[openhab-addons.git] /

/**
 * Copyright (c) 2010-2024 Contributors to the openHAB project
 *
 * See the NOTICE file(s) distributed with this work for additional
 * information.
 *
 * This program and the accompanying materials are made available under the
 * terms of the Eclipse Public License 2.0 which is available at
 * http://www.eclipse.org/legal/epl-2.0
 *
 * SPDX-License-Identifier: EPL-2.0
 */
package org.openhab.binding.mercedesme.internal.server;

import java.io.IOException;
import java.util.HashMap;
import java.util.Map;
import java.util.Optional;

import org.eclipse.jdt.annotation.NonNullByDefault;
import org.eclipse.jetty.client.HttpClient;
import org.eclipse.jetty.server.Connector;
import org.eclipse.jetty.server.Server;
import org.eclipse.jetty.server.ServerConnector;
import org.eclipse.jetty.servlet.ServletHandler;
import org.openhab.binding.mercedesme.internal.Constants;
import org.openhab.binding.mercedesme.internal.config.AccountConfiguration;
import org.openhab.core.auth.client.oauth2.AccessTokenRefreshListener;
import org.openhab.core.auth.client.oauth2.AccessTokenResponse;
import org.openhab.core.auth.client.oauth2.OAuthClientService;
import org.openhab.core.auth.client.oauth2.OAuthException;
import org.openhab.core.auth.client.oauth2.OAuthFactory;
import org.openhab.core.auth.client.oauth2.OAuthResponseException;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

/**
 * The {@link CallbackServer} class defines an HTTP Server for authentication callbacks
 *
 * @author Bernd Weymann - Initial contribution
 */
@NonNullByDefault
public class CallbackServer {
    private static final Logger LOGGER = LoggerFactory.getLogger(CallbackServer.class);
    private static final Map<Integer, OAuthClientService> AUTH_MAP = new HashMap<Integer, OAuthClientService>();
    private static final Map<Integer, CallbackServer> SERVER_MAP = new HashMap<Integer, CallbackServer>();
    private static final AccessTokenResponse INVALID_ACCESS_TOKEN = new AccessTokenResponse();

    private final OAuthFactory oAuthFactory;

    private Optional<Server> server = Optional.empty();
    private AccessTokenRefreshListener listener;
    private AccountConfiguration config;
    private OAuthClientService oacs;
    private String callbackUrl;

    public CallbackServer(AccessTokenRefreshListener l, HttpClient hc, OAuthFactory oAuthFactory,
            AccountConfiguration config, String callbackUrl) {
        this.oAuthFactory = oAuthFactory;
        oacs = oAuthFactory.createOAuthClientService(config.clientId, Constants.MB_TOKEN_URL, Constants.MB_AUTH_URL,
                config.clientId, config.clientSecret, config.getScope(), false);
        listener = l;
        AUTH_MAP.put(Integer.valueOf(config.callbackPort), oacs);
        SERVER_MAP.put(Integer.valueOf(config.callbackPort), this);
        this.config = config;
        this.callbackUrl = callbackUrl;
        INVALID_ACCESS_TOKEN.setAccessToken(Constants.EMPTY);
    }

    public void dispose() {
        oAuthFactory.ungetOAuthService(config.clientId);
        AUTH_MAP.remove(Integer.valueOf(config.callbackPort));
        SERVER_MAP.remove(Integer.valueOf(config.callbackPort));
    }

    public void deleteOAuthServiceAndAccessToken() {
        oAuthFactory.deleteServiceAndAccessToken(config.clientId);
    }

    public String getAuthorizationUrl() {
        try {
            return oacs.getAuthorizationUrl(callbackUrl, null, null);
        } catch (OAuthException e) {
            LOGGER.warn("Error creating Authorization URL {}", e.getMessage());
            return Constants.EMPTY;
        }
    }

    public String getScope() {
        return config.getScope();
    }

    public boolean start() {
        LOGGER.debug("Start Callback Server for port {}", config.callbackPort);
        if (server.isPresent()) {
            LOGGER.debug("Callback server for port {} already started", config.callbackPort);
            return true;
        }
        server = Optional.of(new Server());
        ServerConnector connector = new ServerConnector(server.get());
        connector.setPort(config.callbackPort);
        server.get().setConnectors(new Connector[] { connector });
        ServletHandler servletHandler = new ServletHandler();
        server.get().setHandler(servletHandler);
        servletHandler.addServletWithMapping(CallbackServlet.class, Constants.CALLBACK_ENDPOINT);
        try {
            server.get().start();
        } catch (Exception e) {
            LOGGER.warn("Cannot start Callback Server for port {}, Error {}", config.callbackPort, e.getMessage());
            return false;
        }
        return true;
    }

    public void stop() {
        LOGGER.debug("Stop Callback Server");
        try {
            if (server.isPresent()) {
                server.get().stop();
                server = Optional.empty();
            }
        } catch (Exception e) {
            LOGGER.warn("Cannot start Callback Server for port {}, Error {}", config.callbackPort, e.getMessage());
        }
    }

    public String getToken() {
        AccessTokenResponse atr = null;
        try {
            /*
             * this will automatically trigger
             * - return last stored token if it's still valid
             * - refreshToken if current token is expired
             * - inform listeners if refresh delivered new token
             * - store new token in persistence
             */
            atr = oacs.getAccessTokenResponse();
        } catch (OAuthException | IOException | OAuthResponseException e) {
            LOGGER.warn("Exception getting token {}", e.getMessage());
        }
        if (atr == null) {
            LOGGER.debug("Token empty - Manual Authorization needed at {}", callbackUrl);
            listener.onAccessTokenResponse(INVALID_ACCESS_TOKEN);
            return INVALID_ACCESS_TOKEN.getAccessToken();
        }
        listener.onAccessTokenResponse(atr);
        return atr.getAccessToken();
    }

    /**
     * Static callback for Servlet calls
     *
     * @param port
     * @param code
     */
    public static void callback(int port, String code) {
        LOGGER.trace("Callback from Servlet {} {}", port, code);
        try {
            OAuthClientService oacs = AUTH_MAP.get(port);
            LOGGER.trace("Get token from code {}", code);
            // get CallbackServer instance
            CallbackServer srv = SERVER_MAP.get(port);
            LOGGER.trace("Deliver token to {}", srv);
            if (srv != null && oacs != null) {
                // token stored and persisted inside oacs
                AccessTokenResponse atr = oacs.getAccessTokenResponseByAuthorizationCode(code, srv.callbackUrl);
                // inform listener - not done by oacs
                srv.listener.onAccessTokenResponse(atr);
            } else {
                LOGGER.warn("Either Callbackserver  {} or Authorization Service {} not found", srv, oacs);
            }
        } catch (OAuthException | IOException | OAuthResponseException e) {
            LOGGER.warn("Exception getting token from code {} {}", code, e.getMessage());
        }
    }

    public static String getAuthorizationUrl(int port) {
        CallbackServer srv = SERVER_MAP.get(port);
        if (srv != null) {
            return srv.getAuthorizationUrl();
        } else {
            LOGGER.debug("No Callbackserver found for {}", port);
            return Constants.EMPTY;
        }
    }

    public static String getScope(int port) {
        CallbackServer srv = SERVER_MAP.get(port);
        if (srv != null) {
            return srv.getScope();
        } else {
            LOGGER.debug("No Callbackserver found for {}", port);
            return Constants.EMPTY;
        }
    }
}