refactor(RSAFactory): params-Abhängigkeit durch Ersetzen von params.Defaults entfernt

DigitalData.Core.Security/Config/RSAFactoryParams.cs

@@ -6,13 +6,13 @@ namespace DigitalData.Core.Security.Config
 {
     public class RSAFactoryParams
     {
-        public int KeySizeInBits { get; init; } = 2048;
+        public int KeySizeInBits { get; init; } = Default.KeySizeInBits;
 
-        public string PbePassword { internal get; init; } = Secrets.PBE_PASSWORD;
+        public string PbePassword { internal get; init; } = Default.PbePassword;
 
-        public PbeEncryptionAlgorithm PbeEncryptionAlgorithm { get; init; } = PbeEncryptionAlgorithm.Aes256Cbc;
+        public PbeEncryptionAlgorithm PbeEncryptionAlgorithm { get; init; } = Default.PbeEncryptionAlgorithm;
 
-        public HashAlgorithmName PbeHashAlgorithm { get; init; } = HashAlgorithmName.SHA256;
+        public HashAlgorithmName PbeHashAlgorithm { get; init; } = Default.PbeHashAlgorithm;
 
         // TODO: add as json converter to IConfigurIConfiguration.Config
         public string PbeHashAlgorithmName
@@ -23,9 +23,9 @@ namespace DigitalData.Core.Security.Config
                 : new(value);            
         }
 
-        public int PbeIterationCount { get; init; } = 100_000;
+        public int PbeIterationCount { get; init; } = Default.PbeIterationCount;
 
-        public string EncryptedPrivateKeyPemLabel { get; init; } = "ENCRYPTED PRIVATE KEY";
+        public string EncryptedPrivateKeyPemLabel { get; init; } = Default.EncryptedPrivateKeyPemLabel;
 
         private readonly Lazy<PbeParameters> _lazyPbeParameters;
 
@@ -36,5 +36,22 @@ namespace DigitalData.Core.Security.Config
         {
             _lazyPbeParameters = new(() => new PbeParameters(PbeEncryptionAlgorithm, PbeHashAlgorithm, PbeIterationCount));
         }
+
+        public static class Default
+        {
+            public static readonly int KeySizeInBits = 2048;
+
+            public static readonly string PbePassword = Secrets.PBE_PASSWORD;
+
+            public static readonly PbeEncryptionAlgorithm PbeEncryptionAlgorithm = PbeEncryptionAlgorithm.Aes256Cbc;
+
+            public static readonly HashAlgorithmName PbeHashAlgorithm = HashAlgorithmName.SHA256;
+
+            public static readonly int PbeIterationCount = 100_000;
+
+            public static readonly string EncryptedPrivateKeyPemLabel = "ENCRYPTED PRIVATE KEY";
+
+            public static readonly PbeParameters PbeParameters = new(PbeEncryptionAlgorithm, PbeHashAlgorithm, PbeIterationCount);
+        }
     }
 }

DigitalData.Core.Security/CryptoFactory.cs

@@ -4,10 +4,12 @@ using DigitalData.Core.Security.RSAKey;
 using Microsoft.Extensions.Logging;
 using Microsoft.Extensions.Options;
  
-namespace DigitalData.Core.Security
+namespace DigitalData.Core.Security;
+
+public class CryptoFactory : RSAFactory, ICryptoFactory, IAsymmetricKeyFactory
 {
-    public class CryptoFactory : RSAFactory<CryptoFactoryParams>, ICryptoFactory, IAsymmetricKeyFactory
-    {
+    private readonly CryptoFactoryParams _params;
+
     public IEnumerable<IAsymmetricDecryptor> Decryptors { get; }
     
     /// <summary>
@@ -17,8 +19,10 @@ namespace DigitalData.Core.Security
 
     public IEnumerable<IAsymmetricTokenDescriptor> TokenDescriptors { get; init; } = new List<IAsymmetricTokenDescriptor>();
 
-        public CryptoFactory(IOptions<CryptoFactoryParams> options, ILogger<CryptoFactory>? logger = null) : base(options)
+    public CryptoFactory(IOptions<CryptoFactoryParams> cryptoFactoryParamsOptions, ILogger<CryptoFactory>? logger = null)
     {
+        _params = cryptoFactoryParamsOptions.Value;
+
         logger?.LogInformation("Core.Secrets version: {Version}, Created on: {CreationDate}.", Secrets.Version, Secrets.CreationDate.ToString("dd.MM.yyyy"));
 
         if (!_params.Decryptors.Any())
@@ -34,5 +38,4 @@ namespace DigitalData.Core.Security
 
