• Home
• com.tryspare
• java.sdk
• 1.1.1
• source code
• SpEccSignatureManager.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.spare.sdk.security.dsa.ecdsa.SpEccSignatureManager Maven / Gradle / Ivy

package com.spare.sdk.security.dsa.ecdsa;

import com.google.common.io.BaseEncoding;
import com.spare.sdk.utils.SpUtils;

import java.nio.charset.StandardCharsets;
import java.security.*;
import java.security.interfaces.ECPrivateKey;
import java.security.interfaces.ECPublicKey;
import java.security.spec.InvalidKeySpecException;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;

public final class SpEccSignatureManager {

    private static final String PRIVATE_KEY_HEADER = "-----BEGIN PRIVATE KEY-----";
    private static final String EC_PRIVATE_KEY_HEADER = "-----BEGIN EC PRIVATE KEY-----";
    private static final String EC_PRIVATE_KEY_FOOTER = "-----END EC PRIVATE KEY-----";
    private static final String PRIVATE_KEY_FOOTER = "-----END PRIVATE KEY-----";
    private static final String PUBLIC_KEY_HEADER = "-----BEGIN PUBLIC KEY-----";
    private static final String PUBLIC_KEY_FOOTER = "-----END PUBLIC KEY-----";

    private SpEccSignatureManager() {
    }

    /**
     * Sign message
     */
    public static String sign(String privateKey, String data) throws NoSuchAlgorithmException, InvalidKeySpecException, InvalidKeyException, SignatureException {
        Signature signer = Signature.getInstance("SHA256withECDSA");
        signer.initSign(readPrivateKey(privateKey));
        signer.update(data.getBytes(StandardCharsets.UTF_8));
        return SpUtils.bytesToBase64(signer.sign());
    }

    /**
     * Verify signature
     */
    public static boolean verify(String publicKey, String data, String signature) throws NoSuchAlgorithmException, InvalidKeySpecException, InvalidKeyException, SignatureException {
        Signature signer = Signature.getInstance("SHA256withECDSA");
        signer.initVerify(readPublicKey(publicKey));
        signer.update(data.getBytes(StandardCharsets.UTF_8));
        return signer.verify(SpUtils.decodeFromBase64(signature));
    }

    /**
     * Read EC public key
     */
    private static ECPublicKey readPublicKey(String pemPublicKey) throws NoSuchAlgorithmException, InvalidKeySpecException {
        String base64 = pemPublicKey.replace(PUBLIC_KEY_FOOTER, "")
                .replace(PUBLIC_KEY_HEADER, "");
        BaseEncoding encode = BaseEncoding.base64();
        X509EncodedKeySpec spec = new X509EncodedKeySpec(encode.withSeparator("\n", 64).decode(base64));
        KeyFactory keyFactory = KeyFactory.getInstance("EC");
        return (ECPublicKey) keyFactory.generatePublic(spec);
    }

    /**
     * Read ecc private key from
     */
    private static ECPrivateKey readPrivateKey(String pemPrivateKey) throws NoSuchAlgorithmException, InvalidKeySpecException {
        String base64 = pemPrivateKey.replace(EC_PRIVATE_KEY_HEADER, "")
                .replace(EC_PRIVATE_KEY_FOOTER, "")
                .replace(PRIVATE_KEY_HEADER, "")
                .replace(PRIVATE_KEY_FOOTER, "");

        BaseEncoding encode = BaseEncoding.base64();

        PKCS8EncodedKeySpec spec = new PKCS8EncodedKeySpec(encode.withSeparator("\n", 64).decode(base64));
        KeyFactory keyFactory = KeyFactory.getInstance("EC");
        return (ECPrivateKey) keyFactory.generatePrivate(spec);
    }
}