Package org.eclipse.aether.util.repository

Class SecretAuthentication

java.lang.Object
org.eclipse.aether.util.repository.SecretAuthentication
All Implemented Interfaces:
Authentication
final class SecretAuthentication extends Object implements Authentication
Authentication block that manages a single authentication key and its secret string value (password, passphrase). Unlike StringAuthentication, the string value is kept in an encrypted buffer and only decrypted when needed to reduce the potential of leaking the secret in a heap dump.

  • Field Details

    • KEYS

      private static final Object[] KEYS

    • key

      private final String key

    • value

      private final char[] value

    • secretHash

      private final int secretHash

  • Constructor Details

    • SecretAuthentication

      SecretAuthentication(String key, String value)

    • SecretAuthentication

      SecretAuthentication(String key, char[] value)

    • SecretAuthentication

      private SecretAuthentication(char[] value, String key)

  • Method Details

    • copy

      private static char[] copy(char[] chars)

    • xor

      private char[] xor(char[] chars)

    • clear

      private static void clear(char[] chars)

    • fill

      public void fill(AuthenticationContext context, String key, Map<String,String> data)
      Description copied from interface: Authentication
      Fills the given authentication context with the data from this authentication callback. To do so, implementors have to call AuthenticationContext.put(String, Object).

      The key parameter supplied to this method acts merely as a hint for interactive callbacks that want to prompt the user for only that authentication data which is required. Implementations are free to ignore this parameter and put all the data they have into the authentication context at once.
      Specified by:
      fill in interface Authentication
      Parameters:
      context - The authentication context to populate, must not be null.
      key - The key denoting a specific piece of authentication data that is being requested for a network operation, may be null.
      data - Any (read-only) extra data in form of key value pairs that might be useful when getting the authentication data, may be null.

    • digest

      public void digest(AuthenticationDigest digest)
      Description copied from interface: Authentication
      Updates the given digest with data from this authentication callback. To do so, implementors have to call the update() methods in AuthenticationDigest.
      Specified by:
      digest in interface Authentication
      Parameters:
      digest - The digest to update, must not be null.

    • equals

      public boolean equals(Object obj)
      Overrides:
      equals in class Object

    • hashCode

      public int hashCode()
      Overrides:
      hashCode in class Object

    • toString

      public String toString()
      Overrides:
      toString in class Object