feat: hydra integration for auth, token and few more endpoints

build.gradle

@@ -73,6 +73,9 @@ dependencies {
 
     // https://mvnrepository.com/artifact/com.googlecode.libphonenumber/libphonenumber/
     implementation group: 'com.googlecode.libphonenumber', name: 'libphonenumber', version: '8.13.25'
+    implementation group: 'io.jsonwebtoken', name: 'jjwt-api', version: '0.12.6'
+    runtimeOnly group: 'io.jsonwebtoken', name: 'jjwt-impl', version: '0.12.6'
+    runtimeOnly group: 'io.jsonwebtoken', name: 'jjwt-jackson', version: '0.12.6'
 
     compileOnly project(":supertokens-plugin-interface")
     testImplementation project(":supertokens-plugin-interface")

devConfig.yaml

@@ -154,17 +154,17 @@ disable_telemetry: true
 
 # (OPTIONAL | Default: null) string value. If specified, the core uses this URL to connect to the OAuth provider
 #  public service.
-# oauth_provider_public_service_url:
+oauth_provider_public_service_url: http://localhost:4444
 
 # (OPTIONAL | Default: null) string value. If specified, the core uses this URL to connect to the OAuth provider admin
 #  service.
-# oauth_provider_admin_service_url:
+oauth_provider_admin_service_url: http://localhost:4445
 
 
 # (OPTIONAL | Default: http://localhost:3000) string value. If specified, the core uses this URL replace the default
 # consent and login URLs to {apiDomain}.
-# oauth_provider_consent_login_base_url:
+oauth_provider_consent_login_base_url: http://localhost:3000
 
 # (OPTIONAL | Default: oauth_provider_public_service_url) If specified, the core uses this URL to parse responses from the oauth provider when
 # the oauth provider's internal address differs from the known public provider address.
-# oauth_provider_url_configured_in_hydra:
+# oauth_provider_url_configured_in_hydra: http://localhost:4001

src/main/java/io/supertokens/httpRequest/HttpRequest.java

@@ -125,6 +125,7 @@ public static <T> T sendGETRequest(Main main, String requestID, String url, Map<
     @SuppressWarnings("unchecked")
     public static <T> T sendGETRequestWithResponseHeaders(Main main, String requestID, String url,
                                                           Map<String, String> params,
+                                                          Map<String, String> headers,
                                                           int connectionTimeoutMS, int readTimeoutMS, Integer version,
                                                           Map<String, List<String>> responseHeaders, boolean followRedirects)
             throws IOException, HttpResponseException {
@@ -152,6 +153,11 @@ public static <T> T sendGETRequestWithResponseHeaders(Main main, String requestI
             if (version != null) {
                 con.setRequestProperty("api-version", version + "");
             }
+            if (headers != null) {
+                for (Map.Entry<String, String> entry : headers.entrySet()) {
+                    con.setRequestProperty(entry.getKey(), entry.getValue());
+                }
+            }
             con.setInstanceFollowRedirects(followRedirects);
             int responseCode = con.getResponseCode();
 
@@ -293,4 +299,62 @@ public static <T> T sendJsonDELETERequest(Main main, String requestID, String ur
                 "DELETE");
     }
 
-}
+    public static <T> T sendFormPOSTRequest(Main main, String requestID, String url, Map<String, String> formData,
+                                            int connectionTimeoutMS, int readTimeoutMS, Integer version)
+            throws IOException, HttpResponseException {
+        StringBuilder formDataBuilder = new StringBuilder();
+        for (Map.Entry<String, String> entry : formData.entrySet()) {
+            formDataBuilder.append(entry.getKey()).append("=")
+                    .append(URLEncoder.encode(entry.getValue(), StandardCharsets.UTF_8)).append("&");
+        }
+        String formDataStr = formDataBuilder.toString();
+        if (!formDataStr.equals("")) {
+            formDataStr = formDataStr.substring(0, formDataStr.length() - 1);
+        }
+
+        URL obj = getURL(main, requestID, url);
+        HttpURLConnection con = null;
+        try {
+            con = (HttpURLConnection) obj.openConnection();
+            con.setRequestMethod("POST");
+            con.setConnectTimeout(connectionTimeoutMS);
+            con.setReadTimeout(readTimeoutMS);
+            con.setRequestProperty("Content-Type", "application/x-www-form-urlencoded; charset=UTF-8");
+            if (version != null) {
+                con.setRequestProperty("api-version", version + "");
+            }
+
+            con.setDoOutput(true);
+            try (OutputStream os = con.getOutputStream()) {
+                os.write(formDataStr.getBytes(StandardCharsets.UTF_8));
+            }
+
+            int responseCode = con.getResponseCode();
+            InputStream inputStream = null;
+            if (responseCode < STATUS_CODE_ERROR_THRESHOLD) {
+                inputStream = con.getInputStream();
+            } else {
+                inputStream = con.getErrorStream();
+            }
+
+            StringBuilder response = new StringBuilder();
+            try (BufferedReader in = new BufferedReader(new InputStreamReader(inputStream))) {
+                String inputLine;
+                while ((inputLine = in.readLine()) != null) {
+                    response.append(inputLine);
+                }
+            }
+            if (responseCode < STATUS_CODE_ERROR_THRESHOLD) {
+                if (!isJsonValid(response.toString())) {
+                    return (T) response.toString();
+                }
+                return (T) (new JsonParser().parse(response.toString()));
+            }
+            throw new HttpResponseException(responseCode, response.toString());
+        } finally {
+            if (con != null) {
+                con.disconnect();
+            }
+        }
+    }
+}

