Add InputStream parser APIs

ynojima · ynojima · commit 64f81112f62c · 2024-12-22T22:07:24.000+09:00
diff --git a/webauthn4j-core/src/main/java/com/webauthn4j/WebAuthnAuthenticationManager.java b/webauthn4j-core/src/main/java/com/webauthn4j/WebAuthnAuthenticationManager.java
@@ -36,6 +36,7 @@
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
+import java.io.InputStream;
 import java.util.Collections;
 import java.util.List;
 
@@ -79,10 +80,18 @@ public WebAuthnAuthenticationManager() {
     }
 
 
-    @SuppressWarnings("java:S2583")
-    public AuthenticationData parse(String authenticationResponseJSON) {
+    public @NotNull AuthenticationData parse(@NotNull String authenticationResponseJSON) {
+        PublicKeyCredential<AuthenticatorAssertionResponse, AuthenticationExtensionClientOutput> publicKeyCredential = objectConverter.getJsonConverter().readValue(authenticationResponseJSON, new TypeReference<>() {});
+        return toAuthenticationData(publicKeyCredential);
+    }
+
+    public @NotNull AuthenticationData parse(@NotNull InputStream authenticationResponseJSON) {
         PublicKeyCredential<AuthenticatorAssertionResponse, AuthenticationExtensionClientOutput> publicKeyCredential = objectConverter.getJsonConverter().readValue(authenticationResponseJSON, new TypeReference<>() {});
+        return toAuthenticationData(publicKeyCredential);
+    }
 
+    @SuppressWarnings("java:S2583")
+    private @NotNull AuthenticationData toAuthenticationData(@NotNull PublicKeyCredential<AuthenticatorAssertionResponse, AuthenticationExtensionClientOutput> publicKeyCredential){
         byte[] credentialId = publicKeyCredential.getRawId();
         byte[] userHandle = publicKeyCredential.getResponse().getUserHandle();
 
@@ -146,6 +155,13 @@ public AuthenticationData parse(String authenticationResponseJSON) {
         return verify(authenticationData, authenticationParameters);
     }
 
+    public @NotNull AuthenticationData verify(
+            @NotNull InputStream authenticationResponseJSON,
+            @NotNull AuthenticationParameters authenticationParameters) throws DataConversionException, VerificationException {
+        AuthenticationData authenticationData = parse(authenticationResponseJSON);
+        return verify(authenticationData, authenticationParameters);
+    }
+
     @SuppressWarnings("squid:S1130")
     public @NotNull AuthenticationData verify(
             @NotNull AuthenticationRequest authenticationRequest,
diff --git a/webauthn4j-core/src/main/java/com/webauthn4j/WebAuthnManager.java b/webauthn4j-core/src/main/java/com/webauthn4j/WebAuthnManager.java
@@ -38,6 +38,7 @@
 import com.webauthn4j.verifier.exception.VerificationException;
 import org.jetbrains.annotations.NotNull;
 
+import java.io.InputStream;
 import java.util.ArrayList;
 import java.util.Arrays;
 import java.util.List;
@@ -150,6 +151,10 @@ public WebAuthnManager(@NotNull List<AttestationStatementVerifier> attestationSt
         return this.webAuthnRegistrationManager.parse(registrationResponseJSON);
     }
 
+    public @NotNull RegistrationData parseRegistrationResponseJSON(@NotNull InputStream registrationResponseJSON){
+        return this.webAuthnRegistrationManager.parse(registrationResponseJSON);
+    }
+
     @SuppressWarnings("squid:S1130")
     public @NotNull RegistrationData parse(@NotNull RegistrationRequest registrationRequest) throws DataConversionException {
         return this.webAuthnRegistrationManager.parse(registrationRequest);
@@ -159,6 +164,10 @@ public WebAuthnManager(@NotNull List<AttestationStatementVerifier> attestationSt
         return this.webAuthnRegistrationManager.verify(registrationResponseJSON, registrationParameters);
     }
 
+    public @NotNull RegistrationData verifyRegistrationResponseJSON(@NotNull InputStream registrationResponseJSON, @NotNull RegistrationParameters registrationParameters) throws DataConversionException, VerificationException {
+        return this.webAuthnRegistrationManager.verify(registrationResponseJSON, registrationParameters);
+    }
+
     @SuppressWarnings("squid:S1130")
     public @NotNull RegistrationData verify(@NotNull RegistrationRequest registrationRequest, @NotNull RegistrationParameters registrationParameters) throws DataConversionException, VerificationException {
         return this.webAuthnRegistrationManager.verify(registrationRequest, registrationParameters);
@@ -189,6 +198,10 @@ public WebAuthnManager(@NotNull List<AttestationStatementVerifier> attestationSt
         return this.webAuthnAuthenticationManager.parse(authenticationResponseJSON);
     }
 
