[JBEAP-28701] added use of nonce

Author: rsearls

http/oidc/src/main/java/org/wildfly/security/http/oidc/AuthenticationError.java

@@ -36,7 +36,8 @@ public enum Reason {
         INVALID_TOKEN,
         STALE_TOKEN,
         NO_AUTHORIZATION_HEADER,
-        NO_QUERY_PARAMETER_ACCESS_TOKEN
+        NO_QUERY_PARAMETER_ACCESS_TOKEN,
+        INVALID_NONCE
     }
 
     private Reason reason;

http/oidc/src/main/java/org/wildfly/security/http/oidc/ElytronMessages.java

@@ -278,5 +278,11 @@ interface ElytronMessages extends BasicLogger {
 
     @Message(id = 23070, value = "Authentication request format must be one of the following: oauth2, request, request_uri.")
     RuntimeException invalidAuthenticationRequestFormat();
+
+    @Message(id = 23071, value = "Invalid ID token nonce: %s")
+    String invalidNonceValue(String name);
+
+    @Message(id = 23072, value = "No Such algorithm: '%s'")
+    IllegalArgumentException noSuchAlgorithm(String algorithm);
 }
 

http/oidc/src/main/java/org/wildfly/security/http/oidc/IDToken.java

@@ -53,6 +53,7 @@ public class IDToken extends JsonWebToken {
     public static final String CLAIMS_LOCALES = "claims_locales";
     public static final String ACR = "acr";
     public static final String S_HASH = "s_hash";
+    public static final String NONCE = "nonce";
 
     /**
      * Construct a new instance.
@@ -228,4 +229,7 @@ public String getAcr() {
         return getClaimValueAsString(ACR);
     }
 
+    public String getNonce() {
+        return getClaimValueAsString(NONCE);
+    }
 }

http/oidc/src/main/java/org/wildfly/security/http/oidc/Oidc.java

@@ -19,11 +19,15 @@
 package org.wildfly.security.http.oidc;
 
 import static org.wildfly.security.http.oidc.ElytronMessages.log;
+import static org.wildfly.security.jose.jwk.JWKUtil.BASE64_URL;
 
 import java.io.IOException;
 import java.io.InputStream;
 import java.net.InetAddress;
 import java.net.UnknownHostException;
+import java.nio.charset.StandardCharsets;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
 import java.util.Map;
 import java.util.StringTokenizer;
 import java.util.UUID;
@@ -34,6 +38,7 @@
 import org.apache.http.HttpResponse;
 import org.apache.http.client.methods.HttpRequestBase;
 import org.jose4j.jws.AlgorithmIdentifiers;
+import org.wildfly.common.iteration.ByteIterator;
 import org.wildfly.security.jose.util.JsonSerialization;
 
 /**
@@ -111,6 +116,7 @@ public class Oidc {
     public static final String REDIRECT_URI = "redirect_uri";
     public static final String REFRESH_TOKEN = "refresh_token";
     public static final String RESPONSE_TYPE = "response_type";
+    public static final String SESSION_RANDOM_VALUE="session_random_value";
     public static final String SESSION_STATE = "session_state";
     public static final String SOAP_ACTION = "SOAPAction";
     public static final String SSL_REQUIRED = "ssl-required";
@@ -119,6 +125,7 @@ public class Oidc {
     public static final int INVALID_ISSUED_FOR_CLAIM = -1;
     public static final int INVALID_AT_HASH_CLAIM = -2;
     public static final int INVALID_TYPE_CLAIM = -3;
+    public static final int INVALID_SESSION_RANDOM_VALUE = -4;
     static final String OIDC_CLIENT_CONFIG_RESOLVER = "oidc.config.resolver";
     static final String OIDC_CONFIG_FILE_LOCATION = "oidc.config.file";
     static final String OIDC_JSON_FILE = "/WEB-INF/oidc.json";
@@ -445,4 +452,14 @@ protected static boolean checkCachedAccountMatchesRequest(OidcAccount account, O
         return true;
     }
 
