Modifier and Type | Class and Description |
---|---|
static class |
Security.BlindTrustStore
Blindly trusts all certificates.
|
static class |
Security.ExistingKeyStore
Abstract class which represents an existing keystore to use to setup a server instance.
|
static class |
Security.ExistingTrustStore
Represents an existing truststore to use in the service discovery mechanism.
|
static class |
Security.JceksKeyStore
Represents a JCEKS keystore.
|
static class |
Security.JksKeyStore
Represents a JKS keystore.
|
static class |
Security.JvmTrustStore
Represents the fact that the service discovery mechanism should use the JVM truststore.
|
static class |
Security.KeyStoreComponent
Represents keystore data which will be used to secure the server instance to setup.
|
static class |
Security.PasswordProvider
Represents a strategy to retrieve an existing password.
|
static class |
Security.Pkcs11KeyStore
Represents a PKCS#11 keystore.
|
static class |
Security.Pkcs12KeyStore
Represents a PKCS#12 keystore.
|
static class |
Security.SelfSignedCertificate
Contains data that will be used to generate a keystore with a self signed certificate.
|
static class |
Security.ServiceDiscoveryMechanismTrustStore
Represents a truststore to use in the service discovery mechanism.
|
Modifier and Type | Method and Description |
---|---|
static Security.PasswordProvider |
clearTextPassword(String password)
Specifies that the password is the provided clear text
String . |
static Security.PasswordProvider |
fileBasedPassword(Path passwordFilePath)
Specifies that the password is located in the provided file
Path . |
static Security.PasswordProvider |
fileBasedPassword(String passwordFilePath)
Specifies that the password is located in the file path represented in the provided
String . |
static Security.JceksKeyStore |
jceksKeyStore(Path keyStorePath,
Security.PasswordProvider passwordProvider)
Specifies keystore data to use to secure the server instance to setup.
|
static Security.JceksKeyStore |
jceksKeyStore(String keyStorePath,
Security.PasswordProvider passwordProvider)
Specifies keystore data to use to secure the server instance to setup.
|
static Security.ServiceDiscoveryMechanismTrustStore |
jceksTrustStore(Path trustStorePath,
Security.PasswordProvider passwordProvider)
References a
Security.ServiceDiscoveryMechanismTrustStore which represents a JCEKS file to use for securing
the service discovery mechanism. |
static Security.ServiceDiscoveryMechanismTrustStore |
jceksTrustStore(String trustStorePath,
Security.PasswordProvider passwordProvider)
References a
Security.ServiceDiscoveryMechanismTrustStore which represents a JCEKS file to use for securing
the service discovery mechanism. |
static Security.JksKeyStore |
jksKeyStore(Path keyStorePath,
Security.PasswordProvider passwordProvider)
Specifies keystore data to use to secure the server instance to setup.
|
static Security.JksKeyStore |
jksKeyStore(String keyStorePath,
Security.PasswordProvider passwordProvider)
Specifies keystore data to use to secure the server instance to setup.
|
static Security.ServiceDiscoveryMechanismTrustStore |
jksTrustStore(Path trustStorePath,
Security.PasswordProvider passwordProvider)
References a
Security.ServiceDiscoveryMechanismTrustStore which represents a JKS file to use for securing
the service discovery mechanism. |
static Security.ServiceDiscoveryMechanismTrustStore |
jksTrustStore(String trustStorePath,
Security.PasswordProvider passwordProvider)
References a
Security.ServiceDiscoveryMechanismTrustStore which represents a JKS file to use for securing
the service discovery mechanism. |
static Security.Pkcs11KeyStore |
pkcs11KeyStore(Security.PasswordProvider passwordProvider)
Specifies keystore data to use to secure the server instance to setup.
|
static Security.Pkcs12KeyStore |
pkcs12KeyStore(Path keyStorePath,
Security.PasswordProvider passwordProvider)
Specifies keystore data to use to secure the server instance to setup.
|
static Security.Pkcs12KeyStore |
pkcs12KeyStore(String keyStorePath,
Security.PasswordProvider passwordProvider)
Specifies keystore data to use to secure the server instance to setup.
