Examples of org.keyczar.KeyMetadata

• org.keyczar.KeyMetadata
  Encodes metadata for a set of keys which consists of the following:

  • a string-valued name,
  • a KeyPurpose,
  • a KeyType, and
  • a set of KeyVersion values.

  JSON Representation consists of the following fields:

  • "name": a String name,
  • "purpose": JSON representation of KeyPurpose value,
  • "type": JSON representation of KeyType value,
  • "versions": JSON representation of an array of KeyVersion values.

  @author steveweis@gmail.com (Steve Weis) @author arkajit.dey@gmail.com (Arkajit Dey)

    }

    @Override
    public void start() throws Exception {
        String nameFlag = "DNS secret keystore";
        KeyMetadata kmd = new KeyMetadata(nameFlag, KeyPurpose.DECRYPT_AND_ENCRYPT, DefaultKeyType.AES);
        sharedKeystore.ensureCreated(KEY, kmd);
    }

    }

    @Override
    public void start() throws Exception {
        String nameFlag = "Compute secret keystore";
        KeyMetadata kmd = new KeyMetadata(nameFlag, KeyPurpose.DECRYPT_AND_ENCRYPT, DefaultKeyType.AES);
        sharedKeystore.ensureCreated(KEY, kmd);
    }

        return true;
    }

    public KeyczarKey generateKeypair() {
        try {
            KeyczarKey keypair = KeyczarUtils.createKey(new KeyMetadata("RSA Key", KeyPurpose.DECRYPT_AND_ENCRYPT,
                    DefaultKeyType.RSA_PRIV));
            return keypair;
        } catch (Exception e) {
            throw new IllegalStateException("Error generating keypair", e);
        }

            Crypter crypter = null;
            GenericKeyczar store = keyczarFactory.find(Secrets.KEY_TOKEN_ENCRYPT, crypter);
            if (store == null) {
                String nameFlag = "Authentication Token Encryption";

                KeyMetadata kmd = new KeyMetadata(nameFlag, KeyPurpose.DECRYPT_AND_ENCRYPT, DefaultKeyType.RSA_PRIV);
                store = keyczarFactory.create(Secrets.KEY_TOKEN_ENCRYPT, kmd, crypter);
            }
            keyczarFactory.ensureKeyCreated(store);
        }

        {
            Crypter crypter = null;
            GenericKeyczar store = keyczarFactory.find(SharedSecretTokenService.KEYSTORE_ID, crypter);
            if (store == null) {
                String nameFlag = "Authentication Token Signing";

                KeyMetadata kmd = new KeyMetadata(nameFlag, KeyPurpose.SIGN_AND_VERIFY, DefaultKeyType.HMAC_SHA1);
                store = keyczarFactory.create(SharedSecretTokenService.KEYSTORE_ID, kmd, crypter);
            }
            keyczarFactory.ensureKeyCreated(store);
        }

            } catch (Exception e) {
                log.info("Metadata not found");
            }

            if (metadata == null) {
                KeyMetadata kmd = new KeyMetadata(nameFlag, KeyPurpose.DECRYPT_AND_ENCRYPT, DefaultKeyType.RSA_PRIV);
                GenericKeyczar.create(store, kmd);
            }
        }

        {

            Migrations.report(userData);

            UserData.Builder userDataBuilder = UserData.newBuilder(userData);
            UserSecretData.Builder userSecretDataBuilder = UserSecretData.newBuilder(userSecretData);

            KeyczarKey keypair = KeyczarUtils.createKey(new KeyMetadata("RSA Key", KeyPurpose.DECRYPT_AND_ENCRYPT,
                    DefaultKeyType.RSA_PRIV));

            if (userSecretDataBuilder.getPrivateKeyBuilder().hasKeyczar()) {
                throw new IllegalStateException();
            }

        if (challengeKey != null) {
            secretService.addPublicKeyAuth(user, challengeKey, request.publicKeyChallengeResponse);
        }

        KeyczarKey keypair = KeyczarUtils.createKey(new KeyMetadata("RSA Key", KeyPurpose.DECRYPT_AND_ENCRYPT,
                DefaultKeyType.RSA_PRIV));

        user.getPublicKeyBuilder().setKeyczar(KeyczarUtils.getPublicKey(keypair).toString());

        // Create the secret data