SecurityAsymNamespacesRouteBuilder.java

/*
 * Copyright (C) Scott Cranton, Jakub Korab, and Christian Posta
 * https://github.com/CamelCookbook
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *    http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package org.camelcookbook.security.xmlsecurity;

import java.util.HashMap;
import java.util.Map;

import org.apache.camel.builder.RouteBuilder;
import org.apache.camel.util.jsse.KeyStoreParameters;
import org.apache.xml.security.encryption.XMLCipher;

/**
 * Demonstrates the use of XML Namespaces with XML encryption.
 */
public class SecurityAsymNamespacesRouteBuilder extends RouteBuilder {
    @Override
    public void configure() throws Exception {
        final boolean secureTagContents = true;

        final KeyStoreParameters trustStoreParameters = new KeyStoreParameters();
        trustStoreParameters.setResource("xml_truststore.jks");
        trustStoreParameters.setPassword("truststorePassword");

        final KeyStoreParameters keyStoreParameters = new KeyStoreParameters();
        keyStoreParameters.setResource("xml_keystore.jks");
        keyStoreParameters.setPassword("keystorePassword");

        final Map<String, String> namespaces = new HashMap<String, String>();
        namespaces.put("c", "http://camelcookbook.org/schema/booksignings");

        from("direct:encrypt").id("encrypt")
            .marshal()
                .secureXML(
                    "/c:booksignings/c:store/c:address", // secure tag
                    namespaces,
                    secureTagContents,
                    "system_a",                    // recipient key alias
                    XMLCipher.TRIPLEDES,           // xml cipher
                    XMLCipher.RSA_v1dot5,          // key cipher
                    trustStoreParameters)
            .to("direct:decrypt");

        from("direct:decrypt").id("decrypt")
            .unmarshal()
                .secureXML(
                    "/c:booksignings/c:store/c:address", // secure tag
                    namespaces,
                    secureTagContents,             // secure tag contents
                    "system_a",                    // recipient key alias
                    XMLCipher.TRIPLEDES,           // xml cipher
                    XMLCipher.RSA_v1dot5,          // key cipher
                    keyStoreParameters,
                    "keyPasswordA")                // key password
            .to("mock:out");
    }
}