Package org.jolokia.jvmagent.security

Class KeyStoreUtil

java.lang.Object

org.jolokia.jvmagent.security.KeyStoreUtil

public class KeyStoreUtil
extends Object

Utility class for handling keystores

Since:

30/09/15

Author:

roland

Method Summary

Modifier and Type	Method	Description
static void	updateWithCaPem(KeyStore pTrustStore, File pCaCert)	Update a keystore with a CA certificate
static void	updateWithSelfSignedServerCertificate(KeyStore pKeyStore)	Update the given keystore with a self-signed server certificate.
static void	updateWithServerPems(KeyStore pKeyStore, File pServerCert, File pServerKey, String pKeyAlgo, char[] pPassword)	Update a key store with the keys found in a server PEM and its key file.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Details

updateWithCaPem

public static void updateWithCaPem(KeyStore pTrustStore,
 File pCaCert)
                            throws IOException,
CertificateException,
KeyStoreException

Update a keystore with a CA certificate

Parameters:

pTrustStore - the keystore to update

pCaCert - CA cert as PEM used for the trust store

Throws:

IOException

CertificateException

KeyStoreException

updateWithServerPems

public static void updateWithServerPems(KeyStore pKeyStore,
 File pServerCert,
 File pServerKey,
 String pKeyAlgo,
 char[] pPassword)
                                 throws IOException,
CertificateException,
NoSuchAlgorithmException,
InvalidKeySpecException,
KeyStoreException

Update a key store with the keys found in a server PEM and its key file.

Parameters:

pKeyStore - keystore to update

pServerCert - server certificate

pServerKey - server key

pKeyAlgo - algorithm used in the keystore (e.g. "RSA")

pPassword - password to use for the key file. must not be null, use char[0] for an empty password.

Throws:

IOException

CertificateException

NoSuchAlgorithmException

InvalidKeySpecException

KeyStoreException

updateWithSelfSignedServerCertificate

public static void updateWithSelfSignedServerCertificate(KeyStore pKeyStore)
                                                  throws NoSuchAlgorithmException,
KeyStoreException

Update the given keystore with a self-signed server certificate. This can be used if no server certificate is provided from the outside and no SSL verification is used by the client.

Parameters:

pKeyStore - keystore to update

Throws:

NoSuchAlgorithmException

KeyStoreException