FRAMessageUtils.m revision c6441b7e8f8ff32eeac89153bf584b8945543e84
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni * The contents of this file are subject to the terms of the Common Development and
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni * Distribution License (the License). You may not use this file except in compliance with the
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni * You can obtain a copy of the License at legal/CDDLv1.0.txt. See the License for the
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni * specific language governing permission and limitations under the License.
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni * When distributing Covered Software, include this CDDL Header Notice in each file and include
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni * the License file at legal/CDDLv1.0.txt. If applicable, add the following below the CDDL
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni * Header, with the fields enclosed by brackets [] replaced by your own identifying
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni * information: "Portions copyright [year] [name of copyright owner]".
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni * Copyright 2016 ForgeRock AS.
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni#import "FRAMessageUtils.h"
c6441b7e8f8ff32eeac89153bf584b8945543e84Diego Colantoni#import "FRAQRUtils.h"
9ebd9a731316dfd624ce3bcc4ea6519d10899936Ken Stubbings/*! The Communication mechanism Content Type. */
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantonistatic NSString * const JSON_CONTENT_TYPE = @"application/json";
9ebd9a731316dfd624ce3bcc4ea6519d10899936Ken Stubbings/*! The Communication mechanism key. */
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantonistatic NSString * const CONTENT_TYPE_HEADER = @"Content-Type";
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings+ (void)respondWithEndpoint:(NSString *)endpoint
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings handler:(void (^)(NSInteger, NSError *))handler {
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings [self respondWithEndpoint:endpoint base64Secret:base64Secret messageId:messageId data:data protocol:nil handler:handler];
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings+ (void)respondWithEndpoint:(NSString *)endpoint
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings handler:(void (^)(NSInteger, NSError *))handler {
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni NSURL *URL = [NSURL URLWithString:endpoint];
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni NSDictionary *payload = [self createPayloadWithMessageId:messageId base64Secret:base64Secret data:data];
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni AFHTTPSessionManager *manager = [self createHTTPSessionManager:protocol];
9ebd9a731316dfd624ce3bcc4ea6519d10899936Ken Stubbings [manager setRequestSerializer:[AFJSONRequestSerializer serializer]];
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni [manager.requestSerializer setValue:JSON_CONTENT_TYPE forHTTPHeaderField:CONTENT_TYPE_HEADER];
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni success:^(NSURLSessionTask *task, id responseObject) {
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni handler([(NSHTTPURLResponse*)task.response statusCode], nil);
9ebd9a731316dfd624ce3bcc4ea6519d10899936Ken Stubbings } failure:^(NSURLSessionTask *task, NSError *error) {
9ebd9a731316dfd624ce3bcc4ea6519d10899936Ken Stubbings NSLog(@"Error code = %li", [(NSHTTPURLResponse*)task.response statusCode]);
9ebd9a731316dfd624ce3bcc4ea6519d10899936Ken Stubbings handler([(NSHTTPURLResponse*)task.response statusCode], error);
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings+ (AFHTTPSessionManager *)createHTTPSessionManager:(Class)protocol {
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni NSURLSessionConfiguration *sessionConfiguration = [NSURLSessionConfiguration defaultSessionConfiguration];
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni NSMutableArray * protocolsArray = [sessionConfiguration.protocolClasses mutableCopy];
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni [protocolsArray insertObject:protocol atIndex:0];
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni sessionConfiguration.protocolClasses = protocolsArray;
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni return [[AFHTTPSessionManager alloc] initWithSessionConfiguration:sessionConfiguration];
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings+ (NSDictionary *)createPayloadWithMessageId:(NSString *)messageId
9ebd9a731316dfd624ce3bcc4ea6519d10899936Ken Stubbings NSString *jwtData = [self generateJwtWithPayload:data base64Secret:base64Secret];
9ebd9a731316dfd624ce3bcc4ea6519d10899936Ken Stubbings NSDictionary *topLevelData = @{@"messageId":messageId, @"jwt":jwtData};
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings+ (NSString *)generateJwtWithPayload:(NSDictionary *)payload base64Secret:(NSString *)base64Secret {
b3a21de0a0e0a5dea71bece7e5c0356700136fbcDiego Colantoni id<JWTAlgorithm> algorithm = [JWTAlgorithmFactory algorithmByName:@"HS256"];
c6441b7e8f8ff32eeac89153bf584b8945543e84Diego Colantoni NSData *secretBytes = [[FRAQRUtils decodeURL:base64Secret] dataUsingEncoding:NSUTF8StringEncoding];
9ebd9a731316dfd624ce3bcc4ea6519d10899936Ken Stubbings return [JWTBuilder encodePayload:payload].secretData(secretBytes).algorithm(algorithm).encode;
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings+ (NSDictionary *)extractJTWBodyFromString:(NSString *)message {
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings NSArray* strings = [message componentsSeparatedByString:@"."];
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings int padLength = (4 - (payloadString.length % 4)) % 4;
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings payloadString = [payloadString stringByAppendingString:@"="];
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings NSData *payloadBytes = [[NSData alloc] initWithBase64EncodedString:payloadString options:0];
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings NSDictionary* data = [NSJSONSerialization JSONObjectWithData:payloadBytes
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings+ (NSString *)generateChallengeResponse:(NSString *) challenge secret:(NSString *) secret {
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings NSData *saltData = [[NSData alloc] initWithBase64EncodedString:secret options:0];
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings NSData *paramData = [[NSData alloc] initWithBase64EncodedString:challenge options:0];
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings NSMutableData * data = [NSMutableData dataWithLength:CC_SHA256_DIGEST_LENGTH];
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings CCHmac(kCCHmacAlgSHA256, saltData.bytes, saltData.length, paramData.bytes, paramData.length, data.mutableBytes);
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings NSString * hashedResponseString = [data base64EncodedStringWithOptions:0];
a1e92b2783be4bfeb0c7e267223cc7779a6f324cKen Stubbings NSLog(@"hashedResponseString = %@", hashedResponseString);