+    public @NotNull AuthenticationData parseAuthenticationResponseJSON(@NotNull InputStream authenticationResponseJSON) throws DataConversionException {
+        return this.webAuthnAuthenticationManager.parse(authenticationResponseJSON);
+    }
+
     @SuppressWarnings("squid:S1130")
     public @NotNull AuthenticationData parse(@NotNull AuthenticationRequest authenticationRequest) throws DataConversionException {
         return this.webAuthnAuthenticationManager.parse(authenticationRequest);
@@ -198,6 +211,10 @@ public WebAuthnManager(@NotNull List<AttestationStatementVerifier> attestationSt
         return this.webAuthnAuthenticationManager.verify(authenticationResponseJSON, authenticationParameters);
     }
 
+    public @NotNull AuthenticationData verifyAuthenticationResponseJSON(@NotNull InputStream authenticationResponseJSON, @NotNull AuthenticationParameters authenticationParameters) throws DataConversionException, VerificationException {
+        return this.webAuthnAuthenticationManager.verify(authenticationResponseJSON, authenticationParameters);
+    }
+
     @SuppressWarnings("squid:S1130")
     public @NotNull AuthenticationData verify(@NotNull AuthenticationRequest authenticationRequest, @NotNull AuthenticationParameters authenticationParameters) throws DataConversionException, VerificationException {
         return this.webAuthnAuthenticationManager.verify(authenticationRequest, authenticationParameters);
diff --git a/webauthn4j-core/src/main/java/com/webauthn4j/WebAuthnRegistrationManager.java b/webauthn4j-core/src/main/java/com/webauthn4j/WebAuthnRegistrationManager.java
@@ -48,6 +48,7 @@
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
+import java.io.InputStream;
 import java.util.Arrays;
 import java.util.Collections;
 import java.util.List;
@@ -170,10 +171,18 @@ public WebAuthnRegistrationManager(@NotNull List<AttestationStatementVerifier> a
         );
     }
 
-    @SuppressWarnings("java:S2583")
-    public RegistrationData parse(String registrationResponseJSON) {
+    public @NotNull RegistrationData parse(@NotNull String registrationResponseJSON) {
         PublicKeyCredential<AuthenticatorAttestationResponse, RegistrationExtensionClientOutput> publicKeyCredential = objectConverter.getJsonConverter().readValue(registrationResponseJSON, new TypeReference<>() {});
+        return toRegistrationData(publicKeyCredential);
+    }
+
+    public @NotNull RegistrationData parse(@NotNull InputStream registrationResponseJSON) {
+        PublicKeyCredential<AuthenticatorAttestationResponse, RegistrationExtensionClientOutput> publicKeyCredential = objectConverter.getJsonConverter().readValue(registrationResponseJSON, new TypeReference<>() {});
+        return toRegistrationData(publicKeyCredential);
+    }
 
+    @SuppressWarnings("java:S2583")
+    private @NotNull RegistrationData toRegistrationData(@NotNull PublicKeyCredential<AuthenticatorAttestationResponse, RegistrationExtensionClientOutput> publicKeyCredential){
         byte[] attestationObjectBytes = publicKeyCredential.getResponse().getAttestationObject();
         AttestationObject attestationObject = attestationObjectBytes == null ? null : attestationObjectConverter.convert(attestationObjectBytes);
         byte[] clientDataBytes = publicKeyCredential.getResponse().getClientDataJSON();
@@ -218,7 +227,12 @@ public RegistrationData parse(String registrationResponseJSON) {
 
     }
 
-    public RegistrationData verify(String registrationResponseJSON, @NotNull RegistrationParameters registrationParameters) {
+    public @NotNull RegistrationData verify(@NotNull String registrationResponseJSON, @NotNull RegistrationParameters registrationParameters) {
+        RegistrationData registrationData = parse(registrationResponseJSON);
+        return verify(registrationData, registrationParameters);
+    }
+
+    public @NotNull RegistrationData verify(@NotNull InputStream registrationResponseJSON, @NotNull RegistrationParameters registrationParameters) {
         RegistrationData registrationData = parse(registrationResponseJSON);
         return verify(registrationData, registrationParameters);
     }
diff --git a/webauthn4j-core/src/test/java/integration/scenario/webauthn/AuthenticationResponseJSONVerificationTest.java b/webauthn4j-core/src/test/java/integration/scenario/webauthn/AuthenticationResponseJSONVerificationTest.java
@@ -35,6 +35,7 @@
 import com.webauthn4j.test.client.ClientPlatform;
 import org.junit.jupiter.api.Test;
 
+import java.io.ByteArrayInputStream;
 import java.util.Collections;
 import java.util.List;
 
@@ -45,14 +46,14 @@ class AuthenticationResponseJSONVerificationTest {
 
     private final ObjectConverter objectConverter = new ObjectConverter();
 
+    private final String rpId = "example.com";
     private final Origin origin = new Origin("http://example.com");
     private final ClientPlatform clientPlatform = EmulatorUtil.createClientPlatform(EmulatorUtil.PACKED_AUTHENTICATOR);
     private final WebAuthnManager target = WebAuthnManager.createNonStrictWebAuthnManager(objectConverter);
 
 
     @Test
-    void test() {
-        String rpId = "example.com";
+    void test_with_authenticationResponseJSON_as_string() {
         long timeout = 0;
         Challenge challenge = new DefaultChallenge();
 
@@ -86,8 +87,45 @@ void test() {
                 );
 
         assertThatCode(()->target.parseAuthenticationResponseJSON(authenticationResponseJSON)).doesNotThrowAnyException();
-        AuthenticationData authenticationData = target.parseAuthenticationResponseJSON(authenticationResponseJSON);
-        assertThatCode(()->target.verify(authenticationData, authenticationParameters)).doesNotThrowAnyException();
+        assertThatCode(()->target.verifyAuthenticationResponseJSON(authenticationResponseJSON, authenticationParameters)).doesNotThrowAnyException();
+    }
+
+    @Test
+    void test_with_authenticationResponseJSON_as_InputStream() {
+        long timeout = 0;
+        Challenge challenge = new DefaultChallenge();
+
+        // create
+        AttestationObject attestationObject = createAttestationObject(rpId, challenge);
+
+        // get
+        PublicKeyCredentialRequestOptions credentialRequestOptions = new PublicKeyCredentialRequestOptions(
+                challenge,
+                timeout,
+                rpId,
+                null,
+                UserVerificationRequirement.REQUIRED,
+                null
+        );
+
+        PublicKeyCredential<AuthenticatorAssertionResponse, AuthenticationExtensionClientOutput> credential = clientPlatform.get(credentialRequestOptions);
+        byte[] authenticationResponseJSON = objectConverter.getJsonConverter().writeValueAsBytes(credential);
+
+
+        ServerProperty serverProperty = new ServerProperty(origin, rpId, challenge, null);
+        Authenticator authenticator = TestDataUtil.createAuthenticator(attestationObject);
+
+        List<byte[]> allowCredentials = null;
+        AuthenticationParameters authenticationParameters =
+                new AuthenticationParameters(
+                        serverProperty,
+                        authenticator,
+                        allowCredentials,
+                        true
+                );
+
+        assertThatCode(()->target.parseAuthenticationResponseJSON(new ByteArrayInputStream(authenticationResponseJSON))).doesNotThrowAnyException();
+        assertThatCode(()->target.verifyAuthenticationResponseJSON(new ByteArrayInputStream(authenticationResponseJSON), authenticationParameters)).doesNotThrowAnyException();
     }
 
     private AttestationObject createAttestationObject(String rpId, Challenge challenge) {
diff --git a/webauthn4j-core/src/test/java/integration/scenario/webauthn/RegistrationResponseJSONVerificationTest.java b/webauthn4j-core/src/test/java/integration/scenario/webauthn/RegistrationResponseJSONVerificationTest.java
@@ -40,6 +40,7 @@
 import com.webauthn4j.verifier.attestation.trustworthiness.self.DefaultSelfAttestationTrustworthinessVerifier;
 import org.junit.jupiter.api.Test;
 
+import java.io.ByteArrayInputStream;
 import java.util.Arrays;
 import java.util.Collections;
 import java.util.List;
@@ -51,7 +52,9 @@ class RegistrationResponseJSONVerificationTest {
 
     private final ObjectConverter objectConverter = new ObjectConverter();
 
