Package org.mariadb.jdbc.plugin.authentication.standard

Class CachingSha2PasswordPlugin

    • Field Detail

      • authenticationData

        private java.lang.String authenticationData

      • seed

        private byte[] seed

    • Constructor Detail

      • CachingSha2PasswordPlugin

        public CachingSha2PasswordPlugin()

    • Method Detail

      • sha256encryptPassword

        public static byte[] sha256encryptPassword​(java.lang.CharSequence password,
                                           byte[] seed)
        Send an SHA-2 encrypted password. encryption XOR(SHA256(password), SHA256(seed, SHA256(SHA256(password))))
        Parameters:
        password - password
        seed - seed
        Returns:
        encrypted pwd

      • readPublicKeyFromFile

        public static java.security.PublicKey readPublicKeyFromFile​(java.lang.String serverRsaPublicKeyFile)
                                                     throws java.sql.SQLException
        Read public Key from file.
        Parameters:
        serverRsaPublicKeyFile - RSA public key file
        Returns:
        public key
        Throws:
        java.sql.SQLException - if having an error reading file or file content is not a public key.

      • generatePublicKey

        public static java.security.PublicKey generatePublicKey​(byte[] publicKeyBytes)
                                                 throws java.sql.SQLException
        Read public pem key from String.
        Parameters:
        publicKeyBytes - public key bytes value
        Returns:
        public key
        Throws:
        java.sql.SQLException - if key cannot be parsed

      • encrypt

        public static byte[] encrypt​(java.security.PublicKey publicKey,
                             java.lang.String password,
                             byte[] seed)
                      throws java.sql.SQLException
        Encode password with seed and public key.
        Parameters:
        publicKey - public key
        password - password
        seed - seed
        Returns:
        encoded password
        Throws:
        java.sql.SQLException - if cannot encode password

      • type

        public java.lang.String type()
        Description copied from interface: AuthenticationPlugin
        Authentication plugin type.
        Specified by:
        type in interface AuthenticationPlugin
        Returns:
        authentication plugin type. ex: mysql_native_password

      • initialize

        public void initialize​(java.lang.String authenticationData,
                       byte[] seed,
                       Configuration conf,
                       HostAddress hostAddress)
        Initialized data.
        Specified by:
        initialize in interface AuthenticationPlugin
        Parameters:
        authenticationData - authentication data (password/token)
        seed - server provided seed
        conf - Connection string options
        hostAddress - host information

      • process

        public ReadableByteBuf process​(Writer out,
                               Reader in,
                               Context context)
                        throws java.io.IOException,
                               java.sql.SQLException
        Process native password plugin authentication. see https://mariadb.com/kb/en/library/authentication-plugin-mysql_native_password/
        Specified by:
        process in interface AuthenticationPlugin
        Parameters:
        out - out stream
        in - in stream
        context - connection context
        Returns:
        response packet
        Throws:
        java.io.IOException - if socket error
        java.sql.SQLException - if plugin exception