Package org.apache.qpid.server.security
Class AbstractTrustStore<X extends AbstractTrustStore<X>>
- java.lang.Object
-
- org.apache.qpid.server.model.AbstractConfiguredObject<X>
-
- org.apache.qpid.server.security.AbstractTrustStore<X>
-
- All Implemented Interfaces:
ConfiguredObject<X>
,ContextProvider
,PermissionedObject
,TaskExecutorProvider
,TrustStore<X>
- Direct Known Subclasses:
FileTrustStoreImpl
,ManagedPeerCertificateTrustStoreImpl
,NonJavaTrustStoreImpl
,SiteSpecificTrustStoreImpl
public abstract class AbstractTrustStore<X extends AbstractTrustStore<X>> extends AbstractConfiguredObject<X> implements TrustStore<X>
-
-
Nested Class Summary
-
Nested classes/interfaces inherited from class org.apache.qpid.server.model.AbstractConfiguredObject
AbstractConfiguredObject.CallableWithArgument<V,A>, AbstractConfiguredObject.ChainedListenableFuture<V>, AbstractConfiguredObject.ChainedSettableFuture<V>, AbstractConfiguredObject.DuplicateIdException, AbstractConfiguredObject.DuplicateNameException
-
-
Field Summary
Fields Modifier and Type Field Description protected static long
ONE_DAY
-
Fields inherited from class org.apache.qpid.server.model.AbstractConfiguredObject
SECURED_STRING_VALUE
-
Fields inherited from interface org.apache.qpid.server.model.ConfiguredObject
AWAIT_ATTAINMENT_TIMEOUT, CONTEXT, CREATED_BY, CREATED_TIME, DEFAULT_AWAIT_ATTAINMENT_TIMEOUT, DESCRIPTION, DESIRED_STATE, DURABLE, ID, LAST_UPDATED_BY, LAST_UPDATED_TIME, LIFETIME_POLICY, NAME, OVER_SIZED_ATTRIBUTE_ALTERNATIVE_TEXT, STATE, TYPE
-
Fields inherited from interface org.apache.qpid.server.model.TrustStore
CERTIFICATE_EXPIRY_CHECK_FREQUENCY, CERTIFICATE_EXPIRY_WARN_PERIOD, CERTIFICATE_REVOCATION_CHECK_ENABLED, CERTIFICATE_REVOCATION_CHECK_OF_ONLY_END_ENTITY_CERTIFICATES, CERTIFICATE_REVOCATION_CHECK_WITH_IGNORING_SOFT_FAILURES, CERTIFICATE_REVOCATION_CHECK_WITH_NO_FALLBACK, CERTIFICATE_REVOCATION_CHECK_WITH_PREFERRING_CERTIFICATE_REVOCATION_LIST, CERTIFICATE_REVOCATION_LIST_URL, DEFAULT_CERTIFICATE_EXPIRY_CHECK_FREQUENCY, DEFAULT_CERTIFICATE_EXPIRY_WARN_PERIOD, DEFAULT_TRUST_ANCHOR_VALIDITY_ENFORCED, TRUST_ANCHOR_VALIDITY_ENFORCED
-
-
Method Summary
All Methods Static Methods Instance Methods Abstract Methods Concrete Methods Modifier and Type Method Description protected void
changeAttributes(java.util.Map<java.lang.String,java.lang.Object> attributes)
Broker<?>
getBroker()
java.util.List<CertificateDetails>
getCertificateDetails()
int
getCertificateExpiryCheckFrequency()
int
getCertificateExpiryWarnPeriod()
java.lang.String
getCertificateRevocationListPath()
java.lang.String
getCertificateRevocationListUrl()
java.util.List<VirtualHostNode<?>>
getExcludedVirtualHostNodeMessageSources()
java.util.List<VirtualHostNode<?>>
getIncludedVirtualHostNodeMessageSources()
javax.net.ssl.TrustManager[]
getTrustManagers()
protected javax.net.ssl.TrustManager[]
getTrustManagers(java.security.KeyStore ts)
protected abstract javax.net.ssl.TrustManager[]
getTrustManagersInternal()
protected static java.net.URL
getUrlFromString(java.lang.String urlString)
protected abstract void
initialize()
boolean
isCertificateRevocationCheckEnabled()
boolean
isCertificateRevocationCheckOfOnlyEndEntityCertificates()
boolean
isCertificateRevocationCheckWithIgnoringSoftFailures()
boolean
isCertificateRevocationCheckWithNoFallback()
boolean
isCertificateRevocationCheckWithPreferringCertificateRevocationList()
boolean
isExposedAsMessageSource()
boolean
isTrustAnchorValidityEnforced()
protected void
logCreated(java.util.Map<java.lang.String,java.lang.Object> attributes, Outcome outcome)
protected void
logDeleted(Outcome outcome)
protected void
logOperation(java.lang.String operation)
protected void
logRecovered(Outcome outcome)
protected void
logUpdated(java.util.Map<java.lang.String,java.lang.Object> attributes, Outcome outcome)
protected com.google.common.util.concurrent.ListenableFuture<java.lang.Void>
onClose()
protected com.google.common.util.concurrent.ListenableFuture<java.lang.Void>
onDelete()
void
onValidate()
Validation performed for configured object creation and opening.protected void
validateChange(ConfiguredObject<?> proxyForValidation, java.util.Set<java.lang.String> changedAttributes)
-
Methods inherited from class org.apache.qpid.server.model.AbstractConfiguredObject
