• Home
• com.sap.cloud.security
• java-security-test
• 3.5.1
• source code
• RSAKeys.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.sap.cloud.security.test.RSAKeys Maven / Gradle / Ivy

/**
 * SPDX-FileCopyrightText: 2018-2023 SAP SE or an SAP affiliate company and Cloud Security Client Java contributors
 * 

 * SPDX-License-Identifier: Apache-2.0
 */
package com.sap.cloud.security.test;

import org.apache.commons.io.IOUtils;

import java.io.IOException;
import java.nio.charset.StandardCharsets;
import java.security.*;
import java.security.spec.InvalidKeySpecException;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;
import java.util.Base64;

/**
 * Utility class to create RSAKeys used for testing.
 */
public class RSAKeys {

	private static final String RSA = "RSA";
	private static final String KEY_BEGIN_END_REGEX = "-+(BEGIN|END)\\s+(\\w+\\s?)+-+";

	private final KeyPair keyPair;

	private RSAKeys(KeyPair keyPair) {
		this.keyPair = keyPair;
	}

	/**
	 * Generates a random RSA keypair.
	 *
	 * @return the instance.
	 */
	public static RSAKeys generate() {
		KeyPair theKeyPair = generateKeyPair();
		return new RSAKeys(new KeyPair(theKeyPair.getPublic(), theKeyPair.getPrivate()));
	}

	/**
	 * Creates an instance with the given key pair. For more information see {@link RSAKeys#loadPublicKey(String)} and
	 * {@link RSAKeys#loadPrivateKey(String)}.
	 *
	 * @param publicKeyResource
	 * 		the resource path to the key file, e.g. "/publicKey.txt"
	 * @param privateKeyResource
	 * 		the resource path to the key file, e.g. "/privateKey.txt"
	 * @return the instance.
	 * @throws IOException
	 * 		in case the files could not be read.
	 * @throws NoSuchAlgorithmException
	 * 		see {@link KeyFactory#getInstance(java.lang.String)}.
	 * @throws InvalidKeySpecException
	 * 		see {@link KeyFactory#generatePublic(java.security.spec.KeySpec)}.
	 */
	public static RSAKeys fromKeyFiles(String publicKeyResource, String privateKeyResource)
			throws IOException, NoSuchAlgorithmException, InvalidKeySpecException {
		KeyPair keyPair = new KeyPair(loadPublicKey(publicKeyResource), loadPrivateKey(privateKeyResource));
		return new RSAKeys(keyPair);
	}

	/**
	 * Loads the public key from the given file. The key is expected to be encoded according to the X.509 standard and
	 * in base64 format (pem).
	 *
	 * @param publicKeyResource
	 * 		the resource path to the key file.
	 * @return the {@link PublicKey} instance.
	 * @throws IOException
	 * 		in case the file could not be read.
	 * @throws NoSuchAlgorithmException
	 * 		see {@link KeyFactory#getInstance(java.lang.String)}.
	 * @throws InvalidKeySpecException
	 * 		see {@link KeyFactory#generatePublic(java.security.spec.KeySpec)}.
	 */
	public static PublicKey loadPublicKey(String publicKeyResource)
			throws IOException, NoSuchAlgorithmException, InvalidKeySpecException {
		String publicKeyString = readResourceFileAndReplaceBeginEnd(publicKeyResource);
		X509EncodedKeySpec spec = new X509EncodedKeySpec(base64Decode(publicKeyString));
		return KeyFactory.getInstance(RSA).generatePublic(spec);
	}

	/**
	 * Loads the private key from the given file. The key is expected to be according to PKCS #8 standard and in base64
	 * format (pem).
	 *
	 * @param privateKeyResource
	 * 		the resource path to the key file.
	 * @return the {@link PrivateKey} instance.
	 * @throws IOException
	 * 		in case the file could not be read.
	 * @throws NoSuchAlgorithmException
	 * 		see {@link KeyFactory#getInstance(java.lang.String)}.
	 * @throws InvalidKeySpecException
	 * 		see {@link KeyFactory#generatePublic(java.security.spec.KeySpec)}.
	 */
	public static PrivateKey loadPrivateKey(String privateKeyResource)
			throws IOException, NoSuchAlgorithmException, InvalidKeySpecException {
		String privateKeyString = readResourceFileAndReplaceBeginEnd(privateKeyResource);
		PKCS8EncodedKeySpec spec = new PKCS8EncodedKeySpec(base64Decode(privateKeyString));
		return KeyFactory.getInstance(RSA).generatePrivate(spec);
	}

	private static byte[] base64Decode(String publicKeyString) {
		return Base64.getDecoder().decode(publicKeyString);
	}

	private static String readResourceFileAndReplaceBeginEnd(String resource) throws IOException {
		String content = IOUtils.resourceToString(resource, StandardCharsets.US_ASCII);

		String newLinesRemoved = content.replaceAll("\\r|\\n|\n|\r", "");
		return newLinesRemoved.replaceAll(KEY_BEGIN_END_REGEX, "");
	}

	private static KeyPair generateKeyPair() {
		try {
			return KeyPairGenerator.getInstance(RSA).generateKeyPair();
		} catch (NoSuchAlgorithmException e) {
			throw new UnsupportedOperationException(e);
		}
	}

	/**
	 * @return the public key of the pair.
	 */
	public PublicKey getPublic() {
		return keyPair.getPublic();
	}

	/**
	 * @return the private key of the pair.
	 */
	public PrivateKey getPrivate() {
		return keyPair.getPrivate();
	}

}