This page provides an overview on the architecture of the Mobile ID client library. If you want to check the code and understand it faster, this page is for you.
The following modules are built in:
- mobileid-client-core: the main classes that the user works with. This module provides a simplified model to work with and provides the base on which the REST and SOAP implementations are built
- mobileid-client-rest: the REST implementation of the client. Uses the REST API of Mobile ID
- mobileid-client-soap: the SOAP implementation of the client. Uses the SOAP API of Mobile ID
- mobileid-client-usage: samples of configuring and using the client library. Provides the CLI classes for calling the Mobile ID client from the command line
If you want to discover the code, start in mobileid-client-core. The main interface is MIDClient that defines the contract that the final clients are using. The implementations is, not surprinsingly, MIDClientImpl. This one is basically a delegate implementation, since it cannot do too much without knowing that actual implementation will the client choose (REST or SOAP or anything else). Therefore, it uses the concept of ComProtocolHandler. This second interface defines the methods that any implementation of a communication protocol (hence Com Protocol) with the Mobile ID service needs to have.
There are two implementations of the ComProtocolHandler: a REST one (see ComProtocolHandlerRestImpl) and a SOAP one (see ComProtocolHandlerSoapImpl). The discovery of available implementations is done via Java Service Provider Interface (SPI) standard protocol. There is a META-INF directory in each REST and SOAP module that contains a file with the fully qualified name of the ComProtocolHandler interface. Inside that file, on each module, there is the fully qualified name of the ComProtocolHandler implementation. At runtime, the MIDClientImpl class uses SPI API to discover the available implementations and instantiate the one that the final client has chosen.
So, if the final client does this:
ClientConfiguration config = new ClientConfiguration();
config.setProtocolToRest();then the REST implementation is chosen (which is also the default). If the final client does this:
ClientConfiguration config = new ClientConfiguration();
config.setProtocolToSoap();then the SOAP implementation is chosen.
The REST implementation is located in the mobileid-client-rest module. It uses a JSON model that is generated from sample files (see the gen-material directory from that module). There is a shell script file in that directory (run_jsonschema2pojo.sh) that can be used, together with the very nice jsonschema2pojo tool, to generate JSON model classes that are already enriched with Jackson annotations.
This means that, if some changes are required (like a new field that needs to be added/processed on the request/response messages), then the flow is more or less the following:
- change the samples in the gen-material directory
- run the jsonschema2pojo tool to regenerate the classes
- copy the classes in the src/main/java directory of the module
- start using the new version of the classes
The ComProtocolHandlerRestImpl class is the main one in this module. It implements the entire communication protocol with the Mobile ID service, using the REST API. It uses an instance of an Apache HTTP Client version 5 to send and receive data. This HTTP client is configured to correctly send and receive TLS certificates (client and server) and to correctly pool HTTP connections.
There are 4 interesting classes (ProfileRequestModelUtils, ReceiptRequestModelUtils, SignatureRequestModelUtils, StatusQueryModelUtils) that are used for generating the JSON requests for the Mobile ID service and to parse the respective responses.
Finally, the FaultProcessor is used for converting any faulty response into a common fault model to send back to the final client.
The SOAP implementation is located in the mobileid-client-soap module. It uses the JAX-WS Maven plugin to generate Java classes out of the Mobile ID service WSDL and XSD files located in the src/main_resources/wsdl directory. The classes are generated in the target/generated-sources/wsimport directory at build time.
The ComProtocolHandlerSoapImpl is the main class in this module. It implements the entire communication protocol with the Mobile ID service, using the SOAP API. It uses the MssServiceFactory for generating SOAP WS port implementations (Java proxies over the SOAP port classes) and it pools these port proxies using the Apache Commons Pool library. This ensures that multiple concurrent calls to this implementation will correctly be served by separate port proxies while, at the same time, these proxies are pooled so that the cost of creating them is minimized.
There are two interesting classes (MssRequestBuilder and MssResponseProcessor) that are used for generating the requests for the Mobile ID service and to parse the respective responses.
Finally, the MssFaultProcessor is used for converting any faulty response into a common fault model to send back to the final client.
Logging is an important part of any library and the Mobile ID client is no different. The Loggers class defines the loggers that are used by this library (for either of the implementations, REST or SOAP). The names are the following:
- ch.swisscom.mid.client - logging related to common parts of the client's functionality
- ch.swisscom.mid.client.config - all activity related to configuring the client
- ch.swisscom.mid.client.protocol - all activity related to talking to the Mobile ID service (except the actual request and response messages; see next)
- ch.swisscom.mid.client.requestResponse - the (REST or SOAP) request and response messages, with any large data (e.g. Base64 signature, Base64 certificate content) stripped out
- ch.swisscom.mid.client.fullRequestResponse - the (REST or SOAP) request and response messages in full content (including any large data)
The following is also worth configuring:
- org.apache.hc - logging related to the Apache HTTP client, used for the REST implementation
There was a conscious decision to name these loggers as above, without actually using the name of the classes that are logging this data, in order to decouple the name of the logger from the class name. This ensures that any later refactoring of the classes will not impact the existing logging configuration of final clients.