Class SecureAdminConfigUpgrade
- java.lang.Object
-
- com.sun.enterprise.security.admin.cli.SecureAdminUpgradeHelper
-
- com.sun.enterprise.security.admin.cli.SecureAdminConfigUpgrade
-
- All Implemented Interfaces:
org.glassfish.api.admin.config.ConfigurationUpgrade
,org.glassfish.hk2.api.PostConstruct
@Service public class SecureAdminConfigUpgrade extends SecureAdminUpgradeHelper implements org.glassfish.api.admin.config.ConfigurationUpgrade, org.glassfish.hk2.api.PostConstruct
Upgrades older config to current. In 3.1.2 GlassFish uses SSL for DAS-to-instance traffic regardless of whether the user enables secure admin. This means that the upgrade must always:- Create the secure-admin element.
- Add the glassfish-instance private key to the keystore and the corresponding self-signed cert to the truststore.
- Add secure-admin-principal children to secure-admin, one for alias s1as and one for glassfish-instance.
- Add the Grizzly config for the non-DAS admin listener configurations to use port unification and redirection (and SSL).
- If it seems the user has configured the old domain to use secure admin traffic then run the enable-secure-admin command.
- Author:
- Tim Quinn
-
-
Field Summary
-
Fields inherited from class com.sun.enterprise.security.admin.cli.SecureAdminUpgradeHelper
DAS_CONFIG_NAME, domain, habitat, startupContext
-
-
Constructor Summary
Constructors Constructor Description SecureAdminConfigUpgrade()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description void
postConstruct()
-
Methods inherited from class com.sun.enterprise.security.admin.cli.SecureAdminUpgradeHelper
commit, ensureDASConfigReady, ensureNonDASConfigsReady, ensureSecureAdminReady, rollback, secureAdmin, secureAdminHelper, specialAdminIndicator, sslUtils, startupArg, transaction, writableDomain, writableSecureAdmin
-
-