+    private final String rpId = "example.com";
     private final Origin origin = new Origin("http://localhost");
+    private final Challenge challenge = new DefaultChallenge();
     private final WebAuthnAuthenticatorAdaptor webAuthnAuthenticatorAdaptor = new WebAuthnAuthenticatorAdaptor(EmulatorUtil.PACKED_AUTHENTICATOR);
     private final ClientPlatform clientPlatform = new ClientPlatform(origin, webAuthnAuthenticatorAdaptor);
     private final NoneAttestationStatementVerifier noneAttestationStatementValidator = new NoneAttestationStatementVerifier();
@@ -71,9 +74,46 @@ class RegistrationResponseJSONVerificationTest {
     );
 
     @Test
-    void test() {
-        String rpId = "example.com";
-        Challenge challenge = new DefaultChallenge();
+    void test_with_registrationResponseJSON_as_string() {
+        PublicKeyCredential<AuthenticatorAttestationResponse, RegistrationExtensionClientOutput> credential = createCredential();
+        String registrationResponseJSON = objectConverter.getJsonConverter().writeValueAsString(credential);
+        ServerProperty serverProperty = new ServerProperty(origin, rpId, challenge, null);
+        List<PublicKeyCredentialParameters> pubKeyCredParams = null;
+        RegistrationParameters registrationParameters = new RegistrationParameters(
+                serverProperty,
+                pubKeyCredParams,
+                false
+        );
+
+        assertThatCode(()->target.parseRegistrationResponseJSON(registrationResponseJSON)).doesNotThrowAnyException();
+
+        RegistrationData registrationData = target.parseRegistrationResponseJSON(registrationResponseJSON);
+        assertThatCode(()->target.verify(registrationData, registrationParameters)).doesNotThrowAnyException();
+
+        assertThatCode(()->target.verifyRegistrationResponseJSON(registrationResponseJSON, registrationParameters)).doesNotThrowAnyException();
+    }
+
+    @Test
+    void test_with_registrationResponseJSON_as_InputStream() {
+        PublicKeyCredential<AuthenticatorAttestationResponse, RegistrationExtensionClientOutput> credential = createCredential();
+        byte[] registrationResponseJSON = objectConverter.getJsonConverter().writeValueAsBytes(credential);
+        ServerProperty serverProperty = new ServerProperty(origin, rpId, challenge, null);
+        List<PublicKeyCredentialParameters> pubKeyCredParams = null;
+        RegistrationParameters registrationParameters = new RegistrationParameters(
+                serverProperty,
+                pubKeyCredParams,
+                false
+        );
+
+        assertThatCode(()->target.parseRegistrationResponseJSON(new ByteArrayInputStream(registrationResponseJSON))).doesNotThrowAnyException();
+
+        RegistrationData registrationData = target.parseRegistrationResponseJSON(new ByteArrayInputStream(registrationResponseJSON));
+        assertThatCode(()->target.verify(registrationData, registrationParameters)).doesNotThrowAnyException();
+
+        assertThatCode(()->target.verifyRegistrationResponseJSON(new ByteArrayInputStream(registrationResponseJSON), registrationParameters)).doesNotThrowAnyException();
+    }
+
+    private PublicKeyCredential<AuthenticatorAttestationResponse, RegistrationExtensionClientOutput> createCredential(){
         AuthenticatorSelectionCriteria authenticatorSelectionCriteria =
                 new AuthenticatorSelectionCriteria(
                         AuthenticatorAttachment.CROSS_PLATFORM,
@@ -97,21 +137,6 @@ void test() {
                 AttestationConveyancePreference.NONE,
                 extensions
         );
-        PublicKeyCredential<AuthenticatorAttestationResponse, RegistrationExtensionClientOutput> credential = clientPlatform.create(credentialCreationOptions);
-        String registrationResponseJSON = objectConverter.getJsonConverter().writeValueAsString(credential);
-        ServerProperty serverProperty = new ServerProperty(origin, rpId, challenge, null);
-        List<PublicKeyCredentialParameters> pubKeyCredParams = null;
-        RegistrationParameters registrationParameters = new RegistrationParameters(
-                serverProperty,
-                pubKeyCredParams,
-                false
-        );
-
-        assertThatCode(()->target.parseRegistrationResponseJSON(registrationResponseJSON)).doesNotThrowAnyException();
-
-        RegistrationData registrationData = target.parseRegistrationResponseJSON(registrationResponseJSON);
-        assertThatCode(()->target.verify(registrationData, registrationParameters)).doesNotThrowAnyException();
-
-        assertThatCode(()->target.verifyRegistrationResponseJSON(registrationResponseJSON, registrationParameters)).doesNotThrowAnyException();
+        return clientPlatform.create(credentialCreationOptions);
     }
 }
