[JBEAP-28701] added use of nonce

rsearls · rsearls · commit c13e1c1eed3a · 2025-03-06T15:30:26.000-05:00
diff --git a/http/oidc/src/main/java/org/wildfly/security/http/oidc/AuthenticationError.java b/http/oidc/src/main/java/org/wildfly/security/http/oidc/AuthenticationError.java
@@ -36,7 +36,8 @@ public enum Reason {
         INVALID_TOKEN,
         STALE_TOKEN,
         NO_AUTHORIZATION_HEADER,
-        NO_QUERY_PARAMETER_ACCESS_TOKEN
+        NO_QUERY_PARAMETER_ACCESS_TOKEN,
+        INVALID_NONCE
     }
 
     private Reason reason;
diff --git a/http/oidc/src/main/java/org/wildfly/security/http/oidc/ElytronMessages.java b/http/oidc/src/main/java/org/wildfly/security/http/oidc/ElytronMessages.java
@@ -278,5 +278,11 @@ interface ElytronMessages extends BasicLogger {
 
     @Message(id = 23070, value = "Authentication request format must be one of the following: oauth2, request, request_uri.")
     RuntimeException invalidAuthenticationRequestFormat();
+
+    @Message(id = 23071, value = "Invalid %s")
+    String invalidSessionRandomValue(String name);
+
+    @Message(id = 23072, value = "No Such algorithm: '%s'")
+    IllegalArgumentException noSuchAlgorithm(String algorithm);
 }
 
diff --git a/http/oidc/src/main/java/org/wildfly/security/http/oidc/IDToken.java b/http/oidc/src/main/java/org/wildfly/security/http/oidc/IDToken.java
@@ -53,6 +53,7 @@ public class IDToken extends JsonWebToken {
     public static final String CLAIMS_LOCALES = "claims_locales";
     public static final String ACR = "acr";
     public static final String S_HASH = "s_hash";
+    public static final String NONCE = "nonce";
 
     /**
      * Construct a new instance.
@@ -228,4 +229,7 @@ public String getAcr() {
         return getClaimValueAsString(ACR);
     }
 
+    public String getNonce() {
+        return getClaimValueAsString(NONCE);
+    }
 }
diff --git a/http/oidc/src/main/java/org/wildfly/security/http/oidc/Oidc.java b/http/oidc/src/main/java/org/wildfly/security/http/oidc/Oidc.java
@@ -19,11 +19,15 @@
 package org.wildfly.security.http.oidc;
 
 import static org.wildfly.security.http.oidc.ElytronMessages.log;
+import static org.wildfly.security.jose.jwk.JWKUtil.BASE64_URL;
 
 import java.io.IOException;
 import java.io.InputStream;
 import java.net.InetAddress;
 import java.net.UnknownHostException;
+import java.nio.charset.StandardCharsets;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
 import java.util.Map;
 import java.util.StringTokenizer;
 import java.util.UUID;
@@ -34,6 +38,7 @@
 import org.apache.http.HttpResponse;
 import org.apache.http.client.methods.HttpRequestBase;
 import org.jose4j.jws.AlgorithmIdentifiers;
+import org.wildfly.common.iteration.ByteIterator;
 import org.wildfly.security.jose.util.JsonSerialization;
 
 /**
@@ -111,6 +116,7 @@ public class Oidc {
     public static final String REDIRECT_URI = "redirect_uri";
     public static final String REFRESH_TOKEN = "refresh_token";
     public static final String RESPONSE_TYPE = "response_type";
+    public static final String SESSION_RANDOM_VALUE="session_random_value";
     public static final String SESSION_STATE = "session_state";
     public static final String SOAP_ACTION = "SOAPAction";
     public static final String SSL_REQUIRED = "ssl-required";
@@ -119,6 +125,7 @@ public class Oidc {
     public static final int INVALID_ISSUED_FOR_CLAIM = -1;
     public static final int INVALID_AT_HASH_CLAIM = -2;
     public static final int INVALID_TYPE_CLAIM = -3;
+    public static final int INVALID_SESSION_RANDOM_VALUE = -4;
     static final String OIDC_CLIENT_CONFIG_RESOLVER = "oidc.config.resolver";
     static final String OIDC_CONFIG_FILE_LOCATION = "oidc.config.file";
     static final String OIDC_JSON_FILE = "/WEB-INF/oidc.json";
@@ -445,4 +452,14 @@ protected static boolean checkCachedAccountMatchesRequest(OidcAccount account, O
         return true;
     }
 
