[Java] Upgrade http signature library to version 1.4 (#6370)

* Mustache template should use invokerPackage tag to generate import

* upgrade to http signature library version 1.4

* Use updated HTTP signature library

* Run sample scripts

* Add code samples in README file for HTTP signature

* fix java imports

* Update http-signature version

samples/client/petstore/java/jersey2-java8/pom.xml

@@ -299,7 +299,7 @@
         <jackson-databind-version>2.10.4</jackson-databind-version>
         <jackson-databind-nullable-version>0.2.1</jackson-databind-nullable-version>
         <junit-version>4.13</junit-version>
-        <http-signature-version>1.3</http-signature-version>
+        <http-signature-version>1.4</http-signature-version>
         <scribejava-apis-version>6.9.0</scribejava-apis-version>
     </properties>
 </project>

samples/client/petstore/java/jersey2-java8/src/main/java/org/openapitools/client/auth/HttpSignatureAuth.java

@@ -27,8 +27,12 @@ import java.util.Date;
 import java.util.Locale;
 import java.util.Map;
 import java.util.List;
+import java.security.spec.AlgorithmParameterSpec;
 
-import org.tomitribe.auth.signatures.*;
+import org.tomitribe.auth.signatures.Algorithm;
+import org.tomitribe.auth.signatures.Signer;
+import org.tomitribe.auth.signatures.Signature;
+import org.tomitribe.auth.signatures.SigningAlgorithm;
 
 /**
  * A Configuration object for the HTTP message signature security scheme.
@@ -41,8 +45,14 @@ public class HttpSignatureAuth implements Authentication {
   private String keyId;
 
   // The HTTP signature algorithm.
+  private SigningAlgorithm signingAlgorithm;
+
+  // The HTTP cryptographic algorithm.
   private Algorithm algorithm;
 
+  // The cryptographic parameters.
+  private AlgorithmParameterSpec parameterSpec;
+
   // The list of HTTP headers that should be included in the HTTP signature.
   private List<String> headers;
 
@@ -53,14 +63,23 @@ public class HttpSignatureAuth implements Authentication {
    * Construct a new HTTP signature auth configuration object.
    *
    * @param keyId An opaque string that the server can use to look up the component they need to validate the signature.
-   * @param algorithm The signature algorithm.
+   * @param signingAlgorithm The signature algorithm.
+   * @param algorithm The cryptographic algorithm.
+   * @param digestAlgorithm The digest algorithm.
    * @param headers The list of HTTP headers that should be included in the HTTP signature.
    */
-  public HttpSignatureAuth(String keyId, Algorithm algorithm, List<String> headers) {
+  public HttpSignatureAuth(String keyId,
+                           SigningAlgorithm signingAlgorithm,
+                           Algorithm algorithm,
+                           String digestAlgorithm,
+                           AlgorithmParameterSpec parameterSpec,
+                           List<String> headers) {
     this.keyId = keyId;
+    this.signingAlgorithm = signingAlgorithm;
     this.algorithm = algorithm;
+    this.parameterSpec = parameterSpec;
+    this.digestAlgorithm = digestAlgorithm;
     this.headers = headers;
-    this.digestAlgorithm = "SHA-256";
   }
 
   /**
@@ -84,19 +103,51 @@ public class HttpSignatureAuth implements Authentication {
   /**
    * Returns the HTTP signature algorithm which is used to sign HTTP requests.
    */
-  public Algorithm getAlgorithm() {
-    return algorithm;
+  public SigningAlgorithm getSigningAlgorithm() {
+    return signingAlgorithm;
   }
 
   /**
    * Sets the HTTP signature algorithm which is used to sign HTTP requests.
    *
+   * @param signingAlgorithm The HTTP signature algorithm.
+   */
+  public void setSigningAlgorithm(SigningAlgorithm signingAlgorithm) {
+    this.signingAlgorithm = signingAlgorithm;
+  }
+
+  /**
+   * Returns the HTTP cryptographic algorithm which is used to sign HTTP requests.
+   */
+  public Algorithm getAlgorithm() {
+    return algorithm;
+  }
+
+  /**
+   * Sets the HTTP cryptographic algorithm which is used to sign HTTP requests.
+   *
    * @param algorithm The HTTP signature algorithm.
    */
   public void setAlgorithm(Algorithm algorithm) {
     this.algorithm = algorithm;
   }
 
+  /**
+   * Returns the cryptographic parameters which are used to sign HTTP requests.
+   */
+  public AlgorithmParameterSpec getAlgorithmParameterSpec() {
+    return parameterSpec;
+  }
+
+  /**
+   * Sets the cryptographic parameters which are used to sign HTTP requests.
+   *
+   * @param parameterSpec The cryptographic parameters.
+   */
+  public void setAlgorithmParameterSpec(AlgorithmParameterSpec parameterSpec) {
+    this.parameterSpec = parameterSpec;
+  }
+
   /**
    * Returns the digest algorithm which is used to calculate a cryptographic digest of the HTTP request body.
    *
@@ -138,10 +189,20 @@ public class HttpSignatureAuth implements Authentication {
     this.headers = headers;
   }
 
+  /**
+   * Returns the signer instance used to sign HTTP messages.
+   *
+   * @returrn the signer instance.
+   */
   public Signer getSigner() {
     return signer;
   }
 
+  /**
+   * Sets the signer instance used to sign HTTP messages.
+   *
+   * @param signer The signer instance to set.
+   */
   public void setSigner(Signer signer) {
     this.signer = signer;
   }
@@ -156,7 +217,7 @@ public class HttpSignatureAuth implements Authentication {
       throw new ApiException("Private key (java.security.Key) cannot be null");
     }
 
-    signer = new Signer(key, new Signature(keyId, algorithm, null, headers));
+    signer = new Signer(key, new Signature(keyId, signingAlgorithm, algorithm, parameterSpec, null, headers));
   }
 
   @Override