ClientCertAuthenticator (Hasor-Jetty 0.0.1 API)

概述

软件包

类

使用

树

已过时

索引

帮助

上一个类 下一个类

框架 无框架

摘要：嵌套 | 字段 | 构造方法 | 方法

详细信息：字段 | 构造方法 | 方法

org.eclipse.jetty.security.authentication
类 ClientCertAuthenticator

java.lang.Object
  org.eclipse.jetty.security.authentication.LoginAuthenticator
      org.eclipse.jetty.security.authentication.ClientCertAuthenticator

所有已实现的接口：: Authenticator

public class ClientCertAuthenticator
extends LoginAuthenticator
extends LoginAuthenticator

版本：: $Rev: 4793 $ $Date: 2009-03-19 00:00:01 +0100 (Thu, 19 Mar 2009) $

嵌套类摘要

从接口 org.eclipse.jetty.security.Authenticator 继承的嵌套类/接口
`Authenticator.AuthConfiguration, Authenticator.Factory`

字段摘要

从类 org.eclipse.jetty.security.authentication.LoginAuthenticator 继承的字段
`_identityService, _loginService`

构造方法摘要
`ClientCertAuthenticator()`

方法摘要
`String`	`getAuthMethod()`
`String`	`getCrlPath()` Get the crlPath.
`protected KeyStore`	`getKeyStore(InputStream storeStream, String storePath, String storeType, String storeProvider, String storePassword)` Loads keystore using an input stream or a file path in the same order of precedence.
`int`	`getMaxCertPathLength()`
`String`	`getOcspResponderURL()`
`String`	`getTrustStore()`
`String`	`getTrustStoreProvider()`
`String`	`getTrustStoreType()`
`boolean`	`isEnableCRLDP()`
`boolean`	`isEnableOCSP()`
`boolean`	`isValidateCerts()`
`protected Collection<? extends CRL>`	`loadCRL(String crlPath)` Loads certificate revocation list (CRL) from a file.
`boolean`	`secureResponse(ServletRequest req, ServletResponse res, boolean mandatory, Authentication.User validatedUser)`
`void`	`setCrlPath(String crlPath)` Set the crlPath.
`void`	`setEnableCRLDP(boolean enableCRLDP)` Enables CRL Distribution Points Support
`void`	`setEnableOCSP(boolean enableOCSP)` Enables On-Line Certificate Status Protocol support
`void`	`setMaxCertPathLength(int maxCertPathLength)`
`void`	`setOcspResponderURL(String ocspResponderURL)` Set the location of the OCSP Responder.
`void`	`setTrustStore(String trustStorePath)`
`void`	`setTrustStorePassword(String password)`
`void`	`setTrustStoreProvider(String trustStoreProvider)`
`void`	`setTrustStoreType(String trustStoreType)`
`void`	`setValidateCerts(boolean validateCerts)`
`Authentication`	`validateRequest(ServletRequest req, ServletResponse res, boolean mandatory)` Validate a response

从类 org.eclipse.jetty.security.authentication.LoginAuthenticator 继承的方法
`getLoginService, login, renewSession, setConfiguration`

从类 java.lang.Object 继承的方法
`clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait`

构造方法详细信息

ClientCertAuthenticator

public ClientCertAuthenticator()

方法详细信息

getAuthMethod

public String getAuthMethod()

返回：: The name of the authentication method

validateRequest

public Authentication validateRequest(ServletRequest req,
                                      ServletResponse res,
                                      boolean mandatory)
                               throws ServerAuthException

从接口 Authenticator 复制的描述

Validate a response

参数：: req - The request; res - The response; mandatory - True if authentication is mandatory.
返回：: Authentication for request
抛出：: ServerAuthException

getKeyStore

protected KeyStore getKeyStore(InputStream storeStream,
                               String storePath,
                               String storeType,
                               String storeProvider,
                               String storePassword)
                        throws Exception

Loads keystore using an input stream or a file path in the same order of precedence. Required for integrations to be able to override the mechanism used to load a keystore in order to provide their own implementation.

参数：: storeStream - keystore input stream; storePath - path of keystore file; storeType - keystore type; storeProvider - keystore provider; storePassword - keystore password
返回：: created keystore
抛出：: Exception

loadCRL

protected Collection<? extends CRL> loadCRL(String crlPath)
                                     throws Exception

Loads certificate revocation list (CRL) from a file. Required for integrations to be able to override the mechanism used to load CRL in order to provide their own implementation.

参数：: crlPath - path of certificate revocation list file
返回：: a (possibly empty) collection view of java.security.cert.CRL objects initialized with the data from the input stream.
抛出：: Exception

secureResponse

public boolean secureResponse(ServletRequest req,
                              ServletResponse res,
                              boolean mandatory,
                              Authentication.User validatedUser)
                       throws ServerAuthException

返回：: true if response is secure
抛出：: ServerAuthException

isValidateCerts

public boolean isValidateCerts()

返回：: true if SSL certificate has to be validated

setValidateCerts

public void setValidateCerts(boolean validateCerts)

参数：: validateCerts - true if SSL certificates have to be validated

getTrustStore

public String getTrustStore()

返回：: The file name or URL of the trust store location

setTrustStore

public void setTrustStore(String trustStorePath)

参数：: trustStorePath - The file name or URL of the trust store location

getTrustStoreProvider

public String getTrustStoreProvider()

返回：: The provider of the trust store

setTrustStoreProvider

public void setTrustStoreProvider(String trustStoreProvider)

参数：: trustStoreProvider - The provider of the trust store

getTrustStoreType

public String getTrustStoreType()

返回：: The type of the trust store (default "JKS")

setTrustStoreType

public void setTrustStoreType(String trustStoreType)

参数：: trustStoreType - The type of the trust store (default "JKS")

setTrustStorePassword

public void setTrustStorePassword(String password)

参数：: password - The password for the trust store

getCrlPath

public String getCrlPath()

Get the crlPath.

返回：: the crlPath

setCrlPath

public void setCrlPath(String crlPath)

Set the crlPath.

参数：: crlPath - the crlPath to set

getMaxCertPathLength

public int getMaxCertPathLength()

返回：: Maximum number of intermediate certificates in the certification path (-1 for unlimited)

setMaxCertPathLength

public void setMaxCertPathLength(int maxCertPathLength)

参数：: maxCertPathLength - maximum number of intermediate certificates in the certification path (-1 for unlimited)

isEnableCRLDP

public boolean isEnableCRLDP()

返回：: true if CRL Distribution Points support is enabled

setEnableCRLDP

public void setEnableCRLDP(boolean enableCRLDP)

Enables CRL Distribution Points Support

参数：: enableCRLDP - true - turn on, false - turns off

isEnableOCSP

public boolean isEnableOCSP()

返回：: true if On-Line Certificate Status Protocol support is enabled

setEnableOCSP

public void setEnableOCSP(boolean enableOCSP)

Enables On-Line Certificate Status Protocol support

参数：: enableOCSP - true - turn on, false - turn off

getOcspResponderURL

public String getOcspResponderURL()

返回：: Location of the OCSP Responder

setOcspResponderURL

public void setOcspResponderURL(String ocspResponderURL)

Set the location of the OCSP Responder.

参数：: ocspResponderURL - location of the OCSP Responder

概述