Package org.apache.pulsar.common.util

Class KeyManagerProxy

  • All Implemented Interfaces:
    javax.net.ssl.KeyManager, javax.net.ssl.X509KeyManager
    public class KeyManagerProxy
extends javax.net.ssl.X509ExtendedKeyManager
    This class wraps X509ExtendedKeyManager and gives opportunity to refresh key-manager with refreshed certs without changing SslContext.

    • Constructor Summary

      Constructors 
      Constructor Description
      KeyManagerProxy​(java.lang.String certFilePath, java.lang.String keyFilePath, int refreshDurationSec, java.util.concurrent.ScheduledExecutorService executor)  

    • Method Summary

      All Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      java.lang.String chooseClientAlias​(java.lang.String[] strings, java.security.Principal[] principals, java.net.Socket socket)  
      java.lang.String chooseEngineClientAlias​(java.lang.String[] keyType, java.security.Principal[] issuers, javax.net.ssl.SSLEngine engine)  
      java.lang.String chooseEngineServerAlias​(java.lang.String keyType, java.security.Principal[] issuers, javax.net.ssl.SSLEngine engine)  
      java.lang.String chooseServerAlias​(java.lang.String s, java.security.Principal[] principals, java.net.Socket socket)  
      java.security.cert.X509Certificate[] getCertificateChain​(java.lang.String s)  
      java.lang.String[] getClientAliases​(java.lang.String s, java.security.Principal[] principals)  
      java.security.PrivateKey getPrivateKey​(java.lang.String s)  
      java.lang.String[] getServerAliases​(java.lang.String s, java.security.Principal[] principals)  

      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

    • Constructor Detail

      • KeyManagerProxy

        public KeyManagerProxy​(java.lang.String certFilePath,
                       java.lang.String keyFilePath,
                       int refreshDurationSec,
                       java.util.concurrent.ScheduledExecutorService executor)

    • Method Detail

      • getClientAliases

        public java.lang.String[] getClientAliases​(java.lang.String s,
                                           java.security.Principal[] principals)

      • chooseClientAlias

        public java.lang.String chooseClientAlias​(java.lang.String[] strings,
                                          java.security.Principal[] principals,
                                          java.net.Socket socket)

      • getServerAliases

        public java.lang.String[] getServerAliases​(java.lang.String s,
                                           java.security.Principal[] principals)

      • chooseServerAlias

        public java.lang.String chooseServerAlias​(java.lang.String s,
                                          java.security.Principal[] principals,
                                          java.net.Socket socket)

      • getCertificateChain

        public java.security.cert.X509Certificate[] getCertificateChain​(java.lang.String s)

      • getPrivateKey

        public java.security.PrivateKey getPrivateKey​(java.lang.String s)

      • chooseEngineClientAlias

        public java.lang.String chooseEngineClientAlias​(java.lang.String[] keyType,
                                                java.security.Principal[] issuers,
                                                javax.net.ssl.SSLEngine engine)
        Overrides:
        chooseEngineClientAlias in class javax.net.ssl.X509ExtendedKeyManager

      • chooseEngineServerAlias

        public java.lang.String chooseEngineServerAlias​(java.lang.String keyType,
                                                java.security.Principal[] issuers,
                                                javax.net.ssl.SSLEngine engine)
        Overrides:
        chooseEngineServerAlias in class javax.net.ssl.X509ExtendedKeyManager