|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.apache.ftpserver.ssl.impl.AliasKeyManager
public final class AliasKeyManager
Internal class, do not use directly.
X509KeyManager which allows selection of a specific keypair and certificate
chain (identified by their keystore alias name) to be used by the server to
authenticate itself to SSL clients.
This class is only used on Java 1.4 systems, on Java 1.5 and newer the @see
ExtendedAliasKeyManager
is used instead
Based of org.apache.tomcat.util.net.jsse.JSSEKeyManager.
Constructor Summary | |
---|---|
AliasKeyManager(javax.net.ssl.KeyManager mgr,
java.lang.String keyAlias)
Constructor. |
Method Summary | |
---|---|
java.lang.String |
chooseClientAlias(java.lang.String[] keyType,
java.security.Principal[] issuers,
java.net.Socket socket)
Choose an alias to authenticate the client side of a secure socket, given the public key type and the list of certificate issuer authorities recognized by the peer (if any). |
java.lang.String |
chooseServerAlias(java.lang.String keyType,
java.security.Principal[] issuers,
java.net.Socket socket)
Returns this key manager's server key alias that was provided in the constructor. |
java.security.cert.X509Certificate[] |
getCertificateChain(java.lang.String alias)
Returns the certificate chain associated with the given alias. |
java.lang.String[] |
getClientAliases(java.lang.String keyType,
java.security.Principal[] issuers)
Get the matching aliases for authenticating the client side of a secure socket, given the public key type and the list of certificate issuer authorities recognized by the peer (if any). |
java.security.PrivateKey |
getPrivateKey(java.lang.String alias)
Returns the key associated with the given alias. |
java.lang.String[] |
getServerAliases(java.lang.String keyType,
java.security.Principal[] issuers)
Get the matching aliases for authenticating the server side of a secure socket, given the public key type and the list of certificate issuer authorities recognized by the peer (if any). |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public AliasKeyManager(javax.net.ssl.KeyManager mgr, java.lang.String keyAlias)
mgr
- The X509KeyManager used as a delegatekeyStore
- serverKeyAlias
- The alias name of the server's keypair and supporting
certificate chainkeyAlias
- Method Detail |
---|
public java.lang.String chooseClientAlias(java.lang.String[] keyType, java.security.Principal[] issuers, java.net.Socket socket)
chooseClientAlias
in interface javax.net.ssl.X509KeyManager
keyType
- The key algorithm type name(s), ordered with the
most-preferred key type firstissuers
- The list of acceptable CA issuer subject names, or null if it
does not matter which issuers are usedsocket
- The socket to be used for this connection. This parameter can
be null, in which case this method will return the most
generic alias to use
public java.lang.String chooseServerAlias(java.lang.String keyType, java.security.Principal[] issuers, java.net.Socket socket)
chooseServerAlias
in interface javax.net.ssl.X509KeyManager
keyType
- The key algorithm type nameissuers
- The list of acceptable CA issuer subject names, or null if it
does not matter which issuers are used (ignored)socket
- The socket to be used for this connection. This parameter can
be null, in which case this method will return the most
generic alias to use (ignored)
public java.security.cert.X509Certificate[] getCertificateChain(java.lang.String alias)
getCertificateChain
in interface javax.net.ssl.X509KeyManager
alias
- The alias name
public java.lang.String[] getClientAliases(java.lang.String keyType, java.security.Principal[] issuers)
getClientAliases
in interface javax.net.ssl.X509KeyManager
keyType
- The key algorithm type nameissuers
- The list of acceptable CA issuer subject names, or null if it
does not matter which issuers are used
public java.lang.String[] getServerAliases(java.lang.String keyType, java.security.Principal[] issuers)
getServerAliases
in interface javax.net.ssl.X509KeyManager
keyType
- The key algorithm type nameissuers
- The list of acceptable CA issuer subject names, or null if it
does not matter which issuers are used
public java.security.PrivateKey getPrivateKey(java.lang.String alias)
getPrivateKey
in interface javax.net.ssl.X509KeyManager
alias
- The alias name
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |