IPsecConfig.java example

Explorer
coprhd-controller-master
/*
 * Copyright (c) 2015 EMC Corporation
 * All Rights Reserved
 *
 * This software contains the intellectual property of EMC Corporation
 * or is licensed to EMC Corporation from third parties.  Use of this
 * software and the intellectual property contained therein is expressly
 * limited to the terms and conditions of the License Agreement under which
 * it is provided by or on behalf of EMC.
 */
package com.emc.storageos.security.ipsec;

import com.emc.storageos.coordinator.client.service.CoordinatorClient;
import com.emc.storageos.coordinator.exceptions.CoordinatorException;
import com.emc.storageos.security.exceptions.SecurityException;
import com.emc.storageos.security.keystore.impl.CoordinatorConfigStoringHelper;
import org.jsoup.helper.StringUtil;
import org.slf4j.Logger;

import java.io.BufferedReader;
import java.io.File;
import java.io.FileReader;
import java.util.Calendar;

/**
 * The class to read and write IPsec Configurations to ZK.
 */
public class IPsecConfig {
    private static final Logger log = org.slf4j.LoggerFactory.getLogger(IPsecConfig.class);

    private static final String IPSEC_CONFIG_LOCK = "IPsecConfigLock";
    private static final String IPSEC_CONFIG_KIND = "ipsec";
    private static final String IPSEC_CONFIG_ID = "ipsec_config";
    private static final String IPSEC_PSK_KEY = "ipsec_key";
    public static final String IPSEC_STATUS = "ipsec_status";
    private static final java.lang.String IPSEC_KEY_UPDATED_TIME = "ipsec_key_updated_time";

    // Properties injected by spring
    private CoordinatorClient coordinator;
    private String defaultPskFile;

    private CoordinatorConfigStoringHelper coordinatorHelper;

    /**
     * Get pre-shared key of the current site.
     * @return
     * @throws Exception
     */
    public String getPreSharedKey() throws Exception {
        String preSharedKey = getPreSharedKeyFromZK();
        if (StringUtil.isBlank(preSharedKey)) {
            log.info("No pre shared key in zk, loading from file ...");
            preSharedKey = loadDefaultIpsecKeyFromFile();
        }
        return preSharedKey;
    }

    public String getPreSharedKeyFromZK() throws CoordinatorException {
        try {
            return getCoordinatorHelper().readConfig(IPSEC_CONFIG_KIND, IPSEC_CONFIG_ID, IPSEC_PSK_KEY);
        } catch (Exception e) {
            throw CoordinatorException.fatals.unableToDecodeDataFromCoordinator(e);
        }
    }

    /**
     * write pre-shared key to ZK.
     * @param preSharedKey
     * @throws Exception
     */
    public void setPreSharedKey(String preSharedKey) throws CoordinatorException {
        try {
            getCoordinatorHelper().createOrUpdateConfig(preSharedKey, IPSEC_CONFIG_LOCK, IPSEC_CONFIG_KIND, IPSEC_CONFIG_ID, IPSEC_PSK_KEY);
            String updatedTime = Long.toString(Calendar.getInstance().getTime().getTime());
            getCoordinatorHelper().createOrUpdateConfig(updatedTime, IPSEC_CONFIG_LOCK, IPSEC_CONFIG_KIND, IPSEC_CONFIG_ID, IPSEC_KEY_UPDATED_TIME);
        } catch (Exception e) {
            throw CoordinatorException.fatals.unableToPersistTheConfiguration(e);
        }
    }

    private String loadDefaultIpsecKeyFromFile() throws Exception {
        BufferedReader in = new BufferedReader(new FileReader(new File(defaultPskFile)));
        try {
            String key = in.readLine();
            return key;
        } finally {
            in.close();
        }
    }

    private CoordinatorConfigStoringHelper getCoordinatorHelper() {
        if (coordinatorHelper == null) {
            coordinatorHelper = new CoordinatorConfigStoringHelper(coordinator);
        }
        return coordinatorHelper;
    }

    /**
     * Spring inject method
     * @param coordinator
     */
    public void setCoordinator(CoordinatorClient coordinator) {
        this.coordinator = coordinator;
    }

    /**
     * Spring inject method
     * @param defaultPskFile
     */
    public void setDefaultPskFile(String defaultPskFile) {
        this.defaultPskFile = defaultPskFile;
    }

    /**
     * get ipsec status of current vdc
     *
     * @return
     * @throws Exception
     */
    public String getIpsecStatus() {
        try {
            return getCoordinatorHelper().readConfig(IPSEC_CONFIG_KIND, IPSEC_CONFIG_ID, IPSEC_STATUS);
        } catch (Exception e) {
            throw SecurityException.fatals.failToChangeIPsecStatus(e.getMessage());
        }
    }

    /**
     * write ipsec status to ZK
     *
     * @param status
     * @throws Exception
     */
    public void setIpsecStatus(String status) {
        try {
            getCoordinatorHelper().createOrUpdateConfig(status.toLowerCase(),
                    IPSEC_CONFIG_LOCK, IPSEC_CONFIG_KIND, IPSEC_CONFIG_ID, IPSEC_STATUS);
        } catch (Exception e) {
            throw SecurityException.fatals.failToChangeIPsecStatus(e.getMessage());
        }
    }

    public String getIpsecKeyUpdatedTime() {
        try {
            return getCoordinatorHelper().readConfig(IPSEC_CONFIG_KIND, IPSEC_CONFIG_ID, IPSEC_KEY_UPDATED_TIME);
        } catch (Exception e) {
            throw SecurityException.fatals.failToChangeIPsecStatus(e.getMessage());
        }
    }
}