UtilSsl (Punch Common Core Library 6.4.5 API)

java.lang.Object
- org.thales.punch.libraries.utils.api.UtilSsl

public final class UtilSsl
extends Object

Nested Class Summary

Nested Classes
Modifier and Type Class and Description

static class UtilSsl.EKeystoreExtensions

static class UtilSsl.EKeystoreInstances

Nested Classes
Modifier and Type	Class and Description
`static class`	`UtilSsl.EKeystoreExtensions`
`static class`	`UtilSsl.EKeystoreInstances`

Method Summary

All Methods Static Methods Concrete Methods
Modifier and Type	Method and Description
`static UtilSsl.EKeystoreInstances`	`getKeystoreInstance(Path keystore)` Provide the keystore type according to its extension among jks or p12
`static KeyStore`	`getStoreFromPath(Path keystore, String password)` Load a keystore from path Password can be null if no password is securing the keystore
`static KeyStore`	`loadKeyStore(Path certificate, Path privateKey, String keyPassword, String keyAlias)` Generate a java keystore (JKS type) from a private key and a certificate files Be sure to provide only related key and cert file to generate a keystore
`static SSLContext`	`loadSslContext(KeyStore truststore, KeyStore keyStore, String KeyStorePass)` Load an ssl context for tls connexions using provided optional keystore and truststore You may provide a keystore if you have to authenticate to a service that requires a certificate and a key for incoming tls connexions Keystore password can be null if no password actually protects the keystore You may provide a truststore if you have to authenticate incoming tls connexions with a certificate
`static KeyStore`	`loadTrustStore(Path certificateChainFile)` Generate truststore form a certificate file or a chain

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Method Detail
  - loadTrustStore
```
public static KeyStore loadTrustStore(Path certificateChainFile)
                               throws IOException,
                                      GeneralSecurityException
```
    Generate truststore form a certificate file or a chain
    
    Parameters:
    
    certificateChainFile - CA file
    
    Returns:
    
    A keystore to consider as a truststore, generated from the provided CA file
    
    Throws:
    
    IOException - .
    
    GeneralSecurityException - .
  - loadKeyStore
```
public static KeyStore loadKeyStore(Path certificate,
                                    Path privateKey,
                                    String keyPassword,
                                    String keyAlias)
                             throws IOException,
                                    GeneralSecurityException
```
    Generate a java keystore (JKS type) from a private key and a certificate files Be sure to provide only related key and cert file to generate a keystore
    
    Parameters:
    
    certificate - public key file
    
    privateKey - private key file related to the signed certificate in CA file
    
    keyPassword - password of the private key. This password will be reused to protect key in keystore. Provide 'null' if key has no password
    
    Returns:
    
    Keystore generated from key and certificate file
    
    Throws:
    
    IOException - .
    
    GeneralSecurityException - .
  - getKeystoreInstance
```
public static UtilSsl.EKeystoreInstances getKeystoreInstance(Path keystore)
```
    Provide the keystore type according to its extension among jks or p12
    
    Parameters:
    
    keystore - path of a keystore with extension
    
    Returns:
    
    the proper instance of this store (jks or pkcs12)
  - getStoreFromPath
```
public static KeyStore getStoreFromPath(Path keystore,
                                        String password)
```
    Load a keystore from path Password can be null if no password is securing the keystore
    
    Parameters:
    
    keystore - path to the keystore to load
    
    password - password of the keystore. Can be null if no password
    
    Returns:
    
    the proper keystore instance
  - loadSslContext
```
public static SSLContext loadSslContext(KeyStore truststore,
                                        KeyStore keyStore,
                                        String KeyStorePass)
                                 throws NoSuchAlgorithmException,
                                        KeyStoreException,
                                        UnrecoverableKeyException,
                                        KeyManagementException
```
    Load an ssl context for tls connexions using provided optional keystore and truststore You may provide a keystore if you have to authenticate to a service that requires a certificate and a key for incoming tls connexions Keystore password can be null if no password actually protects the keystore You may provide a truststore if you have to authenticate incoming tls connexions with a certificate
    
    Parameters:
    
    truststore - truststore of the ssl connexion. Can be null.
    
    keyStore - keystore of the ssl connexion. Can be null.
    
    KeyStorePass - password of the keystore. Can be null.
    
    Returns:
    
    an ssl context for tls connexion
    
    Throws:
    
    NoSuchAlgorithmException - .
    
    KeyStoreException - .
    
    UnrecoverableKeyException - .
    
    KeyManagementException - .

Class UtilSsl

Nested Class Summary

Method Summary

Methods inherited from class java.lang.Object

Method Detail

loadTrustStore

loadKeyStore

getKeystoreInstance

getStoreFromPath

loadSslContext