private static String getSHA1(byte[] input) { try { byte[] digestBytes = KeyUtils.generateDigest(input); return XMLUtils.encodeToString(digestBytes); } catch (WSSecurityException e) { //REVISIT } return null; }
private static String getSHA1(byte[] input) { try { byte[] digestBytes = KeyUtils.generateDigest(input); return XMLUtils.encodeToString(digestBytes); } catch (WSSecurityException e) { //REVISIT } return null; } }
private static String getSHA1(byte[] input) { try { byte[] digestBytes = KeyUtils.generateDigest(input); return XMLUtils.encodeToString(digestBytes); } catch (WSSecurityException e) { //REVISIT } return null; } }
private static String getSHA1(byte[] input) { try { byte[] digestBytes = KeyUtils.generateDigest(input); return XMLUtils.encodeToString(digestBytes); } catch (WSSecurityException e) { //REVISIT } return null; }
public static String doPasswordDigest(String nonce, String created, byte[] password) { String passwdDigest = null; try { byte[] b1 = nonce != null ? org.apache.xml.security.utils.XMLUtils.decode(nonce) : new byte[0]; byte[] b2 = created != null ? created.getBytes(StandardCharsets.UTF_8) : new byte[0]; byte[] b3 = password; byte[] b4 = new byte[b1.length + b2.length + b3.length]; int offset = 0; System.arraycopy(b1, 0, b4, offset, b1.length); offset += b1.length; System.arraycopy(b2, 0, b4, offset, b2.length); offset += b2.length; System.arraycopy(b3, 0, b4, offset, b3.length); byte[] digestBytes = KeyUtils.generateDigest(b4); passwdDigest = org.apache.xml.security.utils.XMLUtils.encodeToString(digestBytes); } catch (Exception e) { LOG.debug(e.getMessage(), e); } return passwdDigest; }
/** * Sets the KeyIdentifier Element as a Thumbprint. * * Takes a X509 certificate, computes its thumbprint using SHA-1, converts * into base 64 and inserts it into a <code>wsse:KeyIdentifier</code> * element, which is placed in the <code>wsse:SecurityTokenReference</code> * element. * * @param cert is the X509 certificate to get the thumbprint */ public void setKeyIdentifierThumb(X509Certificate cert) throws WSSecurityException { Document doc = element.getOwnerDocument(); byte[] encodedCert = null; try { encodedCert = cert.getEncoded(); } catch (CertificateEncodingException e1) { throw new WSSecurityException( WSSecurityException.ErrorCode.SECURITY_TOKEN_UNAVAILABLE, e1, "encodeError" ); } try { byte[] encodedBytes = KeyUtils.generateDigest(encodedCert); Text text = doc.createTextNode(org.apache.xml.security.utils.XMLUtils.encodeToString(encodedBytes)); createKeyIdentifier(doc, THUMB_URI, text, true); } catch (WSSecurityException e1) { throw new WSSecurityException( WSSecurityException.ErrorCode.FAILURE, e1, "decoding.general" ); } }
private SecurityToken createSecurityToken(KerberosSecurity binarySecurityToken) { SecurityToken token = new SecurityToken(binarySecurityToken.getID()); token.setToken(binarySecurityToken.getElement()); token.setTokenType(binarySecurityToken.getValueType()); byte[] tokenBytes = binarySecurityToken.getToken(); try { token.setSHA1(XMLUtils.encodeToString(KeyUtils.generateDigest(tokenBytes))); } catch (WSSecurityException e) { // Just consume this for now as it isn't critical... } return token; } }
private SecurityToken createSecurityToken(KerberosSecurity binarySecurityToken) { SecurityToken token = new SecurityToken(binarySecurityToken.getID()); token.setToken(binarySecurityToken.getElement()); token.setTokenType(binarySecurityToken.getValueType()); byte[] tokenBytes = binarySecurityToken.getToken(); try { token.setSHA1(XMLUtils.encodeToString(KeyUtils.generateDigest(tokenBytes))); } catch (WSSecurityException e) { // Just consume this for now as it isn't critical... } return token; } }
BinarySecurity bstToken = (BinarySecurity)bstResult.get(WSSecurityEngineResult.TAG_BINARY_SECURITY_TOKEN); byte[] tokenDigest = KeyUtils.generateDigest(bstToken.getToken()); if (Arrays.equals(tokenDigest, keyBytes)) { secretKey = (byte[])bstResult.get(WSSecurityEngineResult.TAG_SECRET); if (certs != null) { try { byte[] digest = KeyUtils.generateDigest(certs[0].getEncoded()); if (Arrays.equals(org.apache.xml.security.utils.XMLUtils.decode(kiValue), digest)) { parserResult.setPrincipal((Principal)bstResult.get(WSSecurityEngineResult.TAG_PRINCIPAL));
