package org.apache.maven.settings.crypto;
   
   /*
    * Licensed to the Apache Software Foundation (ASF) under one
    * or more contributor license agreements.  See the NOTICE file
    * distributed with this work for additional information
    * regarding copyright ownership.  The ASF licenses this file
    * to you under the Apache License, Version 2.0 (the
    * "License"); you may not use this file except in compliance
   * with the License.  You may obtain a copy of the License at
   *
   *   http://www.apache.org/licenses/LICENSE-2.0
   *
   * Unless required by applicable law or agreed to in writing,
   * software distributed under the License is distributed on an
   * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
   * KIND, either express or implied.  See the License for the
   * specific language governing permissions and limitations
   * under the License.
   */
  
  import java.util.ArrayList;
  import java.util.List;
  
  import javax.inject.Inject;
  import javax.inject.Named;
  import javax.inject.Singleton;
  
  import org.apache.maven.settings.Proxy;
  import org.apache.maven.settings.Server;
  import org.apache.maven.settings.building.DefaultSettingsProblem;
  import org.apache.maven.settings.building.SettingsProblem;
  import org.apache.maven.settings.building.SettingsProblem.Severity;
  import org.sonatype.plexus.components.sec.dispatcher.SecDispatcher;
  import org.sonatype.plexus.components.sec.dispatcher.SecDispatcherException;
  
  /**
   * Decrypts passwords in the settings.
   *
   * @author Benjamin Bentmann
   */
  @Named
  @Singleton
  public class DefaultSettingsDecrypter
      implements SettingsDecrypter
  {
      private final SecDispatcher securityDispatcher;
  
      @Inject
      public DefaultSettingsDecrypter( @Named( "maven" ) SecDispatcher securityDispatcher )
      {
          this.securityDispatcher = securityDispatcher;
      }
  
      @Override
      public SettingsDecryptionResult decrypt( SettingsDecryptionRequest request )
      {
          List<SettingsProblem> problems = new ArrayList<>();
  
          List<Server> servers = new ArrayList<>();
  
          for ( Server server : request.getServers() )
          {
              server = server.clone();
  
              servers.add( server );
  
              try
              {
                  server.setPassword( decrypt( server.getPassword() ) );
              }
              catch ( SecDispatcherException e )
              {
                  problems.add( new DefaultSettingsProblem( "Failed to decrypt password for server " + server.getId()
                      + ": " + e.getMessage(), Severity.ERROR, "server: " + server.getId(), -1, -1, e ) );
              }
  
              try
              {
                  server.setPassphrase( decrypt( server.getPassphrase() ) );
              }
              catch ( SecDispatcherException e )
              {
                  problems.add( new DefaultSettingsProblem( "Failed to decrypt passphrase for server " + server.getId()
                      + ": " + e.getMessage(), Severity.ERROR, "server: " + server.getId(), -1, -1, e ) );
              }
          }
  
          List<Proxy> proxies = new ArrayList<>();
  
          for ( Proxy proxy : request.getProxies() )
          {
              proxy = proxy.clone();
  
              proxies.add( proxy );
  
              try
              {
                  proxy.setPassword( decrypt( proxy.getPassword() ) );
             }
             catch ( SecDispatcherException e )
             {
                 problems.add( new DefaultSettingsProblem( "Failed to decrypt password for proxy " + proxy.getId()
                     + ": " + e.getMessage(), Severity.ERROR, "proxy: " + proxy.getId(), -1, -1, e ) );
             }
         }
 
         return new DefaultSettingsDecryptionResult( servers, proxies, problems );
     }
 
     private String decrypt( String str )
         throws SecDispatcherException
     {
         return ( str == null ) ? null : securityDispatcher.decrypt( str );
     }
 
 }