|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||
java.lang.Objectorg.eclipse.jetty.security.authentication.LoginAuthenticator
org.eclipse.jetty.security.authentication.ClientCertAuthenticator
public class ClientCertAuthenticator
| Nested Class Summary |
|---|
| Nested classes/interfaces inherited from interface org.eclipse.jetty.security.Authenticator |
|---|
Authenticator.AuthConfiguration, Authenticator.Factory |
| Field Summary |
|---|
| Fields inherited from class org.eclipse.jetty.security.authentication.LoginAuthenticator |
|---|
_deferred, _identityService, _loginService, SESSION_SECURED |
| Constructor Summary | |
|---|---|
ClientCertAuthenticator()
|
|
| Method Summary | |
|---|---|
String |
getAuthMethod()
|
String |
getCrlPath()
Get the crlPath. |
protected KeyStore |
getKeyStore(InputStream storeStream,
String storePath,
String storeType,
String storeProvider,
String storePassword)
Loads keystore using an input stream or a file path in the same order of precedence. |
int |
getMaxCertPathLength()
|
String |
getOcspResponderURL()
|
String |
getTrustStore()
|
String |
getTrustStoreProvider()
|
String |
getTrustStoreType()
|
boolean |
isEnableCRLDP()
|
boolean |
isEnableOCSP()
|
boolean |
isValidateCerts()
|
protected Collection<? extends CRL> |
loadCRL(String crlPath)
Loads certificate revocation list (CRL) from a file. |
boolean |
secureResponse(ServletRequest req,
ServletResponse res,
boolean mandatory,
Authentication.User validatedUser)
|
void |
setCrlPath(String crlPath)
Set the crlPath. |
void |
setEnableCRLDP(boolean enableCRLDP)
Enables CRL Distribution Points Support |
void |
setEnableOCSP(boolean enableOCSP)
Enables On-Line Certificate Status Protocol support |
void |
setMaxCertPathLength(int maxCertPathLength)
|
void |
setOcspResponderURL(String ocspResponderURL)
Set the location of the OCSP Responder. |
void |
setTrustStore(String trustStorePath)
|
void |
setTrustStorePassword(String password)
|
void |
setTrustStoreProvider(String trustStoreProvider)
|
void |
setTrustStoreType(String trustStoreType)
|
void |
setValidateCerts(boolean validateCerts)
|
Authentication |
validateRequest(ServletRequest req,
ServletResponse res,
boolean mandatory)
Validate a response |
| Methods inherited from class org.eclipse.jetty.security.authentication.LoginAuthenticator |
|---|
getLoginService, renewSessionOnAuthentication, setConfiguration |
| Methods inherited from class java.lang.Object |
|---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
| Constructor Detail |
|---|
public ClientCertAuthenticator()
| Method Detail |
|---|
public String getAuthMethod()
public Authentication validateRequest(ServletRequest req,
ServletResponse res,
boolean mandatory)
throws ServerAuthException
Authenticator
req - The requestres - The responsemandatory - True if authentication is mandatory.
ServerAuthException
protected KeyStore getKeyStore(InputStream storeStream,
String storePath,
String storeType,
String storeProvider,
String storePassword)
throws Exception
storeStream - keystore input streamstorePath - path of keystore filestoreType - keystore typestoreProvider - keystore providerstorePassword - keystore password
Exception
protected Collection<? extends CRL> loadCRL(String crlPath)
throws Exception
crlPath - path of certificate revocation list file
Exception
public boolean secureResponse(ServletRequest req,
ServletResponse res,
boolean mandatory,
Authentication.User validatedUser)
throws ServerAuthException
ServerAuthExceptionpublic boolean isValidateCerts()
public void setValidateCerts(boolean validateCerts)
validateCerts - true if SSL certificates have to be validatedpublic String getTrustStore()
public void setTrustStore(String trustStorePath)
trustStorePath - The file name or URL of the trust store locationpublic String getTrustStoreProvider()
public void setTrustStoreProvider(String trustStoreProvider)
trustStoreProvider - The provider of the trust storepublic String getTrustStoreType()
public void setTrustStoreType(String trustStoreType)
trustStoreType - The type of the trust store (default "JKS")public void setTrustStorePassword(String password)
password - The password for the trust storepublic String getCrlPath()
public void setCrlPath(String crlPath)
crlPath - the crlPath to setpublic int getMaxCertPathLength()
public void setMaxCertPathLength(int maxCertPathLength)
maxCertPathLength - maximum number of intermediate certificates in
the certification path (-1 for unlimited)public boolean isEnableCRLDP()
public void setEnableCRLDP(boolean enableCRLDP)
enableCRLDP - true - turn on, false - turns offpublic boolean isEnableOCSP()
public void setEnableOCSP(boolean enableOCSP)
enableOCSP - true - turn on, false - turn offpublic String getOcspResponderURL()
public void setOcspResponderURL(String ocspResponderURL)
ocspResponderURL - location of the OCSP Responder
|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||