Code Review / netconf.git / blob
? search:


28a9171722dd17c23253d530fe4a8d3a77e8d516
[netconf.git] / netconf / sal-netconf-connector / src / main / java / org / opendaylight / netconf / sal / connect / util / AuthEncryptor.java
1 /*
2  * Copyright (c) 2016 Brocade Communication Systems and others.  All rights reserved.
3  *
4  * This program and the accompanying materials are made available under the
5  * terms of the Eclipse Public License v1.0 which accompanies this distribution,
6  * and is available at http://www.eclipse.org/legal/epl-v10.html
7  */
8 package org.opendaylight.netconf.sal.connect.util;
9
10 import com.google.common.util.concurrent.CheckedFuture;
11 import com.google.common.util.concurrent.FutureCallback;
12 import com.google.common.util.concurrent.Futures;
13 import org.opendaylight.aaa.encrypt.AAAEncryptionService;
14 import org.opendaylight.controller.md.sal.binding.api.DataBroker;
15 import org.opendaylight.controller.md.sal.binding.api.WriteTransaction;
16 import org.opendaylight.controller.md.sal.common.api.data.LogicalDatastoreType;
17 import org.opendaylight.controller.md.sal.common.api.data.TransactionCommitFailedException;
18 import org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114.NetconfNode;
19 import org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114.NetconfNodeBuilder;
20 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.NetworkTopology;
21 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.NodeId;
22 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.TopologyId;
23 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.network.topology.Topology;
24 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.network.topology.TopologyKey;
25 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.network.topology.topology.Node;
26 import org.opendaylight.yang.gen.v1.urn.tbd.params.xml.ns.yang.network.topology.rev131021.network.topology.topology.NodeKey;
27 import org.opendaylight.yangtools.yang.binding.InstanceIdentifier;
28 import org.slf4j.Logger;
29 import org.slf4j.LoggerFactory;
30
31 /**
32  *  Utility to encrypt netconf username and password.
33  */
34 public class AuthEncryptor {
35     private static final Logger LOG = LoggerFactory.getLogger(AuthEncryptor.class);
36
37     public static void encryptIfNeeded(final NodeId nodeId, final NetconfNode netconfNode,
38                                  AAAEncryptionService encryptionService,
39                                  final String topologyId, final DataBroker dataBroker) {
40         final org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114.netconf.node
41                 .credentials.credentials.LoginPassword creds =
42                 (org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114.netconf.node
43                         .credentials.credentials.LoginPassword) netconfNode.getCredentials();
44         final String decryptedPassword = encryptionService.decrypt(creds.getPassword());
45         if (decryptedPassword != null && decryptedPassword.equals(creds.getPassword())) {
46             LOG.info("Encrypting the provided credentials");
47             final String username = encryptionService.encrypt(creds.getUsername());
48             final String password = encryptionService.encrypt(creds.getPassword());
49             final org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114.netconf.node
50                     .credentials.credentials.LoginPasswordBuilder passwordBuilder =
51                     new org.opendaylight.yang.gen.v1.urn.opendaylight.netconf.node.topology.rev150114
52                             .netconf.node.credentials.credentials.LoginPasswordBuilder();
53             passwordBuilder.setUsername(username);
54             passwordBuilder.setPassword(password);
55             final NetconfNodeBuilder nnb = new NetconfNodeBuilder();
56             nnb.setCredentials(passwordBuilder.build());
57
58             final WriteTransaction writeTransaction = dataBroker.newWriteOnlyTransaction();
59             final InstanceIdentifier<NetworkTopology> networkTopologyId =
60                     InstanceIdentifier.builder(NetworkTopology.class).build();
61             final InstanceIdentifier<NetconfNode> niid = networkTopologyId.child(Topology.class,
62                     new TopologyKey(new TopologyId(topologyId))).child(Node.class,
63                     new NodeKey(nodeId)).augmentation(NetconfNode.class);
64             writeTransaction.merge(LogicalDatastoreType.CONFIGURATION, niid, nnb.build());
65             final CheckedFuture<Void, TransactionCommitFailedException> future = writeTransaction.submit();
66             Futures.addCallback(future, new FutureCallback<Void>() {
67
68                 @Override
69                 public void onSuccess(Void result) {
70                     LOG.info("Encrypted netconf username/password successfully");
71                 }
72
73                 @Override
74                 public void onFailure(Throwable exception) {
75                     LOG.error("Unable to encrypt netconf username/password." + exception.getMessage());
76                 }
77             });
78         }
79     }
80 }
Netconf