Modifier and Type | Class and Description |
---|---|
class |
EACLsException
A class represents an acls exception.
|
Modifier and Type | Class and Description |
---|---|
class |
EAuthException
This class represents authentication exceptions.
|
class |
EAuthInternalError
An exception for authentication internal error.
|
class |
EAuthMgrNotFound
Exception for authentication manager not found.
|
class |
EAuthMgrPluginNotFound
Exception for authentication manager not found.
|
class |
EAuthUserError
Exception for invalid attribute value
|
class |
ECompSyntaxErr
An exception for DN component syntax error.
|
class |
EFormSubjectDN
An exception for Error formulating the subject name (X500Name)
|
class |
EInvalidCredentials
An exception for invalid credentials.
|
class |
EMissingCredential
Exception for missing a required authentication credential.
|
Modifier and Type | Method and Description |
---|---|
char[] |
ISharedToken.getSharedToken(java.math.BigInteger serialnum) |
char[] |
ISharedToken.getSharedToken(org.mozilla.jss.pkix.cmc.PKIData cmcData) |
char[] |
ISharedToken.getSharedToken(java.lang.String identification,
IAuthToken authToken) |
Modifier and Type | Method and Description |
---|---|
org.mozilla.jss.netscape.security.x509.X509CertImpl |
ICertAuthority.getCACert()
Returns CA's certificate implementaion.
|
Modifier and Type | Class and Description |
---|---|
class |
EAuthzAccessDenied
Exception for authorization failure
|
class |
EAuthzException
This class represents authorization exceptions.
|
class |
EAuthzInternalError
An exception for internal error for authorization.
|
class |
EAuthzMgrNotFound
Exception for authorization manager not found.
|
class |
EAuthzMgrPluginNotFound
Exception for authorization manager plugin not found.
|
class |
EAuthzUnknownOperation
Exception for operation unknown to the authorization manager
|
class |
EAuthzUnknownProtectedRes
Exception for protected resource unknown to the authorization manager
|
class |
EAuthzUnknownRealm |
Modifier and Type | Class and Description |
---|---|
class |
BadRequestDataException |
class |
EPropertyNotDefined
This class represents an exception thrown when a
property is not defined (empty string) the configuration store.
|
class |
EPropertyNotFound
This class represents an exception thrown when a
property is not found in the configuration store.
|
Modifier and Type | Method and Description |
---|---|
void |
IConfigStore.commit(boolean createBackup)
Store config into storage (file or LDAP).
|
void |
MetaInfo.delete(java.lang.String name)
Deletes an attribute value from this CertAttrSet.
|
void |
IAttrSet.delete(java.lang.String name)
Deletes an attribute value from this AttrSet.
|
void |
IConfigStoreEventListener.doConfigParams(java.lang.String action,
java.util.Hashtable<java.lang.String,java.lang.String> params)
Validates the config store parameters that changed
|
java.lang.Object |
MetaInfo.get(java.lang.String name)
Gets an attribute value.
|
java.lang.Object |
IAttrSet.get(java.lang.String name)
Gets an attribute value.
|
java.math.BigInteger |
IConfigStore.getBigInteger(java.lang.String name)
Retrieves the given property as a big integer.
|
java.math.BigInteger |
IConfigStore.getBigInteger(java.lang.String name,
java.math.BigInteger defval)
Retrieves the given property as a big integer.
|
boolean |
IConfigStore.getBoolean(java.lang.String name)
Retrieves the given property as a boolean.
|
boolean |
IConfigStore.getBoolean(java.lang.String name,
boolean defval)
Retrieves the given property as a boolean.
|
byte[] |
IConfigStore.getByteArray(java.lang.String name)
Retrieves the value of a property as a byte array.
|
byte[] |
IConfigStore.getByteArray(java.lang.String name,
byte[] defval)
Retrieves the value of a property as a byte array, using the
given default value if property is not present.
|
int |
IConfigStore.getInteger(java.lang.String name)
Retrieves the given property as an integer.
|
int |
IConfigStore.getInteger(java.lang.String name,
int defval)
Retrieves the given property as an integer.
|
java.util.Map<java.lang.String,java.lang.String> |
IConfigStore.getProperties()
Get properties as a map.
|
java.lang.String |
IConfigStore.getString(java.lang.String name)
Retrieves the value of the given property as a string.
|
java.lang.String |
IConfigStore.getString(java.lang.String name,
java.lang.String defval)
Retrieves the value of a given property as a string or the
given default value if the property is not present.
|
java.lang.Object |
IArgBlock.getValue(java.lang.Object n)
Retrieves argument value as object
|
java.math.BigInteger |
IArgBlock.getValueAsBigInteger(java.lang.String n)
Retrieves argument value as big integer.
|
boolean |
IArgBlock.getValueAsBoolean(java.lang.String name)
Gets boolean value.
|
int |
IArgBlock.getValueAsInt(java.lang.String n)
Retrieves argument value as integer.
|
KeyGenInfo |
IArgBlock.getValueAsKeyGenInfo(java.lang.String name,
KeyGenInfo def)
Gets KeyGenInfo
|
org.mozilla.jss.netscape.security.pkcs.PKCS10 |
IArgBlock.getValueAsPKCS10(java.lang.String name,
boolean checkheader)
Retrieves PKCS10
|
org.mozilla.jss.netscape.security.pkcs.PKCS10 |
IArgBlock.getValueAsPKCS10(java.lang.String name,
boolean checkheader,
org.mozilla.jss.netscape.security.pkcs.PKCS10 def)
Retrieves PKCS10
|
org.mozilla.jss.netscape.security.pkcs.PKCS10 |
IArgBlock.getValueAsRawPKCS10(java.lang.String name)
Gets PKCS10 request.
|
org.mozilla.jss.netscape.security.pkcs.PKCS10 |
IArgBlock.getValueAsRawPKCS10(java.lang.String name,
org.mozilla.jss.netscape.security.pkcs.PKCS10 def)
Gets PKCS10 request.
|
java.lang.String |
IArgBlock.getValueAsString(java.lang.String n)
Retrieves argument value as string.
|
org.mozilla.jss.netscape.security.pkcs.PKCS10 |
IArgBlock.getValuePKCS10(java.lang.String name,
org.mozilla.jss.netscape.security.pkcs.PKCS10 def)
Retrieves PKCS10
|
void |
BaseSubsystem.init(IConfigStore config)
Initializes this subsystem.
|
void |
ISubsystem.init(IConfigStore config)
Initializes this subsystem with the given configuration
store.
|
void |
IPluginImpl.init(ISubsystem sys,
java.lang.String instanceName,
java.lang.String className,
IConfigStore config)
Initializes this plugin instance.
|
void |
MetaInfo.set(java.lang.String name,
java.lang.Object obj)
Sets an attribute value.
|
void |
IAttrSet.set(java.lang.String name,
java.lang.Object obj)
Sets an attribute value within this AttrSet.
|
void |
BaseSubsystem.setId(java.lang.String id)
Sets the identifier of this subsystem.
|
void |
ISubsystem.setId(java.lang.String id)
Sets specific to this subsystem.
|
void |
ISubsystem.startup()
Notifies this subsystem if owner is in running mode.
|
void |
IConfigStoreEventListener.validateConfigParams(java.lang.String action,
java.util.Hashtable<java.lang.String,java.lang.String> params)
Called to validate the config store parameters that changed
|
Modifier and Type | Class and Description |
---|---|
class |
CADisabledException
Exception to throw when a (sub-)CA cannot perform an operation
because it is disabled.
|
class |
CAEnabledException
Exception to throw when an operation cannot be performed because
the CA to which the operation pertains is enabled.
|
class |
CAMissingCertException
Exception to throw when a (sub-)CA's signing certificate is not
(yet) present in the local NSSDB.
|
class |
CAMissingKeyException
Exception to throw when a (sub-)CA's signing key is not (yet)
present in the local NSSDB.
|
class |
CANotFoundException
Exception to throw when a (sub-)CA cannot be found.
|
class |
CANotLeafException
Exception to throw when an operation cannot be performed because
the CA to which the operation pertains is not a leaf CA (ie, has
sub-CAs).
|
class |
CATypeException
Exception to throw when an operation cannot be completed
because the CA is the wrong type (e.g., an operation that
only applies to lightweight CAs).
|
class |
ECAException
A class represents a CA exception.
|
class |
EErrorPublishCRL
A class represents a CA exception associated with publishing error.
|
class |
IssuerUnavailableException
Exception to throw during CA creation when requested CA
(issuer DN) already exists.
|
Modifier and Type | Method and Description |
---|---|
void |
ICrossCertPairSubsystem.importCert(byte[] certBytes)
"import" the CA cert cross-signed by another CA (potentially a
bridge CA) into internal ldap db.
|
void |
ICrossCertPairSubsystem.publishCertPairs()
publish all cert pairs, if publisher is on
|
Modifier and Type | Method and Description |
---|---|
IHttpConnection |
IHttpConnFactory.getConn()
Request access to a Ldap connection from the pool.
|
void |
IHttpConnFactory.returnConn(IHttpConnection conn)
Return connection to the factory.
|
IPKIMessage |
IHttpConnection.send(IPKIMessage tomsg)
Sends the PKI message to the remote authority.
|
boolean |
IConnector.send(IRequest req)
Sends the request to a remote authority.
|
HttpResponse |
IHttpConnection.send(java.lang.String msg)
Sends the message to the remote authority.
|
HttpResponse |
IConnector.send(java.lang.String op,
java.lang.String msg)
Sends the request to a remote authority.
|
void |
IHttpConnection.setRequestURI(java.lang.String uri)
Sets the HttpRequest URI before send
|
Modifier and Type | Class and Description |
---|---|
class |
EDBException
A class represents a database exception.
|
class |
EDBNotAvailException
Indicates internal db is down.
|
class |
EDBRecordNotFoundException
Indicates internal db is down.
|
Modifier and Type | Method and Description |
---|---|
void |
IDBSSession.abandon(netscape.ldap.LDAPSearchResults results) |
void |
IDBSSession.add(java.lang.String name,
IDBObj obj)
Adds object to backend database.
|
netscape.ldap.LDAPAttributeSet |
IDBRegistry.createLDAPAttributeSet(IDBObj obj)
Creates attribute set from object.
|
IDBObj |
IDBRegistry.createObject(netscape.ldap.LDAPAttributeSet attrs)
Creates object from attribute set.
|
<T extends IDBObj> |
IDBSSession.createVirtualList(java.lang.String base,
java.lang.String filter,
java.lang.String[] attrs)
Retrieves a list of objects.
|
<T extends IDBObj> |
IDBSSession.createVirtualList(java.lang.String base,
java.lang.String filter,
java.lang.String[] attrs,
java.lang.String[] sortKeys,
int pageSize)
Retrieves a list of objects.
|
<T extends IDBObj> |
IDBSSession.createVirtualList(java.lang.String base,
java.lang.String filter,
java.lang.String[] attrs,
java.lang.String sortKey,
int pageSize)
Retrieves a list of objects.
|
<T extends IDBObj> |
IDBSSession.createVirtualList(java.lang.String base,
java.lang.String filter,
java.lang.String[] attrs,
java.lang.String startFrom,
java.lang.String sortKey,
int pageSize)
Retrieves a list of objects.
|
void |
IDBSSession.delete(java.lang.String name)
Deletes object from database.
|
java.lang.String |
IDBRegistry.getFilter(java.lang.String filter)
Creates LDAP-based search filters with help of
registered mappers.
|
java.lang.String |
IDBRegistry.getFilter(java.lang.String filter,
IFilterConverter c)
Creates LDAP-based search filters with help of
registered mappers.
|
java.lang.String[] |
IDBRegistry.getLDAPAttributes(java.lang.String[] attrs)
Retrieves a list of LDAP attributes that are associated
with the given attributes.
|
void |
IDBAttrMapper.mapLDAPAttributeSetToObject(netscape.ldap.LDAPAttributeSet attrs,
java.lang.String name,
IDBObj parent)
Maps LDAP attributes into object, and puts the object
into 'parent'.
|
void |
IDBRegistry.mapObject(IDBObj parent,
java.lang.String name,
java.lang.Object obj,
netscape.ldap.LDAPAttributeSet attrs)
Maps object into LDAP attribute set.
|
void |
IDBAttrMapper.mapObjectToLDAPAttributeSet(IDBObj parent,
java.lang.String name,
java.lang.Object obj,
netscape.ldap.LDAPAttributeSet attrs)
Maps object attribute into LDAP attributes.
|
java.lang.String |
IDBAttrMapper.mapSearchFilter(java.lang.String name,
java.lang.String op,
java.lang.String value)
Maps search filters into LDAP search filter.
|
void |
IDBSSession.modify(java.lang.String name,
ModificationSet mods)
Modify an object in the database.
|
netscape.ldap.LDAPSearchResults |
IDBSSession.persistentSearch(java.lang.String base,
java.lang.String filter,
java.lang.String[] attrs)
Sets persistent search to retrieve modified
certificate records.
|
void |
IElementProcessor.process(java.lang.Object o)
Handles object
|
void |
IDBVirtualList.processElements(int startidx,
int endidx,
IElementProcessor ep)
Processes elements as soon as it arrives.
|
IDBObj |
IDBSSession.read(java.lang.String name)
Reads an object from the database.
|
IDBObj |
IDBSSession.read(java.lang.String name,
java.lang.String[] attrs)
Reads an object from the database, and only populates
the selected attributes.
|
IDBSearchResults |
IDBSSession.search(java.lang.String base,
java.lang.String filter)
Searchs for a list of objects that match the
filter.
|
IDBSearchResults |
IDBSSession.search(java.lang.String base,
java.lang.String filter,
int maxSize)
Searchs for a list of objects that match the
filter.
|
IDBSearchResults |
IDBSSession.search(java.lang.String base,
java.lang.String filter,
int maxSize,
int timeLimit)
Searchs for a list of objects that match the
filter.
|
IDBSearchResults |
IDBSSession.search(java.lang.String base,
java.lang.String filter,
int maxSize,
int timeLimit,
java.lang.String sortAttribute)
Searchs for a list of objects that match the
filter.
|
IDBSearchResults |
IDBSSession.search(java.lang.String base,
java.lang.String filter,
int maxSize,
java.lang.String sortAttribute)
Searchs for a list of objects that match the
filter.
|
IDBSearchResults |
IDBSSession.search(java.lang.String base,
java.lang.String filter,
java.lang.String[] attrs)
Retrieves a list of object that satifies the given
filter.
|
void |
IDBVirtualList.setSortKey(java.lang.String sortKey)
Sets the sort key
|
void |
IDBVirtualList.setSortKey(java.lang.String[] sortKeys)
Sets the sort key
|
Modifier and Type | Method and Description |
---|---|
ICertRecord |
ICertRecordList.getCertRecord(int index)
Gets one single record at a time similar to
processCertRecords but no extra class needed.
|
java.util.Enumeration<ICertRecord> |
ICertRecordList.getCertRecords(int startidx,
int endidx)
Retrieves requests.
|
org.mozilla.jss.netscape.security.x509.RevocationReason |
ICertRecord.getRevReason()
returns the revocation reason
|
void |
ICertRecordList.processCertRecords(int startidx,
int endidx,
IElementProcessor ep)
Process certificate record as soon as it is returned.
|
Modifier and Type | Method and Description |
---|---|
void |
IKeyRepository.addKeyRecord(IKeyRecord record)
Archives a key to the repository.
|
void |
IKeyRepository.deleteKeyRecord(java.math.BigInteger serialno)
Deletes a key record.
|
IKeyRecordList |
IKeyRepository.findKeyRecordsInList(java.lang.String filter,
java.lang.String[] attrs,
int pageSize)
Searchs for a list of key records.
|
IKeyRecordList |
IKeyRepository.findKeyRecordsInList(java.lang.String filter,
java.lang.String[] attrs,
java.lang.String sortKey,
int pageSize)
Searchs for a list of key records.
|
java.lang.String |
IKeyRecord.getClientId()
Retrieves client ID.
|
java.lang.String |
IKeyRecord.getDataType()
Retrieves key data type.
|
java.util.Date[] |
IKeyRecord.getDateOfRevocation()
Retrieves dates of recovery.
|
java.util.Enumeration<IKeyRecord> |
IKeyRecordList.getKeyRecords(int startidx,
int endidx)
Retrieves key records.
|
java.lang.Integer |
IKeyRecord.getKeySize()
Retrieves key length.
|
java.lang.String |
IKeyRecord.getKeyStatus()
Retrieves key status.
|
java.lang.String |
IKeyRecord.getOwnerName()
Retrieves key owner name.
|
byte[] |
IKeyRecord.getPublicKeyData()
Retrieves public key data.
|
java.lang.String |
IKeyRecord.getRealm()
Retrieves authorization realm.
|
java.math.BigInteger |
IKeyRecord.getSerialNumber()
Retrieves key identifier.
|
KeyState |
IKeyRecord.getState()
Retrieves the state of the key.
|
java.lang.Boolean |
IKeyRecord.isEncrypted() |
void |
IKeyRepository.modifyKeyRecord(java.math.BigInteger serialNo,
ModificationSet mods)
Modifies key record in this repository.
|
IKeyRecord |
IKeyRepository.readKeyRecord(java.math.BigInteger serialNo)
Reads an archived key by serial number.
|
IKeyRecord |
IKeyRepository.readKeyRecord(java.security.PublicKey publicKey)
Reads archived key using public key.
|
IKeyRecord |
IKeyRepository.readKeyRecord(java.lang.String cert)
Reads an archived key by b64 encoded cert.
|
IKeyRecord |
IKeyRepository.readKeyRecord(org.mozilla.jss.netscape.security.x509.X500Name ownerName)
Reads an archived key by owner name.
|
java.util.Enumeration<IKeyRecord> |
IKeyRepository.searchKeys(java.lang.String filter,
int maxSize)
Searches for private keys.
|
java.util.Enumeration<IKeyRecord> |
IKeyRepository.searchKeys(java.lang.String filter,
int maxSize,
int timeLimt)
Searches for private keys.
|
Modifier and Type | Method and Description |
---|---|
void |
IRepository.checkRanges()
Checks to see if a new range is needed, or if we have reached the end of the
current range, or if a range conflict has occurred.
|
java.math.BigInteger |
IRepository.getNextSerialNumber()
Retrieves the next serial number, and also increase the
serial number by one.
|
java.math.BigInteger |
IRepository.peekNextSerialNumber()
Retrieves the next serial number without increasing the serial number.
|
void |
IRepository.resetSerialNumber(java.math.BigInteger serial)
Resets serial number.
|
void |
IRepository.setEnableSerialMgmt(boolean value)
Sets whether serial number management is enabled for certs
and requests.
|
void |
IRepository.setMaxSerial(java.lang.String serial)
Set the maximum serial number.
|
void |
IRepository.setNextMaxSerial(java.lang.String serial)
Set the maximum serial number in next range.
|
Modifier and Type | Class and Description |
---|---|
class |
EExtensionsException
This represents the extensions exception.
|
Modifier and Type | Method and Description |
---|---|
org.mozilla.jss.netscape.security.x509.Extension |
ICMSExtension.getExtension(IArgBlock argblock)
Get an instance of the extension given http input.
|
IArgBlock |
ICMSExtension.getFormParams(org.mozilla.jss.netscape.security.x509.Extension extension)
Get Javascript name value pairs to put into the request processing
template.
|
void |
ICMSExtension.init(ISubsystem owner,
IConfigStore config)
initialize from configuration file
|
Modifier and Type | Class and Description |
---|---|
class |
EJobsException
A class represents a jobs exception.
|
Modifier and Type | Method and Description |
---|---|
void |
IJob.init(ISubsystem owner,
java.lang.String id,
java.lang.String implName,
IConfigStore config)
Initialize from the configuration file.
|
Modifier and Type | Class and Description |
---|---|
class |
EKRAException
A class represents a KRA exception.
|
Modifier and Type | Method and Description |
---|---|
void |
IKeyService.addAgentAsyncKeyRecovery(java.lang.String reqID,
java.lang.String agentID)
add approving agent in asynchronous key recovery
|
void |
IKeyService.addDistributedCredential(java.lang.String recoveryID,
java.lang.String uid,
java.lang.String pwd)
Adds password in the distributed recovery operation.
|
void |
IKeyRecoveryAuthority.createError(java.lang.String recoveryID,
java.lang.String error)
Creates error for a specific recovery operation.
|
void |
IKeyRecoveryAuthority.createPk12(java.lang.String recoveryID,
byte[] pk12)
Creates PKCS12 package in memory.
|
java.util.Hashtable<java.lang.String,java.lang.Object> |
IKeyService.createRecoveryParams(java.lang.String recoveryID)
Creates recovery parameters for the given recovery operation.
|
void |
IKeyService.destroyRecoveryParams(java.lang.String recoveryID)
Destroys recovery parameters for the given recovery operation.
|
byte[] |
IKeyService.doKeyRecovery(java.math.BigInteger kid,
Credential[] creds,
java.lang.String pwd,
org.mozilla.jss.netscape.security.x509.X509CertImpl cert,
java.lang.String delivery,
java.lang.String nickname,
java.lang.String agent)
Performs administrator-initiated key recovery.
|
byte[] |
IKeyService.doKeyRecovery(java.lang.String reqID,
java.lang.String password)
Async Recovers key for administrators.
