Package com.netscape.cms.servlet.csadmin
Class Configurator
- java.lang.Object
-
- com.netscape.cms.servlet.csadmin.Configurator
-
public class Configurator extends java.lang.Object
Utility class for functions to be used by the RESTful installer.- Author:
- alee
-
-
Field Summary
Fields Modifier and Type Field Description static java.lang.String
AUTH_FAILURE
static java.math.BigInteger
BIG_ZERO
static ConfigCertApprovalCallback
certApprovalCallback
protected EngineConfig
cs
protected CMSEngine
engine
static java.lang.String
FAILURE
static org.slf4j.Logger
logger
static java.lang.Long
MINUS_ONE
protected ServerXml
serverXml
static java.lang.String
SUCCESS
-
Constructor Summary
Constructors Constructor Description Configurator(CMSEngine engine)
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description org.mozilla.jss.netscape.security.x509.X509CertImpl
createAdminCertificate(AdminSetupRequest request)
org.mozilla.jss.netscape.security.x509.X509CertImpl
createCert(java.lang.String tag, java.security.KeyPair keyPair, byte[] certreq, java.lang.String certType, java.lang.String profileID, java.lang.String[] dnsNames, java.lang.Boolean clone, java.net.URL masterURL, InstallToken installToken)
byte[]
createCertRequest(java.lang.String tag, java.security.KeyPair keyPair, java.lang.String dn, java.lang.String algorithm, java.lang.String extOID, java.lang.String extData, boolean extCritical)
static PKIClient
createClient(java.lang.String serverURL, java.lang.String clientnickname, org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback)
java.security.KeyPair
createECCKeyPair(java.lang.String tag, org.mozilla.jss.crypto.CryptoToken token, java.lang.String curveName, java.lang.String ecType)
This method creates an ECC keypair for a system cert.org.mozilla.jss.netscape.security.x509.X509CertImpl
createLocalCert(java.lang.String subjectDN, java.lang.String keyAlgorithm, org.mozilla.jss.netscape.security.x509.X509Key x509key, java.lang.String profileID, java.lang.String[] dnsNames, boolean installAdjustValidity, java.lang.String issuerDN, java.security.PrivateKey signingPrivateKey, java.lang.String signingAlgorithm, java.lang.String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName)
org.mozilla.jss.netscape.security.x509.X509CertImpl
createRemoteCert(java.lang.String hostname, int port, java.lang.String profileID, byte[] request, java.lang.String[] dnsNames, InstallToken installToken)
java.security.KeyPair
createRSAKeyPair(java.lang.String tag, org.mozilla.jss.crypto.CryptoToken token, java.lang.String keySize)
boolean
deleteDir(java.io.File dir)
java.lang.String
getContentValue(java.lang.String body, java.lang.String header)
SecurityDomainHost
getHostInfo(DomainInfo domainInfo, java.lang.String csType, java.lang.String hostname, int securePort)
java.lang.String
getInstallToken(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd)
java.lang.String
getNickname(java.lang.String certTag)
java.lang.String
getOldCookie(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd)
void
importCert(org.mozilla.jss.netscape.security.x509.X509Key x509key, org.mozilla.jss.netscape.security.x509.X509CertImpl certImpl, java.lang.String profileID, java.lang.String[] dnsNames, boolean installAdjustValidity, java.lang.String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName)
void
loadCert(java.lang.String type, java.lang.String tag, org.mozilla.jss.crypto.X509Certificate x509Cert, java.lang.String profileID, java.lang.String[] dnsNames)
java.security.KeyPair
loadKeyPair(org.mozilla.jss.crypto.X509Certificate cert)
void
setConfigStore(EngineConfig cs)
void
setServerXml(ServerXml serverXml)
Cert
setupCert(CertificateSetupRequest request)
void
trustCert(java.lang.String type, java.lang.String tag, org.mozilla.jss.crypto.X509Certificate x509Cert)
-
-
-
Field Detail
-
logger
public static final org.slf4j.Logger logger
-
SUCCESS
public static java.lang.String SUCCESS
-
FAILURE
public static java.lang.String FAILURE
-
AUTH_FAILURE
public static java.lang.String AUTH_FAILURE
-
BIG_ZERO
public static final java.math.BigInteger BIG_ZERO
-
MINUS_ONE
public static final java.lang.Long MINUS_ONE
-
certApprovalCallback
public static ConfigCertApprovalCallback certApprovalCallback
-
engine
protected CMSEngine engine
-
cs
protected EngineConfig cs
-
serverXml
protected ServerXml serverXml
-
-
Constructor Detail
-
Configurator
public Configurator(CMSEngine engine)
-
-
Method Detail
-
createClient
public static PKIClient createClient(java.lang.String serverURL, java.lang.String clientnickname, org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback) throws java.lang.Exception
