Merge branch 'master' into missing-long

lbalmaceda · web-flow · commit 9193d5dcaf89 · 2017-04-12T15:04:55.000-03:00
diff --git a/README.md b/README.md
@@ -338,6 +338,7 @@ The Claim class is a wrapper for the Claim values. It allows you to get the Clai
 To obtain a Claim as a Collection you'll need to provide the **Class Type** of the contents to convert from.
 
 * **as(class)**: Returns the value parsed as **Class Type**. For collections you should use the `asArray` and `asList` methods.
+* **asMap()**: Returns the value parsed as **Map<String, Object>**.
 * **asArray(class)**: Returns the value parsed as an Array of elements of type **Class Type**, or null if the value isn't a JSON Array.
 * **asList(class)**: Returns the value parsed as a List of elements of type **Class Type**, or null if the value isn't a JSON Array.
 
diff --git a/lib/src/main/java/com/auth0/jwt/JWTDecoder.java b/lib/src/main/java/com/auth0/jwt/JWTDecoder.java
@@ -3,7 +3,6 @@
 import com.auth0.jwt.exceptions.JWTDecodeException;
 import com.auth0.jwt.impl.JWTParser;
 import com.auth0.jwt.interfaces.Claim;
-import com.auth0.jwt.interfaces.DecodedJWT;
 import com.auth0.jwt.interfaces.Header;
 import com.auth0.jwt.interfaces.Payload;
 import org.apache.commons.codec.binary.Base64;
diff --git a/lib/src/main/java/com/auth0/jwt/JWTVerifier.java b/lib/src/main/java/com/auth0/jwt/JWTVerifier.java
@@ -5,6 +5,7 @@
 import com.auth0.jwt.exceptions.InvalidClaimException;
 import com.auth0.jwt.exceptions.JWTVerificationException;
 import com.auth0.jwt.exceptions.SignatureVerificationException;
+import com.auth0.jwt.exceptions.TokenExpiredException;
 import com.auth0.jwt.impl.PublicClaims;
 import com.auth0.jwt.interfaces.Claim;
 import com.auth0.jwt.interfaces.Clock;
@@ -434,23 +435,31 @@ private void assertValidStringClaim(String claimName, String value, String expec
     }
 
     private void assertValidDateClaim(Date date, long leeway, boolean shouldBeFuture) {
-        Date today = clock.getToday();
-        today.setTime((long) Math.floor((today.getTime() / 1000) * 1000)); //truncate millis
-        boolean isValid;
-        String errMessage;
-        if (shouldBeFuture) {
-            today.setTime(today.getTime() - leeway * 1000);
-            isValid = date == null || !today.after(date);
-            errMessage = String.format("The Token has expired on %s.", date);
-        } else {
-            today.setTime(today.getTime() + leeway * 1000);
-            isValid = date == null || !today.before(date);
-            errMessage = String.format("The Token can't be used before %s.", date);
-        }
-        if (!isValid) {
-            throw new InvalidClaimException(errMessage);
-        }
-    }
+		Date today = clock.getToday();
+		today.setTime((long) Math.floor((today.getTime() / 1000) * 1000)); // truncate
+																		  // millis
+		if (shouldBeFuture) {
+			assertDateIsFuture(date, leeway, today);
+		} else {
+			assertDateIsPast(date, leeway, today);
+		}
+	}
+
+	private void assertDateIsFuture(Date date, long leeway, Date today) {
+		
+		today.setTime(today.getTime() - leeway * 1000);
+		if (date != null && today.after(date)) {
+			throw new TokenExpiredException(String.format("The Token has expired on %s.", date));
+		}
+	}
+	
+	private void assertDateIsPast(Date date, long leeway, Date today) {
+		today.setTime(today.getTime() + leeway * 1000);
+		if(date!=null && today.before(date)) {
+			throw new InvalidClaimException(String.format("The Token can't be used before %s.", date));
+		}
+		
+	}
 
     private void assertValidAudienceClaim(List<String> audience, List<String> value) {
         if (audience == null || !audience.containsAll(value)) {
diff --git a/lib/src/main/java/com/auth0/jwt/exceptions/TokenExpiredException.java b/lib/src/main/java/com/auth0/jwt/exceptions/TokenExpiredException.java
@@ -0,0 +1,10 @@
+package com.auth0.jwt.exceptions;
+
+public class TokenExpiredException extends JWTVerificationException {
+	
+	private static final long serialVersionUID = -7076928975713577708L;
+
+	public TokenExpiredException(String message) {
+		super(message);
+	}
+}
diff --git a/lib/src/main/java/com/auth0/jwt/impl/JsonNodeClaim.java b/lib/src/main/java/com/auth0/jwt/impl/JsonNodeClaim.java
@@ -3,6 +3,7 @@
 import com.auth0.jwt.exceptions.JWTDecodeException;
 import com.auth0.jwt.interfaces.Claim;
 import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.core.type.TypeReference;
 import com.fasterxml.jackson.databind.JsonNode;
 import com.fasterxml.jackson.databind.ObjectMapper;
 
