wvp-pro.git - Gitblit

			@@ -25,11 +25,9 @@
			*/
			package com.genersoft.iot.vmp.gb28181.auth;

			import java.security.MessageDigest;
			import java.security.NoSuchAlgorithmException;
			import java.text.DecimalFormat;
			import java.util.Date;
			import java.util.Random;
			import gov.nist.core.InternalErrorHandler;
			import org.slf4j.Logger;
			import org.slf4j.LoggerFactory;

			import javax.sip.address.URI;
			import javax.sip.header.AuthorizationHeader;
			@@ -37,10 +35,10 @@
			import javax.sip.header.WWWAuthenticateHeader;
			import javax.sip.message.Request;
			import javax.sip.message.Response;

			import gov.nist.core.InternalErrorHandler;
			import org.slf4j.Logger;
			import org.slf4j.LoggerFactory;
			import java.security.MessageDigest;
			import java.security.NoSuchAlgorithmException;
			import java.time.Instant;
			import java.util.Random;

			/**
			* Implements the HTTP digest authentication method server side functionality.
			@@ -90,17 +88,12 @@
			* @return a generated nonce.
			*/
			private String generateNonce() {
			// Get the time of day and run MD5 over it.
			Date date = new Date();
			long time = date.getTime();
			long time = Instant.now().toEpochMilli();
			Random rand = new Random();
			long pad = rand.nextLong();
			// String nonceString = (new Long(time)).toString()
			// + (new Long(pad)).toString();
			String nonceString = Long.valueOf(time).toString()
			+ Long.valueOf(pad).toString();
			byte mdbytes[] = messageDigest.digest(nonceString.getBytes());
			// Convert the mdbytes array into a hex string.
			return toHexString(mdbytes);
			}

			@@ -129,7 +122,9 @@
			*/
			public boolean doAuthenticateHashedPassword(Request request, String hashedPassword) {
			AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
			if ( authHeader == null ) return false;
			if ( authHeader == null ) {
			return false;
			}
			String realm = authHeader.getRealm();
			String username = authHeader.getUsername();

			@@ -176,7 +171,9 @@
			*/
			public boolean doAuthenticatePlainTextPassword(Request request, String pass) {
			AuthorizationHeader authHeader = (AuthorizationHeader) request.getHeader(AuthorizationHeader.NAME);
			if ( authHeader == null ) return false;
			if ( authHeader == null \|\| authHeader.getRealm() == null) {
			return false;
			}
			String realm = authHeader.getRealm().trim();
			String username = authHeader.getUsername().trim();

			@@ -194,32 +191,34 @@

			// 客户端随机数，这是一个不透明的字符串值，由客户端提供，并且客户端和服务器都会使用，以避免用明文文本。
			// 这使得双方都可以查验对方的身份，并对消息的完整性提供一些保护
			//String cNonce = authHeader.getCNonce();
			String cnonce = authHeader.getCNonce();

			// nonce计数器，是一个16进制的数值，表示同一nonce下客户端发送出请求的数量
			int nc = authHeader.getNonceCount();
			String ncStr = new DecimalFormat("00000000").format(nc);
			// String ncStr = new DecimalFormat("00000000").format(Integer.parseInt(nc + "", 16));
			String ncStr = String.format("%08x", nc).toUpperCase();
			// String ncStr = new DecimalFormat("00000000").format(nc);
			// String ncStr = new DecimalFormat("00000000").format(Integer.parseInt(nc + "", 16));

			String A1 = username + ":" + realm + ":" + pass;

			String A2 = request.getMethod().toUpperCase() + ":" + uri.toString();

			byte mdbytes[] = messageDigest.digest(A1.getBytes());
			String HA1 = toHexString(mdbytes);
			logger.debug("A1: " + A1);
			logger.debug("A2: " + A2);

			mdbytes = messageDigest.digest(A2.getBytes());
			String HA2 = toHexString(mdbytes);
			logger.debug("HA1: " + HA1);
			logger.debug("HA2: " + HA2);
			String cnonce = authHeader.getCNonce();
			// String cnonce = authHeader.getCNonce();
			logger.debug("nonce: " + nonce);
			logger.debug("nc: " + ncStr);
			logger.debug("cnonce: " + cnonce);
			logger.debug("qop: " + qop);
			String KD = HA1 + ":" + nonce;

			if (qop != null && qop.equals("auth") ) {
			if (qop != null && qop.equalsIgnoreCase("auth") ) {
			if (nc != -1) {
			KD += ":" + ncStr;
			}
			@@ -239,58 +238,4 @@

			}

			// public static void main(String[] args) throws NoSuchAlgorithmException {
			// String realm = "3402000000";
			// String username = "44010000001180008012";


			// String nonce = "07cab60999fbf643264ace27d3b7de8b";
			// String uri = "sip:34020000002000000001@3402000000";
			// // qop 保护质量包含auth（默认的）和auth-int（增加了报文完整性检测）两种策略
			// String qop = "auth";

			// // 客户端随机数，这是一个不透明的字符串值，由客户端提供，并且客户端和服务器都会使用，以避免用明文文本。
			// // 这使得双方都可以查验对方的身份，并对消息的完整性提供一些保护
			// //String cNonce = authHeader.getCNonce();

			// // nonce计数器，是一个16进制的数值，表示同一nonce下客户端发送出请求的数量
			// int nc = 1;
			// String ncStr = new DecimalFormat("00000000").format(nc);
			// // String ncStr = new DecimalFormat("00000000").format(Integer.parseInt(nc + "", 16));
			// MessageDigest messageDigest = MessageDigest.getInstance(DEFAULT_ALGORITHM);
			// String A1 = username + ":" + realm + ":" + "12345678";
			// String A2 = "REGISTER" + ":" + uri;
			// byte mdbytes[] = messageDigest.digest(A1.getBytes());
			// String HA1 = toHexString(mdbytes);
			// System.out.println("A1: " + A1);
			// System.out.println("A2: " + A2);

			// mdbytes = messageDigest.digest(A2.getBytes());
			// String HA2 = toHexString(mdbytes);
			// System.out.println("HA1: " + HA1);
			// System.out.println("HA2: " + HA2);
			// String cnonce = "0a4f113b";
			// System.out.println("nonce: " + nonce);
			// System.out.println("nc: " + ncStr);
			// System.out.println("cnonce: " + cnonce);
			// System.out.println("qop: " + qop);
			// String KD = HA1 + ":" + nonce;

			// if (qop != null && qop.equals("auth") ) {
			// if (nc != -1) {
			// KD += ":" + ncStr;
			// }
			// if (cnonce != null) {
			// KD += ":" + cnonce;
			// }
			// KD += ":" + qop;
			// }
			// KD += ":" + HA2;
			// System.out.println("KD: " + KD);
			// mdbytes = messageDigest.digest(KD.getBytes());
			// String mdString = toHexString(mdbytes);
			// System.out.println("mdString: " + mdString);
			// String response = "4f0507d4b87cdecff04bdaf4c96348f0";
			// System.out.println("response: " + response);
			// }
			}