         VaultDecryptor = _params.VaultDecryptor ?? Decryptors.First();
     }
-    }
 }

DigitalData.Core.Security/RSAKey/RSAFactory.cs

@@ -1,22 +1,14 @@
 using DigitalData.Core.Abstractions.Security;
 using DigitalData.Core.Security.Config;
-using Microsoft.Extensions.Options;
 using System.Security.Cryptography;
 
-namespace DigitalData.Core.Security.RSAKey
+namespace DigitalData.Core.Security.RSAKey;
+
+public class RSAFactory : IAsymmetricKeyFactory
 {
-    public class RSAFactory<TRSAFactoryParams> : IAsymmetricKeyFactory where TRSAFactoryParams : RSAFactoryParams
-    {
-        protected readonly TRSAFactoryParams _params;
-
-        public RSAFactory(IOptions<TRSAFactoryParams> options)
-        {
-            _params = options.Value;
-        }
-
     public string CreatePrivateKeyPem(int? keySizeInBits = null, bool encrypt = false) => encrypt
         ? CreateEncryptedPrivateKeyPem(keySizeInBits: keySizeInBits)
-            : RSA.Create(keySizeInBits ?? _params.KeySizeInBits).ExportRSAPrivateKeyPem();
+        : RSA.Create(keySizeInBits ?? RSAFactoryParams.Default.KeySizeInBits).ExportRSAPrivateKeyPem();
 
     public string CreateEncryptedPrivateKeyPem(
         PbeEncryptionAlgorithm? pbeEncryptionAlgorithm = null,
@@ -25,18 +17,16 @@ namespace DigitalData.Core.Security.RSAKey
         int? keySizeInBits = null,
         string? password = null)
     {
-            password ??= _params.PbePassword;
+        password ??= RSAFactoryParams.Default.PbePassword;
 
-            var pbeParameters = pbeEncryptionAlgorithm is null && hashAlgorithmName is null && iterationCount is null
-                ? new PbeParameters(
-                    pbeEncryptionAlgorithm ?? _params.PbeEncryptionAlgorithm,
-                    hashAlgorithmName ?? _params.PbeHashAlgorithm,
-                    iterationCount ?? _params.PbeIterationCount)
-                : _params.PbeParameters;
+        var pbeParameters = new PbeParameters(
+                pbeEncryptionAlgorithm ?? RSAFactoryParams.Default.PbeEncryptionAlgorithm,
+                hashAlgorithmName ?? RSAFactoryParams.Default.PbeHashAlgorithm,
+                iterationCount ?? RSAFactoryParams.Default.PbeIterationCount);
 
-            var encryptedPrivateKey = RSA.Create(keySizeInBits ?? _params.KeySizeInBits).ExportEncryptedPkcs8PrivateKey(password.AsSpan(), pbeParameters);
+        var encryptedPrivateKey = RSA.Create(keySizeInBits ?? RSAFactoryParams.Default.KeySizeInBits).ExportEncryptedPkcs8PrivateKey(password.AsSpan(), pbeParameters);
 
-            var pemChars = PemEncoding.Write(_params.EncryptedPrivateKeyPemLabel, encryptedPrivateKey);
+        var pemChars = PemEncoding.Write(RSAFactoryParams.Default.EncryptedPrivateKeyPemLabel, encryptedPrivateKey);
 
         return new string(pemChars);
     }
@@ -46,11 +36,11 @@ namespace DigitalData.Core.Security.RSAKey
         int? keySizeInBits = null,
         string? password = null)
     {
-            password ??= _params.PbePassword;
+        password ??= RSAFactoryParams.Default.PbePassword;
 
-            var encryptedPrivateKey = RSA.Create(keySizeInBits ?? _params.KeySizeInBits).ExportEncryptedPkcs8PrivateKey(password.AsSpan(), pbeParameters);
+        var encryptedPrivateKey = RSA.Create(keySizeInBits ?? RSAFactoryParams.Default.KeySizeInBits).ExportEncryptedPkcs8PrivateKey(password.AsSpan(), pbeParameters);
 
-            var pemChars = PemEncoding.Write(_params.EncryptedPrivateKeyPemLabel, encryptedPrivateKey);
+        var pemChars = PemEncoding.Write(RSAFactoryParams.Default.EncryptedPrivateKeyPemLabel, encryptedPrivateKey);
 
         return new string(pemChars);
     }
@@ -61,5 +51,4 @@ namespace DigitalData.Core.Security.RSAKey
         IsEncrypted = encrypt,
         Padding = padding ?? RSAEncryptionPadding.OaepSHA256
     };
-    }
 }