- Throws:
java.lang.Exception
-
setConfigStore
public void setConfigStore(EngineConfig cs)
-
setServerXml
public void setServerXml(ServerXml serverXml) throws java.lang.Exception
- Throws:
java.lang.Exception
-
getInstallToken
public java.lang.String getInstallToken(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd) throws java.lang.Exception
- Throws:
java.lang.Exception
-
getOldCookie
public java.lang.String getOldCookie(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd) throws java.lang.Exception
- Throws:
java.lang.Exception
-
getContentValue
public java.lang.String getContentValue(java.lang.String body, java.lang.String header)
-
getHostInfo
public SecurityDomainHost getHostInfo(DomainInfo domainInfo, java.lang.String csType, java.lang.String hostname, int securePort) throws java.lang.Exception
- Throws:
java.lang.Exception
-
deleteDir
public boolean deleteDir(java.io.File dir)
-
loadKeyPair
public java.security.KeyPair loadKeyPair(org.mozilla.jss.crypto.X509Certificate cert) throws java.lang.Exception
- Throws:
java.lang.Exception
-
createECCKeyPair
public java.security.KeyPair createECCKeyPair(java.lang.String tag, org.mozilla.jss.crypto.CryptoToken token, java.lang.String curveName, java.lang.String ecType) throws java.lang.Exception
This method creates an ECC keypair for a system cert. For ECDHE SSL server cert, server.xml should have the following ciphers: +TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, -TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA For ECDH SSL server cert, server.xml should have the following ciphers: -TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, +TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA- Throws:
java.lang.Exception
-
createRSAKeyPair
public java.security.KeyPair createRSAKeyPair(java.lang.String tag, org.mozilla.jss.crypto.CryptoToken token, java.lang.String keySize) throws java.lang.Exception
- Throws:
java.lang.Exception
-
createLocalCert
public org.mozilla.jss.netscape.security.x509.X509CertImpl createLocalCert(java.lang.String subjectDN, java.lang.String keyAlgorithm, org.mozilla.jss.netscape.security.x509.X509Key x509key, java.lang.String profileID, java.lang.String[] dnsNames, boolean installAdjustValidity, java.lang.String issuerDN, java.security.PrivateKey signingPrivateKey, java.lang.String signingAlgorithm, java.lang.String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName) throws java.lang.Exception
- Throws:
java.lang.Exception
-
createCert
public org.mozilla.jss.netscape.security.x509.X509CertImpl createCert(java.lang.String tag, java.security.KeyPair keyPair, byte[] certreq, java.lang.String certType, java.lang.String profileID, java.lang.String[] dnsNames, java.lang.Boolean clone, java.net.URL masterURL, InstallToken installToken) throws java.lang.Exception
- Throws:
java.lang.Exception
-
createRemoteCert
public org.mozilla.jss.netscape.security.x509.X509CertImpl createRemoteCert(java.lang.String hostname, int port, java.lang.String profileID, byte[] request, java.lang.String[] dnsNames, InstallToken installToken) throws java.lang.Exception
- Throws:
java.lang.Exception
-
getNickname
public java.lang.String getNickname(java.lang.String certTag) throws EBaseException
- Throws:
EBaseException
-
createCertRequest
public byte[] createCertRequest(java.lang.String tag, java.security.KeyPair keyPair, java.lang.String dn, java.lang.String algorithm, java.lang.String extOID, java.lang.String extData, boolean extCritical) throws java.lang.Exception
- Throws:
java.lang.Exception
-
importCert
public void importCert(org.mozilla.jss.netscape.security.x509.X509Key x509key, org.mozilla.jss.netscape.security.x509.X509CertImpl certImpl, java.lang.String profileID, java.lang.String[] dnsNames, boolean installAdjustValidity, java.lang.String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName) throws java.lang.Exception
- Throws:
java.lang.Exception
-
loadCert
public void loadCert(java.lang.String type, java.lang.String tag, org.mozilla.jss.crypto.X509Certificate x509Cert, java.lang.String profileID, java.lang.String[] dnsNames) throws java.lang.Exception
- Throws:
java.lang.Exception
-
trustCert
public void trustCert(java.lang.String type, java.lang.String tag, org.mozilla.jss.crypto.X509Certificate x509Cert)
-
setupCert
public Cert setupCert(CertificateSetupRequest request) throws java.lang.Exception
- Throws:
java.lang.Exception
-
createAdminCertificate
public org.mozilla.jss.netscape.security.x509.X509CertImpl createAdminCertificate(AdminSetupRequest request) throws java.lang.Exception
- Throws:
java.lang.Exception
-
-