|
java.security.KeyPair |
IKeyRecoveryAuthority.generateKeyPair(java.lang.String alg,
int keySize,
java.lang.String keyCurve,
org.mozilla.jss.crypto.PQGParams pqg,
org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usageList)
Generate an asymmetric key pair.
|
java.security.KeyPair |
IKeyRecoveryAuthority.generateKeyPair(java.lang.String alg,
int keySize,
java.lang.String keyCurve,
org.mozilla.jss.crypto.PQGParams pqg,
org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usageList,
boolean temporary) |
java.util.Vector<Credential> |
IKeyRecoveryAuthority.getAppAgents(java.lang.String recoveryID) |
Credential[] |
IKeyService.getDistributedCredentials(java.lang.String recoveryID)
Retrieves credentials in the distributed recovery operation.
|
java.lang.String |
IKeyRecoveryAuthority.getError(java.lang.String recoveryID)
Retrieves error by recovery identifier.
|
java.lang.String |
IKeyService.getInitAgentAsyncKeyRecovery(java.lang.String reqID)
get async recovery request initiating agent
|
java.lang.String |
IKeyRecoveryAuthority.getNewNickName()
Returns the new nickname of the transport certifiate.
|
int |
IKeyService.getNoOfRequiredAgents()
Retrieves number of agent required to perform
key recovery operation.
|
int |
IKeyRecoveryAuthority.getNoOfRequiredAgents()
Returns the number of required agents.
|
byte[] |
IKeyRecoveryAuthority.getPk12(java.lang.String recoveryID)
Retrieves PKCS12 package by recovery identifier.
|
java.util.Hashtable<java.lang.String,java.lang.Object> |
IKeyService.getRecoveryParams(java.lang.String recoveryID)
Retrieves recovery parameters for the given recovery operation.
|
java.lang.String |
IKeyService.initAsyncKeyRecovery(java.math.BigInteger kid,
org.mozilla.jss.netscape.security.x509.X509CertImpl cert,
java.lang.String agent,
java.lang.String realm)
Initiate asynchronous key recovery
|
boolean |
IKeyService.isApprovedAsyncKeyRecovery(java.lang.String reqID)
is async recovery request status APPROVED -
i.e.
|
void |
IKeyRecoveryAuthority.processSynchronousRequest(IRequest request)
Process synchronous archival and recovery requests
|
void |
IKeyRecoveryAuthority.setNoOfRequiredAgents(int number)
Sets the number of required recovery agents
|
Modifier and Type | Class and Description |
---|---|
class |
ELdapException
A class that represents a Ldap exception.
|
class |
ELdapServerDownException
This represents exception which indicates Ldap server is down.
|
Modifier and Type | Method and Description |
---|---|
void |
ILdapConnModule.init(IConfigStore config)
Initialize ldap publishing module with config store.
|
Modifier and Type | Class and Description |
---|---|
class |
EListenersException
A class represents a listener exception.
|
Modifier and Type | Method and Description |
---|---|
java.lang.String[] |
IRequestListenerPlugin.getConfigParams()
get the configuration parameters of the plug-in.
|
void |
IRequestListenerPlugin.init(java.lang.String name,
java.lang.String implName,
IConfigStore config)
the subsystem call this method to initialize the plug-in.
|
Modifier and Type | Class and Description |
---|---|
class |
ELogException
This class implements a Log exception.
|
class |
ELogNotFound
Exception for log not found.
|
class |
ELogPluginNotFound
Exception for log plugin not found.
|
Modifier and Type | Method and Description |
---|---|
void |
ILogEventListener.init(ISubsystem owner,
IConfigStore config)
Initialize this log listener
|
void |
ConsoleLog.init(ISubsystem owner,
IConfigStore config) |
NameValuePairs |
ILogEventListener.retrieveLogContent(java.util.Hashtable<java.lang.String,java.lang.String> req)
Retrieve last "maxLine" number of system logs with log level >"level"
and from source "source".
|
NameValuePairs |
ConsoleLog.retrieveLogContent(java.util.Hashtable<java.lang.String,java.lang.String> req)
Retrieve last "maxLine" number of system log with log lever >"level"
and from source "source".
|
NameValuePairs |
ILogEventListener.retrieveLogList(java.util.Hashtable<java.lang.String,java.lang.String> req)
Retrieve list of log files.
|
NameValuePairs |
ConsoleLog.retrieveLogList(java.util.Hashtable<java.lang.String,java.lang.String> req)
Retrieve log file list.
|
void |
ILogEventListener.startup()
Startup the instance.
|
void |
ConsoleLog.startup() |
Modifier and Type | Class and Description |
---|---|
class |
ENotificationException
A class represents a notification exception.
|
Modifier and Type | Method and Description |
---|---|
java.lang.String |
IEmailResolver.getEmail(IEmailResolverKeys keys)
returns an email address by using the resolver keys.
|
Modifier and Type | Method and Description |
---|---|
void |
IDefStore.addCRLIssuingPoint(java.lang.String name,
ICRLIssuingPointRecord rec)
This method adds a CRL issuing point
|
void |
IDefStore.addRepository(java.lang.String name,
java.lang.String thisUpdate,
IRepositoryRecord rec)
This method adds a request to the default OCSP store repository.
|
void |
IDefStore.deleteCRLIssuingPointRecord(java.lang.String id)
This method deletes a CRL issuing point record
|
void |
IOCSPStore.init(IOCSPAuthority owner,
IConfigStore config) |
ICRLIssuingPointRecord |
IDefStore.readCRLIssuingPoint(java.lang.String name)
This method attempts to read the CRL issuing point.
|
java.util.Enumeration<ICRLIssuingPointRecord> |
IDefStore.searchAllCRLIssuingPointRecord(int maxSize)
This method searches all CRL issuing points.
|
java.util.Enumeration<ICRLIssuingPointRecord> |
IDefStore.searchCRLIssuingPointRecord(java.lang.String filter,
int maxSize)
This method searches all CRL issuing points constrained by the specified
filtering mechanism.
|
void |
IOCSPStore.setConfigParameters(NameValuePairs pairs)
This method stores the configuration parameters specified by the
passed-in Name Value pairs object.
|
void |
IOCSPAuthority.setDefaultAlgorithm(java.lang.String algorithm)
This method sets the supplied algorithm as the default signing algorithm.
|
BasicOCSPResponse |
IOCSPAuthority.sign(ResponseData rd)
This method signs the basic OCSP response data provided as a parameter.
|
void |
IOCSPStore.startup() |
void |
IDefStore.updateCRL(java.security.cert.X509CRL crl)
This method updates the specified CRL.
|
OCSPResponse |
IOCSPStore.validate(OCSPRequest req)
This method validates the information associated with the specified
OCSP request and returns an OCSP response.
|
OCSPResponse |
IOCSPService.validate(OCSPRequest r)
This method validates the information associated with the specified
OCSP request and returns an OCSP response.
|
Modifier and Type | Class and Description |
---|---|
class |
EPasswordCheckException
A class represents a password checker exception.
|
Modifier and Type | Class and Description |
---|---|
class |
ECMCBadIdentityException
This represents a profile specific exception for handling
CMC badIdentity condition.
|
class |
ECMCBadMessageCheckException
This represents a profile specific exception for handling
CMC badMessageCheck condition.
|
class |
ECMCBadRequestException
This represents a profile specific exception for handling
CMC badRequest condition.
|
class |
ECMCPopFailedException
This represents a profile specific exception for handling
CMC popFailed condition.
|
class |
ECMCPopRequiredException
This represents a profile specific exception for handling
CMC popRequired condition.
|
class |
ECMCUnsupportedExtException
This represents a profile specific exception for handling
CMC unsupportedExt condition.
|
class |
EDeferException
This represents a profile specific exception.
|
class |
EProfileException
This represents a generic profile exception.
|
class |
ERejectException
This represents a profile specific exception.
|
Modifier and Type | Class and Description |
---|---|
class |
EPropertyException
This is the base exception for property handling.
|
Modifier and Type | Class and Description |
---|---|
class |
EMapperNotFound
Exception for Publish Mapper not found.
|
class |
EMapperPluginNotFound
Exception for Mapper Plugin not found.
|
class |
EPublisherNotFound
Exception for Publisher not found.
|
class |
EPublisherPluginNotFound
Exception for Publisher Plugin not found.
|
class |
ERuleNotFound
Exception for Ldap Publishing Rule not found.
|
class |
ERulePluginNotFound
Exception for Publisher Rule plugin not found.
|
Modifier and Type | Method and Description |
---|---|
void |
ILdapPluginImpl.init(IConfigStore config)
initialize from config store and Isubsystem.
|
void |
ILdapPlugin.init(IConfigStore config)
Initialize from config store.
|
void |
ILdapCrlMapper.init(IConfigStore config)
initialize from config store.
|
void |
IPublishRuleSet.init(ISubsystem sys,
IConfigStore conf) |
void |
ILdapPluginImpl.init(ISubsystem sys,
IConfigStore config)
initialize from config store.
|
void |
ILdapRule.init(com.netscape.cmscore.ldap.PublisherProcessor processor,
IConfigStore config)
Initialize the plugin.
|
Modifier and Type | Method and Description |
---|---|
java.lang.String |
IRegistrationAuthority.getNewNickName()
Retrieves the nickname of the RA certificate from configuration store.
|
void |
IRAService.serviceProfileRequest(IRequest request)
Services profile request.
|
Modifier and Type | Class and Description |
---|---|
class |
ERegistryException
This represents a registry exception.
|
Modifier and Type | Class and Description |
---|---|
class |
PolicyMessage
A (localizable) message recorded by a policy module that describes
the reason for rejecting a request.
|
Modifier and Type | Method and Description |
---|---|
void |
IRequestQueue.approveRequest(IRequest request)
Approves a request.
|
void |
IRequestQueue.cancelRequest(IRequest request)
Cancels a request.
|
IRequest |
IRequestQueue.cloneAndMarkPending(IRequest r)
Clones a request object and mark it pending.
|
IRequest |
IRequestQueue.cloneRequest(IRequest r)
Clones a request object.
|
void |
IRequestRecord.delete(java.lang.String name)
Removes attribute from the request.
|
IRequest |
IRequestQueue.findRequest(RequestId id)
Gets the Request corresponding to id.
|
void |
IRequestListener.init(ISubsystem sub,
IConfigStore config)
Initializes request listener for the specific subsystem
and configuration store.
|
void |
IRequestQueue.markRequestPending(IRequest req)
Puts a new request into the PENDING state.
|
IRequest |
IRequestQueue.newRequest(java.lang.String requestType)
Creates a new request object.
|
IRequest |
IRequestQueue.newRequest(java.lang.String requestType,
boolean ephemeral)
Create a new Request object and assign a request ID.
|
void |
IRequestQueue.processRequest(IRequest req)
Begins processing for this request.
