From d3a10338d643cf04e89e577ba496c547e0bf7516 Mon Sep 17 00:00:00 2001
From: neil_a_wilson <neil_a_wilson@localhost>
Date: Wed, 28 Feb 2007 21:01:32 +0000
Subject: [PATCH] Add a new key manager which provides the ability to specify which certificate should be presented based on its alias (aka its nickname).  This is used both by server-side code which needs to present a certificate to clients, as well as by client-side code which needs to present a certificate to the server.

---
 opends/src/server/org/opends/server/tools/StopDS.java |   20 ++++++++++++++++++--
 1 files changed, 18 insertions(+), 2 deletions(-)

diff --git a/opends/src/server/org/opends/server/tools/StopDS.java b/opends/src/server/org/opends/server/tools/StopDS.java
index 6c1bc93..7a7fe2e 100644
--- a/opends/src/server/org/opends/server/tools/StopDS.java
+++ b/opends/src/server/org/opends/server/tools/StopDS.java
@@ -22,7 +22,7 @@
  * CDDL HEADER END
  *
  *
- *      Portions Copyright 2006 Sun Microsystems, Inc.
+ *      Portions Copyright 2006-2007 Sun Microsystems, Inc.
  */
 package org.opends.server.tools;
 
@@ -176,6 +176,7 @@
     IntegerArgument   port;
     StringArgument    bindDN;
     StringArgument    bindPW;
+    StringArgument    certNickname;
     StringArgument    host;
     StringArgument    keyStoreFile;
     StringArgument    keyStorePW;
@@ -276,6 +277,11 @@
                                              MSGID_STOPDS_DESCRIPTION_KSPWFILE);
       argParser.addArgument(keyStorePWFile);
 
+      certNickname = new StringArgument("certnickname", 'N', "certNickname",
+                                        false, false, true, "{nickname}", null,
+                                        null, MSGID_DESCRIPTION_CERT_NICKNAME);
+      argParser.addArgument(certNickname);
+
       trustStoreFile = new StringArgument("truststorefile", 'P',
                                           "trustStoreFile", false, false, true,
                                           "{trustStoreFile}", null, null,
@@ -490,9 +496,19 @@
     {
       try
       {
+        String clientAlias;
+        if (certNickname.isPresent())
+        {
+          clientAlias = certNickname.getValue();
+        }
+        else
+        {
+          clientAlias = null;
+        }
+
         SSLConnectionFactory sslConnectionFactory = new SSLConnectionFactory();
         sslConnectionFactory.init(trustAll.isPresent(), keyStoreFile.getValue(),
-                                  keyStorePW.getValue(),
+                                  keyStorePW.getValue(), clientAlias,
                                   trustStoreFile.getValue(),
                                   trustStorePW.getValue());
 

--
Gitblit v1.10.0