All Downloads are FREE. Search and download functionalities are using the official Maven repository.

com.linecorp.armeria.spring.Ssl Maven / Gradle / Ivy

/*
 * Copyright 2019 LINE Corporation
 *
 * LINE Corporation licenses this file to you under the Apache License,
 * version 2.0 (the "License"); you may not use this file except in compliance
 * with the License. You may obtain a copy of the License at:
 *
 *   https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 * License for the specific language governing permissions and limitations
 * under the License.
 */
/*
 * Copyright 2012-2018 the original author or authors.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package com.linecorp.armeria.spring;

import java.util.List;

import com.linecorp.armeria.common.annotation.Nullable;

import io.netty.handler.ssl.ClientAuth;
import io.netty.handler.ssl.SslProvider;

/**
 * Simple server-independent abstraction for SSL configuration.
 *
 * @author Andy Wilkinson
 * @author Vladimir Tsanev
 * @author Stephane Nicoll
 */
public class Ssl {
    private boolean enabled = true;

    @Nullable
    private SslProvider provider;

    @Nullable
    private ClientAuth clientAuth;

    @Nullable
    private List ciphers;

    @Nullable
    private List enabledProtocols;

    @Nullable
    private String keyAlias;

    @Nullable
    private String keyPassword;

    @Nullable
    private String keyStore;

    @Nullable
    private String keyStorePassword;

    @Nullable
    private String keyStoreType;

    @Nullable
    private String keyStoreProvider;

    @Nullable
    private String trustStore;

    @Nullable
    private String trustStorePassword;

    @Nullable
    private String trustStoreType;

    @Nullable
    private String trustStoreProvider;

    /**
     * Returns whether to enable SSL support.
     * @return whether to enable SSL support
     */
    public boolean isEnabled() {
        return enabled;
    }

    /**
     * Enables (or disables) SSL support.
     */
    public Ssl setEnabled(boolean enabled) {
        this.enabled = enabled;
        return this;
    }

    /**
     * Returns Netty SSL Provider.
     * @return Netty SSL Provider
     */
    @Nullable
    public SslProvider getProvider() {
        return provider;
    }

    /**
     * Sets Netty SSL Provider namely JDK or OPENSSL  {@link SslProvider}.
     * @param provider Netty SSL Provider
     */
    public void setProvider(SslProvider provider) {
        this.provider = provider;
    }

    /**
     * Returns whether client authentication is not wanted ("none"), wanted ("want") or
     * needed ("need"). Requires a trust store.
     * @return the {@link ClientAuth} to use
     */
    @Nullable
    public ClientAuth getClientAuth() {
        return clientAuth;
    }

    /**
     * Sets whether the client authentication is not none ({@link ClientAuth#NONE}), optional
     * ({@link ClientAuth#OPTIONAL}) or required ({@link ClientAuth#REQUIRE}).
     */
    public Ssl setClientAuth(@Nullable ClientAuth clientAuth) {
        this.clientAuth = clientAuth;
        return this;
    }

    /**
     * Returns the supported SSL ciphers.
     * @return the supported SSL ciphers
     */
    @Nullable
    public List getCiphers() {
        return ciphers;
    }

    /**
     * Sets the supported SSL ciphers.
     */
    public Ssl setCiphers(@Nullable List ciphers) {
        this.ciphers = ciphers;
        return this;
    }

    /**
     * Returns the enabled SSL protocols.
     * @return the enabled SSL protocols.
     */
    @Nullable
    public List getEnabledProtocols() {
        return enabledProtocols;
    }

    /**
     * Sets the enabled SSL protocols.
     */
    public Ssl setEnabledProtocols(@Nullable List enabledProtocols) {
        this.enabledProtocols = enabledProtocols;
        return this;
    }

    /**
     * Returns the alias that identifies the key in the key store.
     * @return the key alias
     */
    @Nullable
    public String getKeyAlias() {
        return keyAlias;
    }

    /**
     * Sets the alias that identifies the key in the key store.
     */
    public Ssl setKeyAlias(String keyAlias) {
        this.keyAlias = keyAlias;
        return this;
    }

    /**
     * Returns the password used to access the key in the key store.
     * @return the key password
     */
    @Nullable
    public String getKeyPassword() {
        return keyPassword;
    }

    /**
     * Sets the password used to access the key in the key store.
     */
    public Ssl setKeyPassword(String keyPassword) {
        this.keyPassword = keyPassword;
        return this;
    }

    /**
     * Returns the path to the key store that holds the SSL certificate (typically a jks
     * file).
     * @return the path to the key store
     */
    @Nullable
    public String getKeyStore() {
        return keyStore;
    }

    /**
     * Sets the path to the key store that holds the SSL certificate (typically a jks file).
     */
    public Ssl setKeyStore(String keyStore) {
        this.keyStore = keyStore;
        return this;
    }

    /**
     * Returns the password used to access the key store.
     * @return the key store password
     */
    @Nullable
    public String getKeyStorePassword() {
        return keyStorePassword;
    }

    /**
     * Sets the password used to access the key store.
     */
    public Ssl setKeyStorePassword(String keyStorePassword) {
        this.keyStorePassword = keyStorePassword;
        return this;
    }

    /**
     * Returns the type of the key store.
     * @return the key store type
     */
    @Nullable
    public String getKeyStoreType() {
        return keyStoreType;
    }

    /**
     * Sets the type of the key store.
     */
    public Ssl setKeyStoreType(String keyStoreType) {
        this.keyStoreType = keyStoreType;
        return this;
    }

    /**
     * Returns the provider for the key store.
     * @return the key store provider
     */
    @Nullable
    public String getKeyStoreProvider() {
        return keyStoreProvider;
    }

    /**
     * Sets the provider for the key store.
     */
    public Ssl setKeyStoreProvider(String keyStoreProvider) {
        this.keyStoreProvider = keyStoreProvider;
        return this;
    }

    /**
     * Returns the trust store that holds SSL certificates.
     * @return the trust store
     */
    @Nullable
    public String getTrustStore() {
        return trustStore;
    }

    /**
     * Sets the trust store that holds SSL certificates.
     */
    public Ssl setTrustStore(String trustStore) {
        this.trustStore = trustStore;
        return this;
    }

    /**
     * Returns the password used to access the trust store.
     * @return the trust store password
     */
    @Nullable
    public String getTrustStorePassword() {
        return trustStorePassword;
    }

    /**
     * Sets the password used to access the trust store.
     */
    public Ssl setTrustStorePassword(String trustStorePassword) {
        this.trustStorePassword = trustStorePassword;
        return this;
    }

    /**
     * Returns the type of the trust store.
     * @return the trust store type
     */
    @Nullable
    public String getTrustStoreType() {
        return trustStoreType;
    }

    /**
     * Sets the type of the trust store.
     */
    public Ssl setTrustStoreType(String trustStoreType) {
        this.trustStoreType = trustStoreType;
        return this;
    }

    /**
     * Returns the provider for the trust store.
     * @return the trust store provider
     */
    @Nullable
    public String getTrustStoreProvider() {
        return trustStoreProvider;
    }

    /**
     * Sets the provider for the trust store.
     */
    public Ssl setTrustStoreProvider(String trustStoreProvider) {
        this.trustStoreProvider = trustStoreProvider;
        return this;
    }
}




© 2015 - 2025 Weber Informatics LLC | Privacy Policy