Package org.apereo.cas.configuration.model.support.hazelcast

Class HazelcastNetworkSslProperties

java.lang.Object
org.apereo.cas.configuration.model.support.hazelcast.HazelcastNetworkSslProperties
All Implemented Interfaces:
Serializable
@RequiresModule(name="cas-server-support-hazelcast-core") public class HazelcastNetworkSslProperties extends Object implements Serializable
This is HazelcastNetworkSslProperties.
Since:
6.5.0
See Also:

  • Constructor Details

    • HazelcastNetworkSslProperties

      public HazelcastNetworkSslProperties()

  • Method Details

    • getProtocol

      public String getProtocol()
      Name of the algorithm which is used in your TLS/SSL. For the protocol property, we recommend you to provide TLS with its version information, e.g., TLSv1.2. Note that if you write only TLS, your application chooses the TLS version according to your Java version.

    • getKeystore

      public String getKeystore()
      Path of your keystore file. Only needed when the mutual authentication is used.

    • getKeystorePassword

      public String getKeystorePassword()
      Password to access the key from your keystore file. Only needed when the mutual authentication is used.

    • getKeyStoreType

      public String getKeyStoreType()
      Type of the keystore. Its default value is JKS. Another commonly used type is the PKCS12. Available keystore/truststore types depend on your Operating system and the Java runtime. Only needed when the mutual authentication is used.

    • getTrustStore

      public String getTrustStore()
      Path of your truststore file. The file truststore is a keystore file that contains a collection of certificates trusted by your application.

    • getTrustStoreType

      public String getTrustStoreType()
      Type of the truststore. Its default value is JKS. Another commonly used type is the PKCS12. Available keystore/truststore types depend on your Operating system and the Java runtime.

    • getTrustStorePassword

      public String getTrustStorePassword()
      Password to unlock the truststore file.

    • getMutualAuthentication

      public String getMutualAuthentication()
      Mutual authentication configuration. It’s empty by default which means the client side of connection is not authenticated. Available values are:
      • REQUIRED - server forces usage of a trusted client certificate
      • OPTIONAL - server asks for a client certificate, but it doesn't require it

    • getCipherSuites

      public String getCipherSuites()
      Comma-separated list of cipher suite names allowed to be used. Its default value are all supported suites in your Java runtime.

    • getTrustManagerAlgorithm

      public String getTrustManagerAlgorithm()
      Name of the algorithm based on which the trust managers are provided.

    • getKeyManagerAlgorithm

      public String getKeyManagerAlgorithm()
      Name of the algorithm based on which the authentication keys are provided.

    • isValidateIdentity

      public boolean isValidateIdentity()
      Flag which allows enabling endpoint identity validation. It means, during the TLS handshake client verifies if the server’s hostname (or IP address) matches the information in X.509 certificate (Subject Alternative Name extension).

    • setProtocol

      public HazelcastNetworkSslProperties setProtocol(String protocol)
      Name of the algorithm which is used in your TLS/SSL. For the protocol property, we recommend you to provide TLS with its version information, e.g., TLSv1.2. Note that if you write only TLS, your application chooses the TLS version according to your Java version.
      Returns:
      this.

    • setKeystore

      public HazelcastNetworkSslProperties setKeystore(String keystore)
      Path of your keystore file. Only needed when the mutual authentication is used.
      Returns:
      this.

    • setKeystorePassword

      public HazelcastNetworkSslProperties setKeystorePassword(String keystorePassword)
      Password to access the key from your keystore file. Only needed when the mutual authentication is used.
      Returns:
      this.

    • setKeyStoreType

      public HazelcastNetworkSslProperties setKeyStoreType(String keyStoreType)
      Type of the keystore. Its default value is JKS. Another commonly used type is the PKCS12. Available keystore/truststore types depend on your Operating system and the Java runtime. Only needed when the mutual authentication is used.
      Returns:
      this.

    • setTrustStore

      public HazelcastNetworkSslProperties setTrustStore(String trustStore)
      Path of your truststore file. The file truststore is a keystore file that contains a collection of certificates trusted by your application.
      Returns:
      this.

    • setTrustStoreType

      public HazelcastNetworkSslProperties setTrustStoreType(String trustStoreType)
      Type of the truststore. Its default value is JKS. Another commonly used type is the PKCS12. Available keystore/truststore types depend on your Operating system and the Java runtime.
      Returns:
      this.

    • setTrustStorePassword

      public HazelcastNetworkSslProperties setTrustStorePassword(String trustStorePassword)
      Password to unlock the truststore file.
      Returns:
      this.

    • setMutualAuthentication

      public HazelcastNetworkSslProperties setMutualAuthentication(String mutualAuthentication)
      Mutual authentication configuration. It’s empty by default which means the client side of connection is not authenticated. Available values are:
      • REQUIRED - server forces usage of a trusted client certificate
      • OPTIONAL - server asks for a client certificate, but it doesn't require it
      Returns:
      this.

    • setCipherSuites

      public HazelcastNetworkSslProperties setCipherSuites(String cipherSuites)
      Comma-separated list of cipher suite names allowed to be used. Its default value are all supported suites in your Java runtime.
      Returns:
      this.

    • setTrustManagerAlgorithm

      public HazelcastNetworkSslProperties setTrustManagerAlgorithm(String trustManagerAlgorithm)
      Name of the algorithm based on which the trust managers are provided.
      Returns:
      this.

    • setKeyManagerAlgorithm

      public HazelcastNetworkSslProperties setKeyManagerAlgorithm(String keyManagerAlgorithm)
      Name of the algorithm based on which the authentication keys are provided.
      Returns:
      this.

    • setValidateIdentity

      public HazelcastNetworkSslProperties setValidateIdentity(boolean validateIdentity)
      Flag which allows enabling endpoint identity validation. It means, during the TLS handshake client verifies if the server’s hostname (or IP address) matches the information in X.509 certificate (Subject Alternative Name extension).
      Returns:
      this.