|
void |
IRequestQueue.rejectRequest(IRequest request)
Rejects a request.
|
void |
IRequestQueue.removeAllObjects()
Removes all objects with this repository.
|
void |
IRequestQueue.resetSerialNumber(java.math.BigInteger serial)
Resets serial number.
|
boolean |
IService.serviceRequest(IRequest request)
Performs the service (such as certificate generation)
represented by this request.
|
void |
IRequestQueue.updateRequest(IRequest request)
Updates the request in the permanent data store.
|
Modifier and Type | Method and Description |
---|---|
boolean |
IStorageKeyUnit.changeAgentMN(int n,
int m,
Credential[] oldcreds,
Credential[] newcreds)
Changes M-N recovery scheme.
|
boolean |
IStorageKeyUnit.changeAgentPassword(java.lang.String id,
java.lang.String oldpwd,
java.lang.String newpwd)
Changes agent password.
|
void |
ICryptoSubsystem.checkCertificateExt(java.lang.String ext)
Checks if the given base-64 encoded string contains an extension
or a sequence of extensions.
|
org.mozilla.jss.crypto.SignatureAlgorithm |
ISigningUnit.checkSigningAlgorithmFromName(java.lang.String algname)
Checks if the given algorithm name is supported.
|
void |
ICryptoSubsystem.deleteCert(java.lang.String nickname,
java.lang.String notAfterTime)
Delete certificate of the given nickname.
|
void |
ICryptoSubsystem.deleteRootCert(java.lang.String nickname,
java.lang.String serialno,
java.lang.String issuername) |
void |
ICryptoSubsystem.deleteTokenCertificate(java.lang.String nickname,
java.lang.String pathname)
Deletes certificate of the given nickname.
|
void |
ICryptoSubsystem.deleteUserCert(java.lang.String nickname,
java.lang.String serialno,
java.lang.String issuername) |
org.mozilla.jss.netscape.security.x509.AlgorithmId |
ICryptoSubsystem.getAlgorithmId(java.lang.String algname,
IConfigStore store)
Retrieves CA's signing algorithm id.
|
java.lang.String[] |
ISigningUnit.getAllAlgorithms()
Retrieves all supported signing algorithm of this unit.
|
java.lang.String |
ICryptoSubsystem.getAllCerts()
Retrieves a list of nicknames of certificates that are
in the installed tokens.
|
NameValuePairs |
ICryptoSubsystem.getAllCertsManage()
Gets all certificates on all tokens for Certificate Database Management.
|
NameValuePairs |
ICryptoSubsystem.getCACerts()
Gets all CA certificates on all tokens.
|
org.mozilla.jss.crypto.PQGParams |
ICryptoSubsystem.getCAPQG(int keysize,
IConfigStore store)
Retrieves PQG parameters based on key size.
|
java.lang.String |
ICryptoSubsystem.getCertListWithoutTokenName(java.lang.String name)
Retrieves all certificates.
|
java.lang.String |
ICryptoSubsystem.getCertPrettyPrint(java.lang.String b64E,
java.util.Locale locale)
Retrieves the certificate in the pretty print format.
|
java.lang.String |
ICryptoSubsystem.getCertPrettyPrint(java.lang.String nickname,
java.lang.String date,
java.util.Locale locale)
Retrieves certificate in pretty-print format by the nickname.
|
java.lang.String |
ICryptoSubsystem.getCertPrettyPrint(java.lang.String nickname,
java.lang.String serialno,
java.lang.String issuername,
java.util.Locale locale) |
java.lang.String |
ICryptoSubsystem.getCertPrettyPrintAndFingerPrint(java.lang.String nickname,
java.lang.String serialno,
java.lang.String issuername,
java.util.Locale locale) |
java.lang.String |
ICryptoSubsystem.getCertRequest(java.lang.String subjectName,
java.security.KeyPair kp)
Generates certificate request from the given key pair.
|
java.lang.String |
ICryptoSubsystem.getCertSubjectName(java.lang.String tokenname,
java.lang.String nickname)
Retrieves subject name of the certificate that is identified by
the given nickname.
|
java.lang.String |
ICryptoSubsystem.getCipherPreferences()
Retrieves the cipher preferences.
|
java.lang.String |
ICryptoSubsystem.getCipherVersion()
Retrieves the SSL cipher version.
|
java.security.KeyPair |
ICryptoSubsystem.getECCKeyPair(org.mozilla.jss.crypto.CryptoToken token,
java.lang.String curveName,
java.lang.String certType)
Generates an ECC key pair based on the given parameters.
|
java.security.KeyPair |
ICryptoSubsystem.getECCKeyPair(KeyCertData properties)
Generates an ECC key pair based on the given parameters.
|
org.mozilla.jss.netscape.security.x509.CertificateExtensions |
ICryptoSubsystem.getExtensions(java.lang.String tokenname,
java.lang.String nickname)
Retrieves extensions of the certificate that is identified by
the given nickname.
|
java.lang.String |
ICryptoSubsystem.getInternalTokenName()
Retrieves the token name of the internal (software) token.
|
java.security.KeyPair |
ICryptoSubsystem.getKeyPair(org.mozilla.jss.crypto.CryptoToken token,
java.lang.String alg,
int keySize)
Generates a key pair based on the given parameters.
|
java.security.KeyPair |
ICryptoSubsystem.getKeyPair(org.mozilla.jss.crypto.CryptoToken token,
java.lang.String alg,
int keySize,
org.mozilla.jss.crypto.PQGParams pqg)
Generates a key pair based on the given parameters.
|
java.security.KeyPair |
ICryptoSubsystem.getKeyPair(KeyCertData properties)
Generates a key pair based on the given parameters.
|
java.security.KeyPair |
ICryptoSubsystem.getKeyPair(java.lang.String nickname)
Retrieves the key pair based on the given nickname.
|
java.lang.String |
ISigningUnit.getNewNickName()
Retrieves the new nickname in the renewal process.
|
int |
IStorageKeyUnit.getNoOfAgents()
Retrieves total number of recovery agents.
|
int |
IStorageKeyUnit.getNoOfRequiredAgents()
Retrieves number of recovery agents required to
perform recovery operation.
|
NameValuePairs |
ICryptoSubsystem.getRootCerts() |
java.lang.String |
ICryptoSubsystem.getRootCertTrustBit(java.lang.String nickname,
java.lang.String serialno,
java.lang.String issuerName) |
java.lang.String |
ICryptoSubsystem.getSignatureAlgorithm(java.lang.String nickname)
Retrieves the signature algorithm of the certificate named
by the given nickname.
|
org.mozilla.jss.netscape.security.x509.X509CertImpl |
ICryptoSubsystem.getSignedCert(KeyCertData data,
java.lang.String certType,
java.security.PrivateKey priKey)
Signs the certificate template into the given data and returns
a signed certificate.
|
java.lang.String |
ITransportKeyUnit.getSigningAlgorithm()
Returns this Unit's signing algorithm in String format.
|
java.lang.String |
ICryptoSubsystem.getSubjectDN(java.lang.String nickname)
Retrieves the subject DN of the certificate identified by
the nickname.
|
java.lang.String |
ICryptoSubsystem.getTokenList()
Retrieves a list of currently registered token names.
|
java.lang.String |
ISigningUnit.getTokenName()
Retrieves the token name of this unit.
|
NameValuePairs |
ICryptoSubsystem.getUserCerts() |
void |
ICryptoSubsystem.importCert(java.lang.String b64E,
java.lang.String nickname,
java.lang.String certType)
Imports certificate into the server.
|
void |
ICryptoSubsystem.importCert(org.mozilla.jss.netscape.security.x509.X509CertImpl signedCert,
java.lang.String nickname,
java.lang.String certType)
Imports certificate into the server.
|
boolean |
ICryptoSubsystem.isCACert(java.lang.String fullNickname)
Checks to see if the certificate of the given nickname is a
CA certificate.
|
java.lang.String |
ICryptoSubsystem.isCipherFortezza()
Checks if fortezza is enabled.
|
boolean |
ICryptoSubsystem.isTokenLoggedIn(java.lang.String name)
Checks if the given token is logged in.
|
void |
ICryptoSubsystem.isX500DN(java.lang.String dn)
Checks if the given dn is a valid distinguished name.
|
void |
ICryptoSubsystem.loggedInToken(java.lang.String tokenName,
java.lang.String pwd)
Logs into token.
|
void |
IStorageKeyUnit.login(Credential[] ac)
Logins to this unit.
|
void |
IToken.login(java.lang.String pin)
Logins to the token unit.
|
void |
ICryptoSubsystem.setCipherPreferences(java.lang.String cipherPrefs)
Sets the current SSL cipher preferences.
|
void |
ISigningUnit.setDefaultAlgorithm(java.lang.String algorithm)
Set default signing algorithm.
|
void |
ICryptoSubsystem.setRootCertTrust(java.lang.String nickname,
java.lang.String serialno,
java.lang.String issuername,
java.lang.String trust) |
void |
ITransportKeyUnit.setSigningAlgorithm(java.lang.String str)
Sets this Unit's signing algorithm.
|
byte[] |
ISigningUnit.sign(byte[] data,
java.lang.String algname)
Signs the given data in specific algorithm.
|
void |
ICryptoSubsystem.trustCert(java.lang.String nickname,
java.lang.String date,
java.lang.String trust)
Trusts a certificate for all available purposes.
|
boolean |
ISigningUnit.verify(byte[] data,
byte[] signature,
java.lang.String algname)
Verifies the signed data.
|
void |
IEncryptionUnit.verify(java.security.PublicKey publicKey,
org.mozilla.jss.crypto.PrivateKey privateKey)
Verifies the given key pair.
|
Modifier and Type | Class and Description |
---|---|
class |
EDuplicateSelfTestException
This class implements a duplicate self test exception.
|
class |
EInvalidSelfTestException
This class implements an invalid self test exception.
|
class |
EMissingSelfTestException
This class implements a missing self test exception.
|
class |
ESelfTestException
This class implements a self test exception.
|
Modifier and Type | Class and Description |
---|---|
class |
EUsrGrpException
A class represents a Identity exception.
|
Modifier and Type | Method and Description |
---|---|
IAuthToken |
TokenAuthentication.authenticate(IAuthCredentials authCred)
authenticates user(agent) by certificate
|
IAuthToken |
SSLclientCertAuthentication.authenticate(IAuthCredentials authCred)
authenticates user by certificate
|
IAuthToken |
HashAuthentication.authenticate(IAuthCredentials authCreds)
Authenticates a user based on uid, pwd in the directory.
|
IAuthToken |
FlatFileAuth.authenticate(IAuthCredentials authCred)
Authenticate the request
|
IAuthToken |
DirBasedAuthentication.authenticate(IAuthCredentials authCred)
Authenticates user through LDAP by a set of credentials.