|
static Security.ServiceDiscoveryMechanismTrustStore |
pkcs12TrustStore(Path trustStorePath,
Security.PasswordProvider passwordProvider)
References a
Security.ServiceDiscoveryMechanismTrustStore which represents a PKCS#12 file to use for securing
the service discovery mechanism. |
static Security.ServiceDiscoveryMechanismTrustStore |
pkcs12TrustStore(String trustStorePath,
Security.PasswordProvider passwordProvider)
References a
Security.ServiceDiscoveryMechanismTrustStore which represents a PKCS#12 file to use for securing
the service discovery mechanism. |
static Security.SelfSignedCertificate |
selfSignedCertificate()
Specifies that the setup will generate a PKCS#12 keystore which will contains a self signed certificate.
|
static Security.PasswordProvider |
unprotected()
Specifies that the setup component is not protected by a password.
|
static Security.ServiceDiscoveryMechanismTrustStore |
useBlindTrust()
References a
Security.ServiceDiscoveryMechanismTrustStore which will blindly trust all certificates. |
static Security.ServiceDiscoveryMechanismTrustStore |
useJvmTrustStore()
References a
Security.ServiceDiscoveryMechanismTrustStore which will use the JVM truststore. |
public static Security.PasswordProvider unprotected()
This provider can only be used for Security.KeyStoreComponent
or Security.ExistingTrustStore
.
Security.PasswordProvider
to use when creating a setup componentpublic static Security.PasswordProvider clearTextPassword(String password) throws com.forgerock.opendj.cli.ArgumentException
String
.
The password will be stored in a dedicated file located in the instance
password
- The clear text passwordSecurity.PasswordProvider
to use when creating a setup componentcom.forgerock.opendj.cli.ArgumentException
- If the provided password is emptypublic static Security.PasswordProvider fileBasedPassword(String passwordFilePath) throws com.forgerock.opendj.cli.ArgumentException
String
.
The server configuration will refers to the provided file path
passwordFilePath
- Path of the passwordSecurity.PasswordProvider
to use when creating a setup componentcom.forgerock.opendj.cli.ArgumentException
- If the provided file does not exists or cannot be readpublic static Security.PasswordProvider fileBasedPassword(Path passwordFilePath) throws com.forgerock.opendj.cli.ArgumentException
Path
.
The server configuration will refers to the provided file path
passwordFilePath
- Path of the passwordSecurity.PasswordProvider
to use when creating a setup componentcom.forgerock.opendj.cli.ArgumentException
- If the provided file does not exists or cannot be readpublic static Security.JksKeyStore jksKeyStore(String keyStorePath, Security.PasswordProvider passwordProvider)
If the keystore contains multiple aliases, aliases which should be used by the server must be listed as follow: Security.jksKeyStore("/path/to/keystore", Security.clearTextStorePassword("somesecretphrase")) .addCertificateAliases("example-com", "foo-com");
The unprotected()
provider is not allowed to be used with this method.
keyStorePath
- The keystore pathpasswordProvider
- The strategy to use to provide the keystore passwordSecurity.JksKeyStore
object to use in Setup#secureWith(KeyStoreComponent)
IllegalArgumentException
- If the unprotected()
password provider is used with this methodpublic static Security.JksKeyStore jksKeyStore(Path keyStorePath, Security.PasswordProvider passwordProvider)
If the keystore contains multiple aliases, aliases which should be used by the server must be listed as follow: Security.jksKeyStore("/path/to/keystore", Security.clearTextStorePassword("somesecretphrase")) .addCertificateAliases("example-com", "foo-com");
The unprotected()
provider is not allowed to be used with this method.
keyStorePath
- The keystore pathpasswordProvider
- The strategy to use to provide the keystore passwordSecurity.JksKeyStore
object to use in Setup#secureWith(KeyStoreComponent)
IllegalArgumentException
- If the unprotected()
password provider is used with this methodpublic static Security.JceksKeyStore jceksKeyStore(String keyStorePath, Security.PasswordProvider passwordProvider)
If the keystore contains multiple aliases, aliases which should be used by the server must be listed as follow: Security.jceksKeyStore("/path/to/keystore", Security.clearTextStorePassword("somesecretphrase")) .addCertificateAliases("example-com", "foo-com");
The unprotected()
provider is not allowed to be used with this method.
