HsmSecretStoreHeaplet (OpenIG doc 6.5.4 Documentation)

java.lang.Object
- org.forgerock.openig.heap.GenericHeaplet
- - org.forgerock.openig.secrets.HsmSecretStoreHeaplet

All Implemented Interfaces:: Heaplet

public class HsmSecretStoreHeaplet
extends GenericHeaplet

This heaplet represents an instance of a HsmSecretStoreHeaplet.

  {
       "type": "HsmSecretStore",
       "config": {
         "providerName":         string                  [ REQUIRED - Pre-installed PKCS#11 Provider name. ]
         "storePassword":        secret                  [ REQUIRED - password to access the KeyStore.]
         "mappings": [                                   [ REQUIRED - array of object.]
             {
              "secretId":              expression                 [ REQUIRED - ID of the secret.]
              "aliases":             [ expression  ]              [ REQUIRED - list of aliases corresponding to the
                                                                   above secret. Order matter here and the first is
                                                                   the active secret.]
            }
       }
    }

* One of file or providerName is required.

Example:

  {
       "type": "HsmSecretStore",
       "config": {
           "providerName": "SunPKCS11-SoftHSM",
           "storePassword": "keystore.pass",
           "mappings": [{
               "secretId": "global.pcookie.crypt",
               "aliases": [ "rsapair72", "rsapair72-inactive" ]
           }]
        }
    }

See Also:: Oracle PKCS#11 Configuration Guide., HsmKeyStoreLoader

- Field Summary
  - Fields inherited from class org.forgerock.openig.heap.GenericHeaplet
    config, heap, name, object, qualified
- Constructor Summary
  
  Constructors
  Constructor and Description
  
  HsmSecretStoreHeaplet()
- Method Summary
  
  All Methods Instance Methods Concrete Methods
  Modifier and Type Method and Description
  
  Object create()
  Called to request the heaplet create an object.
  - Methods inherited from class org.forgerock.openig.heap.GenericHeaplet
    create, destroy, endpointRegistry, evaluatedWithHeapProperties, expression, getConfig, getHeap, getSecretService, getType, meterRegistryHolder, start
  - Methods inherited from class java.lang.Object
    clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructors
Constructor and Description
`HsmSecretStoreHeaplet()`

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`Object`	`create()` Called to request the heaplet create an object.

- Constructor Detail
  - HsmSecretStoreHeaplet
```
public HsmSecretStoreHeaplet()
```
- Method Detail
  - create
```
public Object create()
              throws HeapException
```
    Description copied from class: GenericHeaplet
    
    Called to request the heaplet create an object. Called by Heaplet.create(Name, JsonValue, Heap) after initializing the protected field members. Implementations should parse configuration but not acquire resources, start threads, or log any initialization messages. These tasks should be performed by the GenericHeaplet.start() method.
    
    Specified by:
    
    create in class GenericHeaplet
    
    Returns:
    
    The created object.
    
    Throws:
    
    HeapException - if an exception occurred during creation of the heap object or any of its dependencies.

Class HsmSecretStoreHeaplet

Field Summary

Fields inherited from class org.forgerock.openig.heap.GenericHeaplet

Constructor Summary

Method Summary

Methods inherited from class org.forgerock.openig.heap.GenericHeaplet

Methods inherited from class java.lang.Object

Constructor Detail

HsmSecretStoreHeaplet

Method Detail

create