JCL-442: Add a quarkus integration module (#776)

Author: acoburn

bom/pom.xml

@@ -78,6 +78,11 @@
         <artifactId>inrupt-client-parser</artifactId>
         <version>${project.version}</version>
       </dependency>
+      <dependency>
+        <groupId>com.inrupt.client</groupId>
+        <artifactId>inrupt-client-quarkus</artifactId>
+        <version>${project.version}</version>
+      </dependency>
       <dependency>
         <groupId>com.inrupt.client</groupId>
         <artifactId>inrupt-client-rdf4j</artifactId>

pom.xml

@@ -33,6 +33,7 @@
     <jose4j.version>0.9.3</jose4j.version>
     <json.bind.version>3.0.0</json.bind.version>
     <okhttp.version>4.12.0</okhttp.version>
+    <quarkus.version>3.5.0</quarkus.version>
     <slf4j.version>2.0.9</slf4j.version>
     <spring.security.version>6.1.5</spring.security.version>
     <inrupt.commons.rdf4j.version>0.6.0</inrupt.commons.rdf4j.version>
@@ -105,6 +106,7 @@
     <module>okhttp</module>
     <module>openid</module>
     <module>parser</module>
+    <module>quarkus</module>
     <module>rdf4j</module>
     <module>rdf-legacy</module>
     <module>solid</module>

quarkus/pom.xml

@@ -0,0 +1,120 @@
+<?xml version="1.0"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd">
+  <modelVersion>4.0.0</modelVersion>
+  <parent>
+    <groupId>com.inrupt.client</groupId>
+    <artifactId>inrupt-client</artifactId>
+    <version>1.1.0-SNAPSHOT</version>
+  </parent>
+
+  <artifactId>inrupt-client-quarkus</artifactId>
+  <name>Inrupt Java Client Libraries - Quarkus integration</name>
+  <description>
+      Integration utilities for Quarkus support.
+  </description>
+
+  <properties>
+    <maven.compiler.target>11</maven.compiler.target>
+    <maven.compiler.source>11</maven.compiler.source>
+  </properties>
+
+  <dependencyManagement>
+    <dependencies>
+      <dependency>
+        <groupId>io.quarkus</groupId>
+        <artifactId>quarkus-bom</artifactId>
+        <version>${quarkus.version}</version>
+        <type>pom</type>
+        <scope>import</scope>
+      </dependency>
+    </dependencies>
+  </dependencyManagement>
+
+  <dependencies>
+    <dependency>
+      <groupId>com.inrupt.client</groupId>
+      <artifactId>inrupt-client-api</artifactId>
+      <version>${project.version}</version>
+    </dependency>
+    <dependency>
+      <groupId>com.inrupt.client</groupId>
+      <artifactId>inrupt-client-openid</artifactId>
+      <version>${project.version}</version>
+    </dependency>
+    <dependency>
+      <groupId>org.eclipse.microprofile.jwt</groupId>
+      <artifactId>microprofile-jwt-auth-api</artifactId>
+      <scope>provided</scope>
+    </dependency>
+
+    <!-- test dependencies -->
+    <dependency>
+      <groupId>com.inrupt.client</groupId>
+      <artifactId>inrupt-client-core</artifactId>
+      <version>${project.version}</version>
+      <scope>test</scope>
+    </dependency>
+    <dependency>
+      <groupId>org.junit.jupiter</groupId>
+      <artifactId>junit-jupiter-engine</artifactId>
+      <version>${junit.version}</version>
+      <scope>test</scope>
+    </dependency>
+    <dependency>
+      <groupId>org.junit.jupiter</groupId>
+      <artifactId>junit-jupiter-api</artifactId>
+      <version>${junit.version}</version>
+      <scope>test</scope>
+    </dependency>
+    <dependency>
+      <groupId>org.slf4j</groupId>
+      <artifactId>slf4j-simple</artifactId>
+      <version>${slf4j.version}</version>
+      <scope>test</scope>
+    </dependency>
+    <dependency>
+      <groupId>io.smallrye</groupId>
+      <artifactId>smallrye-jwt-build</artifactId>
+      <scope>test</scope>
+    </dependency>
+    <dependency>
+      <groupId>io.smallrye</groupId>
+      <artifactId>smallrye-jwt</artifactId>
+      <scope>test</scope>
+    </dependency>
+    <dependency>
+      <groupId>io.smallrye.config</groupId>
+      <artifactId>smallrye-config</artifactId>
+      <scope>test</scope>
+    </dependency>
+    <dependency>
+      <groupId>org.glassfish</groupId>
+      <artifactId>jakarta.json</artifactId>
+      <version>${glassfish.json.version}</version>
+      <scope>test</scope>
+    </dependency>
+  </dependencies>
+
+  <build>
+    <plugins>
+      <plugin>
+        <groupId>org.apache.maven.plugins</groupId>
+        <artifactId>maven-surefire-plugin</artifactId>
+        <configuration>
+          <systemPropertyVariables />
+        </configuration>
+      </plugin>
+      <plugin>
+        <groupId>org.apache.maven.plugins</groupId>
+        <artifactId>maven-failsafe-plugin</artifactId>
+        <configuration>
+          <systemPropertyVariables />
+        </configuration>
+      </plugin>
+      <plugin>
+        <groupId>org.jacoco</groupId>
+        <artifactId>jacoco-maven-plugin</artifactId>
+      </plugin>
+    </plugins>
+  </build>
+</project>