+    public static String getCryptographicValue(final String src) {
+        try {
+            MessageDigest md = MessageDigest.getInstance(SHA256);
+            md.update(src.getBytes(StandardCharsets.UTF_8));
+            return ByteIterator.ofBytes(md.digest())
+                    .base64Encode(BASE64_URL, false).drainToString();
+        } catch (NoSuchAlgorithmException e) {
+            throw log.noSuchAlgorithm(e.getMessage());
+        }
+    }
 }
diff --git a/http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java b/http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java
@@ -23,6 +23,7 @@
 import static org.jose4j.jws.AlgorithmIdentifiers.HMAC_SHA512;
 import static org.jose4j.jws.AlgorithmIdentifiers.NONE;
 import static org.wildfly.security.http.oidc.ElytronMessages.log;
+import static org.wildfly.security.http.oidc.IDToken.NONCE;
 import static org.wildfly.security.http.oidc.Oidc.ALLOW_QUERY_PARAMS_PROPERTY_NAME;
 import static org.wildfly.security.http.oidc.Oidc.CLIENT_ID;
 import static org.wildfly.security.http.oidc.Oidc.CODE;
@@ -39,6 +40,7 @@
 import static org.wildfly.security.http.oidc.Oidc.REQUEST;
 import static org.wildfly.security.http.oidc.Oidc.REQUEST_URI;
 import static org.wildfly.security.http.oidc.Oidc.SCOPE;
+import static org.wildfly.security.http.oidc.Oidc.SESSION_RANDOM_VALUE;
 import static org.wildfly.security.http.oidc.Oidc.SESSION_STATE;
 import static org.wildfly.security.http.oidc.Oidc.STATE;
 import static org.wildfly.security.http.oidc.Oidc.UI_LOCALES;
@@ -59,6 +61,7 @@
 import java.security.Key;
 import java.security.KeyPair;
 import java.security.PublicKey;
+import java.security.SecureRandom;
 import java.util.ArrayList;
 import java.util.Arrays;
 import java.util.HashSet;
@@ -76,6 +79,7 @@
 import org.jose4j.jwt.JwtClaims;
 import org.jose4j.keys.HmacKey;
 import org.jose4j.lang.JoseException;
+import org.wildfly.common.iteration.ByteIterator;
 import org.wildfly.security.http.HttpConstants;
 
 /**
@@ -96,6 +100,8 @@ public class OidcRequestAuthenticator {
     protected String refreshToken;
     protected String strippedOauthParametersRequestUri;
 
+    private int NONCE_SIZE = 36;
+
     static final boolean ALLOW_QUERY_PARAMS_PROPERTY;
 
     static {
@@ -181,7 +187,7 @@ protected String getCode() {
         return getQueryParamValue(facade, CODE);
     }
 
-    protected String getRedirectUri(String state) {
+    protected String getRedirectUri(String state, String sessionRandomValue) {
         String url = getRequestUrl();
         log.debugf("callback uri: %s", url);
 
@@ -221,15 +227,17 @@ protected String getRedirectUri(String state) {
 
             String redirectUri = rewrittenRedirectUri(url);
             URIBuilder redirectUriBuilder = new URIBuilder(deployment.getAuthUrl());
+            String cryptoValue = Oidc.getCryptographicValue(sessionRandomValue);
             redirectUriBuilder.addParameter(RESPONSE_TYPE, CODE)
-                    .addParameter(CLIENT_ID, deployment.getResourceName());
+                    .addParameter(CLIENT_ID, deployment.getResourceName())
+                    .addParameter(NONCE, cryptoValue);
 
