Make sure nullable attributes security and auth bi-directional adapters are considered null when no structure is defined (#1206)

marregui · web-flow · commit 55ddcdc3b418 · 2025-10-01T17:46:38.000+02:00
* Make sure nullable attributes security and auth bi-directional adapters are considered null when no structure is defined
diff --git a/modules/hivemq-edge-module-opcua/src/main/java/com/hivemq/edge/adapters/opcua/config/Auth.java b/modules/hivemq-edge-module-opcua/src/main/java/com/hivemq/edge/adapters/opcua/config/Auth.java
@@ -17,9 +17,19 @@
 
 import com.fasterxml.jackson.annotation.JsonCreator;
 import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.core.JsonParser;
+import com.fasterxml.jackson.databind.DeserializationContext;
+import com.fasterxml.jackson.databind.JsonDeserializer;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.databind.annotation.JsonDeserialize;
 import com.hivemq.adapter.sdk.api.annotations.ModuleConfigField;
+import org.jetbrains.annotations.NotNull;
 import org.jetbrains.annotations.Nullable;
 
+import java.io.IOException;
+import java.util.Map;
+
+@JsonDeserialize(using = Auth.AuthDeserializer.class)
 public record Auth(@JsonProperty("basic") @ModuleConfigField(title = "Basic Authentication",
                                                              description = "Username / password based authentication") @Nullable BasicAuth basicAuth,
                    @JsonProperty("x509") @ModuleConfigField(title = "X509 Authentication",
@@ -29,6 +39,14 @@ public record Auth(@JsonProperty("basic") @ModuleConfigField(title = "Basic Auth
     public Auth {
     }
 
+    private static <T> @Nullable T fetch(
+            final @NotNull Map<String, Object> map,
+            final @NotNull String key,
+            final @NotNull Class<T> clazz,
+            final @NotNull ObjectMapper mapper) {
+        return map.containsKey(key) ? mapper.convertValue(map.get(key), clazz) : null;
+    }
+
     @Override
     public @Nullable BasicAuth basicAuth() {
         return basicAuth;
@@ -38,4 +56,29 @@ public record Auth(@JsonProperty("basic") @ModuleConfigField(title = "Basic Auth
     public @Nullable X509Auth x509Auth() {
         return x509Auth;
     }
+
+    static class AuthDeserializer extends JsonDeserializer<Auth> {
+        @Override
+        public @NotNull Auth deserialize(final @NotNull JsonParser parser, final @NotNull DeserializationContext context)
+                throws IOException {
+            final String text = parser.getText();
+            if (text != null && text.isEmpty()) {
+                return new Auth(null, null);
+            }
+
+            try {
+                final Map<String, Object> map = parser.readValueAs(Map.class);
+                if (map == null || map.isEmpty()) {
+                    return new Auth(null, null);
+                }
+
+                final ObjectMapper mapper = (ObjectMapper) parser.getCodec();
+                final BasicAuth basicAuth = fetch(map, "basic", BasicAuth.class, mapper);
+                final X509Auth x509Auth = fetch(map, "x509", X509Auth.class, mapper);
+                return new Auth(basicAuth, x509Auth);
+            } catch (final IOException e) {
+                return new Auth(null, null);
+            }
+        }
+    }
 }
diff --git a/modules/hivemq-edge-module-opcua/src/main/java/com/hivemq/edge/adapters/opcua/config/Security.java b/modules/hivemq-edge-module-opcua/src/main/java/com/hivemq/edge/adapters/opcua/config/Security.java
@@ -16,13 +16,20 @@
 package com.hivemq.edge.adapters.opcua.config;
 
 import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.core.JsonParser;
+import com.fasterxml.jackson.databind.DeserializationContext;
+import com.fasterxml.jackson.databind.JsonDeserializer;
+import com.fasterxml.jackson.databind.annotation.JsonDeserialize;
 import com.hivemq.adapter.sdk.api.annotations.ModuleConfigField;
 import com.hivemq.edge.adapters.opcua.Constants;
 import org.jetbrains.annotations.NotNull;
 import org.jetbrains.annotations.Nullable;
 
+import java.io.IOException;
+import java.util.Map;
 import java.util.Objects;
 
