private static Server createServer(Handler handler, int port, KeyStore keyStore, String keyPassword) throws Exception { Server server = new Server(); SslContextFactory sslContextFactory = new SslContextFactory(); sslContextFactory.setIncludeProtocols("TLSv1.2"); sslContextFactory.setKeyStore(keyStore); sslContextFactory.setKeyManagerPassword(keyPassword); HttpConfiguration httpsConfig = new HttpConfiguration(); httpsConfig.addCustomizer(new SecureRequestCustomizer()); ServerConnector sslConnector = new ServerConnector(server, new SslConnectionFactory(sslContextFactory, HttpVersion.HTTP_1_1.asString()), new HttpConnectionFactory(httpsConfig)); sslConnector.setPort(port); server.addConnector(sslConnector); server.setHandler(handler); return server; }
server = new Server(); SslContextFactory sslContextFactory = new SslContextFactory(); sslContextFactory.setKeyStore(keyStore);
factory.setKeyStore(keyStore); } catch (Exception e) { throw new IllegalStateException("Windows key store not supported", e);
sslContextFactory.setKeyStore( sslPolicy.getKeyStore( password.toCharArray(), password.toCharArray() ) ); sslContextFactory.setKeyStorePassword( password ); sslContextFactory.setKeyManagerPassword( password );
sslContextFactory.setKeyStore(keyStore); sslContextFactory.setKeyManagerPassword(keystoreManagerPass);
new java.security.cert.Certificate[] { certificate }); sslContextFactory.setKeyStore(keyStore); sslContextFactory.setKeyStorePassword(keyStorePasswd);
sslContextFactory.setKeyStore(keyStore); sslContextFactory.setKeyManagerPassword(keystoreManagerPass);
@Override public WebSocketClient build() throws Exception { SslContextFactory sslContextFactory = sslVerificationMode == SslVerificationMode.NONE ? new TrustAllSSLContextFactory() : new SslContextFactory(); sslContextFactory.setNeedClientAuth(true); sslContextFactory.setKeyStore(agentKeystore()); sslContextFactory.setKeyStorePassword(keystorePassword()); sslContextFactory.setKeyManagerPassword(keystorePassword()); if (rootCertFile != null) { sslContextFactory.setTrustStore(agentTruststore()); sslContextFactory.setTrustStorePassword(keystorePassword()); } if (sslVerificationMode == SslVerificationMode.NO_VERIFY_HOST) { sslContextFactory.setEndpointIdentificationAlgorithm(null); } WebSocketClient client = new WebSocketClient(sslContextFactory); client.setMaxIdleTimeout(systemEnvironment.getWebsocketMaxIdleTime()); return client; }
sslContextFactory.setKeyStore(StandaloneHelper.loadKeyStore(this.sslKeystoreUri, this.sslKeystorePassword.toCharArray())); sslContextFactory.setKeyManagerPassword(this.sslKeystorePassword); sslContextFactory.setTrustStore(StandaloneHelper.loadKeyStore(this.sslTruststoreUri, this.sslTruststorePassword.toCharArray()));
sslContextFactory.setTrustStorePassword( new String( configuration.getTrustStore().getConfiguration().getPassword() ) ); sslContextFactory.setKeyStore( configuration.getIdentityStore().getStore() ); sslContextFactory.setKeyStorePassword( new String( configuration.getIdentityStore().getConfiguration().getPassword() ) );
factory.setKeyStore(sslStoreProvider.getKeyStore()); factory.setTrustStore(sslStoreProvider.getTrustStore());
@Override protected SslContextFactory getSslContextFactory() { SslContextFactory sslContextFactoryFactory = new SslContextFactory(); sslContextFactoryFactory.setKeyStore(keyStore); sslContextFactoryFactory.setCertAlias(certificateAlias); sslContextFactoryFactory.setKeyStorePassword(password); return sslContextFactoryFactory; }
public SslContextFactory getSslContextFactory() throws GeneralSecurityException, IOException { SslContextFactory sslContextFactory = new SslContextFactory(); KeyStore keyStore = KeyStore.getInstance(properties.getProperty(MINIFI_C2_SERVER_KEYSTORE_TYPE)); Path keyStorePath = Paths.get(C2_SERVER_HOME).resolve(properties.getProperty(MINIFI_C2_SERVER_KEYSTORE)).toAbsolutePath(); logger.debug("keystore path: " + keyStorePath); try (InputStream inputStream = Files.newInputStream(keyStorePath)) { keyStore.load(inputStream, properties.getProperty(MINIFI_C2_SERVER_KEYSTORE_PASSWD).toCharArray()); } sslContextFactory.setKeyStore(keyStore); sslContextFactory.setKeyManagerPassword(properties.getProperty(MINIFI_C2_SERVER_KEY_PASSWD)); sslContextFactory.setWantClientAuth(true); String trustStorePath = Paths.get(C2_SERVER_HOME).resolve(properties.getProperty(MINIFI_C2_SERVER_TRUSTSTORE)).toAbsolutePath().toFile().getAbsolutePath(); logger.debug("truststore path: " + trustStorePath); sslContextFactory.setTrustStorePath(trustStorePath); sslContextFactory.setTrustStoreType(properties.getProperty(MINIFI_C2_SERVER_TRUSTSTORE_TYPE)); sslContextFactory.setTrustStorePassword(properties.getProperty(MINIFI_C2_SERVER_TRUSTSTORE_PASSWD)); try { sslContextFactory.start(); } catch (Exception e) { throw new IOException(e); } return sslContextFactory; } }
