Package com.netscape.cms.servlet.csadmin
Class Configurator
- java.lang.Object
-
- com.netscape.cms.servlet.csadmin.Configurator
-
public class Configurator extends java.lang.ObjectUtility class for functions to be used by the RESTful installer.- Author:
- alee
-
-
Field Summary
Fields Modifier and Type Field Description static java.lang.StringAUTH_FAILUREstatic java.math.BigIntegerBIG_ZEROstatic ConfigCertApprovalCallbackcertApprovalCallbackprotected EngineConfigcsprotected CMSEngineenginestatic java.lang.StringFAILUREstatic org.slf4j.Loggerloggerstatic java.lang.LongMINUS_ONEprotected ServerXmlserverXmlstatic java.lang.StringSUCCESS
-
Constructor Summary
Constructors Constructor Description Configurator(CMSEngine engine)
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description org.mozilla.jss.netscape.security.x509.X509CertImplcreateAdminCertificate(AdminSetupRequest request)org.mozilla.jss.netscape.security.x509.X509CertImplcreateCert(java.lang.String tag, java.security.KeyPair keyPair, byte[] certreq, java.lang.String certType, java.lang.String profileID, java.lang.String[] dnsNames, java.lang.Boolean clone, java.net.URL masterURL, InstallToken installToken)byte[]createCertRequest(java.lang.String tag, java.security.KeyPair keyPair, java.lang.String dn, java.lang.String algorithm, java.lang.String extOID, java.lang.String extData, boolean extCritical)static PKIClientcreateClient(java.lang.String serverURL, java.lang.String clientnickname, org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback)java.security.KeyPaircreateECCKeyPair(java.lang.String tag, org.mozilla.jss.crypto.CryptoToken token, java.lang.String curveName, java.lang.String ecType)This method creates an ECC keypair for a system cert.org.mozilla.jss.netscape.security.x509.X509CertImplcreateLocalCert(java.lang.String subjectDN, java.lang.String keyAlgorithm, org.mozilla.jss.netscape.security.x509.X509Key x509key, java.lang.String profileID, java.lang.String[] dnsNames, boolean installAdjustValidity, java.lang.String issuerDN, java.security.PrivateKey signingPrivateKey, java.lang.String signingAlgorithm, java.lang.String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName)org.mozilla.jss.netscape.security.x509.X509CertImplcreateRemoteCert(java.lang.String hostname, int port, java.lang.String profileID, byte[] request, java.lang.String[] dnsNames, InstallToken installToken)java.security.KeyPaircreateRSAKeyPair(java.lang.String tag, org.mozilla.jss.crypto.CryptoToken token, java.lang.String keySize)booleandeleteDir(java.io.File dir)java.lang.StringgetContentValue(java.lang.String body, java.lang.String header)SecurityDomainHostgetHostInfo(DomainInfo domainInfo, java.lang.String csType, java.lang.String hostname, int securePort)java.lang.StringgetInstallToken(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd)java.lang.StringgetNickname(java.lang.String certTag)java.lang.StringgetOldCookie(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd)voidimportCert(org.mozilla.jss.netscape.security.x509.X509Key x509key, org.mozilla.jss.netscape.security.x509.X509CertImpl certImpl, java.lang.String profileID, java.lang.String[] dnsNames, boolean installAdjustValidity, java.lang.String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName)voidloadCert(java.lang.String type, java.lang.String tag, org.mozilla.jss.crypto.X509Certificate x509Cert, java.lang.String profileID, java.lang.String[] dnsNames)java.security.KeyPairloadKeyPair(org.mozilla.jss.crypto.X509Certificate cert)voidsetConfigStore(EngineConfig cs)voidsetServerXml(ServerXml serverXml)CertsetupCert(CertificateSetupRequest request)voidtrustCert(java.lang.String type, java.lang.String tag, org.mozilla.jss.crypto.X509Certificate x509Cert)
-
-
-
Field Detail
-
logger
public static final org.slf4j.Logger logger
-
SUCCESS
public static java.lang.String SUCCESS
-
FAILURE
public static java.lang.String FAILURE
-
AUTH_FAILURE
public static java.lang.String AUTH_FAILURE
-
BIG_ZERO
public static final java.math.BigInteger BIG_ZERO
-
MINUS_ONE
public static final java.lang.Long MINUS_ONE
-
certApprovalCallback
public static ConfigCertApprovalCallback certApprovalCallback
-
engine
protected CMSEngine engine
-
cs
protected EngineConfig cs
-
serverXml
protected ServerXml serverXml
-
-
Constructor Detail
-
Configurator
public Configurator(CMSEngine engine)
-
-
Method Detail
-
createClient
public static PKIClient createClient(java.lang.String serverURL, java.lang.String clientnickname, org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback) throws java.lang.Exception