+@JsonDeserialize(using = Security.SecurityDeserializer.class)
 public record Security(@JsonProperty("policy") @ModuleConfigField(title = "OPC UA security policy",
                                                                   description = "Security policy to use for communication with the server.",
                                                                   defaultValue = "NONE") @NotNull SecPolicy policy) {
@@ -35,4 +42,34 @@ public Security(@JsonProperty("policy") final @Nullable SecPolicy policy) {
     public @NotNull SecPolicy policy() {
         return policy;
     }
+
+    static class SecurityDeserializer extends JsonDeserializer<Security> {
+        @Override
+        public @NotNull Security deserialize(
+                final @NotNull JsonParser parser,
+                final @NotNull DeserializationContext context) throws IOException {
+            final String text = parser.getText();
+            if (text != null && text.isEmpty()) {
+                return new Security(Constants.DEFAULT_SECURITY_POLICY);
+            }
+
+            try {
+                final Map<String, Object> map = parser.readValueAs(Map.class);
+                if (map == null || map.isEmpty()) {
+                    return new Security(Constants.DEFAULT_SECURITY_POLICY);
+                }
+
+                final Object policyValue = map.get("policy");
+                final SecPolicy policy;
+                if (policyValue instanceof String) {
+                    policy = SecPolicy.valueOf((String) policyValue);
+                } else {
+                    policy = Constants.DEFAULT_SECURITY_POLICY;
+                }
+                return new Security(policy);
+            } catch (final IOException e) {
+                return new Security(Constants.DEFAULT_SECURITY_POLICY);
+            }
+        }
+    }
 }
diff --git a/modules/hivemq-edge-module-opcua/src/test/java/com/hivemq/edge/adapters/opcua/config/AuthDeserializerTest.java b/modules/hivemq-edge-module-opcua/src/test/java/com/hivemq/edge/adapters/opcua/config/AuthDeserializerTest.java
@@ -0,0 +1,120 @@
+/*
+ * Copyright 2023-present HiveMQ GmbH
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package com.hivemq.edge.adapters.opcua.config;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+import org.jetbrains.annotations.NotNull;
+import org.junit.jupiter.api.Test;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import static org.assertj.core.api.Assertions.assertThat;
+
+class AuthDeserializerTest {
+
+    private final @NotNull ObjectMapper mapper = new ObjectMapper();
+
+    @Test
+    void deserialize_emptyString_returnsNullAuth() throws Exception {
+        final String json = "\"\"";
+        final Auth auth = mapper.readValue(json, Auth.class);
+        assertThat(auth).isNotNull();
+        assertThat(auth.basicAuth()).isNull();
+        assertThat(auth.x509Auth()).isNull();
+    }
+
+    @Test
+    void deserialize_emptyMap_returnsNullAuth() throws Exception {
+        final String json = "{}";
+        final Auth auth = mapper.readValue(json, Auth.class);
+        assertThat(auth).isNotNull();
+        assertThat(auth.basicAuth()).isNull();
+        assertThat(auth.x509Auth()).isNull();
+    }
+
+    @Test
+    void deserialize_basicAuthOnly_parsesCorrectly() throws Exception {
+        final String json = "{\"basic\":{\"username\":\"testuser\",\"password\":\"testpass\"}}";
+        final Auth auth = mapper.readValue(json, Auth.class);
+        assertThat(auth).isNotNull();
+        assertThat(auth.basicAuth()).isNotNull();
+        assertThat(auth.basicAuth().username()).isEqualTo("testuser");
+        assertThat(auth.basicAuth().password()).isEqualTo("testpass");
+        assertThat(auth.x509Auth()).isNull();
+    }
+
+    @Test
+    void deserialize_x509AuthOnly_parsesCorrectly() throws Exception {
+        final String json = "{\"x509\":{\"enabled\":true}}";
+        final Auth auth = mapper.readValue(json, Auth.class);
+        assertThat(auth).isNotNull();
+        assertThat(auth.basicAuth()).isNull();
+        assertThat(auth.x509Auth()).isNotNull();
+        assertThat(auth.x509Auth().enabled()).isTrue();
+    }
+
+    @Test
+    void deserialize_bothAuthTypes_parsesCorrectly() throws Exception {
+        final String json = "{\"basic\":{\"username\":\"user\",\"password\":\"pass\"},\"x509\":{\"enabled\":true}}";
+        final Auth auth = mapper.readValue(json, Auth.class);
+        assertThat(auth).isNotNull();
+        assertThat(auth.basicAuth()).isNotNull();
+        assertThat(auth.basicAuth().username()).isEqualTo("user");
+        assertThat(auth.basicAuth().password()).isEqualTo("pass");
+        assertThat(auth.x509Auth()).isNotNull();
+        assertThat(auth.x509Auth().enabled()).isTrue();
+    }
+
+    @Test
+    void deserialize_mapWithUnrelatedFields_ignoresThemAndReturnsNullAuth() throws Exception {
+        final String json = "{\"someOtherField\":\"value\"}";
+        final Auth auth = mapper.readValue(json, Auth.class);
