CryptoV1_1.java

Home / az-crypto / src / azkaban / crypto / CryptoV1_1.java
72 lines | 2.549 kB Blame History Raw Download
/*
 * Copyright (C) 2018 LinkedIn Corp. All rights reserved.
 *
 * Licensed under the Apache License, Version 2.0 (the "License"); you may not use
 * this file except in compliance with the License. You may obtain a copy of the
 * License at  http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software distributed
 * under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR
 * CONDITIONS OF ANY KIND, either express or implied.
 */
package azkaban.crypto;

import com.fasterxml.jackson.databind.JsonNode;
import com.fasterxml.jackson.databind.ObjectMapper;
import com.fasterxml.jackson.databind.node.ObjectNode;
import com.google.common.base.Preconditions;
import java.security.Provider;
import org.apache.log4j.Logger;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.jasypt.encryption.pbe.PBEStringEncryptor;
import org.jasypt.encryption.pbe.StandardPBEStringEncryptor;

/**
 * Uses AES algorithm to encrypt and decrypt.
 */
public class CryptoV1_1 implements ICrypto {

  private static final Logger logger = Logger.getLogger(CryptoV1_1.class);

  private static final String CIPHERED_TEXT_KEY = "val";
  private static final String CRYPTO_ALGO = "PBEWITHSHA256AND128BITAES-CBC-BC";
  private static final Provider PROVIDER = new BouncyCastleProvider();

  private static final ObjectMapper MAPPER = new ObjectMapper();

  @Override
  public String encrypt(final String plaintext, final String passphrase,
      final Version cryptoVersion) {
    Preconditions.checkArgument(Version.V1_1.equals(cryptoVersion));

    final String cipheredText = newEncryptor(passphrase).encrypt(plaintext);
    final ObjectNode node = MAPPER.createObjectNode();
    node.put(CIPHERED_TEXT_KEY, cipheredText);
    node.put(VERSION_IDENTIFIER, Version.V1_1.versionStr());

    return Crypto.encode(node.toString());
  }

  @Override
  public String decrypt(final String cipheredText, final String passphrase) {
    try {
      final String jsonStr = Crypto.decode(cipheredText);
      final JsonNode json = MAPPER.readTree(jsonStr);
      return newEncryptor(passphrase).decrypt(json.get(CIPHERED_TEXT_KEY).asText());
    } catch (final Exception e) {
      throw new RuntimeException(e);
    }
  }

  /**
   * AES algorithm
   */
  private PBEStringEncryptor newEncryptor(final String passphrase) {
    final StandardPBEStringEncryptor encryptor = new StandardPBEStringEncryptor();
    encryptor.setPassword(passphrase);
    encryptor.setProvider(PROVIDER);
    encryptor.setAlgorithm(CRYPTO_ALGO);
    return encryptor;
  }
}