- Throws:
java.lang.Exception
-
setConfigStore
public void setConfigStore(EngineConfig cs)
-
setServerXml
public void setServerXml(ServerXml serverXml) throws java.lang.Exception
- Throws:
java.lang.Exception
-
getInstallToken
public java.lang.String getInstallToken(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd) throws java.lang.Exception- Throws:
java.lang.Exception
-
getOldCookie
public java.lang.String getOldCookie(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd) throws java.lang.Exception- Throws:
java.lang.Exception
-
getContentValue
public java.lang.String getContentValue(java.lang.String body, java.lang.String header)
-
getHostInfo
public SecurityDomainHost getHostInfo(DomainInfo domainInfo, java.lang.String csType, java.lang.String hostname, int securePort) throws java.lang.Exception
- Throws:
java.lang.Exception
-
deleteDir
public boolean deleteDir(java.io.File dir)
-
loadKeyPair
public java.security.KeyPair loadKeyPair(org.mozilla.jss.crypto.X509Certificate cert) throws java.lang.Exception- Throws:
java.lang.Exception
-
createECCKeyPair
public java.security.KeyPair createECCKeyPair(java.lang.String tag, org.mozilla.jss.crypto.CryptoToken token, java.lang.String curveName, java.lang.String ecType) throws java.lang.ExceptionThis method creates an ECC keypair for a system cert. For ECDHE SSL server cert, server.xml should have the following ciphers: +TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, -TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA For ECDH SSL server cert, server.xml should have the following ciphers: -TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, +TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA- Throws:
java.lang.Exception
-
createRSAKeyPair
public java.security.KeyPair createRSAKeyPair(java.lang.String tag, org.mozilla.jss.crypto.CryptoToken token, java.lang.String keySize) throws java.lang.Exception- Throws:
java.lang.Exception
-
createLocalCert
public org.mozilla.jss.netscape.security.x509.X509CertImpl createLocalCert(java.lang.String subjectDN, java.lang.String keyAlgorithm, org.mozilla.jss.netscape.security.x509.X509Key x509key, java.lang.String profileID, java.lang.String[] dnsNames, boolean installAdjustValidity, java.lang.String issuerDN, java.security.PrivateKey signingPrivateKey, java.lang.String signingAlgorithm, java.lang.String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName) throws java.lang.Exception- Throws:
java.lang.Exception
-
createCert
public org.mozilla.jss.netscape.security.x509.X509CertImpl createCert(java.lang.String tag, java.security.KeyPair keyPair, byte[] certreq, java.lang.String certType, java.lang.String profileID, java.lang.String[] dnsNames, java.lang.Boolean clone, java.net.URL masterURL, InstallToken installToken) throws java.lang.Exception- Throws:
java.lang.Exception
-
createRemoteCert
public org.mozilla.jss.netscape.security.x509.X509CertImpl createRemoteCert(java.lang.String hostname, int port, java.lang.String profileID, byte[] request, java.lang.String[] dnsNames, InstallToken installToken) throws java.lang.Exception- Throws:
java.lang.Exception
-
getNickname
public java.lang.String getNickname(java.lang.String certTag) throws EBaseException- Throws:
EBaseException
-
createCertRequest
public byte[] createCertRequest(java.lang.String tag, java.security.KeyPair keyPair, java.lang.String dn, java.lang.String algorithm, java.lang.String extOID, java.lang.String extData, boolean extCritical) throws java.lang.Exception- Throws:
java.lang.Exception
-
importCert
public void importCert(org.mozilla.jss.netscape.security.x509.X509Key x509key, org.mozilla.jss.netscape.security.x509.X509CertImpl certImpl, java.lang.String profileID, java.lang.String[] dnsNames, boolean installAdjustValidity, java.lang.String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName) throws java.lang.Exception- Throws:
java.lang.Exception
-
loadCert
public void loadCert(java.lang.String type, java.lang.String tag, org.mozilla.jss.crypto.X509Certificate x509Cert, java.lang.String profileID, java.lang.String[] dnsNames) throws java.lang.Exception- Throws:
java.lang.Exception
-
trustCert
public void trustCert(java.lang.String type, java.lang.String tag, org.mozilla.jss.crypto.X509Certificate x509Cert)
-
setupCert
public Cert setupCert(CertificateSetupRequest request) throws java.lang.Exception
- Throws:
java.lang.Exception
-
createAdminCertificate
public org.mozilla.jss.netscape.security.x509.X509CertImpl createAdminCertificate(AdminSetupRequest request) throws java.lang.Exception
- Throws:
java.lang.Exception
-
-