changes for JAVA certificate to be read from JAVA keystore

Author: adkumar3

README.md

@@ -1,6 +1,6 @@
 #CyberSource Simple Order API for Java
 
-[![Build Status](https://travis-ci.org/CyberSource/cybersource-sdk-java.png?branch=master)]
+[![Build Status](https://travis-ci.org/CyberSource/cybersource-sdk-java.png?branch=future)]
 (https://travis-ci.org/CyberSource/cybersource-sdk-java)
 
 ##Package Managers
@@ -85,8 +85,13 @@ You do not need to download and build the source to use the SDK but if you want
        By default, it is set to true.
        
     h. "serverURL" config parameter will take precedence over sendToProduction and sendToAkamai config parameters. By default the "serverURL" configuration is commented out. 
+    
+    i. "enablejdkcert" parameter if set to true then it will read the JKS file specified at keysDirectory location. The file should be of the same name as specified in keyFilename.
+    
+    j. cacerts this property will be considered only if "enablejdkcert" is set to true. If it is set to true then it means the JKS file is under cacerts folder of the JDK and 
+       it will read the JKS file from cacerts. 
         
-    i. Please refer to the accompanying documentation for the other optional properties that you may wish to specify.
+    k. Please refer to the accompanying documentation for the other optional properties that you may wish to specify.
 
 
 4. Build this project using Maven.
@@ -107,38 +112,47 @@ You do not need to download and build the source to use the SDK but if you want
 
 We have two ways to test, One is using maven tool and other is to download the zip and use scripts to test.
 
+
 1.) Unzip the downloaded zip file into a directory of your choice.  It will create a directory called 
     cybersource-sdk-java-master. 
+     * If in the Request, a key called "_has_escapes" is present and is set
+     * to "1", we will not escape the special characters.  Basically, the
+     * merchant is saying that they have escaped the characters themselves.
+     * This might prove useful for more advanced users of the Basic client.
+     
+     Note: The Script will take Service_name as program argument. Service Name can 
+	    be auth, auth_reversal, capture, sale, emv_auth, credit. If no argument is passed the script
+	    will terminate the program.
 
 	a. TESTING THE NAME-VALUE PAIR SAMPLE
 		. Go to the cybersource-sdk-java-master/sample/nvp directory.
 		. Use compileSample scripts to create classes directory.As it is not included in SDK.
 		. Then at a command prompt, type this line:
-			Windows 	runSample.bat
-			Unix or Linux 	runSample.sh
+			Windows 	runSample.bat <service_name>
+			Unix or Linux 	runSample.sh <service_name>
 
 			If JAVA_HOME is defined, the script uses <JAVA_HOME>/bin/java. Otherwise, it uses
 			whatever java is in the path.
 			If the client is installed correctly, the requests and replies for a credit card authorization
 			and a follow-on capture appear.
 
-		. If you make any changes to the AuthCaptureSample.java sample, you
+		. If you make any changes to the RunSample.java sample, you
 		  must rebuild the sample before using it. Use the compileSample batch file or
 	 	  shell script provided in the sample directory.
 			   
 	b. TESTING THE XML SAMPLE
 		. Go to the cybersource-sdk-java-master/sample/xml directory.
 		. Use compileSample scripts to create classes directory.As it is not included in SDK.
 		. At a command prompt, type this line:
-			Windows 	runSample.bat
-			Unix or Linux 	runSample.sh
+			Windows 	runSample.bat <Service_name>
+			Unix or Linux 	runSample.sh <service_name>
 				
 			If JAVA_HOME is defined, the script uses <JAVA_HOME>/bin/java. Otherwise, it uses
 			whatever java is in the path.
 			If the client is installed correctly, the requests and replies for a credit card authorization
 			and a follow-on capture appear.
 