|
IAuthToken |
CMCAuth.authenticate(IAuthCredentials authCred)
Authenticates user by their CMC;
resulting AuthToken sets a TOKEN_SUBJECT for the subject name.
|
IAuthToken |
AgentCertAuthentication.authenticate(IAuthCredentials authCred)
authenticates user(agent) by certificate
|
protected java.lang.String |
UserPwdDirAuthentication.authenticate(netscape.ldap.LDAPConnection conn,
IAuthCredentials authCreds,
AuthToken token)
Authenticates a user based on attr, pwd in the directory.
|
protected java.lang.String |
UidPwdPinDirAuthentication.authenticate(netscape.ldap.LDAPConnection conn,
IAuthCredentials authCreds,
AuthToken token)
Authenticates a user based on its uid, pwd, pin in the directory.
|
protected java.lang.String |
UidPwdDirAuthentication.authenticate(netscape.ldap.LDAPConnection conn,
IAuthCredentials authCreds,
AuthToken token)
Authenticates a user based on uid, pwd in the directory.
|
protected java.lang.String |
SharedSecret.authenticate(netscape.ldap.LDAPConnection conn,
IAuthCredentials authCreds,
AuthToken token)
unsupported
This is an unconventional authentication plugin implementation that
does not support authenticate()
|
protected java.lang.String |
PortalEnroll.authenticate(netscape.ldap.LDAPConnection conn,
IAuthCredentials authCreds,
AuthToken token)
Authenticates a user based on uid, pwd in the directory.
|
protected abstract java.lang.String |
DirBasedAuthentication.authenticate(netscape.ldap.LDAPConnection conn,
IAuthCredentials authCreds,
AuthToken token)
Authenticates a user through directory based a set of credentials.
|
protected void |
UidPwdPinDirAuthentication.checkpin(netscape.ldap.LDAPConnection conn,
java.lang.String userdn,
java.lang.String uid,
java.lang.String pin) |
protected void |
DirBasedAuthentication.formCertInfo(netscape.ldap.LDAPConnection conn,
java.lang.String userdn,
org.mozilla.jss.netscape.security.x509.X509CertInfo certinfo,
AuthToken token)
Formulate the cert info.
|
protected boolean |
FlatFileAuth.getPropertyB(java.lang.String propertyName,
boolean b)
Get the named property,
If the property is not set, use b as the default, and create
a new value for the property in the config file.
|
protected java.lang.String |
FlatFileAuth.getPropertyS(java.lang.String propertyName,
java.lang.String s)
Get the named property
If the property is not set, use s as the default, and create
a new value for the property in the config file.
|
char[] |
SharedSecret.getSharedToken(java.math.BigInteger serial)
getSharedToken(BigInteger serial) retrieves the shared secret data
from CA's internal certificate db based on serial number to revoke shared
secret based revocation
Note that unlike the shared token attribute for enrollment, the metaInfo
attribute for shared token in revocatoiin is not configurable.
|
char[] |
SharedSecret.getSharedToken(org.mozilla.jss.pkix.cmc.PKIData cmcdata)
unsupported
|
char[] |
SharedSecret.getSharedToken(java.lang.String identification,
IAuthToken authToken)
getSharedToken(String identification, IAuthToken authToken) provides
support for id_cmc_identification shared secret based enrollment
|
void |
UserPwdDirAuthentication.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config)
Initializes the UserPwdDirAuthentication auth manager.
|
void |
UidPwdPinDirAuthentication.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config) |
void |
TokenAuthentication.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config)
initializes the TokenAuthentication auth manager
|
void |
SharedSecret.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config) |
void |
SessionAuthentication.init(java.lang.String instName,
java.lang.String implName,
AuthManagerConfig config) |
void |
SSLclientCertAuthentication.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config)
initializes the SSLClientCertAuthentication auth manager
|
void |
PortalEnroll.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config)
Initializes the PortalEnrollment auth manager.
|
void |
HashAuthentication.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config) |
void |
FlatFileAuth.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config) |
void |
DirBasedAuthentication.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config)
Initializes the UidPwdDirBasedAuthentication auth manager.
|
void |
CMCAuth.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config)
Initializes the CMCAuth authentication plug-in.
|
void |
AgentCertAuthentication.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config)
initializes the CertUserDBAuthentication auth manager
|
void |
DirBasedAuthentication.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config,
boolean needBaseDN) |
void |
SharedSecret.initLdapConn(AuthManagerConfig config)
initLadapConn initializes ldap connection for shared token based
CMC enrollment.
|
protected IAuthToken |
CMCAuth.verifySignerInfo(SessionContext auditContext,
AuthToken authToken,
org.mozilla.jss.pkix.cms.SignedData cmcFullReq) |
Constructor and Description |
---|
PortalEnroll()
Default constructor, initialization must follow.
|
Modifier and Type | Method and Description |
---|---|
void |
BasicGroupAuthz.accessInit(java.lang.String accessInfo) |
void |
AAclAuthz.accessInit(java.lang.String accessInfo) |
void |
AAclAuthz.addACLs(java.lang.String resACLs)
Parse ACL resource attributes, then update the ACLs memory store
This is intended to be used if storing ACLs on ldap is not desired,
and the caller is expected to call this method to add resource
and acl info into acls memory store.
|
java.lang.String[] |
BasicGroupAuthz.getConfigParams() |
void |
DirAclAuthz.init(java.lang.String name,
java.lang.String implName,
AuthzManagerConfig config) |
void |
BasicGroupAuthz.init(java.lang.String name,
java.lang.String implName,
AuthzManagerConfig config) |
void |
BasicAclAuthz.init(java.lang.String name,
java.lang.String implName,
AuthzManagerConfig config) |
void |
AAclAuthz.init(java.lang.String name,
java.lang.String implName,
AuthzManagerConfig config)
Initializes
|
Modifier and Type | Method and Description |
---|---|
void |
RequestInQueueJob.init(ISubsystem owner,
java.lang.String id,
java.lang.String implName,
IConfigStore config)
initialize from the configuration file
|
abstract void |
AJobBase.init(ISubsystem owner,
java.lang.String id,
java.lang.String implName,
IConfigStore config)
abstract methods
|
Modifier and Type | Method and Description |
---|---|
java.lang.String[] |
PinRemovalListener.getConfigParams() |
void |
RequestInQListener.init(ISubsystem sub,
IConfigStore config)
initializes the listener from the configuration
|
void |
PinRemovalListener.init(ISubsystem sub,
IConfigStore config) |
void |
PinRemovalListener.init(java.lang.String name,
java.lang.String ImplName,
IConfigStore config) |
Modifier and Type | Method and Description |
---|---|
void |
RollingLogFile.init(IConfigStore config)
Initialize and open a RollingLogFile using the prop config store
|
void |
LogFile.init(IConfigStore config)
Initialize and open the log using the parameters from a config store
|
void |
LogFile.init(ISubsystem owner,
IConfigStore config) |
NameValuePairs |
LogFile.retrieveLogContent(java.util.Hashtable<java.lang.String,java.lang.String> req)
Retrieve last "maxLine" number of system log with log lever >"level"
and from source "source".
|
NameValuePairs |
RollingLogFile.retrieveLogList(java.util.Hashtable<java.lang.String,java.lang.String> req)
Retrieve log file list.
|
NameValuePairs |
LogFile.retrieveLogList(java.util.Hashtable<java.lang.String,java.lang.String> req)
Retrieve log file list.
|
void |
RollingLogFile.startup() |
void |
LogFile.startup()
Startup the instance
|
Modifier and Type | Method and Description |
---|---|
void |
DefStore.addCertRecord(java.lang.String name,
java.lang.String thisUpdate,
java.lang.String sno,
ICertRecord rec)
Creates a new issuing point in OCSP.
|
void |
LDAPStore.addCRLIssuingPoint(java.lang.String name,
ICRLIssuingPointRecord rec) |
void |
DefStore.addCRLIssuingPoint(java.lang.String name,
ICRLIssuingPointRecord rec)
Creates a new issuing point in OCSP.
|
void |
LDAPStore.addRepository(java.lang.String name,
java.lang.String thisUpdate,
IRepositoryRecord rec) |
void |
DefStore.addRepository(java.lang.String name,
java.lang.String thisUpdate,
IRepositoryRecord rec)
Creates a new issuing point in OCSP.
|
void |
DefStore.deleteAllCRLsInCA(java.lang.String caName) |
void |
LDAPStore.deleteCRLIssuingPointRecord(java.lang.String id) |
void |
DefStore.deleteCRLIssuingPointRecord(java.lang.String id) |
void |
DefStore.deleteCRLsInCA(java.lang.String caName,
boolean oldCRLs) |
void |
DefStore.deleteOldCRLs()
This store will not delete the old CRL until the
new one is totally committed.
|
void |
DefStore.deleteOldCRLsInCA(java.lang.String caName) |
boolean |
LDAPStore.includeNextUpdate() |
void |
LDAPStore.init(IOCSPAuthority owner,
IConfigStore config)
Fetch CA certificate and CRL from LDAP server.
|
void |
DefStore.init(IOCSPAuthority owner,
IConfigStore config) |
boolean |
LDAPStore.isNotFoundGood1() |
org.mozilla.jss.netscape.security.x509.X509CertImpl |
LDAPStore.locateCACert(netscape.ldap.LDAPConnection conn,
java.lang.String baseDN)
Locates the CA certificate.
|
org.mozilla.jss.netscape.security.x509.X509CRLImpl |
LDAPStore.locateCRL(netscape.ldap.LDAPConnection conn,
java.lang.String baseDN)
Locates the CRL.
|
void |
DefStore.modifyCertRecord(java.lang.String name,
java.lang.String thisUpdate,
java.lang.String sno,
ModificationSet mods) |
void |
DefStore.modifyCRLIssuingPointRecord(java.lang.String name,
ModificationSet mods) |
ICertRecord |
DefStore.readCertRecord(java.lang.String name,
java.lang.String thisUpdate,
java.lang.String sno) |
ICRLIssuingPointRecord |
LDAPStore.readCRLIssuingPoint(java.lang.String name) |
ICRLIssuingPointRecord |
DefStore.readCRLIssuingPoint(java.lang.String name)
Returns an issuing point.
