org.picketlink.identity.federation.core.interfaces

Interface TrustKeyManager

All Known Implementing Classes:

KeyStoreKeyManager

public interface TrustKeyManager

Key Manager interface used in trust decisions

Since:

Jan 22, 2009

Author:

Anil.Saldhana@redhat.com

Method Summary

Methods

Modifier and Type	Method and Description
void	addAdditionalOption(String key, Object value) Add general options
Object	getAdditionalOption(String key) Get additional option
Certificate	getCertificate(String alias) Get the certificate given an alias
SecretKey	getEncryptionKey(String domain, String encryptionAlgorithm, int keyLength) Given a domain, obtain a secret key
PublicKey	getPublicKey(String alias) Get a Public Key given an alias
PrivateKey	getSigningKey() Get the Signing Key
KeyPair	getSigningKeyPair() Constructs a KeyPair instance containing the signing key (PrivateKey) and associated PublicKey.
PublicKey	getValidatingKey(String domain) Get the Validating Public Key of the domain
void	setAuthProperties(List<org.picketlink.config.federation.AuthPropertyType> authList) Provide a set of properties used for authentication into the storage of keys - keystore, ldap, db, HSM etc
void	setValidatingAlias(List<org.picketlink.config.federation.KeyValueType> aliases) Set a list of (domain,alias) tuple to trust domains The alias is a string that represents the validating key stored for a domain

Method Detail

setAuthProperties

void setAuthProperties(List<org.picketlink.config.federation.AuthPropertyType> authList)
                       throws org.picketlink.common.exceptions.TrustKeyConfigurationException,
                              org.picketlink.common.exceptions.TrustKeyProcessingException

Provide a set of properties used for authentication into the storage of keys - keystore, ldap, db, HSM etc

Parameters:

authList -

Throws:

{@link - IOException}

org.picketlink.common.exceptions.TrustKeyConfigurationException

org.picketlink.common.exceptions.TrustKeyProcessingException

setValidatingAlias

void setValidatingAlias(List<org.picketlink.config.federation.KeyValueType> aliases)
                        throws org.picketlink.common.exceptions.TrustKeyConfigurationException,
                               org.picketlink.common.exceptions.TrustKeyProcessingException

Set a list of (domain,alias) tuple to trust domains The alias is a string that represents the validating key stored for a domain

Parameters:

aliases -

Throws:

{@link - IOException}

org.picketlink.common.exceptions.TrustKeyConfigurationException

org.picketlink.common.exceptions.TrustKeyProcessingException

getSigningKey

PrivateKey getSigningKey()
                         throws org.picketlink.common.exceptions.TrustKeyConfigurationException,
                                org.picketlink.common.exceptions.TrustKeyProcessingException

Get the Signing Key

Returns:

Throws:

{@link - CertificateException}

org.picketlink.common.exceptions.TrustKeyConfigurationException

org.picketlink.common.exceptions.TrustKeyProcessingException

getSigningKeyPair

KeyPair getSigningKeyPair()
                          throws org.picketlink.common.exceptions.TrustKeyConfigurationException,
                                 org.picketlink.common.exceptions.TrustKeyProcessingException

Constructs a KeyPair instance containing the signing key (PrivateKey) and associated PublicKey.

Returns:

the constructed KeyPair object.

Throws:

org.picketlink.common.exceptions.TrustKeyConfigurationException

org.picketlink.common.exceptions.TrustKeyProcessingException

getCertificate

Certificate getCertificate(String alias)
                           throws org.picketlink.common.exceptions.TrustKeyConfigurationException,
                                  org.picketlink.common.exceptions.TrustKeyProcessingException

Get the certificate given an alias

Parameters:

alias -

Returns:

Throws:

{@link - CertificateException}

org.picketlink.common.exceptions.TrustKeyConfigurationException

org.picketlink.common.exceptions.TrustKeyProcessingException

getPublicKey

PublicKey getPublicKey(String alias)
                       throws org.picketlink.common.exceptions.TrustKeyConfigurationException,
                              org.picketlink.common.exceptions.TrustKeyProcessingException

Get a Public Key given an alias

Parameters:

alias -

Returns:

Throws:

{@link - CertificateException}

org.picketlink.common.exceptions.TrustKeyConfigurationException

org.picketlink.common.exceptions.TrustKeyProcessingException

getEncryptionKey

SecretKey getEncryptionKey(String domain,
                         String encryptionAlgorithm,
                         int keyLength)
                           throws org.picketlink.common.exceptions.TrustKeyConfigurationException,
                                  org.picketlink.common.exceptions.TrustKeyProcessingException

Given a domain, obtain a secret key

Parameters:

domain -

encryptionAlgorithm - Encryption Algorithm

keyLength - length of keys

Returns:

Throws:

org.picketlink.common.exceptions.TrustKeyConfigurationException

org.picketlink.common.exceptions.TrustKeyProcessingException

See Also:

EncryptionKeyUtil}

getValidatingKey

PublicKey getValidatingKey(String domain)
                           throws org.picketlink.common.exceptions.TrustKeyConfigurationException,
                                  org.picketlink.common.exceptions.TrustKeyProcessingException

Get the Validating Public Key of the domain

Parameters:

domain -

Returns:

Throws:

org.picketlink.common.exceptions.TrustKeyConfigurationException

org.picketlink.common.exceptions.TrustKeyProcessingException

addAdditionalOption

void addAdditionalOption(String key,
                       Object value)

Add general options

Parameters:

key -

value -

getAdditionalOption

Object getAdditionalOption(String key)

Get additional option

Parameters:

key -

Returns: