• Home
• org.apache.tomee
• openejb-client
• 7.0.3
• source code
• SSLContextBuilder.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.apache.openejb.client.SSLContextBuilder Maven / Gradle / Ivy

/**
 * Licensed to the Apache Software Foundation (ASF) under one or more
 * contributor license agreements.  See the NOTICE file distributed with
 * this work for additional information regarding copyright ownership.
 * The ASF licenses this file to You under the Apache License, Version 2.0
 * (the "License"); you may not use this file except in compliance with
 * the License.  You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package org.apache.openejb.client;

import javax.net.ssl.*;
import java.io.FileInputStream;
import java.security.KeyManagementException;
import java.security.KeyStore;
import java.security.NoSuchAlgorithmException;
import java.util.Map;

public class SSLContextBuilder {
    private Map params;

    public SSLContextBuilder(Map params) {
        this.params = params;
    }

    public SSLContext build() throws NoSuchAlgorithmException, KeyManagementException {
        final KeyManager[] keyManagers = initKeyManager();
        final TrustManager[] trustManagers = initTrustManager();
        final SSLContext sslContext = SSLContext.getInstance("SSL");
        sslContext.init(keyManagers, trustManagers, new java.security.SecureRandom());
        return sslContext;
    }

    private TrustManager[] initTrustManager() {
        final String trustStore = params.get("sslTrustStore");
        if (trustStore == null) {
            return null;
        }

        try {
            String sslTrustStoreType = params.get("sslTrustStoreType");
            KeyStore ks = KeyStore.getInstance(null == sslTrustStoreType ? KeyStore.getDefaultType() : sslTrustStoreType);
            String trustStorePwd = params.get("sslTrustStorePassword");
            char[] pwd;
            if (trustStorePwd != null) {
                pwd = trustStorePwd.toCharArray();
            } else {
                pwd = "changeit".toCharArray();
            }
            FileInputStream fis = new FileInputStream(trustStore);
            try {
                ks.load(fis, pwd);
            } finally {
                fis.close();
            }
            String sslTrustStoreProvider = params.get("sslTrustStoreProvider");
            TrustManagerFactory tmf = TrustManagerFactory.getInstance(null == sslTrustStoreProvider ? TrustManagerFactory.getDefaultAlgorithm() : sslTrustStoreProvider);
            tmf.init(ks);
            return tmf.getTrustManagers();
        } catch (final Exception e) {
            throw new ClientRuntimeException(e.getMessage(), e);
        }
    }

    private KeyManager[] initKeyManager() {
        final String keyStore = params.get("sslKeyStore");
        if (keyStore == null) {
            return null;
        }

        try {
            String sslKeyStoreType = params.get("sslKeyStoreType");
            KeyStore ks = KeyStore.getInstance(null == sslKeyStoreType ? KeyStore.getDefaultType() : sslKeyStoreType);
            String keyStorePassword = params.get("sslKeyStorePassword");
            char[] pwd;
            if (keyStorePassword != null) {
                pwd = keyStorePassword.toCharArray();
            } else {
                pwd = "changeit".toCharArray();
            }
            FileInputStream fis = new FileInputStream(keyStore);
            try {
                ks.load(fis, pwd);
            } finally {
                fis.close();
            }
            String sslKeyStoreProvider = params.get("sslKeyStoreProvider");
            KeyManagerFactory kmf = KeyManagerFactory.getInstance(null == sslKeyStoreProvider ? KeyManagerFactory.getDefaultAlgorithm() : sslKeyStoreProvider);
            kmf.init(ks, pwd);
            return kmf.getKeyManagers();
        } catch (final Exception e) {
            throw new ClientRuntimeException(e.getMessage(), e);
        }
    }
}