Add DpopHeaderGenerator

alextwoods · alextwoods · commit b4f381af2670 · 2025-10-24T10:47:30.000-07:00
diff --git a/services/signin/pom.xml b/services/signin/pom.xml
@@ -56,5 +56,10 @@
             <artifactId>http-auth-aws</artifactId>
             <version>${awsjavasdk.version}</version>
         </dependency>
+        <dependency>
+            <groupId>software.amazon.awssdk</groupId>
+            <artifactId>third-party-jackson-core</artifactId>
+            <version>${awsjavasdk.version}</version>
+        </dependency>
     </dependencies>
 </project>
diff --git a/services/signin/src/main/java/software/amazon/awssdk/services/signin/internal/DpopHeaderGenerator.java b/services/signin/src/main/java/software/amazon/awssdk/services/signin/internal/DpopHeaderGenerator.java
@@ -0,0 +1,230 @@
+/*
+ * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License").
+ * You may not use this file except in compliance with the License.
+ * A copy of the License is located at
+ *
+ *  http://aws.amazon.com/apache2.0
+ *
+ * or in the "license" file accompanying this file. This file is distributed
+ * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
+ * express or implied. See the License for the specific language governing
+ * permissions and limitations under the License.
+ */
+
+package software.amazon.awssdk.services.signin.internal;
+
+import java.io.ByteArrayOutputStream;
+import java.io.IOException;
+import java.nio.charset.StandardCharsets;
+import java.security.Signature;
+import java.security.interfaces.ECPrivateKey;
+import java.security.interfaces.ECPublicKey;
+import java.security.spec.ECPoint;
+import java.util.Arrays;
+import java.util.Base64;
+import software.amazon.awssdk.annotations.SdkInternalApi;
+import software.amazon.awssdk.thirdparty.jackson.core.JsonFactory;
+import software.amazon.awssdk.thirdparty.jackson.core.JsonGenerator;
+import software.amazon.awssdk.utils.Pair;
+
+/**
+ * Utilities that implement rfc9449 - OAuth 2.0 Demonstrating Proof of Possession (DPoP)
+*/
+@SdkInternalApi
+public final class DpopHeaderGenerator {
+
+    public static final int ES256_SIGNATURE_BYTE_LENGTH = 64;
+    public static final byte DER_SEQUENCE_TAG = 0x30;
+
+    private DpopHeaderGenerator() {}
+
+    /**
+     * Construct a rfc9449 - OAuth 2.0 Demonstrating Proof of Possession (DPoP) header.
+     *
+     * The DPoP HTTP header must be a signed JWT (RFC 7519: JSON Web Token), which includes a
+     * JWK (RFC 7517: JSON Web Key).
+     *
+     * For reference, see:
+     * <ul>
+     * <li><a href="https://datatracker.ietf.org/doc/html/rfc9449">RFC 9449 -
+     * OAuth 2.0 Demonstrating Proof of Possession (DPoP)</a></li>
+     * <li><a href="https://datatracker.ietf.org/doc/html/rfc7519">RFC 7519 - JSON Web Token (JWT)</a></li>
+     * <li><a href="https://datatracker.ietf.org/doc/html/rfc7517">RFC 7517 - JSON Web Key (JWK)</a></li>
+     * </ul>
+     *
+     * @param pemContent - EC1 / RFC 5915 ASN.1 formated PEM contents
+     * @param endpoint - The HTTP target URI (Section 7.1 of [RFC9110]) of the request to which the JWT is attached,
+     *                 without query and fragment parts
+     * @param epochSeconds - creation time of the JWT in epoch seconds.
+     * @param uuid - Unique identifier for the DPoP proof JWT - should be a UUID4 string.