|
java.util.Enumeration<ICRLIssuingPointRecord> |
LDAPStore.searchAllCRLIssuingPointRecord(int maxSize) |
java.util.Enumeration<ICRLIssuingPointRecord> |
DefStore.searchAllCRLIssuingPointRecord(int maxSize) |
java.util.Enumeration<ICertRecord> |
DefStore.searchCertRecord(java.lang.String name,
java.lang.String thisUpdate,
java.lang.String filter) |
java.util.Enumeration<ICRLIssuingPointRecord> |
LDAPStore.searchCRLIssuingPointRecord(java.lang.String filter,
int maxSize) |
java.util.Enumeration<ICRLIssuingPointRecord> |
DefStore.searchCRLIssuingPointRecord(java.lang.String filter,
int maxSize) |
java.util.Enumeration<IRepositoryRecord> |
DefStore.searchRepository(java.lang.String name,
java.lang.String filter) |
void |
LDAPStore.setConfigParameters(NameValuePairs pairs) |
void |
DefStore.setConfigParameters(NameValuePairs pairs) |
void |
LDAPStore.setId(java.lang.String id) |
void |
DefStore.setId(java.lang.String id) |
void |
LDAPStore.startup() |
void |
DefStore.startup() |
void |
LDAPStore.updateCRL(java.security.cert.X509CRL crl) |
void |
DefStore.updateCRL(java.security.cert.X509CRL crl) |
void |
LDAPStore.updateCRLHash(org.mozilla.jss.netscape.security.x509.X509CertImpl caCert,
org.mozilla.jss.netscape.security.x509.X509CRLImpl crl) |
OCSPResponse |
LDAPStore.validate(OCSPRequest request)
Validate an OCSP request.
|
OCSPResponse |
DefStore.validate(OCSPRequest request)
Validate an OCSP request.
|
Modifier and Type | Method and Description |
---|---|
void |
Profile.init(IConfigStore config)
Initializes this profile.
|
void |
EnrollProfile.setPOPchallenge(IRequest req)
setPOPchallenge generates a POP challenge and sets necessary info in request
for composing encryptedPOP later
|
Modifier and Type | Method and Description |
---|---|
void |
NoMap.init(IConfigStore config)
for initializing from config store.
|
void |
LdapSimpleMap.init(IConfigStore config)
for initializing from config store.
|
void |
LdapEnhancedMap.init(IConfigStore config)
for initializing from config store.
|
void |
LdapDNCompsMap.init(IConfigStore config)
for initializing from config store.
|
void |
LdapCertSubjMap.init(IConfigStore config) |
void |
LdapCertExactMap.init(IConfigStore config) |
void |
LdapCaSimpleMap.init(IConfigStore config)
for initializing from config store.
|
protected void |
LdapSimpleMap.init(java.lang.String dnPattern)
common initialization routine.
|
protected void |
LdapEnhancedMap.init(java.lang.String dnPattern)
common initialization routine.
|
protected void |
LdapCaSimpleMap.init(java.lang.String dnPattern)
common initialization routine.
|
Modifier and Type | Method and Description |
---|---|
void |
LdapUserCertPublisher.init(IConfigStore config) |
void |
LdapCrlPublisher.init(IConfigStore config) |
void |
LdapCertificatePairPublisher.init(IConfigStore config) |
void |
LdapCertSubjPublisher.init(IConfigStore config) |
void |
LdapCaCertPublisher.init(IConfigStore config) |
Modifier and Type | Method and Description |
---|---|
boolean |
AdminServlet.authorize(IAuthToken token)
authorize a user based on its authentication credentials.
|
protected void |
AdminServlet.commit(boolean createBackup)
FileConfigStore functionality
The original config file is moved to
|
static AuthCredentials |
AdminServlet.getAuthCreds(AuthManager authMgr,
java.security.cert.X509Certificate clientCert) |
protected void |
AdminServlet.getConfig(IConfigStore config,
javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse resp)
Generic configuration store get operation.
|
protected void |
AdminServlet.listConfig(IConfigStore config,
javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse resp)
Lists configuration store.
|
void |
AuthCredentials.set(java.lang.String name,
java.lang.Object cred)
sets a credential with credential name and the credential
|
protected void |
AdminServlet.setConfig(IConfigStore config,
javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse resp)
Generic configuration store set operation.
|
void |
CMSAdminServlet.setRootCertTrust(javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse resp) |
Constructor and Description |
---|
GroupMemberProcessor(java.util.Locale locale) |
Modifier and Type | Method and Description |
---|---|
protected void |
CMSServlet.renderException(CMSRequest cmsReq,
EBaseException e)
Output exception (unexpected error) template
This is different from other templates in that if an exception occurs
while rendering the exception a message is printed out directly.
|
Modifier and Type | Method and Description |
---|---|
IAuthToken |
CMSServlet.authenticate(CMSRequest req) |
IAuthToken |
CMSServlet.authenticate(CMSRequest req,
java.lang.String authMgrName) |
IAuthToken |
CMSServlet.authenticate(javax.servlet.http.HttpServletRequest httpReq) |
IAuthToken |
CMSServlet.authenticate(javax.servlet.http.HttpServletRequest httpReq,
java.lang.String authMgrName)
Authentication
|
AuthzToken |
CMSServlet.authorize(java.lang.String authzMgrName,
IAuthToken authToken,
java.lang.String resource,
java.lang.String operation)
Authorize must occur after Authenticate
|
AuthzToken |
CMSServlet.authorize(java.lang.String authzMgrName,
java.lang.String resource,
IAuthToken authToken,
java.lang.String exp) |
protected boolean |
CMSServlet.certIsRevoked(java.math.BigInteger serialNum)
check if a certificate (serial number) is revoked on a CA.
|
protected boolean |
CMSServlet.checkImportCertToNav(javax.servlet.http.HttpServletResponse httpResp,
IArgBlock httpParams,
org.mozilla.jss.netscape.security.x509.X509CertImpl cert) |
protected org.mozilla.jss.netscape.security.x509.RevokedCertImpl |
CMSServlet.formCRLEntry(java.math.BigInteger serialNo,
org.mozilla.jss.netscape.security.x509.RevocationReason reason)
make a CRL entry from a serial number and revocation reason.
|
static AuthCredentials |
CMSServlet.getAuthCreds(AuthManager authMgr,
IArgBlock argBlock,
java.security.cert.X509Certificate clientCert)
construct a authentication credentials to pass into authentication
manager.
|
protected java.security.cert.X509Certificate |
CMSServlet.getSSLClientCertificate(javax.servlet.http.HttpServletRequest httpReq)
get ssl client authenticated certificate
|
protected java.security.cert.X509Certificate |
CMSServlet.getSSLClientCertificate(javax.servlet.http.HttpServletRequest httpReq,
boolean clientCertRequired) |
protected CMSTemplate |
CMSServlet.getTemplate(java.lang.String templateName,
javax.servlet.http.HttpServletRequest httpReq,
java.util.Locale[] locale)
get a template based on result status.
|
void |
CMSServlet.importCertToNav(javax.servlet.http.HttpServletResponse httpResp,
org.mozilla.jss.netscape.security.x509.X509CertImpl cert,
java.lang.String contentType,
boolean importCAChain)
handy routine to import cert to old navigator in nav mime type.
|
protected boolean |
CMSServlet.isSystemCertificate(java.math.BigInteger serialNo)
A system certificate such as the CA signing certificate
should not be allowed to delete.
|
void |
PortsServlet.process(CMSRequest cmsReq)
Serves HTTP request.
|
void |
IndexServlet.process(CMSRequest cmsReq)
Serves HTTP request.
|
protected void |
GetStats.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
DisplayHtmlServlet.process(CMSRequest cmsReq)
Serves HTTP request.
|
protected void |
CMSServlet.saveHttpHeaders(javax.servlet.http.HttpServletRequest httpReq,
IRequest req)
save http headers in a IRequest.
|
Modifier and Type | Method and Description |
---|---|
protected java.math.BigInteger |
RenewalServlet.getRenewedCert(ICertRecord certRec) |
protected void |
RenewalServlet.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
RemoteAuthConfig.process(CMSRequest cmsReq)
Serves HTTPS request.
|
protected void |
GetEnableStatus.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
GetCertFromRequest.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
EnableEnrollResult.process(CMSRequest cmsReq)
Services the request
|
protected void |
DisplayHashUserEnroll.process(CMSRequest cmsReq)
Services the request
|
protected void |
DisableEnrollResult.process(CMSRequest cmsReq)
Services the request
|
protected void |
DirAuthServlet.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
CloneRedirect.process(CMSRequest cmsReq)
Serves HTTP request.
|
Modifier and Type | Class and Description |
---|---|
class |
ECMSGWException
A class represents a CMS gateway exception.
|
Modifier and Type | Method and Description |
---|---|
void |
CMSRequest.setError(EBaseException error) |
Modifier and Type | Method and Description |
---|---|
static void |
ServletUtils.addACLInfo(com.netscape.cmscore.authorization.AuthzSubsystem authz,
java.lang.String aclMethod,
java.lang.String aclInfo) |
static IAuthToken |
CMSGateway.checkAuthManager(javax.servlet.http.HttpServletRequest httpReq,
IArgBlock httpParams,
java.security.cert.X509Certificate cert,
java.lang.String authMgrName) |
static void |
CMSGateway.disableAdminEnroll() |
byte[] |
CMSFileLoader.get(java.io.File file,
java.lang.String enc) |
byte[] |
CMSFileLoader.get(java.lang.String absPath,
java.lang.String enc) |
static java.lang.String |
ServletUtils.getACLMethod(java.lang.String aclInfo,
java.lang.String authzMgr,
java.lang.String id) |
static AuthCredentials |
CMSGateway.getAuthCreds(AuthManager authMgr,
IArgBlock argBlock,
java.security.cert.X509Certificate clientCert)
construct a authentication credentials to pass into authentication
manager.
|
CMSFile |
CMSFileLoader.getCMSFile(java.io.File file,
java.lang.String enc) |
protected static CMSTemplate |
CMSGateway.getTemplate(java.lang.String templateName,
javax.servlet.http.HttpServletRequest httpReq,
javax.servlet.ServletConfig servletConfig,
CMSFileLoader fileLoader,
java.util.Locale[] locale)
get a template
|
boolean |
CMSTemplate.init(java.io.File template) |
void |
CMSFileLoader.init(IConfigStore config) |
static void |
CMSGateway.renderTemplate(java.lang.String templateName,
javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse resp,
javax.servlet.ServletConfig servletConfig,
CMSFileLoader fileLoader) |
static void |
CMSGateway.setEnableAdminEnroll(boolean enableAdminEnroll) |
void |
CMSRequest.setIRequestStatus()
set default CMS status according to IRequest status.
