• Home
• com.github.robertomanfreda
• java-jwt
• 1.1.0-RELEASE
• source code
• JavaJWT.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.github.robertomanfreda.java.jwt.JavaJWT Maven / Gradle / Ivy

package com.github.robertomanfreda.java.jwt;

import com.nimbusds.jose.Payload;
import com.nimbusds.jose.crypto.RSAEncrypter;
import lombok.Getter;
import lombok.NonNull;

import java.io.ByteArrayInputStream;
import java.io.InputStream;
import java.net.HttpURLConnection;
import java.net.URL;
import java.security.*;
import java.security.cert.Certificate;
import java.security.interfaces.RSAPublicKey;
import java.util.Map;
import java.util.zip.ZipEntry;
import java.util.zip.ZipInputStream;

public class JavaJWT {

    @Getter
    private final String downloadUrl;
    private final JWTSEGenerator generator;
    private final JWTSEVerifier verifier;

    private String secretKey;

    public JavaJWT(@NonNull String keystoreUrl) throws Exception {
        this.downloadUrl = keystoreUrl;

        KeyPair keyPair = loadKeyPair();

        if (null != keyPair) {
            PrivateKey privateKey = keyPair.getPrivate();
            RSAPublicKey rsaPublicKey = (RSAPublicKey) keyPair.getPublic();
            generator = new JWTSEGenerator(privateKey, new RSAEncrypter(rsaPublicKey));
            verifier = new JWTSEVerifier(rsaPublicKey, privateKey);
        } else {
            throw new Exception("Trouble loading keystore");
        }
    }

    public String generate(String issuer, String audience, Map claims, long ttlSeconds)
            throws Exception {
        return generator.generate(issuer, audience, claims, ttlSeconds);
    }

    public Payload verify(String encryptedSignedJWT) throws Exception {
        return verifier.verifyAndDecrypt(encryptedSignedJWT);
    }

    private KeyPair loadKeyPair() throws Exception {
        String alias = null;
        String password = null;
        InputStream kis = null;

        URL url = new URL(downloadUrl);
        HttpURLConnection connection = (HttpURLConnection) url.openConnection();
        connection.setRequestMethod("GET");

        InputStream is = connection.getInputStream();
        ZipInputStream zipIs = new ZipInputStream(is);
        ZipEntry zipEntry = zipIs.getNextEntry();

        while (zipEntry != null) {
            switch (zipEntry.getName()) {
                case "alias.txt":
                    alias = new String(zipIs.readAllBytes());
                    break;
                case "secretKey.txt":
                    secretKey = new String(zipIs.readAllBytes());
                    break;
                case "password.txt":
                    password = new String(zipIs.readAllBytes());
                    break;
                case "keyStore.p12":
                    kis = new ByteArrayInputStream(zipIs.readAllBytes());
                    break;
                default:
                    System.out.println("This file [" + zipEntry.getName() + "] is useless.");
            }

            zipIs.closeEntry();
            zipEntry = zipIs.getNextEntry();
        }

        if (null != alias && null != secretKey && null != password && null != kis) {
            KeyStore keystore = KeyStore.getInstance(KeyStore.getDefaultType());
            keystore.load(kis, password.toCharArray());

            Key key = keystore.getKey(alias, password.toCharArray());
            if (key instanceof PrivateKey) {
                Certificate cert = keystore.getCertificate(alias);
                PublicKey publicKey = cert.getPublicKey();

                return new KeyPair(publicKey, (PrivateKey) key);
            }
        }

        return null;
    }

}