| <!DOCTYPE HTML> |
| <html lang="en"> |
| <head> |
| <title>Source code</title> |
| <link rel="stylesheet" type="text/css" href="../../../../../../stylesheet.css" title="Style"> |
| </head> |
| <body> |
| <main role="main"> |
| <div class="sourceContainer"> |
| <pre><span class="sourceLineNo">001</span><a id="line.1">package org.apache.archiva.redback.authentication;</a> |
| <span class="sourceLineNo">002</span><a id="line.2"></a> |
| <span class="sourceLineNo">003</span><a id="line.3">/*</a> |
| <span class="sourceLineNo">004</span><a id="line.4"> * Licensed to the Apache Software Foundation (ASF) under one</a> |
| <span class="sourceLineNo">005</span><a id="line.5"> * or more contributor license agreements. See the NOTICE file</a> |
| <span class="sourceLineNo">006</span><a id="line.6"> * distributed with this work for additional information</a> |
| <span class="sourceLineNo">007</span><a id="line.7"> * regarding copyright ownership. The ASF licenses this file</a> |
| <span class="sourceLineNo">008</span><a id="line.8"> * to you under the Apache License, Version 2.0 (the</a> |
| <span class="sourceLineNo">009</span><a id="line.9"> * "License"); you may not use this file except in compliance</a> |
| <span class="sourceLineNo">010</span><a id="line.10"> * with the License. You may obtain a copy of the License at</a> |
| <span class="sourceLineNo">011</span><a id="line.11"> *</a> |
| <span class="sourceLineNo">012</span><a id="line.12"> * http://www.apache.org/licenses/LICENSE-2.0</a> |
| <span class="sourceLineNo">013</span><a id="line.13"> *</a> |
| <span class="sourceLineNo">014</span><a id="line.14"> * Unless required by applicable law or agreed to in writing,</a> |
| <span class="sourceLineNo">015</span><a id="line.15"> * software distributed under the License is distributed on an</a> |
| <span class="sourceLineNo">016</span><a id="line.16"> * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY</a> |
| <span class="sourceLineNo">017</span><a id="line.17"> * KIND, either express or implied. See the License for the</a> |
| <span class="sourceLineNo">018</span><a id="line.18"> * specific language governing permissions and limitations</a> |
| <span class="sourceLineNo">019</span><a id="line.19"> * under the License.</a> |
| <span class="sourceLineNo">020</span><a id="line.20"> */</a> |
| <span class="sourceLineNo">021</span><a id="line.21"></a> |
| <span class="sourceLineNo">022</span><a id="line.22">import org.apache.commons.codec.binary.Base64;</a> |
| <span class="sourceLineNo">023</span><a id="line.23">import org.apache.commons.lang3.ArrayUtils;</a> |
| <span class="sourceLineNo">024</span><a id="line.24">import org.slf4j.Logger;</a> |
| <span class="sourceLineNo">025</span><a id="line.25">import org.slf4j.LoggerFactory;</a> |
| <span class="sourceLineNo">026</span><a id="line.26">import org.springframework.stereotype.Service;</a> |
| <span class="sourceLineNo">027</span><a id="line.27"></a> |
| <span class="sourceLineNo">028</span><a id="line.28">import javax.annotation.PostConstruct;</a> |
| <span class="sourceLineNo">029</span><a id="line.29">import javax.crypto.BadPaddingException;</a> |
| <span class="sourceLineNo">030</span><a id="line.30">import javax.crypto.Cipher;</a> |
| <span class="sourceLineNo">031</span><a id="line.31">import javax.crypto.IllegalBlockSizeException;</a> |
| <span class="sourceLineNo">032</span><a id="line.32">import javax.crypto.KeyGenerator;</a> |
| <span class="sourceLineNo">033</span><a id="line.33">import javax.crypto.NoSuchPaddingException;</a> |
| <span class="sourceLineNo">034</span><a id="line.34">import javax.crypto.SecretKey;</a> |
| <span class="sourceLineNo">035</span><a id="line.35">import javax.crypto.spec.IvParameterSpec;</a> |
