[JBEAP-28701] added use of nonce

Author: rsearls

http/oidc/src/main/java/org/wildfly/security/http/oidc/AuthenticationError.java

@@ -36,7 +36,8 @@ public enum Reason {
         INVALID_TOKEN,
         STALE_TOKEN,
         NO_AUTHORIZATION_HEADER,
-        NO_QUERY_PARAMETER_ACCESS_TOKEN
+        NO_QUERY_PARAMETER_ACCESS_TOKEN,
+        INVALID_NONCE
     }
 
     private Reason reason;

http/oidc/src/main/java/org/wildfly/security/http/oidc/ElytronMessages.java

@@ -278,5 +278,14 @@ interface ElytronMessages extends BasicLogger {
 
     @Message(id = 23070, value = "Authentication request format must be one of the following: oauth2, request, request_uri.")
     RuntimeException invalidAuthenticationRequestFormat();
+
+    @Message(id = 23071, value = "Invalid ID token nonce: %s")
+    String invalidNonceValue(String name);
+
+    @Message(id = 23072, value = "No such algorithm: '%s'")
+    IllegalArgumentException noSuchAlgorithm(String algorithm);
+
+    @Message(id = 23073, value = "Nonce cookie does not exist")
+    String nonceCookieDoesNotExist();
 }
 

http/oidc/src/main/java/org/wildfly/security/http/oidc/IDToken.java

@@ -53,6 +53,7 @@ public class IDToken extends JsonWebToken {
     public static final String CLAIMS_LOCALES = "claims_locales";
     public static final String ACR = "acr";
     public static final String S_HASH = "s_hash";
+    public static final String NONCE = "nonce";
 
     /**
      * Construct a new instance.
@@ -228,4 +229,7 @@ public String getAcr() {
         return getClaimValueAsString(ACR);
     }
 
+    public String getNonce() {
+        return getClaimValueAsString(NONCE);
+    }
 }

http/oidc/src/main/java/org/wildfly/security/http/oidc/Oidc.java

@@ -19,11 +19,15 @@
 package org.wildfly.security.http.oidc;
 
 import static org.wildfly.security.http.oidc.ElytronMessages.log;
+import static org.wildfly.security.jose.jwk.JWKUtil.BASE64_URL;
 
 import java.io.IOException;
 import java.io.InputStream;
 import java.net.InetAddress;
 import java.net.UnknownHostException;
+import java.nio.charset.StandardCharsets;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
 import java.util.Map;
 import java.util.StringTokenizer;
 import java.util.UUID;
@@ -34,6 +38,7 @@
 import org.apache.http.HttpResponse;
 import org.apache.http.client.methods.HttpRequestBase;
 import org.jose4j.jws.AlgorithmIdentifiers;
+import org.wildfly.common.iteration.ByteIterator;
 import org.wildfly.security.jose.util.JsonSerialization;
 
 /**
@@ -111,6 +116,7 @@ public class Oidc {
     public static final String REDIRECT_URI = "redirect_uri";
     public static final String REFRESH_TOKEN = "refresh_token";
     public static final String RESPONSE_TYPE = "response_type";
+    public static final String SESSION_RANDOM_VALUE="session_random_value";
     public static final String SESSION_STATE = "session_state";
     public static final String SOAP_ACTION = "SOAPAction";
     public static final String SSL_REQUIRED = "ssl-required";
@@ -119,6 +125,7 @@ public class Oidc {
     public static final int INVALID_ISSUED_FOR_CLAIM = -1;
     public static final int INVALID_AT_HASH_CLAIM = -2;
     public static final int INVALID_TYPE_CLAIM = -3;
+    public static final int INVALID_SESSION_RANDOM_VALUE = -4;
     static final String OIDC_CLIENT_CONFIG_RESOLVER = "oidc.config.resolver";
     static final String OIDC_CONFIG_FILE_LOCATION = "oidc.config.file";
     static final String OIDC_JSON_FILE = "/WEB-INF/oidc.json";
@@ -445,4 +452,14 @@ protected static boolean checkCachedAccountMatchesRequest(OidcAccount account, O
         return true;
     }
 
