Clean up

Author: skjolber

.gitignore

@@ -54,6 +54,7 @@ vendor/
 
 # IntelliJ
 /out/
+.idea
 
 # mpeltonen/sbt-idea plugin
 .idea_modules/

frameworks/fusionauth-jwt-bench/src/main/java/com/github/skjolber/bench/fusionauth/FusionAuthJsonWebTokenVerifier.java

@@ -11,17 +11,21 @@
 
 public class FusionAuthJsonWebTokenVerifier {
 
+	public static FusionAuthJsonWebTokenVerifier newInstance(KeyPair keyPair, String issuer, String audience) {
+		RSAVerifier rsaVerifier = RSAVerifier.newVerifier((RSAPublicKey) keyPair.getPublic());
+
+		return new FusionAuthJsonWebTokenVerifier(issuer, audience, rsaVerifier);
+	}
+
 	private final RSAVerifier verifier;
 	private final JWTDecoder decoder;
 	private final String issuer;
 	private final String audience;
 
-	public FusionAuthJsonWebTokenVerifier(KeyPair keyPair, String issuer, String audience) {
+	public FusionAuthJsonWebTokenVerifier(String issuer, String audience, RSAVerifier verifier) {
 		this.issuer = issuer;
 		this.audience = audience;
-		
-		this.verifier = RSAVerifier.newVerifier((RSAPublicKey) keyPair.getPublic());
-		
+		this.verifier = verifier;
 		this.decoder = JWT.getDecoder();
 	} 
 

frameworks/java-jwt-bench/src/main/java/com/auth0/jwt/Auth0TokenVerifier.java

@@ -8,16 +8,22 @@
 
 public class Auth0TokenVerifier {
 
+	public static Auth0TokenVerifier newInstance(KeyPair keyPair, String issuer, String audience) {
+		JWTVerifier build = JWT
+				.require(Algorithm.RSA256(new KeyProvider(keyPair)))
+				.withIssuer(issuer)
+				.withAudience(audience)
+				.build();
+
+		return new Auth0TokenVerifier(build);
+	}
+
 	private final JWTVerifier verifier;
 	private final JWT jwt;
 
-	public Auth0TokenVerifier(KeyPair keyPair, String issuer, String audience) {
-        verifier = JWT
-        			.require(Algorithm.RSA256(new KeyProvider(keyPair)))
-        			.withIssuer(issuer)
-        			.withAudience(audience)
-        			.build();
-        jwt = new JWT();        
+	public Auth0TokenVerifier(JWTVerifier jwtVerifier) {
+		this.verifier = jwtVerifier;
+        this.jwt = new JWT();
 	}
 
 	public DecodedJWT verifyJsonWebToken(String token) throws Exception {

frameworks/jjwt-bench/build.gradle

@@ -3,5 +3,7 @@ dependencies {
     api "io.jsonwebtoken:jjwt-impl:${jjwtVersion}"
     api "io.jsonwebtoken:jjwt-jackson:${jjwtVersion}"
     api("javax.xml.bind:jaxb-api:${jaxbVersion}")
+
+    api project(":jmh-benchmark")
 }
 

frameworks/jjwt-bench/src/main/java/com/github/skjolber/bench/jjwt/JavaJsonWebTokenVerifier.java

@@ -9,14 +9,20 @@
 
 public class JavaJsonWebTokenVerifier {
 
+	public static JavaJsonWebTokenVerifier newInstance(KeyPair keyPair, String issuer, String audience) {
+		JwtParser jwtParseruild = Jwts.parser()
+				.setSigningKeyResolver(new KeyProvider(keyPair))
+				.requireAudience(audience)
+				.requireIssuer(issuer)
+				.build();
+
+		return new JavaJsonWebTokenVerifier(jwtParseruild);
+	}
+
 	private final JwtParser verifier;
 
