예제 #1
0
  public boolean isPasswordValid(String encPassword, String inputPassword, Object salt) {
    // check for null
    if (inputPassword == null) {
      return false;
    }

    String encryptedPassword = encPassword;
    // strip off the prefix
    if (encryptedPassword.startsWith(SSHA_PREFIX)
        || encryptedPassword.startsWith(SSHA_PREFIX.toLowerCase())) {
      encryptedPassword = encryptedPassword.substring(SSHA_PREFIX.length());
    }

    try {
      byte[] decodedBytes = Base64.decodeBase64(encryptedPassword.getBytes("UTF-8"));

      // strip the first 20 char, but make sure it is valie
      if (decodedBytes.length - 20 <= 0) {
        return false;
      }

      byte[] decryptSalt = new byte[decodedBytes.length - 20];
      System.arraycopy(decodedBytes, 20, decryptSalt, 0, decryptSalt.length);

      String check = this.encodePassword(inputPassword, decryptSalt);
      return check.substring(SSHA_PREFIX.length()).equals(encryptedPassword);

    } catch (UnsupportedEncodingException e) {
      throw new RuntimeException("This JVM failed to get bytes in UTF-8 from String: " + salt, e);
    }
  }
예제 #2
0
  public String encodePassword(String password, Object salt) {
    try {
      byte[] saltBytes = null;

      // needs to be null, byteArray, or a String
      if (salt == null) {
        // 4 bytes
        saltBytes = new BigInteger((4 * 8), random).toString(32).getBytes("UTF-8");
      } else if (byte[].class.isInstance(salt)) {
        saltBytes = (byte[]) salt;
      } else {
        throw new IllegalArgumentException("salt must be of type: byte[].");
      }

      // check to make sure we can get the algorithm
      MessageDigest md;
      try {
        md = MessageDigest.getInstance("SHA1");
      } catch (NoSuchAlgorithmException e) {
        throw new RuntimeException("Digest SHA not supported on this JVM.");
      }

      // digest
      md.update(password.getBytes("UTF-8"));

      md.update(saltBytes);
      byte[] digested = md.digest();

      // toBeEncoded = digest + salt
      byte[] toBeEncoded = new byte[digested.length + saltBytes.length];
      System.arraycopy(digested, 0, toBeEncoded, 0, digested.length);
      System.arraycopy(saltBytes, 0, toBeEncoded, digested.length, saltBytes.length);

      return "{SSHA}" + new String(Base64.encodeBase64(toBeEncoded));

    } catch (UnsupportedEncodingException e) {
      throw new RuntimeException("This JVM failed to get bytes in UTF-8 from String: " + salt, e);
    }
  }