addChangeListener, addChildAsync, addFutureCallback, applyToChildren, asObjectRecord, attainState, attributesAsString, attributeSet, authorise, authorise, authorise, authoriseCreateChild, awaitChildClassToAttainState, awaitChildClassToAttainState, beforeClose, beforeDelete, childAdded, childRemoved, close, closeAsync, closeChildren, create, createAsync, createChild, createChildAsync, decryptSecrets, delete, deleteAsync, deleteChildren, deleteNoChecks, doAfter, doAfter, doAfter, doAfter, doAfter, doAfter, doAfterAlways, doAfterAlways, doCreation, doOnConfigThread, doOpening, doResolution, doSync, doSync, doValidation, findConfiguredObject, forceUpdateAllSecureAttributes, getAccessControl, getActualAttributes, getAncestor, getAttainedChildById, getAttainedChildByName, getAttribute, getAttributeNames, getCategoryClass, getChildById, getChildByName, getChildExecutor, getChildren, getContext, getContextKeys, getContextValue, getContextValue, getCreatedBy, getCreatedTime, getDescription, getDesiredState, getId, getLastOpenedTime, getLastUpdatedBy, getLastUpdatedTime, getLifetimePolicy, getModel, getName, getObjectFactory, getParent, getState, getStatistics, getStatistics, getSubjectWithAddedSystemRights, getSystemPrincipal, getSystemTaskControllerContext, getSystemTaskSubject, getSystemTaskSubject, getTaskExecutor, getType, getTypeClass, getUserPreferences, handleExceptionOnOpen, hasEncrypter, isDurable, isSystemProcess, isSystemSubject, managesChildStorage, newToken, notifyStateChanged, onCreate, onExceptionInOpen, onOpen, onResolve, open, openAsync, postResolve, postResolveChildren, postSetAttributes, registerWithParents, removeChangeListener, removeContextVariable, rethrowRuntimeExceptionsOnOpen, runTask, setAttributes, setAttributesAsync, setContextVariable, setEncrypter, setState, setUserPreferences, start, startAsync, stop, toString, updateModel, validateChildDelete, validateOnCreate
-
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait
-
Methods inherited from interface org.apache.qpid.server.model.ConfiguredObject
addChangeListener, asObjectRecord, authorise, authorise, authorise, close, closeAsync, createChild, createChildAsync, decryptSecrets, delete, deleteAsync, findConfiguredObject, getActualAttributes, getAttainedChildById, getAttainedChildByName, getAttribute, getAttributeNames, getCategoryClass, getChildById, getChildByName, getChildExecutor, getChildren, getContext, getCreatedBy, getCreatedTime, getDescription, getDesiredState, getId, getLastOpenedTime, getLastUpdatedBy, getLastUpdatedTime, getLifetimePolicy, getModel, getObjectFactory, getParent, getState, getStatistics, getStatistics, getType, getTypeClass, getUserPreferences, hasEncrypter, isDurable, managesChildStorage, newToken, open, openAsync, removeChangeListener, removeContextVariable, setAttributes, setAttributesAsync, setContextVariable, setUserPreferences
-
Methods inherited from interface org.apache.qpid.server.model.ContextProvider
getContextKeys, getContextValue, getContextValue
-
Methods inherited from interface org.apache.qpid.server.model.TaskExecutorProvider
getTaskExecutor
-
Methods inherited from interface org.apache.qpid.server.model.TrustStore
getCertificates, getName
-
-
-
-
Field Detail
-
ONE_DAY
protected static final long ONE_DAY
- See Also:
- Constant Field Values
-
-
Method Detail
-
getBroker
public final Broker<?> getBroker()
-
initialize
protected abstract void initialize()
-
changeAttributes
protected void changeAttributes(java.util.Map<java.lang.String,java.lang.Object> attributes)
- Overrides:
changeAttributes
in classAbstractConfiguredObject<X extends AbstractTrustStore<X>>
-
onValidate
public void onValidate()
Description copied from class:AbstractConfiguredObject
Validation performed for configured object creation and opening.- Overrides:
onValidate
in classAbstractConfiguredObject<X extends AbstractTrustStore<X>>
-
validateChange
protected void validateChange(ConfiguredObject<?> proxyForValidation, java.util.Set<java.lang.String> changedAttributes)
- Overrides:
validateChange
in classAbstractConfiguredObject<X extends AbstractTrustStore<X>>
-
onClose
protected com.google.common.util.concurrent.ListenableFuture<java.lang.Void> onClose()
- Overrides:
onClose
in classAbstractConfiguredObject<X extends AbstractTrustStore<X>>
-
logCreated
protected void logCreated(java.util.Map<java.lang.String,java.lang.Object> attributes, Outcome outcome)
- Overrides:
logCreated
in classAbstractConfiguredObject<X extends AbstractTrustStore<X>>
-
logRecovered
protected void logRecovered(Outcome outcome)
- Overrides:
logRecovered