|
Constructor and Description |
---|
CMSFile(java.io.File file) |
CMSTemplate(java.io.File file,
java.lang.String charset)
Constructor
|
Modifier and Type | Method and Description |
---|---|
protected IAuthToken |
CloneServlet.authenticate(java.security.cert.X509Certificate peerCert) |
protected java.security.cert.X509Certificate |
ConnectorServlet.getPeerCert(javax.servlet.http.HttpServletRequest req) |
protected java.security.cert.X509Certificate |
CloneServlet.getPeerCert(javax.servlet.http.HttpServletRequest req) |
void |
TokenKeyRecoveryServlet.process(CMSRequest cmsReq) |
void |
GenerateKeyPairServlet.process(CMSRequest cmsReq) |
protected IPKIMessage |
ConnectorServlet.processRequest(java.lang.String source,
java.lang.String sourceUserId,
IPKIMessage msg,
IAuthToken token)
Process request
|
protected IPKIMessage |
CloneServlet.processRequest(java.lang.String source,
java.lang.String sourceUserId,
IPKIMessage msg,
IAuthToken token) |
Modifier and Type | Method and Description |
---|---|
java.lang.String |
SecurityDomainProcessor.addHost(java.lang.String name,
java.lang.String type,
java.lang.String hostname,
java.lang.String securePort,
java.lang.String unsecurePort,
java.lang.String eeCAPort,
java.lang.String adminSecurePort,
java.lang.String agentSecurePort,
java.lang.String domainManager,
java.lang.String clone) |
java.security.KeyPair |
Configurator.createECCKeyPair(java.lang.String tag,
org.mozilla.jss.crypto.CryptoToken token,
java.lang.String curveName) |
DomainInfo |
SecurityDomainProcessor.getDomainInfo() |
XMLObject |
SecurityDomainProcessor.getDomainXML() |
java.lang.String |
Configurator.getNickname(java.lang.String certTag) |
abstract IRepository |
UpdateNumberRange.getRepository(java.lang.String type) |
java.lang.String |
Configurator.getSubsystemCert() |
protected void |
UpdateOCSPConfig.process(CMSRequest cmsReq) |
protected void |
UpdateNumberRange.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
UpdateDomainXML.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
RegisterUser.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
MainPageServlet.process(CMSRequest cmsReq) |
protected void |
ImportTransportCert.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
GetTransportCert.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
GetSubsystemCert.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
GetStatus.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
GetDomainXML.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
GetCookie.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
GetConfigEntries.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
DownloadPKCS12.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
CheckIdentity.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
GetCookie.processImpl(CMSRequest cmsReq) |
java.lang.String |
SecurityDomainProcessor.removeHost(java.lang.String type,
java.lang.String hostname,
java.lang.String securePort) |
Constructor and Description |
---|
SecurityDomainProcessor(java.util.Locale locale) |
Modifier and Type | Method and Description |
---|---|
void |
KeyRequestDAO.approveRequest(RequestId id,
java.lang.String requestor,
IAuthToken authToken) |
void |
KeyRequestDAO.cancelRequest(RequestId id,
IAuthToken authToken) |
IRequest |
KeyRequestDAO.createRecoveryRequest(KeyRecoveryRequest data,
javax.ws.rs.core.UriInfo uriInfo,
java.lang.String requestor,
IAuthToken authToken,
boolean ephemeral) |
static void |
KeyRecordParser.fillRecordIntoArg(IKeyRecord rec,
IArgBlock rarg)
Fills key record into argument block.
|
KeyRequestInfo |
KeyRequestDAO.getRequest(RequestId id,
javax.ws.rs.core.UriInfo uriInfo,
IAuthToken authToken)
Gets info for a specific request
|
java.util.Hashtable<java.lang.String,java.lang.Object> |
KeyRequestDAO.getTransientData(IRequest request) |
KeyRequestInfoCollection |
KeyRequestDAO.listRequests(java.lang.String filter,
RequestId start,
int pageSize,
int maxResults,
int maxTime,
javax.ws.rs.core.UriInfo uriInfo)
Finds list of requests matching the specified search filter.
|
void |
SrchKeyForRecovery.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
SrchKey.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
RecoverBySerial.process(CMSRequest cmsReq)
Serves HTTP request.
|
void |
GrantRecovery.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
GrantAsyncRecovery.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
GetPk12.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
GetAsyncPk12.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
GetApprovalStatus.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
ExamineRecovery.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
DisplayTransport.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
DisplayBySerialForRecovery.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
DisplayBySerial.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
ConfirmRecoverBySerial.process(CMSRequest cmsReq)
Serves HTTP request.
|
void |
KeyRequestDAO.rejectRequest(RequestId id,
IAuthToken authToken) |
void |
KeyRequestDAO.setTransientData(KeyRecoveryRequest data,
IRequest request) |
KeyRequestResponse |
KeyRequestDAO.submitAsyncKeyRecoveryRequest(KeyRecoveryRequest data,
javax.ws.rs.core.UriInfo uriInfo,
java.lang.String requestor,
IAuthToken authToken) |
KeyRequestResponse |
KeyRequestDAO.submitRequest(AsymKeyGenerationRequest data,
javax.ws.rs.core.UriInfo uriInfo,
java.lang.String owner) |
KeyRequestResponse |
KeyRequestDAO.submitRequest(KeyArchivalRequest data,
javax.ws.rs.core.UriInfo uriInfo,
java.lang.String owner)
Submits an archival request and processes it.
|
KeyRequestResponse |
KeyRequestDAO.submitRequest(KeyRecoveryRequest data,
javax.ws.rs.core.UriInfo uriInfo,
java.lang.String requestor,
IAuthToken authToken)
Submits a key recovery request.
|
KeyRequestResponse |
KeyRequestDAO.submitRequest(SymKeyGenerationRequest data,
javax.ws.rs.core.UriInfo uriInfo,
java.lang.String owner) |
Modifier and Type | Method and Description |
---|---|
protected void |
OCSPServlet.process(CMSRequest cmsReq)
Process the HTTP request.
|
protected void |
GetOCSPInfo.process(CMSRequest cmsReq)
Process the HTTP request.
|
Modifier and Type | Method and Description |
---|---|
void |
PKCS10Processor.fillCertInfo(org.mozilla.jss.netscape.security.pkcs.PKCS10 pkcs10,
org.mozilla.jss.netscape.security.x509.X509CertInfo certInfo,
IAuthToken authToken,
IArgBlock httpParams) |
protected void |
PKIProcessor.fillCertInfo(java.lang.String protocolString,
org.mozilla.jss.netscape.security.x509.X509CertInfo certInfo,
IAuthToken authToken,
IArgBlock httpParams) |
void |
PKCS10Processor.fillCertInfo(java.lang.String protocolString,
org.mozilla.jss.netscape.security.x509.X509CertInfo certInfo,
IAuthToken authToken,
IArgBlock httpParams) |
void |
KeyGenProcessor.fillCertInfo(java.lang.String protocolString,
org.mozilla.jss.netscape.security.x509.X509CertInfo certInfo,
IAuthToken authToken,
IArgBlock httpParams) |
void |
CMCProcessor.fillCertInfo(java.lang.String protocolString,
org.mozilla.jss.netscape.security.x509.X509CertInfo certInfo,
IAuthToken authToken,
IArgBlock httpParams) |
protected org.mozilla.jss.netscape.security.x509.X509CertInfo[] |
PKIProcessor.fillCertInfoArray(java.lang.String protocolString,
IAuthToken authToken,
IArgBlock httpParams,
IRequest req) |
org.mozilla.jss.netscape.security.x509.X509CertInfo[] |
CRMFProcessor.fillCertInfoArray(java.lang.String protocolString,
IAuthToken authToken,
IArgBlock httpParams,
IRequest req) |
org.mozilla.jss.netscape.security.x509.X509CertInfo[] |
CMCProcessor.fillCertInfoArray(java.lang.String protocolString,
IAuthToken authToken,
IArgBlock httpParams,
IRequest req) |
static void |
PKIProcessor.fillCertInfoFromAuthToken(org.mozilla.jss.netscape.security.x509.X509CertInfo certInfo,
IAuthToken authToken)
fill subject name, validity, extensions from authoken if any,
overriding what was in pkcs10.
|
static void |
PKIProcessor.fillCertInfoFromForm(org.mozilla.jss.netscape.security.x509.X509CertInfo certInfo,
IArgBlock httpParams)
fill subject name, extension from form.
|
static void |
PKIProcessor.fillValidityFromForm(org.mozilla.jss.netscape.security.x509.X509CertInfo certInfo,
IArgBlock httpParams) |
void |
PKIProcessor.process(ICMSRequest cmsReq) |
void |
PKCS10Processor.process(ICMSRequest cmsReq) |
void |
KeyGenProcessor.process(ICMSRequest cmsReq) |
void |
IPKIProcessor.process(ICMSRequest cmsReq) |
void |
CRMFProcessor.process(ICMSRequest cmsReq) |
void |
CMCProcessor.process(ICMSRequest cmsReq) |
org.mozilla.jss.netscape.security.x509.X509CertInfo |
CRMFProcessor.processIndividualRequest(org.mozilla.jss.pkix.crmf.CertReqMsg certReqMsg,
IAuthToken authToken,
IArgBlock httpParams) |
Constructor and Description |
---|
Processor(java.lang.String id,
java.util.Locale locale) |
Modifier and Type | Method and Description |
---|---|
void |
ReqParser.fillRequestIntoArg(java.util.Locale l,
IRequest req,
CMSTemplateParams argSet,
IArgBlock arg)
Maps request object into argument block.
|
void |
KeyReqParser.fillRequestIntoArg(java.util.Locale l,
IRequest req,
CMSTemplateParams argSet,
IArgBlock arg)
Fills in certificate specific request attributes.
|
void |
IReqParser.fillRequestIntoArg(java.util.Locale l,
IRequest req,
CMSTemplateParams argSet,
IArgBlock arg)
Maps request object into argument block.
|
void |
CertReqParser.fillRequestIntoArg(java.util.Locale l,
IRequest req,
CMSTemplateParams argSet,
IArgBlock arg)
Fills in certificate specific request attributes.
|
CMSRequestInfos |
CMSRequestDAO.listCMSRequests(java.lang.String filter,
RequestId start,
int pageSize,
int maxResults,
int maxTime,
javax.ws.rs.core.UriInfo uriInfo)
Finds list of requests matching the specified search filter.
|
void |
QueryReq.process(CMSRequest cmsReq)
Process the HTTP request.
|
void |
ProcessReq.process(CMSRequest cmsReq)
Process the HTTP request.
|
Modifier and Type | Method and Description |
---|---|
void |
GenericPolicyProcessor.addPolicyImpl(java.lang.String id,
java.lang.String classPath) |
void |
GenericPolicyProcessor.addPolicyInstance(java.lang.String id,
java.util.Hashtable<java.lang.String,java.lang.String> ht) |
void |
GenericPolicyProcessor.changePolicyInstanceOrdering(java.lang.String policyOrderStr) |
static java.lang.String |
GeneralNameUtil.check_GeneralNameChoice(java.lang.String generalNameChoice)
Checks if given string is a valid General Name choice and returns
the actual string that can be passed into form_GeneralName().
|
void |
GenericPolicyProcessor.deletePolicyImpl(java.lang.String id) |
void |
GenericPolicyProcessor.deletePolicyInstance(java.lang.String id) |
static org.mozilla.jss.netscape.security.x509.GeneralName |
GeneralNameUtil.form_GeneralName(java.lang.String generalNameChoice,
java.lang.String value)
Form a General Name from a General Name choice and value.