-	public JavaJsonWebTokenVerifier(KeyPair keyPair, String issuer, String audience) {
-        verifier = Jwts.parser()
-        		.setSigningKeyResolver(new KeyProvider(keyPair))
-        		.requireAudience(audience)
-        		.requireIssuer(issuer)
-        		;
+	public JavaJsonWebTokenVerifier(JwtParser verifier) {
+		this.verifier = verifier;
 	}
 
 	public Jws<Claims> verifyJsonWebToken(String token) throws Exception {

frameworks/jjwt-bench/src/main/java/com/github/skjolber/bench/jjwt/KeyProvider.java

@@ -23,7 +23,7 @@ public Key resolveSigningKey(JwsHeader header, Claims claims) {
 	}
 
 	@Override
-	public Key resolveSigningKey(JwsHeader header, String plaintext) {
+	public Key resolveSigningKey(JwsHeader header, byte[] plaintext) {
 		return (RSAPublicKey) keyPair.getPublic();
 	}
 

frameworks/nimbus-bench/src/main/java/com/github/skjolber/bench/nimbus/NimbusJsonWebTokenVerifier.java

@@ -25,25 +25,27 @@
 
 public class NimbusJsonWebTokenVerifier {
 
-	private final ConfigurableJWTProcessor<SecurityContext> jwtProcessor;
-
-	public NimbusJsonWebTokenVerifier(KeyPair keyPair, String issuer, String audience) throws JOSEException, MalformedURLException {
-
+	public static NimbusJsonWebTokenVerifier newInstance(KeyPair keyPair, String issuer, String audience) throws JOSEException, MalformedURLException {
 		// Convert to JWK format
 		RSAKey rsaJWK = new RSAKey.Builder((RSAPublicKey)keyPair.getPublic())
 				.privateKey((RSAPrivateKey)keyPair.getPrivate())
 				.keyUse(KeyUse.SIGNATURE)
 				.keyID(UUID.randomUUID().toString())
 				.build();
 
-		jwtProcessor = new DefaultJWTProcessor<>();
-
 		JWKSource keySource = new ImmutableJWKSet(new JWKSet(rsaJWK));
 
 		JWSAlgorithm expectedJWSAlg = JWSAlgorithm.RS256;
 
 		JWSKeySelector<SecurityContext> keySelector = new JWSVerificationKeySelector<>(expectedJWSAlg, keySource);
 
+		return new NimbusJsonWebTokenVerifier(keySelector);
+	}
+
+	private final ConfigurableJWTProcessor<SecurityContext> jwtProcessor;
+
+	public NimbusJsonWebTokenVerifier(JWSKeySelector<SecurityContext> keySelector) {
+		jwtProcessor = new DefaultJWTProcessor<>();
 		jwtProcessor.setJWSKeySelector(keySelector);
 	}
 

jmh-benchmark/src/jmh/java/com/github/skjolber/jwt/BenchmarkState.java

@@ -3,16 +3,33 @@
 import com.auth0.jwt.Auth0TokenVerifier;
 import com.github.skjolber.bench.fusionauth.FusionAuthJsonWebTokenVerifier;
 import com.github.skjolber.bench.jjwt.JavaJsonWebTokenVerifier;
+import com.github.skjolber.bench.jjwt.KeyProvider;
 import com.github.skjolber.bench.nimbus.NimbusJsonWebTokenVerifier;
 import com.github.skjolber.bench.okta.OktaJsonWebTokenVerifier;
 import com.github.skjolber.bench.utils.JsonWebTokenGenerator;
+import com.nimbusds.jose.JWSAlgorithm;
+import com.nimbusds.jose.jwk.JWKSet;
+import com.nimbusds.jose.jwk.KeyUse;
+import com.nimbusds.jose.jwk.RSAKey;
+import com.nimbusds.jose.jwk.source.ImmutableJWKSet;
+import com.nimbusds.jose.jwk.source.JWKSource;
+import com.nimbusds.jose.proc.JWSKeySelector;
+import com.nimbusds.jose.proc.JWSVerificationKeySelector;
+import com.nimbusds.jose.proc.SecurityContext;
+import io.jsonwebtoken.JwtParser;
+import io.jsonwebtoken.Jwts;
 import org.openjdk.jmh.annotations.Level;
 import org.openjdk.jmh.annotations.Scope;
 import org.openjdk.jmh.annotations.Setup;
 import org.openjdk.jmh.annotations.State;
 
