• Home
• io.javalin.community.ssl
• ssl-plugin
• 6.3.0
• source code
• TrustConfig.kt

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

io.javalin.community.ssl.TrustConfig.kt Maven / Gradle / Ivy

package io.javalin.community.ssl

import nl.altindag.ssl.util.CertificateUtils
import nl.altindag.ssl.util.KeyStoreUtils
import java.io.InputStream
import java.nio.file.Paths
import java.security.KeyStore
import java.security.cert.Certificate

/**
 * Configuration for the trust store, used to verify the identity of the clients.
 * Using this configuration, the server will only accept connections from clients that are trusted.
 * If no trust store is configured, the server will accept any client.
 */
class TrustConfig {

    private var certificateMutableList: MutableList = ArrayList()

    /**
     * List of certificates to be trusted, can be loaded using the helper methods or directly.
     * This list is complementary to the keys
     */
    val certificates: List = certificateMutableList

    var keyStoreMutableList: MutableList = ArrayList()

    /**
     * List of KeyStores to be trusted, can be loaded using the helper methods or directly.
     */
    var keyStore: List = keyStoreMutableList

    ///////////////////////////////////////////////////////////////
    // Certificate Loading Methods (PEM, P7B and DER)
    ///////////////////////////////////////////////////////////////
    /**
     * Load certificate data from a given path in the system.
     * The certificate can be in PEM, P7B/PKCS#7 or DER format.
     *
     * @param certificatePath path to the certificate file.
     */
    fun certificateFromPath(certificatePath: String) {
        certificateMutableList.addAll(CertificateUtils.loadCertificate(Paths.get(certificatePath)))
    }

    /**
     * Load certificate data from the classpath.
     * The certificate can be in PEM, P7B/PKCS#7 or DER format.
     *
     * @param certificateFile The name of the certificate file in the classpath.
     */
    fun certificateFromClasspath(certificateFile: String) {
        certificateMutableList.addAll(CertificateUtils.loadCertificate(certificateFile))
    }

    /**
     * Load certificate data from a given input stream.
     * The certificate can be in PEM, P7B/PKCS#7 or DER format.
     *
     * @param certificateInputStream input stream to the certificate file.
     */
    fun certificateFromInputStream(certificateInputStream: InputStream) {
        certificateMutableList.addAll(CertificateUtils.loadCertificate(certificateInputStream))
    }

    /**
     * Load P7B certificate data from a given string.
     * The certificate must be in P7B/PKCS#7 format.
     *
     * @param certificateString P7B encoded certificate.
     */
    fun p7bCertificateFromString(certificateString: String) {
        certificateMutableList.addAll(CertificateUtils.parseP7bCertificate(certificateString))
    }

    /**
     * Load pem formatted identity data from a given string.
     * The certificate must be in PEM format.
     * @param certificateString PEM encoded certificate.
     */
    fun pemFromString(certificateString: String) {
        certificateMutableList.addAll(CertificateUtils.parsePemCertificate(certificateString))
    }
    ///////////////////////////////////////////////////////////////
    // Trust Store Loading Methods (JKS, PKCS12)
    ///////////////////////////////////////////////////////////////
    /**
     * Load a trust store from a given path in the system.
     * The trust store can be in JKS or PKCS12 format.
     *
     * @param trustStorePath path to the trust store file.
     * @param trustStorePassword password for the trust store.
     */
    fun trustStoreFromPath(trustStorePath: String, trustStorePassword: String) {
        keyStoreMutableList.add(KeyStoreUtils.loadKeyStore(Paths.get(trustStorePath), trustStorePassword.toCharArray()))
    }

    /**
     * Load a trust store from a given input stream.
     * The trust store can be in JKS or PKCS12 format.
     *
     * @param trustStoreInputStream input stream to the trust store file.
     * @param trustStorePassword password for the trust store.
     */
    fun trustStoreFromInputStream(trustStoreInputStream: InputStream, trustStorePassword: String) {
        keyStoreMutableList.add(KeyStoreUtils.loadKeyStore(trustStoreInputStream, trustStorePassword.toCharArray()))
    }

    /**
     * Load a trust store from the classpath.
     * @param trustStoreFile The name of the trust store file in the classpath.
     * @param trustStorePassword password for the trust store.
     */
    fun trustStoreFromClasspath(trustStoreFile: String, trustStorePassword: String) {
        keyStoreMutableList.add(KeyStoreUtils.loadKeyStore(trustStoreFile, trustStorePassword.toCharArray()))
    }
}