The Jersey JAX-RS project provides bindings for springframework and google-guice. However I wanted to see what it would take to use PicoContainer as an IoC container within Jersey.
Verdict: not much at all. Nicely extensible.
To see what I mean please take a look at my jersey-pico project on GitHub. I can now create JAX-RS services in Java or Groovy with a very simple IoC container.
Tags: github, ioc, Java, jax-rs, jersey, jersey-pico, PicoContainer, REST
I’ve been trying to get my head around cryptography on the iPhone so that I can create a native iPhone app (iPasskeep) that interoperates with my JPasskeep password keeper application. It has taken a while to get my head around CommonCrypto APIs – how to use them, how not to use them and their limitations. It then took a bit of fiddling to find the right incantations in Java to get an interoperable cryptographic transformation.
Caveat: The following Objective-C code is not yet production ready or quality. It passes unit tests, but I haven’t checked it for memory leaks, performance, etc.
Hope this helps.
Listing: Cipher.h
#import <Cocoa/Cocoa.h>
#import <CommonCrypto/CommonDigest.h>
#import <CommonCrypto/CommonCryptor.h>
@interface Cipher : NSObject {
NSString* cipherKey;
}
@property (retain) NSString* cipherKey;
- (Cipher *) initWithKey:(NSString *) key;
- (NSData *) encrypt:(NSData *) plainText;
- (NSData *) decrypt:(NSData *) cipherText;
- (NSData *) transform:(CCOperation) encryptOrDecrypt data:(NSData *) inputData;
+ (NSData *) md5:(NSString *) stringToHash;
@end
Listing: Cipher.m
#import "Cipher.h"
@implementation Cipher
@synthesize cipherKey;
- (Cipher *) initWithKey:(NSString *) key {
self = [super init];
if (self) {
[self setCipherKey:key];
}
return self;
}
- (NSData *) encrypt:(NSData *) plainText {
return [self transform:kCCEncrypt data:plainText];
}
- (NSData *) decrypt:(NSData *) cipherText {
return [self transform:kCCDecrypt data:cipherText];
}
- (NSData *) transform:(CCOperation) encryptOrDecrypt data:(NSData *) inputData {
// kCCKeySizeAES128 = 16 bytes
// CC_MD5_DIGEST_LENGTH = 16 bytes
NSData* secretKey = [Cipher md5:cipherKey];
CCCryptorRef cryptor = NULL;
CCCryptorStatus status = kCCSuccess;
uint8_t iv[kCCBlockSizeAES128];
memset((void *) iv, 0x0, (size_t) sizeof(iv));
status = CCCryptorCreate(encryptOrDecrypt, kCCAlgorithmAES128, kCCOptionPKCS7Padding,
[secretKey bytes], kCCKeySizeAES128, iv, &cryptor);
if (status != kCCSuccess) {
return nil;
}
size_t bufsize = CCCryptorGetOutputLength(cryptor, (size_t)[inputData length], true);
void * buf = malloc(bufsize * sizeof(uint8_t));
memset(buf, 0x0, bufsize);
size_t bufused = 0;
size_t bytesTotal = 0;
status = CCCryptorUpdate(cryptor, [inputData bytes], (size_t)[inputData length],
buf, bufsize, &bufused);
if (status != kCCSuccess) {
free(buf);
CCCryptorRelease(cryptor);
return nil;
}
bytesTotal += bufused;
status = CCCryptorFinal(cryptor, buf + bufused, bufsize - bufused, &bufused);
if (status != kCCSuccess) {
free(buf);
CCCryptorRelease(cryptor);
return nil;
}
bytesTotal += bufused;
CCCryptorRelease(cryptor);
return [NSData dataWithBytesNoCopy:buf length:bytesTotal];
}
+ (NSData *) md5:(NSString *) stringToHash {
const char *src = [stringToHash UTF8String];
unsigned char result[CC_MD5_DIGEST_LENGTH];
CC_MD5(src, strlen(src), result);
return [NSData dataWithBytes:result length:CC_MD5_DIGEST_LENGTH];
}
@end
Listing: Cipher.java
package com.tomczarniecki.iphone;
import org.apache.commons.codec.digest.DigestUtils;
import org.bouncycastle.crypto.BufferedBlockCipher;
import org.bouncycastle.crypto.engines.AESFastEngine;
import org.bouncycastle.crypto.modes.CBCBlockCipher;
import org.bouncycastle.crypto.paddings.PaddedBufferedBlockCipher;
import org.bouncycastle.crypto.params.KeyParameter;
import java.io.ByteArrayInputStream;
import java.io.ByteArrayOutputStream;
public class Cipher {
private final String password;
public Cipher(String password) {
this.password = password;
}
public byte[] encrypt(byte[] plainText) throws Exception {
return transform(true, plainText);
}
public byte[] decrypt(byte[] cipherText) throws Exception {
return transform(false, cipherText);
}
private byte[] transform(boolean encrypt, byte[] inputBytes) throws Exception {
byte[] key = DigestUtils.md5(password.getBytes("UTF-8"));
BufferedBlockCipher cipher = new PaddedBufferedBlockCipher(new CBCBlockCipher(new AESFastEngine()));
cipher.init(encrypt, new KeyParameter(key));
ByteArrayInputStream input = new ByteArrayInputStream(inputBytes);
ByteArrayOutputStream output = new ByteArrayOutputStream();
int inputLen;
int outputLen;
byte[] inputBuffer = new byte[1024];
byte[] outputBuffer = new byte[cipher.getOutputSize(inputBuffer.length)];
while ((inputLen = input.read(inputBuffer)) > -1) {
outputLen = cipher.processBytes(inputBuffer, 0, inputLen, outputBuffer, 0);
if (outputLen > 0) {
output.write(outputBuffer, 0, outputLen);
}
}
outputLen = cipher.doFinal(outputBuffer, 0);
if (outputLen > 0) {
output.write(outputBuffer, 0, outputLen);
}
return output.toByteArray();
}
}
Tags: aes, bouncycastle, cryptography, iPhone, Java, jpasskeep, objective-c
Last year I blogged about a neat trick in Django to have multiple views per HTTP verb. Since then I’ve been playing with RESTful applications and decided to see if there was a nicer way to expose “resources” in Django. The following is what I’ve come up with so far.
Listing: router.py
from django.http import Http404, HttpResponseNotAllowed
def get_handler_method(request_handler, http_method):
try:
handler_method = getattr(request_handler, http_method.lower())
if callable(handler_method):
return handler_method
except AttributeError:
pass
class Resource:
http_methods = ['GET', 'POST', 'HEAD', 'PUT', 'DELETE', 'OPTIONS', 'TRACE']
@classmethod
def dispatch(cls, request, *args, **kwargs):
request_handler = cls()
if request.method in cls.http_methods:
handler_method = get_handler_method(request_handler, request.method)
if handler_method:
return handler_method(request, *args, **kwargs)
methods = [method for method in cls.http_methods if get_handler_method(request_handler, method)]
if len(methods) > 0:
return HttpResponseNotAllowed(methods)
else:
raise Http404
Listing: views.py
from django.shortcuts import render_to_response, get_object_or_404
from django.http import HttpResponseRedirect
from django.core.urlresolvers import reverse
from router import Resource
from models import Document
from django import forms
import identity
class DocumentForm(forms.Form):
one = forms.CharField()
two = forms.CharField()
date = forms.CharField()
def index(request):
document_links = []
for document in Document.objects.all():
url = reverse('document', args=[document.id])
document_links.append({ 'identity': document.id, 'url': url })
new_form_url = reverse('document', args=[identity.NEW])
model = { 'document_links': document_links, 'new_form_url': new_form_url }
return render_to_response('index.html', model)
def success(request, document_id):
document = get_object_or_404(Document, pk=document_id)
form = DocumentForm(document.get_values())
form.is_valid()
model = { 'form': form.cleaned_data, 'index_url': reverse('index') }
return render_to_response('success.html', model)
class DocumentView(Resource):
def get(self, request, document_id):
if identity.is_new(document_id):
form = DocumentForm()
else:
document = get_object_or_404(Document, pk=document_id)
form = DocumentForm(document.get_values())
model = { 'form': form, 'index_url': reverse('index') }
return render_to_response('form.html', model)
def post(self, request, document_id):
if identity.is_new(document_id):
document = Document()
else:
document = get_object_or_404(Document, pk=document_id)
document.set_values(request.POST)
document.save()
form = DocumentForm(document.get_values())
if form.is_valid():
url = reverse('success', args=[document.id])
else:
url = reverse('document', args=[document.id])
return HttpResponseRedirect(url)
Listing: urls.py
from django.conf.urls.defaults import *
from django.conf import settings
import os, views
urlpatterns = patterns('',
url(r'^document/(?P<document_id>[A-Za-z0-9\-]+)/$', views.DocumentView.dispatch, name='document'),
url(r'^success/(?P<document_id>[A-Za-z0-9\-]+)/$', views.success, name='success'),
url(r'^$', views.index, name='index'),
)
if settings.DEBUG:
urlpatterns += patterns('',
(r'^static/(?P<path>.*)$', 'django.views.static.serve',
{'document_root': os.path.join(os.path.dirname(__file__), 'static')}),
)
It does add a little bit more magic to the views (since you don’t actually see the dispatch method at all) but it benefits from simpler mapping in urls.py, as well as an easier way to figure out what instance method on a Resource subclass gets called for each HTTP verb. Never felt that comfortable with popping-off of kwargs in last year’s post.
Arclite theme by digitalnature | powered by WordPress