You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@camel.apache.org by ja...@apache.org on 2020/10/07 11:59:30 UTC
[camel] branch master updated: CAMEL-15648: Avoid reflection to
clear exchange headers in DigitalSignatureProcessor
This is an automated email from the ASF dual-hosted git repository.
jamesnetherton pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/camel.git
The following commit(s) were added to refs/heads/master by this push:
new a49687c CAMEL-15648: Avoid reflection to clear exchange headers in DigitalSignatureProcessor
a49687c is described below
commit a49687cb8c40f39e8973bc9f449e27f1359a4200
Author: James Netherton <ja...@gmail.com>
AuthorDate: Wed Oct 7 12:18:03 2020 +0100
CAMEL-15648: Avoid reflection to clear exchange headers in DigitalSignatureProcessor
---
.../processor/DigitalSignatureProcessor.java | 8 +-
.../crypto/processor/SigningProcessorTest.java | 93 ++++++++++++++++++++++
2 files changed, 94 insertions(+), 7 deletions(-)
diff --git a/components/camel-crypto/src/main/java/org/apache/camel/component/crypto/processor/DigitalSignatureProcessor.java b/components/camel-crypto/src/main/java/org/apache/camel/component/crypto/processor/DigitalSignatureProcessor.java
index 01a91ea..8eeed1a 100644
--- a/components/camel-crypto/src/main/java/org/apache/camel/component/crypto/processor/DigitalSignatureProcessor.java
+++ b/components/camel-crypto/src/main/java/org/apache/camel/component/crypto/processor/DigitalSignatureProcessor.java
@@ -17,12 +17,10 @@
package org.apache.camel.component.crypto.processor;
import java.io.InputStream;
-import java.lang.reflect.Field;
import java.security.KeyStore;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.security.Signature;
-import java.util.Map;
import org.apache.camel.Exchange;
import org.apache.camel.Message;
@@ -31,7 +29,6 @@ import org.apache.camel.component.crypto.DigitalSignatureConfiguration;
import org.apache.camel.component.crypto.DigitalSignatureConstants;
import org.apache.camel.support.ExchangeHelper;
import org.apache.camel.util.IOHelper;
-import org.apache.camel.util.ObjectHelper;
public abstract class DigitalSignatureProcessor implements Processor {
@@ -87,10 +84,7 @@ public abstract class DigitalSignatureProcessor implements Processor {
protected void clearMessageHeaders(Message in) {
if (config.isClearHeaders()) {
- Map<String, Object> headers = in.getHeaders();
- for (Field f : DigitalSignatureConstants.class.getFields()) {
- headers.remove(ObjectHelper.lookupConstantFieldValue(DigitalSignatureConstants.class, f.getName()));
- }
+ in.removeHeaders("^Camel(Digital)?Signature.*");
}
}
}
diff --git a/components/camel-crypto/src/test/java/org/apache/camel/component/crypto/processor/SigningProcessorTest.java b/components/camel-crypto/src/test/java/org/apache/camel/component/crypto/processor/SigningProcessorTest.java
new file mode 100644
index 0000000..2bcfe74
--- /dev/null
+++ b/components/camel-crypto/src/test/java/org/apache/camel/component/crypto/processor/SigningProcessorTest.java
@@ -0,0 +1,93 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.apache.camel.component.crypto.processor;
+
+import java.util.Map;
+
+import org.apache.camel.Exchange;
+import org.apache.camel.Message;
+import org.apache.camel.component.crypto.DigitalSignatureConfiguration;
+import org.apache.camel.component.crypto.DigitalSignatureConstants;
+import org.apache.camel.impl.DefaultCamelContext;
+import org.apache.camel.support.DefaultExchange;
+import org.apache.camel.support.DefaultMessage;
+import org.junit.jupiter.api.Test;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertTrue;
+
+public class SigningProcessorTest {
+
+ @Test
+ public void testClearHeadersEnabled() {
+ DigitalSignatureConfiguration configuration = new DigitalSignatureConfiguration();
+ configuration.setClearHeaders(true);
+
+ DigitalSignatureProcessor processor = new DigitalSignatureProcessor(configuration) {
+ @Override
+ public void process(Exchange exchange) throws Exception {
+ // Noop
+ }
+ };
+
+ Exchange exchange = new DefaultExchange(new DefaultCamelContext());
+ Message message = new DefaultMessage(exchange);
+ message.setHeader(DigitalSignatureConstants.SIGNATURE, "test-signature");
+ message.setHeader(DigitalSignatureConstants.SIGNATURE_PRIVATE_KEY, "test-signature-private-key");
+ message.setHeader(DigitalSignatureConstants.SIGNATURE_PUBLIC_KEY_OR_CERT, "test-public-key-or-cert");
+ message.setHeader(DigitalSignatureConstants.KEYSTORE_ALIAS, "test-alias");
+ message.setHeader(DigitalSignatureConstants.KEYSTORE_PASSWORD, "test-password");
+ message.setHeader("CamelFooHeader", "bar");
+ message.setHeader("CamelCheeseHeader", "wine");
+ message.setHeader("custom", "test");
+
+ processor.clearMessageHeaders(message);
+
+ // Verify all of the crypto headers were removed but the others remain
+ Map<String, Object> headers = message.getHeaders();
+ assertEquals(3, headers.size());
+ assertTrue(headers.containsKey("CamelFooHeader"));
+ assertTrue(headers.containsKey("CamelCheeseHeader"));
+ assertTrue(headers.containsKey("custom"));
+ }
+
+ @Test
+ public void testClearHeadersDisabled() {
+ DigitalSignatureConfiguration configuration = new DigitalSignatureConfiguration();
+ configuration.setClearHeaders(false);
+
+ DigitalSignatureProcessor processor = new DigitalSignatureProcessor(configuration) {
+ @Override
+ public void process(Exchange exchange) throws Exception {
+ // Noop
+ }
+ };
+
+ Exchange exchange = new DefaultExchange(new DefaultCamelContext());
+ Message message = new DefaultMessage(exchange);
+ message.setHeader(DigitalSignatureConstants.SIGNATURE, "test-signature");
+ message.setHeader(DigitalSignatureConstants.SIGNATURE_PRIVATE_KEY, "test-signature-private-key");
+ message.setHeader(DigitalSignatureConstants.SIGNATURE_PUBLIC_KEY_OR_CERT, "test-public-key-or-cert");
+ message.setHeader(DigitalSignatureConstants.KEYSTORE_ALIAS, "test-alias");
+ message.setHeader(DigitalSignatureConstants.KEYSTORE_PASSWORD, "test-password");
+
+ processor.clearMessageHeaders(message);
+
+ Map<String, Object> headers = message.getHeaders();
+ assertEquals(5, headers.size());
+ }
+}