Added samples and corrected password provider

Author: fmeheust

ojdbc-provider-gcp/src/main/java/oracle/jdbc/provider/gcp/resource/GcpVaultSecretPasswordProvider.java

@@ -37,9 +37,13 @@
  */
 package oracle.jdbc.provider.gcp.resource;
 
+import java.io.UnsupportedEncodingException;
+import java.nio.charset.Charset;
 import java.util.Base64;
 import java.util.Map;
 
+import com.google.protobuf.ByteString;
+
 import oracle.jdbc.spi.PasswordProvider;
 
 /**
@@ -60,7 +64,9 @@ public GcpVaultSecretPasswordProvider() {
 
   @Override
   public char[] getPassword(Map<Parameter, CharSequence> parameterValues) {
-    return Base64.getEncoder().encodeToString(getSecret(parameterValues).toByteArray()).toCharArray();
+    ByteString secret = getSecret(parameterValues);
+    String password = secret.toString(Charset.defaultCharset());
+    return password.toCharArray();
   }
 
 }

ojdbc-provider-samples/example-configuration.properties

@@ -107,3 +107,8 @@ client_certificate_password=$3cr3t
 # Set to redirect URL for an interactive authentication which use your account in
 # Azure Active Directory to directly authenticate.
 azure_redirect_url=http://localhost:7071
+
+# Google Cloud Platform
+gcp_secret_version_name=projects/138028249883/secrets/test-secret/versions/2
+gcp_secret_version_name_config=projects/138028249883/secrets/config-secret/versions/4
+gcp_object_storage_properties=project=onyx-eye-426013-i5;bucket=fm-test-bucket-123564;object=testObjectStorage.json

ojdbc-provider-samples/pom.xml

@@ -5,7 +5,7 @@
   <name>Oracle JDBC Provider Code Samples</name>
 
   <artifactId>ojdbc-provider-samples</artifactId>
-  <version>1.0.1</version>
+  <version>${project.parent.version}</version>
   <packaging>jar</packaging>
 
   <parent>
@@ -18,12 +18,17 @@
     <dependency>
       <groupId>com.oracle.database.jdbc</groupId>
       <artifactId>ojdbc-provider-azure</artifactId>
-      <version>1.0.1</version>
+      <version>${project.parent.version}</version>
     </dependency>
     <dependency>
       <groupId>com.oracle.database.jdbc</groupId>
       <artifactId>ojdbc-provider-oci</artifactId>
-      <version>1.0.1</version>
+      <version>${project.parent.version}</version>
+    </dependency>
+    <dependency>
+      <groupId>com.oracle.database.jdbc</groupId>
+      <artifactId>ojdbc-provider-gcp</artifactId>
+      <version>${project.parent.version}</version>
     </dependency>
     <dependency>
       <groupId>com.oracle.database.security</groupId>

ojdbc-provider-samples/src/main/java/oracle/jdbc/provider/gcp/configuration/ObjectStorageExample.java

@@ -0,0 +1,90 @@
+/*
+ ** Copyright (c) 2024 Oracle and/or its affiliates.
+ **
+ ** The Universal Permissive License (UPL), Version 1.0
+ **
+ ** Subject to the condition set forth below, permission is hereby granted to any
+ ** person obtaining a copy of this software, associated documentation and/or data
+ ** (collectively the "Software"), free of charge and under any and all copyright
+ ** rights in the Software, and any and all patent rights owned or freely
+ ** licensable by each licensor hereunder covering either (i) the unmodified
+ ** Software as contributed to or provided by such licensor, or (ii) the Larger
+ ** Works (as defined below), to deal in both
+ **
+ ** (a) the Software, and
+ ** (b) any piece of software and/or hardware listed in the lrgrwrks.txt file if
+ ** one is included with the Software (each a "Larger Work" to which the Software
+ ** is contributed by such licensors),
+ **
+ ** without restriction, including without limitation the rights to copy, create
+ ** derivative works of, display, perform, and distribute the Software and make,
+ ** use, sell, offer for sale, import, export, have made, and have sold the
+ ** Software and the Larger Work(s), and to sublicense the foregoing rights on
+ ** either these or other terms.
+ **
+ ** This license is subject to the following condition:
+ ** The above copyright notice and either this complete permission notice or at
+ ** a minimum a reference to the UPL must be included in all copies or
+ ** substantial portions of the Software.
+ **
+ ** THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+ ** IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ ** FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ ** AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ ** LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+ ** OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+ ** SOFTWARE.
+ */
+package oracle.jdbc.provider.gcp.configuration;
+
+import oracle.jdbc.datasource.impl.OracleDataSource;
+import oracle.jdbc.provider.Configuration;
+
+import java.sql.Connection;
+import java.sql.ResultSet;
+import java.sql.SQLException;
+import java.sql.Statement;
+
+/**
+ * A standalone example that configures Oracle JDBC to be provided with the
+ * connection properties retrieved from OCI Object Storage.
+ */
+public class ObjectStorageExample {
+  /**
+   * An GCP Object Storage properties configured as a JVM system property,
+   * environment variable, or configuration.properties file entry named
+   * "gcp_object_storage_properties".
+   */
+  private static final String OBJECT_PROPERTIES = Configuration
+      .getRequired("gcp_object_storage_properties");
+
+  /**
+   * <p>
+   * Connects to a database using connection properties retrieved from GCP
+   * Object Storage.
+   * </p>
+   * 
+   * @param args the command line arguments
+   * @throws SQLException if an error occurs during the database calls
+   */
+  public static void main(String[] args) throws SQLException {
+    String url = "jdbc:oracle:thin:@config-gcpobject://" + OBJECT_PROPERTIES;
+
+    // Standard JDBC code
+    OracleDataSource ds = new OracleDataSource();
+    ds.setURL(url);
+
+    System.out.println("Connection URL: " + url);
+
+    try (Connection cn = ds.getConnection()) {
+      String connectionString = cn.getMetaData().getURL();
+      System.out.println("Connected to: " + connectionString);
+
+      Statement st = cn.createStatement();
+      ResultSet rs = st.executeQuery("SELECT 'Hello, db' FROM sys.dual");
+      if (rs.next())
+        System.out.println(rs.getString(1));
+    }
+  }
+
+}

