switch away from kotlinx.serialization

ekoby · ekoby · commit 0e712f77f5ad · 2025-05-06T10:43:37.000-04:00
diff --git a/ziti/src/integrationTest/kotlin/org/openziti/impl/LoadTests.kt b/ziti/src/integrationTest/kotlin/org/openziti/impl/LoadTests.kt
@@ -16,7 +16,6 @@
 
 package org.openziti.impl
 
-import kotlinx.serialization.json.Json
 import org.junit.jupiter.api.AfterEach
 import org.junit.jupiter.api.Assertions.assertEquals
 import org.junit.jupiter.api.BeforeEach
@@ -43,7 +42,11 @@ class LoadTests: BaseTest() {
 
     @Test
     fun testLoadConfigByteArray() {
-        val cfgBytes = Json.encodeToString(cfg).toByteArray(Charsets.UTF_8)
+
+        val cfgBytes = ByteArrayOutputStream().use {
+            cfg.store(it)
+            it.toByteArray()
+        }
 
         Ziti.init(cfgBytes, false)
 
diff --git a/ziti/src/main/kotlin/org/openziti/IdentityConfig.kt b/ziti/src/main/kotlin/org/openziti/IdentityConfig.kt
@@ -16,12 +16,10 @@
 
 package org.openziti
 
-import kotlinx.serialization.ExperimentalSerializationApi
-import kotlinx.serialization.SerialName
-import kotlinx.serialization.Serializable
-import kotlinx.serialization.json.Json
-import kotlinx.serialization.json.JsonIgnoreUnknownKeys
-import kotlinx.serialization.json.decodeFromStream
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties
+import com.fasterxml.jackson.annotation.JsonProperty
+import com.fasterxml.jackson.databind.ObjectMapper
+import com.fasterxml.jackson.module.kotlin.kotlinModule
 import org.openziti.identity.makeSSLContext
 import org.openziti.util.readCerts
 import org.openziti.util.readKey
@@ -35,24 +33,26 @@ import javax.net.ssl.SSLContext
 /**
  * Identity loaded from identity configuration JSON.
  */
-@JsonIgnoreUnknownKeys
-@Serializable data class IdentityConfig (
+@JsonIgnoreProperties(ignoreUnknown = true)
+data class IdentityConfig (
     /**
      * Ziti controller address.
      */
-    @SerialName("ztAPI") val controller: String,
+    @JsonProperty("ztAPI")
+    val controller: String,
 
     /**
      * List of ziti controller addresses.
      */
-    @SerialName("ztAPIs") val apiEndpoints: Collection<String>? = listOf(controller),
+    @JsonProperty("ztAPIs")
+    val apiEndpoints: Collection<String>? = listOf(controller),
 
     /**
      * Identity credentials.
      */
     val id: Id): Identity {
 
-    @Serializable data class Id(
+    data class Id(
         /** Identity private key in PEM format */
         val key: String? = null,
         /** Identity X.509 certificate in PEM format */
@@ -65,7 +65,7 @@ import javax.net.ssl.SSLContext
      * Store identity configuration to the output stream.
      */
     fun store(output: OutputStream) {
-        output.write(json.encodeToString(this).encodeToByteArray())
+        jsonMapper.writeValue(output, this)
     }
 
     /**
@@ -96,15 +96,14 @@ import javax.net.ssl.SSLContext
 
 
     companion object {
-        private val jsonBuilder = Json {
-            ignoreUnknownKeys = true
-        }
+        val jsonMapper: ObjectMapper =
+            ObjectMapper().registerModule(kotlinModule())
         /**
          * Load identity configuration from the input stream.
          */
-        @OptIn(ExperimentalSerializationApi::class)
         @JvmStatic
-        fun load(input: InputStream): IdentityConfig = jsonBuilder.decodeFromStream(serializer(), input)
+        fun load(input: InputStream): IdentityConfig =
+            jsonMapper.readValue(input, IdentityConfig::class.java)
 
