Search in sources :

Example 1 with EncryptablePasswordSpec

use of org.wildfly.security.password.spec.EncryptablePasswordSpec in project wildfly-swarm by wildfly-swarm.

the class AuthCallbackHandler method handle.

@Override
public void handle(Callback[] callbacks) throws IOException, UnsupportedCallbackException {
    for (Callback current : callbacks) {
        if (current instanceof NameCallback) {
            NameCallback ncb = (NameCallback) current;
            ncb.setName(this.userName);
        } else if (current instanceof RealmCallback) {
            RealmCallback rcb = (RealmCallback) current;
            rcb.setText(rcb.getDefaultText());
        } else if (current instanceof CredentialCallback) {
            CredentialCallback ccb = (CredentialCallback) current;
            try {
                DigestPasswordAlgorithmSpec algoSpec = new DigestPasswordAlgorithmSpec(this.userName, this.realm);
                EncryptablePasswordSpec passwordSpec = new EncryptablePasswordSpec(this.password.toCharArray(), algoSpec);
                Password passwd = PasswordFactory.getInstance(ALGORITHM_DIGEST_MD5).generatePassword(passwordSpec);
                Credential creds = new PasswordCredential(passwd);
                ccb.setCredential(creds);
            } catch (InvalidKeySpecException e) {
                e.printStackTrace();
            } catch (NoSuchAlgorithmException e) {
                e.printStackTrace();
            }
        } else if (current instanceof PasswordCallback) {
            PasswordCallback pcb = (PasswordCallback) current;
            pcb.setPassword(this.password.toCharArray());
        } else {
            throw new UnsupportedCallbackException(current);
        }
    }
}
Also used : PasswordCredential(org.wildfly.security.credential.PasswordCredential) Credential(org.wildfly.security.credential.Credential) PasswordCredential(org.wildfly.security.credential.PasswordCredential) CredentialCallback(org.wildfly.security.auth.callback.CredentialCallback) EncryptablePasswordSpec(org.wildfly.security.password.spec.EncryptablePasswordSpec) NoSuchAlgorithmException(java.security.NoSuchAlgorithmException) RealmCallback(javax.security.sasl.RealmCallback) PasswordCallback(javax.security.auth.callback.PasswordCallback) CredentialCallback(org.wildfly.security.auth.callback.CredentialCallback) NameCallback(javax.security.auth.callback.NameCallback) Callback(javax.security.auth.callback.Callback) NameCallback(javax.security.auth.callback.NameCallback) PasswordCallback(javax.security.auth.callback.PasswordCallback) DigestPasswordAlgorithmSpec(org.wildfly.security.password.spec.DigestPasswordAlgorithmSpec) InvalidKeySpecException(java.security.spec.InvalidKeySpecException) UnsupportedCallbackException(javax.security.auth.callback.UnsupportedCallbackException) RealmCallback(javax.security.sasl.RealmCallback) Password(org.wildfly.security.password.Password)

Example 2 with EncryptablePasswordSpec

use of org.wildfly.security.password.spec.EncryptablePasswordSpec in project fuse-karaf by jboss-fuse.

the class MaskedPasswordHelper method createConfiguration.

@Override
public Map<String, String> createConfiguration(final Map<String, String> attributes) throws GeneralSecurityException, IOException {
    final Provider provider = ProviderHelper.provider(option(attributes, "provider", ProviderHelper.WILDFLY_PROVIDER));
    final String algorithm = option(attributes, "algorithm", DEFAULT_ALGORITHM);
    final PasswordFactory passwordFactory = PasswordFactory.getInstance(algorithm, provider);
    final String password = option(attributes, "password", null);
    final String salt = option(attributes, "salt", "");
    final String iterations = option(attributes, "iterations", "");
    final AlgorithmParameterSpec algorithmParameterSpec;
    if (salt.isEmpty() && iterations.isEmpty()) {
        algorithmParameterSpec = null;
    } else if (salt.isEmpty()) {
        algorithmParameterSpec = new IteratedPasswordAlgorithmSpec(parseInt(iterations));
    } else {
        final byte[] saltBytes = Base64.getDecoder().decode(salt);
        algorithmParameterSpec = new IteratedSaltedPasswordAlgorithmSpec(parseInt(iterations), saltBytes);
    }
    final EncryptablePasswordSpec keySpec = new EncryptablePasswordSpec(password.toCharArray(), algorithmParameterSpec);
    final MaskedPassword maskedPassword = passwordFactory.generatePassword(keySpec).castAs(MaskedPassword.class);
    final MaskedPasswordAlgorithmSpec maskedPasswordAlgorithmSpec = maskedPassword.getParameterSpec();
    final Map<String, String> configuration = new HashMap<>();
    final Encoder encoder = Base64.getEncoder();
    if (!DEFAULT_ALGORITHM.equals(algorithm)) {
        configuration.put(CREDENTIAL_STORE_PROTECTION_ALGORITHM, algorithm);
    }
    configuration.put(CREDENTIAL_STORE_PROTECTION, encoder.encodeToString(maskedPassword.getMaskedPasswordBytes()));
    final AlgorithmParameters algorithmParameters = AlgorithmParameters.getInstance(algorithm, provider);
    algorithmParameters.init(maskedPasswordAlgorithmSpec);
    final byte[] encoded = algorithmParameters.getEncoded();
    configuration.put(CREDENTIAL_STORE_PROTECTION_PARAMS, encoder.encodeToString(encoded));
    return configuration;
}
Also used : HashMap(java.util.HashMap) EncryptablePasswordSpec(org.wildfly.security.password.spec.EncryptablePasswordSpec) Provider(java.security.Provider) IteratedPasswordAlgorithmSpec(org.wildfly.security.password.spec.IteratedPasswordAlgorithmSpec) PasswordFactory(org.wildfly.security.password.PasswordFactory) Encoder(java.util.Base64.Encoder) IteratedSaltedPasswordAlgorithmSpec(org.wildfly.security.password.spec.IteratedSaltedPasswordAlgorithmSpec) AlgorithmParameterSpec(java.security.spec.AlgorithmParameterSpec) MaskedPassword(org.wildfly.security.password.interfaces.MaskedPassword) MaskedPasswordAlgorithmSpec(org.wildfly.security.password.spec.MaskedPasswordAlgorithmSpec) AlgorithmParameters(java.security.AlgorithmParameters)

Aggregations

EncryptablePasswordSpec (org.wildfly.security.password.spec.EncryptablePasswordSpec)2 AlgorithmParameters (java.security.AlgorithmParameters)1 NoSuchAlgorithmException (java.security.NoSuchAlgorithmException)1 Provider (java.security.Provider)1 AlgorithmParameterSpec (java.security.spec.AlgorithmParameterSpec)1 InvalidKeySpecException (java.security.spec.InvalidKeySpecException)1 Encoder (java.util.Base64.Encoder)1 HashMap (java.util.HashMap)1 Callback (javax.security.auth.callback.Callback)1 NameCallback (javax.security.auth.callback.NameCallback)1 PasswordCallback (javax.security.auth.callback.PasswordCallback)1 UnsupportedCallbackException (javax.security.auth.callback.UnsupportedCallbackException)1 RealmCallback (javax.security.sasl.RealmCallback)1 CredentialCallback (org.wildfly.security.auth.callback.CredentialCallback)1 Credential (org.wildfly.security.credential.Credential)1 PasswordCredential (org.wildfly.security.credential.PasswordCredential)1 Password (org.wildfly.security.password.Password)1 PasswordFactory (org.wildfly.security.password.PasswordFactory)1 MaskedPassword (org.wildfly.security.password.interfaces.MaskedPassword)1 DigestPasswordAlgorithmSpec (org.wildfly.security.password.spec.DigestPasswordAlgorithmSpec)1