+    public static String getCryptographicValue(final String src) {
+        try {
+            MessageDigest md = MessageDigest.getInstance(SHA256);
+            md.update(src.getBytes(StandardCharsets.UTF_8));
+            return ByteIterator.ofBytes(md.digest())
+                    .base64Encode(BASE64_URL, false).drainToString();
+        } catch (NoSuchAlgorithmException e) {
+            throw log.noSuchAlgorithm(e.getMessage());
+        }
+    }
 }

http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java

@@ -23,6 +23,7 @@
 import static org.jose4j.jws.AlgorithmIdentifiers.HMAC_SHA512;
 import static org.jose4j.jws.AlgorithmIdentifiers.NONE;
 import static org.wildfly.security.http.oidc.ElytronMessages.log;
+import static org.wildfly.security.http.oidc.IDToken.NONCE;
 import static org.wildfly.security.http.oidc.Oidc.ALLOW_QUERY_PARAMS_PROPERTY_NAME;
 import static org.wildfly.security.http.oidc.Oidc.CLIENT_ID;
 import static org.wildfly.security.http.oidc.Oidc.CODE;
@@ -39,6 +40,7 @@
 import static org.wildfly.security.http.oidc.Oidc.REQUEST;
 import static org.wildfly.security.http.oidc.Oidc.REQUEST_URI;
 import static org.wildfly.security.http.oidc.Oidc.SCOPE;
+import static org.wildfly.security.http.oidc.Oidc.SESSION_RANDOM_VALUE;
 import static org.wildfly.security.http.oidc.Oidc.SESSION_STATE;
 import static org.wildfly.security.http.oidc.Oidc.STATE;
 import static org.wildfly.security.http.oidc.Oidc.UI_LOCALES;
@@ -59,6 +61,7 @@
 import java.security.Key;
 import java.security.KeyPair;
 import java.security.PublicKey;
+import java.security.SecureRandom;
 import java.util.ArrayList;
 import java.util.Arrays;
 import java.util.HashSet;
@@ -76,6 +79,7 @@
 import org.jose4j.jwt.JwtClaims;
 import org.jose4j.keys.HmacKey;
 import org.jose4j.lang.JoseException;
+import org.wildfly.common.iteration.ByteIterator;
 import org.wildfly.security.http.HttpConstants;
 
 /**
@@ -96,6 +100,8 @@ public class OidcRequestAuthenticator {
     protected String refreshToken;
     protected String strippedOauthParametersRequestUri;
 
+    private int NONCE_SIZE = 36;
+
     static final boolean ALLOW_QUERY_PARAMS_PROPERTY;
 
     static {
@@ -181,7 +187,7 @@ protected String getCode() {
         return getQueryParamValue(facade, CODE);
     }
 
-    protected String getRedirectUri(String state) {
+    protected String getRedirectUri(String state, String cryptoValue) {
         String url = getRequestUrl();
         log.debugf("callback uri: %s", url);
 
@@ -222,14 +228,15 @@ protected String getRedirectUri(String state) {
             String redirectUri = rewrittenRedirectUri(url);
             URIBuilder redirectUriBuilder = new URIBuilder(deployment.getAuthUrl());
             redirectUriBuilder.addParameter(RESPONSE_TYPE, CODE)
-                    .addParameter(CLIENT_ID, deployment.getResourceName());
+                    .addParameter(CLIENT_ID, deployment.getResourceName())
+                    .addParameter(NONCE, cryptoValue);
 
             switch (deployment.getAuthenticationRequestFormat()) {
                 case REQUEST:
                     if (deployment.getRequestParameterSupported()) {
                         // add request objects into request parameter
                         try {
-                            createRequestWithRequestParameter(REQUEST, redirectUriBuilder, redirectUri, state, forwardedQueryParams);
+                            createRequestWithRequestParameter(REQUEST, redirectUriBuilder, redirectUri, state, forwardedQueryParams, cryptoValue);
                         } catch (IOException | JoseException e) {
                             throw log.unableToCreateRequestWithRequestParameter(e);
                         }
@@ -242,7 +249,7 @@ protected String getRedirectUri(String state) {
                 case REQUEST_URI:
                     if (deployment.getRequestUriParameterSupported()) {
                         try {
-                            createRequestWithRequestParameter(REQUEST_URI, redirectUriBuilder, redirectUri, state, forwardedQueryParams);
+                            createRequestWithRequestParameter(REQUEST_URI, redirectUriBuilder, redirectUri, state, forwardedQueryParams, cryptoValue);
                         } catch (IOException | JoseException e) {
                             throw log.unableToCreateRequestUriWithRequestParameter(e);
                         }
@@ -269,8 +276,8 @@ protected URIBuilder createOAuthRequest(URIBuilder redirectUriBuilder, String re
         return redirectUriBuilder;
     }
 
-    protected URIBuilder createRequestWithRequestParameter(String requestFormat, URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams) throws JoseException, IOException {
-        String request = convertToRequestParameter(redirectUriBuilder, redirectUri, state, forwardedQueryParams);
+    protected URIBuilder createRequestWithRequestParameter(String requestFormat, URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams, String cryptoValue) throws JoseException, IOException {
+        String request = convertToRequestParameter(redirectUriBuilder, redirectUri, state, forwardedQueryParams, cryptoValue);
 
         switch (requestFormat) {
             case REQUEST:
@@ -296,7 +303,8 @@ protected String getStateCode() {
 
     protected AuthChallenge loginRedirect() {
         final String state = getStateCode();
-        final String redirect = getRedirectUri(state);
+        final String sessionRandomValue = generateSessionRandomValue();
+        final String redirect = getRedirectUri(state, Oidc.getCryptographicValue(sessionRandomValue));
         if (redirect == null) {
             return challenge(HttpStatus.SC_FORBIDDEN, AuthenticationError.Reason.NO_REDIRECT_URI, null);
         }
@@ -314,6 +322,8 @@ public boolean challenge(OidcHttpFacade exchange) {
                 exchange.getResponse().setStatus(HttpStatus.SC_MOVED_TEMPORARILY);
                 exchange.getResponse().setCookie(deployment.getStateCookieName(), state, "/", null, -1, deployment.getSSLRequired().isRequired(facade.getRequest().getRemoteAddr()), true);
                 exchange.getResponse().setHeader(HttpConstants.LOCATION, redirect);
+                exchange.getResponse().setCookie(SESSION_RANDOM_VALUE, sessionRandomValue, "/", null, -1, deployment.getSSLRequired().isRequired(facade.getRequest().getRemoteAddr()), true);
+
                 return true;
             }
         };
@@ -336,6 +346,7 @@ protected AuthChallenge checkStateCookie() {
             log.warn("state parameter was null");
             return challenge(HttpStatus.SC_BAD_REQUEST, AuthenticationError.Reason.INVALID_STATE_COOKIE, null);
         }
+
         if (!state.equals(stateCookieValue)) {
             log.warn("state parameter invalid");
             log.warn("cookie: " + stateCookieValue);
@@ -441,9 +452,12 @@ protected AuthChallenge resolveCode(String code) {
 
         try {
             TokenValidator tokenValidator = TokenValidator.builder(deployment).build();
-            TokenValidator.VerifiedTokens verifiedTokens = tokenValidator.parseAndVerifyToken(idTokenString, tokenString);
+            String sessionRandValueStr =  getCookieValue(SESSION_RANDOM_VALUE);
+
+            TokenValidator.VerifiedTokens verifiedTokens = tokenValidator.parseAndVerifyToken(idTokenString, tokenString, facade);
             idToken = verifiedTokens.getIdToken();
             token = verifiedTokens.getAccessToken();
+
             log.debug("Token Verification succeeded!");
         } catch (OidcException e) {
             log.failedVerificationOfToken(e.getMessage());
@@ -456,6 +470,7 @@ protected AuthChallenge resolveCode(String code) {
             log.error("Stale token");
             return challenge(HttpStatus.SC_FORBIDDEN, AuthenticationError.Reason.STALE_TOKEN, null);
         }
+
         log.debug("successfully authenticated");
         return null;
     }
@@ -535,7 +550,7 @@ private void addScopes(String scopes, Set<String> allScopes) {
         }
     }
 
-    private String convertToRequestParameter(URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams) throws JoseException, IOException {
+    private String convertToRequestParameter(URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams, String cryptoValue) throws JoseException, IOException {
         redirectUriBuilder.addParameter(SCOPE, OIDC_SCOPE);
 
         JwtClaims jwtClaims = new JwtClaims();
@@ -545,10 +560,12 @@ private String convertToRequestParameter(URIBuilder redirectUriBuilder, String r
         for ( NameValuePair parameter: forwardedQueryParams) {
             jwtClaims.setClaim(parameter.getName(), parameter.getValue());
         }
+
         jwtClaims.setClaim(STATE, state);
         jwtClaims.setClaim(REDIRECT_URI, redirectUri);
         jwtClaims.setClaim(RESPONSE_TYPE, CODE);
         jwtClaims.setClaim(CLIENT_ID, deployment.getResourceName());
+        jwtClaims.setClaim(NONCE, cryptoValue);
 
