Management (CWS - API 1.1.0 API)

```
public interface Management
```
This interface contain the functionality needed to setup, configure and control a CWS instance.

Since:

CWS 1.0

Author:

Kim Jensen

Method Summary

All Methods Instance Methods Abstract Methods
Modifier and Type	Method and Description
`CwsResponse`	`authenticated(Authentication request)` Simple check to see if a Member is authenticated to work with this CWS instance.
`FetchCircleResponse`	`fetchCircles(FetchCircleRequest request)` This request will fetch a list of all Circles in the system.
`FetchMemberResponse`	`fetchMembers(FetchMemberRequest request)` Allows the retrieval of existing Member Accounts from the System, if a specific Account is requested, then a list of Circles where the Account is also a Trustee is returned.
`FetchTrusteeResponse`	`fetchTrustees(FetchTrusteeRequest request)` With this request, it is possible to retrieve a list of Trustees, belonging to either a Member, or a Circle.
`MasterKeyResponse`	`masterKey(MasterKeyRequest request)` The Master Key is a special symmetric key, which is used to encrypt and decrypt all Initial Vectors & Member Salt values.
`ProcessCircleResponse`	`processCircle(ProcessCircleRequest request)` With this request it is possible to process Circles.
`ProcessMemberResponse`	`processMember(ProcessMemberRequest request)` When a fresh installation is made, the Database contain one account, which is the System Administrator (admin), this account does not contain any pre-defined security settings, i.e.
`ProcessTrusteeResponse`	`processTrustee(ProcessTrusteeRequest request)` With this request it is possible to process Trustees.
`SanityResponse`	`sanitized(SanityRequest request)` Data stored encrypted is nothing but a long array of bytes.
`SettingResponse`	`settings(SettingRequest request)` This request allows the System Administrator to read and alter the Settings of this CWS system.
`VersionResponse`	`version()` Returns the current Version of the running CWS instance.

- Method Detail
  - version
```
VersionResponse version()
```
    Returns the current Version of the running CWS instance. This method serves mainly as a simply way to check if the system is operational.
    
    Returns:
    
    The CWS Version
  - settings
```
SettingResponse settings(SettingRequest request)
```
    This request allows the System Administrator to read and alter the Settings of this CWS system. Please be aware, that some fields cannot be altered once the system is started, as it may have fatal consequences for running system.
    
