Class AuthSSLProtocolSocketFactory

  • All Implemented Interfaces:
    org.apache.commons.httpclient.protocol.ProtocolSocketFactory, org.apache.commons.httpclient.protocol.SecureProtocolSocketFactory

    public class AuthSSLProtocolSocketFactory
    extends java.lang.Object
    implements org.apache.commons.httpclient.protocol.SecureProtocolSocketFactory

    Mutual Authentication against an Alfresco repository. AuthSSLProtocolSocketFactory can be used to validate the identity of the HTTPS server against a list of trusted certificates and to authenticate to the HTTPS server using a private key.

    Adapted from code here: http://svn.apache.org/viewvc/httpcomponents/oac.hc3x/trunk/src/contrib/org/apache/commons/httpclient/contrib/ssl/AuthSSLX509TrustManager.java?revision=608014&view=co

    AuthSSLProtocolSocketFactory will enable server authentication when supplied with a truststore file containing one or several trusted certificates. The client secure socket will reject the connection during the SSL session handshake if the target HTTPS server attempts to authenticate itself with a non-trusted certificate.

    AuthSSLProtocolSocketFactory will enable client authentication when supplied with a keystore file containg a private key/public certificate pair. The client secure socket will use the private key to authenticate itself to the target HTTPS server during the SSL session handshake if requested to do so by the server. The target HTTPS server will in its turn verify the certificate presented by the client in order to establish client's authenticity

    Since:
    4.0
    • Method Summary

      All Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      java.net.Socket createSocket​(java.lang.String host, int port)  
      java.net.Socket createSocket​(java.lang.String host, int port, java.net.InetAddress clientHost, int clientPort)  
      java.net.Socket createSocket​(java.lang.String host, int port, java.net.InetAddress localAddress, int localPort, org.apache.commons.httpclient.params.HttpConnectionParams params)
      Attempts to get a new socket connection to the given host within the given time limit.
      java.net.Socket createSocket​(java.net.Socket socket, java.lang.String host, int port, boolean autoClose)  
      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
    • Constructor Detail

      • AuthSSLProtocolSocketFactory

        public AuthSSLProtocolSocketFactory​(AlfrescoKeyStore sslKeyStore,
                                            AlfrescoKeyStore sslTrustStore,
                                            KeyResourceLoader keyResourceLoader)
        Constructor for AuthSSLProtocolSocketFactory. Either a keystore or truststore file must be given. Otherwise SSL context initialization error will result.
        Parameters:
        sslKeyStore - SSL parameters to use.
        keyResourceLoader - loads key resources from an arbitrary source e.g. classpath
    • Method Detail

      • createSocket

        public java.net.Socket createSocket​(java.lang.String host,
                                            int port,
                                            java.net.InetAddress localAddress,
                                            int localPort,
                                            org.apache.commons.httpclient.params.HttpConnectionParams params)
                                     throws java.io.IOException,
                                            java.net.UnknownHostException,
                                            org.apache.commons.httpclient.ConnectTimeoutException
        Attempts to get a new socket connection to the given host within the given time limit.

        To circumvent the limitations of older JREs that do not support connect timeout a controller thread is executed. The controller thread attempts to create a new socket within the given limit of time. If socket constructor does not return until the timeout expires, the controller terminates and throws an ConnectTimeoutException

        Specified by:
        createSocket in interface org.apache.commons.httpclient.protocol.ProtocolSocketFactory
        Parameters:
        host - the host name/IP
        port - the port on the host
        localAddress - the local host name/IP to bind the socket to
        localPort - the port on the local machine
        params - Http connection parameters
        Returns:
        Socket a new socket
        Throws:
        java.io.IOException - if an I/O error occurs while creating the socket
        java.net.UnknownHostException - if the IP address of the host cannot be determined
        org.apache.commons.httpclient.ConnectTimeoutException
      • createSocket

        public java.net.Socket createSocket​(java.lang.String host,
                                            int port,
                                            java.net.InetAddress clientHost,
                                            int clientPort)
                                     throws java.io.IOException,
                                            java.net.UnknownHostException
        Specified by:
        createSocket in interface org.apache.commons.httpclient.protocol.ProtocolSocketFactory
        Throws:
        java.io.IOException
        java.net.UnknownHostException
        See Also:
        ProtocolSocketFactory.createSocket(java.lang.String,int,java.net.InetAddress,int)
      • createSocket

        public java.net.Socket createSocket​(java.lang.String host,
                                            int port)
                                     throws java.io.IOException,
                                            java.net.UnknownHostException
        Specified by:
        createSocket in interface org.apache.commons.httpclient.protocol.ProtocolSocketFactory
        Throws:
        java.io.IOException
        java.net.UnknownHostException
        See Also:
        ProtocolSocketFactory.createSocket(java.lang.String,int)
      • createSocket

        public java.net.Socket createSocket​(java.net.Socket socket,
                                            java.lang.String host,
                                            int port,
                                            boolean autoClose)
                                     throws java.io.IOException,
                                            java.net.UnknownHostException
        Specified by:
        createSocket in interface org.apache.commons.httpclient.protocol.SecureProtocolSocketFactory
        Throws:
        java.io.IOException
        java.net.UnknownHostException
        See Also:
        SecureProtocolSocketFactory.createSocket(java.net.Socket,java.lang.String,int,boolean)