Support for UUID based addressing

2026-04-21 13:58:07 +01:00 · 2019-06-20 19:25:15 -07:00
parent 0f8cb7ea6d
commit 7a3a385569
51 changed files with 1379 additions and 695 deletions
--- a/service/src/main/java/org/whispersystems/textsecuregcm/auth/AmbiguousIdentifier.java
+++ b/service/src/main/java/org/whispersystems/textsecuregcm/auth/AmbiguousIdentifier.java
@@ -0,0 +1,35 @@
+package org.whispersystems.textsecuregcm.auth;
+
+import java.util.UUID;
+
+public class AmbiguousIdentifier {
+
+  private final UUID   uuid;
+  private final String number;
+
+  public AmbiguousIdentifier(String target) {
+    if (target.startsWith("+")) {
+      this.uuid   = null;
+      this.number = target;
+    } else {
+      this.uuid   = UUID.fromString(target);
+      this.number = null;
+    }
+  }
+
+  public UUID getUuid() {
+    return uuid;
+  }
+
+  public String getNumber() {
+    return number;
+  }
+
+  public boolean hasUuid() {
+    return uuid != null;
+  }
+
+  public boolean hasNumber() {
+    return number != null;
+  }
+}
--- a/service/src/main/java/org/whispersystems/textsecuregcm/auth/AuthorizationHeader.java
+++ b/service/src/main/java/org/whispersystems/textsecuregcm/auth/AuthorizationHeader.java
@@ -24,20 +24,20 @@ import java.io.IOException;

 public class AuthorizationHeader {

-  private final String number;
-  private final long   accountId;
-  private final String password;
+  private final AmbiguousIdentifier identifier;
+  private final long                deviceId;
+  private final String              password;

-  private AuthorizationHeader(String number, long accountId, String password) {
-    this.number    = number;
-    this.accountId = accountId;
-    this.password  = password;
+  private AuthorizationHeader(AmbiguousIdentifier identifier, long deviceId, String password) {
+    this.identifier = identifier;
+    this.deviceId   = deviceId;
+    this.password   = password;
  }

  public static AuthorizationHeader fromUserAndPassword(String user, String password) throws InvalidAuthorizationHeaderException {
    try {
      String[] numberAndId = user.split("\\.");
-      return new AuthorizationHeader(numberAndId[0],
+      return new AuthorizationHeader(new AmbiguousIdentifier(numberAndId[0]),
                                     numberAndId.length > 1 ? Long.parseLong(numberAndId[1]) : 1,
                                     password);
    } catch (NumberFormatException nfe) {
@@ -79,12 +79,12 @@ public class AuthorizationHeader {
    }
  }

-  public String getNumber() {
-    return number;
+  public AmbiguousIdentifier getIdentifier() {
+    return identifier;
  }

  public long getDeviceId() {
-    return accountId;
+    return deviceId;
  }

  public String getPassword() {
--- a/service/src/main/java/org/whispersystems/textsecuregcm/auth/BaseAccountAuthenticator.java
+++ b/service/src/main/java/org/whispersystems/textsecuregcm/auth/BaseAccountAuthenticator.java
@@ -12,6 +12,7 @@ import org.whispersystems.textsecuregcm.util.Constants;
 import org.whispersystems.textsecuregcm.util.Util;

 import java.util.Optional;
+import java.util.UUID;

 import static com.codahale.metrics.MetricRegistry.name;
 import io.dropwizard.auth.basic.BasicCredentials;
@@ -38,7 +39,7 @@ public class BaseAccountAuthenticator {
  public Optional<Account> authenticate(BasicCredentials basicCredentials, boolean enabledRequired) {
    try {
      AuthorizationHeader authorizationHeader = AuthorizationHeader.fromUserAndPassword(basicCredentials.getUsername(), basicCredentials.getPassword());
-      Optional<Account>   account             = accountsManager.get(authorizationHeader.getNumber());
+      Optional<Account>   account             = accountsManager.get(authorizationHeader.getIdentifier());

      if (!account.isPresent()) {
        noSuchAccountMeter.mark();
@@ -73,7 +74,7 @@ public class BaseAccountAuthenticator {

      authenticationFailedMeter.mark();
      return Optional.empty();
-    } catch (InvalidAuthorizationHeaderException iahe) {
+    } catch (IllegalArgumentException | InvalidAuthorizationHeaderException iae) {
      invalidAuthHeaderMeter.mark();
      return Optional.empty();
    }
--- a/service/src/main/java/org/whispersystems/textsecuregcm/auth/CertificateGenerator.java
+++ b/service/src/main/java/org/whispersystems/textsecuregcm/auth/CertificateGenerator.java
@@ -31,6 +31,7 @@ public class CertificateGenerator {
  public byte[] createFor(Account account, Device device) throws IOException, InvalidKeyException {
    byte[] certificate = SenderCertificate.Certificate.newBuilder()
                                                      .setSender(account.getNumber())
+                                                      .setSenderUuid(account.getUuid().toString())
                                                      .setSenderDevice(Math.toIntExact(device.getId()))
                                                      .setExpires(System.currentTimeMillis() + TimeUnit.DAYS.toMillis(expiresDays))
                                                      .setIdentityKey(ByteString.copyFrom(Base64.decode(account.getIdentityKey())))