Package com.netscape.cms.servlet.csadmin
Class Configurator
java.lang.Object
com.netscape.cms.servlet.csadmin.Configurator
Utility class for functions to be used by the RESTful installer.
- Author:
- alee
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic String
static final BigInteger
static ConfigCertApprovalCallback
protected EngineConfig
protected CMSEngine
static String
static final org.slf4j.Logger
static final Long
protected ServerXml
static String
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionorg.mozilla.jss.netscape.security.x509.X509CertImpl
createAdminCertificate
(AdminSetupRequest request) org.mozilla.jss.netscape.security.x509.X509CertImpl
createCert
(String tag, KeyPair keyPair, byte[] certreq, String certType, String profileID, String[] dnsNames, Boolean clone, URL masterURL, InstallToken installToken) byte[]
createCertRequest
(String tag, KeyPair keyPair, String dn, String algorithm, String extOID, String extData, boolean extCritical) static PKIClient
createClient
(String serverURL, String clientnickname, org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback) createECCKeyPair
(String tag, org.mozilla.jss.crypto.CryptoToken token, String curveName, String ecType) This method creates an ECC keypair for a system cert.org.mozilla.jss.netscape.security.x509.X509CertImpl
createLocalCert
(String subjectDN, String keyAlgorithm, org.mozilla.jss.netscape.security.x509.X509Key x509key, String profileID, String[] dnsNames, boolean installAdjustValidity, String issuerDN, PrivateKey signingPrivateKey, String signingAlgorithm, String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName) org.mozilla.jss.netscape.security.x509.X509CertImpl
createRemoteCert
(String hostname, int port, String profileID, byte[] request, String[] dnsNames, InstallToken installToken) createRSAKeyPair
(String tag, org.mozilla.jss.crypto.CryptoToken token, String keySize) boolean
getContentValue
(String body, String header) getHostInfo
(DomainInfo domainInfo, String csType, String hostname, int securePort) getInstallToken
(String sdhost, int sdport, String user, String passwd) getNickname
(String certTag) getOldCookie
(String sdhost, int sdport, String user, String passwd) void
importCert
(org.mozilla.jss.netscape.security.x509.X509Key x509key, org.mozilla.jss.netscape.security.x509.X509CertImpl certImpl, String profileID, String[] dnsNames, boolean installAdjustValidity, String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName) void
loadCert
(String type, String tag, org.mozilla.jss.crypto.X509Certificate x509Cert, String profileID, String[] dnsNames) loadKeyPair
(org.mozilla.jss.crypto.X509Certificate cert) void
void
setServerXml
(ServerXml serverXml) setupCert
(CertificateSetupRequest request) void
-
Field Details
-
logger
public static final org.slf4j.Logger logger -
SUCCESS
-
FAILURE
-
AUTH_FAILURE
-
BIG_ZERO
-
MINUS_ONE
-
certApprovalCallback
-
engine
-
cs
-
serverXml
-
-
Constructor Details
-
Configurator
-
-
Method Details
-
createClient
public static PKIClient createClient(String serverURL, String clientnickname, org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback) throws Exception - Throws:
Exception
-
setConfigStore
-
setServerXml
- Throws:
Exception
-
getInstallToken
public String getInstallToken(String sdhost, int sdport, String user, String passwd) throws Exception - Throws:
Exception
-
getOldCookie
- Throws:
Exception
-
getContentValue
-
getHostInfo
public SecurityDomainHost getHostInfo(DomainInfo domainInfo, String csType, String hostname, int securePort) throws Exception - Throws:
Exception
-
deleteDir
-
loadKeyPair
- Throws:
Exception
-
createECCKeyPair
public KeyPair createECCKeyPair(String tag, org.mozilla.jss.crypto.CryptoToken token, String curveName, String ecType) throws Exception This method creates an ECC keypair for a system cert. For ECDHE SSL server cert, server.xml should have the following ciphers: +TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, -TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA For ECDH SSL server cert, server.xml should have the following ciphers: -TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, +TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA- Throws:
Exception
-
createRSAKeyPair
public KeyPair createRSAKeyPair(String tag, org.mozilla.jss.crypto.CryptoToken token, String keySize) throws Exception - Throws:
Exception
-
createLocalCert
public org.mozilla.jss.netscape.security.x509.X509CertImpl createLocalCert(String subjectDN, String keyAlgorithm, org.mozilla.jss.netscape.security.x509.X509Key x509key, String profileID, String[] dnsNames, boolean installAdjustValidity, String issuerDN, PrivateKey signingPrivateKey, String signingAlgorithm, String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName) throws Exception - Throws:
Exception
-
createCert
public org.mozilla.jss.netscape.security.x509.X509CertImpl createCert(String tag, KeyPair keyPair, byte[] certreq, String certType, String profileID, String[] dnsNames, Boolean clone, URL masterURL, InstallToken installToken) throws Exception - Throws:
Exception
-
createRemoteCert
public org.mozilla.jss.netscape.security.x509.X509CertImpl createRemoteCert(String hostname, int port, String profileID, byte[] request, String[] dnsNames, InstallToken installToken) throws Exception - Throws:
Exception
-
getNickname
- Throws:
EBaseException
-
createCertRequest
public byte[] createCertRequest(String tag, KeyPair keyPair, String dn, String algorithm, String extOID, String extData, boolean extCritical) throws Exception - Throws:
Exception
-
importCert
public void importCert(org.mozilla.jss.netscape.security.x509.X509Key x509key, org.mozilla.jss.netscape.security.x509.X509CertImpl certImpl, String profileID, String[] dnsNames, boolean installAdjustValidity, String certRequestType, byte[] certRequest, org.mozilla.jss.netscape.security.x509.X500Name subjectName) throws Exception - Throws:
Exception
-
loadCert
public void loadCert(String type, String tag, org.mozilla.jss.crypto.X509Certificate x509Cert, String profileID, String[] dnsNames) throws Exception - Throws:
Exception
-
trustCert
-
setupCert
- Throws:
Exception
-
createAdminCertificate
public org.mozilla.jss.netscape.security.x509.X509CertImpl createAdminCertificate(AdminSetupRequest request) throws Exception - Throws:
Exception
-