Replaces rust bcrypt tool with a java implementation (#21)

Replaced rust implementation of bcrypt hasher for NiFi passwords with Java tool due to #20

This uses the same library as NiFi internally (in fact BCryptPasswordEncoder.java has been copied from NiFi) and has been tested to generate working hashes.

Co-authored-by: Teo Klestrup Röijezon <teo.roijezon@stackable.de>

Author: soenkeliebau

stackable-bcrypt/README.md

@@ -6,10 +6,14 @@ Most common use case will be in init containers to hash cleartext passwords from
 
 The tool reads from stdin.
 
+## Building
+
+Maven is used as the build tool, simply running `mvn package` will generate the required jars to run this.
+
 ## Usage
 
-stackable-bcrypt [OPTIONS] 
+````
+➜  echo password | java -jar stackable-bcrypt-1.0-SNAPSHOT-jar-with-dependencies.jar
+$2b$12$esbe7T2nhgkk5hwu2jM4Kuo9RQ4Zwjdl5a6Ir9/gILUJ4swHbZYrK
+````
 
-OPTIONS:
--c, --cost <COST>
-[default: 10]

stackable-bcrypt/pom.xml

@@ -0,0 +1,110 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+
+    <groupId>tech.stackable.nifi</groupId>
+    <artifactId>stackable-bcrypt</artifactId>
+    <version>1.0-SNAPSHOT</version>
+
+    <name>hashtester</name>
+    <url>https://github.com/stackabletech/stackable-utils</url>
+
+    <properties>
+        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+        <source>11</source>
+        <target>11</target>
+    </properties>
+
+    <dependencies>
+        <dependency>
+            <groupId>at.favre.lib</groupId>
+            <artifactId>bcrypt</artifactId>
+            <version>0.9.0</version>
+        </dependency>
+    </dependencies>
+
+    <build>
+        <pluginManagement><!-- lock down plugins versions to avoid using Maven defaults (may be moved to parent pom) -->
+            <plugins>
+                <!-- clean lifecycle, see https://maven.apache.org/ref/current/maven-core/lifecycles.html#clean_Lifecycle -->
+                <plugin>
+                    <artifactId>maven-clean-plugin</artifactId>
+                    <version>3.1.0</version>
+                </plugin>
+                <!-- default lifecycle, jar packaging: see https://maven.apache.org/ref/current/maven-core/default-bindings.html#Plugin_bindings_for_jar_packaging -->
+                <plugin>
+                    <artifactId>maven-resources-plugin</artifactId>
+                    <version>3.0.2</version>
+                </plugin>
+                <plugin>
+                    <artifactId>maven-compiler-plugin</artifactId>
+                    <version>3.8.0</version>
+                </plugin>
+                <plugin>
+                    <artifactId>maven-surefire-plugin</artifactId>
+                    <version>2.22.1</version>
+                </plugin>
+                <plugin>
+                    <artifactId>maven-jar-plugin</artifactId>
+                    <version>3.0.2</version>
+                </plugin>
+                <plugin>
+                    <artifactId>maven-install-plugin</artifactId>
+                    <version>2.5.2</version>
+                </plugin>
+                <plugin>
+                    <artifactId>maven-deploy-plugin</artifactId>
+                    <version>2.8.2</version>
+                </plugin>
+                <!-- site lifecycle, see https://maven.apache.org/ref/current/maven-core/lifecycles.html#site_Lifecycle -->
+                <plugin>
+                    <artifactId>maven-site-plugin</artifactId>
+                    <version>3.7.1</version>
+                </plugin>
+                <plugin>
+                    <artifactId>maven-project-info-reports-plugin</artifactId>
+                    <version>3.0.0</version>
+                </plugin>
+            </plugins>
+        </pluginManagement>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-assembly-plugin</artifactId>
+                <version>3.1.1</version>
+
+                <configuration>
+                    <descriptorRefs>
+                        <descriptorRef>jar-with-dependencies</descriptorRef>
+                    </descriptorRefs>
+                    <archive>
+                        <manifest>
+                            <mainClass>tech.stackable.nifi.PasswordHasher</mainClass>
+                        </manifest>
+                    </archive>
+                </configuration>
+
+                <executions>
+                    <execution>
+                        <id>make-assembly</id>
+                        <phase>package</phase>
+                        <goals>
+                            <goal>single</goal>
+                        </goals>
+                    </execution>
+                </executions>
+
+            </plugin>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-compiler-plugin</artifactId>
+                <configuration>
+                    <source>11</source>
+                    <target>11</target>
+                </configuration>
+            </plugin>
+        </plugins>
+    </build>
+</project>

stackable-bcrypt/src/main/java/tech/stackable/nifi/BCryptPasswordEncoder.java

@@ -0,0 +1,32 @@
+package tech.stackable.nifi;
+
+import at.favre.lib.crypto.bcrypt.BCrypt;
+import at.favre.lib.crypto.bcrypt.BCrypt.Hasher;
+import at.favre.lib.crypto.bcrypt.BCrypt.Result;
+import at.favre.lib.crypto.bcrypt.BCrypt.Verifyer;
+import at.favre.lib.crypto.bcrypt.BCrypt.Version;
+
+public class BCryptPasswordEncoder {
+    private static final int DEFAULT_COST = 12;
+    private static final Version BCRYPT_VERSION;
+    private static final Hasher HASHER;
+    private static final Verifyer VERIFYER;
+
+    public BCryptPasswordEncoder() {
+    }
+
+    public String encode(char[] password) {
+        return HASHER.hashToString(DEFAULT_COST, password);
+    }
+
+    public boolean matches(char[] password, String encodedPassword) {
+        Result result = VERIFYER.verifyStrict(password, encodedPassword.toCharArray());
+        return result.verified;
+    }
+
+    static {
+        BCRYPT_VERSION = Version.VERSION_2B;
+        HASHER = BCrypt.with(BCRYPT_VERSION);
+        VERIFYER = BCrypt.verifyer(BCRYPT_VERSION);
+    }
+}

stackable-bcrypt/src/main/java/tech/stackable/nifi/PasswordHasher.java

@@ -0,0 +1,32 @@
+package tech.stackable.nifi;
+
+import java.io.BufferedReader;
+import java.io.IOException;
+import java.io.InputStreamReader;
+import java.util.stream.Collectors;
+
+public class PasswordHasher
+{
+    public static void main( String[] args )
+    {
+        String input = getInput();
+        BCryptPasswordEncoder encoder = new BCryptPasswordEncoder();
+        String hash = encoder.encode(input.toCharArray());
+        System.out.println(hash);
+    }
+
+    private static String getInput() {
+        BufferedReader reader = new BufferedReader(new InputStreamReader(System.in));
+        try {
+            if (reader.ready()) {
+                return reader.lines().collect(Collectors.joining("\n"));
+            }
+        } catch (IOException e) {
+            System.err.println("Failed to read from stdin: " + e.getMessage());
+            System.exit(-1);
+        }
+        // Didn't read anything or an error occurred
+        System.exit(-1);
+        return "";
+    }
+}