@Override protected SslContextFactory getSslContextFactory() { SslContextFactory sslContextFactoryFactory = new SslContextFactory(); sslContextFactoryFactory.setKeyStore(keyStore); sslContextFactoryFactory.setCertAlias(certificateAlias); sslContextFactoryFactory.setKeyStorePassword(password); return sslContextFactoryFactory; }
public SslContextFactory getSslContextFactory() throws GeneralSecurityException, IOException { SslContextFactory sslContextFactory = new SslContextFactory(); KeyStore keyStore = KeyStore.getInstance(properties.getProperty(MINIFI_C2_SERVER_KEYSTORE_TYPE)); Path keyStorePath = Paths.get(C2_SERVER_HOME).resolve(properties.getProperty(MINIFI_C2_SERVER_KEYSTORE)).toAbsolutePath(); logger.debug("keystore path: " + keyStorePath); try (InputStream inputStream = Files.newInputStream(keyStorePath)) { keyStore.load(inputStream, properties.getProperty(MINIFI_C2_SERVER_KEYSTORE_PASSWD).toCharArray()); } sslContextFactory.setKeyStore(keyStore); sslContextFactory.setKeyManagerPassword(properties.getProperty(MINIFI_C2_SERVER_KEY_PASSWD)); sslContextFactory.setWantClientAuth(true); String trustStorePath = Paths.get(C2_SERVER_HOME).resolve(properties.getProperty(MINIFI_C2_SERVER_TRUSTSTORE)).toAbsolutePath().toFile().getAbsolutePath(); logger.debug("truststore path: " + trustStorePath); sslContextFactory.setTrustStorePath(trustStorePath); sslContextFactory.setTrustStoreType(properties.getProperty(MINIFI_C2_SERVER_TRUSTSTORE_TYPE)); sslContextFactory.setTrustStorePassword(properties.getProperty(MINIFI_C2_SERVER_TRUSTSTORE_PASSWD)); try { sslContextFactory.start(); } catch (Exception e) { throw new IOException(e); } return sslContextFactory; } }
public static SslContextFactory createSSLContextFactory() { if (sslContextFactory == null) { sslContextFactory = new SslContextFactory(); sslContextFactory.setKeyStore(SSLFactory.getInstance().buildKeyStore()); sslContextFactory.setKeyStorePassword(SSLFactory.KEY_STORE_PASSWORD); sslContextFactory.checkKeyStore(); sslContextFactory.setTrustStore(SSLFactory.getInstance().buildKeyStore()); } return sslContextFactory; } }
private SslContextFactory createSslContextFactory(OptionMap options) { SslContextFactory context = new SslContextFactory(); Object keystore = options.get("keystore"); if (keystore instanceof KeyStore) { context.setKeyStore((KeyStore) keystore); } else { throw new MisconfigurationException(""); } context.setKeyStorePassword(options.getString("keystorePassword")); Object truststore = options.get("truststore"); if (truststore instanceof KeyStore) { context.setTrustStore((KeyStore) truststore); } context.setTrustStorePassword(options.getString("truststorePassword")); String clientAuth = options.getString("clientAuth", "none"); switch (clientAuth) { case "need": context.setNeedClientAuth(true); break; case "want": context.setWantClientAuth(true); break; } return context; }
@Override public SslContextFactory getInstance(String containerId, int port) { ConnectorConfig.Ssl sslConfig = connectorConfig.ssl(); if (!sslConfig.enabled()) throw new IllegalStateException(); SslContextFactory factory = new JDiscSslContextFactory(); switch (sslConfig.clientAuth()) { case NEED_AUTH: factory.setNeedClientAuth(true); break; case WANT_AUTH: factory.setWantClientAuth(true); break; } // Check if using new ssl syntax from services.xml factory.setKeyStore(createKeystore(sslConfig)); factory.setKeyStorePassword(""); if (!sslConfig.caCertificateFile().isEmpty()) { factory.setTrustStore(createTruststore(sslConfig)); } factory.setProtocol("TLS"); return factory; }
private SslContextFactory createSslContextFactory(OptionMap options) { SslContextFactory context = new SslContextFactory(); Object keystore = options.get("keystore"); if (keystore instanceof KeyStore) { context.setKeyStore((KeyStore) keystore); } else { throw new MisconfigurationException(""); } context.setKeyStorePassword(options.getString("keystorePassword")); Object truststore = options.get("truststore"); if (truststore instanceof KeyStore) { context.setTrustStore((KeyStore) truststore); } context.setTrustStorePassword(options.getString("truststorePassword")); String clientAuth = options.getString("clientAuth", "none"); switch (clientAuth) { case "need": context.setNeedClientAuth(true); break; case "want": context.setWantClientAuth(true); break; } return context; }
try (InputStream inputStream = new ByteArrayInputStream(this.keyStore.getBytes())) { keyStore.load(inputStream, keyStorePassword.get().toCharArray()); sslContextFactory.setKeyStore(keyStore);