package ca.bc.webarts.widgets;

import java.security.NoSuchAlgorithmException;
import java.security.SecureRandom;
import java.security.spec.InvalidKeySpecException;
import java.security.spec.KeySpec;
import java.util.Arrays;

import javax.crypto.SecretKeyFactory;
import javax.crypto.spec.PBEKeySpec;

/** An basic encryption service using strong JDK based classes  using PBKDF2.
 *
 * <u>The flow goes something like this:</u><br />
 * <ol><li>When adding a new user, call generateSalt(), then getEncryptedPassword(),
 *         and store both the encrypted password and the salt.
 *         Do not store the clear-text password. Don't worry about keeping the salt
 *         in a separate table or location from the encrypted password;
 *         as discussed above, the salt is non-secret.</li>
 *    <li>When authenticating a user, retrieve the previously encrypted password and
 *        salt from the database, then send those and the clear-text password they entered
 *        to authenticate(). If it returns true, authentication succeeded.</li>
 *    <li>When a user changes their password, it's safe to reuse their old salt; you can
 *        just call getEncryptedPassword() with the old salt.</li></ol>
 *
 **/
public class EncryptionService
{
    // PBKDF2 with SHA-1 as the hashing algorithm. Note that the NIST
    // specifically names SHA-1 as an acceptable hashing algorithm for PBKDF2
    static final String PBKDF2WithHmacSHA1 =  "PBKDF2WithHmacSHA1"; //"PBKDF2WithHmacSHA1";  //"PBEWithMD5AndDES";
    static final String PBEWithMD5AndDES =  "PBEWithMD5AndDES"; //"PBKDF2WithHmacSHA1";  //"PBEWithMD5AndDES";
    String algorithm_ =  "PBEWithMD5AndDES"; //"PBKDF2WithHmacSHA1";  //"PBEWithMD5AndDES";
    // SHA-1 generates 160 bit hashes, so that's what makes sense here
    int derivedKeyLength_ = 160;
    // Pick an iteration count that works for you. The NIST recommends at
    // least 1,000 iterations:
    // http://csrc.nist.gov/publications/nistpubs/800-132/nist-sp800-132.pdf
    // iOS 4.x reportedly uses 10,000:
    // http://blog.crackpassword.com/2010/09/smartphone-forensics-cracking-blackberry-backup-passwords/
    int iterations_ = 40000;
    int numSaltBytes_ = 32; //8


  public boolean authenticate( String attemptedPassword,
                               byte[] encryptedPassword,
                               byte[] salt )
                 throws NoSuchAlgorithmException, InvalidKeySpecException
  {
    // Encrypt the clear-text password using the same salt that was used to
    // encrypt the original password
    byte[] encryptedAttemptedPassword = getEncryptedPassword( attemptedPassword, salt );

    // Authentication succeeds if encrypted password that the user entered
    // is equal to the stored hash
    return Arrays.equals( encryptedPassword, encryptedAttemptedPassword );
  }


  public byte[] getEncryptedPassword( String password, byte[] salt ) throws NoSuchAlgorithmException, InvalidKeySpecException
  {
    KeySpec spec = new PBEKeySpec( password.toCharArray(), salt, iterations_, derivedKeyLength_);

    SecretKeyFactory f = SecretKeyFactory.getInstance( algorithm_ );

    return f.generateSecret( spec ).getEncoded();
  }


  public byte[] generateSalt() throws NoSuchAlgorithmException
  {
    // VERY important to use SecureRandom instead of just Random
    SecureRandom random = SecureRandom.getInstance( "SHA1PRNG" );

    // Generate a 8 byte (64 bit) salt as recommended by RSA PKCS5
    byte[] salt = new byte[numSaltBytes_];
    random.nextBytes( salt );

    return salt;
  }


  public static void main(String [] args)
  {
    EncryptionService instance = new EncryptionService();
    try
    {
      System.out.println(instance.getEncryptedPassword(args[0], instance.generateSalt()));
    }
    catch ( InvalidKeySpecException iksEx)
    {
      System.out.println("Invalid Key Spec: PBEKeySpec with iterations_ = "  + instance.iterations_+ " derivedKeyLength_= "+instance.derivedKeyLength_);
    }
    catch ( NoSuchAlgorithmException nsaEx)
    {
      System.out.println("No Such Algorithm "+instance.algorithm_);
    }
  }
}