)
 
@@ -243,6 +266,70 @@ func jwtHandler(next http.Handler) http.Handler {
 	})
 }
 
+func getBodyByteArray(body io.ReadCloser) ([]byte, error) {
+	var data interface{}
+	err := json.NewDecoder(body).Decode(&data)
+
+	if err != nil {
+		return nil, err
+	}
+
+	dataByteArray, err := json.MarshalIndent(data, "", "\t")
+
+	if err != nil {
+		return nil, err
+	}
+
+	return dataByteArray, nil
+}
+
+func fetchAuthorUserInfo(token, userId string) (string, error) {
+	var authorUserInfoURLBuilder strings.Builder
+
+	protocol := Config["com.liferay.lxc.dxp.server.protocol"]
+	host := Config["com.liferay.lxc.dxp.mainDomain"]
+
+	authorUserInfoURLBuilder.WriteString(protocol)
+	authorUserInfoURLBuilder.WriteString("://")
+	authorUserInfoURLBuilder.WriteString(host)
+	authorUserInfoURLBuilder.WriteString("/o/headless-admin-user/v1.0/user-accounts/")
+	authorUserInfoURLBuilder.WriteString(userId)
+
+	httpClient := &http.Client{}
+	request, err := http.NewRequest("GET", authorUserInfoURLBuilder.String(), nil)
+
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	auth := strings.Join([]string{"Bearer", token}, " ")
+
+	request.Header.Add("Authorization", auth)
+	request.Header.Add("Content-Type", "application/json")
+
+	slog.Info(fmt.Sprintf("Fetching author user information from %s", authorUserInfoURLBuilder.String()))
+
+	response, err := httpClient.Do(request)
+
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	defer response.Body.Close()
+
+	if response.StatusCode/100 != 2 {
+		return "", errors.New(fmt.Sprintf("could not fetch author user information: %v error", response.StatusCode))
+	}
+
+	dataByteArray, err := getBodyByteArray(response.Body)
+
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	return string(dataByteArray), nil
+}
+
 func main() {
 	err := initConfig()
 
@@ -275,21 +362,34 @@ func main() {
 	objectAction1Handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 		slog.Info("execute /object/action/1")
 
-		var objectEntry interface{}
-		err := json.NewDecoder(r.Body).Decode(&objectEntry)
+		token, _ := getJWT(r)
+
+		dataByteArray, err := getBodyByteArray(r.Body)
+
+		slog.Info(string(dataByteArray))
 
 		if err != nil {
 			log.Fatal(err)
 		}
 
-		objectEntryJsonBytes, err := json.MarshalIndent(objectEntry, "", "\t")
+		data := make(map[string]any)
+
+		err = json.Unmarshal(dataByteArray, &data)
 
 		if err != nil {
-			log.Fatal(err)
+			slog.Error(err.Error())
+		}
+
+		objectEntry := data["objectEntry"].(map[string]any)
+		authorUserId := objectEntry["userId"]
+
+		authorUserInfo, err := fetchAuthorUserInfo(token, fmt.Sprintf("%#v", authorUserId))
+
+		if err != nil {
+			slog.Error(err.Error())
 		}
 
-		objectEntryJsonString := string(objectEntryJsonBytes)
-		slog.Info(objectEntryJsonString)
+		slog.Info(authorUserInfo)
 	})
 
 	http.Handle("/", homeHandler)
diff --git a/sample-etc-java-quarkus/client-extension.yaml b/sample-etc-java-quarkus/client-extension.yaml
@@ -3,7 +3,7 @@ sample-etc-java-quarkus-oauth-application-user-agent:
   .serviceScheme: http
   name: Sample Etc Java Quarkus OAuth Application User Agent
   scopes:
-    - Liferay.Headless.Admin.User.read
+    - Liferay.Headless.Admin.User.everything.read
   type: oAuthApplicationUserAgent
 sample-etc-java-quarkus-object-action-1:
   name: Sample Etc Java Quarkus Object Action 1
diff --git a/sample-etc-java-quarkus/src/main/java/org/acme/liferay/client/extension/quarkus/sample/ObjectAction1.java b/sample-etc-java-quarkus/src/main/java/org/acme/liferay/client/extension/quarkus/sample/ObjectAction1.java
@@ -1,22 +1,58 @@
 package org.acme.liferay.client.extension.quarkus.sample;
 
+import jakarta.json.Json;
+import jakarta.json.JsonObject;
 import jakarta.ws.rs.POST;
 import jakarta.ws.rs.Path;
+import jakarta.ws.rs.client.Client;
+import jakarta.ws.rs.client.ClientBuilder;
+import jakarta.ws.rs.core.MediaType;
 import jakarta.ws.rs.core.Response;
+import jakarta.ws.rs.core.Response.Status;
+import java.net.URI;
+import org.eclipse.microprofile.config.inject.ConfigProperty;
+import org.jboss.resteasy.reactive.RestHeader;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
 @Path("/object/action/1")
 public class ObjectAction1 {
 
