refactor: moved MapUtil implemented by reflect API to another package

Author: zihluwang

devkit-utils/src/main/java/com/onixbyte/devkit/utils/AesUtil.java

@@ -34,8 +34,7 @@
 import java.util.UUID;
 
 /**
- * {@link AesUtil} can help you encrypt and decrypt data with specified secret
- * by AES algorithm.
+ * {@link AesUtil} can help you encrypt and decrypt data with specified secret by AES algorithm.
  *
  * @author hubin@baomidou
  * @version 1.1.0
@@ -81,8 +80,9 @@ public static byte[] decrypt(byte[] data, byte[] secret) {
             var cipher = Cipher.getInstance(AES_CBC_CIPHER);
             cipher.init(Cipher.DECRYPT_MODE, secretKeySpec, new IvParameterSpec(secret));
             return cipher.doFinal(data);
-        } catch (NoSuchAlgorithmException | NoSuchPaddingException | UnsupportedOperationException |
-                 InvalidKeyException | InvalidAlgorithmParameterException | IllegalBlockSizeException |
+        } catch (NoSuchAlgorithmException | NoSuchPaddingException |
+                 UnsupportedOperationException | InvalidKeyException |
+                 InvalidAlgorithmParameterException | IllegalBlockSizeException |
                  BadPaddingException exception) {
             log.error(exception.getMessage());
             for (var stackTraceElement : exception.getStackTrace()) {
@@ -100,7 +100,8 @@ public static byte[] decrypt(byte[] data, byte[] secret) {
      * @return the encryption result or {@code null} if encryption failed
      */
     public static String encrypt(String data, String secret) {
-        return Base64.getEncoder().encodeToString(encrypt(data.getBytes(StandardCharsets.UTF_8), secret.getBytes(StandardCharsets.UTF_8)));
+        return Base64.getEncoder().encodeToString(encrypt(data.getBytes(StandardCharsets.UTF_8),
+                secret.getBytes(StandardCharsets.UTF_8)));
     }
 
     /**

devkit-utils/src/main/java/com/onixbyte/devkit/utils/Base64Util.java

@@ -49,7 +49,7 @@
  * provided. It is recommended to specify the charset explicitly to ensure consistent
  * encoding and decoding.
  *
- * @author Zihlu Wang
+ * @author zihluwang
  * @version 1.1.0
  * @since 1.0.0
  */

devkit-utils/src/main/java/com/onixbyte/devkit/utils/ChainedCalcUtil.java

@@ -293,7 +293,9 @@ private ChainedCalcUtil operator(BiFunction<BigDecimal, BigDecimal, BigDecimal>
      *                           or null if not applicable
      * @return a ChainedCalcUtil instance with the updated value
      */
-    private ChainedCalcUtil operator(BiFunction<BigDecimal, BigDecimal, BigDecimal> operator, Object other, Integer beforeOperateScale) {
+    private ChainedCalcUtil operator(BiFunction<BigDecimal, BigDecimal, BigDecimal> operator,
+                                     Object other,
+                                     Integer beforeOperateScale) {
         return baseOperator((otherValue) ->
                 operator.apply(this.value, otherValue),
                 other,
@@ -311,7 +313,8 @@ private ChainedCalcUtil operator(BiFunction<BigDecimal, BigDecimal, BigDecimal>
      * @return a ChainedCalcUtil instance with the updated value
      */
     private synchronized ChainedCalcUtil baseOperator(Function<BigDecimal, BigDecimal> operatorFunction,
-                                                      Object anotherValue, Integer beforeOperateScale) {
+                                                      Object anotherValue,
+                                                      Integer beforeOperateScale) {
         if (Objects.isNull(anotherValue)) {
             return this;
         }

devkit-utils/src/main/java/com/onixbyte/devkit/utils/HashUtil.java

@@ -61,7 +61,7 @@
  * for data integrity checks and password storage, but they should not be used for
  * encryption purposes.
  *
- * @author Zihlu Wang
+ * @author zihluwang
  * @version 1.1.0
  * @see java.security.MessageDigest
  * @since 1.0.0