| <span class="sourceLineNo">036</span><a id="line.36">import java.io.ByteArrayInputStream;</a> |
| <span class="sourceLineNo">037</span><a id="line.37">import java.io.ByteArrayOutputStream;</a> |
| <span class="sourceLineNo">038</span><a id="line.38">import java.io.IOException;</a> |
| <span class="sourceLineNo">039</span><a id="line.39">import java.io.InvalidClassException;</a> |
| <span class="sourceLineNo">040</span><a id="line.40">import java.io.ObjectInputStream;</a> |
| <span class="sourceLineNo">041</span><a id="line.41">import java.io.ObjectOutputStream;</a> |
| <span class="sourceLineNo">042</span><a id="line.42">import java.security.InvalidAlgorithmParameterException;</a> |
| <span class="sourceLineNo">043</span><a id="line.43">import java.security.InvalidKeyException;</a> |
| <span class="sourceLineNo">044</span><a id="line.44">import java.security.NoSuchAlgorithmException;</a> |
| <span class="sourceLineNo">045</span><a id="line.45">import java.security.SecureRandom;</a> |
| <span class="sourceLineNo">046</span><a id="line.46">import java.util.Arrays;</a> |
| <span class="sourceLineNo">047</span><a id="line.47"></a> |
| <span class="sourceLineNo">048</span><a id="line.48"></a> |
| <span class="sourceLineNo">049</span><a id="line.49">/**</a> |
| <span class="sourceLineNo">050</span><a id="line.50"> *</a> |
| <span class="sourceLineNo">051</span><a id="line.51"> * Class that manages tokens that are encrypted with a dynamic key. The tokens</a> |
| <span class="sourceLineNo">052</span><a id="line.52"> * are converted into BASE64 strings.</a> |
| <span class="sourceLineNo">053</span><a id="line.53"> *</a> |
| <span class="sourceLineNo">054</span><a id="line.54"> * Each token contains information about username,</a> |
| <span class="sourceLineNo">055</span><a id="line.55"> *</a> |
| <span class="sourceLineNo">056</span><a id="line.56"> * Created by Martin Stockhammer on 03.02.17.</a> |
| <span class="sourceLineNo">057</span><a id="line.57"> */</a> |
| <span class="sourceLineNo">058</span><a id="line.58">@Service("tokenManager#jce")</a> |
| <span class="sourceLineNo">059</span><a id="line.59">public class TokenManager {</a> |
| <span class="sourceLineNo">060</span><a id="line.60"></a> |
| <span class="sourceLineNo">061</span><a id="line.61"> private final ThreadLocal<SecureRandom> rd = new ThreadLocal<SecureRandom>();</a> |
| <span class="sourceLineNo">062</span><a id="line.62"> private final Logger log = LoggerFactory.getLogger(getClass());</a> |
| <span class="sourceLineNo">063</span><a id="line.63"> private String algorithm = "AES/CBC/PKCS5Padding";</a> |
| <span class="sourceLineNo">064</span><a id="line.64"> private int keySize = -1;</a> |
| <span class="sourceLineNo">065</span><a id="line.65"> private int ivSize = -1;</a> |
| <span class="sourceLineNo">066</span><a id="line.66"> private SecretKey secretKey;</a> |
| <span class="sourceLineNo">067</span><a id="line.67"></a> |
| <span class="sourceLineNo">068</span><a id="line.68"> boolean paddingUsed = true;</a> |
| <span class="sourceLineNo">069</span><a id="line.69"></a> |
| <span class="sourceLineNo">070</span><a id="line.70"></a> |
| <span class="sourceLineNo">071</span><a id="line.71"> @PostConstruct</a> |
| <span class="sourceLineNo">072</span><a id="line.72"> public void initialize() throws NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeyException, EncryptionFailedException, InvalidAlgorithmParameterException {</a> |
| <span class="sourceLineNo">073</span><a id="line.73"> log.debug("Initializing key for token generator");</a> |
| <span class="sourceLineNo">074</span><a id="line.74"> try {</a> |
| <span class="sourceLineNo">075</span><a id="line.75"> rd.set(new SecureRandom());</a> |
| <span class="sourceLineNo">076</span><a id="line.76"> Cipher enCipher = Cipher.getInstance(algorithm);</a> |
