Java example source code file (CheckNegotiatedQOPs.java)

This example Java source code file (CheckNegotiatedQOPs.java) is included in the alvinalexander.com "Java Source Code Warehouse" project. The intent of this project is to help you "Learn Java by Example" ^TM.

Learn more about this Java project at its project page.

Java - Java tags/keywords

authorizecallback, checknegotiatedqops, digest_md5, hashmap, namecallback, passwordcallback, realmcallback, samplecallbackhandler, sampleclient, sampleserver, saslclient, saslexception, saslserver, string, util

The CheckNegotiatedQOPs.java Java example source code

/*
 * Copyright (c) 2005, Oracle and/or its affiliates. All rights reserved.
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
 *
 * This code is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License version 2 only, as
 * published by the Free Software Foundation.
 *
 * This code is distributed in the hope that it will be useful, but WITHOUT
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
 * version 2 for more details (a copy is included in the LICENSE file that
 * accompanied this code).
 *
 * You should have received a copy of the GNU General Public License version
 * 2 along with this work; if not, write to the Free Software Foundation,
 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
 *
 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
 * or visit www.oracle.com if you need additional information or have any
 * questions.
 */

/*
 * @test
 * @bug 5091174
 * @summary DigestMD5Server does not return correct value for getNegotiatedProperty(Sasl.QOP)
 */

import java.io.IOException;
import java.util.Map;
import java.util.HashMap;

import javax.security.auth.callback.Callback;
import javax.security.auth.callback.NameCallback;
import javax.security.auth.callback.PasswordCallback;
import javax.security.auth.callback.UnsupportedCallbackException;
import javax.security.sasl.AuthorizeCallback;
import javax.security.sasl.RealmCallback;
import javax.security.sasl.Sasl;
import javax.security.sasl.SaslClient;
import javax.security.sasl.SaslException;
import javax.security.sasl.SaslServer;
import javax.security.auth.callback.CallbackHandler;

public final class CheckNegotiatedQOPs {

    static final String DIGEST_MD5 = "DIGEST-MD5";
    private final int caseNumber;
    private final String requestedQOPs;
    private final String supportedQOPs;
    private final SampleClient client;
    private final SampleServer server;

    public static void main(String[] args) throws Exception {

        new CheckNegotiatedQOPs(1,  "auth",      "auth-conf,auth-int,auth")
            .execute(false);
        new CheckNegotiatedQOPs(2,  "auth-int",  "auth-conf,auth-int,auth")
            .execute(false);
        new CheckNegotiatedQOPs(3,  "auth-conf", "auth-conf,auth-int,auth")
            .execute(false);
        new CheckNegotiatedQOPs(4,  "auth",      "auth-int,auth")
            .execute(false);
        new CheckNegotiatedQOPs(5,  "auth-int",  "auth-int,auth")
            .execute(false);
        new CheckNegotiatedQOPs(6,  "auth-conf", "auth-int,auth")
            .execute(true);
        new CheckNegotiatedQOPs(7,  "auth",      "auth")
            .execute(false);
        new CheckNegotiatedQOPs(8,  "auth-int",  "auth")
            .execute(true);
        new CheckNegotiatedQOPs(9,  "auth-conf", "auth")
            .execute(true);
        new CheckNegotiatedQOPs(10, "auth",      null)
            .execute(false);
        new CheckNegotiatedQOPs(11, "auth-int",  null)
            .execute(true);
        new CheckNegotiatedQOPs(12, "auth-conf", null)
            .execute(true);
    }

    private CheckNegotiatedQOPs(int caseNumber, String requestedQOPs,
        String supportedQOPs) throws SaslException {

      this.caseNumber = caseNumber;
      this.requestedQOPs = requestedQOPs;
      this.supportedQOPs = supportedQOPs;
      this.client = new SampleClient(requestedQOPs);
      this.server = new SampleServer(supportedQOPs);
    }

    private void execute(boolean expectException) throws Exception {

        System.err.println ("Case #" + caseNumber);
        System.err.println ("client requested QOPs=" + requestedQOPs);
        System.err.println ("server supported QOPs=" + supportedQOPs);

        try {
            client.negotiate(server);

            if (expectException) {
                throw new
                    Exception("An exception was expected but none was thrown");
            }

        } catch (SaslException e) {

            if (expectException) {
                System.err.println(e);
                return;

            } else {
                throw e;
            }
        }

        System.err.println("client negotiated QOP=" +
            client.getSaslClient ().getNegotiatedProperty (Sasl.QOP));

        System.err.println("server negotiated QOP=" +
            server.getSaslServer ().getNegotiatedProperty (Sasl.QOP));

        System.err.println();
    }

private final class SampleCallbackHandler implements CallbackHandler {

    public void handle(Callback[] callbacks)
        throws java.io.IOException, UnsupportedCallbackException {
            for (int i = 0; i < callbacks.length; i++) {
                if (callbacks[i] instanceof NameCallback) {
                    NameCallback cb = (NameCallback)callbacks[i];
                    cb.setName(getInput(cb.getPrompt()));

                } else if (callbacks[i] instanceof PasswordCallback) {
                    PasswordCallback cb = (PasswordCallback)callbacks[i];

                    String pw = getInput(cb.getPrompt());
                    char[] passwd = new char[pw.length()];
                    pw.getChars(0, passwd.length, passwd, 0);

                    cb.setPassword(passwd);

                } else if (callbacks[i] instanceof RealmCallback) {
                    RealmCallback cb = (RealmCallback)callbacks[i];
                    //cb.setText(getInput(cb.getPrompt()));
                    cb.setText("127.0.0.1");

                } else if (callbacks[i] instanceof AuthorizeCallback) {
                    AuthorizeCallback cb = (AuthorizeCallback)callbacks[i];
                    cb.setAuthorized(true);

                } else {
                    throw new UnsupportedCallbackException(callbacks[i]);
                }
            }
    }

    /**
     * In real world apps, this would typically be a TextComponent or
     * similar widget.
     */
    private String getInput(String prompt) throws IOException {
        return "dummy-value";
    }
}

private final class SampleClient {

    private final SaslClient saslClient;

    public SampleClient(String requestedQOPs) throws SaslException {

        Map<String,String> properties = new HashMap();

        if (requestedQOPs != null) {
            properties.put(Sasl.QOP, requestedQOPs);
        }
        saslClient = Sasl.createSaslClient(new String[]{ DIGEST_MD5 }, null,
            "local", "127.0.0.1", properties, new SampleCallbackHandler());
    }

    public SaslClient getSaslClient() {
        return saslClient;
    }

    public void negotiate(SampleServer server) throws SaslException {

        byte[] challenge;
        byte[] response;

        response = (saslClient.hasInitialResponse () ?
                  saslClient.evaluateChallenge (new byte [0]) : new byte [0]);

        while (! saslClient.isComplete()) {
            challenge = server.evaluate(response);
            response = saslClient.evaluateChallenge(challenge);
        }
   }
}

private final class SampleServer {

    private final SaslServer saslServer;

    public SampleServer(String supportedQOPs) throws SaslException {

        Map<String,String> properties = new HashMap();

        if (supportedQOPs != null) {
            properties.put(Sasl.QOP, supportedQOPs);
        }
        saslServer = Sasl.createSaslServer(DIGEST_MD5, "local", "127.0.0.1",
            properties, new SampleCallbackHandler());
    }

    public SaslServer getSaslServer() {
        return saslServer;
    }

    public byte[] evaluate(byte[] response) throws SaslException {

      if (saslServer.isComplete()) {
         throw new SaslException ("Server is already complete");
      }

      return saslServer.evaluateResponse(response);
   }
}
}