VaultEncDecConfig.java

  1. /*
  2.  * GovWay - A customizable API Gateway 
  3.  * https://govway.org
  4.  * 
  5.  * Copyright (c) 2005-2025 Link.it srl (https://link.it).
  6.  * 
  7.  * This program is free software: you can redistribute it and/or modify
  8.  * it under the terms of the GNU General Public License version 3, as published by
  9.  * the Free Software Foundation.
  10.  *
  11.  * This program is distributed in the hope that it will be useful,
  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14.  * GNU General Public License for more details.
  15.  *
  16.  * You should have received a copy of the GNU General Public License
  17.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18.  *
  19.  */
  20. package org.openspcoop2.pdd.config.vault.cli;

  22. import java.io.File;

  24. import org.apache.commons.lang.StringUtils;
  25. import org.openspcoop2.core.commons.CoreException;
  26. import org.openspcoop2.utils.certificate.byok.BYOKManager;

  28. /**
  29. * VaultEncDecConfig
  30. *
  31. * @author Poli Andrea (apoli@link.it)
  32. * @author $Author$
  33. * @version $Rev$, $Date$
  34. */
  35. public class VaultEncDecConfig {
  36.     
  37.     public static final String SYSTEM_IN="-system_in";
  38.     public static final String SYSTEM_OUT="-system_out";
  39.     
  40.     public static final String FILE_IN="-file_in";
  41.     public static final String FILE_OUT="-file_out";
  42.     
  43.     public static final String SECURITY="-sec";
  44.     public static final String KMS="-kms";
  45.     public static final String KSM_DEPRECATED="-ksm";
  46.         
  47.     public static String getUsage() {
  48.         return SYSTEM_IN+"|"+FILE_IN+"=text|path "+SYSTEM_OUT+"|"+FILE_OUT+"=path ["+SECURITY+"|"+KMS+"=id]";
  49.     }
  50.     
  51.     private static final String UNKNOW_OPTION = "(unknown option '";
  52.     
  53.     private boolean encodingMode = false;
  54.     
  55.     private boolean inSystemMode = false;
  56.     private String inText = null;
  57.     private boolean inFileMode = false;
  58.     private String inFilePath = null;
  59.         
  60.     private boolean outSystemMode = false;
  61.     private boolean outFileMode = false;
  62.     private String outFilePath = null;
  63.     
  64.     private boolean securityMode = true; // default
  65.     private boolean kmsMode = false;
  66.     private String id= null;
  67.     
  68.     public VaultEncDecConfig(String[] args, String utilizzoErrato, boolean encodingMode) throws CoreException{
  69.         if(args.length<2 || args[0]==null || args[1]==null) {
  70.             throw new CoreException(utilizzoErrato);
  71.         }
  72.             
  73.         this.encodingMode = encodingMode;
  74.         
  75.         parseFirstArgument(args, utilizzoErrato);
  76.         parseSecondArgument(args, utilizzoErrato);
  77.         
  78.         if(args.length>2 && args[2]!=null) {
  79.             parseThirdArgument(args, utilizzoErrato);
  80.         }
  81.     }
  82.     
  83.     private void parseFirstArgument(String[] args, String utilizzoErrato) throws CoreException {
  84.         if(!(args[0].contains("="))) {
  85.             throw new CoreException("(= not found in first param '"+args[0]+"') "+utilizzoErrato);
  86.         }
  87.         else {
  88.             if(args[0].startsWith(SYSTEM_IN+"=") && args[0].length()>(SYSTEM_IN+"=").length()) {
  89.                 this.inSystemMode=true;
  90.                 this.inText = args[0].substring((SYSTEM_IN+"=").length());
  91.             }
  92.             else if(args[0].startsWith(FILE_IN+"=") && args[0].length()>(FILE_IN+"=").length()) {
  93.                 parseFirstArgumentFile(args, utilizzoErrato);
  94.             }
  95.             else {
  96.                 throw new CoreException(UNKNOW_OPTION+args[0]+"') "+utilizzoErrato);
  97.             }
  98.         }
  99.     }
  100.     private void parseFirstArgumentFile(String[] args, String utilizzoErrato) throws CoreException {
  101.         this.inFileMode=true;
  102.         this.inFilePath = args[0].substring((FILE_IN+"=").length());
  103.         
  104.         File fFilePath = new File(this.inFilePath);
  105.         String prefix = "(File '"+fFilePath.getAbsolutePath()+"' ";
  106.         if(!fFilePath.exists()) {
  107.             throw new CoreException(prefix+"not exists) "+utilizzoErrato);
  108.         }
  109.         if(!fFilePath.canRead()) {
  110.             throw new CoreException(prefix+"cannot read) "+utilizzoErrato);
  111.         }
  112.         if(!fFilePath.isFile()) {
  113.             throw new CoreException(prefix+"is not a file) "+utilizzoErrato);
  114.         }
  115.     }
  116.     
  117.     private void parseSecondArgument(String[] args, String utilizzoErrato) throws CoreException {
  118.         if(!(args[1].contains("="))) {
  119.             if(SYSTEM_OUT.equals(args[1])) {
  120.                 this.outSystemMode=true;
  121.             }
  122.             else {
  123.                 throw new CoreException("(= not found in second param '"+args[1]+"') "+utilizzoErrato);
  124.             }
  125.         }
  126.         else {
  127.             if(args[1].startsWith(FILE_OUT+"=") && args[1].length()>(FILE_OUT+"=").length()) {
  128.                 this.outFileMode=true;
  129.                 this.outFilePath = args[1].substring((FILE_OUT+"=").length());
  130.                 
  131.                 File fFilePath = new File(this.outFilePath);
  132.                 String prefix = "(File '"+fFilePath.getAbsolutePath()+"' ";
  133.                 if(fFilePath.exists()) {
  134.                     throw new CoreException(prefix+"already exists) "+utilizzoErrato);
  135.                 }
  136.             }
  137.             else {
  138.                 throw new CoreException(UNKNOW_OPTION+args[1]+"') "+utilizzoErrato);
  139.             }
  140.         }
  141.     }
  142.     
  143.     private void parseThirdArgument(String[] args, String utilizzoErrato) throws CoreException {
  144.         if(!(args[2].contains("="))) {
  145.             throw new CoreException("(= not found in third param '"+args[2]+"') "+utilizzoErrato);
  146.         }
  147.         else {
  148.             if(args[2].startsWith(SECURITY+"=") && args[2].length()>(SECURITY+"=").length()) {
  149.                 this.securityMode=true;
  150.                 this.id = args[2].substring((SECURITY+"=").length());
  151.             }
  152.             else if(args[2].startsWith(KMS+"=") && args[2].length()>(KMS+"=").length()) {
  153.                 this.securityMode=false;
  154.                 this.kmsMode=true;
  155.                 this.id = args[2].substring((KMS+"=").length());
  156.             }
  157.             else if(args[2].startsWith(KSM_DEPRECATED+"=") && args[2].length()>(KSM_DEPRECATED+"=").length()) {
  158.                 this.securityMode=false;
  159.                 this.kmsMode=true;
  160.                 this.id = args[2].substring((KSM_DEPRECATED+"=").length());
  161.             }
  162.             else {
  163.                 throw new CoreException(UNKNOW_OPTION+args[2]+"') "+utilizzoErrato);
  164.             }
  165.         }
  166.     }
  167.     
  168.     public boolean isEncode() {
  169.         return this.encodingMode;
  170.     }

