feat: Added KEYS-V2 allowing to upload private key entries (#4917)

* feat: Added KEYS-V2 allowing to upload private key entries Signed-off-by: Nicola Timeus <[email protected]> * Added support for updating existng entry certificate chain Signed-off-by: Nicola Timeus <[email protected]> --------- Signed-off-by: Nicola Timeus <[email protected]>
eclipse-kura · Oct 27, 2023 · 21f5f5c · 21f5f5c
1 parent fa92595
commit 21f5f5c
Show file tree

Hide file tree

Showing 26 changed files with 995 additions and 352 deletions.
diff --git a/kura/org.eclipse.kura.core.keystore/META-INF/MANIFEST.MF b/kura/org.eclipse.kura.core.keystore/META-INF/MANIFEST.MF
@@ -40,6 +40,7 @@ Import-Package: com.eclipsesource.json;version="0.9.5",
  org.eclipse.kura.crypto;version="[1.1,2.0)",
  org.eclipse.kura.marshalling;version="[1.0,2.0)",
  org.eclipse.kura.message;version="[1.4,2.0)",
+ org.eclipse.kura.request.handler.jaxrs;version="[1.0,2.0)",
  org.eclipse.kura.rest.utils;version="[1.0,2.0)",
  org.eclipse.kura.security.keystore;version="[1.1,1.2)",
  org.eclipse.kura.system;version="[1.5,2.0)",

diff --git a/...equest.handler.keystoreRequestHandler.xml → ...uest.handler.keystoreRequestHandlerV1.xml b/...equest.handler.keystoreRequestHandler.xml → ...uest.handler.keystoreRequestHandlerV1.xml
@@ -1,7 +1,7 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <!--
 
-   Copyright (c) 2021, 2022 Eurotech and/or its affiliates and others
+   Copyright (c) 2021, 2023 Eurotech and/or its affiliates and others
 
    This program and the accompanying materials are made
    available under the terms of the Eclipse Public License 2.0
@@ -13,7 +13,7 @@
 	 Eurotech
 
 -->
-<scr:component xmlns:scr="http://www.osgi.org/xmlns/scr/v1.1.0" activate="activate" deactivate="deactivate" enabled="true" immediate="true" name="org.eclipse.kura.core.keystore.request.handler.KeystoreRequestHandler">
+<scr:component xmlns:scr="http://www.osgi.org/xmlns/scr/v1.1.0" activate="activate" deactivate="deactivate" enabled="true" immediate="true" name="org.eclipse.kura.core.keystore.request.handler.KeystoreRequestHandlerV1">
    <implementation class="org.eclipse.kura.core.keystore.request.handler.KeystoreServiceRequestHandlerV1"/>
 
 	<property name="service.pid" value="org.eclipse.kura.core.keystore.request.handler.KeystoreServiceRequestHandlerV1"/>

