This section ports the various REST-style versions of the predictions web service to a SOAP-based version. The new version is predictionsSOAP, whose structure can be summarized as follows:
- There is a service client and a client-side message handler. The handler inserts an HMAC hash into every client request against the predictionsSOAP service. However, the handler departs from the Amazon practice by inserting the hash into the SOAP header rather than the SOAP body.
- The client, built atop wsimport-generated classes, invokes various CRUD operations in the predictionsSOAP service.
- There is a service-side message handler whose job is to verify the HMAC hash from the client.
- The service implements the standard CRUD operations.
-
The service throws SOAP faults from both the handler and the application level in order
to contrast the two different APIs. As the name suggests, a SOAP fault signals an
error condition; the fault is a special message sent back to the client in place of an error-free SOAP response. The
service WSDL indicates, in the
portTypesection, that a client request may result in a fault message rather than a standard response. The architecture of the predictionsSOAP service is sketched in Figure 5-5.
The predictionsSOAP service mirrors, in its structure, the SOAP-based version of Amazon’s E-Commerce service. In each case, a client-side handler modifies an outgoing SOAP message by inserting a security credential; a service-side handler then verifies the credential before dealing with the request itself.
The PredictionsSOAP class (see Example 5-3), the main class for the
predictionsSOAP service, has five service operations: getAll,
getOne, create, edit, and delete.
Example 5-3. The PredictionsSOAP class with two methods that throw SOAP faults
packagepredictions;importjavax.annotation.Resource;importjavax.jws.WebService;importjavax.jws.WebMethod;importjavax.jws.HandlerChain;importjavax.xml.ws.WebServiceContext;importjavax.xml.ws.handler.MessageContext;importjava.util.List;importjavax.servlet.ServletContext;@WebService@HandlerChain(file="../../../WEB-INF/serviceHandler.xml")publicclassPredictionsSOAP{@ResourceprivateWebServiceContextwsCtx;privateServletContextsCtx;privatestaticfinalPredictionspredictions=newPredictions();privatestaticfinalintmaxLength=16;@WebMethodpublicList<Prediction>getAll(){init();returnpredictions.getPredictions();}@WebMethodpublicPredictiongetOne(intid){init();returnpredictions.getPrediction(id);}@WebMethodpublicStringcreate(Stringwho,Stringwhat)throwsVerbosityException{
intcount=wordCount(what);if(count>maxLength)thrownewVerbosityException(count+" is too verbose!","Max words: "+maxLength);init();Predictionp=newPrediction();p.setWho(who);p.setWhat(what);intid=predictions.addPrediction(p);Stringmsg="Prediction "+id+" created.";returnmsg;}@WebMethodpublicStringedit(intid,Stringwho,Stringwhat)throwsVerbosityException{
intcount=wordCount(what);if(count>maxLength)thrownewVerbosityException(count+" is too verbose!","Max words: "+maxLength);init();Stringmsg="Prediction "+id+" not found.";Predictionp=predictions.getPrediction(id);if(p!=null){if(who!=null)p.setWho(who);if(what!=null)p.setWhat(what);msg="Prediction "+id+" updated.";}returnmsg;}@WebMethodpublicStringdelete(intid){init();Stringmsg="Prediction "+id+" not found.";Predictionp=predictions.getPrediction(id);if(p!=null){predictions.getMap().remove(id);msg="Prediction "+id+" removed.";}returnmsg;}privatevoidinit(){if(wsCtx==null)thrownewRuntimeException("DI failed on wsCtx!");if(sCtx==null){// ServletContext not yet set?MessageContextmCtx=wsCtx.getMessageContext();sCtx=(ServletContext)mCtx.get(MessageContext.SERVLET_CONTEXT);predictions.setServletContext(sCtx);}}privateintwordCount(Stringwords){if(words==null)return-1;returnwords.trim().split("\\s+").length;}}
Two of the implementing methods, create
and edit (lines 1 and 2), throw an exception named VerbosityException if the creation of a new
Prediction or the editing of an existing one results in a candidate prediction
that exceeds the maximum length, currently set to 16 words. Each of the methods
create and edit is annotated as a @WebMethod and each throws
a VerbosityException, which becomes a fault at the SOAP level. As a result,
the service’s WSDL now contains an extra message in the portType section for
the create and edit operations. Here is a WSDL segment that includes
the portion for create and, for contrast, delete:
<portTypename="PredictionsSOAP"><operationname="delete"><inputwsam:Action="http://predictions/PredictionsSOAP/deleteRequest"message="tns:delete"/><outputwsam:Action="http://predictions/PredictionsSOAP/deleteResponse"message="tns:deleteResponse"/></operation><operationname="create"><inputwsam:Action="http://predictions/PredictionsSOAP/createRequest"message="tns:create"/><outputwsam:Action="http://predictions/PredictionsSOAP/createResponse"message="tns:createResponse"/><faultmessage="tns:VerbosityException"name="VerbosityException"wsam:Action="http://predictions/PredictionsSOAP/create/Fault/VerbosityException"/></operation>...
