com.adaptris.core.security (Base Interlok)

Interface Summary
Interface Description

PrivateKeyPasswordProvider
Interface for providing the private key password within adapter configuration.

Interface Summary
Interface	Description
PrivateKeyPasswordProvider	Interface for providing the private key password within adapter configuration.

Class Summary
Class	Description
ConfiguredPrivateKeyPasswordProvider	Private key password provider which explicitly configures the password in configuration
CoreSecurityService	The base class for all security services.
DecryptionService	Perform decryption.
EncryptionOnlyService	Perform encryption only.
EncryptionService	Base case for performing encryption and signing.
EncryptionSigningService	Perform encryption and signing.
LegacyPrivateKeyPasswordProvider	Legacy private key password provider based on the property file 'security.properties'.
SigningService	Perform Signing.
SymmetricKeyCryptographyService

Enum Summary
Enum Description

SymmetricKeyCryptographyService.OpMode

Enum Summary
Enum	Description
SymmetricKeyCryptographyService.OpMode

Package com.adaptris.core.security Description

Implementation of the core Service interface providing encryption and decryption functionality.

A number of difference keystore types can be configured for storing the certificates required for encryption/decryption. Any sun keystore provider can be used, provided that it is added as a provider before any concrete implementations are initialised. The default SUN keystore implementation JKS (or JCEKS in JDK1.4) is provided as part of the JRE. Keystores may be stored remotely provided they are accessible via the HTTP or HTTPS protocol.

In additional to the standard keystore types the following are also supported within the Adapter :

IAIK - Provided by the IAIK JCE Implementation
PKCS12 - where you wish to proxy a single PKCS12 file containing a private key
X509 - where you wish to proxy a single file containing a certificate.
XmlKeyInfo - where you wish to proxy a XML KeyInfo element that contains certifcate information

When using single certificate implementations such as PKCS12, X509, XmlKeyInfo, then you also need to provide an alias (Constants.KEYSTORE_ALIAS) to be associated with the file.

Example keystore configuration would be

 
    &lt;keystore-url xsi:type="java:com.adaptris.security.keystore.ConfiguredUrl">
      &lt;url>file://localhost/path/keystore?keystoreType=JKS&amp;keystorePassword=pwd&lt;/url>
    &lt;/keystore-url>
    &lt;keystore-url xsi:type="java:com.adaptris.security.keystore.ConfiguredUrl">
      &lt;url>file://localhost/path/keystore?keystoreType=X509?keystoreAlias=myAlias&lt;/url>
    &lt;/keystore-url>
    &lt;keystore-url xsi:type="java:com.adaptris.security.keystore.ConfiguredUrl">
      &lt;url>http://localhost/path/keystore?keystoreType=PKCS12?keystoreAlias=myAlias&amp;keystorePassword=pwd&lt;/url>
    &lt;/keystore-url>
    &lt;keystore-url xsi:type="java:com.adaptris.security.keystore.ConfiguredUrl">
      &lt;url>http://host/path/keystore?keystoreType=JKS&amp;keystorePassword=pwd&lt;/url>
    &lt;/keystore-url>