Package org.keycloak.jgroups.certificates

Class FileJGroupsCertificateProvider

java.lang.Object

org.keycloak.jgroups.certificates.FileJGroupsCertificateProvider

All Implemented Interfaces:

Provider, JGroupsCertificateProvider

public class FileJGroupsCertificateProvider
extends Object
implements JGroupsCertificateProvider

A JGroupsCertificateProvider implementation that reads the key and trust stores from a file.

This implementation periodically inspects the file for changes. If the files are modified, the new key and trust stores are reloaded and used.

Field Summary

Fields inherited from interface org.keycloak.spi.infinispan.JGroupsCertificateProvider

DISABLED

Method Summary

Modifier and Type	Method	Description
static FileJGroupsCertificateProvider	create(String keyStoreFile, String keyStorePassword, String trustStoreFile, String trustStorePassword)
boolean	isEnabled()
KeyManager	keyManager()	Returns a managed KeyManager.
TrustManager	trustManager()	Returns a managed TrustManager.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface org.keycloak.spi.infinispan.JGroupsCertificateProvider

close, nextRotation, reloadCertificate, rotateCertificate, supportRotateAndReload

Method Details

create

public static FileJGroupsCertificateProvider create(String keyStoreFile,
 String keyStorePassword,
 String trustStoreFile,
 String trustStorePassword)

keyManager

public KeyManager keyManager()

Description copied from interface: JGroupsCertificateProvider

Returns a managed KeyManager.

If JGroupsCertificateProvider.supportRotateAndReload() returns true, the instance returned must be updated with the new certificate when JGroupsCertificateProvider.reloadCertificate(). This method is invoked only once at boot time.

This method must be implemented when JGroupsCertificateProvider.isEnabled() returns true.

Specified by:

keyManager in interface JGroupsCertificateProvider

Returns:

The KeyManager to use by the SSLContext.

trustManager

public TrustManager trustManager()

Description copied from interface: JGroupsCertificateProvider

Returns a managed TrustManager.

If JGroupsCertificateProvider.supportRotateAndReload() returns true, the instance returned must be updated with the new certificate when JGroupsCertificateProvider.reloadCertificate(). This method is invoked only once at boot time.

This method must be implemented when JGroupsCertificateProvider.isEnabled() returns true.

Specified by:

trustManager in interface JGroupsCertificateProvider

Returns:

The TrustManager to use by the SSLContext.

isEnabled

public boolean isEnabled()

Specified by:

isEnabled in interface JGroupsCertificateProvider

Returns:

true if TLS is enabled for JGroups communication.