quarkus/src/main/java/com/inrupt/client/quarkus/SessionUtils.java

@@ -0,0 +1,60 @@
+/*
+ * Copyright Inrupt Inc.
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining a copy
+ * of this software and associated documentation files (the "Software"), to deal in
+ * the Software without restriction, including without limitation the rights to use,
+ * copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the
+ * Software, and to permit persons to whom the Software is furnished to do so,
+ * subject to the following conditions:
+ *
+ * The above copyright notice and this permission notice shall be included in
+ * all copies or substantial portions of the Software.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED,
+ * INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A
+ * PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
+ * HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+ * OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+ * SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+ */
+package com.inrupt.client.quarkus;
+
+import com.inrupt.client.auth.Session;
+import com.inrupt.client.openid.OpenIdSession;
+
+import java.util.Optional;
+import java.util.function.Function;
+
+import org.eclipse.microprofile.jwt.JsonWebToken;
+
+public final class SessionUtils {
+
+    /**
+     * Convert a Quarkus (Microprofile) {@link JsonWebToken} to a {@link Session} object.
+     *
+     * <p>This method uses the {@link OpenIdSession} library to create a Session
+     *
+     * @param jwt a JSON Web Token object
+     * @return the session, if present and unexpired
+     */
+    public static Optional<Session> asSession(final JsonWebToken jwt) {
+        return asSession(jwt, OpenIdSession::ofIdToken);
+    }
+
+    /**
+     * Convert a Quarkus (Microprofile) {@link JsonWebToken} to a {@link Session} object.
+     *
+     * @param jwt a JSON Web Token object
+     * @param mapping a mapping function for creating a Session from an ID token
+     * @return the session, if present and unexpired
+     */
+    public static Optional<Session> asSession(final JsonWebToken jwt, final Function<String, Session> mapping) {
+        return Optional.ofNullable(mapping.apply(jwt.getRawToken()));
+    }
+
+    private SessionUtils() {
+        // Prevent instantiation
+    }
+}
+

quarkus/src/test/java/com/inrupt/client/quarkus/SessionUtilsTest.java

@@ -0,0 +1,102 @@
+/*
+ * Copyright Inrupt Inc.
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining a copy
+ * of this software and associated documentation files (the "Software"), to deal in
+ * the Software without restriction, including without limitation the rights to use,
+ * copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the
+ * Software, and to permit persons to whom the Software is furnished to do so,
+ * subject to the following conditions:
+ *
+ * The above copyright notice and this permission notice shall be included in
+ * all copies or substantial portions of the Software.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED,
+ * INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A
+ * PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
+ * HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+ * OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+ * SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+ */
+package com.inrupt.client.quarkus;
+
+import static org.junit.jupiter.api.Assertions.*;
+
+import com.inrupt.client.auth.Session;
+import com.inrupt.client.openid.OpenIdSession;
+
+import io.smallrye.jwt.algorithm.SignatureAlgorithm;
+import io.smallrye.jwt.auth.principal.DefaultJWTParser;
+import io.smallrye.jwt.auth.principal.JWTAuthContextInfo;
+import io.smallrye.jwt.auth.principal.ParseException;
+import io.smallrye.jwt.build.Jwt;
+import io.smallrye.jwt.util.ResourceUtils;
+
+import java.io.IOException;
+import java.net.URI;
+import java.time.Instant;
+import java.util.Optional;
+
+import org.eclipse.microprofile.jwt.JsonWebToken;
+import org.jose4j.jwk.PublicJsonWebKey;
+import org.jose4j.lang.JoseException;
+import org.jose4j.lang.UncheckedJoseException;
+import org.junit.jupiter.api.Test;
+
+class SessionUtilsTest {
+
+    static final String WEBID = "https://example.com/user";
+    static final String ISSUER = "https://issuer.example";
+
+    @Test
+    void testSession() {
+        final var token = generateIdToken("user", ISSUER, WEBID);
+        final var session = SessionUtils.asSession(token, OpenIdSession::ofIdToken);
+        assertTrue(session.isPresent());
+        session.ifPresent(s ->
+            assertEquals(Optional.of(URI.create(WEBID)), s.getPrincipal()));
+    }
+
+    @Test
+    void testAnonymousSession() {
+        final var token = generateIdToken("user", ISSUER, WEBID);
+        final var session = SessionUtils.asSession(token, t -> Session.anonymous());
+        assertTrue(session.isPresent());
+        session.ifPresent(s ->
+            assertEquals(Optional.empty(), s.getPrincipal()));
+    }
+
+    @Test
+    void testSessionNoMapper() {
+        final var token = generateIdToken("user", ISSUER, WEBID);
+        final var session = SessionUtils.asSession(token);
+        assertTrue(session.isPresent());
+        session.ifPresent(s ->
+            assertEquals(Optional.of(URI.create(WEBID)), s.getPrincipal()));
+    }
+
+    static JsonWebToken generateIdToken(final String sub, final String issuer, final String webid) {
+        try {
+            final var jwk = PublicJsonWebKey.Factory
+                   .newPublicJwk(ResourceUtils.readResource("testKey.json"));
+
+            final var authContext = new JWTAuthContextInfo(jwk.getPublicKey(), issuer);
+            authContext.setSignatureAlgorithm(SignatureAlgorithm.ES256);
+            final var parser = new DefaultJWTParser(authContext);
+
+            final var token = Jwt.claims()
+                    .subject(sub)
+                    .issuer(issuer)
+                    .claim("webid", webid)
+                    .expiresAt(Instant.now().plusSeconds(100))
+                    .audience("solid").jws()
+                    .keyId("76GJ30ywXmKAxKdhJ1yPLA").sign(jwk.getPrivateKey());
+            return parser.parse(token);
+        } catch (final IOException | JoseException ex) {
+            throw new UncheckedJoseException("Could not build token", ex);
+        } catch (final ParseException ex) {
+            throw new IllegalArgumentException("Could not parse JWT", ex);
+        }
+    }
+}
+

quarkus/src/test/resources/testKey.json

@@ -0,0 +1,11 @@
+{
+    "kty":"EC",
+    "kid":"76GJ30ywXmKAxKdhJ1yPLA",
+    "use":"sig",
+    "alg":"ES256",
+    "x":"X-VSZcAATvp9oLrBWZTdLkuyjU-PpKIt24hIhbG4z5M",
+    "y":"SIORCeKh4thRYsRxllDLNYssQscPCGNQZn62Isgmx08",
+    "crv":"P-256",
+    "d":"oflFwpOqy7u3H28LQSaRdvFJH_obvYsBA4udeq3hemM"
+}
+

reports/pom.xml

@@ -72,6 +72,11 @@
       <artifactId>inrupt-client-httpclient</artifactId>
       <version>${project.version}</version>
     </dependency>
+    <dependency>
+      <groupId>com.inrupt.client</groupId>
+      <artifactId>inrupt-client-quarkus</artifactId>
+      <version>${project.version}</version>
+    </dependency>
     <dependency>
       <groupId>com.inrupt.client</groupId>
       <artifactId>inrupt-client-rdf4j</artifactId>