The delete operation has the usual input and output messages (line 1), whereas the
create operation now has, in addition to the usual two, a fault message as well (line 2); the fault message, like all of the other messages, is defined in the XML Schema.
A VerbosityException is thrown at the application rather than at the handler level. Accordingly,
the underlying SOAP libraries handle the details of converting a Java Exception into a SOAP fault
message. The VerbosityException class is standard Java:
packagepredictions;publicclassVerbosityExceptionextendsException{privateStringdetails;publicVerbosityException(Stringreason,Stringdetails){super(reason);this.details=details;}publicStringgetFaultInfo(){returnthis.details;}}
A VerbosityException has a reason (line 1) to explain why the fault occurred together with details (line 2)
that provide additional information.
Both the reason and the details become part of the SOAP fault message.
Generating a VerbosityException
is standard Java—a throw clause is used to generate an exception.
The bodies of the create and edit methods begin in the same way—with a check of whether the submitted Prediction (the parameter name is what)
is too long:
intcount=wordCount(what);if(count>maxLength)thrownewVerbosityException(count+" is too verbose!","Max words: "+maxLength);
If a candidate Prediction exceeds the maximum length,
a VerbosityException is thrown (line 1) with the regular Java syntax.
Generating a SOAP fault at the application level requires just two conditions:
-
A service operation (that is, a
@WebMethod) throws a customizedException, in this case aVerbosityException. -
The customized
Exceptionshould invoke the superclass constructor with the reason for the fault (line 1 in the full listing) and also should implement the methodgetFaultInfo(line 2 in the full listing), which can provide additional detail about the fault.
For the fault message returned from the PredictionsSOAP service when a submitted prediction is 18 words in length, see Example 5-4.
Example 5-4. A fault generated from a verbose prediction
<S:Envelopexmlns:S="http://schemas.xmlsoap.org/soap/envelope/"><S:Header/><S:Body><S:Faultxmlns:ns4="http://www.w3.org/2003/05/soap-envelope"><faultcode>S:Server</faultcode><faultstring>18istooverbose!</faultstring><detail><ns2:VerbosityExceptionxmlns:ns2="http://predictions/"><faultInfo>Maxwords:16</faultInfo><message>18istooverbose!</message></ns2:VerbosityException></detail></S:Fault></S:Body></S:Envelope>
The PredictionsSOAP class has backend classes in support, in particular Prediction (see Example 5-5)
and Predictions (see Example 5-6). Neither the PredictionsSOAP class nor any of the backend classes does any
explicit XML processing, of course,
because the underlying
SOAP libraries handle the serialization and deserialization automatically.
Example 5-5. The Prediction supporting class
packagepredictions;importjava.io.Serializable;publicclassPredictionimplementsSerializable,Comparable<Prediction>{privateStringwho;// personprivateStringwhat;// his/her predictionprivateintid;// identifier used as lookup keypublicPrediction(){}publicvoidsetWho(Stringwho){this.who=who;}publicStringgetWho(){returnthis.who;}publicvoidsetWhat(Stringwhat){this.what=what;}publicStringgetWhat(){returnthis.what;}publicvoidsetId(intid){this.id=id;}publicintgetId(){returnthis.id;}publicintcompareTo(Predictionother){returnthis.id-other.id;}}
The Prediction class implements Comparable and, therefore, defines the compareTo
method so that a client against the predictionsSOAP service can get a sorted list of Predictions on a getAll request. Otherwise, the Prediction class is a POJO class
with three properties: id, which identifies a Prediction; who, which names the
author of the Prediction; and what, which consists of the actual words in the
Prediction.
