Class Configurator


  • public class Configurator
    extends java.lang.Object
    Utility class for functions to be used by the RESTful installer.
    Author:
    alee
    • Method Summary

      All Methods Static Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      org.mozilla.jss.netscape.security.x509.X509CertImpl createAdminCertificate​(AdminSetupRequest request)  
      org.mozilla.jss.netscape.security.x509.X509CertImpl createCert​(java.lang.String tag, java.security.KeyPair keyPair, byte[] certreq, java.lang.String certType, java.lang.String profileID, java.lang.String[] dnsNames, java.lang.Boolean clone, java.net.URL masterURL, InstallToken installToken)  
      byte[] createCertRequest​(java.lang.String tag, java.security.KeyPair keyPair, java.lang.String dn, java.lang.String algorithm, java.lang.String extOID, java.lang.String extData, boolean extCritical)  
      static PKIClient createClient​(java.lang.String serverURL, java.lang.String clientnickname, org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback)  
      java.security.KeyPair createECCKeyPair​(java.lang.String tag, org.mozilla.jss.crypto.CryptoToken token, java.lang.String curveName, java.lang.String ecType)
      This method creates an ECC keypair for a system cert.
      org.mozilla.jss.netscape.security.x509.X509CertImpl createLocalCert​(java.lang.String subjectDN, java.lang.String keyAlgorithm, org.mozilla.jss.netscape.security.x509.X509Key x509key, java.lang.String profileID, java.lang.String[] dnsNames, boolean installAdjustValidity, java.lang.String issuerDN, java.security.PrivateKey signingPrivateKey, java.lang.String signingAlgorithm, java.lang.String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName)  
      org.mozilla.jss.netscape.security.x509.X509CertImpl createRemoteCert​(java.lang.String hostname, int port, java.lang.String profileID, byte[] request, java.lang.String[] dnsNames, InstallToken installToken)  
      java.security.KeyPair createRSAKeyPair​(java.lang.String tag, org.mozilla.jss.crypto.CryptoToken token, java.lang.String keySize)  
      boolean deleteDir​(java.io.File dir)  
      java.lang.String getContentValue​(java.lang.String body, java.lang.String header)  
      SecurityDomainHost getHostInfo​(DomainInfo domainInfo, java.lang.String csType, java.lang.String hostname, int securePort)  
      java.lang.String getInstallToken​(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd)  
      java.lang.String getNickname​(java.lang.String certTag)  
      java.lang.String getOldCookie​(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd)  
      void importCert​(org.mozilla.jss.netscape.security.x509.X509Key x509key, org.mozilla.jss.netscape.security.x509.X509CertImpl certImpl, java.lang.String profileID, java.lang.String[] dnsNames, boolean installAdjustValidity, java.lang.String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName)  
      void loadCert​(java.lang.String type, java.lang.String tag, org.mozilla.jss.crypto.X509Certificate x509Cert, java.lang.String profileID, java.lang.String[] dnsNames)  
      java.security.KeyPair loadKeyPair​(org.mozilla.jss.crypto.X509Certificate cert)  
      void setConfigStore​(EngineConfig cs)  
      void setServerXml​(ServerXml serverXml)  
      Cert setupCert​(CertificateSetupRequest request)  
      void trustCert​(java.lang.String type, java.lang.String tag, org.mozilla.jss.crypto.X509Certificate x509Cert)  
      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
    • Field Detail

      • logger

        public static final org.slf4j.Logger logger
      • SUCCESS

        public static java.lang.String SUCCESS
      • FAILURE

        public static java.lang.String FAILURE
      • AUTH_FAILURE

        public static java.lang.String AUTH_FAILURE
      • BIG_ZERO

        public static final java.math.BigInteger BIG_ZERO
      • MINUS_ONE

        public static final java.lang.Long MINUS_ONE
    • Constructor Detail

      • Configurator

        public Configurator​(CMSEngine engine)
    • Method Detail

      • createClient

        public static PKIClient createClient​(java.lang.String serverURL,
                                             java.lang.String clientnickname,
                                             org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback)
                                      throws java.lang.Exception
        Throws:
        java.lang.Exception
      • setConfigStore

        public void setConfigStore​(EngineConfig cs)
      • setServerXml

        public void setServerXml​(ServerXml serverXml)
                          throws java.lang.Exception
        Throws:
        java.lang.Exception
      • getInstallToken

        public java.lang.String getInstallToken​(java.lang.String sdhost,
                                                int sdport,
                                                java.lang.String user,
                                                java.lang.String passwd)
                                         throws java.lang.Exception
        Throws:
        java.lang.Exception
      • getOldCookie

        public java.lang.String getOldCookie​(java.lang.String sdhost,
                                             int sdport,
                                             java.lang.String user,
                                             java.lang.String passwd)
                                      throws java.lang.Exception
        Throws:
        java.lang.Exception
      • getContentValue