src/main/java/io/supertokens/inmemorydb/Start.java

@@ -3046,4 +3046,13 @@ public boolean removeAppClientAssociation(AppIdentifier appIdentifier, String cl
             throw new StorageQueryException(e);
         }
     }
+
+    @Override
+    public List<String> listClientsForApp(AppIdentifier appIdentifier) throws StorageQueryException {
+        try {
+            return OAuthQueries.listClientsForApp(this, appIdentifier);
+        } catch (SQLException e) {
+            throw new StorageQueryException(e);
+        }
+    }
 }

src/main/java/io/supertokens/inmemorydb/queries/OAuthQueries.java

@@ -23,6 +23,8 @@
 
 import java.sql.ResultSet;
 import java.sql.SQLException;
+import java.util.ArrayList;
+import java.util.List;
 
 import static io.supertokens.inmemorydb.QueryExecutorTemplate.execute;
 import static io.supertokens.inmemorydb.QueryExecutorTemplate.update;
@@ -51,6 +53,21 @@ public static boolean isClientIdForAppId(Start start, String clientId, AppIdenti
         }, ResultSet::next);
     }
 
+    public static List<String> listClientsForApp(Start start, AppIdentifier appIdentifier)
+            throws SQLException, StorageQueryException {
+        String QUERY = "SELECT client_id FROM " + Config.getConfig(start).getOAuthClientTable() +
+                " WHERE app_id = ?";
+        return execute(start, QUERY, pst -> {
+            pst.setString(1, appIdentifier.getAppId());
+        }, (result) -> {
+            List<String> res = new ArrayList<>();
+            while (result.next()) {
+                res.add(result.getString("client_id"));
+            }
+            return res;
+        });
+    }
+
     public static void insertClientIdForAppId(Start start, String clientId, AppIdentifier appIdentifier)
             throws SQLException, StorageQueryException {
         String INSERT = "INSERT INTO " + Config.getConfig(start).getOAuthClientTable()

