/********************************************************************************
    *InternetCafe is a software solution that helps the management of Cybercafes 
    * according with the ITALIAN DECREE LAW ON ANTI-TERROR MEASURES, 27 JULY 2005.
    * Copyright (C) 2006  Guido Angelo Ingenito
   
    * This program is free software; you can redistribute it and/or
    * modify it under the terms of the GNU General Public License
    * as published by the Free Software Foundation; either version 2
    * of the License, or (at your option) any later version.
  
   * This program is distributed in the hope that it will be useful,
   * but WITHOUT ANY WARRANTY; without even the implied warranty of
   * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
   * GNU General Public License for more details.
   * 
   * You should have received a copy of the GNU General Public License
   * along with this program; if not, write to the Free Software
   * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
   *******************************************************************************/
  package base.jdbs.cryptography.asymmetric;
  
  import java.io.File;
  import java.io.FileInputStream;
  import java.io.FileOutputStream;
  import java.security.Key;
  import java.security.KeyStore;
  import java.security.cert.X509Certificate;
  import java.util.Enumeration;
  
  import org.apache.log4j.Logger;
  
  import base.jdbs.cryptography.KeyRing;
  import base.user.User;
  
  public class AsymmetricKeyRing extends KeyRing<KeyPair> {
  
  	public static final String KEY_ENTRY = "-keyentry";
  
  	public static final String CERTIFICATE_ENTRY = "-certificateentry";
  
  	private static final transient Logger logger = Logger
  			.getLogger(AsymmetricKeyRing.class.getName());
  
  	/*** The asymmetric key ring owner.* */
  	private final User owner;
  
  	/***
  	 * The default constructor.
  	 */
  	public AsymmetricKeyRing(User owner) {
  		this.owner = owner;
  	}
  
  	/***
  	 * @return Returns the owner.
  	 */
  	public User getOwner() {
  		return owner;
  	}
  
  	/***
  	 * This method adds a keypair to the collection.
  	 * 
  	 * @param keyPair
  	 *            The keypair to be added.
  	 */
  	public void addKeyPair(KeyPair keyPair) {
  		super.add(keyPair.getId(), keyPair);
  	}
  
  	/***
  	 * This method removes a keypair from the collection.
  	 * 
  	 * @param keyPairId
  	 *            The keypair identifier associated to the keypair that must be
  	 *            removed from the collection.
  	 */
  	public void removeKeyPair(Integer keyPairId) {
  		super.remove(keyPairId);
  	}
  
  	/***
  	 * This method removes all the keypairs contained in the collection.
  	 */
  	public void removeAllKeyPair() {
  		super.removeAll();
  	}
  
  	/***
  	 * This method retrieves a keypair givind its identifier.
  	 * 
  	 * @param keyPairId
  	 *            The keypair identifier associated to the keypair that must be
  	 *            retrieved.
  	 * @return The keypair whose identifier is keyPairId, null if the keyPairId
  	 *         is not associated to any keypair in the collection.
  	 */
  	public KeyPair getKeyPair(Integer keyPairId) {
  		return super.get(keyPairId);
 	}
 
 	/***
 	 * This method returns all the keypairs contained in the collection.
 	 * 
 	 * @return All the keypairs contained in the collection in array form.
 	 */
 	public KeyPair[] getAllKeyPair() {
 		return super.getAll().toArray(new KeyPair[0]);
 	}
 
 	/***
 	 * This method computes a new Id for a KeyPair.
 	 * 
 	 * @return A new Id for a KeyPair.
 	 */
 	protected Integer nextKeyPairId() {
 		return super.nextElementId();
 	}
 
 	/*
 	 * (non-Javadoc)
 	 * 
 	 * @see base.jdbs.cryptography.KeyRing#store(java.io.File, java.lang.String)
 	 */
 	public void store(File location, String password) {
 		logger.debug("Storing KeyRing to : " + location + " with password: "
 				+ password);
 		try {
 			KeyStore keyStore = KeyStore.getInstance(KeyStore.getDefaultType());
 			keyStore.load(null, password.toCharArray());
 