Example 5-6. The Predictions supporting class
packagepredictions;importjava.io.IOException;importjava.io.InputStream;importjava.io.InputStreamReader;importjava.io.BufferedReader;importjava.io.ByteArrayOutputStream;importjava.util.Arrays;importjava.util.List;importjava.util.ArrayList;importjava.util.concurrent.ConcurrentMap;importjava.util.concurrent.ConcurrentHashMap;importjava.util.concurrent.atomic.AtomicInteger;importjavax.servlet.ServletContext;publicclassPredictions{privateConcurrentMap<Integer,Prediction>predictions;privateServletContextsctx;privateAtomicIntegermapKey;publicPredictions(){predictions=newConcurrentHashMap<Integer,Prediction>();mapKey=newAtomicInteger();}publicvoidsetServletContext(ServletContextsctx){this.sctx=sctx;}publicServletContextgetServletContext(){returnthis.sctx;}publicvoidsetMap(ConcurrentMap<String,Prediction>predictions){}publicConcurrentMap<Integer,Prediction>getMap(){if(good2Go())returnthis.predictions;elsereturnnull;}publicintaddPrediction(Predictionp){intid=mapKey.incrementAndGet();p.setId(id);predictions.put(id,p);returnid;}publicPredictiongetPrediction(intid){returnpredictions.get(id);}publicList<Prediction>getPredictions(){
List<Prediction>list;if(good2Go()){Object[]preds=predictions.values().toArray();Arrays.sort(preds);list=newArrayList<Prediction>();for(Objectobj:preds)list.add((Prediction)obj);returnlist;}elsereturnnull;}privatebooleangood2Go(){if(getServletContext()==null)returnfalse;if(predictions.size()<1)populate();returntrue;}privatevoidpopulate(){Stringfilename="/WEB-INF/data/predictions.db";InputStreamin=sctx.getResourceAsStream(filename);// Read the data into the array of Predictions.if(in!=null){try{InputStreamReaderisr=newInputStreamReader(in);BufferedReaderreader=newBufferedReader(isr);inti=0;Stringrecord=null;while((record=reader.readLine())!=null){String[]parts=record.split("!");Predictionp=newPrediction();p.setWho(parts[0]);p.setWhat(parts[1]);addPrediction(p);}}catch(IOExceptione){}}}}
The Predictions class provides the supporting data structures, in particular a thread-safe
ConcurrentMap (line 1), together with convenience methods such as the method getPredictions (line 3), which
returns a sorted List<Prediction>, and the method addPrediction (line 2), which adds a newly
created Prediction to the existing collection. The predictionsSOAP service
invokes these methods as needed. As in the earlier versions, the
service initializes the Prediction collection from the predictions.db file
in the deployed WAR file.
There remains one more service-side class to discuss, the ServiceHashHandler. Perhaps the
best way to clarify this handler, however, is to switch first to the client side. The
reason is that the service-side handler extracts and verifies a credential that a
client-side handler needs to inject into every SOAP request message. One motivation behind the
predictionsSOAP example is to
mimic the authentication scheme used in Amazon’s E-Commerce service.
The PredictionsClient class (see Example 5-7) is a client against the predictionsSOAP service.