ojdbc-provider-samples/src/main/java/oracle/jdbc/provider/gcp/configuration/SimpleVaultJsonExample.java

@@ -0,0 +1,100 @@
+/*
+ ** Copyright (c) 2024 Oracle and/or its affiliates.
+ **
+ ** The Universal Permissive License (UPL), Version 1.0
+ **
+ ** Subject to the condition set forth below, permission is hereby granted to any
+ ** person obtaining a copy of this software, associated documentation and/or data
+ ** (collectively the "Software"), free of charge and under any and all copyright
+ ** rights in the Software, and any and all patent rights owned or freely
+ ** licensable by each licensor hereunder covering either (i) the unmodified
+ ** Software as contributed to or provided by such licensor, or (ii) the Larger
+ ** Works (as defined below), to deal in both
+ **
+ ** (a) the Software, and
+ ** (b) any piece of software and/or hardware listed in the lrgrwrks.txt file if
+ ** one is included with the Software (each a "Larger Work" to which the Software
+ ** is contributed by such licensors),
+ **
+ ** without restriction, including without limitation the rights to copy, create
+ ** derivative works of, display, perform, and distribute the Software and make,
+ ** use, sell, offer for sale, import, export, have made, and have sold the
+ ** Software and the Larger Work(s), and to sublicense the foregoing rights on
+ ** either these or other terms.
+ **
+ ** This license is subject to the following condition:
+ ** The above copyright notice and either this complete permission notice or at
+ ** a minimum a reference to the UPL must be included in all copies or
+ ** substantial portions of the Software.
+ **
+ ** THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+ ** IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ ** FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ ** AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ ** LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+ ** OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+ ** SOFTWARE.
+ */
+package oracle.jdbc.provider.gcp.configuration;
+
+import java.sql.Connection;
+import java.sql.ResultSet;
+import java.sql.SQLException;
+import java.sql.Statement;
+
+import oracle.jdbc.datasource.impl.OracleDataSource;
+import oracle.jdbc.provider.Configuration;
+
+/**
+ * A standalone example that configures Oracle JDBC to be provided with the
+ * connection properties retrieved from GCP Secret Manager.
+ */
+public class SimpleVaultJsonExample {
+
+  /**
+   * An GCP SecretManager resource name configured as a JVM system property,
+   * environment variable, or configuration.properties file entry named
+   * "gcp_secret_version_name_config".
+   */
+  private static final String RESOURCE_NAME = Configuration
+      .getRequired("gcp_secret_version_name_config");
+
+  /**
+   * <p>
+   * Simple example to retrieve connection properties from GCP Secret Manager.
+   * </p>
+   * <p>
+   * To run this example, the payload needs to be stored in GCP Secret Manager.
+   * The payload examples can be found in
+   * {@link oracle.jdbc.spi.OracleConfigurationProvider}.
+   * </p>
+   * Users need to indicate the resource name of the Secret with the following
+   * syntax:
+   * 
+   * <pre>
+   * jdbc:oracle:thin:@config-gcpvault:{resource-name}
+   * </pre>
+   * 
+   * @param args the command line arguments
+   * @throws SQLException if an error occurs during the database calls
+   **/
+  public static void main(String[] args) throws SQLException {
+    String url = "jdbc:oracle:thin:@config-gcpsecret://" + RESOURCE_NAME;
+    // Sample default URL if non present
+    if (args.length > 0) {
+      url = args[0];
+    }
+
+    // No changes required, configuration provider is loaded at runtime
+    OracleDataSource ds = new OracleDataSource();
+    ds.setURL(url);
+
+    // Standard JDBC code
+    try (Connection cn = ds.getConnection()) {
+      Statement st = cn.createStatement();
+      ResultSet rs = st.executeQuery("SELECT 'Hello, db' FROM sys.dual");
+      if (rs.next())
+        System.out.println(rs.getString(1));
+    }
+  }
+}