+    public static String getCryptographicValue(final String src) {
+        try {
+            MessageDigest md = MessageDigest.getInstance(SHA256);
+            md.update(src.getBytes(StandardCharsets.UTF_8));
+            return ByteIterator.ofBytes(md.digest())
+                    .base64Encode(BASE64_URL, false).drainToString();
+        } catch (NoSuchAlgorithmException e) {
+            throw log.noSuchAlgorithm(e.getMessage());
+        }
+    }
 }

http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcCookieTokenStore.java

@@ -227,7 +227,7 @@ public static OidcPrincipal<RefreshableOidcSecurityContext> getPrincipalFromCook
                 idToken = new IDToken(new JwtConsumerBuilder().setSkipSignatureVerification().setSkipAllValidators().build().processToClaims(idTokenString));
             }
             log.debug("Token obtained from cookie");
-            RefreshableOidcSecurityContext secContext = new RefreshableOidcSecurityContext(deployment, tokenStore, accessTokenString, accessToken, idTokenString, idToken, refreshTokenString);
+            RefreshableOidcSecurityContext secContext = new RefreshableOidcSecurityContext(deployment, facade, tokenStore, accessTokenString, accessToken, idTokenString, idToken, refreshTokenString);
             return new OidcPrincipal<>(idToken.getPrincipalName(deployment), secContext);
         } catch (InvalidJwtException e) {
             log.failedToParseTokenFromCookie(e);

http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java

@@ -23,6 +23,7 @@
 import static org.jose4j.jws.AlgorithmIdentifiers.HMAC_SHA512;
 import static org.jose4j.jws.AlgorithmIdentifiers.NONE;
 import static org.wildfly.security.http.oidc.ElytronMessages.log;
+import static org.wildfly.security.http.oidc.IDToken.NONCE;
 import static org.wildfly.security.http.oidc.Oidc.ALLOW_QUERY_PARAMS_PROPERTY_NAME;
 import static org.wildfly.security.http.oidc.Oidc.CLIENT_ID;
 import static org.wildfly.security.http.oidc.Oidc.CODE;
@@ -39,6 +40,7 @@
 import static org.wildfly.security.http.oidc.Oidc.REQUEST;
 import static org.wildfly.security.http.oidc.Oidc.REQUEST_URI;
 import static org.wildfly.security.http.oidc.Oidc.SCOPE;
+import static org.wildfly.security.http.oidc.Oidc.SESSION_RANDOM_VALUE;
 import static org.wildfly.security.http.oidc.Oidc.SESSION_STATE;
 import static org.wildfly.security.http.oidc.Oidc.STATE;
 import static org.wildfly.security.http.oidc.Oidc.UI_LOCALES;
@@ -59,6 +61,7 @@
 import java.security.Key;
 import java.security.KeyPair;
 import java.security.PublicKey;
+import java.security.SecureRandom;
 import java.util.ArrayList;
 import java.util.Arrays;
 import java.util.HashSet;
@@ -76,6 +79,7 @@
 import org.jose4j.jwt.JwtClaims;
 import org.jose4j.keys.HmacKey;
 import org.jose4j.lang.JoseException;
+import org.wildfly.common.iteration.ByteIterator;
 import org.wildfly.security.http.HttpConstants;
 
 /**
@@ -96,6 +100,8 @@ public class OidcRequestAuthenticator {
     protected String refreshToken;
     protected String strippedOauthParametersRequestUri;
 
+    private int NONCE_SIZE = 36;
+
     static final boolean ALLOW_QUERY_PARAMS_PROPERTY;
 
     static {
@@ -181,7 +187,7 @@ protected String getCode() {
         return getQueryParamValue(facade, CODE);
     }
 
-    protected String getRedirectUri(String state) {
+    protected String getRedirectUri(String state, String sessionRandomValueHash) {
         String url = getRequestUrl();
         log.debugf("callback uri: %s", url);
 
@@ -222,14 +228,15 @@ protected String getRedirectUri(String state) {
             String redirectUri = rewrittenRedirectUri(url);
             URIBuilder redirectUriBuilder = new URIBuilder(deployment.getAuthUrl());
             redirectUriBuilder.addParameter(RESPONSE_TYPE, CODE)
-                    .addParameter(CLIENT_ID, deployment.getResourceName());
+                    .addParameter(CLIENT_ID, deployment.getResourceName())
+                    .addParameter(NONCE, sessionRandomValueHash);
 
             switch (deployment.getAuthenticationRequestFormat()) {
                 case REQUEST:
                     if (deployment.getRequestParameterSupported()) {
                         // add request objects into request parameter
                         try {
-                            createRequestWithRequestParameter(REQUEST, redirectUriBuilder, redirectUri, state, forwardedQueryParams);
+                            createRequestWithRequestParameter(REQUEST, redirectUriBuilder, redirectUri, state, forwardedQueryParams, sessionRandomValueHash);
                         } catch (IOException | JoseException e) {
                             throw log.unableToCreateRequestWithRequestParameter(e);
                         }
@@ -242,7 +249,7 @@ protected String getRedirectUri(String state) {
                 case REQUEST_URI:
                     if (deployment.getRequestUriParameterSupported()) {
                         try {
-                            createRequestWithRequestParameter(REQUEST_URI, redirectUriBuilder, redirectUri, state, forwardedQueryParams);
+                            createRequestWithRequestParameter(REQUEST_URI, redirectUriBuilder, redirectUri, state, forwardedQueryParams, sessionRandomValueHash);
                         } catch (IOException | JoseException e) {
                             throw log.unableToCreateRequestUriWithRequestParameter(e);
                         }
@@ -269,8 +276,8 @@ protected URIBuilder createOAuthRequest(URIBuilder redirectUriBuilder, String re
         return redirectUriBuilder;
     }
 
