2 * Copyright (c) 2016 Brocade Communication Systems and others. All rights reserved.
4 * This program and the accompanying materials are made available under the
5 * terms of the Eclipse Public License v1.0 which accompanies this distribution,
6 * and is available at http://www.eclipse.org/legal/epl-v10.html
8 package org.opendaylight.netconf.sal.connect.util;
10 import com.google.common.util.concurrent.CheckedFuture;
11 import com.google.common.util.concurrent.FutureCallback;
12 import com.google.common.util.concurrent.Futures;
13 import org.opendaylight.aaa.encrypt.AAAEncryptionService;
14 import org.opendaylight.controller.md.sal.binding.api.DataBroker;
15 import org.opendaylight.controller.md.sal.binding.api.WriteTransaction;
16 import org.opendaylight.controller.md.sal.common.api.data.LogicalDatastoreType;
17 import org.opendaylight.controller.md.sal.common.api.data.TransactionCommitFailedException;
18 import org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114.NetconfNode;
19 import org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114.NetconfNodeBuilder;
20 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.NetworkTopology;
21 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.NodeId;
22 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.TopologyId;
23 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.network.topology.Topology;
24 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.network.topology.TopologyKey;
25 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.network.topology.topology.Node;
26 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.network.topology.topology.NodeKey;
27 import org.opendaylight.yangtools.yang.binding.InstanceIdentifier;
28 import org.slf4j.Logger;
29 import org.slf4j.LoggerFactory;
32 * Utility to encrypt netconf username and password.
34 public class AuthEncryptor {
35 private static final Logger LOG = LoggerFactory.getLogger(AuthEncryptor.class);
37 public static void encryptIfNeeded(final NodeId nodeId, final NetconfNode netconfNode,
38 AAAEncryptionService encryptionService,
39 final String topologyId, final DataBroker dataBroker) {
40 final org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114.netconf.node
41 .credentials.credentials.LoginPassword creds =
42 (org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114.netconf.node
43 .credentials.credentials.LoginPassword) netconfNode.getCredentials();
44 final String decryptedPassword = encryptionService.decrypt(creds.getPassword());
45 if (decryptedPassword != null && decryptedPassword.equals(creds.getPassword())) {
46 LOG.info("Encrypting the provided credentials");
47 final String username = encryptionService.encrypt(creds.getUsername());
48 final String password = encryptionService.encrypt(creds.getPassword());
49 final org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114.netconf.node
50 .credentials.credentials.LoginPasswordBuilder passwordBuilder =
51 new org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114
52 .netconf.node.credentials.credentials.LoginPasswordBuilder();
53 passwordBuilder.setUsername(username);
54 passwordBuilder.setPassword(password);
55 final NetconfNodeBuilder nnb = new NetconfNodeBuilder();
56 nnb.setCredentials(passwordBuilder.build());
58 final WriteTransaction writeTransaction = dataBroker.newWriteOnlyTransaction();
59 final InstanceIdentifier<NetworkTopology> networkTopologyId =
60 InstanceIdentifier.builder(NetworkTopology.class).build();
61 final InstanceIdentifier<NetconfNode> niid = networkTopologyId.child(Topology.class,
62 new TopologyKey(new TopologyId(topologyId))).child(Node.class,
63 new NodeKey(nodeId)).augmentation(NetconfNode.class);
64 writeTransaction.merge(LogicalDatastoreType.CONFIGURATION, niid, nnb.build());
65 final CheckedFuture<Void, TransactionCommitFailedException> future = writeTransaction.submit();
66 Futures.addCallback(future, new FutureCallback<Void>() {
69 public void onSuccess(Void result) {
70 LOG.info("Encrypted netconf username/password successfully");
74 public void onFailure(Throwable exception) {
75 LOG.error("Unable to encrypt netconf username/password." + exception.getMessage());