/* * Licensed to the Apache Software Foundation (ASF) under one or more * contributor license agreements. See the NOTICE file distributed with * this work for additional information regarding copyright ownership. * The ASF licenses this file to You under the Apache License, Version 2.0 * (the "License"); you may not use this file except in compliance with * the License. You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ package org.apache.jetspeed.administration; import java.util.ArrayList; import org.apache.jetspeed.security.CredentialPasswordValidator; import org.apache.jetspeed.security.SecurityException; import org.apache.taglibs.random.RandomStrg; /** * @version $Id$ */ public class SimplePasswordGeneratorImpl implements PasswordGenerator { /** the list of characters from which a password can be generatored. */ protected static final char[] DEFAULT_PASS_CHARS = { 'a', 'b', 'c', 'd', 'e', 'f', 'g', 'h', 'i', 'j', 'k', 'l', 'm', 'n', 'o', 'p', 'q', 'r', 's', 't', 'u', 'v', 'w', 'x', 'y', 'z', 'A', 'B', 'C', 'D', 'E', 'F', 'G', 'H', 'I', 'J', 'K', 'L', 'M', 'N', 'O', 'P', 'Q', 'R', 'S', 'T', 'U', 'V', 'W', 'X', 'Y', 'Z', '1', '2', '3', '4', '5', '6', '7', '8', '9', '0' }; // removed these for aesthetic purposes // '!', '&', '-', '_', '=', // '*','@', '#', '$', '%', '^', // '+', protected char[] passwordChars = SimplePasswordGeneratorImpl.DEFAULT_PASS_CHARS; protected ArrayList upper = new ArrayList(); protected ArrayList lower = new ArrayList(); protected Integer length = new Integer(12); protected CredentialPasswordValidator validator; protected RandomStrg newRandomStrg() { RandomStrg rs = new RandomStrg(); try { rs.generateRandomObject(); } catch (Exception e) { // this would only get thrown if we tried a secure random and the provider // was not available. e.printStackTrace(); } return rs; } protected void initRandomStrg(RandomStrg rs) { rs.setLength(new Integer(12)); rs.setSingle(passwordChars, passwordChars.length); rs.setRanges(upper, lower); } /** * @param length * the length to set */ public void setLength(Integer length) { this.length = length; } /** * @param validator * the validator to set */ public void setValidator(CredentialPasswordValidator validator) { this.validator = validator; } public void setPasswordChars(String passwordChars) { if (passwordChars != null && passwordChars.length() > 1) { this.passwordChars = passwordChars.toCharArray(); } } public void setLowerRange(String lowerChars) { if (lowerChars != null) { lower.clear(); for (char c : lowerChars.toCharArray()) { lower.add(new Character(c)); } } } public void setUpperRange(String upperChars) { if (upperChars != null) { upper.clear(); for (char c : upperChars.toCharArray()) { upper.add(new Character(c)); } } } /* * (non-Javadoc) * @see org.apache.jetspeed.administration.PasswordGenerator#generatePassword() */ public String generatePassword() { String retval = null; RandomStrg rs = newRandomStrg(); initRandomStrg(rs); while (retval == null) { retval = rs.getRandom(); if (validator != null) { try { validator.validate(retval); } catch (SecurityException sex) { retval = null; } } } return retval; } }