refactor(CryptoFactoryParams): PemFileInitalizer erstellt, um das Lesen und Aktualisieren von Pem-Dateien zu ermöglichen.

- Minimierung der di-Erweiterungsmethoden. - AfterCreate-Methode entfernt
2025-03-13 17:10:22 +01:00
parent 528a346883
commit 144fe86987
7 changed files with 103 additions and 135 deletions
--- a/DigitalData.Core.Security/Services/PemFileInitalizer.cs
+++ b/DigitalData.Core.Security/Services/PemFileInitalizer.cs
@@ -0,0 +1,86 @@
+using DigitalData.Core.Security.Config;
+using DigitalData.Core.Security.RSAKey;
+using Microsoft.Extensions.Hosting;
+using Microsoft.Extensions.Logging;
+using Microsoft.Extensions.Options;
+
+namespace DigitalData.Core.Security.Services;
+
+public class PemFileInitalizer : BackgroundService
+{
+    private readonly CryptoFactoryParams _factoryParams;
+
+    private readonly ILogger<PemFileInitalizer>? _logger;
+
+    public PemFileInitalizer(IOptions<CryptoFactoryParams> factoryParamsOptions, ILogger<PemFileInitalizer>? logger = null)
+    {
+        _factoryParams = factoryParamsOptions.Value;
+        _logger = logger;
+    }
+
+    protected override async Task ExecuteAsync(CancellationToken stoppingToken)
+    {
+        if (_logger is null)
+            await InitPemFiles(stoppingToken);
+        else try
+        {
+            await InitPemFiles(stoppingToken);
+        }
+        catch(Exception ex)
+        { 
+            _logger.LogError(ex, "Pem files cannot be initialized.");
+        }
+    }
+
+    private async Task InitPemFiles(CancellationToken stoppingToken = default)
+    {
+        // Create root folder if it does not exist
+        if (!Directory.Exists(_factoryParams.PemDirectory))
+            Directory.CreateDirectory(_factoryParams.PemDirectory);
+
+        var privateKeys = new List<RSAPrivateKey>();
+        privateKeys.AddRange(_factoryParams.Decryptors);
+        privateKeys.AddRange(_factoryParams.TokenDescriptors);
+        if (_factoryParams.VaultDecryptor is not null)
+            privateKeys.Add(_factoryParams.VaultDecryptor);
+
+        foreach (var privateKey in privateKeys)
+        {
+            // set default path
+            if (privateKey.IsPemNull)
+            {
+                // file name 
+                var file_name_params = new List<object>();
+
+                if (privateKey.Id is not null)
+                    file_name_params.Add(privateKey.Id);
+                else if (privateKey is RSATokenDescriptor descriptor)
+                    file_name_params.Add(descriptor.Issuer);
+
+                file_name_params.Add(_factoryParams.KeySizeInBits);
+                file_name_params.Add(DateTime.Now.ToTag(_factoryParams.DateTagFormat));
+
+                if (privateKey.IsEncrypted)
+                    file_name_params.Add(Secrets.Version);
+
+                var file_name = $"{string.Join(_factoryParams.FileNameSeparator, file_name_params)}.{_factoryParams.FileExtension}";
+
+                var path = Path.Combine(_factoryParams.PemDirectory, file_name);
+
+                if (File.Exists(path))
+                    privateKey.SetPem(File.ReadAllText(path));
+                else
+                {
+                    var pem = privateKey.IsEncrypted
+                        ? Instance.RSAFactory.CreateEncryptedPrivateKeyPem(pbeParameters: _factoryParams.PbeParameters, keySizeInBits: _factoryParams.KeySizeInBits, password: Secrets.PBE_PASSWORD)
+                        : Instance.RSAFactory.CreatePrivateKeyPem(keySizeInBits: _factoryParams.KeySizeInBits);
+
+                    privateKey.SetPem(pem);
+
+                    // Save file in background
+                    await File.WriteAllTextAsync(path: path, pem, stoppingToken);
+                }
+            }
+        }
+    }
+}