Java tutorial
/** * The MIT License * Copyright (c) 2015 Estonian Information System Authority (RIA), Population Register Centre (VRK) * * Permission is hereby granted, free of charge, to any person obtaining a copy * of this software and associated documentation files (the "Software"), to deal * in the Software without restriction, including without limitation the rights * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell * copies of the Software, and to permit persons to whom the Software is * furnished to do so, subject to the following conditions: * * The above copyright notice and this permission notice shall be included in * all copies or substantial portions of the Software. * * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN * THE SOFTWARE. */ package ee.ria.xroad.common.util; import static java.nio.charset.StandardCharsets.UTF_8; import java.io.ByteArrayOutputStream; import java.io.CharArrayWriter; import java.io.IOException; import java.io.OutputStreamWriter; import org.apache.commons.io.output.WriterOutputStream; /** * Manages passwords stored in the shared memory segment. */ public final class PasswordStore { private static final int PERMISSIONS = 0600; static { System.loadLibrary("passwordstore"); } private PasswordStore() { } /** * Returns stored password with identifier id. * @param id identifier of the password * @return password value or null, if password with this ID was not found. * @throws Exception in case of any errors */ public static char[] getPassword(String id) throws Exception { byte[] raw = read(getPathnameForFtok(), id); return raw == null ? null : byteToChar(raw); } /** * Stores the password in shared memory. * Use null as password parameter to remove password from memory. * @param id identifier of the password * @param password password to be stored * @throws Exception in case of any errors */ public static void storePassword(String id, char[] password) throws Exception { byte[] raw = charToByte(password); write(getPathnameForFtok(), id, raw, PERMISSIONS); } /** * Clears the password store. Useful for testing purposes. * @throws Exception in case of any errors */ public static void clearStore() throws Exception { clear(getPathnameForFtok(), PERMISSIONS); } private static byte[] charToByte(char[] buffer) throws IOException { if (buffer == null) { return null; } ByteArrayOutputStream os = new ByteArrayOutputStream(buffer.length * 2); OutputStreamWriter writer = new OutputStreamWriter(os, UTF_8); writer.write(buffer); writer.close(); return os.toByteArray(); } private static char[] byteToChar(byte[] bytes) throws IOException { if (bytes == null) { return null; } CharArrayWriter writer = new CharArrayWriter(bytes.length); WriterOutputStream os = new WriterOutputStream(writer, UTF_8); os.write(bytes); os.close(); return writer.toCharArray(); } private static native byte[] read(String pathnameForFtok, String id) throws Exception; private static native void write(String pathnameForFtok, String id, byte[] password, int permissions) throws Exception; private static native void clear(String pathnameForFtok, int permissions) throws Exception; private static String getPathnameForFtok() { // Since we only plan to have one password store, we just use // root directory as identifier and hope that the project_id // part of the key are enough to separate us from the other // memory-accessing programs. return "/"; } }