@@ -93,6 +94,22 @@ public <T> List<T> asList(Class<T> tClazz) throws JWTDecodeException {
         return list;
     }
 
+    @Override
+    public Map<String, Object> asMap() throws JWTDecodeException {
+        if (!data.isObject()) {
+            return null;
+        }
+
+        ObjectMapper mapper = new ObjectMapper();
+        try {
+            TypeReference<Map<String, Object>> mapType = new TypeReference<Map<String, Object>>() {
+            };
+            return mapper.treeAsTokens(data).readValueAs(mapType);
+        } catch (IOException e) {
+            throw new JWTDecodeException("Couldn't map the Claim value to Map", e);
+        }
+    }
+
     @Override
     public <T> T as(Class<T> tClazz) throws JWTDecodeException {
         ObjectMapper mapper = new ObjectMapper();
@@ -105,7 +122,7 @@ public <T> T as(Class<T> tClazz) throws JWTDecodeException {
 
     @Override
     public boolean isNull() {
-        return !(data.isArray() || data.canConvertToLong() || data.isTextual() || data.isNumber() || data.isBoolean());
+        return false;
     }
 
     /**
diff --git a/lib/src/main/java/com/auth0/jwt/impl/NullClaim.java b/lib/src/main/java/com/auth0/jwt/impl/NullClaim.java
@@ -5,6 +5,7 @@
 
 import java.util.Date;
 import java.util.List;
+import java.util.Map;
 
 /**
  * The {@link NullClaim} class is a Claim implementation that returns null when any of it's methods it's called.
@@ -55,6 +56,11 @@ public <T> List<T> asList(Class<T> tClazz) throws JWTDecodeException {
         return null;
     }
 
+    @Override
+    public Map<String, Object> asMap() throws JWTDecodeException {
+        return null;
+    }
+
     @Override
     public <T> T as(Class<T> tClazz) throws JWTDecodeException {
         return null;
diff --git a/lib/src/main/java/com/auth0/jwt/interfaces/Claim.java b/lib/src/main/java/com/auth0/jwt/interfaces/Claim.java
@@ -4,12 +4,18 @@
 
 import java.util.Date;
 import java.util.List;
+import java.util.Map;
 
 /**
  * The Claim class holds the value in a generic way so that it can be recovered in many representations.
  */
 public interface Claim {
 
+    /**
+     * Whether this Claim has a null value or not.
+     *
+     * @return whether this Claim has a null value or not.
+     */
     boolean isNull();
 
     /**
@@ -78,6 +84,14 @@ public interface Claim {
      */
     <T> List<T> asList(Class<T> tClazz) throws JWTDecodeException;
 
+    /**
+     * Get this Claim as a generic Map of values.
+     *
+     * @return the value as instance of Map.
+     * @throws JWTDecodeException if the value can't be converted to a Map.
+     */
+    Map<String, Object> asMap() throws JWTDecodeException;
+
     /**
      * Get this Claim as a custom type T.
      *
diff --git a/lib/src/test/java/com/auth0/jwt/JWTDecoderTest.java b/lib/src/test/java/com/auth0/jwt/JWTDecoderTest.java
@@ -7,6 +7,7 @@
 import org.apache.commons.codec.binary.Base64;
 import org.hamcrest.collection.IsCollectionWithSize;
 import org.hamcrest.core.IsCollectionContaining;
+import org.junit.Assert;
 import org.junit.Rule;
 import org.junit.Test;
 import org.junit.rules.ExpectedException;
@@ -192,11 +193,71 @@ public void shouldGetValidClaim() throws Exception {
     }
 
