Add crypto exaple

Signed-off-by: sirivarma <[email protected]>

Author: siri-varma

.github/workflows/validate.yml

@@ -185,4 +185,9 @@ jobs:
         working-directory: ./examples
         run: |
           mm.py ./src/main/java/io/dapr/examples/pubsub/stream/README.md
+      - name: Validate crypto example
+        working-directory: ./examples
+        run: |
+          mm.py ./src/main/java/io/dapr/examples/crypto/README.md
+
 

examples/components/crypto/localstorage.yaml

@@ -0,0 +1,13 @@
+apiVersion: dapr.io/v1alpha1
+kind: Component
+metadata:
+  name: localstoragecrypto
+spec:
+  type: crypto.dapr.localstorage
+  version: v1
+  metadata:
+    # Path to the directory containing keys (PEM files)
+    # On Linux/Mac: ~/.dapr/keys
+    # On Windows: %USERPROFILE%\.dapr\keys
+    - name: path
+      value: "${HOME}/.dapr/keys"

examples/src/main/java/io/dapr/examples/crypto/CryptoExample.java

@@ -0,0 +1,144 @@
+/*
+ * Copyright 2021 The Dapr Authors
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package io.dapr.examples.crypto;
+
+import io.dapr.client.DaprClientBuilder;
+import io.dapr.client.DaprPreviewClient;
+import io.dapr.client.domain.DecryptRequestAlpha1;
+import io.dapr.client.domain.EncryptRequestAlpha1;
+import io.dapr.config.Properties;
+import io.dapr.config.Property;
+import reactor.core.publisher.Flux;
+
+import java.nio.charset.StandardCharsets;
+import java.util.Map;
+
+/**
+ * CryptoExample demonstrates using the Dapr Cryptography building block
+ * to encrypt and decrypt data using a cryptography component.
+ * 
+ * <p>This example shows:
+ * <ul>
+ *   <li>Encrypting plaintext data with a specified key and algorithm</li>
+ *   <li>Decrypting ciphertext data back to plaintext</li>
+ *   <li>Working with streaming data for large payloads</li>
+ * </ul>
+ * 
+ * <p>Prerequisites:
+ * <ul>
+ *   <li>Dapr installed and initialized</li>
+ *   <li>A cryptography component configured (e.g., local storage crypto)</li>
+ *   <li>A key pair available for the crypto component</li>
+ * </ul>
+ */
+public class CryptoExample {
+
+  // The crypto component name as defined in the component YAML file
+  private static final String CRYPTO_COMPONENT_NAME = "localstoragecrypto";
+  
+  // The key name to use for encryption/decryption
+  private static final String KEY_NAME = "mykey";
+  
+  // The key wrap algorithm - RSA-OAEP-256 for RSA keys
+  private static final String KEY_WRAP_ALGORITHM = "RSA-OAEP-256";
+
+  /**
+   * The main method demonstrating encryption and decryption with Dapr.
+   *
+   * @param args Command line arguments (unused).
+   */
+  public static void main(String[] args) {
+    Map<Property<?>, String> overrides = Map.of(
+        Properties.HTTP_PORT, "3500",
+        Properties.GRPC_PORT, "50001"
+    );
+
+    try (DaprPreviewClient client = new DaprClientBuilder().withPropertyOverrides(overrides).buildPreviewClient()) {
+
+      // Original message to encrypt
+      String originalMessage = "Hello, Dapr Cryptography! This is a secret message.";
+      byte[] plainText = originalMessage.getBytes(StandardCharsets.UTF_8);
+
+      System.out.println("=== Dapr Cryptography Example ===");
+      System.out.println("Original message: " + originalMessage);
+      System.out.println();
+
+      // Encrypt the message
+      System.out.println("Encrypting message...");
+      EncryptRequestAlpha1 encryptRequest = new EncryptRequestAlpha1(
+          CRYPTO_COMPONENT_NAME,
+          Flux.just(plainText),
+          KEY_NAME,
+          KEY_WRAP_ALGORITHM
+      );
+
+      // Collect encrypted data from the stream
+      byte[] encryptedData = client.encrypt(encryptRequest)
+          .collectList()
+          .map(chunks -> {
+            int totalSize = chunks.stream().mapToInt(chunk -> chunk.length).sum();
+            byte[] result = new byte[totalSize];
+            int pos = 0;
+            for (byte[] chunk : chunks) {
+              System.arraycopy(chunk, 0, result, pos, chunk.length);
+              pos += chunk.length;
+            }
+            return result;
+          })
+          .block();
+
+      System.out.println("Encryption successful!");
+      System.out.println("Encrypted data length: " + encryptedData.length + " bytes");
+      System.out.println();
+
+      // Decrypt the message
+      System.out.println("Decrypting message...");
+      DecryptRequestAlpha1 decryptRequest = new DecryptRequestAlpha1(
+          CRYPTO_COMPONENT_NAME,
+          Flux.just(encryptedData)
+      );
+
+      // Collect decrypted data from the stream
+      byte[] decryptedData = client.decrypt(decryptRequest)
+          .collectList()
+          .map(chunks -> {
+            int totalSize = chunks.stream().mapToInt(chunk -> chunk.length).sum();
+            byte[] result = new byte[totalSize];
+            int pos = 0;
+            for (byte[] chunk : chunks) {
+              System.arraycopy(chunk, 0, result, pos, chunk.length);
+              pos += chunk.length;
+            }
+            return result;
+          })
+          .block();
+
+      String decryptedMessage = new String(decryptedData, StandardCharsets.UTF_8);
+      System.out.println("Decryption successful!");
+      System.out.println("Decrypted message: " + decryptedMessage);
+      System.out.println();
+
+      // Verify the message matches
+      if (originalMessage.equals(decryptedMessage)) {
+        System.out.println("✓ Success! The decrypted message matches the original.");
+      } else {
+        System.out.println("✗ Error! The decrypted message does not match the original.");
+      }
+
+    } catch (Exception e) {
+      System.err.println("Error during crypto operations: " + e.getMessage());
+      throw new RuntimeException(e);
+    }
+  }
+}