Example 5-7. The PredictionsClient against the predictionsSOAP service
importclientSOAP.PredictionsSOAP;importclientSOAP.PredictionsSOAPService;importclientSOAP.Prediction;importclientSOAP.ClientHandlerResolver;importjava.util.List;publicclassPredictionsClient{publicstaticvoidmain(String[]args){if(args.length<2){System.err.println("Usage: PredictionsClient <name> <key>");return;}newPredictionsClient().runTests(args[0],args[1]);}privatevoidrunTests(Stringname,Stringkey){PredictionsSOAPServiceservice=newPredictionsSOAPService();service.setHandlerResolver(newClientHandlerResolver(name,key));PredictionsSOAPport=service.getPredictionsSOAPPort();getTests(port);postTest(port);getAllTest(port);// confirm the POSTdeleteTest(port,33);// delete the just POSTed predictiongetAllTest(port);// confirm the POSTputTest(port);}privatevoidgetTests(PredictionsSOAPport){getAllTest(port);getOneTest(port);}privatevoidgetAllTest(PredictionsSOAPport){msg("getAll");List<Prediction>preds=port.getAll();for(Predictionpred:preds)System.out.println(String.format("%2d: ",pred.getId())+pred.getWho()+" predicts: "+pred.getWhat());}privatevoidgetOneTest(PredictionsSOAPport){msg("getOne (31)");System.out.println(port.getOne(31).getWhat());}privatevoidpostTest(PredictionsSOAPport){msg("postTest");Stringwho="Freddy";Stringwhat="Something bad may happen.";Stringres=port.create(who,what);System.out.println(res);}privatevoidputTest(PredictionsSOAPport){msg("putTest -- here's the record to be edited");getOneTest(port);msg("putTest results");Stringwho="FooBar";Stringwhat=null;// shouldn't changeintid=31;Stringres=port.edit(id,who,what);System.out.println(res);System.out.println("Confirming:");Predictionp=port.getOne(31);System.out.println(p.getWho());System.out.println(p.getWhat());}privatevoiddeleteTest(PredictionsSOAPport,intid){msg("deleteTest");Stringres=port.delete(id);System.out.println(res);}privatevoidmsg(Strings){System.out.println("\n"+s+"\n");}}
As usual, the PredictionsClient uses wsimport-generated artifacts, which are in the clientSOAP package. This client, together
with dependencies, is packaged in the executable JAR file PredictionsClient.jar:
%java-jarPredictionsClient.jarUsage:PredictionsClient<name><key>
The client expects two command-line arguments (line 1): a name (in Amazon E-Commerce, the accessId) and a key (in Amazon
E-Commerce, the secretKey). The predictionsSOAP service includes a DataStore class that mimics a database with a
map with names as the lookup keys and secret keys as their values. Accordingly, the command:
%java-jarPredictionsClient.jarmoeMoeMoeMoe
provides the required pair of command-line arguments, with moe as the name and MoeMoeMoe as the key.
The PredictionsClient dynamically sets the client-side handler whose job is to turn the
command-line arguments into a credential that the service-side handler can verify. Here is the
relevant code segment:
PredictionsSOAPServiceservice=newPredictionsSOAPService();service.setHandlerResolver(newClientHandlerResolver(name,key));PredictionsSOAPport=service.getPredictionsSOAPPort();
In line 1, name and key are the two command-line arguments. After setting the handler, the
PredictionsClient runs the expected tests against the CRUD operations that the
predictionsSOAP service implements: getAll, getOne, create, edit, and delete. It should
be noted that the PredictionsClient, like the predictionsSOAP service, does absolutely no
XML processing but instead works exclusively with Java data structures such as List<Prediction>.
The ClientHandlerResolver class (see Example 5-8) registers an instance of the class ClientHashHandler
with the
runtime system. Before digging into the details, it may be helpful to do a before/after
comparison with respect to the handler.
