/*
 * Copyright 2002-2018 the original author or authors.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package org.springframework.http.server.reactive;

import java.security.cert.Certificate;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.List;
import javax.net.ssl.SSLSession;

import org.springframework.lang.Nullable;
import org.springframework.util.Assert;

Default implementation of SslInfo.
Author:Rossen Stoyanchev
Since:5.0.2
/** * Default implementation of {@link SslInfo}. * * @author Rossen Stoyanchev * @since 5.0.2 */
final class DefaultSslInfo implements SslInfo { @Nullable private final String sessionId; @Nullable private final X509Certificate[] peerCertificates; DefaultSslInfo(@Nullable String sessionId, X509Certificate[] peerCertificates) { Assert.notNull(peerCertificates, "No SSL certificates"); this.sessionId = sessionId; this.peerCertificates = peerCertificates; } DefaultSslInfo(SSLSession session) { Assert.notNull(session, "SSLSession is required"); this.sessionId = initSessionId(session); this.peerCertificates = initCertificates(session); } @Override @Nullable public String getSessionId() { return this.sessionId; } @Override @Nullable public X509Certificate[] getPeerCertificates() { return this.peerCertificates; } @Nullable private static String initSessionId(SSLSession session) { byte [] bytes = session.getId(); if (bytes == null) { return null; } StringBuilder sb = new StringBuilder(); for (byte b : bytes) { String digit = Integer.toHexString(b); if (digit.length() < 2) { sb.append('0'); } if (digit.length() > 2) { digit = digit.substring(digit.length() - 2); } sb.append(digit); } return sb.toString(); } @Nullable private static X509Certificate[] initCertificates(SSLSession session) { Certificate[] certificates; try { certificates = session.getPeerCertificates(); } catch (Throwable ex) { return null; } List<X509Certificate> result = new ArrayList<>(certificates.length); for (Certificate certificate : certificates) { if (certificate instanceof X509Certificate) { result.add((X509Certificate) certificate); } } return (!result.isEmpty() ? result.toArray(new X509Certificate[0]) : null); } }