oci-java-sdk/bmc-examples/src/main/java/AuthenticationPolicyExample.java at master · fankh/oci-java-sdk · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
/**
 * Copyright (c) 2016, 2021, Oracle and/or its affiliates.  All rights reserved.
 * This software is dual-licensed to you under the Universal Permissive License (UPL) 1.0 as shown at https://oss.oracle.com/licenses/upl or Apache License 2.0 as shown at http://www.apache.org/licenses/LICENSE-2.0. You may choose either license.
 */
import com.oracle.bmc.ConfigFileReader;
import com.oracle.bmc.auth.AuthenticationDetailsProvider;
import com.oracle.bmc.auth.ConfigFileAuthenticationDetailsProvider;
import com.oracle.bmc.identity.Identity;
import com.oracle.bmc.identity.IdentityClient;
import com.oracle.bmc.identity.model.PasswordPolicy;
import com.oracle.bmc.identity.model.UpdateAuthenticationPolicyDetails;
import com.oracle.bmc.identity.requests.GetAuthenticationPolicyRequest;
import com.oracle.bmc.identity.requests.UpdateAuthenticationPolicyRequest;
import com.oracle.bmc.identity.responses.GetAuthenticationPolicyResponse;
import com.oracle.bmc.identity.responses.UpdateAuthenticationPolicyResponse;

import java.io.IOException;

/**
 * An example for using the Authentication Policy api, which is a part of the OCI Platform APIs.
 * Steps:
 * 1. Get the Authentication-Policy for your tenant
 * 2. Update the Authentication-Policy for your tenant
 */
public class AuthenticationPolicyExample {
    public static void main(String[] args) throws IOException {
        // TODO: Fill in this value
        String configurationFilePath = "~/.oci/config";
        String profile = "DEFAULT";

        // Configuring the AuthenticationDetailsProvider. It's assuming there is a default OCI config file
        // "~/.oci/config", and a profile in that config with the name "DEFAULT". Make changes to the following
        // line if needed and use ConfigFileReader.parse(configurationFilePath, profile);

        final ConfigFileReader.ConfigFile configFile = ConfigFileReader.parseDefault();

        final AuthenticationDetailsProvider provider =
                new ConfigFileAuthenticationDetailsProvider(configFile);

        final String tenantId = provider.getTenantId();
        Identity identityClient = new IdentityClient(provider);

        queryAuthenticationPolicy(tenantId, identityClient);

        updateAuthenticationPolicy(tenantId, identityClient);
    }

    private static void queryAuthenticationPolicy(String tenantId, Identity identityClient) {
        System.out.printf("Getting the authentication policy of your tenant %s\n", tenantId);
        GetAuthenticationPolicyResponse getAuthenticationPolicyResponse =
                identityClient.getAuthenticationPolicy(
                        GetAuthenticationPolicyRequest.builder()
                                // currently only the tenant (ie the root compartment) can have an authentication policy
                                .compartmentId(tenantId)
                                .build());
        System.out.printf(
                "The Authentication Policy is: %s\n",
                getAuthenticationPolicyResponse.getAuthenticationPolicy().toString());
    }

    private static void updateAuthenticationPolicy(String tenantId, Identity identityClient) {
        System.out.printf("Updating the authentication policy of your tenant %s\n", tenantId);
        UpdateAuthenticationPolicyRequest request =
                UpdateAuthenticationPolicyRequest.builder()
                        .compartmentId(tenantId)
                        .updateAuthenticationPolicyDetails(
                                UpdateAuthenticationPolicyDetails.builder()
                                        .passwordPolicy(
                                                PasswordPolicy.builder()
                                                        .minimumPasswordLength(
                                                                15) // note that this is changed from the default
                                                        .isLowercaseCharactersRequired(true)
                                                        .isUppercaseCharactersRequired(true)
                                                        .isNumericCharactersRequired(true)
                                                        .isSpecialCharactersRequired(true)
                                                        .isUsernameContainmentAllowed(false)
                                                        .build())
                                        .build())
                        .build();
        UpdateAuthenticationPolicyResponse response =
                identityClient.updateAuthenticationPolicy(request);

        System.out.printf(
                "The Authentication Policy is updated to: %s\n",
                response.getAuthenticationPolicy());
    }
}