001package org.apache.maven.settings.crypto;
002
003/*
004 * Licensed to the Apache Software Foundation (ASF) under one
005 * or more contributor license agreements.  See the NOTICE file
006 * distributed with this work for additional information
007 * regarding copyright ownership.  The ASF licenses this file
008 * to you under the Apache License, Version 2.0 (the
009 * "License"); you may not use this file except in compliance
010 * with the License.  You may obtain a copy of the License at
011 *
012 *   http://www.apache.org/licenses/LICENSE-2.0
013 *
014 * Unless required by applicable law or agreed to in writing,
015 * software distributed under the License is distributed on an
016 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
017 * KIND, either express or implied.  See the License for the
018 * specific language governing permissions and limitations
019 * under the License.
020 */
021
022import java.util.ArrayList;
023import java.util.List;
024
025import org.apache.maven.settings.Proxy;
026import org.apache.maven.settings.Server;
027import org.apache.maven.settings.building.DefaultSettingsProblem;
028import org.apache.maven.settings.building.SettingsProblem;
029import org.apache.maven.settings.building.SettingsProblem.Severity;
030import org.codehaus.plexus.component.annotations.Component;
031import org.codehaus.plexus.component.annotations.Requirement;
032import org.sonatype.plexus.components.sec.dispatcher.SecDispatcher;
033import org.sonatype.plexus.components.sec.dispatcher.SecDispatcherException;
034
035/**
036 * Decrypts passwords in the settings.
037 *
038 * @author Benjamin Bentmann
039 */
040@Component( role = SettingsDecrypter.class )
041public class DefaultSettingsDecrypter
042    implements SettingsDecrypter
043{
044
045    @Requirement( hint = "maven" )
046    private SecDispatcher securityDispatcher;
047
048    @Override
049    public SettingsDecryptionResult decrypt( SettingsDecryptionRequest request )
050    {
051        List<SettingsProblem> problems = new ArrayList<SettingsProblem>();
052
053        List<Server> servers = new ArrayList<Server>();
054
055        for ( Server server : request.getServers() )
056        {
057            server = server.clone();
058
059            servers.add( server );
060
061            try
062            {
063                server.setPassword( decrypt( server.getPassword() ) );
064            }
065            catch ( SecDispatcherException e )
066            {
067                problems.add( new DefaultSettingsProblem( "Failed to decrypt password for server " + server.getId()
068                    + ": " + e.getMessage(), Severity.ERROR, "server: " + server.getId(), -1, -1, e ) );
069            }
070
071            try
072            {
073                server.setPassphrase( decrypt( server.getPassphrase() ) );
074            }
075            catch ( SecDispatcherException e )
076            {
077                problems.add( new DefaultSettingsProblem( "Failed to decrypt passphrase for server " + server.getId()
078                    + ": " + e.getMessage(), Severity.ERROR, "server: " + server.getId(), -1, -1, e ) );
079            }
080        }
081
082        List<Proxy> proxies = new ArrayList<Proxy>();
083
084        for ( Proxy proxy : request.getProxies() )
085        {
086            proxy = proxy.clone();
087
088            proxies.add( proxy );
089
090            try
091            {
092                proxy.setPassword( decrypt( proxy.getPassword() ) );
093            }
094            catch ( SecDispatcherException e )
095            {
096                problems.add( new DefaultSettingsProblem( "Failed to decrypt password for proxy " + proxy.getId()
097                    + ": " + e.getMessage(), Severity.ERROR, "proxy: " + proxy.getId(), -1, -1, e ) );
098            }
099        }
100
101        return new DefaultSettingsDecryptionResult( servers, proxies, problems );
102    }
103
104    private String decrypt( String str )
105        throws SecDispatcherException
106    {
107        return ( str == null ) ? null : securityDispatcher.decrypt( str );
108    }
109
110}