             switch (deployment.getAuthenticationRequestFormat()) {
                 case REQUEST:
                     if (deployment.getRequestParameterSupported()) {
                         // add request objects into request parameter
                         try {
-                            createRequestWithRequestParameter(REQUEST, redirectUriBuilder, redirectUri, state, forwardedQueryParams);
+                            createRequestWithRequestParameter(REQUEST, redirectUriBuilder, redirectUri, state, forwardedQueryParams, sessionRandomValue);
                         } catch (IOException | JoseException e) {
                             throw log.unableToCreateRequestWithRequestParameter(e);
                         }
@@ -242,7 +250,7 @@ protected String getRedirectUri(String state) {
                 case REQUEST_URI:
                     if (deployment.getRequestUriParameterSupported()) {
                         try {
-                            createRequestWithRequestParameter(REQUEST_URI, redirectUriBuilder, redirectUri, state, forwardedQueryParams);
+                            createRequestWithRequestParameter(REQUEST_URI, redirectUriBuilder, redirectUri, state, forwardedQueryParams, sessionRandomValue);
                         } catch (IOException | JoseException e) {
                             throw log.unableToCreateRequestUriWithRequestParameter(e);
                         }
@@ -269,8 +277,8 @@ protected URIBuilder createOAuthRequest(URIBuilder redirectUriBuilder, String re
         return redirectUriBuilder;
     }
 
-    protected URIBuilder createRequestWithRequestParameter(String requestFormat, URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams) throws JoseException, IOException {
-        String request = convertToRequestParameter(redirectUriBuilder, redirectUri, state, forwardedQueryParams);
+    protected URIBuilder createRequestWithRequestParameter(String requestFormat, URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams, String sessionRandomValue) throws JoseException, IOException {
+        String request = convertToRequestParameter(redirectUriBuilder, redirectUri, state, forwardedQueryParams, sessionRandomValue);
 
         switch (requestFormat) {
             case REQUEST:
@@ -296,7 +304,8 @@ protected String getStateCode() {
 
     protected AuthChallenge loginRedirect() {
         final String state = getStateCode();
-        final String redirect = getRedirectUri(state);
+        final String sessionRandomValue = generateSessionRandomValue();
+        final String redirect = getRedirectUri(state, sessionRandomValue);
         if (redirect == null) {
             return challenge(HttpStatus.SC_FORBIDDEN, AuthenticationError.Reason.NO_REDIRECT_URI, null);
         }
@@ -314,6 +323,8 @@ public boolean challenge(OidcHttpFacade exchange) {
                 exchange.getResponse().setStatus(HttpStatus.SC_MOVED_TEMPORARILY);
                 exchange.getResponse().setCookie(deployment.getStateCookieName(), state, "/", null, -1, deployment.getSSLRequired().isRequired(facade.getRequest().getRemoteAddr()), true);
                 exchange.getResponse().setHeader(HttpConstants.LOCATION, redirect);
+                exchange.getResponse().setCookie(SESSION_RANDOM_VALUE, sessionRandomValue, "/", null, -1, deployment.getSSLRequired().isRequired(facade.getRequest().getRemoteAddr()), true);
+
                 return true;
             }
         };
@@ -329,13 +340,20 @@ protected AuthChallenge checkStateCookie() {
         // reset the cookie
         log.debug("** reseting application state cookie");
         facade.getResponse().resetCookie(deployment.getStateCookieName(), stateCookie.getPath());
-        String stateCookieValue = getCookieValue(deployment.getStateCookieName());
+        String cookiesStr = getCookieValue(deployment.getStateCookieName());
 
         String state = getQueryParamValue(facade, STATE);
         if (state == null) {
             log.warn("state parameter was null");
             return challenge(HttpStatus.SC_BAD_REQUEST, AuthenticationError.Reason.INVALID_STATE_COOKIE, null);
         }
+
+        String stateCookieValue = cookiesStr;
+        if (cookiesStr != null) {
+            String[] cookieArr = cookiesStr.split(";");
+            stateCookieValue = cookieArr[0];
+        }
+
         if (!state.equals(stateCookieValue)) {
             log.warn("state parameter invalid");
             log.warn("cookie: " + stateCookieValue);
@@ -441,9 +459,11 @@ protected AuthChallenge resolveCode(String code) {
 
