feat: make a nonce in a token response optional

yshyn-iohk · yshyn-iohk · commit 6f480cd9433b · 2024-07-03T14:46:35.000+07:00
diff --git a/src/main/java/org/hyperledger/identus/keycloak/IdentusClient.java b/src/main/java/org/hyperledger/identus/keycloak/IdentusClient.java
@@ -17,17 +17,20 @@ public class IdentusClient {
 
     private static final Logger logger = Logger.getLogger(IdentusClient.class);
 
-    private final String identusUrl;
+    private final String identusUrl = System.getenv("IDENTUS_URL");
 
     private final Supplier<CloseableHttpClient> httpClient = IdentusClient::newCloseableHttpClient;
 
     public IdentusClient() {
-        this.identusUrl = System.getenv("IDENTUS_URL");
         if (this.identusUrl == null) {
-            throw new NullPointerException("The URL of identus client is null. The IDENTUS_URL environment variable is not set.");
+            logger.warn("The URL of the Identus Cloud Agent client is null. The IDENTUS_URL environment variable is not set. The token response will not contain a nonce.");
         }
     }
 
+    public Boolean isIdentusUrlSet() {
+        return this.identusUrl != null;
+    }
+
     public static CloseableHttpClient newCloseableHttpClient() {
         return HttpClientBuilder.create().build();
     }
diff --git a/src/main/java/org/hyperledger/identus/keycloak/OID4VCITokenEndpoint.java b/src/main/java/org/hyperledger/identus/keycloak/OID4VCITokenEndpoint.java
@@ -36,10 +36,12 @@ public Response createTokenResponse(UserModel user, UserSessionModel userSession
             Response originalResponse = super.createTokenResponse(user, userSession, clientSessionCtx, scopeParam, true, clientPolicyContextGenerator);
             AccessTokenResponse responseEntity = (AccessTokenResponse) originalResponse.getEntity();
 
-            String token = responseEntity.getToken();
-            NonceResponse nonceResponse = identusClient.getNonce(token, issuerState);
-            responseEntity.setOtherClaims(OID4VCIConstants.C_NONCE, nonceResponse.getNonce());
-            responseEntity.setOtherClaims(OID4VCIConstants.C_NONCE_EXPIRE, nonceResponse.getNonceExpiresIn());
+            if (identusClient.isIdentusUrlSet()) {
+                String token = responseEntity.getToken();
+                NonceResponse nonceResponse = identusClient.getNonce(token, issuerState);
+                responseEntity.setOtherClaims(OID4VCIConstants.C_NONCE, nonceResponse.getNonce());
+                responseEntity.setOtherClaims(OID4VCIConstants.C_NONCE_EXPIRE, nonceResponse.getNonceExpiresIn());
+            }
             return Response.fromResponse(originalResponse)
                     .entity(responseEntity)
                     .build();

Original file line number	Diff line number	Diff line change
`@@ -17,17 +17,20 @@ public class IdentusClient {`
`17`	`17`
`18`	`18`	`private static final Logger logger = Logger.getLogger(IdentusClient.class);`
`19`	`19`
`20`		`- private final String identusUrl;`
	`20`	`+ private final String identusUrl = System.getenv("IDENTUS_URL");`
`21`	`21`
`22`	`22`	`private final Supplier<CloseableHttpClient> httpClient = IdentusClient::newCloseableHttpClient;`
`23`	`23`
`24`	`24`	`public IdentusClient() {`
`25`		`- this.identusUrl = System.getenv("IDENTUS_URL");`
`26`	`25`	`if (this.identusUrl == null) {`
`27`		`- throw new NullPointerException("The URL of identus client is null. The IDENTUS_URL environment variable is not set.");`
	`26`	`+ logger.warn("The URL of the Identus Cloud Agent client is null. The IDENTUS_URL environment variable is not set. The token response will not contain a nonce.");`
`28`	`27`	`}`
`29`	`28`	`}`
`30`	`29`
	`30`	`+ public Boolean isIdentusUrlSet() {`
	`31`	`+ return this.identusUrl != null;`
	`32`	`+ }`
	`33`	`+`
`31`	`34`	`public static CloseableHttpClient newCloseableHttpClient() {`
`32`	`35`	`return HttpClientBuilder.create().build();`
`33`	`36`	`}`