| <span class="sourceLineNo">077</span><a id="line.77"> String[] keyAlg = enCipher.getAlgorithm().split("/");</a> |
| <span class="sourceLineNo">078</span><a id="line.78"> if (keyAlg.length<1) {</a> |
| <span class="sourceLineNo">079</span><a id="line.79"> throw new EncryptionFailedException("Initialization of key failed. Not algorithm found.");</a> |
| <span class="sourceLineNo">080</span><a id="line.80"> }</a> |
| <span class="sourceLineNo">081</span><a id="line.81"> String encryptionAlgorithm = keyAlg[0];</a> |
| <span class="sourceLineNo">082</span><a id="line.82"> KeyGenerator keyGen = KeyGenerator.getInstance(encryptionAlgorithm);</a> |
| <span class="sourceLineNo">083</span><a id="line.83"> if (keySize>0) {</a> |
| <span class="sourceLineNo">084</span><a id="line.84"> keyGen.init(keySize);</a> |
| <span class="sourceLineNo">085</span><a id="line.85"> }</a> |
| <span class="sourceLineNo">086</span><a id="line.86"> if (keyAlg.length==3 && keyAlg[2].equals("NoPadding")) {</a> |
| <span class="sourceLineNo">087</span><a id="line.87"> paddingUsed=false;</a> |
| <span class="sourceLineNo">088</span><a id="line.88"> }</a> |
| <span class="sourceLineNo">089</span><a id="line.89"> this.secretKey = keyGen.generateKey();</a> |
| <span class="sourceLineNo">090</span><a id="line.90"> enCipher.init(Cipher.ENCRYPT_MODE, secretKey);</a> |
| <span class="sourceLineNo">091</span><a id="line.91"> // We have to provide the IV depending on the algorithm used</a> |
| <span class="sourceLineNo">092</span><a id="line.92"> // CBC needs an IV, ECB not.</a> |
| <span class="sourceLineNo">093</span><a id="line.93"> if (enCipher.getIV()==null) {</a> |
| <span class="sourceLineNo">094</span><a id="line.94"> ivSize=-1;</a> |
| <span class="sourceLineNo">095</span><a id="line.95"> } else {</a> |
| <span class="sourceLineNo">096</span><a id="line.96"> ivSize=enCipher.getIV().length;</a> |
| <span class="sourceLineNo">097</span><a id="line.97"> }</a> |
| <span class="sourceLineNo">098</span><a id="line.98"> } catch (NoSuchAlgorithmException e) {</a> |
| <span class="sourceLineNo">099</span><a id="line.99"> log.error("Error occurred during key initialization. Requested algorithm not available. "+e.getMessage());</a> |
| <span class="sourceLineNo">100</span><a id="line.100"> throw e;</a> |
| <span class="sourceLineNo">101</span><a id="line.101"> } catch (NoSuchPaddingException e) {</a> |
| <span class="sourceLineNo">102</span><a id="line.102"> log.error("Error occurred during key initialization. Requested padding not available. "+e.getMessage());</a> |
| <span class="sourceLineNo">103</span><a id="line.103"> throw e;</a> |
| <span class="sourceLineNo">104</span><a id="line.104"> } catch (InvalidKeyException e) {</a> |
| <span class="sourceLineNo">105</span><a id="line.105"> log.error("The key is not valid.");</a> |
| <span class="sourceLineNo">106</span><a id="line.106"> throw e;</a> |
| <span class="sourceLineNo">107</span><a id="line.107"> }</a> |
| <span class="sourceLineNo">108</span><a id="line.108"> }</a> |
| <span class="sourceLineNo">109</span><a id="line.109"></a> |
| <span class="sourceLineNo">110</span><a id="line.110"> public String encryptToken(String user, long lifetime) throws EncryptionFailedException {</a> |
| <span class="sourceLineNo">111</span><a id="line.111"> return encryptToken(new SimpleTokenData(user, lifetime, createNonce()));</a> |
| <span class="sourceLineNo">112</span><a id="line.112"> }</a> |
| <span class="sourceLineNo">113</span><a id="line.113"></a> |
| <span class="sourceLineNo">114</span><a id="line.114"> public String encryptToken(TokenData tokenData) throws EncryptionFailedException {</a> |
| <span class="sourceLineNo">115</span><a id="line.115"> try {</a> |
| <span class="sourceLineNo">116</span><a id="line.116"> return encode(encrypt(tokenData));</a> |
| <span class="sourceLineNo">117</span><a id="line.117"> } catch (IOException e) {</a> |
| <span class="sourceLineNo">118</span><a id="line.118"> log.error("Error during object conversion: "+e.getMessage());</a> |
| <span class="sourceLineNo">119</span><a id="line.119"> throw new EncryptionFailedException(e);</a> |
| <span class="sourceLineNo">120</span><a id="line.120"> } catch (BadPaddingException e) {</a> |
| <span class="sourceLineNo">121</span><a id="line.121"> log.error("Padding invalid");</a> |
| <span class="sourceLineNo">122</span><a id="line.122"> throw new EncryptionFailedException(e);</a> |
| <span class="sourceLineNo">123</span><a id="line.123"> } catch (IllegalBlockSizeException e) {</a> |
| <span class="sourceLineNo">124</span><a id="line.124"> log.error("Block size invalid");</a> |
| <span class="sourceLineNo">125</span><a id="line.125"> throw new EncryptionFailedException(e);</a> |
| <span class="sourceLineNo">126</span><a id="line.126"> } catch (NoSuchPaddingException e) {</a> |
| <span class="sourceLineNo">127</span><a id="line.127"> log.error("Padding not available "+algorithm);</a> |
| <span class="sourceLineNo">128</span><a id="line.128"> throw new EncryptionFailedException(e);</a> |
| <span class="sourceLineNo">129</span><a id="line.129"> } catch (InvalidKeyException e) {</a> |
| <span class="sourceLineNo">130</span><a id="line.130"> log.error("Bad encryption key");</a> |
| <span class="sourceLineNo">131</span><a id="line.131"> throw new EncryptionFailedException(e);</a> |
| <span class="sourceLineNo">132</span><a id="line.132"> } catch (NoSuchAlgorithmException e) {</a> |
| <span class="sourceLineNo">133</span><a id="line.133"> log.error("Bad encryption algorithm "+algorithm);</a> |
| <span class="sourceLineNo">134</span><a id="line.134"> throw new EncryptionFailedException(e);</a> |
| <span class="sourceLineNo">135</span><a id="line.135"> } catch (InvalidAlgorithmParameterException e) {</a> |
| <span class="sourceLineNo">136</span><a id="line.136"> log.error("Invalid encryption parameters");</a> |
| <span class="sourceLineNo">137</span><a id="line.137"> throw new EncryptionFailedException(e);</a> |
| <span class="sourceLineNo">138</span><a id="line.138"> }</a> |
| <span class="sourceLineNo">139</span><a id="line.139"> }</a> |
| <span class="sourceLineNo">140</span><a id="line.140"></a> |
| <span class="sourceLineNo">141</span><a id="line.141"> public TokenData decryptToken(String token) throws InvalidTokenException {</a> |
| <span class="sourceLineNo">142</span><a id="line.142"> try {</a> |
| <span class="sourceLineNo">143</span><a id="line.143"> return decrypt(decode(token));</a> |
| <span class="sourceLineNo">144</span><a id="line.144"> } catch (IOException ex) {</a> |
| <span class="sourceLineNo">145</span><a id="line.145"> log.error("Error during data read. " + ex.getMessage());</a> |
| <span class="sourceLineNo">146</span><a id="line.146"> throw new InvalidTokenException(ex);</a> |
| <span class="sourceLineNo">147</span><a id="line.147"> } catch (ClassNotFoundException ex) {</a> |
| <span class="sourceLineNo">148</span><a id="line.148"> log.error("Token data invalid.");</a> |
| <span class="sourceLineNo">149</span><a id="line.149"> throw new InvalidTokenException(ex);</a> |
| <span class="sourceLineNo">150</span><a id="line.150"> } catch (BadPaddingException ex) {</a> |
| <span class="sourceLineNo">151</span><a id="line.151"> log.error("The encrypted token has the wrong padding.");</a> |
| <span class="sourceLineNo">152</span><a id="line.152"> throw new InvalidTokenException(ex);</a> |
| <span class="sourceLineNo">153</span><a id="line.153"> } catch (IllegalBlockSizeException ex) {</a> |
