/*
|
* CDDL HEADER START
|
*
|
* The contents of this file are subject to the terms of the
|
* Common Development and Distribution License, Version 1.0 only
|
* (the "License"). You may not use this file except in compliance
|
* with the License.
|
*
|
* You can obtain a copy of the license at legal-notices/CDDLv1_0.txt
|
* or http://forgerock.org/license/CDDLv1.0.html.
|
* See the License for the specific language governing permissions
|
* and limitations under the License.
|
*
|
* When distributing Covered Code, include this CDDL HEADER in each
|
* file and include the License file at legal-notices/CDDLv1_0.txt.
|
* If applicable, add the following below this CDDL HEADER, with the
|
* fields enclosed by brackets "[]" replaced with your own identifying
|
* information:
|
* Portions Copyright [yyyy] [name of copyright owner]
|
*
|
* CDDL HEADER END
|
*
|
*
|
* Copyright 2014 ForgeRock AS.
|
*/
|
package org.forgerock.opendj.server.setup.model;
|
|
import java.io.File;
|
|
import org.forgerock.i18n.LocalizableMessage;
|
import org.forgerock.opendj.config.server.ConfigException;
|
|
/**
|
* This class is to create a certificate configuration.
|
*/
|
class Certificate {
|
public enum CertificateType {
|
/**
|
* Self-signed certificate.
|
*/
|
SELF_SIGNED,
|
/**
|
* Java KeyStore.
|
*/
|
JKS,
|
/**
|
* Java Cryptography Extension.
|
*/
|
JCEKS,
|
/**
|
* Public-Key Cryptography Standards 12.
|
*/
|
PKCS12,
|
/**
|
* Public-Key Cryptography Standards 11 token.
|
*/
|
PKCS11
|
};
|
|
private CertificateType type;
|
private String certNickName;
|
private File keyStoreFile;
|
private String keyStorePin;
|
|
/**
|
* Default constructor.
|
*/
|
Certificate() {
|
type = CertificateType.SELF_SIGNED;
|
certNickName = "";
|
keyStorePin = "";
|
}
|
|
/**
|
* Returns the certificate nickname.
|
*
|
* @return The certificate nickname.
|
*/
|
public String getCertNickName() {
|
return certNickName;
|
}
|
|
/**
|
* Sets the certificate nickname.
|
*
|
* @param certNickName
|
* The certificate nickname.
|
*/
|
public void setCertNickName(String certNickName) {
|
this.certNickName = certNickName;
|
}
|
|
|
/**
|
* Returns the type of this certificate.
|
*
|
* @return The type of this certificate.
|
*/
|
public CertificateType getType() {
|
return type;
|
}
|
|
/**
|
* Sets the type of this certificate.
|
*
|
* @param type
|
* The type of this certificate (JKS, self-signed...)
|
*/
|
public void setType(CertificateType type) {
|
this.type = type;
|
}
|
|
/**
|
* Returns the key store file.
|
*
|
* @return The key store file.
|
*/
|
public File getKeyStoreFile() {
|
return keyStoreFile;
|
}
|
|
/**
|
* Sets the key store file.
|
*
|
* @param keyStoreFile
|
* The key store file.
|
*/
|
public void setKeyStoreFile(File keyStoreFile) {
|
this.keyStoreFile = keyStoreFile;
|
}
|
|
/**
|
* Returns the key store PIN.
|
*
|
* @return The key store PIN.
|
*/
|
public String getKeyStorePin() {
|
return keyStorePin;
|
}
|
|
/**
|
* Sets the key store PIN.
|
*
|
* @param keyStorePin
|
* The key store PIN.
|
*/
|
public void setKeyStorePin(String keyStorePin) {
|
this.keyStorePin = keyStorePin;
|
}
|
|
/**
|
* Validates the actual configuration for this certificate.
|
*
|
* @throws ConfigException
|
* If this certificate configuration is invalid.
|
*/
|
public void validate() throws ConfigException {
|
if (type == CertificateType.JKS || type == CertificateType.JCEKS || type == CertificateType.PKCS12) {
|
if (keyStoreFile == null || !keyStoreFile.exists()) {
|
throw new ConfigException(LocalizableMessage.raw("Invalid keystore file"));
|
}
|
if (keyStorePin.isEmpty()) {
|
throw new ConfigException(LocalizableMessage.raw("Invalid key pin"));
|
}
|
} else if (type == CertificateType.PKCS11) {
|
if (keyStorePin.isEmpty()) {
|
throw new ConfigException(LocalizableMessage.raw("Invalid key pin"));
|
}
|
}
|
}
|
}
|