         /**
          * Load identity configuration from the byte array.
@@ -130,9 +129,5 @@ import javax.net.ssl.SSLContext
 
             return load(cfg.toByteArray())
         }
-
-        private val json = Json {
-            prettyPrint = true
-        }
     }
 }
diff --git a/ziti/src/main/kotlin/org/openziti/api/Authentication.kt b/ziti/src/main/kotlin/org/openziti/api/Authentication.kt
@@ -16,13 +16,12 @@
 
 package org.openziti.api
 
+import com.fasterxml.jackson.databind.JsonNode
+import com.fasterxml.jackson.databind.ObjectMapper
+import com.fasterxml.jackson.module.kotlin.kotlinModule
 import kotlinx.coroutines.Dispatchers
 import kotlinx.coroutines.asExecutor
 import kotlinx.coroutines.future.await
-import kotlinx.serialization.json.Json
-import kotlinx.serialization.json.JsonObject
-import kotlinx.serialization.json.jsonObject
-import kotlinx.serialization.json.jsonPrimitive
 import org.openziti.edge.ApiClient
 import org.openziti.edge.api.AuthenticationApi
 import org.openziti.edge.api.CurrentApiSessionApi
@@ -128,6 +127,7 @@ class InternalOIDC(val ep: String, ssl: SSLContext): ZitiAuthenticator, Logged b
         val Encoder: Base64.Encoder = Base64.getUrlEncoder().withoutPadding()
         const val DISCOVERY = "/oidc/.well-known/openid-configuration"
         const val TOKEN_EXCHANGE_GRANT = "urn:ietf:params:oauth:grant-type:token-exchange"
+        val json: ObjectMapper = ObjectMapper().registerModule(kotlinModule())
     }
 
 
@@ -136,7 +136,7 @@ class InternalOIDC(val ep: String, ssl: SSLContext): ZitiAuthenticator, Logged b
         .followRedirects(HttpClient.Redirect.NEVER)
         .executor(Dispatchers.IO.asExecutor())
         .build()
-    lateinit var tokens: JsonObject
+    lateinit var tokens: JsonNode
 
     private val config by lazy {
         loadConfig()
@@ -166,7 +166,7 @@ class InternalOIDC(val ep: String, ssl: SSLContext): ZitiAuthenticator, Logged b
             .POST(HttpRequest.BodyPublishers.ofString(body))
             .build()
 
-        i{"sending auth request $req"}
+        d{"sending auth request $req"}
         val resp = http.sendAsync(req, HttpResponse.BodyHandlers.ofString()).await()
 
         if (resp.statusCode() / 100 != 3 && resp.headers().firstValue("Location").isEmpty) {
@@ -203,7 +203,7 @@ class InternalOIDC(val ep: String, ssl: SSLContext): ZitiAuthenticator, Logged b
         return query["code"]!! to query["state"]!!
     }
 
-    private suspend fun getTokens(ep: URI, code: String, codeVerifier: String): JsonObject {
+    private suspend fun getTokens(ep: URI, code: String, codeVerifier: String): JsonNode {
         val body = formatForm(
             mapOf(
                 "grant_type" to "authorization_code",
@@ -219,7 +219,7 @@ class InternalOIDC(val ep: String, ssl: SSLContext): ZitiAuthenticator, Logged b
             .POST(HttpRequest.BodyPublishers.ofString(body)).build()
 
         val tokenResp = http.sendAsync(req, HttpResponse.BodyHandlers.ofString()).await()
-        return Json.parseToJsonElement(tokenResp.body()).jsonObject
+        return json.readTree(tokenResp.body())
     }
 
     override suspend fun login(): ZitiAuthenticator.ZitiAccessToken {
@@ -230,9 +230,9 @@ class InternalOIDC(val ep: String, ssl: SSLContext): ZitiAuthenticator, Logged b
         val state = Encoder.encodeToString(Random.Default.nextBytes(30))
 