examples/src/main/java/io/dapr/examples/crypto/README.md

@@ -0,0 +1,186 @@
+## Dapr Cryptography API Examples
+
+This example provides the different capabilities provided by Dapr Java SDK for Cryptography. For further information about Cryptography APIs please refer to [this link](https://docs.dapr.io/developing-applications/building-blocks/cryptography/cryptography-overview/)
+
+### Using the Cryptography API
+
+The Java SDK exposes several methods for this -
+* `client.encrypt(...)` for encrypting data using a cryptography component.
+* `client.decrypt(...)` for decrypting data using a cryptography component.
+
+## Pre-requisites
+
+* [Dapr CLI](https://docs.dapr.io/getting-started/install-dapr-cli/).
+* Java JDK 11 (or greater):
+    * [Microsoft JDK 11](https://docs.microsoft.com/en-us/java/openjdk/download#openjdk-11)
+    * [Oracle JDK 11](https://www.oracle.com/technetwork/java/javase/downloads/index.html#JDK11)
+    * [OpenJDK 11](https://jdk.java.net/11/)
+* [Apache Maven](https://maven.apache.org/install.html) version 3.x.
+
+### Checking out the code
+
+Clone this repository:
+
+```sh
+git clone https://github.com/dapr/java-sdk.git
+cd java-sdk
+```
+
+Then build the Maven project:
+
+```sh
+# make sure you are in the `java-sdk` directory.
+mvn install
+```
+
+Then get into the examples directory:
+
+```sh
+cd examples
+```
+
+### Initialize Dapr
+
+Run `dapr init` to initialize Dapr in Self-Hosted Mode if it's not already initialized.
+
+### Setting Up the Cryptography Component
+
+Before running the examples, you need to set up a cryptography component. This example uses the local storage crypto component.
+
+1. Create a directory for your keys:
+
+```bash
+mkdir -p ~/.dapr/keys
+```
+
+2. Generate an RSA key pair (you can use OpenSSL):
+
+```bash
+# Generate a 4096-bit RSA private key
+openssl genrsa -out ~/.dapr/keys/mykey 4096
+
+# Extract the public key
+openssl rsa -in ~/.dapr/keys/mykey -pubout -out ~/.dapr/keys/mykey.pub
+```
+
+The component configuration file is already provided in `./components/crypto/localstorage.yaml`.
+
+### Running the Example
+
+This example uses the Java SDK Dapr client to **Encrypt and Decrypt** data.
+
+#### Example 1: Basic Crypto Example
+
+`CryptoExample.java` demonstrates basic encryption and decryption of a simple message.
+
+```java
+public class CryptoExample {
+  private static final String CRYPTO_COMPONENT_NAME = "localstoragecrypto";
+  private static final String KEY_NAME = "mykey";
+  private static final String KEY_WRAP_ALGORITHM = "RSA-OAEP-256";
+
+  public static void main(String[] args) {
+    try (DaprPreviewClient client = new DaprClientBuilder().buildPreviewClient()) {
+      
+      String originalMessage = "Hello, Dapr Cryptography!";
