| /* |
| * Copyright 2004,2005 The Apache Software Foundation. |
| * |
| * Licensed under the Apache License, Version 2.0 (the "License"); |
| * you may not use this file except in compliance with the License. |
| * You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| package org.apache.ws.security.policy.model; |
| |
| import org.apache.ws.security.policy.Constants; |
| import org.apache.ws.security.policy.WSSPolicyException; |
| |
| public class AlgorithmSuite extends PolicyEngineData { |
| |
| private String symmetricSignature = Constants.HMAC_SHA1; |
| |
| private String asymmetricSignature = Constants.RSA_SHA1; |
| |
| private String computedKey = Constants.P_SHA1; |
| |
| private int maximumSymmetricKeyLength = 256; |
| |
| private int minimumAsymmetricKeyLength = 1024; |
| |
| private int maximumAsymmetricKeyLength = 4096; |
| |
| private String digest; |
| |
| private String encryption; |
| |
| private String symmetricKeyWrap; |
| |
| private String asymmetricKeyWrap; |
| |
| private String encryptionKeyDerivation; |
| |
| private String signatureKeyDerivation; |
| |
| private int minimumSymmetricKeyLength; |
| |
| private String c14n = Constants.EX_C14N; |
| |
| private String soapNormalization; |
| |
| private String strTransform; |
| |
| private String xPath; |
| |
| // public AlgorithmSuite (String algoSuite) throws WSSPolicyException { |
| // this.setAlgorithmSuite(algoSuite); |
| // } |
| |
| /** |
| * Set the algorithm suite |
| * @param algoSuite |
| * @throws WSSPolicyException |
| * @see Constants#ALGO_SUITE_BASIC128 |
| * @see Constants#ALGO_SUITE_BASIC128_RSA15 |
| * @see Constants#ALGO_SUITE_BASIC128_SHA256 |
| * @see Constants#ALGO_SUITE_BASIC128_SHA256_RSA15 |
| * @see Constants#ALGO_SUITE_BASIC192 |
| * @see Constants#ALGO_SUITE_BASIC192_RSA15 |
| * @see Constants#ALGO_SUITE_BASIC192_SHA256 |
| * @see Constants#ALGO_SUITE_BASIC192_SHA256_RSA15 |
| * @see Constants#ALGO_SUITE_BASIC256 |
| * @see Constants#ALGO_SUITE_BASIC256_RSA15 |
| * @see Constants#ALGO_SUITE_BASIC256_SHA256 |
| * @see Constants#ALGO_SUITE_BASIC256_SHA256_RSA15 |
| * @see Constants#ALGO_SUITE_TRIPLE_DES |
| * @see Constants#ALGO_SUITE_TRIPLE_DES_RSA15 |
| * @see Constants#ALGO_SUITE_TRIPLE_DES_SHA256 |
| * @see Constants#ALGO_SUITE_TRIPLE_DES_SHA256_RSA15 |
| */ |
| public void setAlgorithmSuite(String algoSuite) throws WSSPolicyException { |
| //TODO: Optimize this :-) |
| if(Constants.ALGO_SUITE_BASIC256.equals(algoSuite)) { |
| this.digest = Constants.SHA1; |
| this.encryption = Constants.AES256; |
| this.symmetricKeyWrap = Constants.KW_AES256; |
| this.asymmetricKeyWrap = Constants.KW_RSA_OAEP; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L256; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 256; |
| } else if (Constants.ALGO_SUITE_BASIC192.equals(algoSuite)) { |
| this.digest = Constants.SHA1; |
| this.encryption = Constants.AES192; |
| this.symmetricKeyWrap = Constants.KW_AES192; |
| this.asymmetricKeyWrap = Constants.KW_RSA_OAEP; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L192; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 192; |
| } else if (Constants.ALGO_SUITE_BASIC128.equals(algoSuite)) { |
| this.digest = Constants.SHA1; |
| this.encryption = Constants.AES128; |
| this.symmetricKeyWrap = Constants.KW_AES128; |
| this.asymmetricKeyWrap = Constants.KW_RSA_OAEP; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L128; |
| this.signatureKeyDerivation = Constants.P_SHA1_L128; |
| this.minimumSymmetricKeyLength = 128; |
| } else if(Constants.ALGO_SUITE_TRIPLE_DES.equals(algoSuite)) { |
| this.digest = Constants.SHA1; |
| this.encryption = Constants.TRIPLE_DES; |
| this.symmetricKeyWrap = Constants.KW_TRIPLE_DES; |
| this.asymmetricKeyWrap = Constants.KW_RSA_OAEP; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L192; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 192; |
