org.keycloak.models.credential.dto.PasswordSecretData Maven / Gradle / Ivy
package org.keycloak.models.credential.dto;
import com.fasterxml.jackson.annotation.JsonCreator;
import com.fasterxml.jackson.annotation.JsonProperty;
import org.jboss.logging.Logger;
import org.keycloak.common.util.Base64;
import org.keycloak.common.util.MultivaluedHashMap;
import java.io.IOException;
import java.util.List;
import java.util.Map;
public class PasswordSecretData {
public static final Logger logger = Logger.getLogger(PasswordSecretData.class);
private final String value;
private final byte[] salt;
private MultivaluedHashMap additionalParameters;
/**
* Creator with the option to provide customized secret data (multiple salt values, chiefly)
* @param value hash value
* @param salt salt value
* @param additionalParameters additional data required by the algorithm
* @throws IOException invalid base64 in salt value
*/
@JsonCreator
public PasswordSecretData(@JsonProperty("value") String value, @JsonProperty("salt") String salt, @JsonProperty("algorithmData") Map> additionalParameters) throws IOException {
this.additionalParameters = additionalParameters != null ? new MultivaluedHashMap<>( additionalParameters) : null;
if (salt == null || "__SALT__".equals(salt)) {
this.value = value;
this.salt = null;
}
else {
this.value = value;
this.salt = Base64.decode(salt);
}
}
/**
* Default creator (Secret consists only of a value and a single salt)
* @param value hash value
* @param salt salt
*/
public PasswordSecretData(String value, byte[] salt) {
this.value = value;
this.salt = salt;
this.additionalParameters = null;
}
public String getValue() {
return value;
}
public byte[] getSalt() {
return salt;
}
public MultivaluedHashMap getAdditionalParameters() {
if (additionalParameters == null) {
additionalParameters = new MultivaluedHashMap<>();
}
return additionalParameters;
}
}