Examples with SshKeyPair com.sshtools.common.ssh.components.SshKeyPair used on opensource projects

Search in sources :

Example 1 with SshKeyPair

use of com.sshtools.common.ssh.components.SshKeyPair in project vcert-java by Venafi.

the class TppTokenConnectorATForSSH method requestAndRetrieveSshCertificateWithKeyPairProvided.

@Test
@DisplayName("TPP - Testing the requestSshCertificate() and retrieveSshCertificate() methods when KeyPair is provided")
public void requestAndRetrieveSshCertificateWithKeyPairProvided() throws VCertException, Exception {
    String keyId = TppTestUtils.getRandSshKeyId();
    // getting an SSH Key Pair with a key size of 3072 bits
    SshKeyPair pair = SshKeyPairGenerator.generateKeyPair(SshKeyPairGenerator.SSH2_RSA, 3072);
    // extracting the Public Key and adding the KeyId as comment, at the end of the Public Key
    // because TPP returns the Public Key on that way
    String publicKeyData = SshKeyUtils.getFormattedKey(pair.getPublicKey(), keyId);
    // building an SshCertificateRequest
    SshCertificateRequest req = new SshCertificateRequest().keyId(keyId).validityPeriod("4h").template(System.getenv("TPP_SSH_CA")).publicKeyData(publicKeyData).sourceAddresses(new String[] { "test.com" });
    // requesting the SSH Certificate
    String pickUpID = classUnderTest.requestSshCertificate(req);
    // setting the pickUp ID
    req.pickupID(pickUpID);
    // retrieving the Cert and details
    SshCertRetrieveDetails sshCertRetrieveDetails = classUnderTest.retrieveSshCertificate(req);
    assertEquals(publicKeyData, sshCertRetrieveDetails.publicKeyData());
    assertNotNull(sshCertRetrieveDetails.certificateData());
    Long validityPeriodFromCert = Long.parseLong(sshCertRetrieveDetails.certificateDetails().validTo()) - Long.parseLong(sshCertRetrieveDetails.certificateDetails().validFrom());
    // 4h
    assertEquals(14400L, validityPeriodFromCert.longValue());
}
Also used : SshKeyPair(com.sshtools.common.ssh.components.SshKeyPair) SshCertificateRequest(com.venafi.vcert.sdk.certificate.SshCertificateRequest) SshCertRetrieveDetails(com.venafi.vcert.sdk.certificate.SshCertRetrieveDetails) Test(org.junit.jupiter.api.Test) DisplayName(org.junit.jupiter.api.DisplayName)

Example 2 with SshKeyPair

use of com.sshtools.common.ssh.components.SshKeyPair in project vcert-java by Venafi.

the class TppTokenConnectorATForSSH method requestAndRetrieveSshCertificate.

@Test
@DisplayName("TPP - Testing the requestSshCertificate() and retrieveSshCertificate() methods when the KeyPair is not provided and it will be generated by the Server")
public void requestAndRetrieveSshCertificate() throws VCertException, Exception {
    SshCertificateRequest req = new SshCertificateRequest().keyId(TppTestUtils.getRandSshKeyId()).validityPeriod("4h").template(System.getenv("TPP_SSH_CA")).sourceAddresses(new String[] { "test.com" });
    // requesting the SSH Certificate
    String pickUpID = classUnderTest.requestSshCertificate(req);
    // setting the pickUp ID
    req.pickupID(pickUpID);
    // setting a passphrase to the KeyPair service generated
    req.privateKeyPassphrase("my-passphrase");
    // retrieving the Cert and details
    SshCertRetrieveDetails sshCertRetrieveDetails = classUnderTest.retrieveSshCertificate(req);
    assertNotNull(sshCertRetrieveDetails.certificateData());
    // The following it should works correctly given that the passphrase is correct.
    SshKeyPair sshKeyPair = SshKeyUtils.getPrivateKey(sshCertRetrieveDetails.privateKeyData(), "my-passphrase");
    assertNotNull(sshKeyPair);
}
Also used : SshKeyPair(com.sshtools.common.ssh.components.SshKeyPair) SshCertificateRequest(com.venafi.vcert.sdk.certificate.SshCertificateRequest) SshCertRetrieveDetails(com.venafi.vcert.sdk.certificate.SshCertRetrieveDetails) Test(org.junit.jupiter.api.Test) DisplayName(org.junit.jupiter.api.DisplayName)

Example 3 with SshKeyPair

use of com.sshtools.common.ssh.components.SshKeyPair in project vcert-java by Venafi.

the class SshCertificateRequestRetrieveWithKeyPairProvided method main.

/**
 * @param args
 */
public static void main(String[] args) {
    try {
        // replace it by the key id value
        String keyId = "<KEY_ID>";
        // replace it by the CADN or the CA Name
        String template = "<TPP_SSH_CA>";
        // replace it by the TPP User
        String user = "<TPPUSER>";
        // replace it by the TPP Password
        String password = "<TPPPASSWORD>";
        // replace it by the TPP URL
        String baseUri = "<TPP_URL>";
        // 1. Get a VCertClient for TPP setting the scope to "ssh:manage"
        Authentication auth = Authentication.builder().user(user).password(password).scope("ssh:manage").build();
        Config config = Config.builder().connectorType(ConnectorType.TPP_TOKEN).baseUrl(baseUri).build();
        VCertTknClient client = new VCertTknClient(config);
        client.getAccessToken(auth);
        // To work with the SSH KeyPair, we are going to use some utilities from
        // maverick-synergy project. For more information, please visit https://github.com/sshtools/maverick-synergy
        // 2. Get an SSH Key Pair with a key size of 3072 bits
        SshKeyPair pair = SshKeyPairGenerator.generateKeyPair(SshKeyPairGenerator.SSH2_RSA, 3072);
        // 3. Extract the Public Key and adding the KeyId as comment, at the end of the Public Key
        // because TPP returns the Public Key on that way
        String publicKeyData = SshKeyUtils.getFormattedKey(pair.getPublicKey(), keyId);
        // 4. Get an instance of com.venafi.vcert.sdk.certificate.SshCertificateRequest class.
        SshCertificateRequest req = new SshCertificateRequest().keyId(keyId).validityPeriod(// if you omit it, then the validity period of the CIT will be used
        "4h").publicKeyData(publicKeyData).template(template);
        // .sourceAddresses(new String[]{"test.com"});
        // 5. Use the VCertClient method requestSshCertificate() to request the creation of a new
        // SSH Certificate on TPP. This will return the DN of the created SSH Certificate which
        // will be used to retrieve the created SSH Certificate.
        String pickUpID = client.requestSshCertificate(req);
        // 4. Set the pickUp ID to the SshCertificateRequest created. You can create a new one
        // but in order to avoid the boilerplate, it's preferable to use the already one created.
        req.pickupID(pickUpID);
        // 5. Use the VCertClient method retrieveSshCertificate() to retrieve the created
        // SSH Certificate on TPP. It will return an instance of SshCertRetrieveDetails which
        // will contain the Ssh Certificate Data, the Public Key, etc.
        SshCertRetrieveDetails sshCertRetrieveDetails = client.retrieveSshCertificate(req);
        client.revokeAccessToken();
    } catch (Exception e) {
        e.printStackTrace();
    }
}
Also used : VCertTknClient(com.venafi.vcert.sdk.VCertTknClient) SshKeyPair(com.sshtools.common.ssh.components.SshKeyPair) SshCertificateRequest(com.venafi.vcert.sdk.certificate.SshCertificateRequest) Authentication(com.venafi.vcert.sdk.endpoint.Authentication) Config(com.venafi.vcert.sdk.Config) SshCertRetrieveDetails(com.venafi.vcert.sdk.certificate.SshCertRetrieveDetails)

Example 4 with SshKeyPair

use of com.sshtools.common.ssh.components.SshKeyPair in project agileway by fangjinuo.

the class SynergyConnection method authenticateWithPublicKey.

