anton-x-t · October 2, 2018 13:19
diff --git a/gistfile1.java b/gistfile1.java
  // Thank you very much eogiles for earlier written code, credit goes to you.
  // Thank you very much javajack for earlier written code, credit goes to you.
  // License for this code: cc by-sa 3.0
  
  // Please get Maven in order for this code to work.
  
  // Please get your own imports, you'll probably have to get commons-codec manually by adding it to your POM in Maven:
  // <!-- https://mvnrepository.com/artifact/commons-codec/commons-codec 
  //		To be able to convert to Base64 when making the PasswordDigest token. -->
  //		<dependency>
  //		    <groupId>commons-codec</groupId>
  //		    <artifactId>commons-codec</artifactId>
  //		    <version>1.11</version>
  //		</dependency>

 	// On building a complete security header including nonce, createdTime and passwordDigest,
 	// thank you eogiles and Rakesh Waghela (javajack), https://gist.github.com/propatience/43a298607937c46bbdf9e102ddeec332
 	private static String[] buildSecurityHeader(String passwordParam) throws IOException, NoSuchAlgorithmException {
 	    String password = passwordParam;
 	    
 	    // From the spec: Password_Digest = Base64 ( SHA-1 ( nonce + created + password ) )
      // Make the nonce
      SecureRandom rand = SecureRandom.getInstance("SHA1PRNG");
      rand.setSeed(System.currentTimeMillis());
      byte[] nonceBytes = new byte[16];
      rand.nextBytes(nonceBytes);
      
      // Make the created date
      DateFormat df = new SimpleDateFormat("yyyy-MM-dd'T'HH:mm:ss.SSS'Z'");
      df.setTimeZone(TimeZone.getTimeZone("UTC"));
      String createdDate = df.format(Calendar.getInstance().getTime());
      byte[] createdDateBytes = createdDate.getBytes("UTF-8");
      
      // Make the password
      byte[] passwordBytes = password.getBytes("UTF-8");
      
      // SHA-1 hash the bunch of it.
      ByteArrayOutputStream baos = new ByteArrayOutputStream();
      baos.write(nonceBytes);
      baos.write(createdDateBytes);
      baos.write(passwordBytes);
      MessageDigest md = MessageDigest.getInstance("SHA-1");
      byte[] digestedPassword = md.digest(baos.toByteArray());
      
      // Encode the password and nonce for sending                   
      // String passwordB64 = (new BASE64Encoder()).encode(digestedPassword);
      // On "Base64Encoder cannot be resolved", thank you Sai, https://stackoverflow.com/q/6526883
      byte[] passwordDigestB64 = org.apache.commons.codec.binary.Base64.encodeBase64(digestedPassword);
 	    
      String passwordDigest = new String(passwordDigestB64);
      
      byte[] nonceB64 = org.apache.commons.codec.binary.Base64.encodeBase64(nonceBytes);
        
      String nonce = new String(nonceB64);
        
      // On initializing String[], thank you glmxndr, https://stackoverflow.com/q/1200621
      String returnString[] = new String[3];
      returnString[0] = nonce;
      returnString[1] = createdDate;
      returnString[2] = passwordDigest;
        
      return returnString;
 	}
	// Thank you very much eogiles for earlier written code, credit goes to you.
	// Thank you very much javajack for earlier written code, credit goes to you.
	// License for this code: cc by-sa 3.0

	// Please get Maven in order for this code to work.

	// Please get your own imports, you'll probably have to get commons-codec manually by adding it to your POM in Maven:
	// <!-- https://mvnrepository.com/artifact/commons-codec/commons-codec
	// To be able to convert to Base64 when making the PasswordDigest token. -->
	// <dependency>
	// <groupId>commons-codec</groupId>
	// <artifactId>commons-codec</artifactId>
	// <version>1.11</version>
	// </dependency>

	// On building a complete security header including nonce, createdTime and passwordDigest,
	// thank you eogiles and Rakesh Waghela (javajack), https://gist.github.com/propatience/43a298607937c46bbdf9e102ddeec332
	private static String[] buildSecurityHeader(String passwordParam) throws IOException, NoSuchAlgorithmException {
	String password = passwordParam;

	// From the spec: Password_Digest = Base64 ( SHA-1 ( nonce + created + password ) )
	// Make the nonce
	SecureRandom rand = SecureRandom.getInstance("SHA1PRNG");
	rand.setSeed(System.currentTimeMillis());
	byte[] nonceBytes = new byte[16];
	rand.nextBytes(nonceBytes);

	// Make the created date
	DateFormat df = new SimpleDateFormat("yyyy-MM-dd'T'HH:mm:ss.SSS'Z'");
	df.setTimeZone(TimeZone.getTimeZone("UTC"));
	String createdDate = df.format(Calendar.getInstance().getTime());
	byte[] createdDateBytes = createdDate.getBytes("UTF-8");

	// Make the password
	byte[] passwordBytes = password.getBytes("UTF-8");

	// SHA-1 hash the bunch of it.
	ByteArrayOutputStream baos = new ByteArrayOutputStream();
	baos.write(nonceBytes);
	baos.write(createdDateBytes);
	baos.write(passwordBytes);
	MessageDigest md = MessageDigest.getInstance("SHA-1");
	byte[] digestedPassword = md.digest(baos.toByteArray());

	// Encode the password and nonce for sending
	// String passwordB64 = (new BASE64Encoder()).encode(digestedPassword);
	// On "Base64Encoder cannot be resolved", thank you Sai, https://stackoverflow.com/q/6526883
	byte[] passwordDigestB64 = org.apache.commons.codec.binary.Base64.encodeBase64(digestedPassword);

	String passwordDigest = new String(passwordDigestB64);

	byte[] nonceB64 = org.apache.commons.codec.binary.Base64.encodeBase64(nonceBytes);

	String nonce = new String(nonceB64);

	// On initializing String[], thank you glmxndr, https://stackoverflow.com/q/1200621
	String returnString[] = new String[3];
	returnString[0] = nonce;
	returnString[1] = createdDate;
	returnString[2] = passwordDigest;

	return returnString;
	}