Class Configurator

java.lang.Object

com.netscape.cms.servlet.csadmin.Configurator

public class Configurator
extends Object

Utility class for functions to be used by the RESTful installer.

Author:

alee

Field Summary

Fields

Modifier and Type	Field	Description
static String	AUTH_FAILURE
static final BigInteger	BIG_ZERO
static ConfigCertApprovalCallback	certApprovalCallback
protected EngineConfig	cs
protected CMSEngine	engine
static String	FAILURE
static final org.slf4j.Logger	logger
static final Long	MINUS_ONE
protected ServerXml	serverXml
static String	SUCCESS

Constructor Summary

Constructors

Constructor	Description
Configurator(CMSEngine engine)

Method Summary

Modifier and Type	Method	Description
org.mozilla.jss.netscape.security.x509.X509CertImpl	createAdminCertificate(AdminSetupRequest request)
org.mozilla.jss.netscape.security.x509.X509CertImpl	createCert(String tag, KeyPair keyPair, byte[] certreq, String certType, String profileID, String[] dnsNames, Boolean clone, URL masterURL, InstallToken installToken)
byte[]	createCertRequest(String tag, KeyPair keyPair, String dn, String algorithm, String extOID, String extData, boolean extCritical)
static PKIClient	createClient(String serverURL, String clientnickname, org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback)
KeyPair	createECCKeyPair(String tag, org.mozilla.jss.crypto.CryptoToken token, String curveName, String ecType)	This method creates an ECC keypair for a system cert.
org.mozilla.jss.netscape.security.x509.X509CertImpl	createLocalCert(String subjectDN, String keyAlgorithm, org.mozilla.jss.netscape.security.x509.X509Key x509key, String profileID, String[] dnsNames, boolean installAdjustValidity, String issuerDN, PrivateKey signingPrivateKey, String signingAlgorithm, String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName)
org.mozilla.jss.netscape.security.x509.X509CertImpl	createRemoteCert(String hostname, int port, String profileID, byte[] request, String[] dnsNames, InstallToken installToken)
KeyPair	createRSAKeyPair(String tag, org.mozilla.jss.crypto.CryptoToken token, String keySize)
boolean	deleteDir(File dir)
String	getContentValue(String body, String header)
SecurityDomainHost	getHostInfo(DomainInfo domainInfo, String csType, String hostname, int securePort)
String	getInstallToken(String sdhost, int sdport, String user, String passwd)
String	getNickname(String certTag)
String	getOldCookie(String sdhost, int sdport, String user, String passwd)
void	importCert(org.mozilla.jss.netscape.security.x509.X509Key x509key, org.mozilla.jss.netscape.security.x509.X509CertImpl certImpl, String profileID, String[] dnsNames, boolean installAdjustValidity, String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName)
void	loadCert(String type, String tag, org.mozilla.jss.crypto.X509Certificate x509Cert, String profileID, String[] dnsNames)
KeyPair	loadKeyPair(org.mozilla.jss.crypto.X509Certificate cert)
void	setConfigStore(EngineConfig cs)
void	setServerXml(ServerXml serverXml)
Cert	setupCert(CertificateSetupRequest request)
void	trustCert(String type, String tag, org.mozilla.jss.crypto.X509Certificate x509Cert)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

logger

public static final org.slf4j.Logger logger

SUCCESS

public static String SUCCESS

FAILURE

public static String FAILURE

AUTH_FAILURE

public static String AUTH_FAILURE

BIG_ZERO

public static final BigInteger BIG_ZERO

MINUS_ONE

public static final Long MINUS_ONE

certApprovalCallback

public static ConfigCertApprovalCallback certApprovalCallback

engine

protected CMSEngine engine

cs

protected EngineConfig cs

serverXml

protected ServerXml serverXml

Constructor Details

Configurator

public Configurator(CMSEngine engine)

Method Details

createClient

public static PKIClient createClient(String serverURL,
 String clientnickname,
 org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback)
                              throws Exception

Throws:

