CryptConfig.java

  1. /*
  2.  * GovWay - A customizable API Gateway 
  3.  * https://govway.org
  4.  * 
  5.  * Copyright (c) 2005-2025 Link.it srl (https://link.it). 
  6.  * 
  7.  * This program is free software: you can redistribute it and/or modify
  8.  * it under the terms of the GNU General Public License version 3, as published by
  9.  * the Free Software Foundation.
  10.  *
  11.  * This program is distributed in the hope that it will be useful,
  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14.  * GNU General Public License for more details.
  15.  *
  16.  * You should have received a copy of the GNU General Public License
  17.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18.  *
  19.  */

  21. package org.openspcoop2.utils.crypt;

  23. import java.io.File;
  24. import java.io.FileInputStream;
  25. import java.io.InputStream;
  26. import java.io.Serializable;
  27. import java.util.Properties;

  29. import org.apache.commons.lang.StringUtils;
  30. import org.openspcoop2.utils.UtilsException;
  31. import org.openspcoop2.utils.resources.Charset;

  33. /**
  34.  * PasswordCryptConfig
  35.  *
  36.  * @author Andrea Poli (poli@link.it)
  37.  * @author $Author$
  38.  * @version $Rev$, $Date$
  39.  */

  41. public class CryptConfig implements Serializable {

  43.     /**
  44.      * 
  45.      */
  46.     private static final long serialVersionUID = 1L;

  48.     // http://www.jasypt.org/howtoencryptuserpasswords.html
  49.     
  50.     protected static final String CRYPT_SPECIAL_PATH_PLAIN = "PLAIN";
  51.     
  52.     protected static final String CRYPT_TYPE = "passwordEncrypt.type";
  53.     protected static final String CRYPT_CUSTOM_TYPE = "passwordEncrypt.customType";
  54.     
  55.     private static final String CRYPT_CHARSET_NAME = "passwordEncrypt.charsetName";
  56.     
  57.     private static final String CRYPT_SALT_LENGTH = "passwordEncrypt.salt.length";
  58.     private static final String CRYPT_SALT_SECURE_RANDOM = "passwordEncrypt.salt.secureRandom";
  59.     private static final String CRYPT_SALT_SECURE_RANDOM_ALGORITHM = "passwordEncrypt.salt.secureRandomAlgorithm";
  60.     
  61.     private static final String CRYPT_DIGEST_ALGORITHM = "passwordEncrypt.digestAlgorithm";
  62.     private static final String CRYPT_ITERATION = "passwordEncrypt.iteration";
  63.     
  64.     private static final String CRYPT_BASE64_ENCODING = "passwordEncrypt.base64Encoding";

  66.     private static final String CRYPT_BACKWARD_COMPATIBILITY = "passwordEncrypt.backwardCompatibility";
  67.     
  68.     private CryptType cryptType = null;
  69.     
  70.     private String cryptCustomType = null;
  71.     
  72.     private String digestAlgorithm = null;

  74.     private String charsetName = Charset.UTF_8.getValue(); // per la password
  75.     
  76.     private Integer iteration = null;
  77.     
  78.     private Integer saltLength = null;
  79.     private boolean useSecureRandom = true; // default
  80.     private String algorithmSecureRandom = null;
  81.     
  82.     private boolean useBase64Encoding = true; // in alternativa hex
  83.     
  84.     private boolean backwardCompatibility = false;