| <span class="sourceLineNo">154</span><a id="line.154"> log.error("The encrypted token has the wrong block size.");</a> |
| <span class="sourceLineNo">155</span><a id="line.155"> throw new InvalidTokenException(ex);</a> |
| <span class="sourceLineNo">156</span><a id="line.156"> } catch (NoSuchPaddingException e) {</a> |
| <span class="sourceLineNo">157</span><a id="line.157"> log.error("Padding not available "+algorithm);</a> |
| <span class="sourceLineNo">158</span><a id="line.158"> throw new InvalidTokenException(e);</a> |
| <span class="sourceLineNo">159</span><a id="line.159"> } catch (InvalidKeyException e) {</a> |
| <span class="sourceLineNo">160</span><a id="line.160"> log.error("Invalid decryption key");</a> |
| <span class="sourceLineNo">161</span><a id="line.161"> throw new InvalidTokenException(e);</a> |
| <span class="sourceLineNo">162</span><a id="line.162"> } catch (NoSuchAlgorithmException e) {</a> |
| <span class="sourceLineNo">163</span><a id="line.163"> log.error("Encryption algorithm not available "+algorithm);</a> |
| <span class="sourceLineNo">164</span><a id="line.164"> throw new InvalidTokenException(e);</a> |
| <span class="sourceLineNo">165</span><a id="line.165"> } catch (InvalidAlgorithmParameterException e) {</a> |
| <span class="sourceLineNo">166</span><a id="line.166"> log.error("Invalid encryption parameters");</a> |
| <span class="sourceLineNo">167</span><a id="line.167"> throw new InvalidTokenException(e);</a> |
| <span class="sourceLineNo">168</span><a id="line.168"> }</a> |
| <span class="sourceLineNo">169</span><a id="line.169"> }</a> |
| <span class="sourceLineNo">170</span><a id="line.170"></a> |
| <span class="sourceLineNo">171</span><a id="line.171"> private long createNonce() {</a> |
| <span class="sourceLineNo">172</span><a id="line.172"> if (rd.get()==null) {</a> |
| <span class="sourceLineNo">173</span><a id="line.173"> rd.set(new SecureRandom());</a> |
| <span class="sourceLineNo">174</span><a id="line.174"> }</a> |
| <span class="sourceLineNo">175</span><a id="line.175"> return rd.get().nextLong();</a> |
| <span class="sourceLineNo">176</span><a id="line.176"> }</a> |
| <span class="sourceLineNo">177</span><a id="line.177"></a> |
| <span class="sourceLineNo">178</span><a id="line.178"> protected byte[] encrypt(TokenData info) throws IOException, BadPaddingException, IllegalBlockSizeException, NoSuchPaddingException, NoSuchAlgorithmException, InvalidAlgorithmParameterException, InvalidKeyException {</a> |
| <span class="sourceLineNo">179</span><a id="line.179"> return doEncrypt(convertToByteArray(info), info.getNonce());</a> |
| <span class="sourceLineNo">180</span><a id="line.180"> }</a> |
| <span class="sourceLineNo">181</span><a id="line.181"></a> |
| <span class="sourceLineNo">182</span><a id="line.182"> private byte[] getIv(long nonce) {</a> |
| <span class="sourceLineNo">183</span><a id="line.183"> byte[] iv = new byte[ivSize];</a> |
| <span class="sourceLineNo">184</span><a id="line.184"> SecureRandom sr = getRandomGenerator();</a> |
| <span class="sourceLineNo">185</span><a id="line.185"> sr.setSeed(nonce);</a> |
| <span class="sourceLineNo">186</span><a id="line.186"> sr.nextBytes(iv);</a> |
| <span class="sourceLineNo">187</span><a id="line.187"> return iv;</a> |
| <span class="sourceLineNo">188</span><a id="line.188"> }</a> |
| <span class="sourceLineNo">189</span><a id="line.189"></a> |
| <span class="sourceLineNo">190</span><a id="line.190"> protected byte[] doEncrypt(byte[] data, long nonce) throws BadPaddingException, IllegalBlockSizeException, NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeyException, InvalidAlgorithmParameterException {</a> |