keyStorePath
- The keystore pathpasswordProvider
- The strategy to use to provide the keystore passwordSecurity.JceksKeyStore
object to use in Setup#secureWith(KeyStoreComponent)
IllegalArgumentException
- If the unprotected()
password provider is used with this methodpublic static Security.JceksKeyStore jceksKeyStore(Path keyStorePath, Security.PasswordProvider passwordProvider)
If the keystore contains multiple aliases, aliases which should be used by the server must be listed as follow: Security.jceksKeyStore("/path/to/keystore", Security.clearTextStorePassword("somesecretphrase")) .addCertificateAliases("example-com", "foo-com");
The unprotected()
provider is not allowed to be used with this method.
keyStorePath
- The keystore pathpasswordProvider
- The strategy to use to provide the keystore passwordSecurity.JceksKeyStore
object to use in Setup#secureWith(KeyStoreComponent)
IllegalArgumentException
- If the unprotected()
password provider is used with this methodpublic static Security.Pkcs12KeyStore pkcs12KeyStore(String keyStorePath, Security.PasswordProvider passwordProvider)
If the keystore contains multiple aliases, aliases which should be used by the server must be listed as follow: Security.pkcs12KeyStore("/path/to/opendj", Security.clearTextStorePassword("somesecretphrase")) .addCertificateAliases("example-com", "foo-com");
The unprotected()
provider is not allowed to be used with this method.
keyStorePath
- The keystore pathpasswordProvider
- The strategy to use to provide the keystore passwordSecurity.Pkcs12KeyStore
object to use in Setup#secureWith(KeyStoreComponent)
IllegalArgumentException
- If the unprotected()
password provider is used with this methodpublic static Security.Pkcs12KeyStore pkcs12KeyStore(Path keyStorePath, Security.PasswordProvider passwordProvider)
If the keystore contains multiple aliases, aliases which should be used by the server must be listed as follow: Security.pkcs12KeyStore("/path/to/opendj", Security.clearTextStorePassword("somesecretphrase")) .addCertificateAliases("example-com", "foo-com");
The unprotected()
provider is not allowed to be used with this method.
keyStorePath
- The keystore pathpasswordProvider
- The strategy to use to provide the keystore passwordSecurity.Pkcs12KeyStore
object to use in Setup#secureWith(KeyStoreComponent)
IllegalArgumentException
- If the unprotected()
password provider is used with this methodpublic static Security.Pkcs11KeyStore pkcs11KeyStore(Security.PasswordProvider passwordProvider)
If the keystore contains multiple aliases, aliases which should be used by the server must be listed as follow: Security.pkcs11KeyStore(Security.clearTextStorePassword("somesecretphrase")) .addCertificateAliases("example-com", "foo-com");
passwordProvider
- The strategy to use to provide the keystore passwordSecurity.Pkcs11KeyStore
object to use in Setup#secureWith(KeyStoreComponent)
public static Security.SelfSignedCertificate selfSignedCertificate()
Security.SelfSignedCertificate
object to use in Setup#secureWith(KeyStoreComponent)
public static Security.ServiceDiscoveryMechanismTrustStore jksTrustStore(String trustStorePath, Security.PasswordProvider passwordProvider) throws com.forgerock.opendj.cli.ArgumentException
Security.ServiceDiscoveryMechanismTrustStore
which represents a JKS file to use for securing
the service discovery mechanism.trustStorePath
- JKS truststore file pathpasswordProvider
- The strategy to use to provide the truststore passwordSecurity.ServiceDiscoveryMechanismTrustStore
which represents a JKS file to use for securing
the service discovery mechanism.com.forgerock.opendj.cli.ArgumentException
- If the file based JKS truststore cannot be loadedProxyServerSetup.ServiceDiscoveryMechanism#trustStore(ServiceDiscoveryMechanismTrustStore)
public static Security.ServiceDiscoveryMechanismTrustStore jksTrustStore(Path trustStorePath, Security.PasswordProvider passwordProvider) throws com.forgerock.opendj.cli.ArgumentException
Security.ServiceDiscoveryMechanismTrustStore
which represents a JKS file to use for securing
the service discovery mechanism.trustStorePath
- JKS truststore file pathpasswordProvider
- The strategy to use to provide the truststore passwordSecurity.ServiceDiscoveryMechanismTrustStore
which represents a JKS file to use for securing
the service discovery mechanism.com.forgerock.opendj.cli.ArgumentException
- If the file based JKS truststore cannot be loadedProxyServerSetup.ServiceDiscoveryMechanism#trustStore(ServiceDiscoveryMechanismTrustStore)
public static Security.ServiceDiscoveryMechanismTrustStore jceksTrustStore(String trustStorePath, Security.PasswordProvider passwordProvider) throws com.forgerock.opendj.cli.ArgumentException
Security.ServiceDiscoveryMechanismTrustStore
which represents a JCEKS file to use for securing
the service discovery mechanism.trustStorePath
- JCEKS truststore file pathpasswordProvider
- The strategy to use to provide the truststore passwordSecurity.ServiceDiscoveryMechanismTrustStore
which represents a JCEKS file to use for securing
the service discovery mechanism.com.forgerock.opendj.cli.ArgumentException
- If the file based JCEKS truststore cannot be loadedProxyServerSetup.ServiceDiscoveryMechanism#trustStore(ServiceDiscoveryMechanismTrustStore)
public static Security.ServiceDiscoveryMechanismTrustStore jceksTrustStore(Path trustStorePath, Security.PasswordProvider passwordProvider) throws com.forgerock.opendj.cli.ArgumentException
Security.ServiceDiscoveryMechanismTrustStore
which represents a JCEKS file to use for securing
the service discovery mechanism.trustStorePath
- JCEKS truststore file pathpasswordProvider
- The strategy to use to provide the truststore passwordSecurity.ServiceDiscoveryMechanismTrustStore
which represents a JCEKS file to use for securing
the service discovery mechanism.com.forgerock.opendj.cli.ArgumentException
- If the file based JCEKS truststore cannot be loadedProxyServerSetup.ServiceDiscoveryMechanism#trustStore(ServiceDiscoveryMechanismTrustStore)
public static Security.ServiceDiscoveryMechanismTrustStore pkcs12TrustStore(String trustStorePath, Security.PasswordProvider passwordProvider) throws com.forgerock.opendj.cli.ArgumentException
Security.ServiceDiscoveryMechanismTrustStore
which represents a PKCS#12 file to use for securing
the service discovery mechanism.trustStorePath
- PKCS#12 truststore file pathpasswordProvider
- The strategy to use to provide the truststore passwordSecurity.ServiceDiscoveryMechanismTrustStore
which represents a PKCS#12 file to use for securing
the service discovery mechanism.com.forgerock.opendj.cli.ArgumentException
- If the file based PKCS#12 truststore cannot be loadedProxyServerSetup.ServiceDiscoveryMechanism#trustStore(ServiceDiscoveryMechanismTrustStore)
public static Security.ServiceDiscoveryMechanismTrustStore pkcs12TrustStore(Path trustStorePath, Security.PasswordProvider passwordProvider) throws com.forgerock.opendj.cli.ArgumentException
Security.ServiceDiscoveryMechanismTrustStore
which represents a PKCS#12 file to use for securing
the service discovery mechanism.trustStorePath
- PKCS#12 truststore file pathpasswordProvider
- The strategy to use to provide the truststore passwordSecurity.ServiceDiscoveryMechanismTrustStore
which represents a PKCS#12 file to use for securing
the service discovery mechanism.com.forgerock.opendj.cli.ArgumentException
- If the file based PKCS#12 truststore cannot be loadedProxyServerSetup.ServiceDiscoveryMechanism#trustStore(ServiceDiscoveryMechanismTrustStore)
public static Security.ServiceDiscoveryMechanismTrustStore useJvmTrustStore()
Security.ServiceDiscoveryMechanismTrustStore
which will use the JVM truststore.Security.ServiceDiscoveryMechanismTrustStore
which will use the JVM truststore.public static Security.ServiceDiscoveryMechanismTrustStore useBlindTrust()
Security.ServiceDiscoveryMechanismTrustStore
which will blindly trust all certificates.Security.ServiceDiscoveryMechanismTrustStore
which will blindly trust all certificates.Copyright © 2010-2017 ForgeRock AS. All Rights Reserved.