View Javadoc
1   /**
2    * Licensed to the Apache Software Foundation (ASF) under one
3    * or more contributor license agreements. See the NOTICE file
4    * distributed with this work for additional information
5    * regarding copyright ownership. The ASF licenses this file
6    * to you under the Apache License, Version 2.0 (the
7    * "License"); you may not use this file except in compliance
8    * with the License. You may obtain a copy of the License at
9    *
10   * http://www.apache.org/licenses/LICENSE-2.0
11   *
12   * Unless required by applicable law or agreed to in writing,
13   * software distributed under the License is distributed on an
14   * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15   * KIND, either express or implied. See the License for the
16   * specific language governing permissions and limitations
17   * under the License.
18   */
19  
20  package org.apache.wss4j.dom.common;
21  
22  import javax.security.auth.callback.Callback;
23  import javax.security.auth.callback.CallbackHandler;
24  import javax.security.auth.callback.UnsupportedCallbackException;
25  
26  import org.apache.wss4j.common.ext.WSPasswordCallback;
27  
28  import java.io.IOException;
29  
30  /**
31   * A Callback Handler implementation for the case of processing a Username Token with an
32   * encoded password.
33   */
34  public class EncodedPasswordCallbackHandler implements CallbackHandler {
35  
36      public void handle(Callback[] callbacks)
37          throws IOException, UnsupportedCallbackException {
38          for (Callback callback : callbacks) {
39              if (callback instanceof WSPasswordCallback) {
40                  WSPasswordCallback pc = (WSPasswordCallback) callback;
41                  if (pc.getUsage() == WSPasswordCallback.USERNAME_TOKEN) {
42                      if ("wernerd".equals(pc.getIdentifier())) {
43                          // Base64 encoded SHA-1 hash of "verySecret"
44                          pc.setPassword("hGqoUreBgahTJblQ3DbJIkE6uNs=");
45                      } else if ("bob".equals(pc.getIdentifier())) {
46                          // Base64 encoded SHA-1 hash of "security"
47                          pc.setPassword("jux7xGGAjguKKHg9C+waOiLrCCE=");
48                      }
49                  }
50              } else {
51                  throw new UnsupportedCallbackException(callback, "Unrecognized Callback");
52              }
53          }
54      }
55  }