-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathSpatioSigner.java
More file actions
68 lines (53 loc) · 2.27 KB
/
SpatioSigner.java
File metadata and controls
68 lines (53 loc) · 2.27 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
package io.spatio;
import java.nio.charset.StandardCharsets;
import java.security.*;
import java.util.Base64;
import static io.spatio.Utils.sanitizeHash;
public class SpatioSigner {
private final PrivateKey privateKey;
private final PublicKey publicKey;
public SpatioSigner() throws NoSuchAlgorithmException {
KeyPairGenerator keyGen = KeyPairGenerator.getInstance("RSA");
keyGen.initialize(2048);
KeyPair pair = keyGen.generateKeyPair();
this.privateKey = pair.getPrivate();
this.publicKey = pair.getPublic();
}
// public String sign(String hash) throws Exception {
// Signature signature = Signature.getInstance("SHA256withRSA");
// signature.initSign(privateKey);
// signature.update(hash.getBytes());
// byte[] digitalSignature = signature.sign();
// return Base64.getEncoder().encodeToString(digitalSignature);
// }
//
// public boolean verify(String hash, String signatureStr) throws Exception {
// Signature signature = Signature.getInstance("SHA256withRSA");
// signature.initVerify(publicKey);
// signature.update(hash.getBytes());
// byte[] digitalSignature = Base64.getDecoder().decode(signatureStr);
// return signature.verify(digitalSignature);
// }
public String sign(String hash) throws Exception {
String clean = sanitizeHash(hash);
Signature signature = Signature.getInstance("SHA256withRSA");
signature.initSign(privateKey);
signature.update(clean.getBytes(StandardCharsets.UTF_8)); // ✅ charset explicite
byte[] digitalSignature = signature.sign();
return Base64.getUrlEncoder() // ✅ URL-safe
.withoutPadding()
.encodeToString(digitalSignature);
}
public boolean verify(String hash, String signatureStr) throws Exception {
String clean = sanitizeHash(hash);
Signature signature = Signature.getInstance("SHA256withRSA");
signature.initVerify(publicKey);
signature.update(clean.getBytes(StandardCharsets.UTF_8)); // ✅ EXACTEMENT pareil
byte[] digitalSignature =
Base64.getUrlDecoder().decode(signatureStr);
return signature.verify(digitalSignature);
}
public PublicKey getPublicKey() {
return publicKey;
}
}