+     * @return DPoP header value
+     * @throws Exception
+     */
+    public static String generateDPoPProofHeader(String pemContent, String endpoint, long epochSeconds, String uuid)
+        throws Exception {
+        // Load EC public and private key from PEM
+        Pair<ECPrivateKey, ECPublicKey> keys = EcKeyLoader.loadSec1Pem(pemContent);
+        ECPrivateKey privateKey = keys.left();
+        ECPublicKey publicKey = keys.right();
+
+        // Build JSON strings (header, payload) with JsonGenerator
+        String headerJson = buildHeaderJson(publicKey);
+        String payloadJson = buildPayloadJson(uuid, endpoint, epochSeconds);
+
+        // Base64URL encode header + payload
+        String encodedHeader = base64UrlEncode(headerJson.getBytes(StandardCharsets.UTF_8));
+        String encodedPayload = base64UrlEncode(payloadJson.getBytes(StandardCharsets.UTF_8));
+        String message = encodedHeader + "." + encodedPayload;
+
+        // Sign (ES256)
+        Signature signature = Signature.getInstance("SHA256withECDSA");
+        signature.initSign(privateKey);
+        signature.update(message.getBytes(StandardCharsets.UTF_8));
+        byte[] signatureBytes = translateDerSignatureToJws(signature.sign(), ES256_SIGNATURE_BYTE_LENGTH);
+
+        // Combine into JWT
+        String encodedSignature = base64UrlEncode(signatureBytes);
+        return message + "." + encodedSignature;
+    }
+
+    // build the JWT header which includes the public key
+    private static String buildHeaderJson(ECPublicKey publicKey) throws IOException {
+        ECPoint pubPoint = publicKey.getW();
+        String x = base64UrlEncode(stripLeadingZero(pubPoint.getAffineX().toByteArray()));
+        String y = base64UrlEncode(stripLeadingZero(pubPoint.getAffineY().toByteArray()));
+        ByteArrayOutputStream out = new ByteArrayOutputStream();
+        JsonFactory factory = new JsonFactory();
+        try (JsonGenerator gen = factory.createGenerator(out)) {
+            gen.writeStartObject();
+            gen.writeStringField("typ", "dpop+jwt");
+            gen.writeStringField("alg", "ES256");
+
+            gen.writeObjectFieldStart("jwk");
+            gen.writeStringField("crv", "P-256");
+            gen.writeStringField("kty", "EC");
+            gen.writeStringField("x", x);
+            gen.writeStringField("y", y);
+            gen.writeEndObject(); // end jwk
+            gen.writeEndObject(); // end root
+        }
+        return out.toString();
+    }
+
+    private static String buildPayloadJson(String uuid, String endpoint, long epochSeconds) throws IOException {
+        ByteArrayOutputStream out = new ByteArrayOutputStream();
+        JsonFactory factory = new JsonFactory();
+        try (JsonGenerator gen = factory.createGenerator(out)) {
+            gen.writeStartObject();
+            gen.writeStringField("jti", uuid);
+            gen.writeStringField("htm", "POST");
+            gen.writeStringField("htu", endpoint);
+            gen.writeNumberField("iat", epochSeconds);
+            gen.writeEndObject();
+        }
+        return out.toString();
+    }
+
+    /**
+     * Java Signature from SHA256withECDSA produces an ASN.1/DER encoded signature.
+     * This method translates that signature into the concatenated (R,S) format expected by JWS.
+     *
+     * An ECDSA signature always produces two big integers: R and S. The DER format encodes these in a variable
+     * length sequence because the values are encoded without leading zeroes with a structure following:
+     * [ SEQUENCE_TAG, total_length, INTEGER_TAG, length of R, (bytes of R), INTEGER_TAG, length OF S, ( bytes of S) ]
+     *
+     * The JWT/JOSE spec defines ECDSA signatures as two 32 byte, big-endian integer values for R and S (total of 64 bytes):
+     * [ 32 bytes of R, 32 bytes of S]
+     *
+     * @param derSignature The ASN1/DER-encoded signature.