| } else if (Constants.ALGO_SUITE_BASIC256_RSA15.equals(algoSuite)) { |
| this.digest = Constants.SHA1; |
| this.encryption = Constants.AES256; |
| this.symmetricKeyWrap = Constants.KW_AES256; |
| this.asymmetricKeyWrap = Constants.KW_RSA15; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L256; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 256; |
| } else if (Constants.ALGO_SUITE_BASIC192_RSA15.equals(algoSuite)) { |
| this.digest = Constants.SHA1; |
| this.encryption = Constants.AES192; |
| this.symmetricKeyWrap = Constants.KW_AES192; |
| this.asymmetricKeyWrap = Constants.KW_RSA15; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L192; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 192; |
| } else if (Constants.ALGO_SUITE_BASIC128_RSA15.equals(algoSuite)) { |
| this.digest = Constants.SHA1; |
| this.encryption = Constants.AES128; |
| this.symmetricKeyWrap = Constants.KW_AES128; |
| this.asymmetricKeyWrap = Constants.KW_RSA15; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L128; |
| this.signatureKeyDerivation = Constants.P_SHA1_L128; |
| this.minimumSymmetricKeyLength = 128; |
| } else if (Constants.ALGO_SUITE_TRIPLE_DES_RSA15.equals(algoSuite)) { |
| this.digest = Constants.SHA1; |
| this.encryption = Constants.TRIPLE_DES; |
| this.symmetricKeyWrap = Constants.KW_TRIPLE_DES; |
| this.asymmetricKeyWrap = Constants.KW_RSA15; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L192; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 192; |
| } else if(Constants.ALGO_SUITE_BASIC256_SHA256.equals(algoSuite)) { |
| this.digest = Constants.SHA256; |
| this.encryption = Constants.AES256; |
| this.symmetricKeyWrap = Constants.KW_AES256; |
| this.asymmetricKeyWrap = Constants.KW_RSA_OAEP; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L256; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 256; |
| } else if (Constants.ALGO_SUITE_BASIC192_SHA256.equals(algoSuite)) { |
| this.digest = Constants.SHA256; |
| this.encryption = Constants.AES192; |
| this.symmetricKeyWrap = Constants.KW_AES192; |
| this.asymmetricKeyWrap = Constants.KW_RSA_OAEP; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L192; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 192; |
| } else if (Constants.ALGO_SUITE_BASIC128_SHA256.equals(algoSuite)) { |
| this.digest = Constants.SHA256; |
| this.encryption = Constants.AES128; |
| this.symmetricKeyWrap = Constants.KW_AES128; |
| this.asymmetricKeyWrap = Constants.KW_RSA_OAEP; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L128; |
| this.signatureKeyDerivation = Constants.P_SHA1_L128; |
| this.minimumSymmetricKeyLength = 128; |
| } else if(Constants.ALGO_SUITE_TRIPLE_DES_SHA256.equals(algoSuite)) { |
| this.digest = Constants.SHA256; |
| this.encryption = Constants.TRIPLE_DES; |
| this.symmetricKeyWrap = Constants.KW_TRIPLE_DES; |
| this.asymmetricKeyWrap = Constants.KW_RSA_OAEP; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L192; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 192; |
| } else if (Constants.ALGO_SUITE_BASIC256_SHA256_RSA15.equals(algoSuite)) { |
| this.digest = Constants.SHA256; |
| this.encryption = Constants.AES256; |
| this.symmetricKeyWrap = Constants.KW_AES256; |
| this.asymmetricKeyWrap = Constants.KW_RSA15; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L256; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 256; |
| } else if (Constants.ALGO_SUITE_BASIC192_SHA256_RSA15.equals(algoSuite)) { |
| this.digest = Constants.SHA256; |
| this.encryption = Constants.AES192; |
| this.symmetricKeyWrap = Constants.KW_AES192; |
| this.asymmetricKeyWrap = Constants.KW_RSA15; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L192; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 192; |
| } else if (Constants.ALGO_SUITE_BASIC128_SHA256_RSA15.equals(algoSuite)) { |
| this.digest = Constants.SHA256; |
| this.encryption = Constants.AES128; |
| this.symmetricKeyWrap = Constants.KW_AES128; |
| this.asymmetricKeyWrap = Constants.KW_RSA15; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L128; |
| this.signatureKeyDerivation = Constants.P_SHA1_L128; |
| this.minimumSymmetricKeyLength = 128; |
| } else if (Constants.ALGO_SUITE_TRIPLE_DES_SHA256_RSA15.equals(algoSuite)) { |
| this.digest = Constants.SHA256; |
| this.encryption = Constants.TRIPLE_DES; |
| this.symmetricKeyWrap = Constants.KW_TRIPLE_DES; |
| this.asymmetricKeyWrap = Constants.KW_RSA15; |
| this.encryptionKeyDerivation = Constants.P_SHA1_L192; |
| this.signatureKeyDerivation = Constants.P_SHA1_L192; |
| this.minimumSymmetricKeyLength = 192; |
| } else { |
| throw new WSSPolicyException("Invalid algorithm suite : " + algoSuite); |
| } |
| } |
| |
| /** |
| * @return Returns the asymmetricKeyWrap. |
| */ |
| public String getAsymmetricKeyWrap() { |
| return asymmetricKeyWrap; |
| } |
| |
| /** |
| * @return Returns the asymmetricSignature. |
| */ |
| public String getAsymmetricSignature() { |
| return asymmetricSignature; |
| } |
| |
| /** |
| * @return Returns the computedKey. |
| */ |
| public String getComputedKey() { |
| return computedKey; |
| } |
| |
| /** |
| * @return Returns the digest. |
| */ |
| public String getDigest() { |
| return digest; |
| } |
| |
| /** |
| * @return Returns the encryption. |
| */ |
| public String getEncryption() { |
| return encryption; |
| } |
| |
| /** |
| * @return Returns the encryptionKeyDerivation. |
| */ |
| public String getEncryptionKeyDerivation() { |
| return encryptionKeyDerivation; |
| } |
| |
| /** |
| * @return Returns the maximumAsymmetricKeyLength. |
| */ |
| public int getMaximumAsymmetricKeyLength() { |
| return maximumAsymmetricKeyLength; |
| } |
| |
| /** |
| * @return Returns the maximumSymmetricKeyLength. |
| */ |
| public int getMaximumSymmetricKeyLength() { |
| return maximumSymmetricKeyLength; |
| } |
| |
| /** |
| * @return Returns the minimumAsymmetricKeyLength. |
| */ |
| public int getMinimumAsymmetricKeyLength() { |
| return minimumAsymmetricKeyLength; |
| } |
| |
| /** |
| * @return Returns the minimumSymmetricKeyLength. |
| */ |
| public int getMinimumSymmetricKeyLength() { |
| return minimumSymmetricKeyLength; |
| } |
| |
| /** |
| * @return Returns the signatureKeyDerivation. |
| */ |
| public String getSignatureKeyDerivation() { |
| return signatureKeyDerivation; |
| } |
| |
| /** |
| * @return Returns the symmetricKeyWrap. |
| */ |
| public String getSymmetricKeyWrap() { |
| return symmetricKeyWrap; |
| } |
| |
| /** |
| * @return Returns the symmetricSignature. |
| */ |
| public String getSymmetricSignature() { |
| return symmetricSignature; |
| } |
| |
| /** |
| * @return Returns the c14n. |
| */ |
| public String getInclusiveC14n() { |
| return c14n; |
| } |
| |
| /** |
| * @param c14n The c14n to set. |
| */ |
| public void setC14n(String c14n) throws WSSPolicyException { |
| this.c14n = c14n; |
| } |
| |
| /** |
| * @return Returns the soapNormalization. |
| */ |
| public String getSoapNormalization() { |
| return soapNormalization; |
| } |
| |
| /** |
| * @param soapNormalization The soapNormalization to set. |
| */ |
| public void setSoapNormalization(String soapNormalization) throws WSSPolicyException { |
| this.soapNormalization = soapNormalization; |
| } |
| |
| /** |
| * @return Returns the strTransform. |
| */ |
| public String getStrTransform() { |
| return strTransform; |
| } |
| |
| /** |
| * @param strTransform The strTransform to set. |
| */ |
| public void setStrTransform(String strTransform) throws WSSPolicyException { |
| this.strTransform = strTransform; |
| } |
| |
| /** |
| * @return Returns the xPath. |
| */ |
| public String getXPath() { |
| return xPath; |
| } |
| |
| /** |
| * @param path The xPath to set. |
| */ |
| public void setXPath(String path) throws WSSPolicyException{ |
| xPath = path; |
| } |
| |
| } |
