diff options
Diffstat (limited to 'plugins/org.eclipse.net4j.util/src/org/eclipse/net4j/util/security/ChallengeNegotiator.java')
-rw-r--r-- | plugins/org.eclipse.net4j.util/src/org/eclipse/net4j/util/security/ChallengeNegotiator.java | 141 |
1 files changed, 141 insertions, 0 deletions
diff --git a/plugins/org.eclipse.net4j.util/src/org/eclipse/net4j/util/security/ChallengeNegotiator.java b/plugins/org.eclipse.net4j.util/src/org/eclipse/net4j/util/security/ChallengeNegotiator.java new file mode 100644 index 0000000000..4054dfa8d1 --- /dev/null +++ b/plugins/org.eclipse.net4j.util/src/org/eclipse/net4j/util/security/ChallengeNegotiator.java @@ -0,0 +1,141 @@ +/*************************************************************************** + * Copyright (c) 2004 - 2008 Eike Stepper, Germany. + * All rights reserved. This program and the accompanying materials + * are made available under the terms of the Eclipse Public License v1.0 + * which accompanies this distribution, and is available at + * http://www.eclipse.org/legal/epl-v10.html + * + * Contributors: + * Eike Stepper - initial API and implementation + **************************************************************************/ +package org.eclipse.net4j.util.security; + +import java.nio.ByteBuffer; +import java.util.Arrays; + +/** + * @author Eike Stepper + */ +public class ChallengeNegotiator extends ChallengeResponseNegotiator +{ + public static final int DEFAULT_TOKEN_LENGTH = 1024; + + private int tokenLength = DEFAULT_TOKEN_LENGTH; + + private IRandomizer randomizer; + + private IUserManager userManager; + + public ChallengeNegotiator() + { + super(true); + } + + public int getTokenLength() + { + return tokenLength; + } + + public void setTokenLength(int tokenLength) + { + this.tokenLength = tokenLength; + } + + public IRandomizer getRandomizer() + { + return randomizer; + } + + public void setRandomizer(IRandomizer randomizer) + { + this.randomizer = randomizer; + } + + public IUserManager getUserManager() + { + return userManager; + } + + public void setUserManager(IUserManager userManager) + { + this.userManager = userManager; + } + + @Override + protected void doBeforeActivate() throws Exception + { + super.doBeforeActivate(); + if (tokenLength <= 0) + { + throw new IllegalStateException("tokenLength must be positive"); + } + + if (randomizer == null) + { + throw new IllegalStateException("randomizer == null"); + } + + if (userManager == null) + { + throw new IllegalStateException("userManager == null"); + } + } + + protected byte[] createRandomToken() + { + byte[] token = new byte[tokenLength]; + randomizer.nextBytes(token); + return token; + } + + protected byte[] encryptToken(String userID, byte[] token) throws SecurityException + { + return userManager.encrypt(userID, token, getAlgorithmName()); + } + + @Override + protected void createChallenge(INegotiationContext context, ByteBuffer challenge) + { + // Create and remember a random token + byte[] randomToken = createRandomToken(); + context.setInfo(randomToken); + + // Set the token into challenge + challenge.putInt(randomToken.length); + challenge.put(randomToken); + } + + @Override + protected void handleChallenge(INegotiationContext context, ByteBuffer challenge, ByteBuffer response) + { + throw new UnsupportedOperationException(); + } + + @Override + protected boolean handleResponse(INegotiationContext context, ByteBuffer response) + { + // Get remembered random token + byte[] randomToken = (byte[])context.getInfo(); + + // Get userID from response + int size = response.getInt(); + byte[] userIDBytes = new byte[size]; + response.get(userIDBytes); + String userID = new String(userIDBytes); + + // Get crypted token from response + size = response.getInt(); + byte[] responseToken = new byte[size]; + response.get(responseToken); + + // Encrypt the remembered token and compare to crypted token from response + byte[] cryptedToken = encryptToken(userID, randomToken); + boolean success = Arrays.equals(responseToken, cryptedToken); + if (success) + { + context.setUserID(userID); + } + + return success; + } +} |