From dbd5bb99cd6a6c8a7465acb31468a07f2523f188 Mon Sep 17 00:00:00 2001
From: "Benjamin, Max (mb388a)" <mb388a@us.att.com>
Date: Fri, 15 Feb 2019 17:49:16 -0500
Subject: Use APIH credentials in 'mso.db.auth'

Updated to use methods: env.getRequiredProperty() and msoLogger.error().
Added the msoKey and the CryptoUtils.decrypt() code, and used
"mso.camundaAuth".
Used APIH credentials in 'mso.db.auth' as source instead of
'mso.camundaAuth' (need decrypt code by CryptoUtils).

Change-Id: I66c9d96db8137c1d9a5b56aa33d14587cbaa7b9e
Issue-ID: SO-1517
Signed-off-by: Benjamin, Max (mb388a) <mb388a@us.att.com>
---
 .../org/onap/so/apihandlerinfra/ServiceInstances.java     | 15 ++++++++++++---
 1 file changed, 12 insertions(+), 3 deletions(-)

(limited to 'mso-api-handlers')

diff --git a/mso-api-handlers/mso-api-handler-infra/src/main/java/org/onap/so/apihandlerinfra/ServiceInstances.java b/mso-api-handlers/mso-api-handler-infra/src/main/java/org/onap/so/apihandlerinfra/ServiceInstances.java
index 66b04b6fdb..312db9a338 100644
--- a/mso-api-handlers/mso-api-handler-infra/src/main/java/org/onap/so/apihandlerinfra/ServiceInstances.java
+++ b/mso-api-handlers/mso-api-handler-infra/src/main/java/org/onap/so/apihandlerinfra/ServiceInstances.java
@@ -81,6 +81,7 @@ import org.onap.so.serviceinstancebeans.ServiceInstancesRequest;
 import org.onap.so.serviceinstancebeans.ServiceInstancesResponse;
 import org.onap.so.serviceinstancebeans.VfModules;
 import org.onap.so.serviceinstancebeans.Vnfs;
+import org.onap.so.utils.CryptoUtils;
 import org.onap.so.utils.UUIDChecker;
 import org.slf4j.MDC;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -111,6 +112,7 @@ import javax.ws.rs.core.MultivaluedMap;
 import javax.ws.rs.core.Response;
 import java.io.IOException;
 import java.net.URL;
+import java.security.GeneralSecurityException;
 import java.sql.Timestamp;
 import java.util.ArrayList;
 import java.util.HashMap;
@@ -1176,7 +1178,7 @@ public class ServiceInstances {
     	String requestId = duplicateRecord.getRequestId();
     	String path = env.getProperty("mso.camunda.rest.history.uri") + requestId;
     	String targetUrl = env.getProperty("mso.camundaURL") + path;
-    	HttpHeaders headers = setHeaders(env.getProperty("mso.camundaAuth")); 
+    	HttpHeaders headers = setHeaders(env.getRequiredProperty("mso.camundaAuth"), env.getRequiredProperty("mso.msoKey")); 
     	HttpEntity<?> requestEntity = new HttpEntity<>(headers);
     	ResponseEntity<List<HistoricProcessInstanceEntity>> response = null;
     	try{
@@ -1200,12 +1202,19 @@ public class ServiceInstances {
     	}	
 		return false;
 	}
-    private HttpHeaders setHeaders(String auth) {
+    private HttpHeaders setHeaders(String auth, String msoKey) {
 		HttpHeaders headers = new HttpHeaders();
 		List<org.springframework.http.MediaType> acceptableMediaTypes = new ArrayList<>();
 		acceptableMediaTypes.add(org.springframework.http.MediaType.APPLICATION_JSON);
 		headers.setAccept(acceptableMediaTypes);
-		headers.add(HttpHeaders.AUTHORIZATION, auth);
+       	try {
+       		String userCredentials = CryptoUtils.decrypt(auth, msoKey);
+       		if(userCredentials != null) {
+       			headers.add(HttpHeaders.AUTHORIZATION, userCredentials);
+       		}
+        } catch(GeneralSecurityException e) {
+                msoLogger.error("Security exception", e);
+        }
 		return headers;
 	}
 
-- 
cgit 1.2.3-korg