+        assertThat(auth).isNotNull();
+        assertThat(auth.basicAuth()).isNull();
+        assertThat(auth.x509Auth()).isNull();
+    }
+
+    @Test
+    void convertValue_emptyString_returnsNullAuth() {
+        final Map<String, Object> configMap = new HashMap<>();
+        configMap.put("auth", "");
+        final Auth auth = mapper.convertValue(configMap.get("auth"), Auth.class);
+        assertThat(auth).isNotNull();
+        assertThat(auth.basicAuth()).isNull();
+        assertThat(auth.x509Auth()).isNull();
+    }
+
+    @Test
+    void deserialize_nullBasicAuth_parsesCorrectly() throws Exception {
+        final String json = "{\"basic\":null,\"x509\":{\"enabled\":true}}";
+        final Auth auth = mapper.readValue(json, Auth.class);
+        assertThat(auth).isNotNull();
+        assertThat(auth.basicAuth()).isNull();
+        assertThat(auth.x509Auth()).isNotNull();
+        assertThat(auth.x509Auth().enabled()).isTrue();
+    }
+
+    @Test
+    void deserialize_nullX509Auth_parsesCorrectly() throws Exception {
+        final String json = "{\"basic\":{\"username\":\"user\",\"password\":\"pass\"},\"x509\":null}";
+        final Auth auth = mapper.readValue(json, Auth.class);
+        assertThat(auth).isNotNull();
+        assertThat(auth.basicAuth()).isNotNull();
+        assertThat(auth.basicAuth().username()).isEqualTo("user");
+        assertThat(auth.x509Auth()).isNull();
+    }
+}
diff --git a/modules/hivemq-edge-module-opcua/src/test/java/com/hivemq/edge/adapters/opcua/config/SecurityDeserializerTest.java b/modules/hivemq-edge-module-opcua/src/test/java/com/hivemq/edge/adapters/opcua/config/SecurityDeserializerTest.java
@@ -0,0 +1,93 @@
+/*
+ * Copyright 2023-present HiveMQ GmbH
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package com.hivemq.edge.adapters.opcua.config;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.hivemq.edge.adapters.opcua.Constants;
+import org.jetbrains.annotations.NotNull;
+import org.junit.jupiter.api.Test;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import static org.assertj.core.api.Assertions.assertThat;
+
+class SecurityDeserializerTest {
+
+    private final @NotNull ObjectMapper mapper = new ObjectMapper();
+
+    @Test
+    void deserialize_emptyString_usesDefaultPolicy() throws Exception {
+        final String json = "\"\"";
+        final Security security = mapper.readValue(json, Security.class);
+        assertThat(security).isNotNull();
+        assertThat(security.policy()).isEqualTo(Constants.DEFAULT_SECURITY_POLICY);
+    }
+
+    @Test
+    void deserialize_emptyMap_usesDefaultPolicy() throws Exception {
+        final String json = "{}";
+        final Security security = mapper.readValue(json, Security.class);
+        assertThat(security).isNotNull();
+        assertThat(security.policy()).isEqualTo(Constants.DEFAULT_SECURITY_POLICY);
+    }
+
+    @Test
+    void deserialize_nullValue_usesDefaultPolicy() throws Exception {
+        final Map<String, Object> map = new HashMap<>();
+        map.put("security", null);
+        final String json = mapper.writeValueAsString(map);
+        final Map<String, Object> result = mapper.readValue(json, Map.class);
+        final Security security = result.get("security") == null ?
+                new Security(null) :
+                mapper.convertValue(result.get("security"), Security.class);
+        assertThat(security).isNotNull();
+        assertThat(security.policy()).isEqualTo(Constants.DEFAULT_SECURITY_POLICY);
+    }
+
+    @Test
+    void deserialize_validPolicy_parsesCorrectly() throws Exception {
+        final String json = "{\"policy\":\"BASIC128RSA15\"}";
+        final Security security = mapper.readValue(json, Security.class);
+        assertThat(security).isNotNull();
+        assertThat(security.policy()).isEqualTo(SecPolicy.BASIC128RSA15);
+    }
+
+    @Test
+    void deserialize_nonePolicy_parsesCorrectly() throws Exception {
+        final String json = "{\"policy\":\"NONE\"}";
+        final Security security = mapper.readValue(json, Security.class);
+        assertThat(security).isNotNull();
+        assertThat(security.policy()).isEqualTo(SecPolicy.NONE);
+    }
+
+    @Test
+    void deserialize_mapWithoutPolicy_usesDefaultPolicy() throws Exception {
+        final String json = "{\"someOtherField\":\"value\"}";
+        final Security security = mapper.readValue(json, Security.class);
+        assertThat(security).isNotNull();
+        assertThat(security.policy()).isEqualTo(Constants.DEFAULT_SECURITY_POLICY);
+    }
+
+    @Test
+    void convertValue_emptyString_usesDefaultPolicy() {
+        final Map<String, Object> configMap = new HashMap<>();
+        configMap.put("security", "");
+        final Security security = mapper.convertValue(configMap.get("security"), Security.class);
+        assertThat(security).isNotNull();
+        assertThat(security.policy()).isEqualTo(Constants.DEFAULT_SECURITY_POLICY);
+    }
+}