devkit-utils/src/main/java/com/onixbyte/devkit/utils/MapUtil.java

@@ -30,9 +30,8 @@
  * Note: Since version 1.4.2, this util class removed reflection API and transferred to a safer API.
  * Please see documentation for more information.
  *
- * @author Zihlu Wang
+ * @author zihluwang
  * @version 1.4.2
- * @see com.onixbyte.devkit.utils.unsafe.ReflectMapUtil
  * @since 1.0.0
  */
 @Slf4j

key-pair-loader/src/main/java/com/onixbyte/security/KeyLoader.java

@@ -50,10 +50,10 @@ private KeyLoader() {
      *
      * @param pemKeyText pem-formatted key text
      * @return loaded private key
-     * @throws KeyLoadingException if the generated key is not a {@link ECPrivateKey} instance, or EC Key Factory is
-     *                             not loaded, or key spec is invalid
+     * @throws KeyLoadingException if the generated key is not a {@link ECPrivateKey} instance,
+     *                             or EC Key Factory is not loaded, or key spec is invalid
      */
-    public ECPrivateKey loadEcdsaPrivateKey(String pemKeyText) {
+    public static ECPrivateKey loadEcdsaPrivateKey(String pemKeyText) {
         try {
             var decodedKeyString = Base64.getDecoder().decode(pemKeyText);
             var keySpec = new PKCS8EncodedKeySpec(decodedKeyString);
@@ -76,10 +76,10 @@ public ECPrivateKey loadEcdsaPrivateKey(String pemKeyText) {
      *
      * @param pemKeyText pem-formatted key text
      * @return loaded private key
-     * @throws KeyLoadingException if the generated key is not a {@link ECPrivateKey} instance, or EC Key Factory is
-     *                             not loaded, or key spec is invalid
+     * @throws KeyLoadingException if the generated key is not a {@link ECPrivateKey} instance,
+     *                             or EC Key Factory is not loaded, or key spec is invalid
      */
-    public ECPublicKey loadEcdsaPublicKey(String pemKeyText) {
+    public static ECPublicKey loadEcdsaPublicKey(String pemKeyText) {
         try {
             var keyBytes = Base64.getDecoder().decode(pemKeyText);
             var spec = new X509EncodedKeySpec(keyBytes);

key-pair-loader/src/main/java/com/onixbyte/security/exception/KeyLoadingException.java

@@ -17,24 +17,63 @@
 
 package com.onixbyte.security.exception;
 
+/**
+ * {@code KeyLoadingException} is an exception indicating an error occurred while loading a key.
+ *
+ * @author zihluwang
+ * @version 1.6.0
+ * @since 1.6.0
+ */
 public class KeyLoadingException extends RuntimeException {
 
+    /**
+     * Creates a new instance of {@code KeyLoadingException} without a specific message or cause.
+     */
     public KeyLoadingException() {
     }
 
+    /**
+     * Creates a new instance of {@code KeyLoadingException} with the specified detail message.
+     *
+     * @param message the detail message
+     */
     public KeyLoadingException(String message) {
         super(message);
     }
 
+    /**
+     * Creates a new instance of {@code KeyLoadingException} with the specified detail message
+     * and cause.
+     *
+     * @param message the detail message
+     * @param cause   the cause of this exception
+     */
     public KeyLoadingException(String message, Throwable cause) {
         super(message, cause);
     }
 
+    /**
+     * Creates a new instance of {@code KeyLoadingException} with the specified cause.
+     *
+     * @param cause the cause of this exception
+     */
     public KeyLoadingException(Throwable cause) {
         super(cause);
     }
 
