md5token.java

JGRoups源码

package org.jgroups.auth;

import org.jgroups.util.Util;
import org.jgroups.util.HashUtils;
import org.jgroups.Message;

import java.io.DataOutputStream;
import java.io.IOException;
import java.io.DataInputStream;
import java.util.HashMap;
import java.util.Properties;
import java.security.NoSuchAlgorithmException;
import java.security.MessageDigest;
/**
 * <p>
 * This is an example of using a preshared token that is encrypted using an MD5/SHA hash for authentication purposes.  All members of the group have to have the same string value in the JGroups config.
 *</p>
 * <p>
 * Configuration parameters for this example are shown below:
 * </p>
 * <ul>
 *  <li>token_hash (required) = MD5(default)/SHA</li>
 *  <li>auth_value (required) = the string to encrypt</li>
 * </ul>
 * @see org.jgroups.auth.AuthToken
 * @author Chris Mills
 */
public class MD5Token extends AuthToken {

    public static final String TOKEN_ATTR = "auth_value";
    public static final String TOKEN_TYPE = "token_hash";

    private String token = null;
    private String hash_type = "MD5";

    public MD5Token(){
        //need an empty constructor
    }

    public MD5Token(String token){
        this.token = hash(token);
    }

    public MD5Token(String token, String hash_type){
        this.token = hash(token);
        this.hash_type = hash_type;
    }

    public void setValue(Properties properties){
        this.token = hash((String)properties.get(MD5Token.TOKEN_ATTR));
        properties.remove(MD5Token.TOKEN_ATTR);

        if(properties.containsKey(MD5Token.TOKEN_TYPE)){
            hash_type = (String)properties.get(MD5Token.TOKEN_TYPE);
            properties.remove(MD5Token.TOKEN_TYPE);
        }
    }

    public String getName(){
        return "org.jgroups.auth.MD5Token";
    }
    /**
     * Called during setup to hash the auth_value string in to an MD5/SHA hash
     * @param token the string to hash
     * @return the hashed version of the string
     */
    private String hash(String token){
        //perform the hashing of the token key
        String hashedToken = null;

        if(hash_type.equalsIgnoreCase("SHA")){
            hashedToken = HashUtils.sha(token);
        }else{
            hashedToken = HashUtils.md5(token);
        }

        if(hashedToken == null){
            //failed to encrypt
            if(log.isWarnEnabled()){
                log.warn("Failed to hash token - sending in clear text");
            }
            return token;
        }
        return hashedToken;
    }

    public boolean authenticate(AuthToken token, Message msg){

        if((token != null) && (token instanceof MD5Token)){
            //Found a valid Token to authenticate against
            MD5Token serverToken = (MD5Token) token;

            if((this.token != null) && (serverToken.token != null) && (this.token.equalsIgnoreCase(serverToken.token))){
                //validated
                if(log.isDebugEnabled()){
                    log.debug("MD5Token match");
                }
                return true;
            }else{
                if(log.isWarnEnabled()){
                    log.warn("Authentication failed on MD5Token");
                }
                return false;
            }
        }

        if(log.isWarnEnabled()){
            log.warn("Invalid AuthToken instance - wrong type or null");
        }
        return false;
    }

    public void writeTo(DataOutputStream out) throws IOException {
        if(log.isDebugEnabled()){
            log.debug("MD5Token writeTo()");
        }
        Util.writeString(this.token, out);
    }

    public void readFrom(DataInputStream in) throws IOException, IllegalAccessException, InstantiationException {
        if(log.isDebugEnabled()){
            log.debug("MD5Token readFrom()");
        }
        this.token = Util.readString(in);
    }
}