Dispatcher prevails

Author: cstamas

pom.xml

@@ -10,7 +10,7 @@
   </parent>
 
   <artifactId>plexus-sec-dispatcher</artifactId>
-  <version>3.0.1-SNAPSHOT</version>
+  <version>4.0.0-SNAPSHOT</version>
 
   <name>Plexus Security Dispatcher Component</name>
 
@@ -75,7 +75,7 @@
         <artifactId>modello-maven-plugin</artifactId>
         <version>2.4.0</version>
         <configuration>
-          <version>3.0.0</version>
+          <version>4.0.0</version>
           <models>
             <model>src/main/mdo/settings-security.mdo</model>
           </models>
@@ -96,6 +96,9 @@
         <groupId>org.apache.maven.plugins</groupId>
         <artifactId>maven-surefire-plugin</artifactId>
         <configuration>
+          <systemProperties>
+            <masterPassword>masterPw</masterPassword>
+          </systemProperties>
           <environmentVariables>
             <MASTER_PASSWORD>masterPw</MASTER_PASSWORD>
           </environmentVariables>

src/main/java/org/codehaus/plexus/components/secdispatcher/MasterMeta.java

@@ -76,7 +76,7 @@ public Field build() {
     /**
      * The key of the item.
      */
-    String id();
+    String name();
 
     /**
      * Returns the display (human) name of the item.

src/main/java/org/codehaus/plexus/components/secdispatcher/Meta.java

@@ -20,7 +20,7 @@
 import org.codehaus.plexus.components.secdispatcher.model.SettingsSecurity;
 
 /**
- * This component decrypts a string, passed to it
+ * This component decrypts a string, passed to it using various dispatchers.
  *
  * @author Oleg Gusakov
  */
@@ -50,16 +50,6 @@ public interface SecDispatcher {
      */
     Set<Meta> availableDispatchers();
 
-    /**
-     * Returns the set of available ciphers, never {@code null}.
-     */
-    Set<String> availableCiphers();
-
-    /**
-     * Returns the set of available master password sources metadata, never {@code null}.
-     */
-    Set<MasterMeta> availableMasterSourcesMetadata();
-
     /**
      * Encrypt given plaintext string.
      *

src/main/java/org/codehaus/plexus/components/secdispatcher/SecDispatcher.java

@@ -28,7 +28,6 @@
 
 import org.codehaus.plexus.components.cipher.PlexusCipher;
 import org.codehaus.plexus.components.cipher.PlexusCipherException;
-import org.codehaus.plexus.components.secdispatcher.MasterMeta;
 import org.codehaus.plexus.components.secdispatcher.Meta;
 import org.codehaus.plexus.components.secdispatcher.SecDispatcher;
 import org.codehaus.plexus.components.secdispatcher.SecDispatcherException;
@@ -46,18 +45,15 @@ public class DefaultSecDispatcher implements SecDispatcher {
     public static final String ATTR_STOP = "]";
 
     protected final PlexusCipher cipher;
-    protected final Map<String, MasterSource> masterSources;
     protected final Map<String, Dispatcher> dispatchers;
     protected final String configurationFile;
 
     @Inject
     public DefaultSecDispatcher(
             PlexusCipher cipher,
-            Map<String, MasterSource> masterSources,
             Map<String, Dispatcher> dispatchers,
             @Named("${configurationFile:-" + DEFAULT_CONFIGURATION + "}") final String configurationFile) {
         this.cipher = requireNonNull(cipher);
-        this.masterSources = requireNonNull(masterSources);
         this.dispatchers = requireNonNull(dispatchers);
         this.configurationFile = requireNonNull(configurationFile);
     }
@@ -67,38 +63,28 @@ public Set<Meta> availableDispatchers() {
         return Set.copyOf(dispatchers.values().stream().map(Dispatcher::meta).collect(Collectors.toSet()));
     }
 
