/**
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.camel.component.shiro.security;
import org.apache.camel.Exchange;
import org.apache.camel.Processor;
import org.apache.shiro.crypto.AesCipherService;
import org.apache.shiro.crypto.CipherService;
import org.apache.shiro.util.ByteSource;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
public class ShiroSecurityTokenInjector implements Processor {
private static final Logger LOG = LoggerFactory.getLogger(ShiroSecurityTokenInjector.class);
private final byte[] bits128 = {
(byte) 0x08, (byte) 0x09, (byte) 0x0A, (byte) 0x0B,
(byte) 0x0C, (byte) 0x0D, (byte) 0x0E, (byte) 0x0F,
(byte) 0x10, (byte) 0x11, (byte) 0x12, (byte) 0x13,
(byte) 0x14, (byte) 0x15, (byte) 0x16, (byte) 0x17};
private byte[] passPhrase;
private ShiroSecurityToken securityToken;
private CipherService cipherService;
private boolean base64;
public ShiroSecurityTokenInjector() {
this.passPhrase = bits128;
// Set up AES encryption based cipher service, by default
cipherService = new AesCipherService();
}
public ShiroSecurityTokenInjector(ShiroSecurityToken securityToken, byte[] passPhrase) {
this();
this.setSecurityToken(securityToken);
this.setPassPhrase(passPhrase);
}
public ShiroSecurityTokenInjector(ShiroSecurityToken securityToken, byte[] passPhrase, CipherService cipherService) {
this(securityToken, passPhrase);
this.cipherService = cipherService;
}
public ByteSource encrypt() throws Exception {
if (passPhrase == bits128) {
LOG.warn("Using the default encryption key is not secure");
}
return ShiroSecurityHelper.encrypt(securityToken, passPhrase, cipherService);
}
public void process(Exchange exchange) throws Exception {
ByteSource bytes = encrypt();
Object token;
if (isBase64()) {
token = bytes.toBase64();
} else {
token = bytes;
}
exchange.getIn().setHeader(ShiroSecurityConstants.SHIRO_SECURITY_TOKEN, token);
}
public byte[] getPassPhrase() {
return passPhrase;
}
public void setPassPhrase(byte[] passPhrase) {
this.passPhrase = passPhrase;
}
public void setSecurityToken(ShiroSecurityToken securityToken) {
this.securityToken = securityToken;
}
public ShiroSecurityToken getSecurityToken() {
return securityToken;
}
public CipherService getCipherService() {
return cipherService;
}
public void setCipherService(CipherService cipherService) {
this.cipherService = cipherService;
}
public boolean isBase64() {
return base64;
}
public void setBase64(boolean base64) {
this.base64 = base64;
}
}