ojdbc-provider-samples/src/main/java/oracle/jdbc/provider/gcp/resource/VaultSecretPasswordResourceExample.java

@@ -0,0 +1,96 @@
+/*
+ ** Copyright (c) 2024 Oracle and/or its affiliates.
+ **
+ ** The Universal Permissive License (UPL), Version 1.0
+ **
+ ** Subject to the condition set forth below, permission is hereby granted to any
+ ** person obtaining a copy of this software, associated documentation and/or data
+ ** (collectively the "Software"), free of charge and under any and all copyright
+ ** rights in the Software, and any and all patent rights owned or freely
+ ** licensable by each licensor hereunder covering either (i) the unmodified
+ ** Software as contributed to or provided by such licensor, or (ii) the Larger
+ ** Works (as defined below), to deal in both
+ **
+ ** (a) the Software, and
+ ** (b) any piece of software and/or hardware listed in the lrgrwrks.txt file if
+ ** one is included with the Software (each a "Larger Work" to which the Software
+ ** is contributed by such licensors),
+ **
+ ** without restriction, including without limitation the rights to copy, create
+ ** derivative works of, display, perform, and distribute the Software and make,
+ ** use, sell, offer for sale, import, export, have made, and have sold the
+ ** Software and the Larger Work(s), and to sublicense the foregoing rights on
+ ** either these or other terms.
+ **
+ ** This license is subject to the following condition:
+ ** The above copyright notice and either this complete permission notice or at
+ ** a minimum a reference to the UPL must be included in all copies or
+ ** substantial portions of the Software.
+ **
+ ** THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+ ** IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ ** FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ ** AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ ** LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+ ** OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+ ** SOFTWARE.
+ */
+package oracle.jdbc.provider.gcp.resource;
+
+import oracle.jdbc.datasource.impl.OracleDataSource;
+import oracle.jdbc.provider.Configuration;
+
+import java.sql.Connection;
+import java.sql.ResultSet;
+import java.sql.SQLException;
+import java.sql.Statement;
+import java.util.Properties;
+
+/**
+ * A standalone example that configures Oracle JDBC to be provided with the
+ * connection properties retrieved from OCI Object Storage.
+ */
+public class VaultSecretPasswordResourceExample {
+  /**
+   * An GCP SecretManager resource name configured as a JVM system property,
+   * environment variable, or configuration.properties file entry named
+   * "gcp_secret_version_name".
+   */
+  private static final String RESOURCE_NAME = Configuration
+      .getRequired("gcp_secret_version_name");
+
+  private static final String DB_URL = "(description=(retry_count=2)(retry_delay=3)(address=(protocol=tcps)(port=1521)(host=adb.us-phoenix-1.oraclecloud.com))(connect_data=(service_name=gebqqvpozhjbqbs_awyonurbg0gp0smq_tp.adb.oraclecloud.com))(security=(ssl_server_dn_match=yes)))";
+
+  /**
+   * <p>
+   * Connects to a database using connection properties retrieved from GCP
+   * Object Storage.
+   * </p>
+   * 
+   * @param args the command line arguments
+   * @throws SQLException if an error occurs during the database calls
+   */
+  public static void main(String[] args) throws SQLException {
+    String url = "jdbc:oracle:thin:@" + DB_URL;
+
+    // Standard JDBC code
+    OracleDataSource ds = new OracleDataSource();
+    ds.setURL(url);
+    ds.setUser("DB_USER");
+    Properties properties = new Properties();
+    properties.put("oracle.jdbc.provider.password", "ojdbc-provider-gcp-secret-password");
+    properties.put("oracle.jdbc.provider.password.secretVersionName", RESOURCE_NAME);
+    ds.setConnectionProperties(properties);
+
+    try (Connection cn = ds.getConnection()) {
+      String connectionString = cn.getMetaData().getURL();
+      System.out.println("Connected to: " + connectionString);
+
+      Statement st = cn.createStatement();
+      ResultSet rs = st.executeQuery("SELECT 'Hello, db' FROM sys.dual");
+      if (rs.next())
+        System.out.println(rs.getString(1));
+    }
+  }
+
+}