        public java.lang.String getContentValue​(java.lang.String body,
                                                java.lang.String header)
      • getHostInfo

        public SecurityDomainHost getHostInfo​(DomainInfo domainInfo,
                                              java.lang.String csType,
                                              java.lang.String hostname,
                                              int securePort)
                                       throws java.lang.Exception
        Throws:
        java.lang.Exception
      • deleteDir

        public boolean deleteDir​(java.io.File dir)
      • loadKeyPair

        public java.security.KeyPair loadKeyPair​(org.mozilla.jss.crypto.X509Certificate cert)
                                          throws java.lang.Exception
        Throws:
        java.lang.Exception
      • createECCKeyPair

        public java.security.KeyPair createECCKeyPair​(java.lang.String tag,
                                                      org.mozilla.jss.crypto.CryptoToken token,
                                                      java.lang.String curveName,
                                                      java.lang.String ecType)
                                               throws java.lang.Exception
        This method creates an ECC keypair for a system cert. For ECDHE SSL server cert, server.xml should have the following ciphers: +TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, -TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA For ECDH SSL server cert, server.xml should have the following ciphers: -TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, +TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
        Throws:
        java.lang.Exception
      • createRSAKeyPair

        public java.security.KeyPair createRSAKeyPair​(java.lang.String tag,
                                                      org.mozilla.jss.crypto.CryptoToken token,
                                                      java.lang.String keySize)
                                               throws java.lang.Exception
        Throws:
        java.lang.Exception
      • createLocalCert

        public org.mozilla.jss.netscape.security.x509.X509CertImpl createLocalCert​(java.lang.String subjectDN,
                                                                                   java.lang.String keyAlgorithm,
                                                                                   org.mozilla.jss.netscape.security.x509.X509Key x509key,
                                                                                   java.lang.String profileID,
                                                                                   java.lang.String[] dnsNames,
                                                                                   boolean installAdjustValidity,
                                                                                   java.lang.String issuerDN,
                                                                                   java.security.PrivateKey signingPrivateKey,
                                                                                   java.lang.String signingAlgorithm,
                                                                                   java.lang.String certRequestType,
                                                                                   byte[] certRequest,
                                                                                   org.mozilla.jss.netscape.security.x509.X500Name subjectName)
                                                                            throws java.lang.Exception
        Throws:
        java.lang.Exception
      • createCert

        public org.mozilla.jss.netscape.security.x509.X509CertImpl createCert​(java.lang.String tag,
                                                                              java.security.KeyPair keyPair,
                                                                              byte[] certreq,
                                                                              java.lang.String certType,
                                                                              java.lang.String profileID,
                                                                              java.lang.String[] dnsNames,
                                                                              java.lang.Boolean clone,
                                                                              java.net.URL masterURL,
                                                                              InstallToken installToken)
                                                                       throws java.lang.Exception
        Throws:
        java.lang.Exception
      • createRemoteCert

        public org.mozilla.jss.netscape.security.x509.X509CertImpl createRemoteCert​(java.lang.String hostname,
                                                                                    int port,
                                                                                    java.lang.String profileID,
                                                                                    byte[] request,
                                                                                    java.lang.String[] dnsNames,
                                                                                    InstallToken installToken)
                                                                             throws java.lang.Exception
        Throws:
        java.lang.Exception
      • createCertRequest

        public byte[] createCertRequest​(java.lang.String tag,
                                        java.security.KeyPair keyPair,
                                        java.lang.String dn,
                                        java.lang.String algorithm,
                                        java.lang.String extOID,
                                        java.lang.String extData,
                                        boolean extCritical)
                                 throws java.lang.Exception
        Throws:
        java.lang.Exception
      • importCert

        public void importCert​(org.mozilla.jss.netscape.security.x509.X509Key x509key,
                               org.mozilla.jss.netscape.security.x509.X509CertImpl certImpl,
                               java.lang.String profileID,
                               java.lang.String[] dnsNames,
                               boolean installAdjustValidity,
                               java.lang.String certRequestType,
                               byte[] certRequest,
                               org.mozilla.jss.netscape.security.x509.X500Name subjectName)
                        throws java.lang.Exception
        Throws:
        java.lang.Exception
      • loadCert

        public void loadCert​(java.lang.String type,
                             java.lang.String tag,
                             org.mozilla.jss.crypto.X509Certificate x509Cert,
                             java.lang.String profileID,
                             java.lang.String[] dnsNames)
                      throws java.lang.Exception
        Throws:
        java.lang.Exception
      • trustCert

        public void trustCert​(java.lang.String type,
                              java.lang.String tag,
                              org.mozilla.jss.crypto.X509Certificate x509Cert)
      • createAdminCertificate

        public org.mozilla.jss.netscape.security.x509.X509CertImpl createAdminCertificate​(AdminSetupRequest request)
                                                                                   throws java.lang.Exception
        Throws:
        java.lang.Exception