Example 5-8. The ClientHandlerResolver and ClientHashHandler classes
packageclientSOAP;importjava.text.SimpleDateFormat;importjava.util.ArrayList;importjava.util.Calendar;importjava.util.List;importjava.util.Set;importjava.util.TimeZone;importjavax.crypto.Mac;importjavax.crypto.spec.SecretKeySpec;importjavax.xml.namespace.QName;importjavax.xml.soap.SOAPMessage;importjavax.xml.soap.SOAPEnvelope;importjavax.xml.soap.SOAPHeader;importjavax.xml.ws.handler.Handler;importjavax.xml.ws.handler.HandlerResolver;importjavax.xml.ws.handler.MessageContext;importjavax.xml.ws.handler.PortInfo;importjavax.xml.ws.handler.soap.SOAPHandler;importjavax.xml.ws.handler.soap.SOAPMessageContext;importorg.apache.commons.codec.binary.Base64;importorg.w3c.dom.Element;importorg.w3c.dom.Node;publicclassClientHandlerResolverimplementsHandlerResolver{privateStringname;privateStringkey;publicClientHandlerResolver(Stringname,Stringkey){this.name=name;this.key=key;}publicList<Handler>getHandlerChain(PortInfoportInfo){List<Handler>handlerChain=newArrayList<Handler>();handlerChain.add(newClientHashHandler(this.name,this.key));returnhandlerChain;}}classClientHashHandlerimplementsSOAPHandler<SOAPMessageContext>{privatebyte[]secretBytes;privateStringname;publicClientHashHandler(Stringname,Stringkey){this.name=name;this.secretBytes=getBytes(key);}publicvoidclose(MessageContextmCtx){}publicSet<QName>getHeaders(){returnnull;}publicbooleanhandleFault(SOAPMessageContextmCtx){try{SOAPMessagemsg=mCtx.getMessage();msg.writeTo(System.err);}catch(Exceptione){thrownewRuntimeException(e);}returntrue;}publicbooleanhandleMessage(SOAPMessageContextmCtx){
Booleanoutbound=(Boolean)mCtx.get(MessageContext.MESSAGE_OUTBOUND_PROPERTY);if(outbound){
try{SOAPMessagesoapMessage=mCtx.getMessage();SOAPEnvelopeenvelope=soapMessage.getSOAPPart().getEnvelope();// Ensure there is a header and add a 'wrapper' element.if(envelope.getHeader()==null)envelope.addHeader();
SOAPHeaderheader=envelope.getHeader();QNameqn=newQName("http://predictionsSOAP","credentials");header.addHeaderElement(qn);
// Now insert credentials into the header.StringtimeStamp=getTimestamp();Stringsignature=getSignature(this.name,timeStamp,this.secretBytes);NodefirstChild=header.getFirstChild();append(firstChild,"Name",this.name);
append(firstChild,"Signature",signature);
append(firstChild,"Timestamp",timeStamp);
soapMessage.saveChanges();}catch(Exceptione){thrownewRuntimeException("SOAPException thrown.",e);}}returntrue;// continue down the handler chain}privateStringgetSignature(Stringname,Stringtimestamp,byte[]secretBytes){try{System.out.println("Name == "+name);System.out.println("Timestamp == "+timestamp);StringtoSign=name+timestamp;byte[]toSignBytes=getBytes(toSign);Macsigner=Mac.getInstance("HmacSHA256");SecretKeySpeckeySpec=newSecretKeySpec(secretBytes,"HmacSHA256");signer.init(keySpec);signer.update(toSignBytes);byte[]signBytes=signer.doFinal();Stringsignature=newString(Base64.encodeBase64(signBytes));returnsignature;}catch(Exceptione){thrownewRuntimeException("NoSuchAlgorithmException thrown.",e);}}privateStringgetTimestamp(){Calendarcalendar=Calendar.getInstance();SimpleDateFormatdateFormat=newSimpleDateFormat("yyyy-MM-dd'T'HH:mm:ss'Z'");dateFormat.setTimeZone(TimeZone.getTimeZone("UTC"));returndateFormat.format(calendar.getTime());}privatevoidappend(Nodenode,StringelementName,StringelementText){Elementelement=node.getOwnerDocument().createElement(elementName);element.setTextContent(elementText);node.appendChild(element);}privatebyte[]getBytes(Stringstr){try{returnstr.getBytes("UTF-8");}catch(Exceptione){thrownewRuntimeException(e);}}}
As an example, consider the first test
that the PredictionsClient runs: the client invokes getAll on the service to get a
list of all of the predictions. Here is what happens:
The underlying SOAP libraries generate the appropriate SOAP message:
<S:Envelopexmlns:S="http://schemas.xmlsoap.org/soap/envelope/"><S:Body><ns2:getAllxmlns:ns2="http://predictions/"/></S:Body></S:Envelope>This automatically generated SOAP message has no header.