Exception

setConfigStore

public void setConfigStore(EngineConfig cs)

setServerXml

public void setServerXml(ServerXml serverXml)
                  throws Exception

Throws:

Exception

getInstallToken

public String getInstallToken(String sdhost,
 int sdport,
 String user,
 String passwd)
                       throws Exception

Throws:

Exception

getOldCookie

public String getOldCookie(String sdhost,
 int sdport,
 String user,
 String passwd)
                    throws Exception

Throws:

Exception

getContentValue

public String getContentValue(String body,
 String header)

getHostInfo

public SecurityDomainHost getHostInfo(DomainInfo domainInfo,
 String csType,
 String hostname,
 int securePort)
                               throws Exception

Throws:

Exception

deleteDir

public boolean deleteDir(File dir)

loadKeyPair

public KeyPair loadKeyPair(org.mozilla.jss.crypto.X509Certificate cert)
                    throws Exception

Throws:

Exception

createECCKeyPair

public KeyPair createECCKeyPair(String tag,
 org.mozilla.jss.crypto.CryptoToken token,
 String curveName,
 String ecType)
                         throws Exception

This method creates an ECC keypair for a system cert. For ECDHE SSL server cert, server.xml should have the following ciphers: +TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, -TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA For ECDH SSL server cert, server.xml should have the following ciphers: -TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, +TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA

Throws:

Exception

createRSAKeyPair

public KeyPair createRSAKeyPair(String tag,
 org.mozilla.jss.crypto.CryptoToken token,
 String keySize)
                         throws Exception

Throws:

Exception

createLocalCert

public org.mozilla.jss.netscape.security.x509.X509CertImpl createLocalCert(String subjectDN,
 String keyAlgorithm,
 org.mozilla.jss.netscape.security.x509.X509Key x509key,
 String profileID,
 String[] dnsNames,
 boolean installAdjustValidity,
 String issuerDN,
 PrivateKey signingPrivateKey,
 String signingAlgorithm,
 String certRequestType,
 byte[] certRequest,
 org.mozilla.jss.netscape.security.x509.X500Name subjectName)
                                                                    throws Exception

Throws:

Exception

createCert

public org.mozilla.jss.netscape.security.x509.X509CertImpl createCert(String tag,
 KeyPair keyPair,
 byte[] certreq,
 String certType,
 String profileID,
 String[] dnsNames,
 Boolean clone,
 URL masterURL,
 InstallToken installToken)
                                                               throws Exception

Throws:

Exception

createRemoteCert

public org.mozilla.jss.netscape.security.x509.X509CertImpl createRemoteCert(String hostname,
 int port,
 String profileID,
 byte[] request,
 String[] dnsNames,
 InstallToken installToken)
                                                                     throws Exception

Throws:

Exception

getNickname

public String getNickname(String certTag)
                   throws EBaseException

Throws:

EBaseException

createCertRequest

public byte[] createCertRequest(String tag,
 KeyPair keyPair,
 String dn,
 String algorithm,
 String extOID,
 String extData,
 boolean extCritical)
                         throws Exception

Throws:

Exception

importCert

public void importCert(org.mozilla.jss.netscape.security.x509.X509Key x509key,
 org.mozilla.jss.netscape.security.x509.X509CertImpl certImpl,
 String profileID,
 String[] dnsNames,
 boolean installAdjustValidity,
 String certRequestType,
 byte[] certRequest,
 org.mozilla.jss.netscape.security.x509.X500Name subjectName)
                throws Exception

Throws:

Exception

loadCert

public void loadCert(String type,
 String tag,
 org.mozilla.jss.crypto.X509Certificate x509Cert,
 String profileID,
 String[] dnsNames)
              throws Exception

Throws:

Exception

trustCert

public void trustCert(String type,
 String tag,
 org.mozilla.jss.crypto.X509Certificate x509Cert)

setupCert

public Cert setupCert(CertificateSetupRequest request)
               throws Exception

Throws:

Exception

createAdminCertificate

public org.mozilla.jss.netscape.security.x509.X509CertImpl createAdminCertificate(AdminSetupRequest request)
                                                                           throws Exception

Throws:

Exception