@Override
public boolean authenticateWithPublicKey(String user, byte[] pemPrivateKey, String passphrase) throws SshException {
    try {
        ByteArrayInputStream inputStream = new ByteArrayInputStream(pemPrivateKey);
        SshKeyPair keyPair = SshKeyUtils.getPrivateKey(inputStream, passphrase);
        SshClientContext context = new SshClientContext();
        context.setUsername(user);
        context.setHostKeyVerification(new ToSynergyHostKeyVerifierAdapter(this.hostKeyVerifier));
        client = new SshClient(sshConfig.getHost(), sshConfig.getPort(), user, context, keyPair);
        if (client.isConnected()) {
            setStatus(SshConnectionStatus.CONNECTED);
        }
        return true;
    } catch (Throwable ex) {
        throw new SshException(ex);
    }
}
Also used : SshKeyPair(com.sshtools.common.ssh.components.SshKeyPair) SshClientContext(com.sshtools.client.SshClientContext) ToSynergyHostKeyVerifierAdapter(com.jn.agileway.ssh.client.impl.synergy.verifier.ToSynergyHostKeyVerifierAdapter) SshClient(com.sshtools.client.SshClient) ByteArrayInputStream(java.io.ByteArrayInputStream) SshException(com.jn.agileway.ssh.client.SshException)

Example 5 with SshKeyPair

use of com.sshtools.common.ssh.components.SshKeyPair in project vcert-java by Venafi.

the class TppConnectorATForSSH method requestAndRetrieveSshCertificate.

@Test
@DisplayName("TPP - Testing the requestSshCertificate() and retrieveSshCertificate() methods when the KeyPair is not provided and it will be generated by the Server")
public void requestAndRetrieveSshCertificate() throws VCertException, Exception {
    SshCertificateRequest req = new SshCertificateRequest().keyId(TppTestUtils.getRandSshKeyId()).validityPeriod("4h").template(System.getenv("TPP_SSH_CA")).sourceAddresses(new String[] { "test.com" });
    // requesting the SSH Certificate
    String pickUpID = classUnderTest.requestSshCertificate(req);
    // setting the pickUp ID
    req.pickupID(pickUpID);
    // setting a passphrase to the KeyPair service generated
    req.privateKeyPassphrase("my-passphrase");
    // retrieving the Cert and details
    SshCertRetrieveDetails sshCertRetrieveDetails = classUnderTest.retrieveSshCertificate(req);
    assertNotNull(sshCertRetrieveDetails.certificateData());
    // The following it should works correctly given that the passphrase is correct.
    SshKeyPair sshKeyPair = SshKeyUtils.getPrivateKey(sshCertRetrieveDetails.privateKeyData(), "my-passphrase");
    assertNotNull(sshKeyPair);
}
Also used : SshKeyPair(com.sshtools.common.ssh.components.SshKeyPair) SshCertificateRequest(com.venafi.vcert.sdk.certificate.SshCertificateRequest) SshCertRetrieveDetails(com.venafi.vcert.sdk.certificate.SshCertRetrieveDetails) Test(org.junit.jupiter.api.Test) DisplayName(org.junit.jupiter.api.DisplayName)

Aggregations

SshKeyPair (com.sshtools.common.ssh.components.SshKeyPair)6 SshCertRetrieveDetails (com.venafi.vcert.sdk.certificate.SshCertRetrieveDetails)5 SshCertificateRequest (com.venafi.vcert.sdk.certificate.SshCertificateRequest)5 DisplayName (org.junit.jupiter.api.DisplayName)4 Test (org.junit.jupiter.api.Test)4 SshException (com.jn.agileway.ssh.client.SshException)1 ToSynergyHostKeyVerifierAdapter (com.jn.agileway.ssh.client.impl.synergy.verifier.ToSynergyHostKeyVerifierAdapter)1 SshClient (com.sshtools.client.SshClient)1 SshClientContext (com.sshtools.client.SshClientContext)1 Config (com.venafi.vcert.sdk.Config)1 VCertTknClient (com.venafi.vcert.sdk.VCertTknClient)1 Authentication (com.venafi.vcert.sdk.endpoint.Authentication)1 ByteArrayInputStream (java.io.ByteArrayInputStream)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial