for (Map.Entry<?, ?> entry : properties.entrySet()) {
config.put((String) entry.getKey(), (String) entry.getValue());
}
config.put("gatein.codec.config.basedir", f.getParentFile().getAbsolutePath());
} catch (IOException e) {
throw new TokenServiceInitializationException("Failed to read the config parameters from file '" + configFile
+ "'.", e);
} finally {
IOTools.safeClose(in);
}
} else {
// If there is no config for codec in configuration.properties, we generate key if it does not exist and setup the
// default config
builderType = "org.exoplatform.web.security.codec.JCASymmetricCodecBuilder";
String gtnConfDir = null;
if (confDir != null) {
ConfigurationManager confManager = (ConfigurationManager) RootContainer.getInstance().getComponentInstanceOfType(ConfigurationManager.class);
try {
gtnConfDir = confManager.getResource(confDir).getPath();
} catch (Exception ex) {
log.error("Failed to process the path to gateinConfDir", ex);
}
}
if (gtnConfDir == null) {
gtnConfDir = PropertyManager.getProperty("gatein.conf.dir");
if (gtnConfDir == null || gtnConfDir.length() == 0) {
throw new TokenServiceInitializationException("'gatein.conf.dir' property must be set.");
}
}
File f = new File(gtnConfDir + "/codec/codeckey.txt");
if (!f.exists()) {
File codecDir = f.getParentFile();
if (!codecDir.exists()) {
codecDir.mkdir();
}
OutputStream out = null;
try {
KeyGenerator keyGen = KeyGenerator.getInstance("AES");
keyGen.init(128);
SecretKey key = keyGen.generateKey();
KeyStore store = KeyStore.getInstance("JCEKS");
store.load(null, "gtnStorePass".toCharArray());
store.setEntry("gtnKey", new KeyStore.SecretKeyEntry(key),
new KeyStore.PasswordProtection("gtnKeyPass".toCharArray()));
out = new FileOutputStream(f);
store.store(out, "gtnStorePass".toCharArray());
} catch (Exception e) {
throw new TokenServiceInitializationException(e);
} finally {
IOTools.safeClose(out);
}
}
config.put("gatein.codec.jca.symmetric.keyalg", "AES");
config.put("gatein.codec.jca.symmetric.keystore", "codeckey.txt");
config.put("gatein.codec.jca.symmetric.storetype", "JCEKS");
config.put("gatein.codec.jca.symmetric.alias", "gtnKey");
config.put("gatein.codec.jca.symmetric.keypass", "gtnKeyPass");
config.put("gatein.codec.jca.symmetric.storepass", "gtnStorePass");
config.put("gatein.codec.config.basedir", f.getParentFile().getAbsolutePath());
}
try {
log.info("Initialized codec using builder " + builderType);
return Class.forName(builderType).asSubclass(AbstractCodecBuilder.class).newInstance().build(config);
} catch (Exception e) {
throw new TokenServiceInitializationException("Could not initialize codec.", e);
}
}