• Search by APIs
• Search by Words
• Search Projects

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

• authlib-agent-master
  • configure.sh
  • pom.xml
  • LICENSE
  • README.md
  • scripts
    • backup-config.sh
    • restore-config.sh
    • generate-key.sh
    • write-config.sh
  • yggdrasil-backend
    • src
      • main
        • resources
          • applicationContext_cxf.xml
          • ehcache.xml
          • applicationContext_datasource.xml
          • log4j2.xml
          • applicationContext_config.xml
          • applicationContext_redis.xml
          • applicationContext.xml
          • applicationContext_service.xml
          • application.properties
        • java
          • yushijinhun
            • authlibagent
              • dao
                • ServerIdRepositoryImpl.java
                • ProfileCacheRepository.java
                • ServerIdRepository.java
                • TokenRepositoryImpl.java
                • ProfileCacheRepositoryImpl.java
                • TokenRepository.java
              • web
                • manager
                  • LoginResource.java
                  • LoginResourceImpl.java
                  • RuleResource.java
                  • ProfileInfo.java
                  • LoginParam.java
                  • ErrorResponse.java
                  • KeyResource.java
                  • KeyResourceImpl.java
                  • AccountInfo.java
                  • RuleResourceImpl.java
                  • ApplicationExceptionHandler.java
                  • ProfileResourceImpl.java
                  • AccountResourceImpl.java
                  • AccountResource.java
                  • ConflictException.java
                  • ProfileResource.java
                • yggdrasil
                  • AuthenticateResponse.java
                  • UnsupportedMediaTypeException.java
                  • ResponseSerializer.java
                  • servlet
                    • GameProfileServlet.java
                    • YggdrasilGetServlet.java
                    • ProfileSearchServlet.java
                    • AuthenticateServlet.java
                    • Username2ProfileServlet.java
                    • InvalidateServlet.java
                    • RefreshServlet.java
                    • HasJoinServerServlet.java
                    • SignoutServlet.java
                    • JoinServerServlet.java
                    • YggdrasilPostServlet.java
                    • ValidateServlet.java
                    • YggdrasilServlet.java
                  • ResponseSerializerImpl.java
              • util
                • KeyUtils.java
                • RandomUtils.java
                • ResourceUtils.java
                • TokenAuthResult.java
                • OctetStreamProvider.java
                • ObjectMapperBean.java
                • HexUtils.java
                • UUIDUtils.java
              • service
                • LoginServiceImpl.java
                • YggdrasilService.java
                • PasswordAlgorithm.java
                • LoginService.java
                • YggdrasilServiceImpl.java
                • MojangYggdrasilService.java
                • PasswordAlgorithmSHA512Salt.java
                • ForbiddenOperationException.java
                • SignatureService.java
                • SignatureServiceImpl.java
              • model
                • Token.java
                • TextureModel.java
                • Account.java
                • AccessPolicy.java
                • AccessRule.java
                • GameProfile.java
        • webapp
          • WEB-INF
            • web.xml
    • pom.xml
    • config.properties
  • .gitignore
  • authlib-javaagent
    • src
      • main
        • resources
          • transform.properties
        • java
          • yushijinhun
            • authlibagent
              • javaagent
                • ExhaustiveTransformer.java
                • NamedTransformUnit.java
                • LdcTransformUnit.java
                • TransformUnit.java
                • AuthlibTransformer.java
                • SkinWhitelistDomainTransformUnit.java
                • tweaker
                  • AuthlibTweaker.java
                  • AuthlibClassTransformer.java
                • AuthlibAgent.java
                • Transformer.java
                • YggdrasilPublicKeyTransformUnit.java
    • pom.xml
    • config.properties
  • build.sh

package yushijinhun.authlibagent.web.manager;

import java.io.IOException;
import java.security.GeneralSecurityException;
import java.security.interfaces.RSAPrivateKey;
import javax.ws.rs.BadRequestException;
import javax.ws.rs.ForbiddenException;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.stereotype.Component;
import yushijinhun.authlibagent.service.SignatureService;
import yushijinhun.authlibagent.util.KeyUtils;

@Component("keyResource")
public class KeyResourceImpl implements KeyResource {

	@Value("#{config['security.allowDownloadPrivateKey']}")
	private boolean allowDownloadPrivateKey;

	@Value("#{config['security.allowUploadPrivateKey']}")
	private boolean allowUploadPrivateKey;

	@Autowired
	private SignatureService signatureService;

	@Override
	public byte[] getEncodedKey() {
		if (!allowDownloadPrivateKey) {
			throw new ForbiddenException("It is not allowed to download the private key");
		}

		RSAPrivateKey key = signatureService.getKey();
		return key == null ? new byte[0] : key.getEncoded();
	}

	@Override
	public void setEncodedKey(byte[] key) throws IOException {
		if (!allowUploadPrivateKey) {
			throw new ForbiddenException("It is not allowed to upload a private key");
		}

		try {
			signatureService.setKey(key.length == 0 ? null : KeyUtils.fromPKCS8(key));
		} catch (GeneralSecurityException e) {
			throw new BadRequestException("Invalid key: " + e, e);
		}
	}

}