1 /*
2 * Copyright (c) 2002-2022, City of Paris
3 * All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 *
9 * 1. Redistributions of source code must retain the above copyright notice
10 * and the following disclaimer.
11 *
12 * 2. Redistributions in binary form must reproduce the above copyright notice
13 * and the following disclaimer in the documentation and/or other materials
14 * provided with the distribution.
15 *
16 * 3. Neither the name of 'Mairie de Paris' nor 'Lutece' nor the names of its
17 * contributors may be used to endorse or promote products derived from
18 * this software without specific prior written permission.
19 *
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDERS OR CONTRIBUTORS BE
24 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
25 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
26 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
27 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
28 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
29 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
30 * POSSIBILITY OF SUCH DAMAGE.
31 *
32 * License 1.0
33 */
34 package fr.paris.lutece.portal.service.security;
35
36 import java.nio.charset.StandardCharsets;
37 import java.security.GeneralSecurityException;
38 import java.security.PrivateKey;
39 import java.security.PublicKey;
40 import java.util.Base64;
41
42 import javax.crypto.Cipher;
43
44 import fr.paris.lutece.util.rsa.RSAKeyPairUtil;
45
46 /**
47 * Service for encrypting/decrypting data using RSA.
48 */
49 public final class RsaService
50 {
51 private static final String RSA_PADDING = "RSA/ECB/PKCS1Padding";
52
53 private RsaService( )
54 {
55 }
56
57 /**
58 * Encrypt the data
59 *
60 * @param data
61 * @return encrypted data
62 * @throws GeneralSecurityException
63 */
64 public static final String encryptRsa( String data ) throws GeneralSecurityException
65 {
66 return encryptRsa( data, RSAKeyPairUtil.getInstance( ).getPublicKey( ) );
67 }
68
69 /**
70 * Encrypt the data
71 *
72 * @param data
73 * @return encrypted data
74 * @throws GeneralSecurityException
75 */
76 public static final String encryptRsa( String data, PublicKey publicKey ) throws GeneralSecurityException
77 {
78 Cipher cipher = Cipher.getInstance( RSA_PADDING );
79 cipher.init( Cipher.ENCRYPT_MODE, publicKey );
80 return Base64.getUrlEncoder( ).encodeToString( cipher.doFinal( data.getBytes( StandardCharsets.UTF_8 ) ) );
81 }
82
83
84 /**
85 * decrypt the data
86 *
87 * @param data
88 * @return decrypted data
89 * @throws GeneralSecurityException
90 */
91 public static final String decryptRsa( String data ) throws GeneralSecurityException
92 {
93 return decryptRsa( data, RSAKeyPairUtil.getInstance( ).getPrivateKey( ) );
94 }
95
96 /**
97 * decrypt the data
98 *
99 * @param data
100 * @return decrypted data
101 * @throws GeneralSecurityException
102 */
103 public static final String decryptRsa( String data, PrivateKey privateKey ) throws GeneralSecurityException
104 {
105 Cipher cipher = Cipher.getInstance( RSA_PADDING );
106 cipher.init( Cipher.DECRYPT_MODE, privateKey );
107
108 return new String( cipher.doFinal( Base64.getUrlDecoder( ).decode( data.getBytes( StandardCharsets.UTF_8 ) ) ) );
109 }
110 }