Class SSLHostConfig

  • All Implemented Interfaces:
    java.io.Serializable

    public class SSLHostConfig
    extends java.lang.Object
    implements java.io.Serializable
    Represents the TLS configuration for a virtual host.
    See Also:
    Serialized Form
    • Field Detail

      • DEFAULT_SSL_HOST_NAME

        protected static final java.lang.String DEFAULT_SSL_HOST_NAME
        See Also:
        Constant Field Values
      • SSL_PROTO_ALL_SET

        protected static final java.util.Set<java.lang.String> SSL_PROTO_ALL_SET
      • DEFAULT_TLS_CIPHERS

        public static final java.lang.String DEFAULT_TLS_CIPHERS
        See Also:
        Constant Field Values
    • Constructor Detail

      • SSLHostConfig

        public SSLHostConfig()
    • Method Detail

      • isTls13RenegotiationAvailable

        public boolean isTls13RenegotiationAvailable()
      • setTls13RenegotiationAvailable

        public void setTls13RenegotiationAvailable​(boolean tls13RenegotiationAvailable)
      • getOpenSslConfContext

        public java.lang.Long getOpenSslConfContext()
      • setOpenSslConfContext

        public void setOpenSslConfContext​(java.lang.Long openSslConfContext)
      • getOpenSslContext

        public java.lang.Long getOpenSslContext()
      • setOpenSslContext

        public void setOpenSslContext​(java.lang.Long openSslContext)
      • getConfigType

        public java.lang.String getConfigType()
      • getEnabledProtocols

        public java.lang.String[] getEnabledProtocols()
        Returns:
        The protocols enabled for this TLS virtual host
        See Also:
        SSLUtil.getEnabledProtocols()
      • setEnabledProtocols

        public void setEnabledProtocols​(java.lang.String[] enabledProtocols)
      • getEnabledCiphers

        public java.lang.String[] getEnabledCiphers()
        Returns:
        The ciphers enabled for this TLS virtual host
        See Also:
        SSLUtil.getEnabledCiphers()
      • setEnabledCiphers

        public void setEnabledCiphers​(java.lang.String[] enabledCiphers)
      • getObjectName

        public javax.management.ObjectName getObjectName()
      • setObjectName

        public void setObjectName​(javax.management.ObjectName oname)
      • setOpenSslConf

        public void setOpenSslConf​(OpenSSLConf conf)
      • setCertificateRevocationListFile

        public void setCertificateRevocationListFile​(java.lang.String certificateRevocationListFile)
      • getCertificateRevocationListFile

        public java.lang.String getCertificateRevocationListFile()
      • setCertificateVerification

        public void setCertificateVerification​(java.lang.String certificateVerification)
      • setCertificateVerificationAsString

        public void setCertificateVerificationAsString​(java.lang.String certificateVerification)
      • getCertificateVerificationAsString

        public java.lang.String getCertificateVerificationAsString()
      • setCertificateVerificationDepth

        public void setCertificateVerificationDepth​(int certificateVerificationDepth)
      • getCertificateVerificationDepth

        public int getCertificateVerificationDepth()
      • isCertificateVerificationDepthConfigured

        public boolean isCertificateVerificationDepthConfigured()
      • setCiphers

        public void setCiphers​(java.lang.String ciphersList)
        Set the new cipher configuration. Note: Regardless of the format used to set the configuration, it is always stored in OpenSSL format.
        Parameters:
        ciphersList - The new cipher configuration in OpenSSL or JSSE format
      • getCiphers

        public java.lang.String getCiphers()
        Returns:
        An OpenSSL cipher string for the current configuration.
      • getCipherList

        public java.util.LinkedHashSet<Cipher> getCipherList()
      • getJsseCipherNames

        public java.util.List<java.lang.String> getJsseCipherNames()
        Obtain the list of JSSE cipher names for the current configuration. Ciphers included in the configuration but not supported by JSSE will be excluded from this list.
        Returns:
        A list of the JSSE cipher names
      • setHonorCipherOrder

