Java tutorial
/** * personium.io * Copyright 2014 FUJITSU LIMITED * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ package io.personium.core.auth; import java.io.UnsupportedEncodingException; import java.security.MessageDigest; import java.security.NoSuchAlgorithmException; import java.util.Arrays; import java.util.List; import java.util.regex.Matcher; import java.util.regex.Pattern; import org.apache.commons.lang.CharEncoding; import io.personium.common.utils.PersoniumCoreUtils; import io.personium.core.PersoniumCoreException; import io.personium.core.PersoniumUnitConfig; import io.personium.core.model.ctl.Account; import io.personium.core.odata.OEntityWrapper; /** * ??. */ public final class AuthUtils { private static final String MD_ALGORITHM = "SHA-256"; /** ?. */ private static final int MIN_PASSWORD_LENGTH = 6; /** . */ private static final int MAX_PASSWORD_LENGTH = 32; private AuthUtils() { } /** * ?Hash?. * @param passwd * @return ??? */ public static String hashPassword(final String passwd) { if (passwd == null) { return null; } // DC0 Ruby Code // Digest::SHA256.hexdigest(pw + "Password hash salt value") String str2hash = passwd + PersoniumUnitConfig.getAuthPasswordSalt(); try { MessageDigest md = MessageDigest.getInstance(MD_ALGORITHM); byte[] digestBytes = md.digest(str2hash.getBytes(CharEncoding.UTF_8)); // ???????????DC0????????????? return PersoniumCoreUtils.byteArray2HexString(digestBytes); } catch (NoSuchAlgorithmException e) { throw new RuntimeException(e); } catch (UnsupportedEncodingException e) { throw new RuntimeException(e); } } /** * ????. * @param pCredHeader pCredHeader * @param entitySetName entitySetName * @return Hash?? */ public static String checkValidatePassword(final String pCredHeader, String entitySetName) { if (Account.EDM_TYPE_NAME.equals(entitySetName)) { if (pCredHeader != null) { if (pCredHeader.length() >= MIN_PASSWORD_LENGTH && pCredHeader.length() <= MAX_PASSWORD_LENGTH) { String regex = "^[a-zA-Z0-9-_]{0,}$"; Pattern pattern = Pattern.compile(regex); Matcher m = pattern.matcher(pCredHeader); if (!m.find()) { throw PersoniumCoreException.Auth.PASSWORD_INVALID; } } else { throw PersoniumCoreException.Auth.PASSWORD_INVALID; } } String hPassStr = AuthUtils.hashPassword(pCredHeader); return hPassStr; } return null; } /** * getAccountType. * @param oew oew * @return List<String> */ public static List<String> getAccountType(OEntityWrapper oew) { String typeStr = (String) oew.getProperty(Account.P_TYPE.getName()).getValue(); String[] typeAry = typeStr.split(" "); return Arrays.asList(typeAry); } /** * isAccountTypeBasic. * @param oew oew * @return List<String> */ public static boolean isAccountTypeBasic(OEntityWrapper oew) { return getAccountType(oew).contains(Account.TYPE_VALUE_BASIC); } /** * isAccountTypeOidcGoogle. * @param oew oew * @return List<String> */ public static boolean isAccountTypeOidcGoogle(OEntityWrapper oew) { return getAccountType(oew).contains(Account.TYPE_VALUE_OIDC_GOOGLE); } }