[Fix #461] alternative approach

Signed-off-by: Francisco Javier Tirado Sarti <[email protected]>

Author: fjtirado

api/src/main/java/io/serverlessworkflow/serialization/DeserializeHelper.java

@@ -21,24 +21,58 @@
 import com.fasterxml.jackson.databind.JsonMappingException;
 import jakarta.validation.ConstraintViolationException;
 import java.io.IOException;
+import java.lang.reflect.InvocationTargetException;
+import java.lang.reflect.Method;
+import java.util.ArrayList;
 import java.util.Collection;
 
 public class DeserializeHelper {
 
   public static <T> T deserializeOneOf(
-      JsonParser p, Class<T> targetClass, Collection<Class<?>> unionTypes) throws IOException {
+      JsonParser p, Class<T> targetClass, Collection<Class<?>> oneOfTypes) throws IOException {
     TreeNode node = p.readValueAsTree();
-    JsonProcessingException ex =
-        new JsonMappingException(p, "Problem deserializing " + targetClass);
-    for (Class<?> unionType : unionTypes) {
-      try {
-        Object object = p.getCodec().treeToValue(node, unionType);
-        return targetClass.getConstructor(unionType).newInstance(object);
-      } catch (IOException | ReflectiveOperationException | ConstraintViolationException io) {
-        ex.addSuppressed(io);
+    try {
+      T result = targetClass.getDeclaredConstructor().newInstance();
+      Collection<Exception> exceptions = new ArrayList<>();
+      for (Class<?> oneOfType : oneOfTypes) {
+        try {
+          assingIt(p, result, node, targetClass, oneOfType);
+          break;
+        } catch (IOException | ConstraintViolationException | InvocationTargetException ex) {
+          exceptions.add(ex);
+        }
+      }
+      if (exceptions.size() == oneOfTypes.size()) {
+        JsonMappingException ex =
+            new JsonMappingException(
+                p,
+                String.format(
+                    "Error deserializing class %s, all oneOf alternatives %s has failed ",
+                    targetClass, oneOfTypes));
+        exceptions.forEach(ex::addSuppressed);
+        throw ex;
+      }
+
+      return result;
+    } catch (ReflectiveOperationException ex) {
+      throw new IllegalStateException(ex);
+    }
+  }
+
+  private static <T> void assingIt(
+      JsonParser p, T result, TreeNode node, Class<T> targetClass, Class<?> type)
+      throws JsonProcessingException, ReflectiveOperationException {
+    findSetMethod(targetClass, type).invoke(result, p.getCodec().treeToValue(node, type));
+  }
+
+  private static Method findSetMethod(Class<?> targetClass, Class<?> type) {
+    for (Method method : targetClass.getMethods()) {
+      OneOfSetter oneOfSetter = method.getAnnotation(OneOfSetter.class);
+      if (oneOfSetter != null && type.equals(oneOfSetter.value())) {
+        return method;
       }
     }
-    throw ex;
+    throw new IllegalStateException("Cannot find a setter for type " + type);
   }
 
   public static <T> T deserializeItem(JsonParser p, Class<T> targetClass, Class<?> valueClass)

api/src/main/java/io/serverlessworkflow/serialization/OneOfSetter.java

@@ -0,0 +1,28 @@
+/*
+ * Copyright 2020-Present The Serverless Workflow Specification Authors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package io.serverlessworkflow.serialization;
+
+import static java.lang.annotation.ElementType.METHOD;
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+@Retention(RUNTIME)
+@Target(METHOD)
+public @interface OneOfSetter {
+  Class<?> value();
+}

api/src/test/java/io/serverlessworkflow/api/FeaturesTest.java

@@ -32,6 +32,13 @@ public class FeaturesTest {
   @ParameterizedTest
   @ValueSource(
       strings = {
+        "features/authentication-bearer.yaml",
+        "features/authentication-bearer-uri-format.yaml",
+        "features/authentication-oauth2.yaml",
+        "features/authentication-oauth2-secret.yaml",
+        "features/authentication-oidc.yaml",
+        "features/authentication-oidc-secret.yaml",
+        "features/authentication-reusable.yaml",
         "features/callHttp.yaml",
         "features/callOpenAPI.yaml",
         "features/composite.yaml",