    The following is the standard settings, and the values which they will expect. If the value is invalid or cannot be transferred into something which the CWS can understand, then no entries is being updated and the request will respond with a warning
    - cws.crypto.symmetric.algorithm - default value: 'AES_CBC_128'
      Allowed Values: 'AES_CBC_128', 'AES_CBC_192', 'AES_CBC_256', 'AES_GCM_128'
      The Algorithm used for the Symmetric Keys in CWS. All data is stored using this Algorithm. Although it can be changed, please test the CWS carefully before doing so. And please be aware, that the information here is only used for generating new Keys, so changing things will not affect existing records.
      The default should be sufficient for most, if increased security is wanted, please consider installing and using the unlimited strength patch. It is worth noting, that as of January 2018 - all official Java versions comes with the unlimited strength enabled per default.
      Please see Standard Names & Cipher for more information.
    - cws.crypto.asymmetric.algorithm - default value: 'RSA_2048'
      Allowed Values: 'RSA_2048', 'RSA_4096', or 'RSA_8192'
      Asymmetric Encryption (Public & Private Key), is used for sharing the Symmetric Keys, not for encrypting any data.
    - cws.crypto.signature.algorithm - default value: 'SHA_512'
      Allowed Values: 'SHA_256' or 'SHA_512'
      When new Members are added, the System Administrator can issue a signature, which can be used by the Member when creating their new Account. The signature is made with this Algorithm.
    - cws.crypto.pbe.algorithm - default value: 'PBE_128'
      Allowed Values: 'PBE_128', 'PBE_192', or 'PBE_256'
      If a Member is using something else than a Key to unlock their Account, the CWS will use the following Password Based Encryption, PBE, algorithm to do the trick. The provided information is extended with an instance specific Salt, and a Member Account specific Salt to ensure that enough entropy is available to create a strong enough Key to unlock the Private Key for the Account.
    - cws.crypto.pbe.iterations - default value: '1024'
      Allowed Values: Any positive number
      The PBE algorithm (PBKDF) is extending the Member credentials with the Salt over a number of iterations. By default, 1024 iterations is used, which is generally considered very weak, but it is good value for testing and for trusted deployment environments. However, for a non-trusted environment, is is considered too weak, and higher number should be used for such environments. See Wikipedia for more information.
    - cws.crypto.hash.algorithm - default value: 'SHA_512'
      Allowed Values: 'SHA_256' or 'SHA_512'
      For the CheckSums or Fingerprints we're generating - we just need a way to ensure that the value is both identifiable. For Signatures, it is used as part of the lookup to find a Signature in the Database and for stored Data Objects, it is a simple mechanism to ensure the integrity of the stored data.
    - cws.system.salt - default value: -
      Allowed Values: Anything, but it should be hard to guess.
      This is the System specific Salt, which will be applied whenever PBE is used to unlock the Private Key of a Member Account. This Salt can only be altered as long as no account exist other than the System Administrator account - this safety precaution has been added to prevent that it is accidentally altered later. If so desired, an Administrator with access to the DB can change it later - however, this will render *all* accounts useless.
      Please note, that updating the salt must be done before applying a Master Key, as generating the Master Key will have to be re-initiated after this has been done, and will be done on the default Master Key, however, as the default Master Key is build around known information in the CWS, and a custom is build around a provided, unpersisted secret, it will render the system useless if the System Salt is set after the Master Key has been provided!
    - cws.system.locale - default value: 'EN'
      Allowed Values: Any language abbreviation
      For correctly dealing with Strings, it is important that the Locale is set to ensure that it is done properly. By default the Locale is English (EN), but if preferred, any other can be chosen. As long as they follow the IETF BCP 47 allowed values.
    - cws.system.charset - default value: 'UTF-8'
      Allowed Values: Any Character Set supported by Java
      When applying armoring to the raw keys, it means using a Base64 encoding and decoding. However, they have to be saved using a character set. Any character set can be used, but if keys have been stored using one, changing it will cause problems as they may not be read out safely again. So, please only change this if you are really sure.
    - cws.show.all.circles - default value: 'true'
      Allowed Values: Boolean - 'true' or 'false'
      Exposing all Circles, means that it is possible for a member, other than the System Administrator, to be able to view Circles who they are not having a Trustee relationship with - If the value is set to true.
      If the value is set to false, then it is only possible to extract a list of Circles with whom the Member is having a Trustee relationship with.
    - cws.show.trustees - default value: true
      Allowed Values: Boolean - 'true' or 'false'
      Privacy is important, however - there may be reasons to reduce the privacy level, and allow that a Member can view information about other Members even if there is no direct relation between the two. If two members share a Circle, then they will automatically be able to view each other, but if not, then this setting apply. By default, it is set to True - as CWS should be used by organizations or companies where all members already share information.
    - cws.sanity.check.startup - default value: 'true'
      Allowed Values: Boolean - 'true' or 'false'
      Overtime, it can happen that the data is deteriorating. Meaning that some of the bits can change and thus result in data which cannot be recovered as the decryption will give a completely false Object back. When data is stored, it is having a checksum of the encrypted bytes, which is also read out when the data is requested. If the checksum fails, then it is not possible to recover the original data anymore.
      However, as most systems also use backups, it is possible to recover the encrypted data from a backup, but the question is how far back the backup has to go. To ensure that a backup is correct and that there is no problems in the database, the sanity checks can be enabled at startup, meaning that when CWS is started up, all encrypted data is checked and verified. If a check fails - then the field is marked with a failed Sanity check, and the date of the check.
    - cws.sanity.check.interval.days - default value: '180'
      Allowed Values: Any integer
      Please see the comment for the 'cws.sanity.check.startup', for the motivation and reason for the sanity check. This setting sets the interval, at which the sanity checks should be made. By default, it is set to 180 days but it can be altered if needed.
    - cws.session.timeout.minutes - default value: '480'
      Allowed Values: Any integer
      The maximum amount of time a Session may be used.
    Parameters:
    
    request - Request Object
    
    Returns:
    
    Response Object with ReturnCode and Message
  - masterKey
```
MasterKeyResponse masterKey(MasterKeyRequest request)
```
    The Master Key is a special symmetric key, which is used to encrypt and decrypt all Initial Vectors & Member Salt values. The key is only kept in memory and is never persisted. Meaning, that it must be set when the CWS instance is started - otherwise, the entire system is rendered useless.
    
    There is a default Master Key, which is based on known values in the system. So, even if this key is not set by an Administrator, it is still used throughout the system. However, as the default key is based on known values, it cannot be used to enhance security. To accomplish this, it must be set by the System Administrator.
    
    Note, that it is very important that the MasterKey is set after the system Salt has been updated. As the system Salt is required by the Master Key, it and can only be updated by this request, it will make the system completely unusable.
    
    Parameters:
    
    request - Request Object
    
    Returns:
    
    Response Object with ReturnCode and Message
  - sanitized
```
SanityResponse sanitized(SanityRequest request)
```
    Data stored encrypted is nothing but a long array of bytes. If, over time, an error occurs the da storage so a few bits have been flipped, then it is not possible to decrypt the data.
    
    The stored data is having a checksum, which is written when the data is stored and checked when the data is read out. The checksum is made from the encrypted data.
    
    The build-in sanity checks will run over all persisted data either at predefined intervals or during startup. If a record is no longer valid, i.e. the checksum becomes invalid, then the record is marked as failed, and thus unusable. It should be possible for administrators to recover these from backups, but it requires that it is known when the failure occurred - which this request can help with ascertaining.
    
    The request can be invoked by the System Administrator, which can then return a complete list of all failures, or it can be invoked by a Circle Administrator, and result in a list of Objects failing for a given Circle or all Circles Administrated by the Circle Administrator. It is also possible to provide a timestamp, to only get failures reported since a certain time.
    
    The response Object contain a Map of ObjectIds which has failed, with the value being the timestamp of the first check where it failed.
    
    Parameters:
    
    request - Request Object
    
    Returns:
    
    Response Object with ReturnCode and Message
  - authenticated
```
CwsResponse authenticated(Authentication request)
```
    Simple check to see if a Member is authenticated to work with this CWS instance. The Response will return ReturnCode.SUCCESS if authentication information exists, otherwise an error is returned together with a more detailed message.
    
    Parameters:
    
    request - Authentication Request Object
    
    Returns:
    
    Response Object with Authentication and Return values
  - fetchMembers
```
FetchMemberResponse fetchMembers(FetchMemberRequest request)
```
    Allows the retrieval of existing Member Accounts from the System, if a specific Account is requested, then a list of Circles where the Account is also a Trustee is returned.
    
    Parameters:
    
    request - Request Object
    
    Returns:
    
    Response Object with ReturnCode and Message
  - processMember
```
ProcessMemberResponse processMember(ProcessMemberRequest request)
```
    When a fresh installation is made, the Database contain one account, which is the System Administrator (admin), this account does not contain any pre-defined security settings, i.e. no Asymmetric Key. Rather, the first invocation will set the Key on the account, based on the security credentials provided. This is done to avoid that the System Administrator account remain unchanged, i.e. that the default information is still present.
    
    Any subsequent ProcessMember request made, must be one of the following:
    - Add new Member
    - Alter Member Roles
    - Login to link a Session temporarily with an Account
    - Logout to stop linking an Account with a Session
    - Update existing Member
    - Update Credential
    - Remove Member
    Add new Member: Adding a new Member can be done by either the System Administrator or a Circle Administrator, in preparation to adding the Member to one or more Circles being administrated by the Circle Administrator.
    
    Alter Member: It is possible for a System Administrator to alter Accounts, and change the Role - which may allow someone else to become System Administrator, or simply revoke the role.
    
    A special variant for creating new Accounts is via Invitations, where the System Administrator can issue a signed invitation to a potential Member. If this is made, then the armoredKey, will contain a Signature, rather than a Private Key in the Response.
    
    Login / Logout Linking and unlinking a Session with an Account. This is to help websites to use CWS without needing to store the Account credentials in an unsafe way.
    
