-
AliasedX509ExtendedKeyManager
-
_alias: String
-
_delegate: X509ExtendedKeyManager
-
AliasedX509ExtendedKeyManager(X509ExtendedKeyManager, String): void
-
getDelegate(): X509ExtendedKeyManager
-
chooseClientAlias(String[], Principal[], Socket): String
-
chooseServerAlias(String, Principal[], Socket): String
-
getClientAliases(String, Principal[]): String[]
-
getServerAliases(String, Principal[]): String[]
-
getCertificateChain(String): X509Certificate[]
-
getPrivateKey(String): PrivateKey
-
chooseEngineServerAlias(String, Principal[], SSLEngine): String
-
chooseEngineClientAlias(String[], Principal[], SSLEngine): String
-
- Greg Wilkins (Webtide, LLC)
- Jan Bartel (Webtide, LLC)
- Jesse McConnell (Webtide, LLC)
- Joakim Erdfelt (Webtide, LLC)
- Simone Bordet (Webtide, LLC)
- David Jencks (IBM)
- Olivier Lamy (Webtide, LLC)
- Ludovic Orban (Webtide, LLC)
//
// ========================================================================
// Copyright (c) 1995-2020 Mort Bay Consulting Pty Ltd and others.
//
// This program and the accompanying materials are made available under
// the terms of the Eclipse Public License 2.0 which is available at
// https://www.eclipse.org/legal/epl-2.0
//
// This Source Code may also be made available under the following
// Secondary Licenses when the conditions for such availability set
// forth in the Eclipse Public License, v. 2.0 are satisfied:
// the Apache License v2.0 which is available at
// https://www.apache.org/licenses/LICENSE-2.0
//
// SPDX-License-Identifier: EPL-2.0 OR Apache-2.0
// ========================================================================
//
package org.eclipse.jetty.util.ssl;
import java.net.Socket;
import java.security.Principal;
import java.security.PrivateKey;
import java.security.cert.X509Certificate;
import javax.net.ssl.SSLEngine;
import javax.net.ssl.X509ExtendedKeyManager;
An X509ExtendedKeyManager that select a key with desired alias, delegating other processing to a nested X509ExtendedKeyManager.
Can be used both with server and client sockets.
/**
* <p>An {@link X509ExtendedKeyManager} that select a key with desired alias,
* delegating other processing to a nested X509ExtendedKeyManager.</p>
* <p>Can be used both with server and client sockets.</p>
*/
public class AliasedX509ExtendedKeyManager extends X509ExtendedKeyManager
{
private final String _alias;
private final X509ExtendedKeyManager _delegate;
public AliasedX509ExtendedKeyManager(X509ExtendedKeyManager keyManager, String keyAlias)
{
_alias = keyAlias;
_delegate = keyManager;
}
public X509ExtendedKeyManager getDelegate()
{
return _delegate;
}
@Override
public String chooseClientAlias(String[] keyType, Principal[] issuers, Socket socket)
{
if (_alias == null)
return _delegate.chooseClientAlias(keyType, issuers, socket);
for (String kt : keyType)
{
String[] aliases = _delegate.getClientAliases(kt, issuers);
if (aliases != null)
{
for (String a : aliases)
{
if (_alias.equals(a))
return _alias;
}
}
}
return null;
}
@Override
public String chooseServerAlias(String keyType, Principal[] issuers, Socket socket)
{
if (_alias == null)
return _delegate.chooseServerAlias(keyType, issuers, socket);
String[] aliases = _delegate.getServerAliases(keyType, issuers);
if (aliases != null)
{
for (String a : aliases)
{
if (_alias.equals(a))
return _alias;
}
}
return null;
}
@Override
public String[] getClientAliases(String keyType, Principal[] issuers)
{
return _delegate.getClientAliases(keyType, issuers);
}
@Override
public String[] getServerAliases(String keyType, Principal[] issuers)
{
return _delegate.getServerAliases(keyType, issuers);
}
@Override
public X509Certificate[] getCertificateChain(String alias)
{
return _delegate.getCertificateChain(alias);
}
@Override
public PrivateKey getPrivateKey(String alias)
{
return _delegate.getPrivateKey(alias);
}
@Override
public String chooseEngineServerAlias(String keyType, Principal[] issuers, SSLEngine engine)
{
if (_alias == null)
return _delegate.chooseEngineServerAlias(keyType, issuers, engine);
String[] aliases = _delegate.getServerAliases(keyType, issuers);
if (aliases != null)
{
for (String a : aliases)
{
if (_alias.equals(a))
return _alias;
}
}
return null;
}
@Override
public String chooseEngineClientAlias(String[] keyType, Principal[] issuers, SSLEngine engine)
{
if (_alias == null)
return _delegate.chooseEngineClientAlias(keyType, issuers, engine);
for (String kt : keyType)
{
String[] aliases = _delegate.getClientAliases(kt, issuers);
if (aliases != null)
{
for (String a : aliases)
{
if (_alias.equals(a))
return _alias;
}
}
}
return null;
}
}