java.lang.Object

com.broadleafcommerce.paymentgateway.util.PaymentCallbackSecurityTokenUtil

public class PaymentCallbackSecurityTokenUtil extends Object

Utility class to create, validate, and manage payment callback tokens.

Author:: mariestandeven

Field Summary

Fields

Modifier and Type

Field

Description

protected static final Random

RANDOM
Constructor Summary

Constructors

Constructor

Description

PaymentCallbackSecurityTokenUtil(org.springframework.security.crypto.password.PasswordEncoder paymentCallbackTokenEncoder, PaymentCallbackTokenProperties paymentCallbackTokenProperties, com.fasterxml.jackson.databind.ObjectMapper objectMapper)
Method Summary

Modifier and Type

Method

Description

void

addPaymentCallbackTokenToPaymentMethodPropertyUrls(@NonNull PaymentInfo paymentInfo, @NonNull Set<String> urlKeys, String applicationId, String tenantId)

protected boolean

containsCallbackUrl(@NonNull Map<String,String> paymentMethodProperties, @NonNull Set<String> urlKeys)

protected String

encodePaymentCallbackToken(@NonNull String token, String applicationId, String tenantId)

protected String

generatePaymentCallbackToken(@NonNull PaymentInfo paymentInfo, String applicationId, String tenantId, boolean includeSpecialCharacters)

protected org.springframework.web.util.UriComponentsBuilder

getBaseUri(String url)

protected Instant

getDeserializedCreationDate(String creationDate, String applicationId, String tenantId)

protected com.fasterxml.jackson.databind.ObjectMapper

getObjectMapper()

protected org.springframework.security.crypto.password.PasswordEncoder

getPaymentCallbackTokenEncoder()

protected PaymentCallbackTokenProperties

getPaymentCallbackTokenProperties()

protected String

getSecureTokenQueryParam(@NonNull PaymentInfo paymentInfo, @NonNull String tokenId, String applicationId, String tenantId)

protected String

getSerializedCreationDate(Instant creationDate, String applicationId, String tenantId)

protected char[]

getTokenChars(@NonNull String gatewayType, String applicationId, String tenantId)

protected Duration

getTokenDuration(@NonNull String gatewayType, String applicationId, String tenantId)

protected int

getTokenLength(@NonNull String gatewayType, String applicationId, String tenantId)

protected boolean

isTokenExpired(String serializedCreationDate, PaymentInfo paymentInfo, String applicationId, String tenantId)

protected boolean

tokenMatches(String token, String encodedToken)

protected void

updateUrlsToIncludePaymentCallbackTokenParam(@NonNull PaymentInfo paymentInfo, @NonNull String tokenId, @NonNull Set<String> urlKeys, @NonNull Map<String,String> paymentMethodProperties, @NonNull String paymentCallbackToken, String applicationId, String tenantId)

boolean

verifyPaymentCallbackSecurityToken(PaymentInfo paymentInfo, String tokenFromPaymentCallbackParam, String applicationId, String tenantId)

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details
- RANDOM
  
  protected static final Random RANDOM
Constructor Details
- PaymentCallbackSecurityTokenUtil
  
  public PaymentCallbackSecurityTokenUtil(org.springframework.security.crypto.password.PasswordEncoder paymentCallbackTokenEncoder, PaymentCallbackTokenProperties paymentCallbackTokenProperties, com.fasterxml.jackson.databind.ObjectMapper objectMapper)
Method Details
- addPaymentCallbackTokenToPaymentMethodPropertyUrls
  
  public void addPaymentCallbackTokenToPaymentMethodPropertyUrls(@NonNull @NonNull PaymentInfo paymentInfo, @NonNull @NonNull Set<String> urlKeys, @Nullable String applicationId, @Nullable String tenantId)
- verifyPaymentCallbackSecurityToken
  
  public boolean verifyPaymentCallbackSecurityToken(PaymentInfo paymentInfo, String tokenFromPaymentCallbackParam, @Nullable String applicationId, @Nullable String tenantId)
- containsCallbackUrl
  
  protected boolean containsCallbackUrl(@NonNull @NonNull Map<String,String> paymentMethodProperties, @NonNull @NonNull Set<String> urlKeys)
- generatePaymentCallbackToken
  
  protected String generatePaymentCallbackToken(@NonNull @NonNull PaymentInfo paymentInfo, @Nullable String applicationId, @Nullable String tenantId, boolean includeSpecialCharacters)
- getTokenLength
  
  protected int getTokenLength(@NonNull @NonNull String gatewayType, @Nullable String applicationId, @Nullable String tenantId)
  
  Returns:
  
  How long of a String to generate for a token.
- getTokenChars
  
  protected char[] getTokenChars(@NonNull @NonNull String gatewayType, @Nullable String applicationId, @Nullable String tenantId)
  
  Returns:
  
  An array of characters that can be used to generate a token.
- encodePaymentCallbackToken
  
  protected String encodePaymentCallbackToken(@NonNull @NonNull String token, @Nullable String applicationId, @Nullable String tenantId)
- updateUrlsToIncludePaymentCallbackTokenParam
  
  protected void updateUrlsToIncludePaymentCallbackTokenParam(@NonNull @NonNull PaymentInfo paymentInfo, @NonNull @NonNull String tokenId, @NonNull @NonNull Set<String> urlKeys, @NonNull @NonNull Map<String,String> paymentMethodProperties, @NonNull @NonNull String paymentCallbackToken, @Nullable String applicationId, @Nullable String tenantId)
- tokenMatches
  
  protected boolean tokenMatches(String token, @Nullable String encodedToken)
- isTokenExpired
  
  protected boolean isTokenExpired(@Nullable String serializedCreationDate, PaymentInfo paymentInfo, @Nullable String applicationId, @Nullable String tenantId)
- getDeserializedCreationDate
  
  @Nullable protected Instant getDeserializedCreationDate(@Nullable String creationDate, @Nullable String applicationId, @Nullable String tenantId)
- getSerializedCreationDate
  
  @Nullable protected String getSerializedCreationDate(Instant creationDate, @Nullable String applicationId, @Nullable String tenantId)
- getTokenDuration
  
  protected Duration getTokenDuration(@NonNull @NonNull String gatewayType, @Nullable String applicationId, @Nullable String tenantId)
- getSecureTokenQueryParam
  
  protected String getSecureTokenQueryParam(@NonNull @NonNull PaymentInfo paymentInfo, @NonNull @NonNull String tokenId, @Nullable String applicationId, @Nullable String tenantId)
- getBaseUri
  
  protected org.springframework.web.util.UriComponentsBuilder getBaseUri(String url)
- getPaymentCallbackTokenEncoder
  
  protected org.springframework.security.crypto.password.PasswordEncoder getPaymentCallbackTokenEncoder()
- getPaymentCallbackTokenProperties
  
  protected PaymentCallbackTokenProperties getPaymentCallbackTokenProperties()
- getObjectMapper
  
  protected com.fasterxml.jackson.databind.ObjectMapper getObjectMapper()

Class PaymentCallbackSecurityTokenUtil

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Details

RANDOM

Constructor Details

PaymentCallbackSecurityTokenUtil

Method Details

addPaymentCallbackTokenToPaymentMethodPropertyUrls

verifyPaymentCallbackSecurityToken

containsCallbackUrl

generatePaymentCallbackToken

getTokenLength

getTokenChars

encodePaymentCallbackToken

updateUrlsToIncludePaymentCallbackTokenParam

tokenMatches

isTokenExpired

getDeserializedCreationDate

getSerializedCreationDate

getTokenDuration

getSecureTokenQueryParam

getBaseUri

getPaymentCallbackTokenEncoder

getPaymentCallbackTokenProperties

getObjectMapper