|
Oracle Fusion Middleware Oracle WebLogic Server API Reference 11g Release 1 (10.3.4) Part Number E13941-04 |
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object weblogic.wsee.security.bst.BSTCredentialProvider weblogic.wsee.security.bst.BST11CredentialProvider weblogic.wsee.security.bst.ClientBSTCredentialProvider
public class ClientBSTCredentialProvider
Client CredentialProvider for BinarySecurityTokens with ValueTypes #X509v3, #X509PKIPathv1, #PKCS7, #X509SubjectKeyIdentifier and #ThumbprintSHA1.
Field Summary |
---|
Fields inherited from class weblogic.wsee.security.bst.BST11CredentialProvider |
---|
BUILTIN_BST_VALUETYPES |
Fields inherited from class weblogic.wsee.security.bst.BSTCredentialProvider |
---|
verbose |
Constructor Summary | |
---|---|
ClientBSTCredentialProvider(CertPath certPath,
PrivateKey pk)
Creates client BST credential provider for the indicated certificate file and private key. |
|
ClientBSTCredentialProvider(String clientCertPath,
String clientPrivateKeyPath)
Creates client BST credential provider for the indicated certificate file and PKCS8 private key file. |
|
ClientBSTCredentialProvider(String clientCertPath,
String clientPrivateKeyPath,
String serverCertPath)
Creates client BST credential provider for the indicated certificate file, PKCS8 private key file and server certificate. |
|
ClientBSTCredentialProvider(String keyStoreFileName,
String keyStorePasswd,
String certAlias,
String keyPasswd)
Creates client BST credential provider for the indicated keystore and certificate alias. |
|
ClientBSTCredentialProvider(String keyStoreFileName,
String keyStorePasswd,
String certAlias,
String keyPasswd,
String keyStoreType)
Creates client BST credential provider for the indicated keystore and certificate alias. |
|
ClientBSTCredentialProvider(String keyStoreFileName,
String keyStorePasswd,
String certAlias,
String keyPasswd,
String keyStoreType,
X509Certificate serverCert)
Creates client BST credential provider for the indicated keystore, certificate alias and server certificate. |
|
ClientBSTCredentialProvider(X509Certificate serverCert,
CertPath certPath,
PrivateKey pk)
Creates client BST credential provider for the indicated certificate file and private key. |
|
ClientBSTCredentialProvider(X509Certificate clientCert,
PrivateKey clientPrivateKey,
X509Certificate serverCert)
Creates client BST credential provider for the indicated certificate file, PKCS8 private key file and server certificate. |
Method Summary | |
---|---|
ClientBSTCredentialProvider |
cloneAndReplaceServerCert(X509Certificate serverCert)
|
Object |
getCredential(String tokenType,
String issuerName,
ContextHandler ctxHandler,
Purpose p)
|
void |
setServerCertificate(X509Certificate serverCert)
set Server's public X509 certificate |
String |
toString()
|
Methods inherited from class weblogic.wsee.security.bst.BST11CredentialProvider |
---|
getValueTypes |
Methods inherited from class weblogic.wsee.security.bst.BSTCredentialProvider |
---|
isForDecryption, isForEncryption, isForIdentity, isForResponseEncryption, isForSigning, isForVerification |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait |
Constructor Detail |
---|
public ClientBSTCredentialProvider(String keyStoreFileName, String keyStorePasswd, String certAlias, String keyPasswd) throws Exception
keyStoreFileName
- Keystore file namekeyStorePasswd
- Keystore passwordcertAlias
- Certificate aliaskeyPasswd
- Certificate entry password
Exception
- thrown if keystore or certificate entry is missing or corrupt
or if passwords are incorrectpublic ClientBSTCredentialProvider(String keyStoreFileName, String keyStorePasswd, String certAlias, String keyPasswd, String keyStoreType) throws Exception
keyStoreFileName
- Keystore file namekeyStorePasswd
- Keystore passwordcertAlias
- Certificate aliaskeyPasswd
- Certificate entry passwordkeyStoreType
- Keystore type, e.g. "JKS"
Exception
- thrown if keystore or certificate entry is missing or corrupt
or if passwords are incorrectpublic ClientBSTCredentialProvider(String keyStoreFileName, String keyStorePasswd, String certAlias, String keyPasswd, String keyStoreType, X509Certificate serverCert) throws Exception
serverCert
will be used to encrypt the message body contents.
If security policy requires message-level integrity (signature) for the server's
response, the certificate passed for the parameter serverCert
will be used to verify the received signature. Any KeyInfo received as part of the
in-bound signature (e.g. certificate thumbprint) must correctly identify the same
server certificate.
keyStoreFileName
- Keystore file namekeyStorePasswd
- Keystore passwordcertAlias
- Certificate aliaskeyPasswd
- Certificate entry passwordkeyStoreType
- Keystore type, e.g. "JKS"serverCert
- Server's public X509 certificate
Exception
- thrown if keystore or certificate entry is missing or corrupt
or if passwords are incorrectpublic ClientBSTCredentialProvider(String clientCertPath, String clientPrivateKeyPath) throws Exception
clientCertPath
- File name contiaining client's X509 public certificateclientPrivateKeyPath
- PKCS8 file name continaing client's private key
Exception
- thrown if certificate or key file are missing or corruptpublic ClientBSTCredentialProvider(String clientCertPath, String clientPrivateKeyPath, String serverCertPath) throws Exception
serverCertPath
will be used to encrypt the message
body contents. If security policy requires message-level integrity (signature)
for the server's response, the certificate read from the file
serverCertPath
will be used to verify the received signature.
Any KeyInfo received as part of the in-bound signature (e.g. certificate thumbprint)
must correctly identify the same server certificate.
clientCertPath
- File name contiaining client's X509 public certificateclientPrivateKeyPath
- PKCS8 file name continaing client's private keyserverCertPath
- File name containging server's X509 public certificate
Exception
- thrown if the client certificate, key, or server certificate files
are missing or corruptpublic ClientBSTCredentialProvider(X509Certificate clientCert, PrivateKey clientPrivateKey, X509Certificate serverCert)
serverCert
will be used to encrypt the message body
contents. If security policy requires message-level integrity (signature) for
the server's response, the certificate passed for the parameter
serverCert
will be used to verify the received signature.
Any KeyInfo received as part of the in-bound signature (e.g. certificate
thumbprint) must correctly identify the same server certificate.
clientCert
- client's X509 public certificateclientPrivateKey
- client's private keyserverCert
- Server's public X509 certificatepublic ClientBSTCredentialProvider(CertPath certPath, PrivateKey pk)
certPath
- Certpath object for client's X509 public certificatepk
- Client's private keypublic ClientBSTCredentialProvider(X509Certificate serverCert, CertPath certPath, PrivateKey pk)
serverCert
- Server's public X509 certificatecertPath
- Certpath object for client's X509 public certificatepk
- Client's private keyMethod Detail |
---|
public void setServerCertificate(X509Certificate serverCert)
serverCert
- Server's public X509 certificatepublic Object getCredential(String tokenType, String issuerName, ContextHandler ctxHandler, Purpose p)
getCredential
in interface CredentialProvider
public ClientBSTCredentialProvider cloneAndReplaceServerCert(X509Certificate serverCert)
public String toString()
toString
in class Object
|
Copyright 1996, 2010, Oracle and/or its affiliates. All rights reserved. Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners. Oracle Fusion Middleware Oracle WebLogic Server API Reference 11g Release 1 (10.3.4) Part Number E13941-04 |
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |