private void configureSslClientAuth(SslContextFactory factory, Ssl ssl) { if (ssl.getClientAuth() == Ssl.ClientAuth.NEED) { factory.setNeedClientAuth(true); factory.setWantClientAuth(true); } else if (ssl.getClientAuth() == Ssl.ClientAuth.WANT) { factory.setWantClientAuth(true); } }
public static SslContextFactory createSslContextFactory(boolean tlsAllowInsecureConnection, String tlsTrustCertsFilePath, String tlsCertificateFilePath, String tlsKeyFilePath, boolean tlsRequireTrustedClientCertOnConnect) throws GeneralSecurityException { SslContextFactory sslCtxFactory = new SslContextFactory(); SSLContext sslCtx = createSslContext(tlsAllowInsecureConnection, tlsTrustCertsFilePath, tlsCertificateFilePath, tlsKeyFilePath); sslCtxFactory.setSslContext(sslCtx); if (tlsRequireTrustedClientCertOnConnect) { sslCtxFactory.setNeedClientAuth(true); } else { sslCtxFactory.setWantClientAuth(true); } sslCtxFactory.setTrustAll(true); return sslCtxFactory; } }
break; case OPTIONAL: sslContextFactory.setWantClientAuth( true ); break; case NONE: sslContextFactory.setWantClientAuth( false ); sslContextFactory.setNeedClientAuth( false ); break;
factory.setNeedClientAuth(true); } else if (wantClientAuth != null && wantClientAuth) { factory.setWantClientAuth(true);
sslContextFactory.setTrustStorePath(truststore.getPath()); sslContextFactory.setTrustStorePassword(password); sslContextFactory.setWantClientAuth(true);
sslContextFactory.setWantClientAuth( false ); break; case wanted: sslContextFactory.setNeedClientAuth( false ); sslContextFactory.setWantClientAuth( true ); break; case needed:
factory.setWantClientAuth(wantClientAuth);
protected SslContextFactory createSslFactory(final SSLContextService sslService, final boolean needClientAuth, final boolean wantClientAuth) { final SslContextFactory sslFactory = new SslContextFactory(); sslFactory.setNeedClientAuth(needClientAuth); sslFactory.setWantClientAuth(wantClientAuth); if (sslService.isKeyStoreConfigured()) { sslFactory.setKeyStorePath(sslService.getKeyStoreFile()); sslFactory.setKeyStorePassword(sslService.getKeyStorePassword()); sslFactory.setKeyStoreType(sslService.getKeyStoreType()); } if (sslService.isTrustStoreConfigured()) { sslFactory.setTrustStorePath(sslService.getTrustStoreFile()); sslFactory.setTrustStorePassword(sslService.getTrustStorePassword()); sslFactory.setTrustStoreType(sslService.getTrustStoreType()); } return sslFactory; }
contextFactory.setNeedClientAuth(true); } else { contextFactory.setWantClientAuth(true);
sslContextFactory.setWantClientAuth(true);
private SslContextFactory createSslFactory(final SSLContextService sslService, final boolean needClientAuth, final boolean wantClientAuth) { final SslContextFactory sslFactory = new SslContextFactory(); sslFactory.setNeedClientAuth(needClientAuth); sslFactory.setWantClientAuth(wantClientAuth); sslFactory.setProtocol(sslService.getSslAlgorithm()); if (sslService.isKeyStoreConfigured()) { sslFactory.setKeyStorePath(sslService.getKeyStoreFile()); sslFactory.setKeyStorePassword(sslService.getKeyStorePassword()); sslFactory.setKeyStoreType(sslService.getKeyStoreType()); } if (sslService.isTrustStoreConfigured()) { sslFactory.setTrustStorePath(sslService.getTrustStoreFile()); sslFactory.setTrustStorePassword(sslService.getTrustStorePassword()); sslFactory.setTrustStoreType(sslService.getTrustStoreType()); } return sslFactory; }
/** * @see org.eclipse.jetty.server.ssl.SslConnector#setWantClientAuth(boolean) * @deprecated */ @Deprecated public void setWantClientAuth(boolean wantClientAuth) { _sslContextFactory.setWantClientAuth(wantClientAuth); }
/** * @see org.eclipse.jetty.server.ssl.SslConnector#setWantClientAuth(boolean) * @deprecated */ @Deprecated public void setWantClientAuth(boolean wantClientAuth) { _sslContextFactory.setWantClientAuth(wantClientAuth); }
/** * @see org.eclipse.jetty.server.ssl.SslConnector#setWantClientAuth(boolean) * @deprecated */ @Deprecated public void setWantClientAuth(boolean wantClientAuth) { _sslContextFactory.setWantClientAuth(wantClientAuth); }
/** * @see org.eclipse.jetty.server.ssl.SslConnector#setWantClientAuth(boolean) * @deprecated */ @Deprecated public void setWantClientAuth(boolean wantClientAuth) { _sslContextFactory.setWantClientAuth(wantClientAuth); }
/** * @see org.eclipse.jetty.server.ssl.SslConnector#setWantClientAuth(boolean) * @deprecated */ @Deprecated public void setWantClientAuth(boolean wantClientAuth) { _sslContextFactory.setWantClientAuth(wantClientAuth); }
/** * Set the value of the _wantClientAuth property. This property is used * internally when opening server sockets. * * @param wantClientAuth true if we want client certificate authentication. * @see SSLServerSocket#setWantClientAuth * @deprecated */ @Deprecated public void setWantClientAuth(boolean wantClientAuth) { _sslContextFactory.setWantClientAuth(wantClientAuth); }
protected void setClientAuthentication(SslContextFactory con, ClientAuthentication clientAuth) { con.setWantClientAuth(true); if (clientAuth != null) { if (clientAuth.isSetWant()) { con.setWantClientAuth(clientAuth.isWant()); } if (clientAuth.isSetRequired()) { con.setNeedClientAuth(clientAuth.isRequired()); } } } /**
protected void setClientAuthentication(SslContextFactory con, ClientAuthentication clientAuth) { con.setWantClientAuth(true); if (clientAuth != null) { if (clientAuth.isSetWant()) { con.setWantClientAuth(clientAuth.isWant()); } if (clientAuth.isSetRequired()) { con.setNeedClientAuth(clientAuth.isRequired()); } } } /**
public void setClientCertHandling(SslContextFactory sslContextFactory) { if (getRequireClientCert() && getWantClientCert()) { throw new IllegalArgumentException("Choose only one of --requireClientCert and --wantClientCert"); } if (getRequireClientCert()) { sslContextFactory.setNeedClientAuth(true); } else if (getWantClientCert()) { sslContextFactory.setWantClientAuth(true); } } }