SslDomainImpl (proton-j 0.8.redhat-001 API)

java.lang.Object
- org.apache.qpid.proton.engine.impl.ssl.SslDomainImpl

All Implemented Interfaces:: ProtonSslEngineProvider, ProtonJSslDomain, SslDomain

public class SslDomainImpl
extends java.lang.Object
implements SslDomain, ProtonSslEngineProvider, ProtonJSslDomain

Nested Class Summary
- Nested classes/interfaces inherited from interface org.apache.qpid.proton.engine.SslDomain
  SslDomain.Factory, SslDomain.Mode, SslDomain.VerifyMode

Constructor Summary

Constructors
Constructor and Description
`SslDomainImpl()` Deprecated. This constructor's visibility will be reduced to the default scope in a future release. Client code outside this module should use a `EngineFactory` instead

Method Summary

Methods
Modifier and Type	Method and Description
`boolean`	`allowUnsecuredClient()`
`void`	`allowUnsecuredClient(boolean allowUnsecured)` Permit a server to accept connection requests from non-SSL clients.
`ProtonSslEngine`	`createSslEngine(SslPeerDetails peerDetails)` Returns an SSL engine.
`java.lang.String`	`getCertificateFile()`
`SslDomain.Mode`	`getMode()`
`SslDomain.VerifyMode`	`getPeerAuthentication()`
`java.lang.String`	`getPrivateKeyFile()`
`java.lang.String`	`getPrivateKeyPassword()`
`java.lang.String`	`getTrustedCaDb()`
`void`	`init(SslDomain.Mode mode)` Initialize the ssl domain object.
`void`	`setCredentials(java.lang.String certificateFile, java.lang.String privateKeyFile, java.lang.String privateKeyPassword)` Set the certificate that identifies the local node to the remote.
`void`	`setPeerAuthentication(SslDomain.VerifyMode verifyMode)` Configure the level of verification used on the peer certificate.
`void`	`setTrustedCaDb(java.lang.String certificateDb)` Configure the set of trusted CA certificates used by this node to verify peers.
`java.lang.String`	`toString()`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

- Constructor Detail
  - SslDomainImpl
```
@Deprecated
public SslDomainImpl()
```
    Deprecated. This constructor's visibility will be reduced to the default scope in a future release. Client code outside this module should use a EngineFactory instead
- Method Detail
  - init
```
public void init(SslDomain.Mode mode)
```
    Description copied from interface: SslDomain
    
    Initialize the ssl domain object. An SSL object be either an SSL server or an SSL client. It cannot be both. Those transports that will be used to accept incoming connection requests must be configured as an SSL server. Those transports that will be used to initiate outbound connections must be configured as an SSL client.
    
    Specified by:
    
    init in interface SslDomain
  - getMode
```
public SslDomain.Mode getMode()
```
    Specified by:
    
    getMode in interface SslDomain
  - setCredentials
```
public void setCredentials(java.lang.String certificateFile,
                  java.lang.String privateKeyFile,
                  java.lang.String privateKeyPassword)
```
    Description copied from interface: SslDomain
    
    Set the certificate that identifies the local node to the remote. This certificate establishes the identity for the local node. It will be sent to the remote if the remote needs to verify the identity of this node. This may be used for both SSL servers and SSL clients (if client authentication is required by the server).
    
    Specified by:
    
    setCredentials in interface SslDomain
    
    Parameters:
    certificateFile - path to file/database containing the identifying certificate.
    privateKeyFile - path to file/database containing the private key used to sign the certificate
    privateKeyPassword - the password used to sign the key, else null if key is not protected.
  - setTrustedCaDb
```
public void setTrustedCaDb(java.lang.String certificateDb)
```
    Description copied from interface: SslDomain
    
    Configure the set of trusted CA certificates used by this node to verify peers. If the local SSL client/server needs to verify the identity of the remote, it must validate the signature of the remote's certificate. This function sets the database of trusted CAs that will be used to verify the signature of the remote's certificate.
    
    Specified by:
    
    setTrustedCaDb in interface SslDomain
    
    Parameters:
    certificateDb - database of trusted CAs, used to authenticate the peer.
  - getTrustedCaDb
```
public java.lang.String getTrustedCaDb()
```
    Specified by:
    
    getTrustedCaDb in interface SslDomain
  - setPeerAuthentication
```
public void setPeerAuthentication(SslDomain.VerifyMode verifyMode)
```
    Description copied from interface: SslDomain
    
    Configure the level of verification used on the peer certificate. This method controls how the peer's certificate is validated, if at all. By default, neither servers nor clients attempt to verify their peers (SslDomain.VerifyMode.ANONYMOUS_PEER). Once certificates and trusted CAs are configured, peer verification can be enabled. In order to verify a peer, a trusted CA must be configured. See SslDomain.setTrustedCaDb(String).
    
    Specified by:
    
    setPeerAuthentication in interface SslDomain
    
    Parameters:
    verifyMode - the level of validation to apply to the peer
  - getPeerAuthentication
```
public SslDomain.VerifyMode getPeerAuthentication()
```
    Specified by:
    
    getPeerAuthentication in interface SslDomain
  - getPrivateKeyFile
```
public java.lang.String getPrivateKeyFile()
```
    Specified by:
    
    getPrivateKeyFile in interface SslDomain
  - getPrivateKeyPassword
```
public java.lang.String getPrivateKeyPassword()
```
    Specified by:
    
    getPrivateKeyPassword in interface SslDomain
  - getCertificateFile
```
public java.lang.String getCertificateFile()
```
    Specified by:
    
    getCertificateFile in interface SslDomain
  - allowUnsecuredClient
```
public void allowUnsecuredClient(boolean allowUnsecured)
```
    Description copied from interface: SslDomain
    
    Permit a server to accept connection requests from non-SSL clients. This configures the server to "sniff" the incoming client data stream, and dynamically determine whether SSL/TLS is being used. This option is disabled by default: only clients using SSL/TLS are accepted.
    
    Specified by:
    
    allowUnsecuredClient in interface SslDomain
  - allowUnsecuredClient
```
public boolean allowUnsecuredClient()
```
    Specified by:
    
    allowUnsecuredClient in interface SslDomain
  - createSslEngine
```
public ProtonSslEngine createSslEngine(SslPeerDetails peerDetails)
```
    Description copied from interface: ProtonSslEngineProvider
    
    Returns an SSL engine.
    
    Specified by:
    
    createSslEngine in interface ProtonSslEngineProvider
  - toString
```
public java.lang.String toString()
```
    Overrides:
    
    toString in class java.lang.Object

Class SslDomainImpl

Nested Class Summary

Nested classes/interfaces inherited from interface org.apache.qpid.proton.engine.SslDomain

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

SslDomainImpl

Method Detail

init

getMode

setCredentials

setTrustedCaDb

getTrustedCaDb

setPeerAuthentication

getPeerAuthentication

getPrivateKeyFile

getPrivateKeyPassword

getCertificateFile

allowUnsecuredClient

allowUnsecuredClient

createSslEngine

toString