Merge pull request #49 from Safeheron/dev

xigaoku · web-flow · commit fa84e5945795 · 2025-08-21T19:50:22.000+08:00
Added Deactivate API Key interfaces
diff --git a/.github/workflows/deploy.yaml b/.github/workflows/deploy.yaml
@@ -0,0 +1,31 @@
+name: Maven Central Repo Deployment
+
+on:
+  release:
+    types: [ released ]
+
+jobs:
+  publish-central:
+    runs-on: ubuntu-latest
+    steps:
+
+      - name: Checkout Git Repo
+        uses: actions/checkout@v4
+
+      - name: Set up Apache Maven Central
+        uses: actions/setup-java@v4
+        with:
+          distribution: 'zulu'
+          java-version: '8'
+          server-id: central
+          server-username: SERVER_USERNAME
+          server-password: SERVER_PASSWORD
+          gpg-private-key: ${{ secrets.MAVEN_GPG_SECRET }}
+          gpg-passphrase: GPG_PASSPHRASE
+
+      - name: Publish to Apache Maven Central
+        run: mvn deploy -DskipTests
+        env:
+          SERVER_USERNAME: ${{ secrets.MAVEN_SERVER_USERNAME }}
+          SERVER_PASSWORD: ${{ secrets.MAVEN_SERVER_PASSWORD }}
+          GPG_PASSPHRASE: ${{ secrets.MAVEN_GPG_PASSWORD }}
diff --git a/pom.xml b/pom.xml
@@ -6,11 +6,26 @@
 
     <groupId>com.safeheron</groupId>
     <artifactId>api-sdk-java</artifactId>
-    <version>0.0.1</version>
+    <version>1.0.2</version>
     <name>api-sdk-java</name>
-
+    <description>Java SDK for Safeheron API</description>
+    <url>https://github.com/Safeheron/safeheron-api-sdk-java</url>
     <packaging>jar</packaging>
 
+    <licenses>
+        <license>
+            <name>The Apache Software License, Version 2.0</name>
+            <url>http://www.apache.org/licenses/LICENSE-2.0.txt</url>
+        </license>
+    </licenses>
+
+    <scm>
+        <connection>https://github.com/Safeheron/safeheron-api-sdk-java.git</connection>
+        <developerConnection>scm:git:ssh://git@github.com:Safeheron/safeheron-api-sdk-java.git
+        </developerConnection>
+        <url>https://github.com/Safeheron/safeheron-api-sdk-java</url>
+    </scm>
+
     <properties>
         <maven.compiler.source>8</maven.compiler.source>
         <maven.compiler.target>8</maven.compiler.target>
@@ -122,6 +137,16 @@
 
     <build>
         <plugins>
+            <plugin>
+                <groupId>org.sonatype.central</groupId>
+                <artifactId>central-publishing-maven-plugin</artifactId>
+                <version>0.8.0</version>
+                <extensions>true</extensions>
+                <configuration>
+                    <publishingServerId>central</publishingServerId>
+                    <autoPublish>true</autoPublish>
+                </configuration>
+            </plugin>
             <plugin>
                 <groupId>org.apache.maven.plugins</groupId>
                 <artifactId>maven-compiler-plugin</artifactId>
@@ -131,6 +156,40 @@
                     <target>1.8</target>
                 </configuration>
             </plugin>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-javadoc-plugin</artifactId>
+                <version>2.9.1</version>
+                <executions>
+                    <execution>
+                        <id>attach-javadocs</id>
+                        <goals>
+                            <goal>jar</goal>
+                        </goals>
+                    </execution>
+                </executions>
+            </plugin>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-gpg-plugin</artifactId>
+                <version>1.6</version>
+                <inherited>false</inherited>
+                <executions>
+                    <execution>
+                        <id>sign-artifacts</id>
+                        <phase>verify</phase>
+                        <goals>
+                            <goal>sign</goal>
+                        </goals>
+                        <configuration>
+                            <gpgArguments>
+                                <arg>--pinentry-mode</arg>
+                                <arg>loopback</arg>
+                            </gpgArguments>
+                        </configuration>
+                    </execution>
+                </executions>
+            </plugin>
         </plugins>
     </build>
 
