Java tutorial
/******************************************************************************* * Copyright 2012 The MITRE Corporation * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. ******************************************************************************/ package org.mitre.jwt.encryption.impl; import java.io.InputStream; import java.security.GeneralSecurityException; import java.security.Key; import java.security.KeyPair; import java.security.PrivateKey; import java.security.Provider; import java.security.PublicKey; import org.slf4j.Logger; import org.slf4j.LoggerFactory; import org.springframework.beans.factory.InitializingBean; import org.springframework.core.io.Resource; /** * Creates and manages a JCE KeyStore * * @author nemonik * */ public class KeyStore implements InitializingBean { private static Logger logger = LoggerFactory.getLogger(KeyStore.class); public static final String TYPE = java.security.KeyStore.getDefaultType(); public static final String PASSWORD = "changeit"; private String password; private Resource location; private java.security.KeyStore keystore; /** * Default Constructor */ public KeyStore() { } /** * KeyStore constructor * * @param password * the password used to unlock the keystore * @param location * the location of the keystore */ public KeyStore(String password, Resource location) { setPassword(password); setLocation(location); } /* * (non-Javadoc) * * @see * org.springframework.beans.factory.InitializingBean#afterPropertiesSet() */ @Override public void afterPropertiesSet() throws Exception { InputStream inputStream = null; try { keystore = java.security.KeyStore.getInstance(TYPE); inputStream = location.getInputStream(); keystore.load(inputStream, this.password.toCharArray()); logger.info("Loaded keystore from " + location); } finally { if (inputStream != null) { inputStream.close(); } } // TODO: a more specific exception perhaps? is an empty keystore even an exception? if (keystore.size() == 0) { throw new Exception("Keystore is empty; it has no entries"); } } /** * Returns a KeyPair for the alias given the password * * @param alias * the alias name * @param password * the password for recovering the key pair * @return the key pair * @throws GeneralSecurityException */ public KeyPair getKeyPairForAlias(String alias, String password) throws GeneralSecurityException { Key key = keystore.getKey(alias, password.toCharArray()); if (key instanceof PrivateKey) { // Get certificate of public key java.security.cert.Certificate cert = keystore.getCertificate(alias); // Get public key PublicKey publicKey = cert.getPublicKey(); return new KeyPair(publicKey, (PrivateKey) key); } return null; } public java.security.KeyStore getKeystore() { return keystore; } public Resource getLocation() { return location; } public String getPassword() { return password; } public Provider getProvider() { return keystore.getProvider(); } public void setKeystore(java.security.KeyStore keystore) { this.keystore = keystore; } public void setLocation(Resource location) { if (location != null && location.exists()) { this.location = location; } else { throw new IllegalArgumentException("location must exist"); } } public void setPassword(String password) { this.password = password; } /* * (non-Javadoc) * * @see java.lang.Object#toString() */ @Override public String toString() { return "KeyStore [password=" + password + ", location=" + location + ", keystore=" + keystore + "]"; } }