-    public KeyLoadingException(String message, Throwable cause, boolean enableSuppression, boolean writableStackTrace) {
+    /**
+     * Constructs a new exception with the specified detail message, cause, suppression enabled
+     * or disabled, and writable stack trace enabled or disabled.
+     *
+     * @param message the detail message
+     * @param cause the cause of this exception
+     * @param enableSuppression whether suppression is enabled or disabled
+     * @param writableStackTrace whether the stack trace should be writable
+     */
+    public KeyLoadingException(String message,
+                               Throwable cause,
+                               boolean enableSuppression,
+                               boolean writableStackTrace) {
         super(message, cause, enableSuppression, writableStackTrace);
     }
 }

devkit-utils/src/main/java/com/onixbyte/devkit/utils/unsafe/ReflectMapUtil.java renamed to map-util-unsafe/src/main/java/com/onixbyte/devkit/utils/unsafe/ReflectMapUtil.java

@@ -53,7 +53,7 @@ public static Map<String, Object> objectToMap(Object obj) throws IllegalAccessEx
         var declaredFields = obj.getClass().getDeclaredFields();
         for (var field : declaredFields) {
             field.setAccessible(true);
-            Object result = field.get(obj);
+            var result = field.get(obj);
             if (result != null) {
                 map.put(field.getName(), result);
             }
@@ -157,7 +157,8 @@ public static <T> T getFieldValue(Object obj, String fieldName, Class<T> fieldTy
      * @throws IllegalAccessException    if an error occurs while accessing the field
      * @throws NoSuchMethodException     if the specific setter is not present
      */
-    public static void setFieldValue(Object obj, String fieldName, Object fieldValue) throws InvocationTargetException, IllegalAccessException, NoSuchMethodException {
+    public static void setFieldValue(Object obj, String fieldName, Object fieldValue)
+            throws InvocationTargetException, IllegalAccessException, NoSuchMethodException {
         var objectClass = obj.getClass();
         var methodName = getMethodName("set", fieldName);
         var method = objectClass.getDeclaredMethod(methodName, fieldValue.getClass());

simple-jwt-authzero/build.gradle.kts

@@ -33,6 +33,7 @@ version = buildVersion
 dependencies {
     implementation(project(":devkit-utils"))
     implementation(project(":guid"))
+    implementation(project(":key-pair-loader"))
     implementation(project(":simple-jwt-facade"))
     implementation("com.fasterxml.jackson.core:jackson-databind:$jacksonVersion")
     implementation("com.auth0:java-jwt:$javaJwtVersion")

simple-jwt-authzero/src/main/java/com/onixbyte/simplejwt/authzero/AuthzeroTokenResolver.java

@@ -25,6 +25,7 @@
 import com.onixbyte.simplejwt.annotations.ExcludeFromPayload;
 import com.onixbyte.simplejwt.annotations.TokenEnum;
 import com.onixbyte.simplejwt.authzero.config.AuthzeroTokenResolverConfig;
+import com.onixbyte.simplejwt.config.TokenResolverConfig;
 import com.onixbyte.simplejwt.constants.PredefinedKeys;
 import com.onixbyte.simplejwt.constants.TokenAlgorithm;
 import com.auth0.jwt.JWT;
@@ -45,15 +46,13 @@
 import java.util.*;
 
 /**
- * The {@code AuthzeroTokenResolver} class is an implementation of the {@link
- * TokenResolver} interface. It uses the {@code
- * com.auth0:java-jwt} library to handle JSON Web Token (JWT) resolution. This
- * resolver provides functionality to create, extract, verify, and renew JWT
+ * The {@code AuthzeroTokenResolver} class is an implementation of the {@link TokenResolver}
+ * interface. It uses the {@code com.auth0:java-jwt} library to handle JSON Web Token (JWT)
+ * resolution. This resolver provides functionality to create, extract, verify, and renew JWT
  * tokens using various algorithms and custom payload data.
  * <p>
  * <b>Usage:</b>
- * To use the {@code AuthzeroTokenResolver}, first, create an instance of this
- * class:
+ * To use the {@code AuthzeroTokenResolver}, first, create an instance of this class:
  * <pre>{@code
  * TokenResolver<DecodedJWT> tokenResolver =
  *     new AuthzeroTokenResolver(TokenAlgorithm.HS256,
@@ -62,8 +61,7 @@
  *                               "Token Secret");
  * }</pre>
  * <p>
- * Then, you can utilize the various methods provided by this resolver to
- * handle JWT tokens:
+ * Then, you can utilize the various methods provided by this resolver to handle JWT tokens:
  * <pre>{@code
  * // Creating a new JWT token
  * String token =
@@ -82,10 +80,9 @@
  * }</pre>
  * <p>
  * <b>Note:</b>
- * It is essential to configure the appropriate algorithms, secret, and issuer
- * according to your specific use case when using this resolver.
- * Additionally, ensure that the {@code com.auth0:java-jwt} library is
- * correctly configured in your project's dependencies.
+ * It is essential to configure the appropriate algorithms, secret, and issuer according to your
+ * specific use case when using this resolver. Additionally, ensure that the
+ * {@code com.auth0:java-jwt} library is correctly configured in your project's dependencies.
  *
  * @author Zihlu Wang
  * @version 1.1.1
@@ -100,61 +97,77 @@
 public class AuthzeroTokenResolver implements TokenResolver<DecodedJWT> {
 
     /**
-     * Creates a new instance of {@code AuthzeroTokenResolver} with the
-     * provided configurations.
+     * Creates a new instance of {@code AuthzeroTokenResolver} with the provided configurations.
      *
-     * @param jtiCreator   the {@link GuidCreator} used for generating unique
-     *                     identifiers for "jti" claim in JWT tokens
-     * @param algorithm    the algorithm used for signing and verifying JWT
-     *                     tokens
+     * @param jtiCreator   the {@link GuidCreator} used for generating unique identifiers for "jti"
+     *                     claim in JWT tokens
+     * @param algorithm    the algorithm used for signing and verifying JWT tokens
      * @param issuer       the issuer claim value to be included in JWT tokens
-     * @param secret       the secret used for HMAC-based algorithms (HS256,
-     *                     HS384, HS512) for token signing and verification
+     * @param privateKey   the secret used for HMAC-based algorithms (HS256, HS384, HS512) for
+     *                     token signing and verification, or the private key for ECDSA-based
+     *                     algorithms
+     * @param publicKey    the public key for ECDSA-based algorithms
      * @param objectMapper JSON handler
      */
-    public AuthzeroTokenResolver(GuidCreator<?> jtiCreator, TokenAlgorithm algorithm, String issuer, String secret, ObjectMapper objectMapper) {
-        if (secret == null || secret.isBlank()) {
-            throw new IllegalArgumentException("A secret is required to build a JSON Web Token.");
-        }
+    public AuthzeroTokenResolver(GuidCreator<?> jtiCreator,
+                                 TokenAlgorithm algorithm,
+                                 String issuer,
+                                 String privateKey,
+                                 String publicKey,
+                                 ObjectMapper objectMapper) {
+        if (TokenResolverConfig.HMAC_ALGORITHMS.contains(algorithm)) {
+            if (privateKey == null || privateKey.isBlank()) {
+                throw new IllegalArgumentException("A secret is required to build a JSON Web Token.");
+            }
 
-        if (secret.length() < 32) {
-            log.warn("The provided secret which owns {} characters is too weak. Please consider replacing it with a stronger one.", secret.length());
+            if (privateKey.length() < 32) {
+                log.warn("The provided secret which owns {} characters is too weak. Please consider" +
+                        " replacing it with a stronger one.", privateKey.length());
+            }
         }
 
         this.jtiCreator = jtiCreator;
         this.algorithm = config
                 .getAlgorithm(algorithm)
-                .apply(secret);
+                .apply(privateKey, publicKey);
         this.issuer = issuer;
         this.verifier = JWT.require(this.algorithm).build();
         this.objectMapper = objectMapper;
     }
 