+      byte[] plainText = originalMessage.getBytes(StandardCharsets.UTF_8);
+
+      // Encrypt the message
+      EncryptRequestAlpha1 encryptRequest = new EncryptRequestAlpha1(
+          CRYPTO_COMPONENT_NAME,
+          Flux.just(plainText),
+          KEY_NAME,
+          KEY_WRAP_ALGORITHM
+      );
+      
+      byte[] encryptedData = client.encrypt(encryptRequest)
+          .collectList()
+          .map(chunks -> /* combine chunks */)
+          .block();
+
+      // Decrypt the message
+      DecryptRequestAlpha1 decryptRequest = new DecryptRequestAlpha1(
+          CRYPTO_COMPONENT_NAME,
+          Flux.just(encryptedData)
+      );
+      
+      byte[] decryptedData = client.decrypt(decryptRequest)
+          .collectList()
+          .map(chunks -> /* combine chunks */)
+          .block();
+    }
+  }
+}
+```
+
+Use the following command to run this example:
+
+<!-- STEP
+name: Run Crypto Example
+expected_stdout_lines:
+  - "== APP == ✓ Success! The decrypted message matches the original."
+background: true
+output_match_mode: substring
+sleep: 10
+-->
+
+```bash
+dapr run --resources-path ./components/crypto --app-id crypto-app --dapr-http-port 3500 --dapr-grpc-port 50001 -- java -jar target/dapr-java-sdk-examples-exec.jar io.dapr.examples.crypto.CryptoExample
+```
+
+<!-- END_STEP -->
+
+#### Example 2: Streaming Crypto Example
+
+`StreamingCryptoExample.java` demonstrates advanced scenarios including:
+- Multi-chunk data encryption
+- Large data encryption (100KB+)
+- Custom encryption ciphers
+
+```bash
+dapr run --resources-path ./components/crypto --app-id crypto-app --dapr-http-port 3500 --dapr-grpc-port 50001 -- java -jar target/dapr-java-sdk-examples-exec.jar io.dapr.examples.crypto.StreamingCryptoExample
+```
+
+### Sample Output
+
+```
+=== Dapr Cryptography Example ===
+Original message: Hello, Dapr Cryptography! This is a secret message.
+
+Encrypting message...
+Encryption successful!
+Encrypted data length: 512 bytes
+
+Decrypting message...
+Decryption successful!
+Decrypted message: Hello, Dapr Cryptography! This is a secret message.
+
+✓ Success! The decrypted message matches the original.
+```
+
+### Supported Key Wrap Algorithms
+
+The following key wrap algorithms are supported:
+- `A256KW` (alias: `AES`) - AES key wrap
+- `A128CBC`, `A192CBC`, `A256CBC` - AES CBC modes
+- `RSA-OAEP-256` (alias: `RSA`) - RSA OAEP with SHA-256
+
+### Supported Data Encryption Ciphers
+
+Optional data encryption ciphers:
+- `aes-gcm` (default) - AES in GCM mode
+- `chacha20-poly1305` - ChaCha20-Poly1305 cipher
+
+### Cleanup
+
+To stop the app, run (or press CTRL+C):
+
+<!-- STEP
+name: Cleanup
+-->
+
+```bash
+dapr stop --app-id crypto-app
+```
+
+<!-- END_STEP -->