EPA-170: Add optional cli parameter proxy and httpheader for FedRegis…

…trationCommand Co-authored-by: Robert Staeber <79303207+RStaeber@users.noreply.github.com> Co-authored-by: Thomas Richner <thomas.richner@oviva.com>
oviva-ag · Dec 2, 2024 · e0ae450 · e0ae450
1 parent 15ba1ee
commit e0ae450
Show file tree

Hide file tree

Showing 2 changed files with 81 additions and 3 deletions.
diff --git a/.gitignore b/.gitignore
@@ -11,3 +11,4 @@ federation_registration_form.xml
 dependency-reduced-pom.xml
 .DS_Store
 logs.json
+fedreg_*.xml
diff --git a/ehealthid-cli/src/main/java/com/oviva/ehealthid/cli/FedRegistrationCommand.java b/ehealthid-cli/src/main/java/com/oviva/ehealthid/cli/FedRegistrationCommand.java
@@ -10,6 +10,8 @@
 import com.oviva.ehealthid.cli.RegistratonFormRenderer.Model.Scope;
 import com.oviva.ehealthid.fedclient.api.EntityStatementJWS;
 import java.io.IOException;
+import java.net.InetSocketAddress;
+import java.net.ProxySelector;
 import java.net.URI;
 import java.net.http.HttpClient;
 import java.net.http.HttpRequest;
@@ -72,6 +74,18 @@ public class FedRegistrationCommand implements Callable<Integer> {
       description = "gematik-Verfahrensschlüssel (starts with VFS_DiGA_...)")
   private String vfsConfirmation;
 
+  @Option(
+      names = {"--proxy"},
+      description =
+          "if issuer-uri is behind a proxy, specify the proxy address (e.g. '172.0.0.0:4711')")
+  private String proxy;
+
+  @Option(
+      names = {"--header"},
+      description =
+          "additional http headers (e.g. 'X-Authorization: Bearertoken'), can be repeated")
+  private String[] httpHeaders;
+
   public static void main(String[] args) {
 
     int exitCode = 1;
@@ -143,12 +157,22 @@ private void parameterValidation() {
   }
 
   private EntityConfiguration fetchEntityConfiguration() {
-    var httpClient = HttpClient.newHttpClient();
 
-    var entityConfigurationUri = issuerUri.resolve("/.well-known/openid-federation");
-    var req = HttpRequest.newBuilder(entityConfigurationUri).GET().build();
+    final var entityConfigurationUri = issuerUri.resolve("/.well-known/openid-federation");
 
     try {
+      final HttpClient.Builder httpClientBuilder = HttpClient.newBuilder();
+      withProxy(httpClientBuilder);
+
+      final HttpClient httpClient = httpClientBuilder.build();
+
+      final HttpRequest.Builder requestBuilder =
+          HttpRequest.newBuilder(entityConfigurationUri).GET();
+
+      withRequestExtraHeaders(requestBuilder);
+
+      final var req = requestBuilder.build();
+
       var res = httpClient.send(req, BodyHandlers.ofString());
       if (res.statusCode() != 200) {
         throw new RuntimeException(
@@ -181,6 +205,59 @@ private EntityConfiguration fetchEntityConfiguration() {
     }
   }
 
+  private void withProxy(HttpClient.Builder builder) {
+    if (proxy == null || proxy.isBlank()) {
+      return;
+    }
+
+    if ("default".equalsIgnoreCase(proxy)) {
+      builder.proxy(ProxySelector.getDefault());
+      logger.atInfo().log("Setting default system proxy");
+      return;
+    }
+
+    var proxyParts = proxy.split(":");
+    if (proxyParts.length == 2) {
+      try {
+        var host = proxyParts[0];
+        var port = Integer.parseInt(proxyParts[1]);
+
+        logger.atInfo().log("Setting proxy to '{}:{}'", host, port);
+        builder.proxy(ProxySelector.of(new InetSocketAddress(host, port)));
+      } catch (final NumberFormatException e) {
+        logger.atError().log("Invalid proxy port: " + proxyParts[1]);
+        throw new RuntimeException("Invalid proxy port: " + proxyParts[1]);
+      }
+    } else {
+      throw new IllegalArgumentException("Invalid proxy format. Expected format: host:port");
+    }
+  }
+
+  private void withRequestExtraHeaders(HttpRequest.Builder builder) {
+    if (httpHeaders == null) {
+      return;
+    }
+
+    for (var h : httpHeaders) {
+      var headerParts = h.split(":", 2);
+      if (headerParts.length != 2) {
+        throw new IllegalArgumentException(
+            "Invalid header format, got: '%s' expected '<name>:<value>'".formatted(h));
+      }
+
+      var name = headerParts[0].trim();
+      var value = headerParts[1].trim();
+
+      if (name.isEmpty() || value.isEmpty()) {
+
+        throw new IllegalArgumentException(
+            "Invalid header format, got: '%s' expected '<name>:<value>'".formatted(h));
+      }
+
+      builder.header(name, value);
+    }
+  }
+
   private List<Scope> parseScopes(String scopes) {
     return Arrays.stream(scopes.split(" "))
         .flatMap(