| <span class="sourceLineNo">191</span><a id="line.191"> Cipher cipher = getEnCipher();</a> |
| <span class="sourceLineNo">192</span><a id="line.192"> byte[] encData;</a> |
| <span class="sourceLineNo">193</span><a id="line.193"> byte[] iv;</a> |
| <span class="sourceLineNo">194</span><a id="line.194"> if (ivSize>0) {</a> |
| <span class="sourceLineNo">195</span><a id="line.195"> iv = getIv(nonce);</a> |
| <span class="sourceLineNo">196</span><a id="line.196"> cipher.init(Cipher.ENCRYPT_MODE,this.secretKey,new IvParameterSpec(iv));</a> |
| <span class="sourceLineNo">197</span><a id="line.197"> } else {</a> |
| <span class="sourceLineNo">198</span><a id="line.198"> iv = new byte[0];</a> |
| <span class="sourceLineNo">199</span><a id="line.199"> cipher.init(Cipher.ENCRYPT_MODE,this.secretKey);</a> |
| <span class="sourceLineNo">200</span><a id="line.200"> }</a> |
| <span class="sourceLineNo">201</span><a id="line.201"> if (!paddingUsed && (data.length % cipher.getBlockSize())!=0) {</a> |
| <span class="sourceLineNo">202</span><a id="line.202"> int blocks = data.length / cipher.getBlockSize();</a> |
| <span class="sourceLineNo">203</span><a id="line.203"> encData = Arrays.copyOf(data, cipher.getBlockSize()*(blocks+1));</a> |
| <span class="sourceLineNo">204</span><a id="line.204"> } else {</a> |
| <span class="sourceLineNo">205</span><a id="line.205"> encData = data;</a> |
| <span class="sourceLineNo">206</span><a id="line.206"> }</a> |
| <span class="sourceLineNo">207</span><a id="line.207"> byte[] encrypted = cipher.doFinal(encData);</a> |
| <span class="sourceLineNo">208</span><a id="line.208"> // prepending the iv to the token</a> |
| <span class="sourceLineNo">209</span><a id="line.209"> return ArrayUtils.addAll(iv,encrypted);</a> |
| <span class="sourceLineNo">210</span><a id="line.210"> }</a> |
| <span class="sourceLineNo">211</span><a id="line.211"></a> |
| <span class="sourceLineNo">212</span><a id="line.212"> protected TokenData decrypt(byte[] token) throws BadPaddingException, IllegalBlockSizeException, IOException, ClassNotFoundException, InvalidAlgorithmParameterException, NoSuchAlgorithmException, InvalidKeyException, NoSuchPaddingException {</a> |
| <span class="sourceLineNo">213</span><a id="line.213"> Object result = convertFromByteArray(doDecrypt(token));</a> |
| <span class="sourceLineNo">214</span><a id="line.214"> if (!(result instanceof TokenData)) {</a> |
| <span class="sourceLineNo">215</span><a id="line.215"> throw new InvalidClassException("No TokenData found in decrypted token");</a> |
| <span class="sourceLineNo">216</span><a id="line.216"> }</a> |
| <span class="sourceLineNo">217</span><a id="line.217"> return (TokenData)result;</a> |
| <span class="sourceLineNo">218</span><a id="line.218"> }</a> |
| <span class="sourceLineNo">219</span><a id="line.219"></a> |
| <span class="sourceLineNo">220</span><a id="line.220"> protected byte[] doDecrypt(byte[] encryptedData) throws BadPaddingException, IllegalBlockSizeException, NoSuchAlgorithmException, NoSuchPaddingException, InvalidAlgorithmParameterException, InvalidKeyException {</a> |
| <span class="sourceLineNo">221</span><a id="line.221"> Cipher cipher = getDeCipher();</a> |
| <span class="sourceLineNo">222</span><a id="line.222"> if (ivSize>0) {</a> |
| <span class="sourceLineNo">223</span><a id="line.223"> byte[] iv = Arrays.copyOfRange(encryptedData,0,ivSize);</a> |
| <span class="sourceLineNo">224</span><a id="line.224"> cipher.init(Cipher.DECRYPT_MODE,this.secretKey,new IvParameterSpec(iv));</a> |
| <span class="sourceLineNo">225</span><a id="line.225"> return cipher.doFinal(encryptedData,ivSize,encryptedData.length-ivSize);</a> |
| <span class="sourceLineNo">226</span><a id="line.226"> } else {</a> |
| <span class="sourceLineNo">227</span><a id="line.227"> cipher.init(Cipher.DECRYPT_MODE,this.secretKey);</a> |
