public Map<String, QueryParameter> queryParameters(SecurityScheme scheme) { return scheme.getDescribedBy() == null ? Collections.<String, QueryParameter>emptyMap() : scheme.getDescribedBy().getQueryParameters(); }
private static List<Map<String, SecurityScheme>> getSecuritySchemes(Endpoint endpoint) { ArrayList<Map<String, SecurityScheme>> securitySchemesList = new ArrayList<>(); Map<String, SecurityScheme> securitySchemes = new LinkedHashMap<>(); SecurityScheme securityScheme = new SecurityScheme(); if (endpoint != null) { if (ChallengeScheme.HTTP_BASIC.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.HTTP_BASIC.getName()); securitySchemes.put(ChallengeScheme.HTTP_BASIC.getName(), securityScheme); || ChallengeScheme.HTTP_OAUTH_MAC.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType("Oauth 2.0"); securitySchemes.put("oauth_2_0", securityScheme); } else if (ChallengeScheme.HTTP_DIGEST.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.HTTP_DIGEST.getName()); securitySchemes.put(ChallengeScheme.HTTP_DIGEST.getName(), securityScheme); } else if (ChallengeScheme.CUSTOM.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.CUSTOM.getName()); securitySchemes.put(ChallengeScheme.CUSTOM.getName(), securityScheme);
@Override public void check(SecurityScheme scheme, RamlViolations violations) { final SecuritySettings settings = scheme.getSettings(); violations.addIf(settings == null || settings.getAuthorizationUri() == null, "oauth20.authorizationUri.missing"); violations.addIf(settings == null || settings.getAccessTokenUri() == null, "oauth20.accessTokenUri.missing"); violations.addIf(settings == null || settings.getAuthorizationGrants().isEmpty(), "oauth20.authorizationGrants.missing"); if (settings != null) { for (final String grant : settings.getAuthorizationGrants()) { violations.addIf(!GRANTS.contains(grant), "oauth20.authorizationGrant.invalid", grant); } } } },
private static List<Map<String, SecurityScheme>> getSecuritySchemes(Endpoint endpoint) { ArrayList<Map<String, SecurityScheme>> securitySchemesList = new ArrayList<>(); Map<String, SecurityScheme> securitySchemes = new LinkedHashMap<>(); SecurityScheme securityScheme = new SecurityScheme(); if (endpoint != null) { if (ChallengeScheme.HTTP_BASIC.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.HTTP_BASIC.getName()); securitySchemes.put(ChallengeScheme.HTTP_BASIC.getName(), securityScheme); || ChallengeScheme.HTTP_OAUTH_MAC.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType("Oauth 2.0"); securitySchemes.put("oauth_2_0", securityScheme); } else if (ChallengeScheme.HTTP_DIGEST.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.HTTP_DIGEST.getName()); securitySchemes.put(ChallengeScheme.HTTP_DIGEST.getName(), securityScheme); } else if (ChallengeScheme.CUSTOM.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.CUSTOM.getName()); securitySchemes.put(ChallengeScheme.CUSTOM.getName(), securityScheme);
@Override public void check(SecurityScheme scheme, RamlViolations violations) { final SecuritySettings settings = scheme.getSettings(); violations.addIf(settings == null || settings.getRequestTokenUri() == null, "oauth10.requestTokenUri.missing"); violations.addIf(settings == null || settings.getAuthorizationUri() == null, "oauth10.authorizationUri.missing"); violations.addIf(settings == null || settings.getTokenCredentialsUri() == null, "oauth10.tokenCredentialsUri.missing"); } },
private static List<Map<String, SecurityScheme>> getSecuritySchemes(Endpoint endpoint) { ArrayList<Map<String, SecurityScheme>> securitySchemesList = new ArrayList<>(); Map<String, SecurityScheme> securitySchemes = new LinkedHashMap<>(); SecurityScheme securityScheme = new SecurityScheme(); if (endpoint != null) { if (ChallengeScheme.HTTP_BASIC.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.HTTP_BASIC.getName()); securitySchemes.put(ChallengeScheme.HTTP_BASIC.getName(), securityScheme); || ChallengeScheme.HTTP_OAUTH_MAC.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType("Oauth 2.0"); securitySchemes.put("oauth_2_0", securityScheme); } else if (ChallengeScheme.HTTP_DIGEST.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.HTTP_DIGEST.getName()); securitySchemes.put(ChallengeScheme.HTTP_DIGEST.getName(), securityScheme); } else if (ChallengeScheme.CUSTOM.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.CUSTOM.getName()); securitySchemes.put(ChallengeScheme.CUSTOM.getName(), securityScheme);
