Add SettingsBuilder.fromValues for KeyStore settings

Author: Chandra158

core/src/main/java/com/onelogin/saml2/model/KeyStoreSettings.java

@@ -0,0 +1,65 @@
+package com.onelogin.saml2.model;
+
+import java.security.KeyStore;
+
+/**
+ * KeyStore class of OneLogin's Java Toolkit.
+ *
+ * A class that stores KeyStore details for Certificates and Private Key
+ */
+public class KeyStoreSettings {
+    /**
+     * KeyStore which stores certificates and key
+     */
+    private final KeyStore keyStore;
+
+    /**
+     * Alias for SP key entry
+     */
+    private final String spAlias;
+
+    /**
+     * Password for KeyStore
+     */
+    private final String storePass;
+
+    /**
+     * Constructor
+     *
+     * @param keyStore
+     *            stores certificates and key
+     * 
+     * @param spAlias
+     *            Alias for SP key entry
+     *
+     * @param storePass
+     *            password to access KeyStore
+     */
+    public KeyStoreSettings(KeyStore keyStore, String spAlias, String storePass) {
+        this.keyStore = keyStore;
+        this.spAlias = spAlias;
+        this.storePass = storePass;
+    }
+
+    /**
+     * @return the keyStore
+     */
+    public final KeyStore getKeyStore() {
+        return keyStore;
+    }
+
+    /**
+     * @return the spAlias
+     */
+    public final String getSpAlias() {
+        return spAlias;
+    }
+
+    /**
+     * @return the storePass
+     */
+    public final String getStorePass() {
+        return storePass;
+    }
+
+}

core/src/main/java/com/onelogin/saml2/settings/SettingsBuilder.java

@@ -27,6 +27,7 @@
 
 import com.onelogin.saml2.exception.Error;
 import com.onelogin.saml2.model.Contact;
+import com.onelogin.saml2.model.KeyStoreSettings;
 import com.onelogin.saml2.model.Organization;
 import com.onelogin.saml2.util.Util;
 
@@ -128,7 +129,7 @@ public class SettingsBuilder {
 	 * @throws Error
 	 */
 	public SettingsBuilder fromFile(String propFileName) throws Error {
-		return fromFile(propFileName, null, null, null);
+		return fromFile(propFileName, null);
 	}
 
 	/**
@@ -144,7 +145,7 @@ public SettingsBuilder fromFile(String propFileName) throws Error {
 	 * @throws IOException
 	 * @throws Error
 	 */
-	public SettingsBuilder fromFile(String propFileName, KeyStore ks, String alias, String password) throws Error {
+	public SettingsBuilder fromFile(String propFileName, KeyStoreSettings keyStoreSetting) throws Error {
 
 		ClassLoader classLoader = getClass().getClassLoader();
 		try (InputStream inputStream = classLoader.getResourceAsStream(propFileName)) {
@@ -164,8 +165,8 @@ public SettingsBuilder fromFile(String propFileName, KeyStore ks, String alias,
 			throw new Error(errorMsg, Error.SETTINGS_FILE_NOT_FOUND);
 		}
 		// Parse KeyStore and set the properties for SP Cert and Key
-		if (ks != null && StringUtils.isNotBlank(alias) && StringUtils.isNotBlank(password)) {
-			parseKeyStore(ks, alias, password);
+		if (keyStoreSetting != null) {
+			parseKeyStore(keyStoreSetting);
 		}
 
 		return this;
@@ -193,8 +194,24 @@ public SettingsBuilder fromProperties(Properties prop) {
 	 *         object
 	 */
 	public SettingsBuilder fromValues(Map<String, Object> samlData) {
+	    return this.fromValues(samlData, null);
+	}
+
+	/**
+	 * Loads the settings from mapped values and KeyStore settings.
+	 *
+	 * @param samlData Mapped values.
+	 * @param keyStoreSetting KeyStore model
+	 *
+	 * @return the SettingsBuilder object with the settings loaded from the prop
+	 *         object
+	 */
+	public SettingsBuilder fromValues(Map<String, Object> samlData, KeyStoreSettings keyStoreSetting) {
 		if (samlData != null) {
-			this.samlData.putAll(samlData);
+		    this.samlData.putAll(samlData);
+		}
+		if (keyStoreSetting != null) {
+		    parseKeyStore(keyStoreSetting);
 		}
 		return this;
 	}
@@ -762,11 +779,11 @@ private void parseProperties(Properties properties) {
 		}
 	}
 