 
-        val authEndpoint = config["authorization_endpoint"]?.jsonPrimitive?.content
+        val authEndpoint = config["authorization_endpoint"]?.textValue()
             ?: throw Exception("Missing authorization endpoint in OIDC config")
-        val tokenEndpoint = config["token_endpoint"]?.jsonPrimitive?.content
+        val tokenEndpoint = config["token_endpoint"]?.textValue()
             ?: throw Exception("Missing token endpoint in OIDC config")
 
         val loginURI = startAuth(authEndpoint, challenge, state)
@@ -244,14 +244,14 @@ class InternalOIDC(val ep: String, ssl: SSLContext): ZitiAuthenticator, Logged b
         tokens = getTokens(URI.create(tokenEndpoint), code, codeVerifier)
         d{ "OIDC tokens: $tokens" }
 
-        val accessToken = tokens["access_token"]?.jsonPrimitive?.content
+        val accessToken = tokens["access_token"]?.textValue()
             ?: throw Exception("Missing access token in OIDC response")
-        val exp = OffsetDateTime.now().plusSeconds(tokens["expires_in"]?.jsonPrimitive?.content?.toLong() ?: 600)
+        val exp = OffsetDateTime.now().plusSeconds(tokens["expires_in"]?.longValue() ?: 600)
         return ZitiAuthenticator.ZitiAccessToken(ZitiAuthenticator.TokenType.BEARER, accessToken, exp)
     }
 
     override suspend fun refresh(): ZitiAuthenticator.ZitiAccessToken {
-        val refreshToken = tokens.get("refresh_token")?.jsonPrimitive?.content
+        val refreshToken = tokens.get("refresh_token")?.textValue()
 
         if (refreshToken == null) return login()
 
@@ -263,7 +263,7 @@ class InternalOIDC(val ep: String, ssl: SSLContext): ZitiAuthenticator, Logged b
         )
 
         val req = HttpRequest.newBuilder()
-            .uri(config["token_endpoint"]?.jsonPrimitive?.content?.let { URI.create(it) })
+            .uri(config["token_endpoint"]?.textValue()?.let { URI.create(it) })
             .header("Accept", "application/x-www-form-urlencoded")
             .POST(HttpRequest.BodyPublishers.ofString(formatForm(form)))
             .build()
@@ -274,14 +274,14 @@ class InternalOIDC(val ep: String, ssl: SSLContext): ZitiAuthenticator, Logged b
             return login()
         }
 
-        tokens = Json.parseToJsonElement(resp.body()).jsonObject
-        val accessToken = tokens["access_token"]?.jsonPrimitive?.content
+        tokens = json.readTree(resp.body())
+        val accessToken = tokens["access_token"]?.textValue()
             ?: throw Exception("Missing access token in OIDC response")
-        val exp = OffsetDateTime.now().plusSeconds(tokens["expires_in"]?.jsonPrimitive?.content?.toLong() ?: 600)
+        val exp = OffsetDateTime.now().plusSeconds(tokens["expires_in"]?.longValue() ?: 600)
         return ZitiAuthenticator.ZitiAccessToken(ZitiAuthenticator.TokenType.BEARER, accessToken, exp)
     }
 
-    private fun loadConfig(): JsonObject {
+    private fun loadConfig(): JsonNode {
         val url = URI.create(ep).resolve(DISCOVERY)
 
         val request = HttpRequest.newBuilder(url)
@@ -293,7 +293,7 @@ class InternalOIDC(val ep: String, ssl: SSLContext): ZitiAuthenticator, Logged b
             throw Exception("Failed to get OIDC config: ${response.statusCode()}")
         }
 
-        i("OIDC config response: ${response.body()}")
-        return Json.parseToJsonElement(response.body()).jsonObject
+        v {"OIDC config response: ${response.body()}"}
+        return ObjectMapper().readTree(response.body())
     }
 }