+import java.security.KeyPair;
+import java.security.KeyPairGenerator;
+import java.security.interfaces.RSAPrivateKey;
+import java.security.interfaces.RSAPublicKey;
 import java.util.HashMap;
 import java.util.Map;
+import java.util.UUID;
 
 @State(Scope.Thread)
 public class BenchmarkState {
@@ -27,7 +44,7 @@ public class BenchmarkState {
 
 	@Setup(Level.Trial)
 	public void init() throws Exception {
-		JsonWebTokenGenerator generator = new JsonWebTokenGenerator();
+		JsonWebTokenGenerator generator = JsonWebTokenGenerator.newInstance();
 
 		Map<String, Object> map = new HashMap<>();
 		map.put("test", "value");
@@ -39,10 +56,10 @@ public void init() throws Exception {
 
 		oktaJsonWebTokenVerifier = new OktaJsonWebTokenVerifier(generator.getKeyPair(), issuer, audience);
 
-		fusionAuthJsonWebTokenVerifier = new FusionAuthJsonWebTokenVerifier(generator.getKeyPair(), issuer, audience);
-		javaJsonWebTokenVerifier = new JavaJsonWebTokenVerifier(generator.getKeyPair(), issuer, audience);
-		auth0TokenVerifier = new Auth0TokenVerifier(generator.getKeyPair(), issuer, audience);
-		nimbusTokenVerifier = new NimbusJsonWebTokenVerifier(generator.getKeyPair(), issuer, audience);
+		fusionAuthJsonWebTokenVerifier = FusionAuthJsonWebTokenVerifier.newInstance(generator.getKeyPair(), issuer, audience);
+		javaJsonWebTokenVerifier = JavaJsonWebTokenVerifier.newInstance(generator.getKeyPair(), issuer, audience);
+		auth0TokenVerifier = Auth0TokenVerifier.newInstance(generator.getKeyPair(), issuer, audience);
+		nimbusTokenVerifier = NimbusJsonWebTokenVerifier.newInstance(generator.getKeyPair(), issuer, audience);
 	}
 
 	public Auth0TokenVerifier getAuth0TokenVerifier() {

jmh-utils/src/main/java/com/github/skjolber/bench/utils/JsonWebTokenGenerator.java

@@ -2,6 +2,7 @@
 
 import java.security.KeyPair;
 import java.security.KeyPairGenerator;
+import java.security.NoSuchAlgorithmException;
 import java.util.Date;
 import java.util.Map;
 
@@ -11,13 +12,17 @@
 
 public class JsonWebTokenGenerator {
 
+    public static JsonWebTokenGenerator newInstance() throws NoSuchAlgorithmException {
+        KeyPairGenerator keyGen = KeyPairGenerator.getInstance("RSA");
+        keyGen.initialize(2048);
+
+        return new JsonWebTokenGenerator(keyGen.generateKeyPair());
+    }
+
 	private final KeyPair keyPair;
 
-	public JsonWebTokenGenerator() throws Exception {
-	    KeyPairGenerator keyGen = KeyPairGenerator.getInstance("RSA");
-	    keyGen.initialize(2048);
-	    
-	    keyPair = keyGen.generateKeyPair();
+	public JsonWebTokenGenerator(KeyPair keyPair) {
+        this.keyPair = keyPair;
 	}
 
     public String createJsonWebToken(Map<String, Object> keys, String issuer, String audience) throws Exception {