add proxy to fttp client

Author: wetret

codex-process-data-transfer/src/main/java/de/netzwerk_universitaetsmedizin/codex/processes/data_transfer/client/FttpClientFactory.java

@@ -80,27 +80,38 @@ public void testConnection()
 	private final Path trustStorePath;
 	private final Path certificatePath;
 	private final Path privateKeyPath;
-	private final String basicAuthUsername;
-	private final String basicAuthPassword;
+
 	private final String fttpServerBase;
+	private final String fttpBasicAuthUsername;
+	private final String fttpBasicAuthPassword;
+
 	private final String fttpApiKey;
 	private final String fttpStudy;
 	private final String fttpTarget;
 
-	public FttpClientFactory(Path trustStorePath, Path certificatePath, Path privateKeyPath, String basicAuthUsername,
-			String basicAuthPassword, String fttpServerBase, String fttpApiKey, String fttpStudy, String fttpTarget)
+	private final String proxySchemeHostPort;
+	private final String proxyUsername;
+	private final String proxyPassword;
+
+	public FttpClientFactory(Path trustStorePath, Path certificatePath, Path privateKeyPath,
+			String fttpBasicAuthUsername, String fttpBasicAuthPassword, String fttpServerBase, String fttpApiKey,
+			String fttpStudy, String fttpTarget, String proxySchemeHostPort, String proxyUsername, String proxyPassword)
 	{
 		this.trustStorePath = trustStorePath;
 		this.certificatePath = certificatePath;
 		this.privateKeyPath = privateKeyPath;
 
-		this.basicAuthUsername = basicAuthUsername;
-		this.basicAuthPassword = basicAuthPassword;
+		this.fttpBasicAuthUsername = fttpBasicAuthUsername;
+		this.fttpBasicAuthPassword = fttpBasicAuthPassword;
 
 		this.fttpServerBase = fttpServerBase;
 		this.fttpApiKey = fttpApiKey;
 		this.fttpStudy = fttpStudy;
 		this.fttpTarget = fttpTarget;
+
+		this.proxySchemeHostPort = proxySchemeHostPort;
+		this.proxyUsername = proxyUsername;
+		this.proxyPassword = proxyPassword;
 	}
 
 	@EventListener({ ContextRefreshedEvent.class })
@@ -144,8 +155,8 @@ protected FttpClient createFttpClient()
 		logger.debug("Creating key-store from {} and {}", certificatePath.toString(), privateKeyPath.toString());
 		KeyStore keyStore = readKeyStore(certificatePath, privateKeyPath, keyStorePassword);
 
-		return new FttpClientImpl(trustStore, keyStore, keyStorePassword, basicAuthUsername, basicAuthPassword,
-				fttpServerBase, fttpApiKey, fttpStudy, fttpTarget);
+		return new FttpClientImpl(trustStore, keyStore, keyStorePassword, fttpBasicAuthUsername, fttpBasicAuthPassword,
+				fttpServerBase, fttpApiKey, fttpStudy, fttpTarget, proxySchemeHostPort, proxyUsername, proxyPassword);
 	}
 
 	private KeyStore readTrustStore(Path trustPath)

codex-process-data-transfer/src/main/java/de/netzwerk_universitaetsmedizin/codex/processes/data_transfer/client/FttpClientImpl.java

@@ -2,12 +2,15 @@
 
 import static de.netzwerk_universitaetsmedizin.codex.processes.data_transfer.ConstantsDataTransfer.PSEUDONYM_PATTERN_STRING;
 
+import java.net.MalformedURLException;
+import java.net.URL;
 import java.security.KeyStore;
 import java.util.Objects;
 import java.util.Optional;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
 
+import org.apache.commons.lang3.StringUtils;
 import org.hl7.fhir.r4.model.Base64BinaryType;
 import org.hl7.fhir.r4.model.CapabilityStatement;
 import org.hl7.fhir.r4.model.Identifier;
@@ -34,23 +37,32 @@ public class FttpClientImpl implements FttpClient, InitializingBean
 
 	private final IRestfulClientFactory clientFactory;
 
-	private final String basicAuthUsername;
-	private final String basicAuthPassword;
-
 	private final String fttpServerBase;
+	private final String fttpBasicAuthUsername;
+	private final String fttpBasicAuthPassword;
+
 	private final String fttpStudy;
 	private final String fttpTarget;
 	private final String fttpApiKey;
 