         try {
             TokenValidator tokenValidator = TokenValidator.builder(deployment).build();
-            TokenValidator.VerifiedTokens verifiedTokens = tokenValidator.parseAndVerifyToken(idTokenString, tokenString);
+            String stateCookieValue = getCookieValue(deployment.getStateCookieName());
+            TokenValidator.VerifiedTokens verifiedTokens = tokenValidator.parseAndVerifyToken(idTokenString, tokenString, stateCookieValue);
             idToken = verifiedTokens.getIdToken();
             token = verifiedTokens.getAccessToken();
+
             log.debug("Token Verification succeeded!");
         } catch (OidcException e) {
             log.failedVerificationOfToken(e.getMessage());
@@ -456,6 +476,7 @@ protected AuthChallenge resolveCode(String code) {
             log.error("Stale token");
             return challenge(HttpStatus.SC_FORBIDDEN, AuthenticationError.Reason.STALE_TOKEN, null);
         }
+
         log.debug("successfully authenticated");
         return null;
     }
@@ -535,7 +556,7 @@ private void addScopes(String scopes, Set<String> allScopes) {
         }
     }
 
-    private String convertToRequestParameter(URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams) throws JoseException, IOException {
+    private String convertToRequestParameter(URIBuilder redirectUriBuilder, String redirectUri, String state, List<NameValuePair> forwardedQueryParams, String sessionRandomValue) throws JoseException, IOException {
         redirectUriBuilder.addParameter(SCOPE, OIDC_SCOPE);
 
         JwtClaims jwtClaims = new JwtClaims();
@@ -545,10 +566,13 @@ private String convertToRequestParameter(URIBuilder redirectUriBuilder, String r
         for ( NameValuePair parameter: forwardedQueryParams) {
             jwtClaims.setClaim(parameter.getName(), parameter.getValue());
         }
+
         jwtClaims.setClaim(STATE, state);
         jwtClaims.setClaim(REDIRECT_URI, redirectUri);
         jwtClaims.setClaim(RESPONSE_TYPE, CODE);
         jwtClaims.setClaim(CLIENT_ID, deployment.getResourceName());
+        String cryptoValue = Oidc.getCryptographicValue(sessionRandomValue);
+        jwtClaims.setClaim(NONCE, String.valueOf(cryptoValue));
 
         // sign JWT first before encrypting
         JsonWebSignature signedRequest = signRequest(jwtClaims, deployment);
@@ -622,4 +646,11 @@ private JsonWebEncryption encryptRequest(JsonWebSignature signedRequest) throws
             return jsonEncryption;
         }
     }
+
+    private String generateSessionRandomValue() {
+        SecureRandom random = new SecureRandom();
+        byte[] nonceData = new byte[NONCE_SIZE];
+        random.nextBytes(nonceData);
+        return ByteIterator.ofBytes(nonceData).base64Encode().drainToString();
+    }
 }
diff --git a/http/oidc/src/main/java/org/wildfly/security/http/oidc/TokenValidator.java b/http/oidc/src/main/java/org/wildfly/security/http/oidc/TokenValidator.java
@@ -23,7 +23,9 @@
 import static org.wildfly.security.http.oidc.Oidc.DISABLE_TYP_CLAIM_VALIDATION_PROPERTY_NAME;
 import static org.wildfly.security.http.oidc.Oidc.INVALID_AT_HASH_CLAIM;
 import static org.wildfly.security.http.oidc.Oidc.INVALID_ISSUED_FOR_CLAIM;
+import static org.wildfly.security.http.oidc.Oidc.INVALID_SESSION_RANDOM_VALUE;
 import static org.wildfly.security.http.oidc.Oidc.INVALID_TYPE_CLAIM;
+import static org.wildfly.security.http.oidc.Oidc.SESSION_RANDOM_VALUE;
 import static org.wildfly.security.http.oidc.Oidc.getJavaAlgorithmForHash;
 import static org.wildfly.security.jose.jwk.JWKUtil.BASE64_URL;
 
