Class HazelcastNetworkSslProperties
java.lang.Object
org.apereo.cas.configuration.model.support.hazelcast.HazelcastNetworkSslProperties
- All Implemented Interfaces:
Serializable
@RequiresModule(name="cas-server-support-hazelcast-core")
public class HazelcastNetworkSslProperties
extends Object
implements Serializable
This is
HazelcastNetworkSslProperties
.- Since:
- 6.5.0
- See Also:
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionComma-separated list of cipher suite names allowed to be used.Name of the algorithm based on which the authentication keys are provided.Path of your keystore file.Password to access the key from your keystore file.Type of the keystore.Mutual authentication configuration.Name of the algorithm which is used in your TLS/SSL.Name of the algorithm based on which the trust managers are provided.Path of your truststore file.Password to unlock the truststore file.Type of the truststore.boolean
Flag which allows enabling endpoint identity validation.setCipherSuites
(String cipherSuites) Comma-separated list of cipher suite names allowed to be used.setKeyManagerAlgorithm
(String keyManagerAlgorithm) Name of the algorithm based on which the authentication keys are provided.setKeystore
(String keystore) Path of your keystore file.setKeystorePassword
(String keystorePassword) Password to access the key from your keystore file.setKeyStoreType
(String keyStoreType) Type of the keystore.setMutualAuthentication
(String mutualAuthentication) Mutual authentication configuration.setProtocol
(String protocol) Name of the algorithm which is used in your TLS/SSL.setTrustManagerAlgorithm
(String trustManagerAlgorithm) Name of the algorithm based on which the trust managers are provided.setTrustStore
(String trustStore) Path of your truststore file.setTrustStorePassword
(String trustStorePassword) Password to unlock the truststore file.setTrustStoreType
(String trustStoreType) Type of the truststore.setValidateIdentity
(boolean validateIdentity) Flag which allows enabling endpoint identity validation.
-
Constructor Details
-
HazelcastNetworkSslProperties
public HazelcastNetworkSslProperties()
-
-
Method Details
-
getProtocol
Name of the algorithm which is used in your TLS/SSL. For the protocol property, we recommend you to provide TLS with its version information, e.g., TLSv1.2. Note that if you write only TLS, your application chooses the TLS version according to your Java version. -
getKeystore
Path of your keystore file. Only needed when the mutual authentication is used. -
getKeystorePassword
Password to access the key from your keystore file. Only needed when the mutual authentication is used. -
getKeyStoreType
Type of the keystore. Its default value is JKS. Another commonly used type is the PKCS12. Available keystore/truststore types depend on your Operating system and the Java runtime. Only needed when the mutual authentication is used. -
getTrustStore
Path of your truststore file. The file truststore is a keystore file that contains a collection of certificates trusted by your application. -
getTrustStoreType
Type of the truststore. Its default value is JKS. Another commonly used type is the PKCS12. Available keystore/truststore types depend on your Operating system and the Java runtime. -
getTrustStorePassword
Password to unlock the truststore file. -
getMutualAuthentication
Mutual authentication configuration. It’s empty by default which means the client side of connection is not authenticated. Available values are:REQUIRED
- server forces usage of a trusted client certificateOPTIONAL
- server asks for a client certificate, but it doesn't require it
-
getCipherSuites
Comma-separated list of cipher suite names allowed to be used. Its default value are all supported suites in your Java runtime. -
getTrustManagerAlgorithm
Name of the algorithm based on which the trust managers are provided. -
getKeyManagerAlgorithm
Name of the algorithm based on which the authentication keys are provided. -
isValidateIdentity
public boolean isValidateIdentity()Flag which allows enabling endpoint identity validation. It means, during the TLS handshake client verifies if the server’s hostname (or IP address) matches the information in X.509 certificate (Subject Alternative Name extension). -
setProtocol
Name of the algorithm which is used in your TLS/SSL. For the protocol property, we recommend you to provide TLS with its version information, e.g., TLSv1.2. Note that if you write only TLS, your application chooses the TLS version according to your Java version.- Returns:
this
.
-
setKeystore
Path of your keystore file. Only needed when the mutual authentication is used.- Returns:
this
.
-
setKeystorePassword
Password to access the key from your keystore file. Only needed when the mutual authentication is used.- Returns:
this
.
-
setKeyStoreType
Type of the keystore. Its default value is JKS. Another commonly used type is the PKCS12. Available keystore/truststore types depend on your Operating system and the Java runtime. Only needed when the mutual authentication is used.- Returns:
this
.
-
setTrustStore
Path of your truststore file. The file truststore is a keystore file that contains a collection of certificates trusted by your application.- Returns:
this
.
-
setTrustStoreType
Type of the truststore. Its default value is JKS. Another commonly used type is the PKCS12. Available keystore/truststore types depend on your Operating system and the Java runtime.- Returns:
this
.
-
setTrustStorePassword
Password to unlock the truststore file.- Returns:
this
.
-
setMutualAuthentication
Mutual authentication configuration. It’s empty by default which means the client side of connection is not authenticated. Available values are:REQUIRED
- server forces usage of a trusted client certificateOPTIONAL
- server asks for a client certificate, but it doesn't require it
- Returns:
this
.
-
setCipherSuites
Comma-separated list of cipher suite names allowed to be used. Its default value are all supported suites in your Java runtime.- Returns:
this
.
-
setTrustManagerAlgorithm
Name of the algorithm based on which the trust managers are provided.- Returns:
this
.
-
setKeyManagerAlgorithm
Name of the algorithm based on which the authentication keys are provided.- Returns:
this
.
-
setValidateIdentity
Flag which allows enabling endpoint identity validation. It means, during the TLS handshake client verifies if the server’s hostname (or IP address) matches the information in X.509 certificate (Subject Alternative Name extension).- Returns:
this
.
-