Package org.jboss.security

Class JBossJSSESecurityDomain

    • Constructor Detail

      • JBossJSSESecurityDomain

        public JBossJSSESecurityDomain​(String securityDomainName)

    • Method Detail

      • getKeyStoreType

        public String getKeyStoreType()

      • setKeyStoreType

        public void setKeyStoreType​(String keyStoreType)

      • getKeyStoreURL

        public String getKeyStoreURL()

      • getKeyStoreProvider

        public String getKeyStoreProvider()

      • setKeyStoreProvider

        public void setKeyStoreProvider​(String keyStoreProvider)

      • getKeyManagerFactoryProvider

        public String getKeyManagerFactoryProvider()

      • getKeyStoreProviderArgument

        public String getKeyStoreProviderArgument()

      • setKeyStoreProviderArgument

        public void setKeyStoreProviderArgument​(String keyStoreProviderArgument)

      • setKeyManagerFactoryProvider

        public void setKeyManagerFactoryProvider​(String keyManagerFactoryProvider)

      • getKeyManagerFactoryAlgorithm

        public String getKeyManagerFactoryAlgorithm()

      • setKeyManagerFactoryAlgorithm

        public void setKeyManagerFactoryAlgorithm​(String keyManagerFactoryAlgorithm)

      • getTrustStoreType

        public String getTrustStoreType()

      • setTrustStoreType

        public void setTrustStoreType​(String trustStoreType)

      • getTrustStoreURL

        public String getTrustStoreURL()

      • getTrustStoreProvider

        public String getTrustStoreProvider()

      • setTrustStoreProvider

        public void setTrustStoreProvider​(String trustStoreProvider)

      • getTrustStoreProviderArgument

        public String getTrustStoreProviderArgument()

      • setTrustStoreProviderArgument

        public void setTrustStoreProviderArgument​(String trustStoreProviderArgument)

      • getTrustManagerFactoryProvider

        public String getTrustManagerFactoryProvider()

      • setTrustManagerFactoryProvider

        public void setTrustManagerFactoryProvider​(String trustManagerFactoryProvider)

      • getTrustManagerFactoryAlgorithm

        public String getTrustManagerFactoryAlgorithm()

      • setTrustManagerFactoryAlgorithm

        public void setTrustManagerFactoryAlgorithm​(String trustManagerFactoryAlgorithm)

      • getClientAlias

        public String getClientAlias()
        Description copied from interface: JSSESecurityDomain
        Get the preferred client alias name
        Specified by:
        getClientAlias in interface JSSESecurityDomain
        Returns:
        the preferred client alias, in case the underlying keystore contains multiple client aliases that can be used, and we wish to have more control over picking a specific one. Will return null if no preferred client alias is configured.

      • setClientAlias

        public void setClientAlias​(String clientAlias)

      • getServerAlias

        public String getServerAlias()
        Description copied from interface: JSSESecurityDomain
        Get the preferred server alias name
        Specified by:
        getServerAlias in interface JSSESecurityDomain
        Returns:
        the preferred server alias, in case the underlying keystore contains multiple server aliases that can be used, and we wish to have more control over picking a specific one. Will return null if no preferred server alias is configured.

      • setServerAlias

        public void setServerAlias​(String serverAlias)

      • isClientAuth

        public boolean isClientAuth()
        Description copied from interface: JSSESecurityDomain
        Get the client auth flag
        Specified by:
        isClientAuth in interface JSSESecurityDomain
        Returns:
        true to instruct callers into the implementations of this interface to require client authentication during the SSL handshake. If this flag is "true", the SSL handshake is supposed to fail if a client does not provide a valid certificate.

      • setClientAuth

        public void setClientAuth​(boolean clientAuth)

      • setTrustStorePassword

        public void setTrustStorePassword​(String trustStorePassword)
                           throws Exception
        Throws:
        Exception

      • getSecurityDomain

        public String getSecurityDomain()
        Description copied from interface: BaseSecurityManager
        Get the security domain from which the security manager is from. Every security manager belongs to a named domain. The meaning of the security domain name depends on the implementation. Examples range from as fine grained as the name of EJBs to J2EE application names to DNS domain names.
        Specified by:
        getSecurityDomain in interface BaseSecurityManager
        Returns:
        the security domain name. May be null in which case the security manager belongs to the logical default domain.

      • getKey

        public Key getKey​(String alias,
                  String serviceAuthToken)
           throws Exception
        Description copied from interface: JSSESecurityDomain
        Returns the key with the given alias from the key store this security domain delegates to. All keys except public keys require a service authentication token. In case of a public key the authentication token will be ignored, and it can be safely null.
        Specified by:
        getKey in interface JSSESecurityDomain
        Parameters:
        alias - - the alias corresponding to the key to be retrieved.
        serviceAuthToken - - the authentication token that establishes whether the calling service has the permission to retrieve the key. If no authentication token provided, or invalid authentication token is provided, the method will throw SecurityException
        Returns:
        the requested key, or null if the given alias does not exist or does not identify a key-related entry.
        Throws:
        SecurityException - for missing or invalid serviceAuthToken.
        IllegalStateException - if sensitive information is requested, but no service authorization token is configured on security domain.
        Exception
        See Also:
        KeyStore.getKey(String, char[])

      • getCertificate

        public Certificate getCertificate​(String alias)
                           throws Exception
        Description copied from interface: JSSESecurityDomain
        Returns the certificate with the given alias or null if no such certificate exists, from the trust store this security domain delegates to.
        Specified by:
        getCertificate in interface JSSESecurityDomain
        Parameters:
        alias - - the alias corresponding to the certificate to be retrieved.
        Returns:
        the requested certificate, or null if the given alias does not exist or does not identify a certificate-related entry.
        Throws:
        Exception
        See Also:
        KeyStore.getKey(String, char[])

      • setCipherSuites

        public void setCipherSuites​(String cipherSuites)

      • setProtocols

        public void setProtocols​(String protocols)

      • setAdditionalProperties

        public void setAdditionalProperties​(Properties properties)