+     * @param outputLength The expected length of the ECDSA JWS signature.  This should be 64 for ES256
+     *
+     * @return The ECDSA JWS encoded signature (concatenated r,s values)
+     **/
+    private static byte[] translateDerSignatureToJws(byte[] derSignature, int outputLength)
+        throws Exception {
+
+        // validate DER signature format
+        if (derSignature.length < 8 || derSignature[0] != DER_SEQUENCE_TAG) {
+            throw new RuntimeException("Invalid ECDSA signature format");
+        }
+
+        // the total length may be more than 1 byte
+        // if the first byte is (0x81), its 2 bytes
+        int offset; // point to the start of the first INTEGER_TAG
+        if (derSignature[1] > 0) {
+            offset = 2;
+        } else if (derSignature[1] == (byte) 0x81) {
+            offset = 3;
+        } else {
+            throw new RuntimeException("Invalid ECDSA signature format");
+        }
+
+        // get the length of R as the byte after the first INTEGER_TAG
+        byte rLength = derSignature[offset + 1];
+
+        // determine the number of significant (non-zero) bytes in R
+        int i;
+        int endOfR = offset + 2 + rLength;
+        for (i = rLength; (i > 0) && (derSignature[endOfR - i] == 0); i--) {
+            // do nothing
+        }
+
+        // get the length of S as the byte after the second INTEGER_TAG which is:
+        byte sLength = derSignature[endOfR + 1];
+
+        // determine number of significant bytes in S
+        int j;
+        int endOfS = endOfR + 2 + sLength;
+        for (j = sLength; (j > 0) && (derSignature[endOfS - j] == 0); j--) {
+            // do nothing
+        }
+
+        int rawLen = Math.max(i, j);
+        rawLen = Math.max(rawLen, outputLength / 2);
+
+        // sanity check, ensure the internal structure matches the DER spec.
+        if ((derSignature[offset - 1] & 0xff) != derSignature.length - offset
+            || (derSignature[offset - 1] & 0xff) != 2 + rLength + 2 + sLength
+            || derSignature[offset] != 2
+            || derSignature[endOfR] != 2) {
+            throw new RuntimeException("Invalid ECDSA signature format");
+        }
+
+        final byte[] jwsSignature = new byte[2 * rawLen];
+        // copy the significant bytes of R (i bytes), removing any leading zeros, into the first half of output array.
+        // Right aligned!
+        System.arraycopy(derSignature, endOfR - i, jwsSignature, rawLen - i, i);
+        // do the same for S to the second half of the output array. Also right aligned.
+        System.arraycopy(derSignature, (offset + 2 + rLength + 2 + sLength) - j, jwsSignature, 2 * rawLen - j, j);
+
+        return jwsSignature;
+    }
+
+    private static String base64UrlEncode(byte[] data) {
+        return Base64.getUrlEncoder().withoutPadding().encodeToString(data);
+    }
+
+    private static byte[] stripLeadingZero(byte[] bytes) {
+        if (bytes.length > 1 && bytes[0] == 0x00) {
+            return Arrays.copyOfRange(bytes, 1, bytes.length);
+        }
+        return bytes;
+    }
+
+    public static void main(String[] args) throws Exception {
+        String pem = "-----BEGIN EC PRIVATE KEY-----\n"
+                     + "MHcCAQEEICeY73qhQO/3o1QnrL5Nu3HMDB9h3kVW6imRdcHks0tboAoGCCqGSM49"
+                     + "AwEHoUQDQgAEbefyxjd/UlGwAPF6hy0k4yCW7dSghc6yPd4To0sBqX0tPS/aoLrl"
+                     + "QnPjfDslgD29p4+Pgwxj1s8cFHVeDKdKTQ==\n"
+                     + "-----END EC PRIVATE KEY-----";
+        String dpopHeader = DpopHeaderGenerator.generateDPoPProofHeader(
+            pem, "https://ap-northeast-1.aws-signin-testing.amazon.com/v1/token",
+            1760727856,
+            "c7cf0359-f736-4a55-bbc1-70f6a0e2d55d"
+        );
+
+        System.out.println("\n\nDPOP Proof header:\n" + dpopHeader);
+    }
+}
