Fulcrum - Fulcrum Services

The Crypto Service allows an application to request various encryption algorithms provided by the normal Java crypto providers and 3rd party providers such as Cryptix.

Configuration

# -------------------------------------------------------------------
#
#  S E R V I C E S
#
# -------------------------------------------------------------------
# Classes for Turbine Services should be defined here.
# Format: services.[name].classname=[implementing class]
#
# To specify properties of a service use the following syntax:
# service.[name].[property]=[value]

services.CryptoService.classname=org.apache.fulcrum.crypto.TurbineCryptoService
.
.
.
# -------------------------------------------------------------------
#
#  C R Y P T O   S E R V I C E
#
# -------------------------------------------------------------------

#
# Uncomment the following line if you want to use UnixCrypt and have
# compiled the Fulcrum jar in the presence of the cryptix32.jar. 
# 
#services.CryptoService.algorithm.unix  = org.apache.fulcrum.crypto.provider.UnixCrypt
#
# This is a simple, cleartext "encryption" provider.
#
services.CryptoService.algorithm.cleartext  = org.apache.fulcrum.crypto.provider.ClearCrypt
#
# This is the default crypto provider. It implements the normal Java MessageDigest ciphers
# You need not to have this, it is the default if no algorithms are given. The default
# provider gives you all the Java MessageDigest Ciphers
#
services.CryptoService.algorithm.default  = org.apache.fulcrum.crypto.provider.JavaCrypt

Usage

If you want to encrypt a clear text with a MessageDigest Cipher, you can do it like this:

import org.apache.fulcrum.crypto.CryptoAlgorithm;
import org.apache.fulcrum.crypto.TurbineCrypto;

public class CryptoExample
{
    public String doMD5Encryption(String input)
    {
        CryptoAlgorithm ca = TurbineCrypto.getService().getCryptoAlgorithm("default");

        ca.setCipher("MD5");

        return ca.encrypt(input);
    }
}

In the source code and the example above, there is talk about a "default" provider which is used if no encryption algorithm is specifically requested. The reason for this comes from the first user of the crypto service, the Security Service. It gives you the ability to select an encryption algorithm like MD5 or SHA1 which is in turn used with the normal java crypto providers. As we just wanted to "add" new algorithms and still be able to use the old java.security names like MD5 and SHA1, we decided to add a "catchall" algorithm to the crypto service.

If you don't set the default provider explicitly, the org.apache.fulcrum.crypto.provider.JavaCrypt class is used. If you don't set the Cipher of this class explicitly, then SHA is used.

Included Providers

The following algorithm providers are included in the Cryptoservice:

ClearCrypt (org.apache.fulcrum.crypto.provider.ClearCrypt). This is the simplest algorithm which does nothing. It is still useful because you can use the Crypto Service all the time even if you don't want to actually encrypt something. Just request the "cleartext" algorithm.
UnixCrypt (org.apache.fulcrum.crypto.provider.UnixCrypt). This is an implementation of the Unix crypt(3) algorithm. Its main use is when you need to access legacy information or databases which already contain crypted passwords. UnixCrypt needs the cryptix32.jar from Cryptix.
JavaCrypt (org.apache.fulcrum.crypto.provider.JavaCrypt). This is a wrapper around the java.security Message Digest functions which give you MD5, SHA1 and more algorithms.

Crypto Service

Configuration

Usage

Default Provider

Included Providers