More stuff

Author: cstamas

src/main/java/org/codehaus/plexus/components/secdispatcher/SecDispatcher.java

@@ -13,6 +13,8 @@
 
 package org.codehaus.plexus.components.secdispatcher;
 
+import java.util.Map;
+
 /**
  * This component decrypts a string, passed to it
  *
@@ -21,13 +23,24 @@
 public interface SecDispatcher {
     String DEFAULT_CONFIGURATION = "~/.m2/settings-security.xml";
     String SYSTEM_PROPERTY_CONFIGURATION_LOCATION = "settings.security";
+    String TYPE_ATTR = "type";
+
+    /**
+     * encrypt given plaintext string
+     *
+     * @param str the plaintext to encrypt
+     * @param attr the attributes, may be {@code null}
+     * @return encrypted string
+     * @throws SecDispatcherException in case of problem
+     */
+    String encrypt(String str, Map<String, String> attr) throws SecDispatcherException;
 
     /**
      * decrypt given encrypted string
      *
-     * @param str
-     * @return decrypted string
-     * @throws SecDispatcherException
+     * @param str the encrypted string
+     * @return plaintext string
+     * @throws SecDispatcherException in case of problem
      */
     String decrypt(String str) throws SecDispatcherException;
 }

src/main/java/org/codehaus/plexus/components/secdispatcher/internal/DefaultSecDispatcher.java

@@ -22,6 +22,7 @@
 import java.util.HashMap;
 import java.util.Map;
 import java.util.StringTokenizer;
+import java.util.stream.Collectors;
 
 import org.codehaus.plexus.components.cipher.PlexusCipher;
 import org.codehaus.plexus.components.cipher.PlexusCipherException;
@@ -37,77 +38,82 @@
 @Singleton
 @Named
 public class DefaultSecDispatcher implements SecDispatcher {
-    public static final String TYPE_ATTR = "type";
-    public static final char ATTR_START = '[';
-    public static final char ATTR_STOP = ']';
+    public static final String ATTR_START = "[";
+    public static final String ATTR_STOP = "]";
 
     protected final PlexusCipher cipher;
     protected final Map<String, MasterPasswordSource> masterPasswordSources;
-    protected final Map<String, PasswordDecryptor> decryptors;
-    protected String configurationFile;
+    protected final Map<String, Dispatcher> dispatchers;
+    protected final String configurationFile;
 
     @Inject
     public DefaultSecDispatcher(
             PlexusCipher cipher,
             Map<String, MasterPasswordSource> masterPasswordSources,
-            Map<String, PasswordDecryptor> decryptors,
+            Map<String, Dispatcher> dispatchers,
             @Named("${configurationFile:-" + DEFAULT_CONFIGURATION + "}") final String configurationFile) {
-        this.cipher = cipher;
-        this.masterPasswordSources = masterPasswordSources;
-        this.decryptors = decryptors;
-        this.configurationFile = configurationFile;
+        this.cipher = requireNonNull(cipher);
+        this.masterPasswordSources = requireNonNull(masterPasswordSources);
+        this.dispatchers = requireNonNull(dispatchers);
+        this.configurationFile = requireNonNull(configurationFile);
     }
 
     // ---------------------------------------------------------------
 
     @Override
-    public String decrypt(String str) throws SecDispatcherException {
-        if (!isEncryptedString(str)) return str;
-
-        String bare;
+    public String encrypt(String str, Map<String, String> attr) throws SecDispatcherException {
+        if (isEncryptedString(str)) return str;
 
         try {
-            bare = cipher.unDecorate(str);
-
-            Map<String, String> attr = stripAttributes(bare);
-
             String res;
-
             SettingsSecurity sec = getSec();
-
-            if (attr == null || attr.get("type") == null) {
+            if (attr == null || attr.get(TYPE_ATTR) == null) {
                 String master = getMaster(sec);
-
-                res = cipher.decrypt(bare, master);
+                res = cipher.encrypt(str, master);
             } else {
                 String type = attr.get(TYPE_ATTR);
-
-                if (decryptors == null)
-                    throw new SecDispatcherException(
-                            "plexus container did not supply any required dispatchers - cannot lookup " + type);
-
                 Map<String, String> conf = SecUtil.getConfig(sec, type);
+                Dispatcher dispatcher = dispatchers.get(type);
+                if (dispatcher == null) throw new SecDispatcherException("no dispatcher for type " + type);
+                res = dispatcher.encrypt(str, attr, conf);
+                res += ATTR_START
+                        + attr.entrySet().stream()
+                                .map(e -> e.getKey() + "=" + e.getValue())
+                                .collect(Collectors.joining(","))
+                        + ATTR_STOP;
+            }
+            return cipher.decorate(res);
+        } catch (PlexusCipherException e) {
+            throw new SecDispatcherException(e.getMessage(), e);
+        }
+    }
 