public Map<String, Header> headers(SecurityScheme scheme) { return scheme.getDescribedBy() == null ? Collections.<String, Header>emptyMap() : scheme.getDescribedBy().getHeaders(); }
public RamlViolations responseViolations(SecurityScheme scheme) { return responseViolations.get(scheme.getType()); }
private static List<Map<String, SecurityScheme>> getSecuritySchemes(Endpoint endpoint) { ArrayList<Map<String, SecurityScheme>> securitySchemesList = new ArrayList<>(); Map<String, SecurityScheme> securitySchemes = new LinkedHashMap<>(); SecurityScheme securityScheme = new SecurityScheme(); if (endpoint != null) { if (ChallengeScheme.HTTP_BASIC.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.HTTP_BASIC.getName()); securitySchemes.put(ChallengeScheme.HTTP_BASIC.getName(), securityScheme); || ChallengeScheme.HTTP_OAUTH_MAC.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType("Oauth 2.0"); securitySchemes.put("oauth_2_0", securityScheme); } else if (ChallengeScheme.HTTP_DIGEST.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.HTTP_DIGEST.getName()); securitySchemes.put(ChallengeScheme.HTTP_DIGEST.getName(), securityScheme); } else if (ChallengeScheme.CUSTOM.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.CUSTOM.getName()); securitySchemes.put(ChallengeScheme.CUSTOM.getName(), securityScheme);
public Map<String, Response> responses(SecurityScheme scheme) { return scheme.getDescribedBy() == null ? Collections.<String, Response>emptyMap() : scheme.getDescribedBy().getResponses(); }
public RamlViolations requestViolations(SecurityScheme scheme) { return requestViolations.get(scheme.getType()); }
private static List<Map<String, SecurityScheme>> getSecuritySchemes(Endpoint endpoint) { ArrayList<Map<String, SecurityScheme>> securitySchemesList = new ArrayList<>(); Map<String, SecurityScheme> securitySchemes = new LinkedHashMap<>(); SecurityScheme securityScheme = new SecurityScheme(); if (endpoint != null) { if (ChallengeScheme.HTTP_BASIC.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.HTTP_BASIC.getName()); securitySchemes.put(ChallengeScheme.HTTP_BASIC.getName(), securityScheme); || ChallengeScheme.HTTP_OAUTH_MAC.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType("Oauth 2.0"); securitySchemes.put("oauth_2_0", securityScheme); } else if (ChallengeScheme.HTTP_DIGEST.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.HTTP_DIGEST.getName()); securitySchemes.put(ChallengeScheme.HTTP_DIGEST.getName(), securityScheme); } else if (ChallengeScheme.CUSTOM.equals(endpoint .getAuthenticationProtocol())) { securityScheme.setType(ChallengeScheme.CUSTOM.getName()); securitySchemes.put(ChallengeScheme.CUSTOM.getName(), securityScheme);
if (schema != null) foundScheme = schema.getDescribedBy(); break;
public RamlViolationsPerSecurity(SecurityExtractor security) { schemes = new ArrayList<>(security.getSchemes()); Collections.sort(schemes, SCHEME_COMPARATOR); requestViolations = new HashMap<>(); responseViolations = new HashMap<>(); for (final SecurityScheme scheme : schemes) { requestViolations.put(scheme.getType(), new RamlViolations()); responseViolations.put(scheme.getType(), new RamlViolations()); } }
private void addAll(SecurityScheme scheme, RamlViolations source, RamlViolations target) { if (schemes.size() == 1) { target.addAll(source); } else { for (final RamlViolationMessage s : source) { target.add("scheme", scheme.getType(), s); } } }
public void check(RamlViolations violations) { for (final Map<String, SecurityScheme> schemeMap : raml.getSecuritySchemes()) { for (final SecurityScheme scheme : schemeMap.values()) { final SecuritySchemeType type = SecuritySchemeType.byName(scheme.getType()); if (type != null) { type.check(scheme, violations); } } } }