| <span class="sourceLineNo">228</span><a id="line.228"> return cipher.doFinal(encryptedData);</a> |
| <span class="sourceLineNo">229</span><a id="line.229"> }</a> |
| <span class="sourceLineNo">230</span><a id="line.230"> }</a> |
| <span class="sourceLineNo">231</span><a id="line.231"></a> |
| <span class="sourceLineNo">232</span><a id="line.232"> private SecureRandom getRandomGenerator() {</a> |
| <span class="sourceLineNo">233</span><a id="line.233"> if (rd.get()==null) {</a> |
| <span class="sourceLineNo">234</span><a id="line.234"> rd.set(new SecureRandom());</a> |
| <span class="sourceLineNo">235</span><a id="line.235"> }</a> |
| <span class="sourceLineNo">236</span><a id="line.236"> return rd.get();</a> |
| <span class="sourceLineNo">237</span><a id="line.237"> }</a> |
| <span class="sourceLineNo">238</span><a id="line.238"></a> |
| <span class="sourceLineNo">239</span><a id="line.239"> private Cipher getEnCipher() throws NoSuchPaddingException, NoSuchAlgorithmException {</a> |
| <span class="sourceLineNo">240</span><a id="line.240"> return Cipher.getInstance(algorithm);</a> |
| <span class="sourceLineNo">241</span><a id="line.241"> }</a> |
| <span class="sourceLineNo">242</span><a id="line.242"></a> |
| <span class="sourceLineNo">243</span><a id="line.243"> private Cipher getDeCipher() throws NoSuchPaddingException, NoSuchAlgorithmException {</a> |
| <span class="sourceLineNo">244</span><a id="line.244"> return Cipher.getInstance(algorithm);</a> |
| <span class="sourceLineNo">245</span><a id="line.245"> }</a> |
| <span class="sourceLineNo">246</span><a id="line.246"></a> |
| <span class="sourceLineNo">247</span><a id="line.247"> private String encode(byte[] token) {</a> |
| <span class="sourceLineNo">248</span><a id="line.248"> return Base64.encodeBase64String(token);</a> |
| <span class="sourceLineNo">249</span><a id="line.249"> }</a> |
| <span class="sourceLineNo">250</span><a id="line.250"></a> |
| <span class="sourceLineNo">251</span><a id="line.251"> private byte[] decode(String token) {</a> |
| <span class="sourceLineNo">252</span><a id="line.252"> return Base64.decodeBase64(token);</a> |
| <span class="sourceLineNo">253</span><a id="line.253"> }</a> |
| <span class="sourceLineNo">254</span><a id="line.254"></a> |
| <span class="sourceLineNo">255</span><a id="line.255"></a> |
| <span class="sourceLineNo">256</span><a id="line.256"> private Object convertFromByteArray(byte[] byteObject) throws IOException,</a> |
| <span class="sourceLineNo">257</span><a id="line.257"> ClassNotFoundException {</a> |
| <span class="sourceLineNo">258</span><a id="line.258"> ByteArrayInputStream bais;</a> |
| <span class="sourceLineNo">259</span><a id="line.259"> ObjectInputStream in;</a> |
| <span class="sourceLineNo">260</span><a id="line.260"> bais = new ByteArrayInputStream(byteObject);</a> |
| <span class="sourceLineNo">261</span><a id="line.261"> in = new ObjectInputStream(bais);</a> |
| <span class="sourceLineNo">262</span><a id="line.262"> Object o = in.readObject();</a> |
| <span class="sourceLineNo">263</span><a id="line.263"> in.close();</a> |
| <span class="sourceLineNo">264</span><a id="line.264"> return o;</a> |
| <span class="sourceLineNo">265</span><a id="line.265"></a> |
| <span class="sourceLineNo">266</span><a id="line.266"> }</a> |
| <span class="sourceLineNo">267</span><a id="line.267"></a> |
| <span class="sourceLineNo">268</span><a id="line.268"></a> |
| <span class="sourceLineNo">269</span><a id="line.269"> private byte[] convertToByteArray(Object complexObject) throws IOException {</a> |
| <span class="sourceLineNo">270</span><a id="line.270"> ByteArrayOutputStream baos;</a> |
| <span class="sourceLineNo">271</span><a id="line.271"> ObjectOutputStream out;</a> |