src/main/java/io/supertokens/oauth/HttpRequest.java

@@ -0,0 +1,187 @@
+package io.supertokens.oauth;
+
+import com.google.gson.Gson;
+import com.google.gson.JsonElement;
+import com.google.gson.JsonObject;
+import io.supertokens.oauth.exceptions.OAuthClientNotFoundException;
+
+import java.io.*;
+import java.net.HttpURLConnection;
+import java.net.URL;
+import java.net.URLEncoder;
+import java.nio.charset.StandardCharsets;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.stream.Collectors;
+
+public class HttpRequest {
+    private static final int CONNECTION_TIMEOUT = 5000;
+    private static final int READ_TIMEOUT = 5000;
+
+    public static Response doGet(String url, Map<String, String> headers, Map<String, String> queryParams) throws IOException {
+        if (queryParams == null) {
+            queryParams = new HashMap<>();
+        }
+        URL obj = new URL(url + "?" + queryParams.entrySet().stream()
+                .map(e -> e.getKey() + "=" + URLEncoder.encode(e.getValue(), StandardCharsets.UTF_8))
+                .collect(Collectors.joining("&")));
+        HttpURLConnection con = (HttpURLConnection) obj.openConnection();
+        con.setInstanceFollowRedirects(false); // Do not follow redirect
+        con.setRequestMethod("GET");
+        con.setConnectTimeout(CONNECTION_TIMEOUT);
+        con.setReadTimeout(READ_TIMEOUT);
+        if (headers != null) {
+            for (Map.Entry<String, String> entry : headers.entrySet()) {
+                con.setRequestProperty(entry.getKey(), entry.getValue());
+            }
+        }
+        return getResponse(con);
+    }
+
+    public static Response doFormPost(String url, Map<String, String> headers, Map<String, String> formFields) throws IOException, OAuthClientNotFoundException {
+        try {
+            URL obj = new URL(url);
+            HttpURLConnection con = (HttpURLConnection) obj.openConnection();
+            con.setRequestMethod("POST");
+            con.setConnectTimeout(CONNECTION_TIMEOUT);
+            con.setReadTimeout(READ_TIMEOUT);
+            con.setDoOutput(true);
+            con.setRequestProperty("Content-Type", "application/x-www-form-urlencoded");
+
+            if (headers != null) {
+                for (Map.Entry<String, String> entry : headers.entrySet()) {
+                    con.setRequestProperty(entry.getKey(), entry.getValue());
+                }
+            }
+
+            try (DataOutputStream os = new DataOutputStream(con.getOutputStream())) {
+                os.writeBytes(formFields.entrySet().stream()
+                        .map(e -> e.getKey() + "=" + URLEncoder.encode(e.getValue(), StandardCharsets.UTF_8))
+                        .collect(Collectors.joining("&")));
+            }
+            return getResponse(con);
+        } catch (FileNotFoundException e) {
+            throw new OAuthClientNotFoundException();
+        }
+    }
+
+    public static Response doJsonPost(String url, Map<String, String> headers, JsonObject jsonInput) throws IOException, OAuthClientNotFoundException {
+        try {
+            URL obj = new URL(url);
+            HttpURLConnection con = (HttpURLConnection) obj.openConnection();
+            con.setRequestMethod("POST");
+            con.setConnectTimeout(CONNECTION_TIMEOUT);
+            con.setReadTimeout(READ_TIMEOUT);
+            con.setDoOutput(true);
+            con.setRequestProperty("Content-Type", "application/json");
+
+            if (headers != null) {
+                for (Map.Entry<String, String> entry : headers.entrySet()) {
+                    con.setRequestProperty(entry.getKey(), entry.getValue());
+                }
+            }
+
+            try (DataOutputStream os = new DataOutputStream(con.getOutputStream())) {
+                os.writeBytes(jsonInput.toString());
+            }
+            return getResponse(con);
+        } catch (FileNotFoundException e) {
+            throw new OAuthClientNotFoundException();
+        }
+    }
+
+    public static Response doJsonPut(String url, Map<String, String> queryParams, Map<String, String> headers, JsonObject jsonInput) throws IOException, OAuthClientNotFoundException {
+        try {
+            if (queryParams == null) {
+                queryParams = new HashMap<>();
+            }
+            URL obj = new URL(url + "?" + queryParams.entrySet().stream()
+                    .map(e -> e.getKey() + "=" + URLEncoder.encode(e.getValue(), StandardCharsets.UTF_8))
+                    .collect(Collectors.joining("&")));
+            HttpURLConnection con = (HttpURLConnection) obj.openConnection();
+            con.setRequestMethod("PUT");
+            con.setConnectTimeout(CONNECTION_TIMEOUT);
+            con.setReadTimeout(READ_TIMEOUT);
+            con.setDoOutput(true);
+            con.setRequestProperty("Content-Type", "application/json");
+
+            if (headers != null) {
+                for (Map.Entry<String, String> entry : headers.entrySet()) {
+                    con.setRequestProperty(entry.getKey(), entry.getValue());
+                }
+            }
+
+            try (DataOutputStream os = new DataOutputStream(con.getOutputStream())) {
+                os.writeBytes(jsonInput.toString());
+            }
+            return getResponse(con);
+        } catch (FileNotFoundException e) {
+            throw new OAuthClientNotFoundException();
+        }
+    }
+
+    public static Response doJsonDelete(String url, Map<String, String> headers, JsonObject jsonInput) throws IOException, OAuthClientNotFoundException {
+        try {
+            URL obj = new URL(url);
+            HttpURLConnection con = (HttpURLConnection) obj.openConnection();
+            con.setRequestMethod("DELETE");
+            con.setConnectTimeout(CONNECTION_TIMEOUT);
+            con.setReadTimeout(READ_TIMEOUT);
+            con.setDoOutput(true);
+            con.setRequestProperty("Content-Type", "application/json");
+
+            if (headers != null) {
+                for (Map.Entry<String, String> entry : headers.entrySet()) {
+                    con.setRequestProperty(entry.getKey(), entry.getValue());
+                }
+            }
+
+            if (jsonInput != null) {
+                try (DataOutputStream os = new DataOutputStream(con.getOutputStream())) {
+                    os.writeBytes(jsonInput.toString());
+                }
+            }
+
+            return getResponse(con);
+        } catch (FileNotFoundException e) {
+            throw new OAuthClientNotFoundException();
+        }
+    }
+
+    private static Response getResponse(HttpURLConnection con) throws IOException {
+        int responseCode = con.getResponseCode();
+        BufferedReader in;
+        if (responseCode < 400) {
+            in = new BufferedReader(new InputStreamReader(con.getInputStream()));
+        } else {
+            in = new BufferedReader(new InputStreamReader(con.getErrorStream()));
+        }
+        String inputLine;
+        StringBuilder response = new StringBuilder();
+        while ((inputLine = in.readLine()) != null) {
+            response.append(inputLine);
+        }
+        in.close();
+        JsonElement jsonResponse = null;
+        if (con.getContentType() != null && con.getContentType().contains("application/json")) {
+            Gson gson = new Gson();
+            jsonResponse = gson.fromJson(response.toString(), JsonElement.class);
+        }
+        return new Response(responseCode, response.toString(), jsonResponse, con.getHeaderFields());
+    }
+
+    public static class Response {
+        public int statusCode;
+        public String rawResponse;
+        public JsonElement jsonResponse;
+        public Map<String, List<String>> headers;
+
+        public Response(int statusCode, String rawResponse, JsonElement jsonResponse, Map<String, List<String>> headers) {
+            this.statusCode = statusCode;
+            this.rawResponse = rawResponse;
+            this.jsonResponse = jsonResponse;
+            this.headers = headers;
+        }
+    }
+}