encrypt.java

一个java开发的非常全面的关于证书发放

/*
  Name:         Encrypt.java
  Licensing:    LGPL

  API:          Sun (http://java.sun.com) JCE 1.2.2 API (cleanroom implementation by Bouncy Castle)
  Provider:     Bouncy Castle (http://www.bouncycastle.org)

  Disclaimer:

  COVERED CODE IS PROVIDED UNDER THIS LICENSE ON AN "AS IS" BASIS, WITHOUT WARRANTY OF ANY KIND,
  EITHER EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, WARRANTIES THAT THE COVERED CODE
  IS FREE OF DEFECTS, MERCHANTABLE, FIT FOR A PARTICULAR PURPOSE OR NON-INFRINGING. THE ENTIRE
  RISK AS TO THE QUALITY AND PERFORMANCE OF THE COVERED CODE IS WITH YOU. SHOULD ANY COVERED CODE
  PROVE DEFECTIVE IN ANY RESPECT, YOU (NOT THE INITIAL DEVELOPER OR ANY OTHER CONTRIBUTOR)
  ASSUME THE COST OF ANY NECESSARY SERVICING, REPAIR OR CORRECTION. THIS DISCLAIMER OF WARRANTY
  CONSTITUTES AN ESSENTIAL PART OF THIS LICENSE. NO USE OF ANY COVERED CODE IS AUTHORIZED
  HEREUNDER EXCEPT UNDER THIS DISCLAIMER.
*/

package net.sourceforge.jcetaglib.taglib.crypto;

import net.sourceforge.jcetaglib.lib.Clean;
import net.sourceforge.jcetaglib.lib.Crypt;

import javax.servlet.jsp.JspException;
import javax.servlet.jsp.JspWriter;
import javax.servlet.jsp.PageContext;
import javax.servlet.jsp.tagext.BodyTagSupport;
import java.io.IOException;

/**
 * JSP tag used for symmetric key encryption/decryption of strings
 *
 * @jsp.tag
 * name="encrypt"
 * display-name="Encrypt"
 * body-content="JSP"
 * example="
 * 		<%-- Encrypts tag body with keyfile and store it in session variable 'myvar' --%>

 *		<jce:encrypt keyfile=\"c:/jspkey.key\"

 *			var=\"myvar\"

 *			passphrase=\"<%= new StringBuffer(\"password\") %>\" 

 *			scope=\"session\">

 *		Please encrypt this string...

 *		</jce:encrypt>"
 *
 * description="JSP tag used for symmetric key encryption/decryption of strings"
 *
 * @author Gert Van Ham
 * @author hamgert@users.sourceforge.net
 * @author http://jcetaglib.sourceforge.net
 * @version $Id: Encrypt.java,v 1.5 2004/04/15 07:28:35 hamgert Exp $
 */
public class Encrypt extends BodyTagSupport {

    private static final String PAGE = "page";
    private static final String REQUEST = "request";
    private static final String SESSION = "session";
    private static final String APPLICATION = "application";

    private static final String ENCRYPT = "encrypt";

    private StringBuffer value; // tag attribute
    private String var;     // tag attribute
    private int scope = PageContext.PAGE_SCOPE;      // tag attribute

    private String algorithm = "AES";          // tag attribute
    private String mode = "CBC";               // tag attribute
    private String padding = "PKCS7Padding";   // tag attribute
    private String keyfile;                    // tag attribute
    private StringBuffer passphrase;                 // tag attribute

    private String action = "ENCRYPT";  // tag attribute

    private StringBuffer input;    // what we'll store in scope:var
    private StringBuffer output;   // return text

    public static int getScope(String scope) {
        int ret = PageContext.PAGE_SCOPE; // default

        if (REQUEST.equalsIgnoreCase(scope))
            ret = PageContext.REQUEST_SCOPE;
        else if (SESSION.equalsIgnoreCase(scope))
            ret = PageContext.SESSION_SCOPE;
        else if (APPLICATION.equalsIgnoreCase(scope))
            ret = PageContext.APPLICATION_SCOPE;
        else if (PAGE.equalsIgnoreCase(scope))
            ret = PageContext.PAGE_SCOPE;

        return ret;
    } //getScope()

    public int doEndTag() throws JspException {
        // determine the value by...
        if (value != null) {
            // ... reading our attribute
            input = value;
        } else {
            // ... retrieving and trimming our body
            if (bodyContent == null || bodyContent.getString() == null) {
                input = new StringBuffer("");
            } else {
                input = new StringBuffer(bodyContent.getString().trim());
            }
        }