     @Test
-    public void shouldGetNullClaimIfClaimValueIsNull() throws Exception {
+    public void shouldNotGetNullClaimIfClaimIsEmptyObject() throws Exception {
         DecodedJWT jwt = JWTDecoder.decode("eyJhbGciOiJIUzI1NiJ9.eyJvYmplY3QiOnt9fQ.d3nUeeL_69QsrHL0ZWij612LHEQxD8EZg1rNoY3a4aI");
         assertThat(jwt, is(notNullValue()));
         assertThat(jwt.getClaim("object"), is(notNullValue()));
-        assertThat(jwt.getClaim("object").isNull(), is(true));
+        assertThat(jwt.getClaim("object").isNull(), is(false));
+    }
+
+    @Test
+    public void shouldGetCustomClaimOfTypeInteger() throws Exception {
+        String token = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYW1lIjoxMjN9.XZAudnA7h3_Al5kJydzLjw6RzZC3Q6OvnLEYlhNW7HA";
+        DecodedJWT jwt = JWT.decode(token);
+        Assert.assertThat(jwt, is(notNullValue()));
+        Assert.assertThat(jwt.getClaim("name").asInt(), is(123));
+    }
+
+    @Test
+    public void shouldGetCustomClaimOfTypeDouble() throws Exception {
+        String token = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYW1lIjoyMy40NX0.7pyX2OmEGaU9q15T8bGFqRm-d3RVTYnqmZNZtxMKSlA";
+        DecodedJWT jwt = JWT.decode(token);
+        Assert.assertThat(jwt, is(notNullValue()));
+        Assert.assertThat(jwt.getClaim("name").asDouble(), is(23.45));
+    }
+
+    @Test
+    public void shouldGetCustomClaimOfTypeBoolean() throws Exception {
+        String token = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYW1lIjp0cnVlfQ.FwQ8VfsZNRqBa9PXMinSIQplfLU4-rkCLfIlTLg_MV0";
+        DecodedJWT jwt = JWT.decode(token);
+        Assert.assertThat(jwt, is(notNullValue()));
+        Assert.assertThat(jwt.getClaim("name").asBoolean(), is(true));
+    }
+
+    @Test
+    public void shouldGetCustomClaimOfTypeDate() throws Exception {
+        String token = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYW1lIjoxNDc4ODkxNTIxfQ.mhioumeok8fghQEhTKF3QtQAksSvZ_9wIhJmgZLhJ6c";
+        Date date = new Date(1478891521000L);
+        DecodedJWT jwt = JWT.decode(token);
+        Assert.assertThat(jwt, is(notNullValue()));
+        Assert.assertThat(jwt.getClaim("name").asDate().getTime(), is(date.getTime()));
+    }
+
+    @Test
+    public void shouldGetCustomArrayClaimOfTypeString() throws Exception {
+        String token = "eyJhbGciOiJIUzI1NiJ9.eyJuYW1lIjpbInRleHQiLCIxMjMiLCJ0cnVlIl19.lxM8EcmK1uSZRAPd0HUhXGZJdauRmZmLjoeqz4J9yAA";
+        DecodedJWT jwt = JWT.decode(token);
+        Assert.assertThat(jwt, is(notNullValue()));
+        Assert.assertThat(jwt.getClaim("name").asArray(String.class), arrayContaining("text", "123", "true"));
+    }
+
+    @Test
+    public void shouldGetCustomArrayClaimOfTypeInteger() throws Exception {
+        String token = "eyJhbGciOiJIUzI1NiJ9.eyJuYW1lIjpbMSwyLDNdfQ.UEuMKRQYrzKAiPpPLhIVawWkKWA1zj0_GderrWUIyFE";
+        DecodedJWT jwt = JWT.decode(token);
+        Assert.assertThat(jwt, is(notNullValue()));
+        Assert.assertThat(jwt.getClaim("name").asArray(Integer.class), arrayContaining(1, 2, 3));
+    }
+
+    @Test
+    public void shouldGetCustomMapClaim() throws Exception {
+        String token = "eyJhbGciOiJIUzI1NiJ9.eyJuYW1lIjp7InN0cmluZyI6InZhbHVlIiwibnVtYmVyIjoxLCJib29sZWFuIjp0cnVlfX0.-8aIaXd2-rp1lLuDEQmCeisCBX9X_zbqdPn2llGxNoc";
+        DecodedJWT jwt = JWT.decode(token);
+        Assert.assertThat(jwt, is(notNullValue()));
+        Map<String, Object> map = jwt.getClaim("name").asMap();
+        Assert.assertThat(map, hasEntry("string", (Object) "value"));
+        Assert.assertThat(map, hasEntry("number", (Object) 1));
+        Assert.assertThat(map, hasEntry("boolean", (Object) true));
     }
 
     @Test
diff --git a/lib/src/test/java/com/auth0/jwt/JWTVerifierTest.java b/lib/src/test/java/com/auth0/jwt/JWTVerifierTest.java
@@ -3,6 +3,7 @@
 import com.auth0.jwt.algorithms.Algorithm;
 import com.auth0.jwt.exceptions.AlgorithmMismatchException;
 import com.auth0.jwt.exceptions.InvalidClaimException;
+import com.auth0.jwt.exceptions.TokenExpiredException;
 import com.auth0.jwt.interfaces.Clock;
 import com.auth0.jwt.interfaces.DecodedJWT;
 import org.junit.Rule;
@@ -403,7 +404,7 @@ public void shouldValidateExpiresAtIfPresent() throws Exception {
 
     @Test
     public void shouldThrowOnInvalidExpiresAtIfPresent() throws Exception {
-        exception.expect(InvalidClaimException.class);
+        exception.expect(TokenExpiredException.class);
         exception.expectMessage(startsWith("The Token has expired on"));
         Clock clock = mock(Clock.class);
         when(clock.getToday()).thenReturn(new Date(DATE_TOKEN_MS_VALUE + 1000));
diff --git a/lib/src/test/java/com/auth0/jwt/impl/JsonNodeClaimTest.java b/lib/src/test/java/com/auth0/jwt/impl/JsonNodeClaimTest.java
diff --git a/lib/src/test/java/com/auth0/jwt/impl/NullClaimTest.java b/lib/src/test/java/com/auth0/jwt/impl/NullClaimTest.java