  87.     public CryptConfig() {}
  88.     
  89.     public CryptConfig(String resource) throws UtilsException{
  90.         this(resource, true);
  91.     }
  92.     public CryptConfig(String resource, boolean useDefaultIfNotFound) throws UtilsException{
  93.         
  94.         if(CRYPT_SPECIAL_PATH_PLAIN.equals(resource)) {
  95.             this.cryptType = CryptType.PLAIN;
  96.             return;
  97.         }
  98.         
  99.         InputStream is = null;
  100.         try{
  101.             File f = new File(resource);
  102.             if(f.exists()){
  103.                 is = new FileInputStream(f);
  104.             }
  105.             else{
  106.                 is = PasswordVerifier.class.getResourceAsStream(resource);
  107.             }
  108.             if(is==null) {
  109.                 is = PasswordVerifier.class.getResourceAsStream("/org/openspcoop2/utils/crypt/consolePassword.properties");
  110.             }
  111.             if(is!=null){
  112.                 Properties p = new Properties();
  113.                 p.load(is);
  114.                 this._init(p);
  115.             }
  116.             else{
  117.                 throw new Exception("Resource ["+resource+"] not found");
  118.             }
  119.         }catch(Exception e){
  120.             throw new UtilsException(e.getMessage(),e);
  121.         }finally{
  122.             try{
  123.                 if(is!=null){
  124.                     is.close();
  125.                 }
  126.             }catch(Exception eClose){
  127.                 // close
  128.             }
  129.         }
  130.     }
  131.     public CryptConfig(InputStream is) throws UtilsException{
  132.         try{
  133.             Properties p = new Properties();
  134.             p.load(is);
  135.             this._init(p);
  136.         }catch(Exception e){
  137.             throw new UtilsException(e.getMessage(),e);
  138.         }
  139.     }
  140.     public CryptConfig(Properties p) throws UtilsException {
  141.         this._init(p);
  142.     }
  143.     private void _init(Properties p) throws UtilsException {
  144.         
  145.         String tipo = CryptConfig.getProperty(p, CryptConfig.CRYPT_TYPE, false);
  146.         if(StringUtils.isNotEmpty(tipo)) {
  147.             CryptType cryptType = null;
  148.             try {
  149.                 cryptType = CryptType.valueOf(tipo);
  150.             }catch(Throwable e) {
  151.                 throw new UtilsException("Property '"+CryptConfig.CRYPT_TYPE+"' value '"+tipo+"' uncorrect: "+e.getMessage(), e);
  152.             }
  153.             this.cryptType = cryptType;
  154.         }
  155.         else {
  156.             String className = CryptConfig.getProperty(p, CryptConfig.CRYPT_CUSTOM_TYPE, false);
  157.             if(StringUtils.isEmpty(className)) {
  158.                 throw new UtilsException("Property '"+CryptConfig.CRYPT_TYPE+"' or '"+CryptConfig.CRYPT_CUSTOM_TYPE+"' are required");
  159.             }
  160.             this.cryptCustomType = className;
  161.         }
  162.         
  163.         String charset = getProperty(p, CRYPT_CHARSET_NAME, false);
  164.         if(StringUtils.isNotEmpty(charset)) {
  165.             this.charsetName = charset;
  166.         }
  167.         
  168.         String saltLength = getProperty(p, CRYPT_SALT_LENGTH, false);
  169.         if(StringUtils.isNotEmpty(saltLength)) {
  170.             try {
  171.                 this.saltLength = Integer.valueOf(saltLength);
  172.             }catch(Throwable e) {
  173.                 throw new UtilsException("Property '"+CRYPT_SALT_LENGTH+"' value '"+saltLength+"' uncorrect: "+e.getMessage(), e);
  174.             }
  175.         }
  176.         
  177.         String secureRandom = getProperty(p, CRYPT_SALT_SECURE_RANDOM, false);
  178.         if(StringUtils.isNotEmpty(secureRandom)) {
  179.             try {
  180.                 this.useSecureRandom = Boolean.valueOf(secureRandom);
  181.             }catch(Throwable e) {
  182.                 throw new UtilsException("Property '"+CRYPT_SALT_SECURE_RANDOM+"' value '"+secureRandom+"' uncorrect: "+e.getMessage(), e);
  183.             }
  184.         }
  185.         
  186.         String secureRandomAlgo = getProperty(p, CRYPT_SALT_SECURE_RANDOM_ALGORITHM, false);
  187.         if(StringUtils.isNotEmpty(secureRandomAlgo)) {
  188.             this.algorithmSecureRandom = secureRandomAlgo;
  189.         }
  190.         
  191.         
  192.         String digest = getProperty(p, CRYPT_DIGEST_ALGORITHM, false);
  193.         if(StringUtils.isNotEmpty(digest)) {
  194.             this.digestAlgorithm = digest;
  195.         }
  196.         
  197.         String iteration = getProperty(p, CRYPT_ITERATION, false);
  198.         if(StringUtils.isNotEmpty(iteration)) {
  199.             try {
  200.                 this.iteration = Integer.valueOf(iteration);
  201.             }catch(Throwable e) {
  202.                 throw new UtilsException("Property '"+CRYPT_ITERATION+"' value '"+iteration+"' uncorrect: "+e.getMessage(), e);
  203.             }
  204.         }
  205.         
  206.         
  207.         String base64 = getProperty(p, CRYPT_BASE64_ENCODING, false);
  208.         if(StringUtils.isNotEmpty(base64)) {
  209.             try {
  210.                 this.useBase64Encoding = Boolean.valueOf(base64);
  211.             }catch(Throwable e) {
  212.                 throw new UtilsException("Property '"+CRYPT_BASE64_ENCODING+"' value '"+base64+"' uncorrect: "+e.getMessage(), e);
  213.             }
  214.         }
  215.         
  216.         
  217.         String back = getProperty(p, CRYPT_BACKWARD_COMPATIBILITY, false);
  218.         if(StringUtils.isNotEmpty(back)) {
  219.             try {
  220.                 this.backwardCompatibility = Boolean.valueOf(back);
  221.             }catch(Throwable e) {
  222.                 throw new UtilsException("Property '"+CRYPT_BACKWARD_COMPATIBILITY+"' value '"+back+"' uncorrect: "+e.getMessage(), e);
  223.             }
  224.         }
  225.     }
  226.     
  227.     protected static String getProperty(Properties p, String name, boolean  required) throws UtilsException {
  228.         String pValue = p.getProperty(name);
  229.         if(pValue==null) {
  230.             if(required) {
  231.                 throw new UtilsException("Property '"+name+"' not found");
  232.             }
  233.             return null;
  234.         }
  235.         else {
  236.             return pValue.trim();
  237.         }
  238.     } 
  239.     
  240.     public CryptType getCryptType() {
  241.         return this.cryptType;
  242.     }

  244.     public void setCryptType(CryptType cryptType) {
  245.         this.cryptType = cryptType;
  246.     }

  248.     public String getCryptCustomType() {
  249.         return this.cryptCustomType;
  250.     }

  252.     public void setCryptCustomType(String cryptCustomType) {
  253.         this.cryptCustomType = cryptCustomType;
  254.     }
  255.     
  256.     public boolean isUseBase64Encoding() {
  257.         return this.useBase64Encoding;
  258.     }

  260.     public void setUseBase64Encoding(boolean useBase64Encoding) {
  261.         this.useBase64Encoding = useBase64Encoding;
  262.     }

  264.     public String getDigestAlgorithm() {
  265.         return this.digestAlgorithm;
  266.     }

  268.     public void setDigestAlgorithm(String digestAlgorithm) {
  269.         this.digestAlgorithm = digestAlgorithm;
  270.     }

  272.     public String getCharsetName() {
  273.         return this.charsetName;
  274.     }

  276.     public void setCharsetName(String charsetName) {
  277.         this.charsetName = charsetName;
  278.     }

  280.     public Integer getIteration() {
  281.         return this.iteration;
  282.     }

  284.     public void setIteration(Integer iteration) {
  285.         this.iteration = iteration;
  286.     }
  287.     
  288.     public Integer getSaltLength() {
  289.         return this.saltLength;
  290.     }

  292.     public void setSaltLength(Integer saltLength) {
  293.         this.saltLength = saltLength;
  294.     }

  296.     public boolean isUseSecureRandom() {
  297.         return this.useSecureRandom;
  298.     }

  300.     public void setUseSecureRandom(boolean useSecureRandom) {
  301.         this.useSecureRandom = useSecureRandom;
  302.     }

  304.     public String getAlgorithmSecureRandom() {
  305.         return this.algorithmSecureRandom;
  306.     }

  308.     public void setAlgorithmSecureRandom(String algorithmSecureRandom) {
  309.         this.algorithmSecureRandom = algorithmSecureRandom;
  310.     }

  312.     public boolean isBackwardCompatibility() {
  313.         return this.backwardCompatibility;
  314.     }

  316.     public void setBackwardCompatibility(boolean backwardCompatibility) {
  317.         this.backwardCompatibility = backwardCompatibility;
  318.     }
  319. }
Created with JaCoCo 0.8.8.202204050719