mirror of https://github.com/OpenIdentityPlatform/OpenDJ.git
parent: 53958a1b | patch | commit | show whitespace
jvergara
30.51.2009 ef0a62ee67dbfdda6bcea6935baf0d206d5afc7e 
Fix for issue 4375 (Consider not using default certificate nick names in configuration)
Update ConfigureDS to remove by default the nick names (or to use everywhere the nick name of the user provided certificate).
1 files modified
53 ■■■■ changed files
opends/src/server/org/opends/server/tools/ConfigureDS.java 53 ●●●● patch | view | raw | blame | history 
 opends/src/server/org/opends/server/tools/ConfigureDS.java


@@ -1081,39 +1081,49 @@


                    INFO_LDAP_CONNHANDLER_DESCRIPTION_SSL_CERT_NICKNAME.get(),


                false, false, true, certNickName.getValue());




          if (ldapPort.isPresent())


          {


            // Use the key manager specified for the LDAP connection handler.


            DN ldapListenerDN = DN.decode(DN_LDAP_CONNECTION_HANDLER);


            ConfigEntry configEntry =


              configHandler.getConfigEntry(ldapListenerDN);




          if (ldapPort.isPresent())


          {


            // Use the key manager specified for the LDAP connection handler.


            configEntry.putConfigAttribute(certNickNameAttr);


          }




          if (ldapsPort.isPresent())


          else


          {


            configEntry.removeConfigAttribute(


                ATTR_SSL_CERT_NICKNAME.toLowerCase());


          }




            // Use the key manager specified for the LDAPS connection handler.


            DN ldapsListenerDN = DN.decode(DN_LDAPS_CONNECTION_HANDLER);


            ConfigEntry configEntry =


              configHandler.getConfigEntry(ldapsListenerDN);




          configEntry = configHandler.getConfigEntry(ldapsListenerDN);


          if (ldapsPort.isPresent())


          {


            configEntry.putConfigAttribute(certNickNameAttr);


          }




          if (jmxPort.isPresent())


          else


          {


            configEntry.removeConfigAttribute(


                ATTR_SSL_CERT_NICKNAME.toLowerCase());


          }




            certNickNameAttr = new StringConfigAttribute(ATTR_SSL_CERT_NICKNAME,


                INFO_JMX_CONNHANDLER_DESCRIPTION_SSL_CERT_NICKNAME.get(),


                    false, false, true, certNickName.getValue());




            // Use the key manager specified for the JMX connection handler.


            DN jmxListenerDN = DN.decode(DN_JMX_CONNECTION_HANDLER);


            ConfigEntry configEntry =


              configHandler.getConfigEntry(jmxListenerDN);




          configEntry = configHandler.getConfigEntry(jmxListenerDN);


          if (jmxPort.isPresent())


          {


            configEntry.putConfigAttribute(certNickNameAttr);


          }


          else


          {


            configEntry.removeConfigAttribute(


                ATTR_SSL_CERT_NICKNAME.toLowerCase());


          }


        }


        catch (Exception e)


        {


@@ -1127,8 +1137,6 @@


      {


        try


        {


          if (ldapPort.isPresent())


          {


            // Use the key manager specified for the LDAP connection handler.


            DN ldapListenerDN = DN.decode(DN_LDAP_CONNECTION_HANDLER);


            ConfigEntry configEntry =


@@ -1136,30 +1144,21 @@




            configEntry.removeConfigAttribute(


                ATTR_SSL_CERT_NICKNAME.toLowerCase());


          }




          if (ldapsPort.isPresent())


          {


            // Use the key manager specified for the LDAPS connection handler.


            DN ldapsListenerDN = DN.decode(DN_LDAPS_CONNECTION_HANDLER);


            ConfigEntry configEntry =


              configHandler.getConfigEntry(ldapsListenerDN);


          configEntry = configHandler.getConfigEntry(ldapsListenerDN);




            configEntry.removeConfigAttribute(


                ATTR_SSL_CERT_NICKNAME.toLowerCase());


          }




          if (jmxPort.isPresent())


          {


            // Use the key manager specified for the JMX connection handler.


            DN jmxListenerDN = DN.decode(DN_JMX_CONNECTION_HANDLER);


            ConfigEntry configEntry =


              configHandler.getConfigEntry(jmxListenerDN);


          configEntry = configHandler.getConfigEntry(jmxListenerDN);




            configEntry.removeConfigAttribute(


                ATTR_SSL_CERT_NICKNAME.toLowerCase());


          }


        }


        catch (Exception e)


        {


          Message message = ERR_CONFIGDS_CANNOT_UPDATE_CERT_NICKNAME.get(