com.github.robozonky.app.SecretProviderFactory Maven / Gradle / Ivy
/*
* Copyright 2020 The RoboZonky Project
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package com.github.robozonky.app;
import java.util.Arrays;
import java.util.Optional;
import org.apache.logging.log4j.LogManager;
import org.apache.logging.log4j.Logger;
import com.github.robozonky.internal.secrets.KeyStoreHandler;
import com.github.robozonky.internal.secrets.SecretProvider;
final class SecretProviderFactory {
private static final Logger LOGGER = LogManager.getLogger(SecretProviderFactory.class);
private SecretProviderFactory() {
// no instances
}
/**
* Obtain keystore-based secret provider if possible.
*
* @param cli Command line interface coming from the application.
* @return KeyStore-based secret provider or empty in case of a problem happened inside the keystore.
*/
public static Optional getSecretProvider(final CommandLine cli) {
return cli.getKeystore()
.map(keystore -> {
final char[] password = cli.getPassword();
try {
final KeyStoreHandler ksh = KeyStoreHandler.open(keystore, password);
return Optional.of(SecretProvider.keyStoreBased(ksh));
} catch (final Exception ex) {
LOGGER.error("Failed opening guarded storage.", ex);
return Optional.empty();
} finally {
Arrays.fill(password, ' '); // clear the password from memory
}
})
.orElseThrow(() -> new IllegalStateException("Could not find keystore."));
}
}