• Home
• com.identityx.auth
• daon-http-digest-auth
• 1.0.0.37
• source code
• SharedSecretApiKey.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.identityx.auth.impl.keys.SharedSecretApiKey Maven / Gradle / Ivy

/*
* Copyright Daon.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*     http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/

package com.identityx.auth.impl.keys;


import javax.crypto.Mac;
import javax.crypto.spec.SecretKeySpec;

import org.apache.commons.codec.binary.Base64;

import com.identityx.auth.def.ITokenKey;
import com.identityx.auth.impl.MacAlgorithm;
import com.identityx.auth.support.RequestAuthenticationException;

/**
 * This class is a holder for a plain text pair id - sharedSecret.
 * It acts as a api key, or token, see ({@link ITokenKey}, used in order to access the IDX Rest interface.
 * The shared secret is used for mac-ing the content of the messages going back and forth to the server.
 * 
 */
public class SharedSecretApiKey implements ITokenKey {

    private String id;
    private String secret;
	
    public SharedSecretApiKey() {}
    
    public SharedSecretApiKey(String id, String secret) {
    	this.id = id;
    	this.secret = secret;
    }
    
	public String getId() {
		return id;
	}
	public void setId(String id) {
		this.id = id;
	}

	public String getSecret() {
		return secret;
	}
	public void setSecret(String secret) {
		this.secret = secret;
	}
    
	public byte[] applyHMac(byte[] data) {
		
    	byte[] key = Base64.decodeBase64(getSecret());
    	
        try {
        	MacAlgorithm algorithm = MacAlgorithm.HmacSHA256;
            Mac mac = Mac.getInstance(algorithm.toString());
            mac.init(new SecretKeySpec(key, algorithm.toString()));
            
            return mac.doFinal(data);
        } catch (Exception e) {
            throw new RequestAuthenticationException("Unable to calculate a request signature: " + e.getMessage(), e);
        }
	}

}