api/src/test/resources/features/authentication-bearer-uri-format.yaml

@@ -0,0 +1,15 @@
+document:
+  dsl: '1.0.0-alpha5'
+  namespace: examples
+  name: bearer-auth
+  version: '0.1.0'
+do:
+  - getPet:
+      call: http
+      with:
+        method: get
+        endpoint:
+          uri: https://petstore.swagger.io/v2/pet/{petId}
+          authentication:
+            bearer:
+              token: ${ .token }

api/src/test/resources/features/authentication-bearer.yaml

@@ -0,0 +1,15 @@
+document:
+  dsl: '1.0.0-alpha5'
+  namespace: examples
+  name: bearer-auth-uri-format
+  version: '0.1.0'
+do:
+  - getPet:
+      call: http
+      with:
+        method: get
+        endpoint:
+          uri: https://petstore.swagger.io/v2/pet/1
+          authentication:
+            bearer:
+              token: ${ .token }

api/src/test/resources/features/authentication-oauth2-secret.yaml

@@ -0,0 +1,18 @@
+document:
+  dsl: 1.0.0-alpha1
+  namespace: examples
+  name: oauth2-authentication
+  version: 1.0.0-alpha1
+use:
+  secrets:
+  - mySecret
+do:
+  - getPet:
+      call: http
+      with:
+        method: get
+        endpoint:
+          uri: https://petstore.swagger.io/v2/pet/{petId}
+          authentication:
+            oauth2:
+              use: mySecret

api/src/test/resources/features/authentication-oauth2.yaml

@@ -0,0 +1,22 @@
+document:
+  dsl: '1.0.0-alpha5'
+  namespace: examples
+  name: oauth2-authentication
+  version: '0.1.0'
+do:
+  - getPet:
+      call: http
+      with:
+        method: get
+        endpoint:
+          uri: https://petstore.swagger.io/v2/pet/{petId}
+          authentication:
+            oauth2:
+              authority: http://keycloak/realms/fake-authority
+              endpoints: #optional
+                token: /auth/token #defaults to /oauth2/token
+                introspection: /auth/introspect #defaults to /oauth2/introspect
+              grant: client_credentials
+              client:
+                id: workflow-runtime-id
+                secret: workflow-runtime-secret

api/src/test/resources/features/authentication-oidc-secret.yaml

@@ -0,0 +1,18 @@
+document:
+  dsl: 1.0.0-alpha1
+  namespace: examples
+  name: oidc-authentication
+  version: 1.0.0-alpha1
+use:
+  secrets:
+  - mySecret
+do:
+  - getPet:
+      call: http
+      with:
+        method: get
+        endpoint:
+          uri: https://petstore.swagger.io/v2/pet/{petId}
+          authentication:
+            oidc:
+              use: mySecret

api/src/test/resources/features/authentication-oidc.yaml

@@ -0,0 +1,19 @@
+document:
+  dsl: '1.0.0-alpha5'
+  namespace: examples
+  name: oidc-authentication
+  version: '0.1.0'
+do:
+  - getPet:
+      call: http
+      with:
+        method: get
+        endpoint:
+          uri: https://petstore.swagger.io/v2/pet/{petId}
+          authentication:
+            oidc:
+              authority: http://keycloak/realms/fake-authority #endpoints are resolved using the OIDC configuration located at '/.well-known/openid-configuration'
+              grant: client_credentials
+              client:
+                id: workflow-runtime-id
+                secret: workflow-runtime-secret

api/src/test/resources/features/authentication-reusable.yaml

@@ -0,0 +1,19 @@
+document:
+  dsl: '1.0.0-alpha5'
+  namespace: examples
+  name: bearer-auth
+  version: '0.1.0'
+use:
+  authentications:
+    petStoreAuth:
+      bearer:
+        token: ${ .token }
+do:
+  - getPet:
+      call: http
+      with:
+        method: get
+        endpoint:
+          uri: https://petstore.swagger.io/v2/pet/{petId}
+          authentication: 
+            use: petStoreAuth