Package org.keycloak.truststore
Class TruststoreBuilder
java.lang.Object
org.keycloak.truststore.TruststoreBuilder
Builds a system-wide truststore from the given config options.
-
Field Summary
Fields -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionstatic voidincludeKubernetesTrustStorePaths(List<String> trustStores) Include the Kubernetes and/or OpenShift service CA truststore paths if enabled and the files exist.static voidincludeKubernetesTrustStorePaths(List<String> trustStores, String kubernetesCaPath, String serviceCaPath) Include the Kubernetes and/or OpenShift service CA truststore paths if enabled and the files exist.static voidsetSystemTruststore(String[] truststores, boolean trustStoreIncludeDefault, String dataDir)
-
Field Details
-
SYSTEM_TRUSTSTORE_KEY
- See Also:
-
SYSTEM_TRUSTSTORE_PASSWORD_KEY
- See Also:
-
SYSTEM_TRUSTSTORE_TYPE_KEY
- See Also:
-
DUMMY_PASSWORD
- See Also:
-
-
Constructor Details
-
TruststoreBuilder
public TruststoreBuilder()
-
-
Method Details
-
setSystemTruststore
-
includeKubernetesTrustStorePaths
Include the Kubernetes and/or OpenShift service CA truststore paths if enabled and the files exist. Uses the default well-known Kubernetes service account paths.- Parameters:
trustStores- the existing truststore paths
-
includeKubernetesTrustStorePaths
public static void includeKubernetesTrustStorePaths(List<String> trustStores, String kubernetesCaPath, String serviceCaPath) Include the Kubernetes and/or OpenShift service CA truststore paths if enabled and the files exist.- Parameters:
trustStores- the existing truststore pathskubernetesCaPath- path to the Kubernetes service account CA certificateserviceCaPath- path to the OpenShift service CA certificate
-