  172.     public boolean isInSystemMode() {
  173.         return this.inSystemMode;
  174.     }

  176.     public String getInText() {
  177.         return this.inText;
  178.     }

  180.     public boolean isInFileMode() {
  181.         return this.inFileMode;
  182.     }

  184.     public String getInFilePath() {
  185.         return this.inFilePath;
  186.     }

  188.     public boolean isOutSystemMode() {
  189.         return this.outSystemMode;
  190.     }

  192.     public boolean isOutFileMode() {
  193.         return this.outFileMode;
  194.     }

  196.     public String getOutFilePath() {
  197.         return this.outFilePath;
  198.     }   

  200.     public boolean isSecurityMode() {
  201.         return this.securityMode;
  202.     }

  204.     public boolean isKmsMode() {
  205.         return this.kmsMode;
  206.     }

  208.     public String getId() {
  209.         return this.id;
  210.     }
  211.     
  212.     public void validate(BYOKManager byokManager) throws CoreException {
  213.         
  214.         String kmsPrefix = "Kms '";
  215.         
  216.         if(this.securityMode){
  217.             validateSecurityMode(byokManager);
  218.         }
  219.         if(this.kmsMode && !byokManager.existsKMSConfigByType(this.id)) {
  220.             throw new CoreException(kmsPrefix+this.id+"' not exists");
  221.         }
  222.         else if(this.kmsMode && !this.encodingMode && !byokManager.getUnwrapTypes().contains(this.id)) {
  223.             throw new CoreException(kmsPrefix+this.id+"' unusable for unwrap operation");
  224.         }
  225.         else if(this.kmsMode && this.encodingMode && !byokManager.getWrapTypes().contains(this.id)) {
  226.             throw new CoreException(kmsPrefix+this.id+"' unusable for wrap operation");
  227.         }
  228.     }
  229.     public void validateSecurityMode(BYOKManager byokManager) throws CoreException {
  230.         String policy = this.id;
  231.         if(policy==null || StringUtils.isEmpty(policy)) {
  232.             policy = BYOKManager.getSecurityRemoteEngineGovWayPolicy();
  233.         }
  234.         if(policy==null || StringUtils.isEmpty(policy)) {
  235.             policy = BYOKManager.getSecurityEngineGovWayPolicy();
  236.         }
  237.         if(policy==null || StringUtils.isEmpty(policy)) {
  238.             throw new CoreException("Security policy default undefined (BYOK Disabled?)");
  239.         }
  240.         if(!byokManager.existsSecurityEngineByType(policy)) {
  241.             throw new CoreException("Security policy '"+policy+"' not found");
  242.         }
  243.     }
  244. }
Created with JaCoCo 0.8.8.202204050719