-                PasswordDecryptor dispatcher = decryptors.get(type);
-
-                if (dispatcher == null) throw new SecDispatcherException("no dispatcher for hint " + type);
-
+    @Override
+    public String decrypt(String str) throws SecDispatcherException {
+        if (!isEncryptedString(str)) return str;
+        try {
+            String bare = cipher.unDecorate(str);
+            Map<String, String> attr = stripAttributes(bare);
+            SettingsSecurity sec = getSec();
+            if (attr == null || attr.get(TYPE_ATTR) == null) {
+                String master = getMaster(sec);
+                return cipher.decrypt(bare, master);
+            } else {
+                String type = attr.get(TYPE_ATTR);
+                Map<String, String> conf = SecUtil.getConfig(sec, type);
+                Dispatcher dispatcher = dispatchers.get(type);
+                if (dispatcher == null) throw new SecDispatcherException("no dispatcher for type " + type);
                 String pass = strip(bare);
-
                 return dispatcher.decrypt(pass, attr, conf);
             }
-
-            return res;
         } catch (PlexusCipherException e) {
             throw new SecDispatcherException(e.getMessage(), e);
         }
     }
 
     private String strip(String str) {
         int pos = str.indexOf(ATTR_STOP);
-
         if (pos != -1) return str.substring(pos + 1);
-
         return str;
     }
 
@@ -151,7 +157,6 @@ private Map<String, String> stripAttributes(String str) {
 
     private boolean isEncryptedString(String str) {
         if (str == null) return false;
-
         return cipher.isEncryptedString(str);
     }
 
@@ -171,8 +176,6 @@ private SettingsSecurity getSec() throws SecDispatcherException {
         return sec;
     }
 
-    // ----------------------------------------------------------------------------
-
     private String getMaster(SettingsSecurity sec) throws SecDispatcherException {
         String masterSource = requireNonNull(sec.getMasterSource(), "masterSource is null");
         try {
@@ -186,36 +189,8 @@ private String getMaster(SettingsSecurity sec) throws SecDispatcherException {
         }
         throw new SecDispatcherException("master password could not be fetched");
     }
-    // ---------------------------------------------------------------
+
     public String getConfigurationFile() {
         return configurationFile;
     }
-
-    public void setConfigurationFile(String file) {
-        configurationFile = file;
-    }
-
-    // ---------------------------------------------------------------
-
-    private static boolean propertyExists(String[] values, String[] av) {
-        if (values != null) {
-            for (String item : values) {
-                String p = System.getProperty(item);
-
-                if (p != null) {
-                    return true;
-                }
-            }
-
-            if (av != null)
-                for (String value : values)
-                    for (String s : av) {
-                        if (("--" + value).equals(s)) {
-                            return true;
-                        }
-                    }
-        }
-
-        return false;
-    }
 }

src/main/java/org/codehaus/plexus/components/secdispatcher/internal/PasswordDecryptor.java renamed to src/main/java/org/codehaus/plexus/components/secdispatcher/internal/Dispatcher.java

@@ -18,22 +18,31 @@
 import org.codehaus.plexus.components.secdispatcher.SecDispatcherException;
 
 /**
- *
+ * Dispatcher.
  *
  * @author Oleg Gusakov
  * @version $Id$
  *
  */
-public interface PasswordDecryptor {
+public interface Dispatcher {
+    /**
+     * encrypt given plaintext string
+     *
+     * @param str string to encrypt
+     * @param attributes attributes, never {@code null}
+     * @param config configuration from settings-security.xml, may be {@code null}
+     * @return encrypted string
+     */
+    String encrypt(String str, Map<String, String> attributes, Map<String, String> config)
+            throws SecDispatcherException;
+
     /**
      * decrypt given encrypted string
      *
-     * @param str - string to decrypt
-     * @param attributes - string attributes
-     * @param config - configuration from settings-security.xml, if any
+     * @param str string to decrypt
+     * @param attributes attributes, never {@code null}
+     * @param config configuration from settings-security.xml, may be {@code null}
      * @return decrypted string
-     *
-     * @throws SecDispatcherException
      */
     String decrypt(String str, Map<String, String> attributes, Map<String, String> config)
             throws SecDispatcherException;

src/main/java/org/codehaus/plexus/components/secdispatcher/internal/decryptor/StaticPasswordDecryptor.java renamed to src/main/java/org/codehaus/plexus/components/secdispatcher/internal/dispatcher/StaticDispatcher.java

@@ -11,20 +11,28 @@
  * See the Apache License Version 2.0 for the specific language governing permissions and limitations there under.
  */
 
-package org.codehaus.plexus.components.secdispatcher.internal.decryptor;
+package org.codehaus.plexus.components.secdispatcher.internal.dispatcher;
 
 import java.util.Map;
 
 import org.codehaus.plexus.components.secdispatcher.SecDispatcherException;
-import org.codehaus.plexus.components.secdispatcher.internal.PasswordDecryptor;
+import org.codehaus.plexus.components.secdispatcher.internal.Dispatcher;
 
 import static java.util.Objects.requireNonNull;
 
-public class StaticPasswordDecryptor implements PasswordDecryptor {
+public class StaticDispatcher implements Dispatcher {
     private final String decrypted;
+    private final String encrypted;
 
-    public StaticPasswordDecryptor(String decrypted) {
+    public StaticDispatcher(String decrypted, String encrypted) {
         this.decrypted = requireNonNull(decrypted);
+        this.encrypted = requireNonNull(encrypted);
+    }
+
+    @Override
+    public String encrypt(String str, Map<String, String> attributes, Map<String, String> config)
+            throws SecDispatcherException {
+        return encrypted;
     }
 
     @Override

src/test/java/org/codehaus/plexus/components/secdispatcher/internal/SecUtilTest.java

@@ -19,7 +19,7 @@
 import java.util.Map;
 
 import org.codehaus.plexus.components.cipher.internal.DefaultPlexusCipher;
-import org.codehaus.plexus.components.secdispatcher.internal.decryptor.StaticPasswordDecryptor;
+import org.codehaus.plexus.components.secdispatcher.internal.dispatcher.StaticDispatcher;
 import org.codehaus.plexus.components.secdispatcher.internal.sources.EnvMasterPasswordSource;
 import org.codehaus.plexus.components.secdispatcher.internal.sources.GpgAgentMasterPasswordSource;
 import org.codehaus.plexus.components.secdispatcher.internal.sources.StaticMasterPasswordSource;
@@ -45,7 +45,7 @@
 public class SecUtilTest {
     String masterPassword = "masterPw";
     String password = "somePassword";
-    String passwordEncrypted = "{a/8OtPCGPvQLUVF+n6+UDTD3SeRCdqb0tPJLF71cs29M9Ms81MAb3Y1XG/TS4C4f}";
+    String passwordEncrypted = "{TT2NQZ4iAdoHqsSfYUab3s6X2IHl5qaf4vx/F8DvtSI=}";
 
     String _confName = "cname";
 
@@ -101,6 +101,20 @@ void testRead() throws Exception {
         assertEquals(_propVal, conf.get(_propName));
     }
 
+    @Test
+    void testEncrypt() throws Exception {
+        DefaultSecDispatcher sd = new DefaultSecDispatcher(
+                new DefaultPlexusCipher(),
+                Map.of("static", new StaticMasterPasswordSource(masterPassword)),
+                Map.of(),
+                DefaultSecDispatcher.DEFAULT_CONFIGURATION);
+
+        String enc = sd.encrypt(password, null);
+        assertNotNull(enc);
+        String password1 = sd.decrypt(enc);
+        assertEquals(password, password1);
+    }
+
     @Test
     void testDecrypt() throws Exception {
         DefaultSecDispatcher sd = new DefaultSecDispatcher(
@@ -187,18 +201,33 @@ void testDecryptGpg() throws Exception {
     }
 
     @Test
-    void testDecryptWithDecryptor() throws Exception {
+    void testEncryptWithDispatcher() throws Exception {
+        DefaultSecDispatcher sd = new DefaultSecDispatcher(
+                new DefaultPlexusCipher(),
+                Map.of("static", new StaticMasterPasswordSource(masterPassword)),
+                Map.of("magic", new StaticDispatcher("decrypted", "encrypted")),
+                DefaultSecDispatcher.DEFAULT_CONFIGURATION);
+
+        String enc = sd.encrypt("whatever", Map.of("type", "magic", "a", "b"));
+        assertNotNull(enc);
+        System.out.println(enc);
+        String password1 = sd.decrypt(enc);
+        assertEquals("decrypted", password1);
+    }
+
+    @Test
+    void testDecryptWithDispatcher() throws Exception {
         DefaultSecDispatcher sd = new DefaultSecDispatcher(
                 new DefaultPlexusCipher(),
                 Map.of("static", new StaticMasterPasswordSource(masterPassword)),
-                Map.of("magic", new StaticPasswordDecryptor("magic")),
+                Map.of("magic", new StaticDispatcher("decrypted", "encrypted")),
                 DefaultSecDispatcher.DEFAULT_CONFIGURATION);
 
         String pass = sd.decrypt("{" + Base64.getEncoder().encodeToString("whatever".getBytes(StandardCharsets.UTF_8))
                 + "[a=b,type=magic]}");
 
         assertNotNull(pass);
 
-        assertEquals("magic", pass);
+        assertEquals("decrypted", pass);
     }
 }