@@ -83,11 +85,18 @@ private TokenValidator(Builder builder) {
      * @throws OidcException if the ID token is invalid
      */
     public VerifiedTokens parseAndVerifyToken(final String idToken, final String accessToken) throws OidcException {
+        return parseAndVerifyToken(idToken, accessToken, null);
+    }
+
+    public VerifiedTokens parseAndVerifyToken(final String idToken, final String accessToken, final String cookiesStr) throws OidcException {
         try {
             JwtContext idJwtContext = setVerificationKey(idToken, jwtConsumerBuilder);
             jwtConsumerBuilder.setExpectedAudience(clientConfiguration.getResourceName());
             jwtConsumerBuilder.registerValidator(new AzpValidator(clientConfiguration.getResourceName()));
             jwtConsumerBuilder.registerValidator(new AtHashValidator(accessToken, clientConfiguration.getTokenSignatureAlgorithm()));
+            if (cookiesStr != null) {
+                jwtConsumerBuilder.registerValidator(new NonceValidator(cookiesStr));
+            }
             // second pass to validate
             jwtConsumerBuilder.build().processContext(idJwtContext);
             JwtClaims idJwtClaims = idJwtContext.getJwtClaims();
@@ -288,6 +297,38 @@ private static String getAccessTokenHash(String accessTokenString, String jwsAlg
 
     }
 
+
+    private static class NonceValidator implements ErrorCodeValidator {
+        private final String stateCookieValue;
+
+        public NonceValidator(final String stateCookieValue) {
+            this.stateCookieValue = stateCookieValue;
+        }
+
+        public ErrorCodeValidator.Error validate(JwtContext jwtContext) throws MalformedClaimException {
+            JwtClaims idJwtClaims = jwtContext.getJwtClaims();
+            IDToken idToken = new IDToken(idJwtClaims);
+
+            String[] cookieArr = stateCookieValue.split(";");
+            String sessionIdValue = "";
+            for(int i=0; i < cookieArr.length; i++) {
+                String cookie = cookieArr[i].trim();
+                if (cookie.startsWith(SESSION_RANDOM_VALUE+"=")) {
+                    sessionIdValue = cookie.substring((SESSION_RANDOM_VALUE+"=").length());
+                    sessionIdValue = Oidc.getCryptographicValue(sessionIdValue);
+                    break;
+                }
+            }
+            String nonceValue = idToken.getNonce();
+            if (nonceValue == null || !MessageDigest.isEqual(nonceValue.getBytes(),
+                    sessionIdValue.getBytes())) {
+                return new ErrorCodeValidator.Error(INVALID_SESSION_RANDOM_VALUE,
+                        log.invalidSessionRandomValue(SESSION_RANDOM_VALUE));
+            }
+            return null;
+        }
+    }
+
     private static class TypeValidator implements ErrorCodeValidator {
         public static final String TYPE = "typ";
         private final String expectedType;
diff --git a/http/oidc/src/test/java/org/wildfly/security/http/oidc/OidcBaseTest.java b/http/oidc/src/test/java/org/wildfly/security/http/oidc/OidcBaseTest.java
diff --git a/http/oidc/src/test/java/org/wildfly/security/http/oidc/OidcTest.java b/http/oidc/src/test/java/org/wildfly/security/http/oidc/OidcTest.java

Original file line number	Diff line number	Diff line change
`@@ -36,7 +36,8 @@ public enum Reason {`
`36`	`36`	`INVALID_TOKEN,`
`37`	`37`	`STALE_TOKEN,`
`38`	`38`	`NO_AUTHORIZATION_HEADER,`
`39`		`- NO_QUERY_PARAMETER_ACCESS_TOKEN`
	`39`	`+ NO_QUERY_PARAMETER_ACCESS_TOKEN,`
	`40`	`+ INVALID_NONCE`
`40`	`41`	`}`
`41`	`42`
`42`	`43`	`private Reason reason;`
Original file line number	Diff line number	Diff line change
`@@ -53,6 +53,7 @@ public class IDToken extends JsonWebToken {`
`53`	`53`	`public static final String CLAIMS_LOCALES = "claims_locales";`
`54`	`54`	`public static final String ACR = "acr";`
`55`	`55`	`public static final String S_HASH = "s_hash";`
	`56`	`+ public static final String NONCE = "nonce";`
`56`	`57`
`57`	`58`	`/**`
`58`	`59`	`* Construct a new instance.`
`@@ -228,4 +229,7 @@ public String getAcr() {`
`228`	`229`	`return getClaimValueAsString(ACR);`
`229`	`230`	`}`
`230`	`231`
	`232`	`+ public String getNonce() {`
	`233`	`+ return getClaimValueAsString(NONCE);`
	`234`	`+ }`
`231`	`235`	`}`