1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
|
// --- BEGIN COPYRIGHT BLOCK ---
// This program is free software; you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation; version 2 of the License.
//
// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License along
// with this program; if not, write to the Free Software Foundation, Inc.,
// 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
//
// (C) 2011 Red Hat, Inc.
// All rights reserved.
// --- END COPYRIGHT BLOCK ---
/**
*
*/
package com.netscape.certsrv.key;
import javax.ws.rs.core.MultivaluedMap;
import javax.xml.bind.annotation.XmlAccessType;
import javax.xml.bind.annotation.XmlAccessorType;
import javax.xml.bind.annotation.XmlRootElement;
import com.netscape.certsrv.base.ResourceMessage;
/**
* @author alee
*
*/
@XmlRootElement(name="KeyArchivalRequest")
@XmlAccessorType(XmlAccessType.FIELD)
public class KeyArchivalRequest extends ResourceMessage {
private static final String CLIENT_KEY_ID = "clientKeyID";
private static final String DATA_TYPE = "dataType";
// exploded pkiArchiveOptions parameters
private static final String WRAPPED_PRIVATE_DATA = "wrappedPrivateData";
private static final String TRANS_WRAPPED_SESSION_KEY = "transWrappedSessionKey";
private static final String ALGORITHM_OID = "algorithmOID";
private static final String SYMMETRIC_ALGORITHM_PARAMS = "symmetricAlgorithmParams";
// parameter for un-exploded pkiArchiveOptions
private static final String PKI_ARCHIVE_OPTIONS = "pkiArchiveOptions";
// parameters for symmetric keys
private static final String KEY_ALGORITHM = "keyAlgorithm";
private static final String KEY_SIZE = "keySize";
// parameters to set realm
private static final String REALM = "realm";
public KeyArchivalRequest() {
// required for JAXB (defaults)
setClassName(getClass().getName());
}
public KeyArchivalRequest(MultivaluedMap<String, String> form) {
attributes.put(CLIENT_KEY_ID, form.getFirst(CLIENT_KEY_ID));
attributes.put(DATA_TYPE, form.getFirst(DATA_TYPE));
attributes.put(WRAPPED_PRIVATE_DATA, form.getFirst(WRAPPED_PRIVATE_DATA));
attributes.put(KEY_ALGORITHM, form.getFirst(KEY_ALGORITHM));
attributes.put(KEY_SIZE, form.getFirst(KEY_SIZE));
attributes.put(PKI_ARCHIVE_OPTIONS, form.getFirst(PKI_ARCHIVE_OPTIONS));
attributes.put(TRANS_WRAPPED_SESSION_KEY, form.getFirst(TRANS_WRAPPED_SESSION_KEY));
attributes.put(REALM, form.getFirst(REALM));
setClassName(getClass().getName());
}
public KeyArchivalRequest(ResourceMessage data) {
attributes.putAll(data.getAttributes());
setClassName(getClass().getName());
}
/**
* @return the clientKeyID
*/
public String getClientKeyId() {
return attributes.get(CLIENT_KEY_ID);
}
/**
* @param clientKeyId the clientKeyId to set
*/
public void setClientKeyId(String clientKeyId) {
attributes.put(CLIENT_KEY_ID, clientKeyId);
}
/**
* @return the dataType
*/
public String getDataType() {
return attributes.get(DATA_TYPE);
}
/**
* @param dataType the dataType to set
*/
public void setDataType(String dataType) {
attributes.put(DATA_TYPE, dataType);
}
/**
* @return the transWrappedSessionKey
*/
public String getTransWrappedSessionKey() {
return attributes.get(TRANS_WRAPPED_SESSION_KEY);
}
/**
* @param transWrappedSessionKey the trans wrapped session key to set
*/
public void setTransWrappedSessionKey(String twsk) {
attributes.put(TRANS_WRAPPED_SESSION_KEY, twsk);
}
/**
* @return the PKIArchiveOptions structure
*/
public String getPKIArchiveOptions() {
return attributes.get(PKI_ARCHIVE_OPTIONS);
}
/**
* @param pkiArchiveIOptions the archive options structure to set
*/
public void setPKIArchiveOptions(String pkiArchiveOptions) {
attributes.put(PKI_ARCHIVE_OPTIONS, pkiArchiveOptions);
}
/**
* @return the algorithm OID structure
*/
public String getAlgorithmOID() {
return attributes.get(ALGORITHM_OID);
}
/**
* @param algorithmOID the symmetric algorithm OID to set
*/
public void setAlgorithmOID(String algOID) {
attributes.put(ALGORITHM_OID, algOID);
}
/**
* @return the algorithm params structure
*/
public String getSymmetricAlgorithmParams() {
return attributes.get(SYMMETRIC_ALGORITHM_PARAMS);
}
/**
* @param params the algorithm params to set
*/
public void setSymmetricAlgorithmParams(String params) {
attributes.put(SYMMETRIC_ALGORITHM_PARAMS, params);
}
/**
* @return the pkiArchiveOptions structure
*/
public String getWrappedPrivateData() {
return attributes.get(WRAPPED_PRIVATE_DATA);
}
/**
* @param wrappedPrivateData the wrappedPrivateData to set
*/
public void setWrappedPrivateData(String wrappedPrivateData) {
attributes.put(WRAPPED_PRIVATE_DATA, wrappedPrivateData);
}
/**
* @return the keyAlgorithm (valid for symmetric keys)
*/
public String getKeyAlgorithm() {
return attributes.get(KEY_ALGORITHM);
}
/**
* @param algorithm the key algorithm to set (valid for symmetric keys)
*/
public void setKeyAlgorithm(String algorithm) {
attributes.put(KEY_ALGORITHM, algorithm);
}
/**
* @return the key strength (valid for symmetric keys)
*/
public int getKeySize() {
return Integer.parseInt(attributes.get(KEY_SIZE));
}
/**
* @param keySize the key strength to set (valid for symmetric keys)
*/
public void setKeySize(int keySize) {
attributes.put(KEY_SIZE, Integer.toString(keySize));
}
/**
* @return the authentication realm
*/
public String getRealm() {
return attributes.get(REALM);
}
/**
* @param realm - the authentication realm
*/
public void setRealm(String realm) {
attributes.put(REALM, realm);
}
public String toString() {
try {
return ResourceMessage.marshal(this, KeyArchivalRequest.class);
} catch (Exception e) {
return super.toString();
}
}
public static KeyArchivalRequest valueOf(String string) throws Exception {
try {
return ResourceMessage.unmarshal(string, KeyArchivalRequest.class);
} catch (Exception e) {
return null;
}
}
public static void main(String args[]) throws Exception {
KeyArchivalRequest before = new KeyArchivalRequest();
before.setClientKeyId("vek 12345");
before.setDataType(KeyRequestResource.SYMMETRIC_KEY_TYPE);
before.setWrappedPrivateData("XXXXABCDEFXXX");
before.setKeyAlgorithm(KeyRequestResource.AES_ALGORITHM);
before.setRealm("ipa-vault");
before.setKeySize(128);
String string = before.toString();
System.out.println(string);
KeyArchivalRequest after = KeyArchivalRequest.valueOf(string);
System.out.println(before.equals(after));
}
}
|