| <span class="sourceLineNo">272</span><a id="line.272"> baos = new ByteArrayOutputStream();</a> |
| <span class="sourceLineNo">273</span><a id="line.273"> out = new ObjectOutputStream(baos);</a> |
| <span class="sourceLineNo">274</span><a id="line.274"> out.writeObject(complexObject);</a> |
| <span class="sourceLineNo">275</span><a id="line.275"> out.close();</a> |
| <span class="sourceLineNo">276</span><a id="line.276"> return baos.toByteArray();</a> |
| <span class="sourceLineNo">277</span><a id="line.277"> }</a> |
| <span class="sourceLineNo">278</span><a id="line.278"></a> |
| <span class="sourceLineNo">279</span><a id="line.279"> public String getAlgorithm() {</a> |
| <span class="sourceLineNo">280</span><a id="line.280"> return algorithm;</a> |
| <span class="sourceLineNo">281</span><a id="line.281"> }</a> |
| <span class="sourceLineNo">282</span><a id="line.282"></a> |
| <span class="sourceLineNo">283</span><a id="line.283"> /**</a> |
| <span class="sourceLineNo">284</span><a id="line.284"> * Sets the encryption algorithm and resets the key size. You may change the key size after</a> |
| <span class="sourceLineNo">285</span><a id="line.285"> * calling this method.</a> |
| <span class="sourceLineNo">286</span><a id="line.286"> * Additionally run the initialize() method after setting algorithm and keysize.</a> |
| <span class="sourceLineNo">287</span><a id="line.287"> *</a> |
| <span class="sourceLineNo">288</span><a id="line.288"> *</a> |
| <span class="sourceLineNo">289</span><a id="line.289"> * @param algorithm The encryption algorithm to use.</a> |
| <span class="sourceLineNo">290</span><a id="line.290"> */</a> |
| <span class="sourceLineNo">291</span><a id="line.291"> public void setAlgorithm(String algorithm) {</a> |
| <span class="sourceLineNo">292</span><a id="line.292"> if (!this.algorithm.equals(algorithm)) {</a> |
| <span class="sourceLineNo">293</span><a id="line.293"> this.algorithm = algorithm;</a> |
| <span class="sourceLineNo">294</span><a id="line.294"> this.keySize=-1;</a> |
| <span class="sourceLineNo">295</span><a id="line.295"> }</a> |
| <span class="sourceLineNo">296</span><a id="line.296"> }</a> |
| <span class="sourceLineNo">297</span><a id="line.297"></a> |
| <span class="sourceLineNo">298</span><a id="line.298"> public int getKeySize() {</a> |
| <span class="sourceLineNo">299</span><a id="line.299"> return keySize;</a> |
| <span class="sourceLineNo">300</span><a id="line.300"> }</a> |
| <span class="sourceLineNo">301</span><a id="line.301"></a> |
| <span class="sourceLineNo">302</span><a id="line.302"> /**</a> |
| <span class="sourceLineNo">303</span><a id="line.303"> * Sets the key size for the encryption. This method must be called after</a> |
| <span class="sourceLineNo">304</span><a id="line.304"> * setting the algorithm. The keysize will be reset by calling <code>setAlgorithm()</code></a> |
| <span class="sourceLineNo">305</span><a id="line.305"> *</a> |
| <span class="sourceLineNo">306</span><a id="line.306"> * The key size must be valid for the given algorithm.</a> |
| <span class="sourceLineNo">307</span><a id="line.307"> *</a> |
| <span class="sourceLineNo">308</span><a id="line.308"> * @param keySize The size of the encryption key</a> |
| <span class="sourceLineNo">309</span><a id="line.309"> */</a> |
| <span class="sourceLineNo">310</span><a id="line.310"> public void setKeySize(int keySize) {</a> |
| <span class="sourceLineNo">311</span><a id="line.311"> this.keySize = keySize;</a> |
| <span class="sourceLineNo">312</span><a id="line.312"> }</a> |
| <span class="sourceLineNo">313</span><a id="line.313">}</a> |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| </pre> |
| </div> |
| </main> |
| </body> |
| </html> |