com.helger.phase4.euctp.Phase4EuCtpHttpClientSettings Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of phase4-euctp-client Show documentation
Show all versions of phase4-euctp-client Show documentation
euctp AS4 client for outgoing transmissions
/*
* Copyright (C) 2024 Philip Helger (www.helger.com)
* philip[at]helger[dot]com
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package com.helger.phase4.euctp;
import java.security.GeneralSecurityException;
import java.security.KeyStore;
import javax.annotation.Nonnull;
import javax.annotation.Nullable;
import javax.net.ssl.SSLContext;
import org.apache.hc.core5.ssl.SSLContextBuilder;
import org.apache.hc.core5.ssl.SSLContexts;
import org.apache.hc.core5.util.Timeout;
import com.helger.http.tls.ETLSVersion;
import com.helger.http.tls.TLSConfigurationMode;
import com.helger.httpclient.HttpClientSettings;
import com.helger.phase4.CAS4;
import com.helger.phase4.CAS4Version;
/**
* Special {@link HttpClientSettings} with better defaults for euctp.
*
* @author Ulrik Stehling
*/
public class Phase4EuCtpHttpClientSettings extends HttpClientSettings
{
public static final Timeout DEFAULT_EUCTP_CONNECTION_REQUEST_TIMEOUT = Timeout.ofSeconds (1);
public static final Timeout DEFAULT_EUCTP_CONNECT_TIMEOUT = Timeout.ofSeconds (5);
public static final Timeout DEFAULT_EUCTP_RESPONSE_TIMEOUT = Timeout.ofSeconds (100);
public Phase4EuCtpHttpClientSettings (@Nullable final KeyStore aKeyStore, @Nullable final char [] aKeyPassword)
throws GeneralSecurityException
{
SSLContextBuilder aSSLContextBuilder = SSLContexts.custom ().setProtocol (ETLSVersion.TLS_12.getID ());
if (aKeyStore != null && aKeyPassword != null)
{
aSSLContextBuilder = aSSLContextBuilder.loadKeyMaterial (aKeyStore, aKeyPassword);
}
final SSLContext aSSLContext = aSSLContextBuilder.build ();
setSSLContext (aSSLContext);
// Cipher Suite follow
// https://www.enisa.europa.eu/publications/algorithms-key-sizes-and-parameters-report
final TLSConfigurationMode aTLSConfigMode = new TLSConfigurationMode (new ETLSVersion [] { ETLSVersion.TLS_12,
ETLSVersion.TLS_13 },
new String [] {
// TLS
// 1.3
"TLS_AES_128_GCM_SHA256",
"TLS_AES_256_GCM_SHA384",
// TLS
// 1.2
"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256",
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384",
"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" });
setTLSConfigurationMode (aTLSConfigMode);
setConnectionRequestTimeout (DEFAULT_EUCTP_CONNECTION_REQUEST_TIMEOUT);
setConnectTimeout (DEFAULT_EUCTP_CONNECT_TIMEOUT);
setResponseTimeout (DEFAULT_EUCTP_RESPONSE_TIMEOUT);
// Set an explicit user agent
setUserAgent (CAS4.LIB_NAME + "/" + CAS4Version.BUILD_VERSION + " " + CAS4.LIB_URL);
}
@Nonnull
public static Phase4EuCtpHttpClientSettings createWithoutKeyStore () throws GeneralSecurityException
{
return new Phase4EuCtpHttpClientSettings (null, null);
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy