Package org.jumpmind.security

Class SecurityService

java.lang.Object

org.jumpmind.security.SecurityService

All Implemented Interfaces:

ISecurityService

Direct Known Subclasses:

BouncyCastleSecurityService

public class SecurityService
extends Object
implements ISecurityService

See Also:

• ISecurityService

Field Summary

Fields

Modifier and Type	Field	Description
protected static boolean	hasInitKeyStore
protected static String	keyStoreFileName
protected static URL	keyStoreURL
protected org.slf4j.Logger	log
protected static SecretKey	secretKey
protected static String	trustStoreFileName
protected static URL	trustStoreURL

Constructor Summary

Constructors

Modifier	Constructor	Description
protected	SecurityService()

Method Summary

Modifier and Type	Method	Description
protected void	checkThatKeystoreFileExists()
KeyStore.PrivateKeyEntry	createDefaultSslCert(String host)
KeyStore.PrivateKeyEntry	createSslCert(byte[] content, String fileType, String alias, String password)
KeyStore.TrustedCertificateEntry	createTrustedCert(byte[] content, String fileType, String alias, String password)
String	decrypt(String encText)
void	deleteKeystoreEntry(String alias)
String	encrypt(String plainText)
String	exportCurrentSslCert(boolean includePrivateKey)
String	exportTrustedCert(String alias)
protected byte[]	getBytes(int byteSize)
Cipher	getCipher(int mode)
X509Certificate	getCurrentSslCert()
protected SecretKey	getDefaultSecretKey()
KeyManagerFactory	getKeyManagerFactory()
protected String	getKeyManagerFactoryAlgorithm()
KeyStore	getKeyStore()
String	getKeystoreEntry(String alias)
protected String	getKeyStorePassword()
protected String	getKeyStoreType()
KeyStore	getTrustStore()
protected String	getTrustStorePassword()
void	init()
protected void	initializeCipher(Cipher cipher, int mode)
protected void	initializeSecretKey()
void	installDefaultSamlSslCert(String host)
void	installDefaultSslCert(String host)
void	installSslCert(KeyStore.PrivateKeyEntry entry)
void	installTrustedCert(KeyStore.TrustedCertificateEntry entry)
String	nextSecureHexString(int len)
String	obfuscate(String plainText)
protected void	saveKeyStore(KeyStore ks, String password)
void	saveTrustStore(KeyStore ks)
void	setKeystoreEntry(String alias, String value)
boolean	supportsBackupCertificate()
boolean	supportsExportCertificate()
boolean	supportsGenerateSelfSignedCertificate()
boolean	supportsImportCertificate()
String	unobfuscate(String obfText)
String	unobfuscateIfNeeded(String systemPropertyName)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

log

protected org.slf4j.Logger log

secretKey

protected static volatile SecretKey secretKey

keyStoreFileName

protected static String keyStoreFileName

keyStoreURL

protected static URL keyStoreURL

hasInitKeyStore

protected static volatile boolean hasInitKeyStore

trustStoreFileName

protected static String trustStoreFileName

trustStoreURL

protected static URL trustStoreURL

Constructor Details

SecurityService

protected SecurityService()

Method Details

init

public void init()

Specified by:

init in interface ISecurityService

getTrustStore

public KeyStore getTrustStore()

Specified by:

getTrustStore in interface ISecurityService

getKeyStore

public KeyStore getKeyStore()

Specified by:

getKeyStore in interface ISecurityService

getKeyStoreType

protected String getKeyStoreType()

getKeyManagerFactory

public KeyManagerFactory getKeyManagerFactory()

Specified by:

getKeyManagerFactory in interface ISecurityService

installTrustedCert

public void installTrustedCert(KeyStore.TrustedCertificateEntry entry)

Specified by:

installTrustedCert in interface ISecurityService

createTrustedCert

public KeyStore.TrustedCertificateEntry createTrustedCert(byte[] content,
 String fileType,
 String alias,
 String password)

Specified by:

createTrustedCert in interface ISecurityService

installDefaultSslCert

public void installDefaultSslCert(String host)

Specified by:

installDefaultSslCert in interface ISecurityService

installDefaultSamlSslCert

public void installDefaultSamlSslCert(String host)

Specified by:

installDefaultSamlSslCert in interface ISecurityService

installSslCert

public void installSslCert(KeyStore.PrivateKeyEntry entry)

Specified by:

installSslCert in interface ISecurityService

createDefaultSslCert

public KeyStore.PrivateKeyEntry createDefaultSslCert(String host)

Specified by:

createDefaultSslCert in interface ISecurityService

createSslCert

public KeyStore.PrivateKeyEntry createSslCert(byte[] content,
 String fileType,
 String alias,
 String password)

Specified by:

createSslCert in interface ISecurityService

getCurrentSslCert

public X509Certificate getCurrentSslCert()

Specified by:

getCurrentSslCert in interface ISecurityService

exportCurrentSslCert

public String exportCurrentSslCert(boolean includePrivateKey)

Specified by:

exportCurrentSslCert in interface ISecurityService

exportTrustedCert

public String exportTrustedCert(String alias)

Specified by:

exportTrustedCert in interface ISecurityService

supportsExportCertificate

public boolean supportsExportCertificate()

Specified by:

supportsExportCertificate in interface ISecurityService

supportsImportCertificate

public boolean supportsImportCertificate()

Specified by:

supportsImportCertificate in interface ISecurityService

supportsBackupCertificate

public boolean supportsBackupCertificate()

Specified by:

supportsBackupCertificate in interface ISecurityService

supportsGenerateSelfSignedCertificate

public boolean supportsGenerateSelfSignedCertificate()

Specified by:

supportsGenerateSelfSignedCertificate in interface ISecurityService

checkThatKeystoreFileExists

protected void checkThatKeystoreFileExists()
                                    throws KeyStoreException,
NoSuchAlgorithmException,
CertificateException,
IOException

Throws:

KeyStoreException

NoSuchAlgorithmException

CertificateException

IOException

encrypt

public String encrypt(String plainText)

Specified by:

encrypt in interface ISecurityService

decrypt

public String decrypt(String encText)

Specified by:

decrypt in interface ISecurityService

obfuscate

public String obfuscate(String plainText)

Specified by:

obfuscate in interface ISecurityService

unobfuscate

public String unobfuscate(String obfText)

Specified by:

unobfuscate in interface ISecurityService

unobfuscateIfNeeded

public String unobfuscateIfNeeded(String systemPropertyName)

Specified by:

unobfuscateIfNeeded in interface ISecurityService

getCipher

public Cipher getCipher(int mode)
                 throws Exception

Specified by:

getCipher in interface ISecurityService

Throws:

Exception

initializeCipher

protected void initializeCipher(Cipher cipher,
 int mode)
                         throws Exception

Throws:

Exception

getTrustStorePassword

protected String getTrustStorePassword()

getKeyStorePassword

protected String getKeyStorePassword()

getKeyManagerFactoryAlgorithm

protected String getKeyManagerFactoryAlgorithm()

initializeSecretKey

protected void initializeSecretKey()
                            throws Exception

Throws:

Exception

getKeystoreEntry

public String getKeystoreEntry(String alias)
                        throws Exception

Specified by:

getKeystoreEntry in interface ISecurityService

Throws:

Exception

setKeystoreEntry

public void setKeystoreEntry(String alias,
 String value)
                      throws Exception

Specified by:

setKeystoreEntry in interface ISecurityService

Throws:

Exception

deleteKeystoreEntry

public void deleteKeystoreEntry(String alias)
                         throws Exception

Specified by:

deleteKeystoreEntry in interface ISecurityService

Throws:

Exception

nextSecureHexString

public String nextSecureHexString(int len)

Specified by:

nextSecureHexString in interface ISecurityService

getDefaultSecretKey

protected SecretKey getDefaultSecretKey()
                                 throws Exception

Throws:

Exception

getBytes

protected byte[] getBytes(int byteSize)

saveTrustStore

public void saveTrustStore(KeyStore ks)
                    throws Exception

Specified by:

saveTrustStore in interface ISecurityService

Throws:

Exception

saveKeyStore

protected void saveKeyStore(KeyStore ks,
 String password)
                     throws Exception

Throws:

Exception