Before this message is handed over to HTTP for transport to the service, the runtime invokes the
ClientHashHandler, which amends the outgoing message to:<S:Envelopexmlns:S="http://schemas.xmlsoap.org/soap/envelope/"><S:Header><credentialsxmlns="http://predictionsSOAP"><Namexmlns="">moe</Name><Signaturexmlns="">vkIQm8isdpomHeQ1aFqckzQawlZakj+hWOQaxsQcPgU=</Signature><Timestampxmlns="">2014-03-26T01:12:47Z</Timestamp></credentials></S:Header><S:Body><ns2:getAllxmlns:ns2="http://predictions/"/></S:Body></S:Envelope>
A SOAP header together with a credentials element is added; the credentials element
has three subelements tagged Name, Signature, and Timestamp in that
lexicographical order. The Name is the command-line argument moe and the
Signature is an HmacSHA256 hash encoded in base64, the same kind of hash
used in Amazon’s E-Commerce service. The Signature hash is generated from the
provided key value MoeMoeMoe, but this secretKey cannot be recovered from the
hash. (Chapter 6, on security, explains why.) Accordingly, Moe’s secret key
is not in jeopardy of being hijacked when the SOAP request is sent over the wire.
The ClientHashHandler class implements the SOAPHandler interface and, therefore,
defines the four methods getHeaders, close, handleFault, and
handleMessage (lines 1 through 4 in the code listing). Only handleFault and
handleMessage are of interest here. Recall that handlers are inherently
bidirectional; that is, they handle incoming and outgoing messages alike, and
only one of these methods is invoked in either case: if there is a fault, the
runtime invokes handleFault; otherwise, the runtime invokes handleMessage.
The handleMessage method has work to do only on outgoing messages or
requests; hence, this method checks the direction of the message (line 5). If
the message is indeed outgoing, the handler does the following:
- Checks whether there is a SOAP header and, if not, adds one (line 6).
-
Adds, as the first child of the SOAP header, an element tagged
credentials(line 7). -
Adds, as children of the
credentialselement, three elements taggedName(with a value such asmoe),Signature(whose value is anHmacSHA256hash generated with, in this case, Moe’s secret key), andTimestamp(whose value is a properly formatted timestamp).
The outgoing SOAP message, a request, is now properly structured. The SOAP body names
the operation of interest (for instance, getOne) and includes any required
arguments (in this example, the integer identifier of the Prediction to get). The SOAP
header contains the requester’s name, a hash value that serves as a signature, and a
timestamp.
The handler method handleFault does not check the message direction because a
fault would arrive, in any case, as a response from the predictionsSOAP service. This
service generates a SOAP fault as a VerbosityException if a candidate Prediction
is excessively wordy.
At present, handleFault simply prints the SOAP fault to the standard error; in a production
environment, more elaborate logic might be brought into play—for instance, the fault might be
saved in a data store for later analysis.
Handlers, especially SOAP handlers, are powerful in that they can amend the SOAP message
created at the application level. In this example, a SOAP rather than a Logical handler is
needed because the handler needs access to the SOAP header.
On the service side, the handler also
needs to be a SOAP handler.
The ServiceHashHandler (see Example 5-9) is a service-side SOAP handler. On any incoming message,
this handler checks for the following:
- Does the message include a SOAP header? If not, generate a SOAP fault (line 1).
-
Are there at least three children of the element tagged
credentials? If not, generate a SOAP fault (line 2). -
Are the
Name,Signature, andTimestampvalues all non-null? If not, generate a SOAP fault (line 3). -
Does the
Name, used as a lookup key in the service-side data store, have a value? (The value should be the user’s secret key.) If not, generate a SOAP fault (line 4). -
Does the
Signaturegenerated on the service side match theSignaturesent in the client request? If not, generate a SOAP fault (line 5).