private void storeKerberosToken(Message message, KerberosServiceSecurityToken kerberosToken) { SecurityToken token = new SecurityToken(kerberosToken.getId()); token.setTokenType(kerberosToken.getKerberosTokenValueType()); SecretKey secretKey = getSecretKeyFromToken(kerberosToken); token.setKey(secretKey); if (secretKey != null) { token.setSecret(secretKey.getEncoded()); } byte[] ticket = kerberosToken.getBinaryContent(); try { token.setSHA1(XMLUtils.encodeToString(KeyUtils.generateDigest(ticket))); } catch (WSSecurityException e) { // Just consume this for now as it isn't critical... } TokenStoreUtils.getTokenStore(message).add(token); message.getExchange().put(SecurityConstants.TOKEN_ID, token.getId()); }
private void storeKerberosToken(Message message, KerberosServiceSecurityToken kerberosToken) { SecurityToken token = new SecurityToken(kerberosToken.getId()); token.setTokenType(kerberosToken.getKerberosTokenValueType()); SecretKey secretKey = getSecretKeyFromToken(kerberosToken); token.setKey(secretKey); if (secretKey != null) { token.setSecret(secretKey.getEncoded()); } byte[] ticket = kerberosToken.getBinaryContent(); try { token.setSHA1(XMLUtils.encodeToString(KeyUtils.generateDigest(ticket))); } catch (WSSecurityException e) { // Just consume this for now as it isn't critical... } TokenStoreUtils.getTokenStore(message).add(token); message.getExchange().put(SecurityConstants.TOKEN_ID, token.getId()); }
BinarySecurity bstToken = (BinarySecurity)bstResult.get(WSSecurityEngineResult.TAG_BINARY_SECURITY_TOKEN); byte[] tokenDigest = KeyUtils.generateDigest(bstToken.getToken()); if (Arrays.equals(tokenDigest, keyBytes)) { secretKey = (byte[])bstResult.get(WSSecurityEngineResult.TAG_SECRET);
token.setSecret(secretKey.getEncoded()); String sha1 = XMLUtils.encodeToString(KeyUtils.generateDigest(bst.getToken())); token.setSHA1(sha1); token.setTokenType(bst.getValueType());
token.setSecret(secretKey.getEncoded()); String sha1 = XMLUtils.encodeToString(KeyUtils.generateDigest(bst.getToken())); token.setSHA1(sha1); token.setTokenType(bst.getValueType());
BinarySecurity bstToken = (BinarySecurity)bstResult.get(WSSecurityEngineResult.TAG_BINARY_SECURITY_TOKEN); byte[] tokenDigest = KeyUtils.generateDigest(bstToken.getToken()); if (Arrays.equals(tokenDigest, keyBytes)) { secretKey = (byte[])bstResult.get(WSSecurityEngineResult.TAG_SECRET);
secRef.setKeyIdentifierEncKeySHA1(encrKeySha1value); } else { byte[] digestBytes = KeyUtils.generateDigest(secretKey); secRef.setKeyIdentifierEncKeySHA1(org.apache.xml.security.utils.XMLUtils.encodeToString(digestBytes));
secToken.setKeyIdentifierEncKeySHA1(customReferenceValue); } else { byte[] encodedBytes = KeyUtils.generateDigest(encryptedEphemeralKey); secToken.setKeyIdentifierEncKeySHA1(org.apache.xml.security.utils.XMLUtils.encodeToString(encodedBytes)); secToken.setKeyIdentifierEncKeySHA1(customReferenceValue); } else { byte[] encodedBytes = KeyUtils.generateDigest(encryptedEphemeralKey); secToken.setKeyIdentifierEncKeySHA1(org.apache.xml.security.utils.XMLUtils.encodeToString(encodedBytes));
@Override public SecurityToken requestSecurityToken() throws Exception { KerberosSecurity bst = new KerberosSecurity(DOMUtils.createDocument()); bst.setValueType(WSConstants.WSS_GSS_KRB_V5_AP_REQ); bst.setToken(token); bst.addWSUNamespace(); bst.setID(WSSConfig.getNewInstance().getIdAllocator().createSecureId("BST-", bst)); SecurityToken securityToken = new SecurityToken(bst.getID()); securityToken.setToken(bst.getElement()); securityToken.setWsuId(bst.getID()); securityToken.setData(bst.getToken()); String sha1 = Base64.encode(KeyUtils.generateDigest(bst.getToken())); securityToken.setSHA1(sha1); securityToken.setTokenType(bst.getValueType()); return securityToken; }