-	private void parseKeyStore(KeyStore keyStore, String alias, String password) {
-		this.samlData.put(KEYSTORE_KEY, keyStore);
-		this.samlData.put(KEYSTORE_ALIAS, alias);
-		this.samlData.put(KEYSTORE_PASSWORD, password);
-	}
+    private void parseKeyStore(KeyStoreSettings setting) {
+		this.samlData.put(KEYSTORE_KEY, setting.getKeyStore());
+		this.samlData.put(KEYSTORE_ALIAS, setting.getSpAlias());
+		this.samlData.put(KEYSTORE_PASSWORD, setting.getStorePass());
+    }
 
 	private boolean isString(Object propValue) {
 		return propValue instanceof String && StringUtils.isNotBlank((String) propValue);

core/src/test/java/com/onelogin/saml2/test/settings/SettingBuilderTest.java

@@ -1,21 +1,22 @@
 package com.onelogin.saml2.test.settings;
 
 import static com.onelogin.saml2.settings.SettingsBuilder.*;
-
 import static org.junit.Assert.assertEquals;
 import static org.junit.Assert.assertFalse;
 import static org.junit.Assert.assertNotNull;
 import static org.junit.Assert.assertNull;
 import static org.junit.Assert.assertTrue;
 
 import java.io.FileInputStream;
+import java.io.FileNotFoundException;
 import java.io.IOException;
 import java.net.URISyntaxException;
 import java.net.URL;
 import java.security.Key;
 import java.security.KeyStore;
 import java.security.KeyStoreException;
 import java.security.NoSuchAlgorithmException;
+import java.security.PrivateKey;
 import java.security.cert.CertificateException;
 import java.security.cert.X509Certificate;
 import java.util.ArrayList;
@@ -33,6 +34,7 @@
 import com.onelogin.saml2.exception.Error;
 import com.onelogin.saml2.exception.SettingsException;
 import com.onelogin.saml2.model.Contact;
+import com.onelogin.saml2.model.KeyStoreSettings;
 import com.onelogin.saml2.model.Organization;
 import com.onelogin.saml2.settings.Saml2Settings;
 import com.onelogin.saml2.settings.SettingsBuilder;
@@ -65,6 +67,26 @@ public void testLoadFromFileNotExist() throws IOException, SettingsException, Er
 		new SettingsBuilder().fromFile("config/config.notfound.properties").build();
 	}
 
+    /**
+     * Returns KeyStore details from src/test/resources for testing
+     *
+     * @return
+     * @throws KeyStoreException
+     * @throws NoSuchAlgorithmException
+     * @throws CertificateException
+     * @throws FileNotFoundException
+     * @throws IOException
+     */
+    private KeyStoreSettings getKeyStoreSettings() throws KeyStoreException, NoSuchAlgorithmException, CertificateException, FileNotFoundException, IOException {
+        String password = "changeit";
+        String keyStoreFile = "src/test/resources/keystore/oneloginTestKeystore.jks";
+        String alias = "onelogintest";
+
+        KeyStore ks = KeyStore.getInstance("JKS");
+        ks.load(new FileInputStream(keyStoreFile), password.toCharArray());
+        return new KeyStoreSettings(ks, alias, password);
+    }
+
 	/**
 	 * Tests SettingsBuilder fromFile method
 	 * Case: Config file with KeyStore
@@ -81,15 +103,8 @@ public void testLoadFromFileNotExist() throws IOException, SettingsException, Er
 	 */
 	@Test
 	public void testLoadFromFileAndKeyStore() throws IOException, CertificateException, URISyntaxException, SettingsException, Error, KeyStoreException, NoSuchAlgorithmException {
+		Saml2Settings setting = new SettingsBuilder().fromFile("config/config.empty.properties", getKeyStoreSettings()).build();
 
-		String password = "changeit";
-        String keyStoreFile = "src/test/resources/keystore/oneloginTestKeystore.jks";
-        String alias = "onelogintest";
-        
-        KeyStore ks = KeyStore.getInstance("JKS");
-        ks.load(new FileInputStream(keyStoreFile), password.toCharArray());
-        
-		Saml2Settings setting = new SettingsBuilder().fromFile("config/config.empty.properties", ks, alias, password).build();
 		assertNotNull(setting.getSPcert() instanceof X509Certificate);
 		assertNotNull(setting.getSPkey() instanceof Key);
 	}
@@ -781,6 +796,23 @@ public void testLoadFromValues() throws Exception {
 		assertEquals("Support Guy", c2.getGivenName());
 
 		assertEquals("_", setting.getUniqueIDPrefix());
+
+		// Test with samlData and KeyStoreSettings
+		X509Certificate previousCert = setting.getSPcert();
+		PrivateKey previousKey = setting.getSPkey();
+
+		samlData.remove(SP_X509CERT_PROPERTY_KEY);
+		samlData.remove(SP_PRIVATEKEY_PROPERTY_KEY);
+		setting = new SettingsBuilder().fromValues(samlData, getKeyStoreSettings()).build();
+
+		X509Certificate newCert = setting.getSPcert();
+		PrivateKey newKey = setting.getSPkey();
+
+		assertNotNull(newCert);
+		assertNotNull(newKey);
+		assertFalse(previousCert.equals(newCert));
+		assertFalse(previousKey.equals(newKey));
+		
 	}
 
 	/**

toolkit/src/main/java/com/onelogin/saml2/Auth.java

@@ -30,6 +30,7 @@
 import com.onelogin.saml2.http.HttpRequest;
 import com.onelogin.saml2.logout.LogoutRequest;
 import com.onelogin.saml2.logout.LogoutResponse;
+import com.onelogin.saml2.model.KeyStoreSettings;
 import com.onelogin.saml2.servlet.ServletUtils;
 import com.onelogin.saml2.settings.Saml2Settings;
 import com.onelogin.saml2.settings.SettingsBuilder;
@@ -185,9 +186,9 @@ public Auth(String filename) throws IOException, SettingsException, Error {
 	 * @throws SettingsException
 	 * @throws Error
 	 */
-	public Auth(String filename, KeyStore ks, String alias, String password)
+	public Auth(String filename, KeyStoreSettings keyStoreSetting)
 			throws IOException, SettingsException, Error {
-		this(new SettingsBuilder().fromFile(filename, ks, alias, password).build(), null, null);
+		this(new SettingsBuilder().fromFile(filename, keyStoreSetting).build(), null, null);
 	}
 
 	/**
@@ -217,9 +218,9 @@ public Auth(HttpServletRequest request, HttpServletResponse response) throws IOE
 	 * @throws SettingsException
 	 * @throws Error
 	 */
-	public Auth(KeyStore ks, String alias, String password, HttpServletRequest request, HttpServletResponse response)
+	public Auth(KeyStoreSettings keyStoreSetting, HttpServletRequest request, HttpServletResponse response)
 			throws IOException, SettingsException, Error {
-		this(new SettingsBuilder().fromFile("onelogin.saml.properties", ks, alias, password).build(), request,
+		this(new SettingsBuilder().fromFile("onelogin.saml.properties", keyStoreSetting).build(), request,
 				response);
 	}
 
@@ -236,7 +237,7 @@ public Auth(KeyStore ks, String alias, String password, HttpServletRequest reque
 	 */
 	public Auth(String filename, HttpServletRequest request, HttpServletResponse response)
 			throws SettingsException, IOException, Error {
-		this(filename, null, null, null, request, response);
+		this(filename, null, request, response);
 	}
 
 	/**
@@ -253,9 +254,9 @@ public Auth(String filename, HttpServletRequest request, HttpServletResponse res
 	 * @throws IOException
 	 * @throws Error
 	 */
-	public Auth(String filename, KeyStore ks, String alias, String password, HttpServletRequest request,
+	public Auth(String filename, KeyStoreSettings keyStoreSetting, HttpServletRequest request,
 			HttpServletResponse response) throws SettingsException, IOException, Error {
-		this(new SettingsBuilder().fromFile(filename, ks, alias, password).build(), request, response);
+		this(new SettingsBuilder().fromFile(filename, keyStoreSetting).build(), request, response);
 	}
 
 	/**