        public void setHonorCipherOrder​(boolean honorCipherOrder)
      • getHonorCipherOrder

        public boolean getHonorCipherOrder()
      • setHostName

        public void setHostName​(java.lang.String hostName)
      • getHostName

        public java.lang.String getHostName()
        Returns:
        The host name associated with this SSL configuration - always in lower case.
      • setProtocols

        public void setProtocols​(java.lang.String input)
      • getProtocols

        public java.util.Set<java.lang.String> getProtocols()
      • setSessionCacheSize

        public void setSessionCacheSize​(int sessionCacheSize)
      • getSessionCacheSize

        public int getSessionCacheSize()
      • setSessionTimeout

        public void setSessionTimeout​(int sessionTimeout)
      • getSessionTimeout

        public int getSessionTimeout()
      • setKeyManagerAlgorithm

        public void setKeyManagerAlgorithm​(java.lang.String keyManagerAlgorithm)
      • getKeyManagerAlgorithm

        public java.lang.String getKeyManagerAlgorithm()
      • setRevocationEnabled

        public void setRevocationEnabled​(boolean revocationEnabled)
      • getRevocationEnabled

        public boolean getRevocationEnabled()
      • setSslProtocol

        public void setSslProtocol​(java.lang.String sslProtocol)
      • getSslProtocol

        public java.lang.String getSslProtocol()
      • setTrustManagerClassName

        public void setTrustManagerClassName​(java.lang.String trustManagerClassName)
      • getTrustManagerClassName

        public java.lang.String getTrustManagerClassName()
      • setTruststoreAlgorithm

        public void setTruststoreAlgorithm​(java.lang.String truststoreAlgorithm)
      • getTruststoreAlgorithm

        public java.lang.String getTruststoreAlgorithm()
      • setTruststoreFile

        public void setTruststoreFile​(java.lang.String truststoreFile)
      • getTruststoreFile

        public java.lang.String getTruststoreFile()
      • setTruststorePassword

        public void setTruststorePassword​(java.lang.String truststorePassword)
      • getTruststorePassword

        public java.lang.String getTruststorePassword()
      • setTruststoreProvider

        public void setTruststoreProvider​(java.lang.String truststoreProvider)
      • getTruststoreProvider

        public java.lang.String getTruststoreProvider()
      • setTruststoreType

        public void setTruststoreType​(java.lang.String truststoreType)
      • getTruststoreType

        public java.lang.String getTruststoreType()
      • setTrustStore

        public void setTrustStore​(java.security.KeyStore truststore)
      • getTruststore

        public java.security.KeyStore getTruststore()
                                             throws java.io.IOException
        Throws:
        java.io.IOException
      • setCertificateRevocationListPath

        public void setCertificateRevocationListPath​(java.lang.String certificateRevocationListPath)
      • getCertificateRevocationListPath

        public java.lang.String getCertificateRevocationListPath()
      • setCaCertificateFile

        public void setCaCertificateFile​(java.lang.String caCertificateFile)
      • getCaCertificateFile

        public java.lang.String getCaCertificateFile()
      • setCaCertificatePath

        public void setCaCertificatePath​(java.lang.String caCertificatePath)
      • getCaCertificatePath

        public java.lang.String getCaCertificatePath()
      • setDisableCompression

        public void setDisableCompression​(boolean disableCompression)
      • getDisableCompression

        public boolean getDisableCompression()
      • setDisableSessionTickets

        public void setDisableSessionTickets​(boolean disableSessionTickets)
      • getDisableSessionTickets

        public boolean getDisableSessionTickets()
      • setInsecureRenegotiation

        public void setInsecureRenegotiation​(boolean insecureRenegotiation)
      • getInsecureRenegotiation

        public boolean getInsecureRenegotiation()
      • adjustRelativePath

        public static java.lang.String adjustRelativePath​(java.lang.String path)
                                                   throws java.io.FileNotFoundException
        Throws:
        java.io.FileNotFoundException