        // Encrypt or decrypt
        try {
            if (ENCRYPT.equalsIgnoreCase(action)) {
                output = Crypt.encrypt(input, keyfile, passphrase, algorithm, mode, padding, null);
            } else {
                output = Crypt.decrypt(input, keyfile, passphrase, algorithm, mode, padding);
            }
        } catch (Exception e) {
            throw new JspException("JCE Exception: " + e.getMessage(), e);
        }

        // decide what to do with the result
        if (var != null) {
            if (output != null) {
                pageContext.setAttribute(var, output, scope);
            }
        } else {
            if (bodyContent != null) {
                bodyContent.clearBody();
            }

            try {
                JspWriter w = pageContext.getOut();
                w.print(output);
            } catch (IOException ex) {
                throw new JspException(ex.getMessage(), ex);
            }
        }

        return EVAL_PAGE;
    } // doEndTag()

    public void release() {
        // Cleanup all sensitive information
        Clean.blank(value);
        Clean.blank(passphrase);
        Clean.blank(input);
        Clean.blank(output);

        super.release();
    } //release()

    /**
     * @jsp.attribute
     *     description="Optional attribute, the string to encrypt or decrypt. The body of the tag will be taken if omitted"
     *     type="java.lang.StringBuffer"
     *     required="false"
     *     rtexprvalue="true"
     */
    public void setValue(StringBuffer value) {
        this.value = value;
    }

    public StringBuffer getValue() {
        return value;
    }

    /**
     * @jsp.attribute
     *     description="Optional attribute, variable to store the encrypted or decrypted string. The encrypted/decrypted string will be printed if omitted"
     *     type="java.lang.String"
     *     required="false"
     *     rtexprvalue="false"
     */
    public void setVar(String var) {
        this.var = var;
    }

    public String getVar() {
        return var;
    }

    /**
     * @jsp.attribute
     *     description="Scope of the 'var' attribute. Can be 'page', 'session', 'request' or 'application'. Default is 'page'"
     *     type="java.lang.String"
     *     required="false"
     *     rtexprvalue="false"
     */
    public void setScope(String scope) {
        this.scope = getScope(scope);
    }

    /**
     * @jsp.attribute
     *     description="The key algorithm. Default is 'AES'"
     *     type="java.lang.String"
     *     required="false"
     *     rtexprvalue="true"
     */
    public void setAlgorithm(String algorithm) {
        this.algorithm = algorithm;
    }

    /**
     * @jsp.attribute
     *     description="Encryption mode. Default is 'CBC'"
     *     type="java.lang.String"
     *     required="false"
     *     rtexprvalue="true"
     */
    public void setMode(String mode) {
        this.mode = mode;
    }

    /**
     * @jsp.attribute
     *     description="Padding scheme. Default is 'PKCS7Padding'"
     *     type="java.lang.String"
     *     required="false"
     *     rtexprvalue="true"
     */
    public void setPadding(String padding) {
        this.padding = padding;
    }

    /**
     * @jsp.attribute
     *     description="The symmetric key file(name)"
     *     type="java.lang.String"
     *     required="true"
     *     rtexprvalue="true"
     */
    public void setKeyfile(String keyfile) {
        this.keyfile = keyfile;
    }

    /**
     * @jsp.attribute
     *     description="Keystore passphrase"
     *     type="java.lang.StringBuffer"
     *     required="true"
     *     rtexprvalue="true"
     */
    public void setPassphrase(StringBuffer passphrase) {
        this.passphrase = passphrase;
    }

    /**
     * @jsp.attribute
     *     description="The action to perform. 'encrypt' for encryption, 'decrypt' for decryption. Default is 'encrypt'"
     *     type="java.lang.String"
     *     required="false"
     *     rtexprvalue="false"
     */
    public void setAction(String action) {
        this.action = action;
    }
}