|
static org.mozilla.jss.netscape.security.x509.GeneralName |
GeneralNameUtil.form_GeneralNameAsConstraints(java.lang.String generalNameChoice,
java.lang.String value)
GeneralName can be used in the context of Constraints.
|
org.mozilla.jss.netscape.security.x509.GeneralName |
GeneralNameConfig.formGeneralName(java.lang.String value)
Form a general name from the value string.
|
org.mozilla.jss.netscape.security.x509.GeneralName |
GeneralNameConfig.formGeneralName(java.lang.String choice,
java.lang.String value) |
org.mozilla.jss.netscape.security.x509.GeneralName |
GeneralNameAsConstraintsConfig.formGeneralName(java.lang.String choice,
java.lang.String value)
Form a general name from the value string.
|
java.util.Vector<org.mozilla.jss.netscape.security.x509.GeneralName> |
GeneralNameConfig.formGeneralNames(java.lang.Object value) |
void |
GenericPolicyProcessor.init(IAuthority owner,
IConfigStore config)
Initializes the PolicyProcessor
|
void |
GenericPolicyProcessor.modifyPolicyInstance(java.lang.String id,
java.util.Hashtable<java.lang.String,java.lang.String> ht) |
protected GeneralNameConfig |
GeneralNamesConfig.newGeneralNameConfig(java.lang.String name,
IConfigStore config,
boolean isValueConfigured,
boolean isPolicyEnabled) |
protected GeneralNameConfig |
GeneralNamesAsConstraintsConfig.newGeneralNameConfig(java.lang.String name,
IConfigStore config,
boolean isValueConfigured,
boolean isPolicyEnabled) |
void |
GenericPolicyProcessor.setId(java.lang.String id) |
void |
GenericPolicyProcessor.startup() |
Constructor and Description |
---|
GeneralNameAsConstraintsConfig(java.lang.String name,
IConfigStore config,
boolean isValueConfigured,
boolean isPolicyEnabled) |
GeneralNameConfig(java.lang.String name,
IConfigStore config,
boolean isValueConfigured,
boolean isPolicyEnabled) |
GeneralNamesAsConstraintsConfig(java.lang.String name,
IConfigStore config,
boolean isValueConfigured,
boolean isPolicyEnabled) |
GeneralNamesConfig(java.lang.String name,
IConfigStore config,
boolean isValueConfigured,
boolean isPolicyEnabled) |
SubjAltNameGN(java.lang.String name,
IConfigStore config,
boolean isPolicyEnabled) |
Modifier and Type | Class and Description |
---|---|
class |
EPolicyException
This class represents Exceptions used by the policy package.
|
Modifier and Type | Method and Description |
---|---|
void |
IPolicyRule.setPolicyException(IRequest req,
EBaseException ex) |
Modifier and Type | Method and Description |
---|---|
void |
IPolicyProcessor.addPolicyImpl(java.lang.String id,
java.lang.String classPath)
Adds a policy implementation identified by an impl id.
|
void |
IPolicyProcessor.addPolicyInstance(java.lang.String id,
java.util.Hashtable<java.lang.String,java.lang.String> ht)
Adds a policy instance
|
void |
IPolicyProcessor.changePolicyInstanceOrdering(java.lang.String policyOrderStr)
Modifies policy ordering.
|
void |
IPolicyProcessor.deletePolicyImpl(java.lang.String id)
Deletes a policy implementation identified by an impl id.
|
void |
IPolicyProcessor.deletePolicyInstance(java.lang.String id)
Deletes a policy instance identified by an instance id.
|
org.mozilla.jss.netscape.security.x509.GeneralName |
IGeneralNameConfig.formGeneralName(java.lang.String value)
Forms a general name from string.
|
java.util.Vector<org.mozilla.jss.netscape.security.x509.GeneralName> |
IGeneralNameConfig.formGeneralNames(java.lang.Object value)
Forms general names from the given value.
|
void |
IPolicyRule.init(IPolicyProcessor owner,
IConfigStore config)
Initializes the policy rule.
|
void |
IPolicyProcessor.modifyPolicyInstance(java.lang.String id,
java.util.Hashtable<java.lang.String,java.lang.String> ht)
Modifies a policy instance
|
Modifier and Type | Method and Description |
---|---|
void |
APolicyRule.setPolicyException(IRequest req,
EBaseException ex) |
Modifier and Type | Method and Description |
---|---|
protected org.mozilla.jss.netscape.security.x509.KeyIdentifier |
APolicyRule.formSHA1KeyId(org.mozilla.jss.netscape.security.x509.X509CertInfo certInfo)
Form a byte array of octet string key identifier from the sha-1 hash of
the Subject Public Key BIT STRING.
|
protected org.mozilla.jss.netscape.security.x509.KeyIdentifier |
APolicyRule.formSpkiSHA1KeyId(org.mozilla.jss.netscape.security.x509.X509CertInfo certInfo)
Form a byte array of octet string key identifier from the sha-1 hash of
the Subject Public Key INFO.
|
abstract void |
APolicyRule.init(IPolicyProcessor owner,
IConfigStore config)
Initializes the policy rule.
|
Modifier and Type | Method and Description |
---|---|
IAuthToken |
AuthManager.authenticate(IAuthCredentials authCred)
Authenticate the given credentials.
|
java.lang.String[] |
AuthManager.getConfigParams()
Get configuration parameters for this implementation.
|
void |
AuthManager.init(java.lang.String name,
java.lang.String implName,
AuthManagerConfig config)
Initialize this authentication manager.
|
Modifier and Type | Method and Description |
---|---|
void |
IAuthzManager.accessInit(java.lang.String accessInfo)
accessInit is for servlets who want to initialize their
own authorization information before full operation. |
java.lang.String[] |
IAuthzManager.getConfigParams()
Get configuration parameters for this implementation.
|
void |
IAuthzManager.init(java.lang.String name,
java.lang.String implName,
AuthzManagerConfig config)
Initialize this authorization manager.
|
Modifier and Type | Method and Description |
---|---|
void |
ICertificateAuthority.deleteAuthority(javax.servlet.http.HttpServletRequest httpReq)
Delete this lightweight CA.
|
org.mozilla.jss.netscape.security.x509.X509CertImpl |
ICertificateAuthority.getCACert()
Retrieves the CA certificate.
|
IConnector |
ICAService.getConnector(IConfigStore cs) |
void |
ICRLIssuingPoint.init(ISubsystem ca,
java.lang.String id,
IConfigStore config)
Initializes CRL issuing point.
|
org.mozilla.jss.netscape.security.x509.X509CertImpl |
ICAService.issueX509Cert(AuthorityID aid,
org.mozilla.jss.netscape.security.x509.X509CertInfo certi,
java.lang.String profileId,
java.lang.String rid)
Issues certificate base on enrollment information,
creates certificate record, and stores all necessary data.
|
void |
ICRLIssuingPoint.processRevokedCerts(IElementProcessor cp)
Builds a list of revoked certificates to put them into CRL.
|
void |
ICertificateAuthority.publishCRLNow()
Publishes the CRL immediately for MasterCRL issuing point if it exists.
|
void |
ICAService.revokeCert(org.mozilla.jss.netscape.security.x509.RevokedCertImpl crlentry)
Marks certificate record as revoked by adding revocation information.
|
void |
ICAService.revokeCert(org.mozilla.jss.netscape.security.x509.RevokedCertImpl crlentry,
java.lang.String requestId)
Marks certificate record as revoked by adding revocation information.
|
void |
ICAService.serviceProfileRequest(IRequest request)
Services profile request.
|
void |
ICertificateAuthority.setDefaultAlgorithm(java.lang.String algorithm)
Sets the default signing algorithm of this certificate authority.
|
void |
ICertificateAuthority.setMaxSerial(java.lang.String serial)
Sets the last serial number that can be used for
certificate issuance in this certificate authority.
|
void |
ICertificateAuthority.setStartSerial(java.lang.String serial)
Sets the next available serial number.
|
org.mozilla.jss.netscape.security.x509.X509CertImpl |
ICertificateAuthority.sign(org.mozilla.jss.netscape.security.x509.X509CertInfo certInfo,
java.lang.String algname)
Signs a X.509 certificate template.
|
org.mozilla.jss.netscape.security.x509.X509CRLImpl |
ICertificateAuthority.sign(org.mozilla.jss.netscape.security.x509.X509CRLImpl crl,
java.lang.String algname)
Signs the given CRL with the specific algorithm.
|
void |
ICertificateAuthority.updateCRLNow()
Updates the CRL immediately for MasterCRL issuing point if it exists.
|
void |
ICRLIssuingPoint.updateCRLNow()
Generates CRL now based on cache or local directory if cache
is not available.
|
void |
ICRLIssuingPoint.updateCRLNow(java.lang.String signingAlgorithm)
Generates CRL now based on cache or local directory if cache
is not available.
|
Modifier and Type | Method and Description |
---|---|
AuditConfig |
AuditService.createAuditConfig() |
AuditConfig |
AuditService.createAuditConfig(java.util.Map<java.lang.String,java.lang.String> auditParams) |
Modifier and Type | Method and Description |
---|---|
void |
APDU.secureMessage(org.mozilla.jss.pkcs11.PK11SymKey encKey,
byte protocol) |
void |
APDU.secureMessageSCP02(org.mozilla.jss.pkcs11.PK11SymKey encKey) |
void |
APDU.secureMessageSCP03(org.mozilla.jss.pkcs11.PK11SymKey encKey,
TPSBuffer encryptionCounter) |
Modifier and Type | Class and Description |
---|---|
class |
TPSException |
Modifier and Type | Method and Description |
---|---|
static TPSBuffer |
Util.computeEncEcbDes(org.mozilla.jss.pkcs11.PK11SymKey symKey,
TPSBuffer input) |
static TPSBuffer |
Util.computeMAC(org.mozilla.jss.pkcs11.PK11SymKey symKey,
TPSBuffer input,
TPSBuffer icv) |
static TPSBuffer |
Util.computeMACdes3des(org.mozilla.jss.pkcs11.PK11SymKey symKey,
TPSBuffer input,
TPSBuffer initialIcv) |
static TPSBuffer |
Util.encryptData(TPSBuffer dataToEnc,
org.mozilla.jss.pkcs11.PK11SymKey encKey) |
static TPSBuffer |
Util.encryptDataAES(TPSBuffer dataToEnc,
org.mozilla.jss.pkcs11.PK11SymKey encKey,
TPSBuffer iv) |
static java.lang.String |
Util.getCertAkiString(org.mozilla.jss.netscape.security.x509.X509CertImpl cert) |
static java.lang.String |
Util.getCertSkiString(org.mozilla.jss.netscape.security.x509.X509CertImpl cert) |