in classAbstractConfiguredObject<X extends AbstractTrustStore<X>>
-
logDeleted
protected void logDeleted(Outcome outcome)
- Overrides:
logDeleted
in classAbstractConfiguredObject<X extends AbstractTrustStore<X>>
-
logUpdated
protected void logUpdated(java.util.Map<java.lang.String,java.lang.Object> attributes, Outcome outcome)
- Overrides:
logUpdated
in classAbstractConfiguredObject<X extends AbstractTrustStore<X>>
-
logOperation
protected void logOperation(java.lang.String operation)
- Overrides:
logOperation
in classAbstractConfiguredObject<X extends AbstractTrustStore<X>>
-
onDelete
protected com.google.common.util.concurrent.ListenableFuture<java.lang.Void> onDelete()
- Overrides:
onDelete
in classAbstractConfiguredObject<X extends AbstractTrustStore<X>>
-
getTrustManagers
public final javax.net.ssl.TrustManager[] getTrustManagers() throws java.security.GeneralSecurityException
- Specified by:
getTrustManagers
in interfaceTrustStore<X extends AbstractTrustStore<X>>
- Throws:
java.security.GeneralSecurityException
-
getTrustManagersInternal
protected abstract javax.net.ssl.TrustManager[] getTrustManagersInternal() throws java.security.GeneralSecurityException
- Throws:
java.security.GeneralSecurityException
-
getTrustManagers
protected javax.net.ssl.TrustManager[] getTrustManagers(java.security.KeyStore ts)
-
getUrlFromString
protected static java.net.URL getUrlFromString(java.lang.String urlString) throws java.net.MalformedURLException
- Throws:
java.net.MalformedURLException
-
getCertificateExpiryWarnPeriod
public final int getCertificateExpiryWarnPeriod()
- Specified by:
getCertificateExpiryWarnPeriod
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
getCertificateExpiryCheckFrequency
public int getCertificateExpiryCheckFrequency()
- Specified by:
getCertificateExpiryCheckFrequency
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
isTrustAnchorValidityEnforced
public boolean isTrustAnchorValidityEnforced()
- Specified by:
isTrustAnchorValidityEnforced
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
isCertificateRevocationCheckEnabled
public boolean isCertificateRevocationCheckEnabled()
- Specified by:
isCertificateRevocationCheckEnabled
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
isCertificateRevocationCheckOfOnlyEndEntityCertificates
public boolean isCertificateRevocationCheckOfOnlyEndEntityCertificates()
- Specified by:
isCertificateRevocationCheckOfOnlyEndEntityCertificates
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
isCertificateRevocationCheckWithPreferringCertificateRevocationList
public boolean isCertificateRevocationCheckWithPreferringCertificateRevocationList()
- Specified by:
isCertificateRevocationCheckWithPreferringCertificateRevocationList
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
isCertificateRevocationCheckWithNoFallback
public boolean isCertificateRevocationCheckWithNoFallback()
- Specified by:
isCertificateRevocationCheckWithNoFallback
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
isCertificateRevocationCheckWithIgnoringSoftFailures
public boolean isCertificateRevocationCheckWithIgnoringSoftFailures()
- Specified by:
isCertificateRevocationCheckWithIgnoringSoftFailures
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
getCertificateRevocationListUrl
public java.lang.String getCertificateRevocationListUrl()
- Specified by:
getCertificateRevocationListUrl
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
getCertificateRevocationListPath
public java.lang.String getCertificateRevocationListPath()
- Specified by:
getCertificateRevocationListPath
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
isExposedAsMessageSource
public boolean isExposedAsMessageSource()
- Specified by:
isExposedAsMessageSource
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
getIncludedVirtualHostNodeMessageSources
public java.util.List<VirtualHostNode<?>> getIncludedVirtualHostNodeMessageSources()
- Specified by:
getIncludedVirtualHostNodeMessageSources
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
getExcludedVirtualHostNodeMessageSources
public java.util.List<VirtualHostNode<?>> getExcludedVirtualHostNodeMessageSources()
- Specified by:
getExcludedVirtualHostNodeMessageSources
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
getCertificateDetails
public java.util.List<CertificateDetails> getCertificateDetails()
- Specified by:
getCertificateDetails
in interfaceTrustStore<X extends AbstractTrustStore<X>>
-
-