@Contract public abstract class SecuritySupport extends Object
SecuritySupport deals with loading, caching and providing access to key stores and trust stores, including their managers.
This is mainly used via the com.sun.enterprise.security.ssl.SSLUtils facade, though various other classes
such as the BaseContainerCallbackHandler use this directly.
| Modifier and Type | Field and Description |
|---|---|
static String |
KEYSTORE_PASS_PROP |
static String |
KEYSTORE_TYPE_PROP |
static String |
keyStoreProp |
static String |
TRUSTSTORE_PASS_PROP |
static String |
TRUSTSTORE_TYPE_PROP |
static String |
trustStoreProp |
| Constructor and Description |
|---|
SecuritySupport() |
| Modifier and Type | Method and Description |
|---|---|
abstract void |
checkPermission(String key)
Check permission for the given key.
|
static SecuritySupport |
getDefaultInstance() |
abstract KeyManager[] |
getKeyManagers(String algorithm) |
abstract KeyStore |
getKeyStore(String token) |
abstract KeyStore[] |
getKeyStores()
This method returns an array of keystores containing keys and certificates.
|
abstract PrivateKey |
getPrivateKeyForAlias(String alias,
int keystoreIndex)
Gets the PrivateKey for specified alias from the corresponding keystore indicated by the index.
|
abstract String[] |
getTokenNames()
This method returns an array of token names in order corresponding to array of keystores.
|
abstract TrustManager[] |
getTrustManagers(String algorithm) |
abstract KeyStore |
getTrustStore(String token) |
abstract KeyStore[] |
getTrustStores()
This method returns an array of truststores containing certificates.
|
abstract KeyStore |
loadNullStore(String type,
int index) |
void |
reset()
Resets the security instance by effectively re-initializing it.
|
abstract void |
synchronizeKeyFile(Object configContext,
String fileRealmName)
TODO:V3:Cluster ConfigContext is no longer present so find out what this needs to be
|
abstract boolean |
verifyMasterPassword(char[] masterPass) |
public static final String KEYSTORE_PASS_PROP
public static final String TRUSTSTORE_PASS_PROP
public static final String KEYSTORE_TYPE_PROP
public static final String TRUSTSTORE_TYPE_PROP
public static final String keyStoreProp
public static final String trustStoreProp
public static SecuritySupport getDefaultInstance()
public abstract KeyStore[] getKeyStores()
public abstract KeyStore[] getTrustStores()
public abstract KeyStore getKeyStore(String token)
token - public abstract KeyStore getTrustStore(String token)
token - public abstract KeyManager[] getKeyManagers(String algorithm) throws IOException, KeyStoreException, NoSuchAlgorithmException, UnrecoverableKeyException
algorithm - IOExceptionKeyStoreExceptionNoSuchAlgorithmExceptionUnrecoverableKeyExceptionpublic abstract TrustManager[] getTrustManagers(String algorithm) throws IOException, KeyStoreException, NoSuchAlgorithmException
algorithm - IOExceptionKeyStoreExceptionNoSuchAlgorithmExceptionpublic void reset()
This means the default keystores and truststores will be reloaded from their default locations (which may be configured by system properties, such as with the default SecuritySupport instance).
public abstract KeyStore loadNullStore(String type, int index) throws KeyStoreException, IOException, NoSuchAlgorithmException, CertificateException
type - index - KeyStoreExceptionIOExceptionNoSuchAlgorithmExceptionCertificateExceptionpublic abstract boolean verifyMasterPassword(char[] masterPass)
masterPass - public abstract PrivateKey getPrivateKeyForAlias(String alias, int keystoreIndex) throws KeyStoreException, NoSuchAlgorithmException, UnrecoverableKeyException
alias - Alias for which the PrivateKey is desired.keystoreIndex - Index of the keystore.KeyStoreExceptionNoSuchAlgorithmExceptionUnrecoverableKeyExceptionpublic abstract String[] getTokenNames()
public abstract void synchronizeKeyFile(Object configContext, String fileRealmName) throws Exception
Exceptionpublic abstract void checkPermission(String key)
key - Copyright © 2019. All rights reserved.