SecretKeyStoreCache.java

  1. /*
  2.  * GovWay - A customizable API Gateway 
  3.  * https://govway.org
  4.  * 
  5.  * Copyright (c) 2005-2025 Link.it srl (https://link.it). 
  6.  * 
  7.  * This program is free software: you can redistribute it and/or modify
  8.  * it under the terms of the GNU General Public License version 3, as published by
  9.  * the Free Software Foundation.
  10.  *
  11.  * This program is distributed in the hope that it will be useful,
  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14.  * GNU General Public License for more details.
  15.  *
  16.  * You should have received a copy of the GNU General Public License
  17.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18.  *
  19.  */

  21. package org.openspcoop2.security.keystore.cache;

  23. import org.openspcoop2.security.SecurityException;
  24. import org.openspcoop2.security.keystore.SecretKeyStore;
  25. import org.openspcoop2.security.keystore.SecretPasswordKeyDerivationConfig;
  26. import org.openspcoop2.utils.certificate.byok.BYOKRequestParams;

  28. /**
  29.  * SecretKeyStoreCache
  30.  *
  31.  * @author Andrea Poli (apoli@link.it)
  32.  * @author $Author$
  33.  * @version $Rev$, $Date$
  34.  */
  35. public class SecretKeyStoreCache extends AbstractKeystoreCache<SecretKeyStore> {

  37.     @Override
  38.     public SecretKeyStore createKeystore(String key, Object... params) throws SecurityException{
  39.         if(params==null){
  40.             throw new SecurityException("Params is null");
  41.         }
  42.         
  43.         if(params.length==1){
  44.             if(params[0] instanceof String) {
  45.                 return createFromPath(key, params);
  46.             }
  47.             else {
  48.                 return createFromPasswordKeyDerivation(params);
  49.             }
  50.         }
  51.         else if(params.length==2){
  52.             if(params[0] instanceof String) {
  53.                 return createFromPath(key, params);
  54.             }
  55.             else if(params[0] instanceof SecretPasswordKeyDerivationConfig) {
  56.                 return createFromPasswordKeyDerivation(params);
  57.             }
  58.             else {
  59.                 return createFromByteArray(params);
  60.             }
  61.         }
  62.         else if(params.length==3){
  63.             return createFromByteArray(params);
  64.         }
  65.         else{
  66.             throw new SecurityException("Params [lenght:"+params.length+"] not supported");
  67.         }
  68.     }
  69.     private SecretKeyStore createFromPath(String key, Object... params) throws SecurityException {
  70.         if(params[0] instanceof String) {
  71.             String pathSecretKey = key;
  72.             String algorithm = (String) params[0];
  73.             if(params.length==2){
  74.                 if( ! (params[1] instanceof BYOKRequestParams) ){
  75.                     throw new SecurityException("Param[1] must be BYOKRequestParams");
  76.                 }
  77.                 BYOKRequestParams requestParams = (BYOKRequestParams) params[1];
  78.                 return new SecretKeyStore(pathSecretKey, algorithm, requestParams);
  79.             }
  80.             else {
  81.                 return new SecretKeyStore(pathSecretKey, algorithm);
  82.             }
  83.         }
  84.         else {
  85.             throw new SecurityException("Param[0] must be String (algorithm)");
  86.         }
  87.     }
  88.     private SecretKeyStore createFromByteArray(Object... params) throws SecurityException {
  89.         if(params[0] instanceof byte[]) {
  90.             if( ! (params[1] instanceof String) ){
  91.                 throw new SecurityException("Param[1] must be String (algorithm)");
  92.             }
  93.             byte [] secretKey = (byte[]) params[0];
  94.             String algorithm = (String) params[1];
  95.             if(params.length==3){
  96.                 if( ! (params[2] instanceof BYOKRequestParams) ){
  97.                     throw new SecurityException("Param[2] must be BYOKRequestParams");
  98.                 }
  99.                 BYOKRequestParams requestParams = (BYOKRequestParams) params[2];
  100.                 return new SecretKeyStore(secretKey, algorithm, requestParams);
  101.             }
  102.             else {
  103.                 return new SecretKeyStore(secretKey, algorithm);
  104.             }
  105.         }
  106.         else {
  107.             throw new SecurityException("Param[0] must be byte[] (secretKey)");
  108.         }
  109.     }
  110.     private SecretKeyStore createFromPasswordKeyDerivation(Object... params) throws SecurityException {
  111.         if(params[0] instanceof SecretPasswordKeyDerivationConfig) {
  112.             SecretPasswordKeyDerivationConfig secretPasswordKeyDerivationConfig = (SecretPasswordKeyDerivationConfig) params[0];
  113.             if(params.length==2){
  114.                 if( ! (params[1] instanceof BYOKRequestParams) ){
  115.                     throw new SecurityException("Param[1] must be BYOKRequestParams");
  116.                 }
  117.                 BYOKRequestParams requestParams = (BYOKRequestParams) params[1];
  118.                 return new SecretKeyStore(secretPasswordKeyDerivationConfig, requestParams);
  119.             }
  120.             else {
  121.                 return new SecretKeyStore(secretPasswordKeyDerivationConfig);
  122.             }
  123.         }
  124.         else {
  125.             throw new SecurityException("Param[0] must be SecretPasswordKeyDerivationConfig");
  126.         }
  127.     }

  129.     @Override
  130.     public String getPrefixKey() {
  131.         return "SecretKey ";
  132.     }
  133. }
Created with JaCoCo 0.8.8.202204050719