-    @Override
-    public Set<String> availableCiphers() {
-        return cipher.availableCiphers();
-    }
-
-    @Override
-    public Set<MasterMeta> availableMasterSourcesMetadata() {
-        return Set.copyOf(
-                masterSources.values().stream().map(MasterSource::meta).collect(Collectors.toSet()));
-    }
-
     @Override
     public String encrypt(String str, Map<String, String> attr) throws SecDispatcherException {
         if (isEncryptedString(str)) return str;
 
         try {
-            String res;
-            if (attr == null || attr.get(DISPATCHER_NAME_ATTR) == null) {
-                SettingsSecurity sec = getConfiguration(true);
-                String master = getMasterPassword(sec, true);
-                res = cipher.encrypt(getMasterCipher(sec), str, master);
+            if (attr == null) {
+                attr = new HashMap<>();
             } else {
-                String type = attr.get(DISPATCHER_NAME_ATTR);
-                Dispatcher dispatcher = dispatchers.get(type);
-                if (dispatcher == null) throw new SecDispatcherException("no dispatcher for name " + type);
-                res = ATTR_START
-                        + attr.entrySet().stream()
-                                .map(e -> e.getKey() + "=" + e.getValue())
-                                .collect(Collectors.joining(","))
-                        + ATTR_STOP;
-                res += dispatcher.encrypt(str, attr, prepareDispatcherConfig(type));
+                attr = new HashMap<>(attr);
             }
+            if (attr.get(DISPATCHER_NAME_ATTR) == null) {
+                attr.put(DISPATCHER_NAME_ATTR, getConfiguration().getDefaultDispatcher());
+            }
+            String name = attr.get(DISPATCHER_NAME_ATTR);
+            Dispatcher dispatcher = dispatchers.get(name);
+            if (dispatcher == null) throw new SecDispatcherException("no dispatcher for name " + name);
+            String res = ATTR_START
+                    + attr.entrySet().stream()
+                            .map(e -> e.getKey() + "=" + e.getValue())
+                            .collect(Collectors.joining(","))
+                    + ATTR_STOP;
+            res += dispatcher.encrypt(str, attr, prepareDispatcherConfig(name));
             return cipher.decorate(res);
         } catch (PlexusCipherException e) {
             throw new SecDispatcherException(e.getMessage(), e);
@@ -111,16 +97,13 @@ public String decrypt(String str) throws SecDispatcherException {
         try {
             String bare = cipher.unDecorate(str);
             Map<String, String> attr = stripAttributes(bare);
-            if (attr == null || attr.get(DISPATCHER_NAME_ATTR) == null) {
-                SettingsSecurity sec = getConfiguration(true);
-                String master = getMasterPassword(sec, true);
-                return cipher.decrypt(getMasterCipher(sec), bare, master);
-            } else {
-                String type = attr.get(DISPATCHER_NAME_ATTR);
-                Dispatcher dispatcher = dispatchers.get(type);
-                if (dispatcher == null) throw new SecDispatcherException("no dispatcher for name " + type);
-                return dispatcher.decrypt(strip(bare), attr, prepareDispatcherConfig(type));
+            if (attr.get(DISPATCHER_NAME_ATTR) == null) {
+                attr.put(DISPATCHER_NAME_ATTR, getConfiguration().getDefaultDispatcher());
             }
+            String name = attr.get(DISPATCHER_NAME_ATTR);
+            Dispatcher dispatcher = dispatchers.get(name);
+            if (dispatcher == null) throw new SecDispatcherException("no dispatcher for name " + name);
+            return dispatcher.decrypt(strip(bare), attr, prepareDispatcherConfig(name));
         } catch (PlexusCipherException e) {
             throw new SecDispatcherException(e.getMessage(), e);
         }
@@ -143,12 +126,7 @@ public void writeConfiguration(SettingsSecurity configuration) throws IOExceptio
 
     private Map<String, String> prepareDispatcherConfig(String type) {
         HashMap<String, String> dispatcherConf = new HashMap<>();
-        SettingsSecurity sec = getConfiguration(false);
-        String master = getMasterPassword(sec, false);
-        if (master != null) {
-            dispatcherConf.put(Dispatcher.CONF_MASTER_PASSWORD, master);
-        }
-        Map<String, String> conf = SecUtil.getConfig(sec, type);
+        Map<String, String> conf = SecUtil.getConfig(getConfiguration(), type);
         if (conf != null) {
             dispatcherConf.putAll(conf);
         }
@@ -165,27 +143,25 @@ private String strip(String str) {
     }
 
     private Map<String, String> stripAttributes(String str) {
+        HashMap<String, String> result = new HashMap<>();
         int start = str.indexOf(ATTR_START);
         int stop = str.indexOf(ATTR_STOP);
         if (start != -1 && stop != -1 && stop > start) {
             if (start != 0) throw new SecDispatcherException("Attributes can be prefix only");
             if (stop == start + 1) return null;
             String attrs = str.substring(start + 1, stop).trim();
             if (attrs.isEmpty()) return null;
-            Map<String, String> res = null;
             StringTokenizer st = new StringTokenizer(attrs, ",");
             while (st.hasMoreTokens()) {
-                if (res == null) res = new HashMap<>(st.countTokens());
                 String pair = st.nextToken();
                 int pos = pair.indexOf('=');
                 if (pos == -1) throw new SecDispatcherException("Attribute malformed: " + pair);
                 String key = pair.substring(0, pos).trim();
                 String val = pair.substring(pos + 1).trim();
-                res.put(key, val);
+                result.put(key, val);
             }
-            return res;
         }
-        return null;
+        return result;
     }
 
     private boolean isEncryptedString(String str) {
@@ -199,40 +175,18 @@ private Path getConfigurationPath() {
         return Paths.get(location);
     }
 
-    private SettingsSecurity getConfiguration(boolean mandatory) throws SecDispatcherException {
+    private SettingsSecurity getConfiguration() throws SecDispatcherException {
         Path path = getConfigurationPath();
         try {
             SettingsSecurity sec = SecUtil.read(path);
-            if (mandatory && sec == null)
+            if (sec == null)
                 throw new SecDispatcherException("Please check that configuration file on path " + path + " exists");
             return sec;
         } catch (IOException e) {
             throw new SecDispatcherException(e.getMessage(), e);
         }
     }
 
-    private String getMasterPassword(SettingsSecurity sec, boolean mandatory) throws SecDispatcherException {
-        if ((sec == null || sec.getMasterSource() == null) && !mandatory) {
-            return null;
-        }
-        requireNonNull(sec, "configuration is null");
-        String masterSource = requireNonNull(sec.getMasterSource(), "masterSource is null");
-        for (MasterSource masterPasswordSource : masterSources.values()) {
-            String masterPassword = masterPasswordSource.handle(masterSource);
-            if (masterPassword != null) return masterPassword;
-        }
-        if (mandatory) {
-            throw new SecDispatcherException("master password could not be fetched");
-        } else {
-            return null;
-        }
-    }
-
-    private String getMasterCipher(SettingsSecurity sec) throws SecDispatcherException {
-        requireNonNull(sec, "configuration is null");
-        return requireNonNull(sec.getMasterCipher(), "masterCipher is null");
-    }
-
     public String getConfigurationFile() {
         return configurationFile;
     }

src/main/java/org/codehaus/plexus/components/secdispatcher/internal/DefaultSecDispatcher.java

@@ -26,13 +26,6 @@
  *
  */
 public interface Dispatcher {
-    /**
-     * Configuration key for masterPassword. It may be present, if SecDispatcher could
-     * obtain it, but presence is optional. Still, dispatcher may throw and fail the operation
-     * if it requires it.
-     */
-    String CONF_MASTER_PASSWORD = "masterPassword";
-
     /**
      * The metadata of this dispatcher.
      */

src/main/java/org/codehaus/plexus/components/secdispatcher/internal/Dispatcher.java

@@ -13,18 +13,12 @@
 
 package org.codehaus.plexus.components.secdispatcher.internal;
 
-import org.codehaus.plexus.components.secdispatcher.MasterMeta;
 import org.codehaus.plexus.components.secdispatcher.SecDispatcherException;
 
 /**
  * Source of master password.
  */
 public interface MasterSource {
-    /**
-     * Returns the "meta" of this master source, never {@code null}.
-     */
-    MasterMeta meta();
-
     /**
      * Handles the URI to get master password. Implementation may do one of the following things:
      * <ul>