public class PropertiesTlsTmSecurityCallback extends java.lang.Object implements TlsTmSecurityCallback<java.security.cert.X509Certificate>
PropertiesTlsTmSecurityCallback
resolves the
tmSecurityName
for incoming requests by using the
(system) properties
org.snmp4j.arg.securityName
org.snmp4j.arg.tlsLocalID
org.snmp4j.arg.tlsTrustCA
org.snmp4j.arg.tlsPeerID
Modifier and Type | Field and Description |
---|---|
private static LogAdapter |
LOGGER |
private java.util.Properties |
properties |
private boolean |
serverMode |
Constructor and Description |
---|
PropertiesTlsTmSecurityCallback(boolean serverMode) |
PropertiesTlsTmSecurityCallback(java.util.Properties properties,
boolean serverMode) |
Modifier and Type | Method and Description |
---|---|
java.lang.String |
getLocalCertificateAlias(Address targetAddress)
Gets the local certificate alias to be used for the supplied
target address.
|
OctetString |
getSecurityName(java.security.cert.X509Certificate[] peerCertificateChain)
Gets the tmSecurityName (see RFC 5953) from the certificate chain
of the communication peer that needs to be authenticated.
|
boolean |
isAcceptedIssuer(java.security.cert.X509Certificate issuerCertificate)
Check if the supplied issuer certificate is accepted as server.
|
boolean |
isClientCertificateAccepted(java.security.cert.X509Certificate peerEndCertificate)
Check if the supplied peer end certificate is accepted as client.
|
boolean |
isServerCertificateAccepted(java.security.cert.X509Certificate[] peerCertificateChain)
Check if the supplied peer certificate chain is accepted as server.
|
private static final LogAdapter LOGGER
private boolean serverMode
private java.util.Properties properties
public PropertiesTlsTmSecurityCallback(boolean serverMode)
public PropertiesTlsTmSecurityCallback(java.util.Properties properties, boolean serverMode)
public OctetString getSecurityName(java.security.cert.X509Certificate[] peerCertificateChain)
TlsTmSecurityCallback
getSecurityName
in interface TlsTmSecurityCallback<java.security.cert.X509Certificate>
peerCertificateChain
- an array of Certificate
s with the peer's own certificate
first followed by any CA authorities.public boolean isClientCertificateAccepted(java.security.cert.X509Certificate peerEndCertificate)
TlsTmSecurityCallback
isClientCertificateAccepted
in interface TlsTmSecurityCallback<java.security.cert.X509Certificate>
peerEndCertificate
- a client Certificate instance to check acceptance for.public boolean isServerCertificateAccepted(java.security.cert.X509Certificate[] peerCertificateChain)
TlsTmSecurityCallback
isServerCertificateAccepted
in interface TlsTmSecurityCallback<java.security.cert.X509Certificate>
peerCertificateChain
- a server Certificate chain to check acceptance for.public boolean isAcceptedIssuer(java.security.cert.X509Certificate issuerCertificate)
TlsTmSecurityCallback
isAcceptedIssuer
in interface TlsTmSecurityCallback<java.security.cert.X509Certificate>
issuerCertificate
- an issuer Certificate instance to check acceptance for.public java.lang.String getLocalCertificateAlias(Address targetAddress)
TlsTmSecurityCallback
getLocalCertificateAlias
in interface TlsTmSecurityCallback<java.security.cert.X509Certificate>
targetAddress
- a target address or null if the default local
certificate alias needs to be retrieved.