/*
|
* The contents of this file are subject to the terms of the Common Development and
|
* Distribution License (the License). You may not use this file except in compliance with the
|
* License.
|
*
|
* You can obtain a copy of the License at legal/CDDLv1.0.txt. See the License for the
|
* specific language governing permission and limitations under the License.
|
*
|
* When distributing Covered Software, include this CDDL Header Notice in each file and include
|
* the License file at legal/CDDLv1.0.txt. If applicable, add the following below the CDDL
|
* Header, with the fields enclosed by brackets [] replaced by your own identifying
|
* information: "Portions Copyright [year] [name of copyright owner]".
|
*
|
* Copyright 2014 ForgeRock AS.
|
*/
|
package org.forgerock.opendj.server.setup.model;
|
|
import java.io.File;
|
|
import org.forgerock.i18n.LocalizableMessage;
|
import org.forgerock.opendj.config.server.ConfigException;
|
|
/**
|
* This class is to create a certificate configuration.
|
*/
|
class Certificate {
|
public enum CertificateType {
|
/**
|
* Self-signed certificate.
|
*/
|
SELF_SIGNED,
|
/**
|
* Java KeyStore.
|
*/
|
JKS,
|
/**
|
* Java Cryptography Extension.
|
*/
|
JCEKS,
|
/**
|
* Public-Key Cryptography Standards 12.
|
*/
|
PKCS12,
|
/**
|
* Public-Key Cryptography Standards 11 token.
|
*/
|
PKCS11
|
}
|
|
private CertificateType type;
|
private String certNickName;
|
private File keyStoreFile;
|
private String keyStorePin;
|
|
/**
|
* Default constructor.
|
*/
|
Certificate() {
|
type = CertificateType.SELF_SIGNED;
|
certNickName = "";
|
keyStorePin = "";
|
}
|
|
/**
|
* Returns the certificate nickname.
|
*
|
* @return The certificate nickname.
|
*/
|
public String getCertNickName() {
|
return certNickName;
|
}
|
|
/**
|
* Sets the certificate nickname.
|
*
|
* @param certNickName
|
* The certificate nickname.
|
*/
|
public void setCertNickName(String certNickName) {
|
this.certNickName = certNickName;
|
}
|
|
|
/**
|
* Returns the type of this certificate.
|
*
|
* @return The type of this certificate.
|
*/
|
public CertificateType getType() {
|
return type;
|
}
|
|
/**
|
* Sets the type of this certificate.
|
*
|
* @param type
|
* The type of this certificate (JKS, self-signed...)
|
*/
|
public void setType(CertificateType type) {
|
this.type = type;
|
}
|
|
/**
|
* Returns the key store file.
|
*
|
* @return The key store file.
|
*/
|
public File getKeyStoreFile() {
|
return keyStoreFile;
|
}
|
|
/**
|
* Sets the key store file.
|
*
|
* @param keyStoreFile
|
* The key store file.
|
*/
|
public void setKeyStoreFile(File keyStoreFile) {
|
this.keyStoreFile = keyStoreFile;
|
}
|
|
/**
|
* Returns the key store PIN.
|
*
|
* @return The key store PIN.
|
*/
|
public String getKeyStorePin() {
|
return keyStorePin;
|
}
|
|
/**
|
* Sets the key store PIN.
|
*
|
* @param keyStorePin
|
* The key store PIN.
|
*/
|
public void setKeyStorePin(String keyStorePin) {
|
this.keyStorePin = keyStorePin;
|
}
|
|
/**
|
* Validates the actual configuration for this certificate.
|
*
|
* @throws ConfigException
|
* If this certificate configuration is invalid.
|
*/
|
public void validate() throws ConfigException {
|
if (type == CertificateType.JKS || type == CertificateType.JCEKS || type == CertificateType.PKCS12) {
|
if (keyStoreFile == null || !keyStoreFile.exists()) {
|
throw new ConfigException(LocalizableMessage.raw("Invalid keystore file"));
|
}
|
if (keyStorePin.isEmpty()) {
|
throw new ConfigException(LocalizableMessage.raw("Invalid key pin"));
|
}
|
} else if (type == CertificateType.PKCS11) {
|
if (keyStorePin.isEmpty()) {
|
throw new ConfigException(LocalizableMessage.raw("Invalid key pin"));
|
}
|
}
|
}
|
}
|
