credentialutil.java

用jxse开发的一个p2p通讯软件 有聊天 文件共享 视频3大功能

/*
*  Copyright (c) 2001 Sun Microsystems, Inc.  All rights
*  reserved.
*
*  Redistribution and use in source and binary forms, with or without
*  modification, are permitted provided that the following conditions
*  are met:
*
*  1. Redistributions of source code must retain the above copyright
*  notice, this list of conditions and the following disclaimer.
*
*  2. Redistributions in binary form must reproduce the above copyright
*  notice, this list of conditions and the following disclaimer in
*  the documentation and/or other materials provided with the
*  distribution.
*
*  3. The end-user documentation included with the redistribution,
*  if any, must include the following acknowledgment:
*  "This product includes software developed by the
*  Sun Microsystems, Inc. for Project JXTA."
*  Alternately, this acknowledgment may appear in the software itself,
*  if and wherever such third-party acknowledgments normally appear.
*
*  4. The names "Sun", "Sun Microsystems, Inc.", "JXTA" and "Project JXTA"
*  must not be used to endorse or promote products derived from this
*  software without prior written permission. For written
*  permission, please contact Project JXTA at http://www.jxta.org.
*
*  5. Products derived from this software may not be called "JXTA",
*  nor may "JXTA" appear in their name, without prior written
*  permission of Sun.
*
*  THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED
*  WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
*  OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
*  DISCLAIMED.  IN NO EVENT SHALL THE APACHE SOFTWARE FOUNDATION OR
*  ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
*  SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
*  LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
*  USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
*  ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
*  OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
*  OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
*  SUCH DAMAGE.
*  ====================================================================
*
*  This software consists of voluntary contributions made by many
*  individuals on behalf of Project JXTA.  For more
*  information on Project JXTA, please see
*  <http://www.jxta.org/>.
*
*  This license is based on the BSD license adopted by the Apache Foundation.
*
*  $Id: CredentialUtil.java,v 1.10 2007/06/10 21:15:12 nano Exp $
*/

package net.jxta.myjxta.util;

import net.jxta.document.MimeMediaType;
import net.jxta.document.StructuredDocument;
import net.jxta.document.StructuredDocumentFactory;
import net.jxta.endpoint.MessageElement;
import net.jxta.exception.PeerGroupException;
import net.jxta.id.ID;
import net.jxta.id.IDFactory;
import net.jxta.impl.membership.pse.PSEConfig;
import net.jxta.impl.membership.pse.PSECredential;
import net.jxta.impl.membership.pse.PSEMembershipService;
import net.jxta.logging.Logging;
import net.jxta.membership.MembershipService;
import net.jxta.myjxta.MyJXTA;
import net.jxta.myjxta.View;
import net.jxta.peergroup.PeerGroup;

import javax.security.auth.x500.X500Principal;
import javax.swing.*;
import java.awt.*;
import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.security.KeyStoreException;
import java.security.MessageDigest;
import java.security.cert.*;
import java.text.SimpleDateFormat;
import java.util.Date;
import java.util.ResourceBundle;
import java.util.logging.Level;
import java.util.logging.Logger;

/**
 * @author james todd [gonzo at jxta dot org]
 * @version $Id: CredentialUtil.java,v 1.10 2007/06/10 21:15:12 nano Exp $
 */

public class CredentialUtil {

    private static final String NEW_LINE = "\n";
    private static final String COLON = ": ";
    private static final String ALGORITHM = "MD5";
    private static final char[] CHAR_MAP = {'0', '1', '2', '3', '4', '5',
            '6', '7', '8', '9', 'A', 'B', 'C', 'D', 'E', 'F'};
    private static final String TIME_STAMP = "EEE MMM dd hh:mm:ss z yyyy";
    private static final SimpleDateFormat DATE_FORMATTER = new SimpleDateFormat(TIME_STAMP);
    private static final ResourceBundle STRINGS = Resources.getStrings();
    private static final String SUBJECT = STRINGS.getString("label.certificate.subject");
    private static final String FINGER_PRINT = STRINGS.getString("label.certificate.fingerPrint");
    private static final String VALIDITY = STRINGS.getString("label.certificate.validity");
    private static final String START_DATE = STRINGS.getString("label.certificate.startDate");
    private static final String END_DATE = STRINGS.getString("label.certificate.endDate");
    private static final String DATE = STRINGS.getString("label.certificate.date");
    private static final Logger LOG = Logger.getLogger(CredentialUtil.class.getName());

    public static StructuredDocument getCredential(View v, Group g) {
        if (Logging.SHOW_INFO && LOG.isLoggable(Level.INFO)) {
            LOG.info("getCredential");
        }

        return getCredential(v, g != null ? g.getPeerGroup() : null);
    }

    public static StructuredDocument getCredential(View v, PeerGroup pg) {
        if (Logging.SHOW_INFO && LOG.isLoggable(Level.INFO)) {
            LOG.info("get credential");
        }

        StructuredDocument d = null;
        PeerGroup cpg = AuthenticationUtil.getTLSPeerGroup(pg);

        if (!AuthenticationUtil.isAuthenticated(cpg)) {
            if (Logging.SHOW_INFO && LOG.isLoggable(Level.INFO)) {
                LOG.info("authenticating");
            }

            AuthenticationUtil.authenticate(v, cpg);
        }

        if (AuthenticationUtil.isAuthenticated(cpg)) {
            try {
                d = cpg.getMembershipService().getDefaultCredential().getDocument(MimeMediaType.XMLUTF8);
            } catch (PeerGroupException pge) {
                if (Logging.SHOW_SEVERE && LOG.isLoggable(Level.SEVERE)) {
                    LOG.log(Level.SEVERE, "no default credential", pge);
                }
            } catch (Exception e) {
                if (Logging.SHOW_SEVERE && LOG.isLoggable(Level.SEVERE)) {
                    LOG.log(Level.SEVERE, "no default credential", e);
                }
            }
        } else {
            if (Logging.SHOW_SEVERE && LOG.isLoggable(Level.SEVERE)) {
                LOG.severe("not authorized");
            }
        }

        return d;
    }

    public static boolean importCredential(MessageElement me, Group g,
                                           MyJXTA myjxta) {
        if (Logging.SHOW_INFO && LOG.isLoggable(Level.INFO)) {
            LOG.info("importCredential");
        }

        boolean exists = false;
        boolean imported = false;
        PeerGroup cpg = AuthenticationUtil.getTLSPeerGroup(g);

        if (!AuthenticationUtil.isAuthenticated(cpg)) {
            if (Logging.SHOW_FINE && LOG.isLoggable(Level.FINE)) {
                LOG.fine("authenticating");
            }

            AuthenticationUtil.authenticate(myjxta.getView(), cpg);
        }

        if (AuthenticationUtil.isAuthenticated(cpg)) {
            MembershipService ms = cpg != null ? cpg.getMembershipService() : null;
            PSEMembershipService pse = ms != null && ms instanceof PSEMembershipService ? (PSEMembershipService) ms : null;
            PSEConfig pc = pse != null ? pse.getPSEConfig() : null;
            StructuredDocument sd = null;

            if (me != null) { //&&             me instanceof ByteArrayMessageElement) {
                try {
                    sd = StructuredDocumentFactory.newStructuredDocument(MimeMediaType.XMLUTF8, me.getStream());
                } catch (IOException ioe) {
                    if (Logging.SHOW_SEVERE && LOG.isLoggable(Level.SEVERE)) {
                        LOG.log(Level.SEVERE, "can\'t read document", ioe);
                    }
                }
            } else {
                if (LOG.isLoggable(Level.WARNING)) {
                    LOG.warning("me IS NULL");
                }
            }

            PSECredential psec = pse != null && sd != null ?
                    (PSECredential) pse.makeCredential(sd) : null;
            ID pid = psec != null ? psec.getPeerID() : null;

            if (pc != null && pid != null) {
                if (Logging.SHOW_INFO && LOG.isLoggable(Level.INFO)) {
                    LOG.info("checking for certificate: " + pid);
                }

                try {