-		. If you make any changes to the AuthSample.java sample, you
+		. If you make any changes to the RunSample.java sample, you
 		  must rebuild the sample before using it. Use the compileSample batch file or
 	          shell script provided in the sample directory.
 

java/src/main/java/com/cybersource/ws/client/Client.java

@@ -26,13 +26,20 @@
 import org.xml.sax.InputSource;
 import org.xml.sax.SAXException;
 
+import javax.security.cert.X509Certificate;
 import javax.xml.parsers.DocumentBuilder;
 import javax.xml.parsers.ParserConfigurationException;
 
+import java.io.File;
+import java.io.FileInputStream;
 import java.io.IOException;
 import java.io.StringReader;
+import java.security.KeyStore;
+import java.security.cert.PKIXParameters;
+import java.security.cert.TrustAnchor;
 import java.text.MessageFormat;
 import java.util.HashMap;
+import java.util.Iterator;
 import java.util.Map;
 import java.util.Properties;
 
@@ -118,8 +125,10 @@ public static Map runTransaction(
 
             con = Connection.getInstance(mc, builder, logger);
             Document wrappedReply = con.post(signedDoc);
-
-            return (soapUnwrap(wrappedReply, mc, logger));
+            Map<String, String> replyMap = soapUnwrap(wrappedReply, mc, logger);
+            logger.log(Logger.LT_INFO, "Client, End of runTransaction Call   ",false);
+            
+            return replyMap;
         } catch (IOException e) {
             throw new ClientException(
                     e, con != null && con.isRequestSent(), logger);
@@ -178,51 +187,54 @@ private static Document soapWrapAndSign(
         boolean logSignedData = mc.getLogSignedData();
         if (!logSignedData) {
             logger.log(
-                    Logger.LT_REQUEST,
-                    mapToString(request, true, PCI.REQUEST));
+            		Logger.LT_REQUEST,
+            		"UUID   >  "+(mc.getUniqueKey()).toString() + "\n" +
+            		"Input request is" + "\n" +
+            		"======================================= \n"
+            		+ mapToString(request, true, PCI.REQUEST));
+        }
+        
+        Document wrappedDoc = soapWrap(request, mc, builder,logger);
+        logger.log(Logger.LT_INFO, "Client, End of soapWrap   ",true); 
+        
+        Document resultDocument = null;
+        if(mc.getEnablejdkcert()){
+        	SecurityUtil.readJdkCert(mc,logger);
+        }
+        else{
+        	SecurityUtil.loadMerchantP12File(mc,logger);
+        	logger.log(Logger.LT_INFO, "Client, End of loadMerchantP12File   ", true);       
         }
+        // sign Document object
+        resultDocument = SecurityUtil.createSignedDoc(wrappedDoc, mc.getMerchantID(), mc.getKeyPassword(), logger);
+        logger.log(Logger.LT_INFO, "Client, End of createSignedDoc   ", true);
+
+        if ( mc.getUseSignAndEncrypted() ) {
+        	// Encrypt signed Document
+            resultDocument = SecurityUtil.handleMessageCreation(resultDocument, mc.getMerchantID(), logger);
+            logger.log(Logger.LT_INFO, "Client, End of handleMessageCreation   ", true);
+        }
+        if (logSignedData) {
+           logger.log(Logger.LT_REQUEST,Utility.nodeToString(resultDocument, PCI.REQUEST));
+        	//logger.log(Logger.LT_REQUEST,XMLUtils.PrettyDocumentToString(resultDocument));
+        }
+
+        return resultDocument ;
+    }
 