     /**
-     * Creates a new instance of {@link AuthzeroTokenResolver} with the
-     * provided configurations and a simple UUID GuidCreator.
+     * Creates a new instance of {@link AuthzeroTokenResolver} with the provided configurations
+     * and a simple UUID GuidCreator.
      *
      * @param algorithm    the algorithm used for signing and verifying JWT tokens
      * @param issuer       the issuer claim value to be included in JWT tokens
-     * @param secret       the secret used for HMAC-based algorithms (HS256,
-     *                     HS384, HS512) for token signing and verification
+     * @param privateKey   the secret used for HMAC-based algorithms (HS256, HS384, HS512) for
+     *                     token signing and verification, or the private key for ECDSA-based
+     *                     algorithms
+     * @param publicKey    the public key for ECDSA-based algorithms
      * @param objectMapper Jackson Databind JSON Handler
      */
-    public AuthzeroTokenResolver(TokenAlgorithm algorithm, String issuer, String secret, ObjectMapper objectMapper) {
-        this(UUID::randomUUID, algorithm, issuer, secret, objectMapper);
+    public AuthzeroTokenResolver(TokenAlgorithm algorithm,
+                                 String issuer,
+                                 String privateKey,
+                                 String publicKey,
+                                 ObjectMapper objectMapper) {
+        this(UUID::randomUUID, algorithm, issuer, privateKey, publicKey, objectMapper);
     }
 
     /**
-     * Creates a new instance of {@link AuthzeroTokenResolver} with the
-     * provided configurations and a simple UUID GuidCreator.
+     * Creates a new instance of {@link AuthzeroTokenResolver} with the provided configurations
+     * and a simple UUID GuidCreator.
      *
-     * @param algorithm the algorithm used for signing and verifying JWT tokens
-     * @param issuer    the issuer claim value to be included in JWT tokens
-     * @param secret    the secret used for HMAC-based algorithms (HS256,
-     *                  HS384, HS512) for token signing and verification
+     * @param algorithm  the algorithm used for signing and verifying JWT tokens
+     * @param issuer     the issuer claim value to be included in JWT tokens
+     * @param privateKey the secret used for HMAC-based algorithms (HS256, HS384, HS512) for
+     *                   token signing and verification, or the private key for ECDSA-based
+     *                   algorithms
+     * @param publicKey  the public key for ECDSA-based algorithms
      */
-    public AuthzeroTokenResolver(TokenAlgorithm algorithm, String issuer, String secret) {
-        this(UUID::randomUUID, algorithm, issuer, secret, new ObjectMapper());
+    public AuthzeroTokenResolver(TokenAlgorithm algorithm, String issuer, String privateKey, String publicKey) {
+        this(UUID::randomUUID, algorithm, issuer, privateKey, publicKey, new ObjectMapper());
     }
 
     /**
@@ -163,11 +176,10 @@ public AuthzeroTokenResolver(TokenAlgorithm algorithm, String issuer, String sec
      * UUID GuidCreator.
      *
      * @param issuer the issuer claim value to be included in JWT tokens
-     * @param secret the secret used for HMAC-based algorithms (HS256,
-     *               HS384, HS512) for token signing and verification
+     * @param secret the secret used for HS256 algorithms for token signing and verification
      */
     public AuthzeroTokenResolver(String issuer, String secret) {
-        this(UUID::randomUUID, TokenAlgorithm.HS256, issuer, secret, new ObjectMapper());
+        this(UUID::randomUUID, TokenAlgorithm.HS256, issuer, secret, "", new ObjectMapper());
     }
 
     /**
@@ -183,7 +195,7 @@ public AuthzeroTokenResolver(String issuer) {
         this.jtiCreator = UUID::randomUUID;
         this.algorithm = config
                 .getAlgorithm(TokenAlgorithm.HS256)
-                .apply(secret);
+                .apply(secret, "");
         this.issuer = issuer;
         this.verifier = JWT.require(this.algorithm).build();
         this.objectMapper = new ObjectMapper();