Class CertificateStoreManager
- java.lang.Object
- 
- org.jivesoftware.openfire.container.BasicModule
- 
- org.jivesoftware.openfire.keystore.CertificateStoreManager
 
 
- 
- All Implemented Interfaces:
- Module
 
 public class CertificateStoreManager extends BasicModule A manager of certificate stores.
- 
- 
Constructor SummaryConstructors Constructor Description CertificateStoreManager()
 - 
Method SummaryAll Methods Static Methods Instance Methods Concrete Methods Deprecated Methods Modifier and Type Method Description Collection<Path>backup()Creates a backup of all files that back any of the certificate stores.voiddestroy()Destroys the module.IdentityStoregetIdentityStore(ConnectionType type)static StringgetIdentityStoreBackupDirectory(ConnectionType type)The location (relative to OPENFIRE_HOME) of the directory that holds backups for identity stores.CertificateStoreConfigurationgetIdentityStoreConfiguration(ConnectionType type)static StringgetIdentityStoreType(ConnectionType type)The KeyStore type (jks, jceks, pkcs12, etc) for the identity store for connections of a particular type.static StringgetKeyStoreType(ConnectionType type)Deprecated.TrustStoregetTrustStore(ConnectionType type)static StringgetTrustStoreBackupDirectory(ConnectionType type)The location (relative to OPENFIRE_HOME) of the directory that holds backups for trust stores.CertificateStoreConfigurationgetTrustStoreConfiguration(ConnectionType type)static StringgetTrustStoreType(ConnectionType type)The KeyStore type (jks, jceks, pkcs12, etc) for the trust store for connections of a particular type.voidinitialize(XMPPServer server)Initializes the basic module.voidreplaceIdentityStore(ConnectionType type, CertificateStoreConfiguration configuration, boolean createIfAbsent)voidreplaceTrustStore(ConnectionType type, CertificateStoreConfiguration configuration, boolean createIfAbsent)booleanusesDistinctConfigurationForEachType()Checks if Openfire is configured to use the same set of three keystore files for all connection types (one identity store, and two trust stores - one for client-based connections, and one for server/component-based connections).- 
Methods inherited from class org.jivesoftware.openfire.container.BasicModulegetName, start, stop
 
- 
 
- 
- 
- 
Method Detail- 
initializepublic void initialize(XMPPServer server) Description copied from class:BasicModuleInitializes the basic module. Inheriting classes that choose to override this method MUST call this initialize() method before accessing BasicModule resources. - Specified by:
- initializein interface- Module
- Overrides:
- initializein class- BasicModule
- Parameters:
- server- the server hosting this module.
 
 - 
destroypublic void destroy() Description copied from class:BasicModuleDestroys the module. Does nothing in the basic module. - Specified by:
- destroyin interface- Module
- Overrides:
- destroyin class- BasicModule
 
 - 
getIdentityStorepublic IdentityStore getIdentityStore(ConnectionType type) 
 - 
getTrustStorepublic TrustStore getTrustStore(ConnectionType type) 
 - 
replaceIdentityStorepublic void replaceIdentityStore(ConnectionType type, CertificateStoreConfiguration configuration, boolean createIfAbsent) throws CertificateStoreConfigException - Throws:
- CertificateStoreConfigException
 
 - 
replaceTrustStorepublic void replaceTrustStore(ConnectionType type, CertificateStoreConfiguration configuration, boolean createIfAbsent) throws CertificateStoreConfigException - Throws:
- CertificateStoreConfigException
 
 - 
getIdentityStoreConfigurationpublic CertificateStoreConfiguration getIdentityStoreConfiguration(ConnectionType type) throws IOException - Throws:
- IOException
 
 - 
getTrustStoreConfigurationpublic CertificateStoreConfiguration getTrustStoreConfiguration(ConnectionType type) throws IOException - Throws:
- IOException
 
 - 
backuppublic Collection<Path> backup() throws IOException Creates a backup of all files that back any of the certificate stores. Each certificate store can be configured to use a distinct file, as well as use a distinct backup location. In practise, there will be a lot of overlap. This implementation creates a backup (by copying the file) for each unique file/backup-location combination in the collection of all certificate stores.- Returns:
- the paths the store was backed up to
- Throws:
- IOException- if the store could not be backed up
 
 - 
getTrustStoreTypepublic static String getTrustStoreType(ConnectionType type) The KeyStore type (jks, jceks, pkcs12, etc) for the trust store for connections of a particular type.- Parameters:
- type- the connection type
- Returns:
- a store type (never null).
- See Also:
- Java Cryptography Architecture Standard Algorithm Name Documentation
 
 - 
getIdentityStoreTypepublic static String getIdentityStoreType(ConnectionType type) The KeyStore type (jks, jceks, pkcs12, etc) for the identity store for connections of a particular type.- Parameters:
- type- the connection type
- Returns:
- a store type (never null).
- See Also:
- Java Cryptography Architecture Standard Algorithm Name Documentation
 
 - 
getKeyStoreType@Deprecated public static String getKeyStoreType(ConnectionType type) Deprecated.The KeyStore type (jks, jceks, pkcs12, etc) for the identity and trust store for connections of a particular type.- Parameters:
- type- the connection type
- Returns:
- a store type (never null).
- See Also:
- Java Cryptography Architecture Standard Algorithm Name Documentation
 
 - 
getIdentityStoreBackupDirectorypublic static String getIdentityStoreBackupDirectory(ConnectionType type) The location (relative to OPENFIRE_HOME) of the directory that holds backups for identity stores.- Parameters:
- type- the connection type
- Returns:
- a path (never null).
 
 - 
getTrustStoreBackupDirectorypublic static String getTrustStoreBackupDirectory(ConnectionType type) The location (relative to OPENFIRE_HOME) of the directory that holds backups for trust stores.- Parameters:
- type- the connection type
- Returns:
- a path (never null).
 
 - 
usesDistinctConfigurationForEachTypepublic boolean usesDistinctConfigurationForEachType() throws IOExceptionChecks if Openfire is configured to use the same set of three keystore files for all connection types (one identity store, and two trust stores - one for client-based connections, and one for server/component-based connections). This method will return 'false' when running Openfire without changes to its default keystore configuration. If changes are made to use different keystores for at least one connection type, this method returns 'true'.- Returns:
- true if Openfire is using different keystores based on the type of connection, false when running with the default store configuration.
- Throws:
- IOException- if there was an IO error
 
 
- 
 
-