org.primeframework.jwt.rsa.PEMUtils Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of prime-jwt Show documentation
Show all versions of prime-jwt Show documentation
A Java 8 fluent API for signing, verifying and building JSON Web Tokens
/*
* Copyright (c) 2017, Inversoft Inc., All Rights Reserved
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
* either express or implied. See the License for the specific
* language governing permissions and limitations under the License.
*/
package org.primeframework.jwt.rsa;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.util.Base64;
import java.util.Objects;
/**
* @author Daniel DeGroff
*/
public class PEMUtils {
// PEM Encoded Certificate Start Tag
public static final String CERTIFICATE_PREFIX = "-----BEGIN CERTIFICATE-----";
// PEM Encoded Certificate End Tag
public static final String CERTIFICATE_SUFFIX = "-----END CERTIFICATE-----";
// PEM Encoded RSA Private Key file (PKCS#1) Start Tag
public static final String PKCS_1_PRIVATE_KEY_PREFIX = "-----BEGIN RSA PRIVATE KEY-----";
// PEM Encoded RSA Private Key file (PKCS#1) End Tag
public static final String PKCS_1_PRIVATE_KEY_SUFFIX = "-----END RSA PRIVATE KEY-----";
// RSA Public Key file (PKCS#1) Start Tag
public static final String PKCS_1_PUBLIC_KEY_PREFIX = "-----BEGIN RSA PUBLIC KEY-----";
// RSA Public Key file (PKCS#1) End Tag
public static final String PKCS_1_PUBLIC_KEY_SUFFIX = "-----END RSA PUBLIC KEY-----";
// PEM Encoded RSA Private Key file (PKCS#8) Start Tag
public static final String PKCS_8_PRIVATE_KEY_PREFIX = "-----BEGIN PRIVATE KEY-----";
// PEM Encoded RSA Private Key file (PKCS#8) End Tag
public static final String PKCS_8_PRIVATE_KEY_SUFFIX = "-----END PRIVATE KEY-----";
// PEM Encoded RSA Public Key file (X.509) Start Tag
public static final String PKCS_8_X509_PUBLIC_KEY_PREFIX = "-----BEGIN PUBLIC KEY-----";
// PEM Encoded RSA Public Key file (X.509) End Tag
public static final String PKCS_8_X509_PUBLIC_KEY_SUFFIX = "-----END PUBLIC KEY-----";
private static final Base64.Encoder PEM_ENCODER = Base64.getMimeEncoder(64, new byte[]{'\n'});
public static String encodePrivateKey(PrivateKey privateKey) {
Objects.requireNonNull(privateKey);
if (!privateKey.getAlgorithm().equals("RSA")) {
throw new IllegalStateException("Only RSA keys are currently supported.");
}
if (privateKey.getFormat().equals("PKCS#8")) {
return PKCS_8_PRIVATE_KEY_PREFIX + "\n" +
PEM_ENCODER.encodeToString(privateKey.getEncoded()) + "\n" +
PKCS_8_PRIVATE_KEY_SUFFIX;
}
throw new IllegalStateException("Only RSA PKCS#8 keys are currently supported. Provided key format [" + privateKey.getFormat() + "]");
}
public static String encodePublicKey(PublicKey publicKey) {
Objects.requireNonNull(publicKey);
if (!publicKey.getAlgorithm().equals("RSA")) {
throw new IllegalStateException("Only RSA keys are currently supported.");
}
if (publicKey.getFormat().equals("X.509")) {
return PKCS_8_X509_PUBLIC_KEY_PREFIX + "\n" +
PEM_ENCODER.encodeToString(publicKey.getEncoded()) + "\n" +
PKCS_8_X509_PUBLIC_KEY_SUFFIX;
}
throw new IllegalStateException("Only RSA PKCS#8 keys are currently supported. Provided key format [" + publicKey.getFormat() + "]");
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy