Class SSLConfigurator

java.lang.Object

org.globus.gsi.jsse.SSLConfigurator

public class SSLConfigurator
extends Object

This class is used to configure and create SSL socket factories. The factories can either be built by setting the credentialStore, crlStore, trustAnchorStore and policyStore directly, or it can use the java security SPI mechanism. This is the simplest way to configure the globus ssl support.

Since:

1.0

Version:

${version}

Field Summary

Fields

Modifier and Type	Field	Description
private KeyStore	credentialStore
private String	credentialStoreLocation
private String	credentialStorePassword
private String	credentialStoreType
private String	crlLocationPattern
private CertStore	crlStore
private String	crlStoreType
private Map<String, ProxyPolicyHandler>	handlers
private org.apache.commons.logging.Log	logger
private SigningPolicyStore	policyStore
private String	protocol
private String	provider
private boolean	rejectLimitProxy
private String	secureRandomAlgorithm
private SSLContext	sslContext
private String	sslKeyManagerFactoryAlgorithm
private KeyStore	trustAnchorStore
private String	trustAnchorStoreLocation
private String	trustAnchorStorePassword
private String	trustAnchorStoreType

Constructor Summary

Constructors

Constructor	Description
SSLConfigurator()

Method Summary

Modifier and Type	Method	Description
private void	configureContext()
SSLSocketFactory	createFactory()	Create an SSLSocketFactory based on the configured stores.
SSLServerSocketFactory	createServerFactory()	Create an SSLServerSocketFactory based on the configured stores.
private ManagerFactoryParameters	getCertPathParameters()
KeyStore	getCredentialStore()
String	getCredentialStoreLocation()
String	getCredentialStorePassword()
String	getCredentialStoreType()
String	getCrlLocationPattern()
CertStore	getCrlStore()
String	getCrlStoreType()
Map<String, ProxyPolicyHandler>	getHandlers()
SigningPolicyStore	getPolicyStore()
String	getProtocol()
String	getProvider()
String	getSecureRandomAlgorithm()
SSLContext	getSSLContext()	Create an SSLContext based on the configured stores.
KeyStore	getTrustAnchorStore()
String	getTrustAnchorStoreLocation()
String	getTrustAnchorStorePassword()
String	getTrustAnchorStoreType()
boolean	isRejectLimitProxy()
private KeyManager[]	loadKeyManagers()
private SecureRandom	loadSecureRandom()
private SSLContext	loadSSLContext()
void	setCredentialStore(KeyStore credentialStore)
void	setCredentialStoreLocation(String credentialStoreLocation)
void	setCredentialStorePassword(String credentialStorePassword)
void	setCredentialStoreType(String credentialStoreType)
void	setCrlLocationPattern(String crlLocationPattern)
void	setCrlStore(CertStore crlStore)
void	setCrlStoreType(String crlStoreType)
void	setHandlers(Map<String, ProxyPolicyHandler> handlers)
void	setPolicyStore(SigningPolicyStore policyStore)
void	setProtocol(String protocol)
void	setProvider(String provider)
void	setRejectLimitProxy(boolean rejectLimitProxy)
void	setSecureRandomAlgorithm(String secureRandomAlgorithm)
void	setTrustAnchorStore(KeyStore trustAnchorStore)
void	setTrustAnchorStoreLocation(String trustAnchorStoreLocation)
void	setTrustAnchorStorePassword(String trustAnchorStorePassword)
void	setTrustAnchorStoreType(String trustAnchorStoreType)

Methods inherited from class Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

provider

private String provider

protocol

private String protocol

secureRandomAlgorithm

private String secureRandomAlgorithm

credentialStore

private KeyStore credentialStore

trustAnchorStore

private KeyStore trustAnchorStore

crlStore

private CertStore crlStore

policyStore

private SigningPolicyStore policyStore

rejectLimitProxy

private boolean rejectLimitProxy

handlers

private Map<String, ProxyPolicyHandler> handlers

trustAnchorStoreType

private String trustAnchorStoreType

trustAnchorStoreLocation

private String trustAnchorStoreLocation

trustAnchorStorePassword

private String trustAnchorStorePassword

credentialStoreType

private String credentialStoreType

credentialStoreLocation

private String credentialStoreLocation

credentialStorePassword

private String credentialStorePassword

crlStoreType

private String crlStoreType

crlLocationPattern

private String crlLocationPattern

sslContext

private SSLContext sslContext

logger

private org.apache.commons.logging.Log logger

sslKeyManagerFactoryAlgorithm

private String sslKeyManagerFactoryAlgorithm

Constructor Details

SSLConfigurator

public SSLConfigurator()

Method Details

createFactory

public SSLSocketFactory createFactory()
                               throws GlobusSSLConfigurationException

Create an SSLSocketFactory based on the configured stores.

Returns:

A configured SSLSocketFactory

Throws:

GlobusSSLConfigurationException - If we fail to create the socketFactory.

getSSLContext

public SSLContext getSSLContext()
                         throws GlobusSSLConfigurationException

Create an SSLContext based on the configured stores.

Returns:

A configured SSLContext.

Throws:

GlobusSSLConfigurationException - If we fail to create the context.

createServerFactory

public SSLServerSocketFactory createServerFactory()
                                           throws GlobusSSLConfigurationException

Create an SSLServerSocketFactory based on the configured stores.

Returns:

A configured SSLServerSocketFactory

Throws:

GlobusSSLConfigurationException - If we fail to create the server socket factory.

configureContext

private void configureContext()
                       throws GlobusSSLConfigurationException

Throws:

GlobusSSLConfigurationException

getCertPathParameters

private ManagerFactoryParameters getCertPathParameters()
                                                throws GlobusSSLConfigurationException

Throws:

GlobusSSLConfigurationException

loadSSLContext

private SSLContext loadSSLContext()
                           throws GlobusSSLConfigurationException

Throws:

GlobusSSLConfigurationException

loadSecureRandom

private SecureRandom loadSecureRandom()
                               throws GlobusSSLConfigurationException

Throws:

GlobusSSLConfigurationException

loadKeyManagers

private KeyManager[] loadKeyManagers()
                              throws GlobusSSLConfigurationException

Throws:

GlobusSSLConfigurationException

getProvider

public String getProvider()

setProvider

public void setProvider(String provider)

getProtocol

public String getProtocol()

setProtocol

public void setProtocol(String protocol)

getSecureRandomAlgorithm

public String getSecureRandomAlgorithm()

setSecureRandomAlgorithm

public void setSecureRandomAlgorithm(String secureRandomAlgorithm)

getCredentialStorePassword

public String getCredentialStorePassword()

setCredentialStorePassword

public void setCredentialStorePassword(String credentialStorePassword)

getTrustAnchorStore

public KeyStore getTrustAnchorStore()

setTrustAnchorStore

public void setTrustAnchorStore(KeyStore trustAnchorStore)

getCrlStore

public CertStore getCrlStore()

setCrlStore

public void setCrlStore(CertStore crlStore)

getPolicyStore

public SigningPolicyStore getPolicyStore()

setPolicyStore

public void setPolicyStore(SigningPolicyStore policyStore)

isRejectLimitProxy

public boolean isRejectLimitProxy()

setRejectLimitProxy

public void setRejectLimitProxy(boolean rejectLimitProxy)

getHandlers

public Map<String, ProxyPolicyHandler> getHandlers()

setHandlers

public void setHandlers(Map<String, ProxyPolicyHandler> handlers)

getCredentialStoreLocation

public String getCredentialStoreLocation()

setCredentialStoreLocation

public void setCredentialStoreLocation(String credentialStoreLocation)

getCredentialStoreType

public String getCredentialStoreType()

setCredentialStoreType

public void setCredentialStoreType(String credentialStoreType)

getTrustAnchorStoreType

public String getTrustAnchorStoreType()

setTrustAnchorStoreType

public void setTrustAnchorStoreType(String trustAnchorStoreType)

getTrustAnchorStoreLocation

public String getTrustAnchorStoreLocation()

setTrustAnchorStoreLocation

public void setTrustAnchorStoreLocation(String trustAnchorStoreLocation)

getTrustAnchorStorePassword

public String getTrustAnchorStorePassword()

setTrustAnchorStorePassword

public void setTrustAnchorStorePassword(String trustAnchorStorePassword)

getCrlStoreType

public String getCrlStoreType()

setCrlStoreType

public void setCrlStoreType(String crlStoreType)

getCrlLocationPattern

public String getCrlLocationPattern()

setCrlLocationPattern

public void setCrlLocationPattern(String crlLocationPattern)

getCredentialStore

public KeyStore getCredentialStore()

setCredentialStore

public void setCredentialStore(KeyStore credentialStore)