Package org.jgroups.auth
Class X509Token
- java.lang.Object
- 
- org.jgroups.auth.AuthToken
- 
- org.jgroups.auth.X509Token
 
 
- 
- All Implemented Interfaces:
- Streamable
 
 public class X509Token extends AuthToken This is an example of using a preshared token that is encrypted using an X509 certificate for authentication purposes. All members of the group have to have the same string value in the JGroups config. This example uses certificates contained within a specified keystore. Configuration parameters for this example are shown below: - keystore_type = JKS(default)/PKCS12 - see http://java.sun.com/j2se/1.4.2/docs/guide/security/CryptoSpec.html#AppA
- keystore_path (required) = the location of the keystore
- keystore_password (required) = the password of the keystore
- cert_alias (required) = the alias of the certification within the keystore
- cert_password = the password of the certification within the keystore
- auth_value (required) = the string to encrypt
- cipher_type = RSA(default)/AES/Blowfish/DES/DESede/PBEWithMD5AndDES/PBEWithHmacSHA1AndDESede/RC2/RC4/RC5 - see http://java.sun.com/j2se/1.4.2/docs/guide/security/jce/JCERefGuide.html#AppA
 - Author:
- Chris Mills, Bela Ban
- See Also:
- AuthToken
 
- 
- 
Field SummaryFields Modifier and Type Field Description protected java.lang.Stringauth_valueprotected java.lang.Stringcert_aliasprotected java.lang.Stringcipher_typeprotected java.lang.Stringkeystore_pathprotected java.lang.Stringkeystore_type
 - 
Constructor SummaryConstructors Constructor Description X509Token()
 - 
Method SummaryAll Methods Instance Methods Concrete Methods Modifier and Type Method Description booleanauthenticate(AuthToken token, Message msg)This method should be implemented to perform the actual authentication of joining members.X509TokenencryptedToken(byte[] buf)To be used for testing onlyjava.lang.StringgetName()Used to return the full package and class name of the implementation.voidreadFrom(java.io.DataInput in)Read the state of the current object (including superclasses) from instream Note that the input stream must not be closedvoidsetCertificate()Used during setup to get the certification from the keystore and encrypt the auth_value with the private keyvoidsetCertPassword(java.lang.String pwd)voidsetKeyStorePassword(java.lang.String pwd)intsize()The size of the marshalled AuthTokenvoidwriteTo(java.io.DataOutput out)Write the entire state of the current object (including superclasses) to outstream.
 
- 
- 
- 
Method Detail- 
setCertPasswordpublic void setCertPassword(java.lang.String pwd) 
 - 
setKeyStorePasswordpublic void setKeyStorePassword(java.lang.String pwd) 
 - 
encryptedTokenpublic X509Token encryptedToken(byte[] buf) To be used for testing only
 - 
getNamepublic java.lang.String getName() Description copied from class:AuthTokenUsed to return the full package and class name of the implementation. This is used by the AUTH protocol to create an instance of the implementation.
 - 
authenticatepublic boolean authenticate(AuthToken token, Message msg) Description copied from class:AuthTokenThis method should be implemented to perform the actual authentication of joining members.- Specified by:
- authenticatein class- AuthToken
- Parameters:
- token- the token sent by the joiner
- msg- the Message object containing the actual JOIN_REQ
- Returns:
- true if authenticaion passed or false if it failed.
 
 - 
writeTopublic void writeTo(java.io.DataOutput out) throws java.io.IOExceptionDescription copied from interface:StreamableWrite the entire state of the current object (including superclasses) to outstream. Note that the output stream must not be closed- Throws:
- java.io.IOException
 
 - 
readFrompublic void readFrom(java.io.DataInput in) throws java.io.IOExceptionDescription copied from interface:StreamableRead the state of the current object (including superclasses) from instream Note that the input stream must not be closed- Throws:
- java.io.IOException
 
 - 
sizepublic int size() Description copied from class:AuthTokenThe size of the marshalled AuthToken
 - 
setCertificatepublic void setCertificate() throws java.security.KeyStoreException, java.io.IOException, java.security.NoSuchAlgorithmException, java.security.cert.CertificateException, javax.crypto.NoSuchPaddingException, java.security.InvalidKeyException, javax.crypto.IllegalBlockSizeException, javax.crypto.BadPaddingException, java.security.UnrecoverableEntryExceptionUsed during setup to get the certification from the keystore and encrypt the auth_value with the private key- Throws:
- java.security.KeyStoreException
- java.io.IOException
- java.security.NoSuchAlgorithmException
- java.security.cert.CertificateException
- javax.crypto.NoSuchPaddingException
- java.security.InvalidKeyException
- javax.crypto.IllegalBlockSizeException
- javax.crypto.BadPaddingException
- java.security.UnrecoverableEntryException
 
 
- 
 
-