 			/*
 			 * If the keystore already exists on the file system, try to load
 			 * its content... otherwise create a new one adding fresh data...
 			 */
 			if (location.exists()) {
 				try {
 					FileInputStream fileInputStream = new FileInputStream(
 							location);
 					keyStore.load(fileInputStream, password.toCharArray());
 					fileInputStream.close();
 				} catch (Exception ex) {
 					logger.error(ex.getMessage());
 					ex.printStackTrace();
 				}
 			}
 
 			KeyPair[] keyPair = this.getAllKeyPair();
 			for (int i = 0; i < keyPair.length; i++) {
 				if (keyStore.containsAlias(keyPair[i].alias() + KEY_ENTRY))
 					logger.debug("The key store already contains the alias: "
 							+ keyPair[i].alias() + KEY_ENTRY
 							+ " it will be overwritten.");
 				if (keyStore.containsAlias(keyPair[i].alias()
 						+ CERTIFICATE_ENTRY))
 					logger.debug("The key store already contains the alias: "
 							+ keyPair[i].alias() + CERTIFICATE_ENTRY
 							+ " it will be overwritten.");
 
 				keyStore.setKeyEntry(keyPair[i].alias() + KEY_ENTRY, keyPair[i]
 						.getPrivateKey().getValue(), password.toCharArray(),
 						new X509Certificate[] { keyPair[i].getCertificate() });
 				keyStore.setCertificateEntry(keyPair[i].alias()
 						+ CERTIFICATE_ENTRY, keyPair[i].getCertificate());
 			}
 
 			// Save the new keystore contents
 			logger.debug("Writing the keystore on file system...");
 			FileOutputStream out = new FileOutputStream(location);
 			keyStore.store(out, password.toCharArray());
 			out.close();
 			logger.debug("Keystore successfully wrote...");
 
 		} catch (Exception ex) {
 			logger.error(ex.getMessage());
 			ex.printStackTrace();
 		}
 	}
 
 	/*
 	 * (non-Javadoc)
 	 * 
 	 * @see base.jdbs.cryptography.KeyRing#retrieve(java.io.File,
 	 *      java.lang.String)
 	 */
 	public KeyStore retrieve(File location, String password) {
 		KeyStore keyStore = null;
 		try {
 			keyStore = KeyStore.getInstance(KeyStore.getDefaultType());
 			FileInputStream fileInputStream = new FileInputStream(location);
 			keyStore.load(fileInputStream, password.toCharArray());
 			fileInputStream.close();
 
 			// For each key entry we must retrieve the private key and its
 			// certificate.
 			Enumeration aliasEnumerationOnKey = keyStore.aliases();
 			while (aliasEnumerationOnKey.hasMoreElements()) {
 				String keyAlias = aliasEnumerationOnKey.nextElement()
 						.toString();
 				if (keyStore.isKeyEntry(keyAlias)) {
 					Key key = keyStore.getKey(keyAlias, password.toCharArray());
 					String certAlias = keyAlias.replaceAll(KEY_ENTRY,
 							CERTIFICATE_ENTRY);
 					if (keyStore.isCertificateEntry(certAlias)) {
 						X509Certificate certificate = (X509Certificate) keyStore
 								.getCertificate(certAlias);
 						logger.debug("This is the certificate: \n"
 								+ certificate);
 						base.jdbs.cryptography.asymmetric.PublicKey publicKey = new base.jdbs.cryptography.asymmetric.PublicKey(
 								certificate.getPublicKey());
 						logger.debug("This is the publicKey: \n"
 								+ publicKey.getValue());
 						base.jdbs.cryptography.asymmetric.PrivateKey privateKey = new base.jdbs.cryptography.asymmetric.PrivateKey(
 								(java.security.PrivateKey) key);
 						logger.debug("This is the privateKey: \n"
 								+ privateKey.getValue());
 						this.addKeyPair(new KeyPair(this.nextKeyPairId(), this
 								.getOwner().getNickname()
 								+ "-KeyPair", publicKey, privateKey,
 								certificate));
 					} else
 						logger.error(certAlias
 								+ " isn't a certificate entry!!!");
 
 				}
 			}
 
 		} catch (Exception ex) {
 			logger.error(ex.getMessage());
 			ex.printStackTrace();
 		}
 		return keyStore;
 	}
 }