diff --git a/...tore/OSGI-INF/org.eclipse.kura.core.keystore.request.handler.keystoreRequestHandlerV2.xml b/...tore/OSGI-INF/org.eclipse.kura.core.keystore.request.handler.keystoreRequestHandlerV2.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+
+   Copyright (c) 2023 Eurotech and/or its affiliates and others
+
+   This program and the accompanying materials are made
+   available under the terms of the Eclipse Public License 2.0
+   which is available at https://www.eclipse.org/legal/epl-2.0/
+ 
+	SPDX-License-Identifier: EPL-2.0
+	
+	Contributors:
+	 Eurotech
+
+-->
+<scr:component xmlns:scr="http://www.osgi.org/xmlns/scr/v1.1.0" activate="activate" deactivate="deactivate" enabled="true" immediate="true" name="org.eclipse.kura.core.keystore.request.handler.KeystoreRequestHandlerV2">
+   <implementation class="org.eclipse.kura.core.keystore.request.handler.KeystoreServiceRequestHandlerV2"/>
+
+	<property name="service.pid" value="org.eclipse.kura.core.keystore.request.handler.KeystoreServiceRequestHandlerV2"/>
+ <reference bind="setRequestHandlerRegistry" cardinality="0..n" interface="org.eclipse.kura.cloudconnection.request.RequestHandlerRegistry" name="RequestHandlerRegistry" policy="dynamic" unbind="unsetRequestHandlerRegistry"/>
+</scr:component>
diff --git a/....keystore/OSGI-INF/org.eclipse.kura.core.keystore.rest.provider.keystoreRestServiceV1.xml b/....keystore/OSGI-INF/org.eclipse.kura.core.keystore.rest.provider.keystoreRestServiceV1.xml
@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+
+   Copyright (c) 2021, 2023 Eurotech and/or its affiliates and others
+
+   This program and the accompanying materials are made
+   available under the terms of the Eclipse Public License 2.0
+   which is available at https://www.eclipse.org/legal/epl-2.0/
+ 
+	SPDX-License-Identifier: EPL-2.0
+	
+	Contributors:
+	 Eurotech
+
+-->
+<scr:component xmlns:scr="http://www.osgi.org/xmlns/scr/v1.1.0" activate="activate" deactivate="deactivate" enabled="true" immediate="true" name="org.eclipse.kura.core.keystore.rest.provider.KeystoreRestServiceV1">
+   <implementation class="org.eclipse.kura.core.keystore.rest.provider.KeystoreRestServiceV1"/>
+
+	<property name="service.pid" value="org.eclipse.kura.core.keystore.rest.provider.KeystoreRestServiceV1"/>
+ <reference bind="setUserAdmin" cardinality="1..1" interface="org.osgi.service.useradmin.UserAdmin" name="UserAdmin" policy="static"/>
+ <service>
+    <provide interface="org.eclipse.kura.core.keystore.rest.provider.KeystoreRestService"/>
+ </service>
+</scr:component>
diff --git a/...ore.rest.provider.keystoreRestService.xml → ...e.rest.provider.keystoreRestServiceV2.xml b/...ore.rest.provider.keystoreRestService.xml → ...e.rest.provider.keystoreRestServiceV2.xml
@@ -1,7 +1,7 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <!--
 
-   Copyright (c) 2021 Eurotech and/or its affiliates and others
+   Copyright (c) 2023 Eurotech and/or its affiliates and others
 
    This program and the accompanying materials are made
    available under the terms of the Eclipse Public License 2.0
@@ -13,10 +13,10 @@
 	 Eurotech
 
 -->
-<scr:component xmlns:scr="http://www.osgi.org/xmlns/scr/v1.1.0" activate="activate" deactivate="deactivate" enabled="true" immediate="true" name="org.eclipse.kura.core.keystore.rest.provider.KeystoreRestService">
-   <implementation class="org.eclipse.kura.core.keystore.rest.provider.KeystoreRestService"/>
+<scr:component xmlns:scr="http://www.osgi.org/xmlns/scr/v1.1.0" activate="activate" deactivate="deactivate" enabled="true" immediate="true" name="org.eclipse.kura.core.keystore.rest.provider.KeystoreRestServiceV2">
+   <implementation class="org.eclipse.kura.core.keystore.rest.provider.KeystoreRestServiceV2"/>
 
-	<property name="service.pid" value="org.eclipse.kura.core.keystore.rest.provider.KeystoreRestService"/>
+	<property name="service.pid" value="org.eclipse.kura.core.keystore.rest.provider.KeystoreRestServiceV2"/>
  <reference bind="setUserAdmin" cardinality="1..1" interface="org.osgi.service.useradmin.UserAdmin" name="UserAdmin" policy="static"/>
  <service>
     <provide interface="org.eclipse.kura.core.keystore.rest.provider.KeystoreRestService"/>

diff --git a/...pse.kura.core.keystore/src/main/java/org/eclipse/kura/core/keystore/KeystoreInstance.java b/...pse.kura.core.keystore/src/main/java/org/eclipse/kura/core/keystore/KeystoreInstance.java
@@ -1,5 +1,5 @@
 /*******************************************************************************
- * Copyright (c) 2022 Eurotech and/or its affiliates and others
+ * Copyright (c) 2022, 2023 Eurotech and/or its affiliates and others
  *
  * This program and the accompanying materials are made
  * available under the terms of the Eclipse Public License 2.0
@@ -14,7 +14,7 @@
 
 import java.security.KeyStore;
 
-interface KeystoreInstance {
+public interface KeystoreInstance {
 
     public KeyStore getKeystore();
 

diff --git a/...ra.core.keystore/src/main/java/org/eclipse/kura/core/keystore/request/CsrReadRequest.java b/...ra.core.keystore/src/main/java/org/eclipse/kura/core/keystore/request/CsrReadRequest.java
@@ -0,0 +1,43 @@
+/*******************************************************************************
+ * Copyright (c) 2021, 2023 Eurotech and/or its affiliates and others
+ *
+ * This program and the accompanying materials are made
+ * available under the terms of the Eclipse Public License 2.0
+ * which is available at https://www.eclipse.org/legal/epl-2.0/
+ *
+ * SPDX-License-Identifier: EPL-2.0
+ *
+ * Contributors:
+ *  Eurotech
+ *******************************************************************************/
+package org.eclipse.kura.core.keystore.request;
+
+import org.eclipse.kura.core.keystore.util.CsrInfo;
+import org.eclipse.kura.rest.utils.Validable;
+
+public class CsrReadRequest extends CsrInfo implements Validable {
+
+    public CsrReadRequest(String keystoreServicePid, String alias) {
+        super(keystoreServicePid, alias);
+    }
+
+    public CsrReadRequest(final CsrInfo csrInfo) {
+        super(csrInfo.getKeystoreServicePid(), csrInfo.getAlias());
+        this.setSignatureAlgorithm(csrInfo.getSignatureAlgorithm());
+        this.setAttributes(csrInfo.getAttributes());
+    }
+
+    @Override
+    public String toString() {
+        return "ReadRequest [keystoreServicePid=" + this.getKeystoreServicePid() + ", alias=" + this.getAlias()
+                + ", algorithm="
+                + this.getSignatureAlgorithm() + ", attributes=" + this.getAttributes() + "]";
+    }
+
+    @Override
+    public boolean isValid() {
+        return this.getKeystoreServicePid() != null && this.getAlias() != null && this.getSignatureAlgorithm() != null
+                && this.getAttributes() != null;
+    }
+
+}
diff --git a/...kura.core.keystore/src/main/java/org/eclipse/kura/core/keystore/request/EntryRequest.java b/...kura.core.keystore/src/main/java/org/eclipse/kura/core/keystore/request/EntryRequest.java
@@ -0,0 +1,38 @@
+/*******************************************************************************
+ * Copyright (c) 2021, 2023 Eurotech and/or its affiliates and others
+ *
+ * This program and the accompanying materials are made
+ * available under the terms of the Eclipse Public License 2.0
+ * which is available at https://www.eclipse.org/legal/epl-2.0/
+ *
+ * SPDX-License-Identifier: EPL-2.0
+ *
+ * Contributors:
+ *  Eurotech
+ *******************************************************************************/
+package org.eclipse.kura.core.keystore.request;
+
+import org.eclipse.kura.core.keystore.util.EntryInfo;
+import org.eclipse.kura.rest.utils.Validable;
+
+public class EntryRequest extends EntryInfo implements Validable {
+
+    public EntryRequest(String keystoreServicePid, String alias) {
+        super(keystoreServicePid, alias);
+    }
+
+    public EntryRequest(final EntryInfo entryInfo) {
+        super(entryInfo.getKeystoreServicePid(), entryInfo.getAlias());
+    }
+
+    @Override
+    public String toString() {
+        return "DeleteRequest [keystoreServicePid=" + this.getKeystoreServicePid() + ", alias=" + this.getAlias() + "]";
+    }
+
+    @Override
+    public boolean isValid() {
+        return this.getKeystoreServicePid() != null && this.getAlias() != null;
+    }
+
+}
diff --git a/...re/rest/provider/KeyPairWriteRequest.java → ...keystore/request/KeyPairWriteRequest.java b/...re/rest/provider/KeyPairWriteRequest.java → ...keystore/request/KeyPairWriteRequest.java
@@ -1,5 +1,5 @@
 /*******************************************************************************
- * Copyright (c) 2021 Eurotech and/or its affiliates and others
+ * Copyright (c) 2021, 2023 Eurotech and/or its affiliates and others
  *
  * This program and the accompanying materials are made
  * available under the terms of the Eclipse Public License 2.0
@@ -11,7 +11,7 @@
  *  Eurotech
  *
  *******************************************************************************/
-package org.eclipse.kura.core.keystore.rest.provider;
+package org.eclipse.kura.core.keystore.request;
 
 import org.eclipse.kura.core.keystore.util.KeyPairInfo;
 import org.eclipse.kura.rest.utils.Validable;
@@ -22,6 +22,14 @@ public KeyPairWriteRequest(String keystoreName, String alias) {
         super(keystoreName, alias);
     }
 