-        // wrap in SOAP envelope
+    private static Document soapWrap(Map request, MerchantConfig mc, DocumentBuilder builder, LoggerWrapper logger) throws SAXException, IOException{
+    	// wrap in SOAP envelope
         Object[] arguments
                 = {mc.getEffectiveNamespaceURI(),
                 mapToString(request, false, PCI.REQUEST)};
         String xmlString = MessageFormat.format(SOAP_ENVELOPE1, arguments);
-     // load XML string into a Document object
+        // load XML string into a Document object
         StringReader sr = new StringReader( xmlString );
         Document wrappedDoc = builder.parse( new InputSource( sr ) );
-        sr.close();
-
-        Document resultDocument = null;
-        long timeNow = System.currentTimeMillis();
-        logger.log(Logger.LT_INFO, "Client, Start of getInstance Call, Timer Start in ms	" + timeNow + "For merchant " + mc.getMerchantID());
-        
-        SignedAndEncryptedMessageHandler handler = SignedAndEncryptedMessageHandler.getInstance(mc,logger);
-        
-        long endTime = System.currentTimeMillis();
-        logger.log(Logger.LT_INFO, "Client, End of getInstance Call, time taken in ms	" + (endTime-timeNow) + "For merchant " + mc.getMerchantID());
-        
-        // 3/7/2016 change to support encrypted messages as well as signed - jeaton
-        if ( !mc.getUseSignAndEncrypted() ) {
-            // sign Document object
-            logger.log(Logger.LT_INFO, "Signing request...");
-            resultDocument = handler.createSignedDoc(wrappedDoc,mc.getMerchantID(),mc.getKeyPassword(),null);
-            if (logSignedData) {
-                logger.log(Logger.LT_REQUEST,
-                        Utility.nodeToString(resultDocument, PCI.REQUEST));
-            }
-        } else {
-            logger.log(Logger.LT_INFO, "Signing and encrypting request...");
-            resultDocument = handler.handleMessageCreation(wrappedDoc,mc.getMerchantID(),mc.getKeyPassword());
-            if (logSignedData) {
-                logger.log(Logger.LT_REQUEST,XMLUtils.PrettyDocumentToString(resultDocument));
-            }
-        }
-        
-        //System.out.println(XMLUtils.PrettyDocumentToString(resultDocument));
-        return resultDocument ;
+        sr.close(); 
+        return wrappedDoc;
     }
-
-
+    
     /**
      * Extracts the content of the SOAP body from the given Document object
      * inside a SOAP envelope.

java/src/main/java/com/cybersource/ws/client/LoggerWrapper.java

@@ -18,6 +18,8 @@
 
 package com.cybersource.ws.client;
 
+import org.apache.commons.lang3.time.StopWatch;
+
 /**
  * An internal class used by the clients to encapsulate the logger, primarily
  * to avoid having to check if the Logger object is null before logging.  It
@@ -26,7 +28,8 @@
  */
 public class LoggerWrapper implements Logger {
     private Logger logger = null;
-
+    private MyStopWatch stopWatch = new MyStopWatch();
+  
     /**
      * Constructor.
      *
@@ -53,10 +56,12 @@ public LoggerWrapper(
             logger = _logger;
             prepare = _prepare;
             logTranStart = _logTranStart;
+            stopWatch.start();
         } else if (mc.getEnableLog()) {
             logger = new LoggerImpl(mc);
             prepare = true;
             logTranStart = true;
+            stopWatch.start();
         }
 
         if (prepare) {
@@ -66,6 +71,7 @@ public LoggerWrapper(
         if (logTranStart) {
             logTransactionStart();
         }
+        
     }
 
     /**
@@ -100,6 +106,23 @@ public void log(String type, String text) {
             logger.log(type, text);
         }
     }
+    
+    /**
+     * Calls the encapsulated Logger object's log() method.
+     *
+     * @param type the log entry type.
+     * @param text the actual text to be logged.
+     * @param splitTimer to log split time.
+     */
+	public void log(String type, String text, boolean splitTimer) {
+		if (logger != null) {
+			if (splitTimer) {
+				logger.log(type, text + stopWatch.getMethodElapsedTime() + "ms");
+			} else {
+				logger.log(type, text + stopWatch.getElapsedTimeForTransaction() + "ms");
+			}
+		}
+	}
 
     /**
      * Returns the encapsulated Logger object.
@@ -109,4 +132,13 @@ public void log(String type, String text) {
     public Logger getLogger() {
         return logger;
     }
+
+    /**
+     * Returns the encapsulated StopWatch object.
+     *
+     * @return the encapsulated StopWatch object.
+     */
+    public MyStopWatch getStopWatch() {
+        return stopWatch;
+    }
 }