• Home
• org.elasticsearch.plugin
• x-pack-core
• 7.12.1
• source code
• CertificateTrustRestrictions.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.elasticsearch.xpack.core.ssl.CertificateTrustRestrictions Maven / Gradle / Ivy

/*
 * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
 * or more contributor license agreements. Licensed under the Elastic License
 * 2.0; you may not use this file except in compliance with the Elastic License
 * 2.0.
 */
package org.elasticsearch.xpack.core.ssl;

import org.elasticsearch.xpack.core.security.support.Automatons;

import java.util.Collection;
import java.util.Collections;
import java.util.Set;
import java.util.function.Predicate;
import java.util.stream.Collectors;

/**
 * Im memory representation of the trusted names for a "trust group".
 *
 * @see RestrictedTrustManager
 */
class CertificateTrustRestrictions {

    private final Set> trustedNames;

    CertificateTrustRestrictions(Collection trustedNames) {
        this.trustedNames = trustedNames.stream().map(Automatons::predicate).collect(Collectors.toSet());
    }

    /**
     * @return The names (X509 certificate subjectAlternateNames) of the nodes that are
     * allowed to connect to this cluster (for the targeted interface) .
     */
    Set> getTrustedNames() {
        return Collections.unmodifiableSet(trustedNames);
    }

    @Override
    public String toString() {
        return "{trustedNames=" + trustedNames + '}';
    }
}