    Update existing Member This action will only affect a member's own Account. Whereby it is allowed to change the Account Name, provided the name has not been taken. It is also possible to update the credentials (PassPhrase), and to change the Public Key belonging to an account and which others may see.
    
    Update Credential It is possible for an active member to update the credentials used for authentication, but it is not possible to update the credentials for anyone else, not even an administrator can update the credentials for anyone else. The reason for this, is that the credentials is used to unlock the internal keys and this cannot be done by anyone else than the current owner of an account.
    
    Remove Member Removing a Member from the system, can be done either by the Member (to remove themselves) or by the System Administrator. A Circle Administrator cannot remove a Member from the system. Removal of a Member will automatically remove all Data belonging to the Member, i.e. the Circle relations and the Member details.
    
    It is also possible, via this request, to invalidate the account, meaning that the account will appear correct, but it is not possible to either read or write data in any Circles. The Account can be later corrected, by replacing all existing Trustee records.
    Parameters:
    
    request - Request Object with details for the Processing
    
    Returns:
    
    Response Object with the result of the Processing
  - fetchCircles
```
FetchCircleResponse fetchCircles(FetchCircleRequest request)
```
    This request will fetch a list of all Circles in the system.
    
    Parameters:
    
    request - Fetch Circle Request Object
    
    Returns:
    
    Fetch Circle Response Object with error information
  - processCircle
```
ProcessCircleResponse processCircle(ProcessCircleRequest request)
```
    With this request it is possible to process Circles. The request may be invoked by all members, allowing members to create the different types of connections needed to sharing of data.
    
    If a request to create a new Circle is made by a member, then the initial Circle Administrator will automatically be set to the Member. If the request is made by the System administrator, then a Member Id is required, as it is not allowed for the System Administrator to be part of any Circles.
    
    The Request supports the following Actions:
    - Action.CREATE a new Circle. This can only be performed by the System Administrator. It allows the creation of a new Circle with a default new Circle Administrator, which cannot be the System Administrator.
    - Action.UPDATE an existing Circle, i.e. rename it.
    - Action.DELETE an existing Circle from the System. This action cannot be reverted - once Deleted, the Keys and Data will also be deleted.
    Parameters:
    
    request - Request Object
    
    Returns:
    
    Response Object with ReturnCode and Message
  - fetchTrustees
```
FetchTrusteeResponse fetchTrustees(FetchTrusteeRequest request)
```
    With this request, it is possible to retrieve a list of Trustees, belonging to either a Member, or a Circle. A Trustee, is a member who has been granted access to a Circle either as Circle Administrator, Write access or Read access only.
    
    If no MemberId or CircleId is provided, a listing of the requesting Member's Trustee information is being returned. If both MemberId and CircleId is set, then a list with either one or zero records is being returned.
    
    It should be noted, that the request is limited in what it returns, so unless the requesting user is System Administrator, only Trustee information from Circles of Trust, of which the user belongs too, is returned. If no information can be found, an error is returned.
    
    Parameters:
    
    request - Fetch Circle Request Object
    
    Returns:
    
    Fetch Circle Response Object with error information
  - processTrustee
```
ProcessTrusteeResponse processTrustee(ProcessTrusteeRequest request)
```
    With this request it is possible to process Trustees. A Trustee, is a Member which has been granted access to a Circle, and thereby is able to access the Circle Key to both encrypt and decrypt Circle Data.
    
    The Request supports the following Actions:
    - Action.ADD a new Trustee to the Circle, i.e. an Account other than the System Administrator with a specific Trust level.
    - Action.ALTER the level of trust for a given Trustee towards the Circle.
    - Action.REMOVE a Trustee from the Circle, meaning that the Account will no longer be able to access any data belonging to the Circle.
    The System Administrator is not allowed to be a Trustee of a Circle, as this may pose as a conflict of interest or potentially as a Security issue.
    Parameters:
    
    request - Request Object
    
    Returns:
    
    Response Object with ReturnCode and Message

Interface Management

Method Summary

Method Detail

version

settings

masterKey

sanitized

authenticated

fetchMembers

processMember

fetchCircles

processCircle

fetchTrustees

processTrustee