+    public KeyPairWriteRequest(final KeyPairInfo keyPairInfo) {
+        super(keyPairInfo.getKeystoreServicePid(), keyPairInfo.getAlias());
+        this.setAlgorithm(keyPairInfo.getAlgorithm());
+        this.setAttributes(keyPairInfo.getAttributes());
+        this.setSignatureAlgorithm(keyPairInfo.getSignatureAlgorithm());
+        this.setSize(keyPairInfo.getSize());
+    }
+
     @Override
     public boolean isValid() {
         if (getKeystoreServicePid() == null || getAlias() == null) {

diff --git a/...keystore/src/main/java/org/eclipse/kura/core/keystore/request/PrivateKeyWriteRequest.java b/...keystore/src/main/java/org/eclipse/kura/core/keystore/request/PrivateKeyWriteRequest.java
@@ -0,0 +1,37 @@
+/*******************************************************************************
+ * Copyright (c) 2023 Eurotech and/or its affiliates and others
+ *
+ * This program and the accompanying materials are made
+ * available under the terms of the Eclipse Public License 2.0
+ * which is available at https://www.eclipse.org/legal/epl-2.0/
+ *
+ * SPDX-License-Identifier: EPL-2.0
+ *
+ * Contributors:
+ *  Eurotech
+ *******************************************************************************/
+package org.eclipse.kura.core.keystore.request;
+
+import org.eclipse.kura.core.keystore.util.PrivateKeyInfo;
+import org.eclipse.kura.rest.utils.Validable;
+
+public class PrivateKeyWriteRequest extends PrivateKeyInfo implements Validable {
+
+    public PrivateKeyWriteRequest(String keystoreServicePid, String alias) {
+        super(keystoreServicePid, alias);
+    }
+
+    public PrivateKeyWriteRequest(final PrivateKeyInfo other) {
+        super(other.getAlias(), other.getKeystoreServicePid());
+        this.setAlgorithm(other.getAlgorithm());
+        this.setSize(other.getSize());
+        this.setPrivateKey(other.getPrivateKey());
+        this.setCertificateChain(other.getCertificateChain());
+    }
+
+    @Override
+    public boolean isValid() {
+        return getKeystoreServicePid() != null && getAlias() != null && getCertificateChain() != null
+                && getCertificateChain().length > 0;
+    }
+}
diff --git a/...vider/TrustedCertificateWriteRequest.java → ...quest/TrustedCertificateWriteRequest.java b/...vider/TrustedCertificateWriteRequest.java → ...quest/TrustedCertificateWriteRequest.java
@@ -1,5 +1,5 @@
 /*******************************************************************************
- * Copyright (c) 2021 Eurotech and/or its affiliates and others
+ * Copyright (c) 2021, 2023 Eurotech and/or its affiliates and others
  *
  * This program and the accompanying materials are made
  * available under the terms of the Eclipse Public License 2.0
@@ -10,15 +10,27 @@
  * Contributors:
  *  Eurotech
  *******************************************************************************/
-package org.eclipse.kura.core.keystore.rest.provider;
+package org.eclipse.kura.core.keystore.request;
 
 import org.eclipse.kura.core.keystore.util.CertificateInfo;
 import org.eclipse.kura.rest.utils.Validable;
 
 public class TrustedCertificateWriteRequest extends CertificateInfo implements Validable {
 
-    public TrustedCertificateWriteRequest(String alias, String keystoreName) {
-        super(alias, keystoreName);
+    public TrustedCertificateWriteRequest(String keystoreServicePid, String alias) {
+        super(keystoreServicePid, alias);
+    }
+
+    public TrustedCertificateWriteRequest(final CertificateInfo other) {
+        super(other.getKeystoreServicePid(), other.getAlias());
+        this.setSubjectDN(other.getSubjectDN());
+        this.setSubjectAN(other.getSubjectAN());
+        this.setIssuer(other.getIssuer());
+        this.setStartDate(other.getStartDate());
+        this.setExpirationDate(other.getExpirationDate());
+        this.setAlgorithm(other.getAlgorithm());
+        this.setSize(other.getSize());
+        this.setCertificate(other.getCertificate());
     }
 
     @Override