Credentials.java

package de.otto.edison.authentication;

import org.springframework.util.Base64Utils;
import org.springframework.util.StringUtils;

import javax.servlet.http.HttpServletRequest;
import java.util.Optional;

/**
 * LDAP credentials (username, password) parsed from HTTP request
 */
public class Credentials {

    private final String username;
    private final String password;

    private Credentials(String username, String password) {
        this.username = username;
        this.password = password;
    }

    public String getUsername() {
        return username;
    }

    public String getPassword() {
        return password;
    }

    /**
     * Read username and password from the request's {@code Authorization} header and create a {@code Credentials}
     * object. Requires authorization header to be base64 encoded.
     * @param request incoming http request
     * @return {@code Optional} with parsed {@code Credentials} if {@code Authorization} header and credentials
     * are present, {@code Optional.empty} otherwise.
     */
    public static Optional<Credentials> readFrom(HttpServletRequest request) {
        String authorizationHeader = request.getHeader("Authorization");
        if (!StringUtils.isEmpty(authorizationHeader)) {
            String credentials = authorizationHeader.substring(6, authorizationHeader.length());
            String[] decodedCredentialParts = new String(Base64Utils.decode(credentials.getBytes())).split(":");
            return Optional.of(new Credentials(decodedCredentialParts[0], decodedCredentialParts[1]));
        } else {
            return Optional.empty();
        }
    }
}