public class WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService extends java.lang.Object { private static final org.slf4j.Logger logger; private static final io.jsonwebtoken.SignatureAlgorithm SIGNATURE_ALGORITHM; private static final java.lang.String KEY_ID_CLAIM; private static final java.lang.String USERNAME_CLAIM; private static final java.util.regex.Pattern tokenPattern; public static final java.lang.String AUTHORIZATION; private final org.apache.nifi.registry.security.key.KeyService keyService; public void (org.apache.nifi.registry.security.key.KeyService) { org.apache.nifi.registry.security.key.KeyService v; WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService v; v := @this: WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService; v := @parameter: org.apache.nifi.registry.security.key.KeyService; specialinvoke v.()>(); v. = v; return; } public java.lang.String getUserIdentityFromToken(java.lang.String) throws io.jsonwebtoken.JwtException { java.lang.Throwable v; io.jsonwebtoken.Jws v; WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService v; java.lang.String v, v, v, v, v; boolean v, v; org.slf4j.Logger v, v; io.jsonwebtoken.JwtException v, v, v; java.lang.Object v, v, v; v := @this: WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService; v := @parameter: java.lang.String; label: v = specialinvoke v.(v); if v != null goto label; v = new io.jsonwebtoken.JwtException; specialinvoke v.(java.lang.String)>("Unable to parse token"); throw v; label: v = interfaceinvoke v.(); v = interfaceinvoke v.(); v = staticinvoke (v); if v == 0 goto label; v = new io.jsonwebtoken.JwtException; specialinvoke v.(java.lang.String)>("No subject available in token"); throw v; label: v = interfaceinvoke v.(); v = interfaceinvoke v.(); v = staticinvoke (v); if v == 0 goto label; v = new io.jsonwebtoken.JwtException; specialinvoke v.(java.lang.String)>("No issuer available in token"); throw v; label: v = interfaceinvoke v.(); v = interfaceinvoke v.(); label: return v; label: v := @caughtexception; v = ; v = dynamicinvoke "makeConcatWithConstants" (v) ("The Base encoded JWT: \u0001"); interfaceinvoke v.(v); v = ; interfaceinvoke v.("There was an error validating the JWT", v); throw v; catch io.jsonwebtoken.JwtException from label to label with label; } private io.jsonwebtoken.Jws parseTokenFromBase64EncodedString(java.lang.String) throws io.jsonwebtoken.JwtException { java.lang.Throwable v; org.apache.nifi.registry.web.security.authentication.jwt.JwtService$1 v; io.jsonwebtoken.JwtParser v, v; io.jsonwebtoken.Jws v; WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService v; io.jsonwebtoken.JwtException v; java.lang.String v; v := @this: WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService; v := @parameter: java.lang.String; label: v = staticinvoke (); v = new org.apache.nifi.registry.web.security.authentication.jwt.JwtService$1; specialinvoke v.(org.apache.nifi.registry.web.security.authentication.jwt.JwtService)>(v); v = interfaceinvoke v.(v); v = interfaceinvoke v.(v); label: return v; label: v := @caughtexception; v = new io.jsonwebtoken.JwtException; specialinvoke v.(java.lang.String,java.lang.Throwable)>("Unable to validate the access token.", v); throw v; catch io.jsonwebtoken.MalformedJwtException from label to label with label; catch io.jsonwebtoken.UnsupportedJwtException from label to label with label; catch io.jsonwebtoken.SignatureException from label to label with label; catch io.jsonwebtoken.ExpiredJwtException from label to label with label; catch java.lang.IllegalArgumentException from label to label with label; } public java.lang.String generateSignedToken(org.apache.nifi.registry.security.authentication.AuthenticationResponse) throws io.jsonwebtoken.JwtException { long v; java.lang.IllegalArgumentException v; org.apache.nifi.registry.security.authentication.AuthenticationResponse v; WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService v; java.lang.String v, v, v, v, v; v := @this: WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService; v := @parameter: org.apache.nifi.registry.security.authentication.AuthenticationResponse; if v != null goto label; v = new java.lang.IllegalArgumentException; specialinvoke v.(java.lang.String)>("Cannot generate a JWT for a null authenticationResponse"); throw v; label: v = virtualinvoke v.(); v = virtualinvoke v.(); v = virtualinvoke v.(); v = virtualinvoke v.(); v = virtualinvoke v.(); v = virtualinvoke v.