Example 5-9. The service-side ServiceHashHandler, which verifies the credentials in a request
packagepredictions;importjava.text.SimpleDateFormat;importjava.util.ArrayList;importjava.util.Calendar;importjava.util.List;importjava.util.Set;importjava.util.Map;importjava.util.HashMap;importjava.util.TimeZone;importjava.util.Iterator;importjava.util.Arrays;importjavax.crypto.Mac;importjavax.crypto.spec.SecretKeySpec;importjavax.xml.namespace.QName;importjavax.xml.soap.SOAPHeader;importjavax.xml.soap.SOAPBody;importjavax.xml.soap.SOAPFault;importjavax.xml.soap.SOAPMessage;importjavax.xml.ws.soap.SOAPFaultException;importjavax.xml.soap.SOAPException;importjavax.xml.ws.handler.Handler;importjavax.xml.ws.handler.MessageContext;importjavax.xml.ws.handler.soap.SOAPHandler;importjavax.xml.ws.handler.soap.SOAPMessageContext;importorg.apache.commons.codec.binary.Base64;importorg.w3c.dom.Node;importorg.w3c.dom.NodeList;publicclassServiceHashHandlerimplementsSOAPHandler<SOAPMessageContext>{privatebyte[]secretBytes;publicServiceHashHandler(){}publicvoidclose(MessageContextmCtx){}publicSet<QName>getHeaders(){returnnull;}publicbooleanhandleFault(SOAPMessageContextmCtx){returntrue;}publicbooleanhandleMessage(SOAPMessageContextmCtx){Booleanoutbound=(Boolean)mCtx.get(MessageContext.MESSAGE_OUTBOUND_PROPERTY);if(!outbound){try{SOAPMessagemsg=mCtx.getMessage();SOAPHeadersoapHeader=msg.getSOAPHeader();if(soapHeader==null)generateFault(msg,"No header!");Nodenode=soapHeader.getFirstChild();// credentialsNodeListnodeList=node.getChildNodes();// Name, Timestamp, Sig.if(nodeList.getLength()<3)generateFault(msg,"Too few header nodes!");// Extract the required attributes.Stringname=nodeList.item(0).getFirstChild().getNodeValue();Stringsignature=nodeList.item(1).getFirstChild().getNodeValue();Stringtimestamp=nodeList.item(2).getFirstChild().getNodeValue();if(name==null||timestamp==null||signature==null)generateFault(msg,"Missing header key/value pairs!");// Generate comparison signature and compare against what's sent.Stringsecret=DataStore.get(name);if(secret==null)generateFault(msg,name+" not registered!");byte[]secretBytes=getBytes(secret);StringlocalSignature=getSignature(name,timestamp,secretBytes);if(!verify(signature,localSignature))generateFault(msg,"HMAC signatures do not match.");}catch(Exceptione){thrownewRuntimeException("SOAPException thrown.",e);}}returntrue;// continue down the handler chain}privatebooleanverify(Stringsig1,Stringsig2){returnArrays.equals(sig1.getBytes(),sig2.getBytes());}privateStringgetSignature(Stringname,Stringtimestamp,byte[]secretBytes){try{System.err.println("Name == "+name);System.err.println("Timestamp == "+timestamp);StringtoSign=name+timestamp;byte[]toSignBytes=getBytes(toSign);Macsigner=Mac.getInstance("HmacSHA256");SecretKeySpeckeySpec=newSecretKeySpec(secretBytes,"HmacSHA256");signer.init(keySpec);signer.update(toSignBytes);byte[]signBytes=signer.doFinal();Stringsignature=newString(Base64.encodeBase64(signBytes));returnsignature;}catch(Exceptione){thrownewRuntimeException("NoSuchAlgorithmException thrown.",e);}}privateStringgetTimestamp(){Calendarcalendar=Calendar.getInstance();SimpleDateFormatdateFormat=newSimpleDateFormat("yyyy-MM-dd'T'HH:mm:ss'Z'");dateFormat.setTimeZone(TimeZone.getTimeZone("UTC"));returndateFormat.format(calendar.getTime());}privatebyte[]getBytes(Stringstr){try{returnstr.getBytes("UTF-8");}catch(Exceptione){thrownewRuntimeException(e);}}privatevoidgenerateFault(SOAPMessagemsg,Stringreason){try{SOAPBodybody=msg.getSOAPBody();SOAPFaultfault=body.addFault();fault.setFaultString(reason);thrownewSOAPFaultException(fault);}catch(SOAPExceptione){}}}
The predictionsSOAP service does signature verification in basically the same way that Amazon does.
