com.google.api.client.auth.oauth.OAuthHmacSha256Signer Maven / Gradle / Ivy

Go to download

Show more of this group Show more artifacts with this name
Show all versions of google-oauth-client Show documentation

Google OAuth Client Library for Java. Functionality that works on all supported Java platforms, including Java 5 (or higher) desktop (SE) and web (EE), Android, and Google App Engine.

The newest version!

/*
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except
 * in compliance with the License. You may obtain a copy of the License at
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software distributed under the License
 * is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express
 * or implied. See the License for the specific language governing permissions and limitations under
 * the License.
 */

package com.google.api.client.auth.oauth;

import com.google.api.client.util.StringUtils;
import com.google.common.io.BaseEncoding;
import java.security.GeneralSecurityException;
import javax.crypto.Mac;
import javax.crypto.SecretKey;
import javax.crypto.spec.SecretKeySpec;

/** OAuth {@code "HMAC-SHA256"} signature method. */
public final class OAuthHmacSha256Signer implements OAuthSigner {

  /** Client secret */
  private final String clientSharedSecret;

  /** Token secret */
  private String tokenSharedSecret;

  public void setTokenSecret(String tokenSecret) {
    tokenSharedSecret = tokenSecret;
  }

  public OAuthHmacSha256Signer(String clientSecret) {
    this.clientSharedSecret = clientSecret;
  }

  @Override
  public String getSignatureMethod() {
    return "HMAC-SHA256";
  }

  @Override
  public String computeSignature(String signatureBaseString) throws GeneralSecurityException {
    // compute key
    StringBuilder keyBuffer = new StringBuilder();
    if (clientSharedSecret != null) {
      keyBuffer.append(OAuthParameters.escape(clientSharedSecret));
    }
    keyBuffer.append('&');
    if (tokenSharedSecret != null) {
      keyBuffer.append(OAuthParameters.escape(tokenSharedSecret));
    }
    String key = keyBuffer.toString();
    // sign
    SecretKey secretKey = new SecretKeySpec(StringUtils.getBytesUtf8(key), "HmacSHA256");
    Mac mac = Mac.getInstance("HmacSHA256");
    mac.init(secretKey);
    return BaseEncoding.base64().encode(mac.doFinal(StringUtils.getBytesUtf8(signatureBaseString)));
  }
}