diff --git a/src/main/java/com/safeheron/client/api/APIKeyManagementService.java b/src/main/java/com/safeheron/client/api/APIKeyManagementService.java
@@ -0,0 +1,26 @@
+package com.safeheron.client.api;
+
+import com.safeheron.client.response.ResultResponse;
+import retrofit2.Call;
+import retrofit2.http.POST;
+
+/**
+ * @author safeheron
+ */
+public interface APIKeyManagementService {
+
+    /**
+     * Deactivate API Key
+     * This interface is used to apply to deactivate the currently used API Key (this can also be done in the Web Console). After the application is submitted, it will only take effect once a team administrator approves it in the Safeheron App. Once an API Key is deactivated, it will no longer be able to access any interfaces. For example, you can apply to deactivate an API Key in the following situations to protect your assets:
+     *
+     * The API Key is no longer in use and should be deactivated promptly to avoid risk;
+     * The API Key's private key is suspected of being leaked, and it needs to be deactivated immediately to ensure fund security;
+     * You receive an Illegal IP Request Event via Webhook and, after evaluation, need to deactivate the API Key (Event Type: ILLEGAL_IP_REQUEST);
+     * To resume using it, you can submit an activation request through the Web Console. This will also require approval from a team administrator before the API Key can be reactivated.
+     *
+     * @return ResultResponse
+     * @see ResultResponse
+     */
+    @POST("/v1/apikey/disable")
+    Call<ResultResponse> disableApikey();
+}
diff --git a/src/main/java/com/safeheron/client/cosigner/CoSignerConverter.java b/src/main/java/com/safeheron/client/cosigner/CoSignerConverter.java
@@ -45,6 +45,12 @@ public class CoSignerConverter {
      * @param approvalCallbackServicePrivateKey
      */
     public CoSignerConverter(String coSignerPubKey, String approvalCallbackServicePrivateKey) {
+        if (coSignerPubKey.contains("-----BEGIN PUBLIC KEY-----")) {
+            coSignerPubKey = coSignerPubKey.replace("-----BEGIN PUBLIC KEY-----", "").replace("-----END PUBLIC KEY-----", "").replaceAll("\n", "");
+        }
+        if (approvalCallbackServicePrivateKey.contains("-----BEGIN PRIVATE KEY-----")) {
+            approvalCallbackServicePrivateKey = approvalCallbackServicePrivateKey.replace("-----BEGIN PRIVATE KEY-----", "").replace("-----END PRIVATE KEY-----", "").replaceAll("\n", "");
+        }
         this.coSignerPubKey = coSignerPubKey;
         this.approvalCallbackServicePrivateKey = approvalCallbackServicePrivateKey;
     }
@@ -74,13 +80,13 @@ public CoSignerBizContent requestConvert(CoSignerCallBack coSignerCallBack) thro
 
         // Use your RSA private key to decrypt request's aesKey and aesIv
         RSATypeEnum rsaType = StringUtils.isNotEmpty(coSignerCallBack.getRsaType()) && RSATypeEnum.valueByCode(coSignerCallBack.getRsaType()) != null ? RSATypeEnum.valueByCode(coSignerCallBack.getRsaType()) : RSATypeEnum.RSA;
-        byte[] aesSaltDecrypt = RsaUtil.decrypt(coSignerCallBack.getKey(), approvalCallbackServicePrivateKey,rsaType);
+        byte[] aesSaltDecrypt = RsaUtil.decrypt(coSignerCallBack.getKey(), approvalCallbackServicePrivateKey, rsaType);
         byte[] aesKey = Arrays.copyOfRange(aesSaltDecrypt, 0, 32);
         byte[] iv = Arrays.copyOfRange(aesSaltDecrypt, 32, aesSaltDecrypt.length);
 
         // Use AES to decrypt bizContent
         AESTypeEnum aesType = StringUtils.isNotEmpty(coSignerCallBack.getAesType()) && AESTypeEnum.valueByCode(coSignerCallBack.getAesType()) != null ? AESTypeEnum.valueByCode(coSignerCallBack.getAesType()) : AESTypeEnum.CBC;
-        String decrypt = AesUtil.decrypt(coSignerCallBack.getBizContent(), aesKey, iv,aesType);
+        String decrypt = AesUtil.decrypt(coSignerCallBack.getBizContent(), aesKey, iv, aesType);
         ObjectMapper mapper = JsonUtil.getObjectMapper();
 
         //Data conversion
diff --git a/src/main/java/com/safeheron/client/utils/ServiceCreator.java b/src/main/java/com/safeheron/client/utils/ServiceCreator.java
@@ -20,6 +20,12 @@ public class ServiceCreator {
     private static volatile Map<String, Retrofit> retrofitMap = new HashMap<>();
 
     public static <S> S create(Class<S> serviceClass, SafeheronConfig config) {
+        if (config.getSafeheronRsaPublicKey().contains("-----BEGIN PUBLIC KEY-----")) {
+            config.setSafeheronRsaPublicKey(config.getSafeheronRsaPublicKey().replace("-----BEGIN PUBLIC KEY-----", "").replace("-----END PUBLIC KEY-----", "").replaceAll("\n", ""));
+        }
+        if (config.getRsaPrivateKey().contains("-----BEGIN PRIVATE KEY-----")) {
+            config.setRsaPrivateKey(config.getRsaPrivateKey().replace("-----BEGIN PRIVATE KEY-----", "").replace("-----END PRIVATE KEY-----", "").replaceAll("\n", ""));
+        }
         Retrofit instance = getRetrofit(config);
         return instance.create(serviceClass);
     }
diff --git a/src/main/java/com/safeheron/client/webhook/WebhookConverter.java b/src/main/java/com/safeheron/client/webhook/WebhookConverter.java
@@ -39,6 +39,12 @@ public class WebhookConverter {
      * @param webHookRsaPrivateKey
      */
     public WebhookConverter(String safeheronWebHookRsaPublicKey, String webHookRsaPrivateKey) {
+        if (safeheronWebHookRsaPublicKey.contains("-----BEGIN PUBLIC KEY-----")) {
+            safeheronWebHookRsaPublicKey = safeheronWebHookRsaPublicKey.replace("-----BEGIN PUBLIC KEY-----", "").replace("-----END PUBLIC KEY-----", "").replaceAll("\n", "");
+        }
+        if (webHookRsaPrivateKey.contains("-----BEGIN PRIVATE KEY-----")) {
+            webHookRsaPrivateKey = webHookRsaPrivateKey.replace("-----BEGIN PRIVATE KEY-----", "").replace("-----END PRIVATE KEY-----", "").replaceAll("\n", "");
+        }
         this.safeheronWebHookRsaPublicKey = safeheronWebHookRsaPublicKey;
         this.webHookRsaPrivateKey = webHookRsaPrivateKey;
     }
@@ -68,13 +74,13 @@ public WebHookBizContent convert(WebHook webHook) throws Exception {
 
         // Use your RSA private key to decrypt response's aesKey and aesIv
         RSATypeEnum rsaType = StringUtils.isNotEmpty(webHook.getRsaType()) && RSATypeEnum.valueByCode(webHook.getRsaType()) != null ? RSATypeEnum.valueByCode(webHook.getRsaType()) : RSATypeEnum.RSA;
-        byte[] aesSaltDecrypt = RsaUtil.decrypt(webHook.getKey(), webHookRsaPrivateKey,rsaType);
+        byte[] aesSaltDecrypt = RsaUtil.decrypt(webHook.getKey(), webHookRsaPrivateKey, rsaType);
         byte[] aesKey = Arrays.copyOfRange(aesSaltDecrypt, 0, 32);
         byte[] iv = Arrays.copyOfRange(aesSaltDecrypt, 32, aesSaltDecrypt.length);
 
         // Use AES to decrypt bizContent
         AESTypeEnum aesType = StringUtils.isNotEmpty(webHook.getAesType()) && AESTypeEnum.valueByCode(webHook.getAesType()) != null ? AESTypeEnum.valueByCode(webHook.getAesType()) : AESTypeEnum.CBC;
-        String decrypt = AesUtil.decrypt(webHook.getBizContent(), aesKey, iv,aesType);
+        String decrypt = AesUtil.decrypt(webHook.getBizContent(), aesKey, iv, aesType);
         ObjectMapper mapper = JsonUtil.getObjectMapper();
 
         //Data conversion
