PasswordCallbackHandler.java example

Explorer
Consent2Share-master
package gov.samhsa.acs.pep.sts;

import java.io.IOException;

import javax.security.auth.callback.Callback;
import javax.security.auth.callback.CallbackHandler;
import javax.security.auth.callback.UnsupportedCallbackException;

import org.apache.wss4j.common.ext.WSPasswordCallback;

public class PasswordCallbackHandler implements CallbackHandler {

	@Override
	public void handle(Callback[] callbacks) throws IOException,
			UnsupportedCallbackException {
		for (int i = 0; i < callbacks.length; i++) {
			if (callbacks[i] instanceof WSPasswordCallback) {
				WSPasswordCallback pc = (WSPasswordCallback) callbacks[i];
				if (pc.getUsage() == WSPasswordCallback.DECRYPT
						|| pc.getUsage() == WSPasswordCallback.SIGNATURE) {
					if ("mystskey".equals(pc.getIdentifier())) {
						pc.setPassword("stskpass");
					}
				} else if (pc.getUsage() == WSPasswordCallback.USERNAME_TOKEN) {
					// TODO: remove hard coding
					if ("alice".equals(pc.getIdentifier())) {
						pc.setPassword("clarinet");
					}
				}
			}
		}
	}
}