To make a request against the predictionsSOAP service, a client needs a key. How this is distributed
to the client is ignored in this example. In the Amazon case, the secretKey is provided when a user
registers with Amazon, and, of course, Amazon maintains a copy of the secretKey. In the predictionsSOAP
example, the service-side DataStore has a map whose lookup keys are usernames (for instance, Moe) and
whose values are the users’ secret keys (in this case, MoeMoeMoe). On an incoming message, the ServiceHashHandler
recomputes the hash value—generated on the client side with the user’s key—and then does a
byte-by-byte comparison of the sent signature and the signature computed on the service side. The
code is in the verify utility method:
privatebooleanverify(Stringsig1,Stringsig2){returnArrays.equals(sig1.getBytes(),sig2.getBytes());}
The argument sig1 is the sent signature, and the argument sig2 is the signature computed on the service side.
The API for generating a SOAP fault at the handler level differs significantly from the API for generating a SOAP fault at the application level. At the application level, the regular Java syntax of:
thrownewVerbosityException(...);
suffices; at the handler level,
by contrast, the SOAP fault needs to be constructed and then thrown. Here again is the
generateFault method in the ServiceHashHandler:
privatevoidgenerateFault(SOAPMessagemsg,Stringreason){try{SOAPBodybody=msg.getSOAPBody();SOAPFaultfault=body.addFault();fault.setFaultString(reason);thrownewSOAPFaultException(fault);}catch(SOAPExceptione){}}
The generateFault method uses the incoming SOAP message (msg is the reference) to
get the SOAP body (line 1). A SOAP fault is then added to body (line 2); the reason for the fault is
given; and a SOAPFaultException, initialized with the fault information (line 3), is thrown—which
in turn causes a SOAP fault message to be sent back to
the requester (line 4). If desired, additional Detail could be added to the SOAPFault, which has
an addDetail method.
The service-side handler ServiceHashHandler needs to be linked to the service itself, whose
@WebService-annotated class is PredictionsSOAP. On the client side, the linking is dynamic. Here, for
review, are the two critical lines of code in the PredictionsClient:
PredictionsSOAPServiceservice=newPredictionsSOAPService();service.setHandlerResolver(newClientHandlerResolver(name,key));
Line 2 in the listing performs the dynamic linking. With Tomcat deployment, this option is
not available. Instead, the predictionsSOAP service and the ServiceHashHandler
are linked through an XML configuration file encapsulated in the deployed WAR file:
<handler-chainsxmlns="http://java.sun.com/xml/ns/javaee"><handler-chain><handler><handler-name>predictions.ServiceHashHandler</handler-name><handler-class>predictions.ServiceHashHandler</handler-class></handler></handler-chain></handler-chains>
The name of the configuration file is arbitrary. A handler-chain (line 1) can include
arbitrarily many handler instances but, in this case, there is but one handler
in the handler-chain, the handler ServiceHashHandler (line 2). This configuration file
then is referenced with a @HandlerChain annotation in the PredictionsSOAP class:
@WebService@HandlerChain(file="../../../WEB-INF/serviceHandler.xml")publicclassPredictionsSOAP{...
The serviceHandler.xml file winds up in the WEB-INF directory of the deployed WAR file because the usual Ant script is used to deploy the predictionsSOAP service to Tomcat.
The configuration document serviceHandler.xml shown above indicates, with its handler-chain tag,
that multiple handlers might be in play on either the service or the client side. Figure 5-6
depicts the structure of such a chain. For an outgoing message, logical handlers come into
play first. This is appropriate because such handlers have limited scope; that is, they have
access only to the payload in the SOAP body. The (SOAP) message handlers then come into play
and these handlers, as noted earlier, have access to the entire SOAP message. For an incoming
message, the order is reversed: the (SOAP) message handlers have first access and the
logical handlers have last access. Message handlers are sufficient for any handler logic
precisely because they have access to the entire SOAP message, but logical handlers are
convenient in that the runtime makes available only the SOAP body’s payload.
The next section adds a second handler, in this case a LogicalHandler, to the
client side of the predictionsSOAP service. The result is a true chain of handlers.