-    protected URIBuilder createRequestWithRequestParameter(String requestFormat, URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams) throws JoseException, IOException {
-        String request = convertToRequestParameter(redirectUriBuilder, redirectUri, state, forwardedQueryParams);
+    protected URIBuilder createRequestWithRequestParameter(String requestFormat, URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams, String sessionRandomValueHash) throws JoseException, IOException {
+        String request = convertToRequestParameter(redirectUriBuilder, redirectUri, state, forwardedQueryParams, sessionRandomValueHash);
 
         switch (requestFormat) {
             case REQUEST:
@@ -296,7 +303,8 @@ protected String getStateCode() {
 
     protected AuthChallenge loginRedirect() {
         final String state = getStateCode();
-        final String redirect = getRedirectUri(state);
+        final String sessionRandomValue = generateSessionRandomValue();
+        final String redirect = getRedirectUri(state, Oidc.getCryptographicValue(sessionRandomValue));
         if (redirect == null) {
             return challenge(HttpStatus.SC_FORBIDDEN, AuthenticationError.Reason.NO_REDIRECT_URI, null);
         }
@@ -314,6 +322,8 @@ public boolean challenge(OidcHttpFacade exchange) {
                 exchange.getResponse().setStatus(HttpStatus.SC_MOVED_TEMPORARILY);
                 exchange.getResponse().setCookie(deployment.getStateCookieName(), state, "/", null, -1, deployment.getSSLRequired().isRequired(facade.getRequest().getRemoteAddr()), true);
                 exchange.getResponse().setHeader(HttpConstants.LOCATION, redirect);
+                exchange.getResponse().setCookie(SESSION_RANDOM_VALUE, sessionRandomValue, "/", null, -1, deployment.getSSLRequired().isRequired(facade.getRequest().getRemoteAddr()), true);
+
                 return true;
             }
         };
@@ -336,6 +346,7 @@ protected AuthChallenge checkStateCookie() {
             log.warn("state parameter was null");
             return challenge(HttpStatus.SC_BAD_REQUEST, AuthenticationError.Reason.INVALID_STATE_COOKIE, null);
         }
+
         if (!state.equals(stateCookieValue)) {
             log.warn("state parameter invalid");
             log.warn("cookie: " + stateCookieValue);
@@ -441,9 +452,11 @@ protected AuthChallenge resolveCode(String code) {
 
         try {
             TokenValidator tokenValidator = TokenValidator.builder(deployment).build();
-            TokenValidator.VerifiedTokens verifiedTokens = tokenValidator.parseAndVerifyToken(idTokenString, tokenString);
+
+            TokenValidator.VerifiedTokens verifiedTokens = tokenValidator.parseAndVerifyToken(idTokenString, tokenString, facade);
             idToken = verifiedTokens.getIdToken();
             token = verifiedTokens.getAccessToken();
+
             log.debug("Token Verification succeeded!");
         } catch (OidcException e) {
             log.failedVerificationOfToken(e.getMessage());
@@ -456,6 +469,7 @@ protected AuthChallenge resolveCode(String code) {
             log.error("Stale token");
             return challenge(HttpStatus.SC_FORBIDDEN, AuthenticationError.Reason.STALE_TOKEN, null);
         }
+
         log.debug("successfully authenticated");
         return null;
     }
@@ -535,7 +549,7 @@ private void addScopes(String scopes, Set<String> allScopes) {
         }
     }
 
-    private String convertToRequestParameter(URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams) throws JoseException, IOException {
+    private String convertToRequestParameter(URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams, String sessionRandomValueHash) throws JoseException, IOException {
         redirectUriBuilder.addParameter(SCOPE, OIDC_SCOPE);
 
         JwtClaims jwtClaims = new JwtClaims();
@@ -545,10 +559,12 @@ private String convertToRequestParameter(URIBuilder redirectUriBuilder, String r
         for ( NameValuePair parameter: forwardedQueryParams) {
             jwtClaims.setClaim(parameter.getName(), parameter.getValue());
         }
+
         jwtClaims.setClaim(STATE, state);
         jwtClaims.setClaim(REDIRECT_URI, redirectUri);
         jwtClaims.setClaim(RESPONSE_TYPE, CODE);
         jwtClaims.setClaim(CLIENT_ID, deployment.getResourceName());
+        jwtClaims.setClaim(NONCE, sessionRandomValueHash);
 
