Just for review: Remove WebAuthn4J wrapper classes to reduce number of classes

Author: ynojima

samples/javaconfig/webauthn/src/main/java/org/springframework/security/webauthn/sample/app/web/WebAuthnSampleController.java

@@ -16,6 +16,7 @@
 
 package org.springframework.security.webauthn.sample.app.web;
 
+import com.webauthn4j.data.AuthenticatorTransport;
 import com.webauthn4j.util.Base64UrlUtil;
 import com.webauthn4j.util.UUIDUtil;
 import com.webauthn4j.util.exception.WebAuthnException;
@@ -33,7 +34,6 @@
 import org.springframework.security.webauthn.WebAuthnRegistrationRequestValidator;
 import org.springframework.security.webauthn.authenticator.WebAuthnAuthenticator;
 import org.springframework.security.webauthn.authenticator.WebAuthnAuthenticatorImpl;
-import org.springframework.security.webauthn.authenticator.WebAuthnAuthenticatorTransport;
 import org.springframework.security.webauthn.exception.WebAuthnAuthenticationException;
 import org.springframework.security.webauthn.userdetails.InMemoryWebAuthnAndPasswordUserDetailsManager;
 import org.springframework.security.webauthn.userdetails.WebAuthnAndPasswordUser;
@@ -138,13 +138,13 @@ public String create(HttpServletRequest request, @Valid @ModelAttribute("userFor
 		byte[] attestedCredentialData = webAuthnDataConverter.extractAttestedCredentialData(authenticatorData);
 		byte[] credentialId = webAuthnDataConverter.extractCredentialId(attestedCredentialData);
 		long signCount = webAuthnDataConverter.extractSignCount(authenticatorData);
-		Set<WebAuthnAuthenticatorTransport> transports;
+		Set<AuthenticatorTransport> transports;
 		if (sourceAuthenticator.getTransports() == null) {
 			transports = null;
 		}
 		else {
 			transports = sourceAuthenticator.getTransports().stream()
-					.map(WebAuthnAuthenticatorTransport::create)
+					.map(AuthenticatorTransport::create)
 					.collect(Collectors.toSet());
 		}
 

webauthn/src/main/java/org/springframework/security/webauthn/WebAuthn4JWebAuthnManager.java

@@ -26,17 +26,12 @@
 import com.webauthn4j.data.client.Origin;
 import com.webauthn4j.data.client.challenge.DefaultChallenge;
 import com.webauthn4j.server.ServerProperty;
-import com.webauthn4j.util.exception.WebAuthnException;
 import com.webauthn4j.validator.WebAuthnAuthenticationContextValidator;
 import com.webauthn4j.validator.WebAuthnRegistrationContextValidator;
-import org.springframework.security.authentication.AuthenticationServiceException;
-import org.springframework.security.core.AuthenticationException;
 import org.springframework.security.webauthn.authenticator.WebAuthnAuthenticator;
-import org.springframework.security.webauthn.exception.*;
-import org.springframework.security.webauthn.server.WebAuthnOrigin;
-import org.springframework.security.webauthn.server.WebAuthnServerProperty;
 import org.springframework.util.Assert;
 
+import javax.servlet.ServletRequest;
 import javax.servlet.http.HttpServletRequest;
 import java.util.Collections;
 import java.util.Set;
@@ -129,7 +124,7 @@ public String getEffectiveRpId(HttpServletRequest request) {
 		if (this.rpId != null) {
 			effectiveRpId = this.rpId;
 		} else {
-			WebAuthnOrigin origin = WebAuthnOrigin.create(request);
+			Origin origin = createOrigin(request);
 			effectiveRpId = origin.getHost();
 		}
 		return effectiveRpId;
@@ -179,16 +174,20 @@ private WebAuthnAuthenticationContext createWebAuthnAuthenticationContext(WebAut
 		);
 	}
 
-	private Origin convertToOrigin(WebAuthnOrigin webAuthnOrigin) {
+	private Origin convertToOrigin(Origin webAuthnOrigin) {
 		return new Origin(webAuthnOrigin.getScheme(), webAuthnOrigin.getHost(), webAuthnOrigin.getPort());
 	}
 
-	private ServerProperty convertToServerProperty(WebAuthnServerProperty webAuthnServerProperty) {
+	private ServerProperty convertToServerProperty(ServerProperty webAuthnServerProperty) {
 		return new ServerProperty(
 				convertToOrigin(webAuthnServerProperty.getOrigin()),
 				webAuthnServerProperty.getRpId(),
 				new DefaultChallenge(webAuthnServerProperty.getChallenge().getValue()),
 				webAuthnServerProperty.getTokenBindingId());
 	}
 
+	private static Origin createOrigin(ServletRequest request) {
+		return new Origin(request.getScheme(), request.getServerName(), request.getServerPort());
+	}
+
 }

webauthn/src/main/java/org/springframework/security/webauthn/WebAuthnAuthenticationData.java

@@ -16,8 +16,8 @@
 
 package org.springframework.security.webauthn;
 
+import com.webauthn4j.server.ServerProperty;
 import com.webauthn4j.util.ArrayUtil;
-import org.springframework.security.webauthn.server.WebAuthnServerProperty;
 
 import java.io.Serializable;
 import java.util.Arrays;
@@ -42,7 +42,7 @@ public class WebAuthnAuthenticationData implements Serializable {
 	private final byte[] signature;
 	private final String clientExtensionsJSON;
 
-	private final WebAuthnServerProperty serverProperty;
+	private final ServerProperty serverProperty;
 	private final boolean userVerificationRequired;
 	private final boolean userPresenceRequired;
 	private final List<String> expectedAuthenticationExtensionIds;
@@ -54,7 +54,7 @@ public WebAuthnAuthenticationData(
 			byte[] authenticatorData,
 			byte[] signature,
 			String clientExtensionsJSON,
-			WebAuthnServerProperty serverProperty,
+			ServerProperty serverProperty,
 			boolean userVerificationRequired,
 			boolean userPresenceRequired,
 			List<String> expectedAuthenticationExtensionIds) {
@@ -77,7 +77,7 @@ public WebAuthnAuthenticationData(
 			byte[] authenticatorData,
 			byte[] signature,
 			String clientExtensionsJSON,
-			WebAuthnServerProperty serverProperty,
+			ServerProperty serverProperty,
 			boolean userVerificationRequired,
 			List<String> expectedAuthenticationExtensionIds) {
 
@@ -114,7 +114,7 @@ public String getClientExtensionsJSON() {
 		return clientExtensionsJSON;
 	}
 
-	public WebAuthnServerProperty getServerProperty() {
+	public ServerProperty getServerProperty() {
 		return serverProperty;
 	}
 

webauthn/src/main/java/org/springframework/security/webauthn/WebAuthnProcessingFilter.java

@@ -16,6 +16,7 @@
 
 package org.springframework.security.webauthn;
 
+import com.webauthn4j.server.ServerProperty;
 import org.springframework.http.HttpMethod;
 import org.springframework.security.authentication.AbstractAuthenticationToken;
 import org.springframework.security.authentication.AuthenticationServiceException;
@@ -24,7 +25,6 @@
 import org.springframework.security.core.GrantedAuthority;
 import org.springframework.security.core.authority.AuthorityUtils;
 import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
-import org.springframework.security.webauthn.server.WebAuthnServerProperty;
 import org.springframework.security.webauthn.server.WebAuthnServerPropertyProvider;
 import org.springframework.util.Assert;
 import org.springframework.util.Base64Utils;
@@ -135,7 +135,7 @@ public Authentication attemptAuthentication(HttpServletRequest request, HttpServ
 			byte[] rawAuthenticatorData = authenticatorData == null ? null : Base64Utils.decodeFromUrlSafeString(authenticatorData);
 			byte[] signatureBytes = signature == null ? null : Base64Utils.decodeFromUrlSafeString(signature);
 
-			WebAuthnServerProperty webAuthnServerProperty = serverPropertyProvider.provide(request);
+			ServerProperty webAuthnServerProperty = serverPropertyProvider.provide(request);
 
 			WebAuthnAuthenticationData webAuthnAuthenticationData = new WebAuthnAuthenticationData(
 					rawId,

webauthn/src/main/java/org/springframework/security/webauthn/WebAuthnRegistrationData.java

@@ -16,8 +16,8 @@
 
 package org.springframework.security.webauthn;
 
+import com.webauthn4j.server.ServerProperty;
 import com.webauthn4j.util.ArrayUtil;
-import org.springframework.security.webauthn.server.WebAuthnServerProperty;
 
 import java.util.Collections;
 import java.util.List;
@@ -30,11 +30,11 @@ public class WebAuthnRegistrationData {
 	private final Set<String> transports;
 	private final String clientExtensionsJSON;
 
-	private final WebAuthnServerProperty serverProperty;
+	private final ServerProperty serverProperty;
 	private final List<String> expectedRegistrationExtensionIds;
 
 	public WebAuthnRegistrationData(byte[] clientDataJSON, byte[] attestationObject, Set<String> transports, String clientExtensionsJSON,
-									WebAuthnServerProperty serverProperty,
+									ServerProperty serverProperty,
 									List<String> expectedRegistrationExtensionIds) {
 		this.clientDataJSON = ArrayUtil.clone(clientDataJSON);
 		this.attestationObject = ArrayUtil.clone(attestationObject);
@@ -60,7 +60,7 @@ public String getClientExtensionsJSON() {
 		return clientExtensionsJSON;
 	}
 
-	public WebAuthnServerProperty getServerProperty() {
+	public ServerProperty getServerProperty() {
 		return serverProperty;
 	}
 

webauthn/src/main/java/org/springframework/security/webauthn/WebAuthnRegistrationRequestValidator.java

@@ -16,8 +16,8 @@
 
 package org.springframework.security.webauthn;
 
+import com.webauthn4j.server.ServerProperty;
 import com.webauthn4j.util.Base64UrlUtil;
-import org.springframework.security.webauthn.server.WebAuthnServerProperty;
 import org.springframework.security.webauthn.server.WebAuthnServerPropertyProvider;
 import org.springframework.util.Assert;
 
@@ -43,7 +43,7 @@ public void validate(WebAuthnRegistrationRequest registrationRequest) {
 		Assert.notNull(registrationRequest, "target must not be null");
 		Assert.notNull(registrationRequest.getHttpServletRequest(), "httpServletRequest must not be null");
 
-		WebAuthnServerProperty webAuthnServerProperty = webAuthnServerPropertyProvider.provide(registrationRequest.getHttpServletRequest());
+		ServerProperty webAuthnServerProperty = webAuthnServerPropertyProvider.provide(registrationRequest.getHttpServletRequest());
 
 		WebAuthnRegistrationData webAuthnRegistrationData = new WebAuthnRegistrationData(
 				Base64UrlUtil.decode(registrationRequest.getClientDataBase64Url()),

webauthn/src/main/java/org/springframework/security/webauthn/authenticator/WebAuthnAuthenticator.java

@@ -16,6 +16,7 @@
 
 package org.springframework.security.webauthn.authenticator;
 
+import com.webauthn4j.data.AuthenticatorTransport;
 import org.springframework.security.webauthn.userdetails.WebAuthnUserDetailsService;
 
 import java.util.Set;
@@ -36,7 +37,7 @@ public interface WebAuthnAuthenticator {
 
 	void setCounter(long counter);
 
-	Set<WebAuthnAuthenticatorTransport> getTransports();
+	Set<AuthenticatorTransport> getTransports();
 
 	String getClientExtensions();
 

webauthn/src/main/java/org/springframework/security/webauthn/authenticator/WebAuthnAuthenticatorImpl.java

@@ -17,6 +17,7 @@
 package org.springframework.security.webauthn.authenticator;
 
 
+import com.webauthn4j.data.AuthenticatorTransport;
 import com.webauthn4j.util.ArrayUtil;
 
 import java.util.Arrays;
@@ -31,7 +32,7 @@ public class WebAuthnAuthenticatorImpl implements WebAuthnAuthenticator {
 	private String name;
 	private byte[] attestationObject;
 	private long counter;
-	private Set<WebAuthnAuthenticatorTransport> transports;
+	private Set<AuthenticatorTransport> transports;
 	private String clientExtensions;
 
 	// ~ Constructor
@@ -51,7 +52,7 @@ public WebAuthnAuthenticatorImpl(
 			String name,
 			byte[] attestationObject,
 			long counter,
-			Set<WebAuthnAuthenticatorTransport> transports,
+			Set<AuthenticatorTransport> transports,
 			String clientExtensions) {
 		this.credentialId = credentialId;
 		this.name = name;
@@ -88,7 +89,7 @@ public void setCounter(long counter) {
 	}
 
 	@Override
-	public Set<WebAuthnAuthenticatorTransport> getTransports() {
+	public Set<AuthenticatorTransport> getTransports() {
 		return transports;
 	}
 

webauthn/src/main/java/org/springframework/security/webauthn/authenticator/WebAuthnAuthenticatorTransport.java

@@ -16,6 +16,8 @@
 
 package org.springframework.security.webauthn.challenge;
 
+import com.webauthn4j.data.client.challenge.Challenge;
+import com.webauthn4j.data.client.challenge.DefaultChallenge;
 import org.springframework.security.web.csrf.HttpSessionCsrfTokenRepository;
 import org.springframework.util.Assert;
 
@@ -45,12 +47,12 @@ public class HttpSessionWebAuthnChallengeRepository implements WebAuthnChallenge
 	// ========================================================================================================
 
 	@Override
-	public WebAuthnChallenge generateChallenge() {
-		return new WebAuthnChallengeImpl();
+	public Challenge generateChallenge() {
+		return new DefaultChallenge();
 	}
 
 	@Override
-	public void saveChallenge(WebAuthnChallenge challenge, HttpServletRequest request) {
+	public void saveChallenge(Challenge challenge, HttpServletRequest request) {
 		if (challenge == null) {
 			HttpSession session = request.getSession(false);
 			if (session != null) {
@@ -63,16 +65,16 @@ public void saveChallenge(WebAuthnChallenge challenge, HttpServletRequest reques
 	}
 
 	@Override
-	public WebAuthnChallenge loadChallenge(HttpServletRequest request) {
+	public Challenge loadChallenge(HttpServletRequest request) {
 		HttpSession session = request.getSession(false);
 		if (session == null) {
 			return null;
 		}
-		return (WebAuthnChallenge) session.getAttribute(this.sessionAttributeName);
+		return (Challenge) session.getAttribute(this.sessionAttributeName);
 	}
 
 	/**
-	 * Sets the {@link HttpSession} attribute name that the {@link WebAuthnChallenge} is stored in
+	 * Sets the {@link HttpSession} attribute name that the {@link Challenge} is stored in
 	 *
 	 * @param sessionAttributeName the new attribute name to use
 	 */