   @POST
-  public Response objectAction1(String objectEntryString) {
-    if(_log.isInfoEnabled()) {
-      _log.info("Object Entry: {}", objectEntryString);
+  public Response objectAction1(@RestHeader("Authorization") String authorization,
+      JsonObject objectEntry) {
+
+    URI authorUserInfoURI = URI.create(
+        liferayProtocol + "://" + liferayDomain
+            + "/o/headless-admin-user/v1.0/user-accounts/"
+            + objectEntry.getJsonObject("objectEntry").getInt("userId")
+    );
+
+    if (_log.isInfoEnabled()) {
+      _log.info("Object Entry: {}", objectEntry.toString());
+      _log.info("Fetching author user info from {}", authorUserInfoURI);
+    }
+
+    try (Client client = ClientBuilder.newClient()) {
+      JsonObject response = client.target(authorUserInfoURI)
+          .request(MediaType.APPLICATION_JSON_TYPE)
+          .header("Authorization", authorization)
+          .get(JsonObject.class);
+
+      if (_log.isInfoEnabled()) {
+        _log.info(response.toString());
+      }
     }
+
     return Response.accepted().build();
   }
 
+  @ConfigProperty(name = "com.liferay.lxc.dxp.mainDomain")
+  String liferayDomain;
+
+  @ConfigProperty(name = "com.liferay.lxc.dxp.server.protocol")
+  String liferayProtocol;
+
   private static final Logger _log = LoggerFactory.getLogger(ObjectAction1.class);
 
 }
diff --git a/sample-etc-java-vertx/client-extension.yaml b/sample-etc-java-vertx/client-extension.yaml
@@ -3,7 +3,7 @@ sample-etc-java-vertx-oauth-application-user-agent:
   .serviceScheme: http
   name: Sample Etc Java Vert.x OAuth Application User Agent
   scopes:
-    - Liferay.Headless.Admin.User.read
+    - Liferay.Headless.Admin.User.everything.read
   type: oAuthApplicationUserAgent
 sample-etc-java-vertx-object-action-1:
   name: Sample Etc Java Vert.x Object Action 1
diff --git a/sample-etc-java-vertx/src/main/java/org/acme/liferay/client/extension/vertx/sample/MainVerticle.java b/sample-etc-java-vertx/src/main/java/org/acme/liferay/client/extension/vertx/sample/MainVerticle.java
@@ -33,7 +33,7 @@ public void start(Promise<Void> startPromise) throws Exception {
     _configMap = getConfigMap();
 
     JWTHandler jwtHandler = new JWTHandler(vertx, webClient, _configMap);
-    ObjectAction1Handler objectAction1Handler = new ObjectAction1Handler();
+    ObjectAction1Handler objectAction1Handler = new ObjectAction1Handler(vertx, webClient, _configMap);
 
     router.route().handler(BodyHandler.create());
 
diff --git a/sample-etc-java-vertx/src/main/java/org/acme/liferay/client/extension/vertx/sample/handler/BaseHandler.java b/sample-etc-java-vertx/src/main/java/org/acme/liferay/client/extension/vertx/sample/handler/BaseHandler.java
@@ -0,0 +1,20 @@
+package org.acme.liferay.client.extension.vertx.sample.handler;
+
+import io.vertx.core.Handler;
+import io.vertx.core.Vertx;
+import io.vertx.ext.web.RoutingContext;
+import io.vertx.ext.web.client.WebClient;
+import java.util.Map;
+
+public abstract class BaseHandler implements Handler<RoutingContext> {
+
+  public BaseHandler(Vertx vertx, WebClient webClient, Map<String, String> configMap) {
+    _vertx = vertx;
+    _webClient = webClient;
+    _configMap = configMap;
+  }
+
+  protected final Map<String, String> _configMap;
+  protected final WebClient _webClient;
+  protected final Vertx _vertx;
+}
diff --git a/sample-etc-java-vertx/src/main/java/org/acme/liferay/client/extension/vertx/sample/handler/JWTHandler.java b/sample-etc-java-vertx/src/main/java/org/acme/liferay/client/extension/vertx/sample/handler/JWTHandler.java
@@ -1,6 +1,5 @@
 package org.acme.liferay.client.extension.vertx.sample.handler;
 
-import io.vertx.core.Handler;
 import io.vertx.core.Vertx;
 import io.vertx.core.impl.logging.Logger;
 import io.vertx.core.impl.logging.LoggerFactory;
@@ -12,12 +11,10 @@
 import java.util.List;
 import java.util.Map;
 
-public class JWTHandler implements Handler<RoutingContext> {
+public class JWTHandler extends BaseHandler {
 
   public JWTHandler(Vertx vertx, WebClient webClient, Map<String, String> configMap) {
-    this._webClient = webClient;
-    this._configMap = configMap;
-    this._vertx = vertx;
+    super(vertx, webClient, configMap);
   }
 
   @Override
@@ -107,9 +104,5 @@ private void validateClientId(RoutingContext ctx, String tokenClientId) {
         });
   }
 
-  private final Map<String, String> _configMap;
-  private final WebClient _webClient;
-  private final Vertx _vertx;
-
   private static final Logger _log = LoggerFactory.getLogger(JWTHandler.class);
 }
diff --git a/sample-etc-java-vertx/src/main/java/org/acme/liferay/client/extension/vertx/sample/handler/ObjectAction1Handler.java b/sample-etc-java-vertx/src/main/java/org/acme/liferay/client/extension/vertx/sample/handler/ObjectAction1Handler.java
diff --git a/sample-etc-python-fastapi/client-extension.yaml b/sample-etc-python-fastapi/client-extension.yaml
diff --git a/sample-etc-python-fastapi/main.py b/sample-etc-python-fastapi/main.py