         // sign JWT first before encrypting
         JsonWebSignature signedRequest = signRequest(jwtClaims, deployment);
@@ -622,4 +638,11 @@ private JsonWebEncryption encryptRequest(JsonWebSignature signedRequest) throws
             return jsonEncryption;
         }
     }
+
+    private String generateSessionRandomValue() {
+        SecureRandom random = new SecureRandom();
+        byte[] nonceData = new byte[NONCE_SIZE];
+        random.nextBytes(nonceData);
+        return ByteIterator.ofBytes(nonceData).base64Encode().drainToString();
+    }
 }

http/oidc/src/main/java/org/wildfly/security/http/oidc/RefreshableOidcSecurityContext.java

@@ -34,16 +34,18 @@ public class RefreshableOidcSecurityContext extends OidcSecurityContext {
     protected transient OidcClientConfiguration clientConfiguration;
     protected transient OidcTokenStore tokenStore;
     protected String refreshToken;
+    protected transient OidcHttpFacade facade;
 
     public RefreshableOidcSecurityContext() {
     }
 
-    public RefreshableOidcSecurityContext(OidcClientConfiguration clientConfiguration, OidcTokenStore tokenStore, String tokenString,
+    public RefreshableOidcSecurityContext(OidcClientConfiguration clientConfiguration, OidcHttpFacade facade, OidcTokenStore tokenStore, String tokenString,
                                           AccessToken token, String idTokenString, IDToken idToken, String refreshToken) {
         super(tokenString, token, idTokenString, idToken);
         this.clientConfiguration = clientConfiguration;
         this.tokenStore = tokenStore;
         this.refreshToken = refreshToken;
+        this.facade = facade;
     }
 
     @Override
@@ -149,7 +151,7 @@ public boolean refreshToken(boolean checkActive) {
             IDToken idToken;
             try {
                 TokenValidator tokenValidator = TokenValidator.builder(clientConfiguration).build();
-                TokenValidator.VerifiedTokens verifiedTokens = tokenValidator.parseAndVerifyToken(idTokenString, accessTokenString);
+                TokenValidator.VerifiedTokens verifiedTokens = tokenValidator.parseAndVerifyToken(idTokenString, accessTokenString, facade);
                 idToken = verifiedTokens.getIdToken();
                 accessToken = verifiedTokens.getAccessToken();
                 log.debug("Token Verification succeeded!");

http/oidc/src/main/java/org/wildfly/security/http/oidc/RequestAuthenticator.java

@@ -200,14 +200,14 @@ protected boolean verifySSL() {
     }
 
     protected void completeAuthentication(OidcRequestAuthenticator oidc) {
-        RefreshableOidcSecurityContext session = new RefreshableOidcSecurityContext(deployment, facade.getTokenStore(), oidc.getTokenString(), oidc.getToken(), oidc.getIDTokenString(), oidc.getIDToken(), oidc.getRefreshToken());
+        RefreshableOidcSecurityContext session = new RefreshableOidcSecurityContext(deployment, facade, facade.getTokenStore(), oidc.getTokenString(), oidc.getToken(), oidc.getIDTokenString(), oidc.getIDToken(), oidc.getRefreshToken());
         final OidcPrincipal<RefreshableOidcSecurityContext> principal = new OidcPrincipal<>(oidc.getIDToken().getPrincipalName(deployment), session);
         completeOidcAuthentication(principal);
         log.debugv("User ''{0}'' invoking ''{1}'' on client ''{2}''", principal.getName(), facade.getRequest().getURI(), deployment.getResourceName());
     }
 
     protected void completeAuthentication(BearerTokenRequestAuthenticator bearer) {
-        RefreshableOidcSecurityContext session = new RefreshableOidcSecurityContext(deployment, null, bearer.getTokenString(), bearer.getToken(), null, null, null);
+        RefreshableOidcSecurityContext session = new RefreshableOidcSecurityContext(deployment, facade, null, bearer.getTokenString(), bearer.getToken(), null, null, null);
         final OidcPrincipal<RefreshableOidcSecurityContext> principal = new OidcPrincipal<>(bearer.getToken().getPrincipalName(deployment), session);
         completeBearerAuthentication(principal);
         log.debugv("User ''{0}'' invoking ''{1}'' on client ''{2}''", principal.getName(), facade.getRequest().getURI(), deployment.getResourceName());