-	public FttpClientImpl(KeyStore trustStore, KeyStore keyStore, char[] keyStorePassword, String basicAuthUsername,
-			String basicAuthPassword, String fttpServerBase, String fttpApiKey, String fttpStudy, String fttpTarget)
+	private final String proxySchemeHostPort;
+	private final String proxyUsername;
+	private final String proxyPassword;
+
+	public FttpClientImpl(KeyStore trustStore, KeyStore keyStore, char[] keyStorePassword, String fttpBasicAuthUsername,
+			String fttpBasicAuthPassword, String fttpServerBase, String fttpApiKey, String fttpStudy, String fttpTarget,
+			String proxySchemeHostPort, String proxyUsername, String proxyPassword)
 	{
-		this.basicAuthUsername = basicAuthUsername;
-		this.basicAuthPassword = basicAuthPassword;
+		this.proxySchemeHostPort = proxySchemeHostPort;
+		this.proxyUsername = proxyUsername;
+		this.proxyPassword = proxyPassword;
 
 		clientFactory = createClientFactory(trustStore, keyStore, keyStorePassword);
 
 		this.fttpServerBase = fttpServerBase;
+		this.fttpBasicAuthUsername = fttpBasicAuthUsername;
+		this.fttpBasicAuthPassword = fttpBasicAuthPassword;
+
 		this.fttpApiKey = fttpApiKey;
 		this.fttpStudy = fttpStudy;
 		this.fttpTarget = fttpTarget;
@@ -67,11 +79,32 @@ protected ApacheRestfulClientFactoryWithTlsConfig createClientFactory(KeyStore t
 		ApacheRestfulClientFactoryWithTlsConfig hapiClientFactory = new ApacheRestfulClientFactoryWithTlsConfig(
 				fhirContext, trustStore, keyStore, keyStorePassword);
 		hapiClientFactory.setServerValidationMode(ServerValidationModeEnum.NEVER);
+		configureProxy(hapiClientFactory);
 
 		fhirContext.setRestfulClientFactory(hapiClientFactory);
 		return hapiClientFactory;
 	}
 
+	private void configureProxy(ApacheRestfulClientFactoryWithTlsConfig clientFactory)
+	{
+		if (StringUtils.isNotBlank(proxySchemeHostPort))
+		{
+			try
+			{
+				URL url = new URL(proxySchemeHostPort);
+				clientFactory.setProxy(url.getHost(), url.getPort());
+				clientFactory.setProxyCredentials(proxyUsername, proxyPassword);
+
+				logger.info("Using proxy for fTTP connection with {host: {}, port: {}, username: {}}", url.getHost(),
+						url.getPort(), proxyUsername);
+			}
+			catch (MalformedURLException e)
+			{
+				logger.error("Could not configure proxy", e);
+			}
+		}
+	}
+
 	@Override
 	public void afterPropertiesSet() throws Exception
 	{
@@ -198,13 +231,13 @@ private IGenericClient createGenericClient()
 		client.registerInterceptor(new LoggingInterceptor());
 
 		if (configuredWithBasicAuth())
-			client.registerInterceptor(new BasicAuthInterceptor(basicAuthUsername, basicAuthPassword));
+			client.registerInterceptor(new BasicAuthInterceptor(fttpBasicAuthUsername, fttpBasicAuthPassword));
 
 		return client;
 	}
 
 	private boolean configuredWithBasicAuth()
 	{
-		return basicAuthUsername != null && basicAuthPassword != null;
+		return fttpBasicAuthUsername != null && fttpBasicAuthPassword != null;
 	}
 }

codex-process-data-transfer/src/main/java/de/netzwerk_universitaetsmedizin/codex/processes/data_transfer/spring/config/TransferDataConfig.java

@@ -121,6 +121,15 @@ public class TransferDataConfig
 	@Value("${de.netzwerk_universitaetsmedizin.codex.fttp.target:codex}")
 	private String fttpTarget;
 
+	@Value("${org.highmed.dsf.bpe.fhir.remote.webservice.proxy.schemeHostPort:#{null}}")
+	private String proxySchemeHostPort;
+
+	@Value("${org.highmed.dsf.bpe.fhir.remote.webservice.proxy.username:#{null}}")
+	private String proxyUsername;
+
+	@Value("${org.highmed.dsf.bpe.fhir.remote.webservice.proxy.password:#{null}}")
+	private String proxyPassword;
+
 	@Value("${org.highmed.dsf.fhir.local-organization.identifier}")
 	private String localIdentifierValue;
 
@@ -145,7 +154,8 @@ public FttpClientFactory fttpClientFactory()
 		Path privateKeyPath = checkExists(fttpPrivateKey);
 
 		return new FttpClientFactory(trustStorePath, certificatePath, privateKeyPath, fttpBasicAuthUsername,
-				fttpBasicAuthPassword, fttpServerBase, fttpApiKey, fttpStudy, fttpTarget);
+				fttpBasicAuthPassword, fttpServerBase, fttpApiKey, fttpStudy, fttpTarget, proxySchemeHostPort,
+				proxyUsername, proxyPassword);
 	}
 
 	@Bean