(v, v, v, v, v); return v; } public java.lang.String generateSignedToken(java.lang.String, java.lang.String, java.lang.String, java.lang.String, long) throws io.jsonwebtoken.JwtException { byte[] v; java.util.Date v, v; java.lang.NullPointerException v; WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService v; io.jsonwebtoken.JwtBuilder v, v, v, v, v, v, v, v, v; io.jsonwebtoken.SignatureAlgorithm v; boolean v; long v, v, v, v; java.util.Calendar v, v; java.nio.charset.Charset v; java.lang.String v, v, v, v, v, v, v, v, v; java.util.Calendar$Builder v, v; org.slf4j.Logger v, v; org.apache.nifi.registry.security.key.Key v; java.lang.IllegalArgumentException v; io.jsonwebtoken.JwtException v; org.apache.nifi.registry.security.key.KeyService v; v := @this: WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService; v := @parameter: java.lang.String; v := @parameter: java.lang.String; v := @parameter: java.lang.String; v := @parameter: java.lang.String; v := @parameter: long; if v == null goto label; v = staticinvoke (v); if v == 0 goto label; label: if v == null goto label; v = dynamicinvoke "makeConcatWithConstants" ("Cannot generate a JWT for a token with an empty identity", v) ("\u issued by \u."); goto label; label: v = "."; label: v = ; interfaceinvoke v.(v); v = new java.lang.IllegalArgumentException; specialinvoke v.(java.lang.String)>(v); throw v; label: v = staticinvoke (); v = staticinvoke (v, v); v = virtualinvoke v.(); v = v + v; v = new java.util.Calendar$Builder; specialinvoke v.()>(); v = virtualinvoke v.(v); v = virtualinvoke v.(); label: v = v.; v = interfaceinvoke v.(v); v = virtualinvoke v.(); v = ; v = virtualinvoke v.(v); v = staticinvoke (); v = interfaceinvoke v.(v); v = interfaceinvoke v.(v); v = interfaceinvoke v.(v); v = interfaceinvoke v.("preferred_username", v); v = virtualinvoke v.(); v = interfaceinvoke v.("kid", v); v = virtualinvoke v.(); v = interfaceinvoke v.(v); v = virtualinvoke v.(); v = interfaceinvoke v.(v); v = ; v = interfaceinvoke v.(v, v); v = interfaceinvoke v.(); label: return v; label: v := @caughtexception; v = dynamicinvoke "makeConcatWithConstants" (v) ("Could not retrieve the signing key for JWT for \u0001"); v = ; interfaceinvoke v.(v, v); v = new io.jsonwebtoken.JwtException; specialinvoke v.(java.lang.String,java.lang.Throwable)>(v, v); throw v; catch java.lang.NullPointerException from label to label with label; } public void deleteKey(java.lang.String) { org.slf4j.Logger v, v; java.lang.Exception v; WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService v; io.jsonwebtoken.JwtException v; java.lang.String v, v; org.apache.nifi.registry.security.key.KeyService v; boolean v; v := @this: WEB-INF.classes.org.apache.nifi.registry.web.security.authentication.jwt.JwtService; v := @parameter: java.lang.String; if v == null goto label; v = virtualinvoke v.(); if v == 0 goto label; label: v = new io.jsonwebtoken.JwtException; specialinvoke v.(java.lang.String)>("Log out failed: The user identity was not present in the request token to log out user."); throw v; label: v = v.; interfaceinvoke v.(v); v = ; interfaceinvoke v.("Deleted token from database."); label: goto label; label: v := @caughtexception; v = ; v = dynamicinvoke "makeConcatWithConstants" (v) ("Unable to delete token for user: [\u]."); interfaceinvoke v.(v); throw v; label: return; catch java.lang.Exception from label to label with label; } private static long validateTokenExpiration(long, java.lang.String) { java.lang.Object[] v, v; long v, v, v; byte v, v; java.lang.Long v, v, v, v; java.lang.String v, v, v; org.slf4j.Logger v, v; java.util.concurrent.TimeUnit v, v, v, v; v := @parameter: long; v := @parameter: java.lang.String; v = ; v = ; v = virtualinvoke v.(12L, v); v = ; v = ; v = virtualinvoke v.(1L, v); v = v cmp v; if v <= 0 goto label; v = ; v = newarray (java.lang.Object)[3]; v = staticinvoke (v); v[0] = v; v = staticinvoke (v); v[1] = v; v[2] = v; v = staticinvoke ("Max token expiration exceeded. Setting expiration to %s from %s for %s", v); interfaceinvoke v.(v); v = v; goto label; label: v = v cmp v; if v >= 0 goto label; v = ; v = newarray (java.lang.Object)[3]; v = staticinvoke (v); v[0] = v; v = staticinvoke (v); v[1] = v; v[2] = v; v = staticinvoke ("Min token expiration not met. Setting expiration to %s from %s for %s", v); interfaceinvoke v.(v); v = v; label: return v; } private static java.lang.String describe(org.apache.nifi.registry.security.authentication.AuthenticationResponse) { java.util.Date v; java.text.SimpleDateFormat v; long v, v, v, v, v; org.apache.nifi.registry.security.authentication.AuthenticationResponse v; java.util.Calendar v, v; java.lang.String v, v, v, v; java.util.TimeZone v; java.lang.StringBuilder v; v := @parameter: org.apache.nifi.registry.security.authentication.AuthenticationResponse; v = staticinvoke (); v = virtualinvoke v.(); virtualinvoke v.(v); v = virtualinvoke v.(); v = staticinvoke (); v = virtualinvoke v.(); v = v - v; v = new java.text.SimpleDateFormat; specialinvoke v.(java.lang.String)>("dd-MM-yyyy HH:mm:ss.SSS"); v = virtualinvoke v.(); virtualinvoke v.(v); v = virtualinvoke v.(); v = virtualinvoke v.(v); specialinvoke v.(java.lang.String)>("LoginAuthenticationToken for "); v = virtualinvoke v.(); v = virtualinvoke v.(); v = virtualinvoke v.(); v = dynamicinvoke "makeConcatWithConstants" (v, v, v, v, v) ("\u issued by \u expiring at \u [\u ms, \u ms remaining]"); return v; } static void () { io.jsonwebtoken.SignatureAlgorithm v; java.util.regex.Pattern v; org.slf4j.Logger v; v = staticinvoke (class "Lorg/apache/nifi/registry/web/security/authentication/jwt/JwtService;"); = v; v = ; = v; v = staticinvoke ("^Bearer (\\S*\\.\\S*\\.\\S*)$"); = v; return; } }