         // sign JWT first before encrypting
         JsonWebSignature signedRequest = signRequest(jwtClaims, deployment);
@@ -622,4 +639,11 @@ private JsonWebEncryption encryptRequest(JsonWebSignature signedRequest) throws
             return jsonEncryption;
         }
     }
+
+    private String generateSessionRandomValue() {
+        SecureRandom random = new SecureRandom();
+        byte[] nonceData = new byte[NONCE_SIZE];
+        random.nextBytes(nonceData);
+        return ByteIterator.ofBytes(nonceData).base64Encode().drainToString();
+    }
 }

http/oidc/src/main/java/org/wildfly/security/http/oidc/TokenValidator.java

@@ -23,7 +23,9 @@
 import static org.wildfly.security.http.oidc.Oidc.DISABLE_TYP_CLAIM_VALIDATION_PROPERTY_NAME;
 import static org.wildfly.security.http.oidc.Oidc.INVALID_AT_HASH_CLAIM;
 import static org.wildfly.security.http.oidc.Oidc.INVALID_ISSUED_FOR_CLAIM;
+import static org.wildfly.security.http.oidc.Oidc.INVALID_SESSION_RANDOM_VALUE;
 import static org.wildfly.security.http.oidc.Oidc.INVALID_TYPE_CLAIM;
+import static org.wildfly.security.http.oidc.Oidc.SESSION_RANDOM_VALUE;
 import static org.wildfly.security.http.oidc.Oidc.getJavaAlgorithmForHash;
 import static org.wildfly.security.jose.jwk.JWKUtil.BASE64_URL;
 
@@ -83,11 +85,17 @@ private TokenValidator(Builder builder) {
      * @throws OidcException if the ID token is invalid
      */
     public VerifiedTokens parseAndVerifyToken(final String idToken, final String accessToken) throws OidcException {
+        return parseAndVerifyToken(idToken, accessToken, null);
+    }
+
+    public VerifiedTokens parseAndVerifyToken(final String idToken, final String accessToken, OidcHttpFacade facade) throws OidcException {
         try {
             JwtContext idJwtContext = setVerificationKey(idToken, jwtConsumerBuilder);
             jwtConsumerBuilder.setExpectedAudience(clientConfiguration.getResourceName());
             jwtConsumerBuilder.registerValidator(new AzpValidator(clientConfiguration.getResourceName()));
             jwtConsumerBuilder.registerValidator(new AtHashValidator(accessToken, clientConfiguration.getTokenSignatureAlgorithm()));
+            jwtConsumerBuilder.registerValidator(new NonceValidator(facade));
+
             // second pass to validate
             jwtConsumerBuilder.build().processContext(idJwtContext);
             JwtClaims idJwtClaims = idJwtContext.getJwtClaims();
@@ -288,6 +296,31 @@ private static String getAccessTokenHash(String accessTokenString, String jwsAlg
 
     }
 
+
+    private static class NonceValidator implements ErrorCodeValidator {
+        private OidcHttpFacade facade;
+
+        public NonceValidator(OidcHttpFacade facade) {
+            this.facade = facade;
+        }
+
+        public ErrorCodeValidator.Error validate(JwtContext jwtContext) throws MalformedClaimException {
+            JwtClaims idJwtClaims = jwtContext.getJwtClaims();
+            IDToken idToken = new IDToken(idJwtClaims);
+
+            OidcHttpFacade.Cookie cookie = this.facade.getRequest().getCookie(SESSION_RANDOM_VALUE);
+            if (cookie != null) {
+                String sessionIdValue = Oidc.getCryptographicValue(cookie.getValue());
+                String nonceValue = idToken.getNonce();
+                if (nonceValue == null || !sessionIdValue.equals(nonceValue)) {
+                    return new ErrorCodeValidator.Error(INVALID_SESSION_RANDOM_VALUE,
+                            log.invalidNonceValue(nonceValue == null ? "null" : nonceValue));
+                }
+            }
+            return null;
+        }
+    }
+
     private static class TypeValidator implements ErrorCodeValidator {
         public static final String TYPE = "typ";
         private final String expectedType;