Examples with CertificateConstraintsType org.apache.cxf.configuration.security.CertificateConstraintsType used on opensource projects

Example 1 with CertificateConstraintsType

use of org.apache.cxf.configuration.security.CertificateConstraintsType in project cxf by apache.

the class HTTPJettyTransportActivator method configureCertConstraints.

private void configureCertConstraints(TLSServerParameters p, String k, String v) {
    k = k.substring("certConstraints.".length());
    CertificateConstraintsType cct = p.getCertConstraints();
    if (cct == null) {
        cct = new CertificateConstraintsType();
        p.setCertConstraints(cct);
    }
    DNConstraintsType dnct = null;
    if (k.startsWith("SubjectDNConstraints.")) {
        dnct = cct.getSubjectDNConstraints();
        if (dnct == null) {
            dnct = new DNConstraintsType();
            cct.setSubjectDNConstraints(dnct);
        }
        k = k.substring("SubjectDNConstraints.".length());
    } else if (k.startsWith("IssuerDNConstraints.")) {
        dnct = cct.getIssuerDNConstraints();
        if (dnct == null) {
            dnct = new DNConstraintsType();
            cct.setIssuerDNConstraints(dnct);
        }
        k = k.substring("IssuerDNConstraints.".length());
    }
    if (dnct != null) {
        if ("combinator".equals(k)) {
            dnct.setCombinator(CombinatorType.fromValue(v));
        } else if ("RegularExpression".equals(k)) {
            dnct.getRegularExpression().add(k);
        }
    }
}

Example 2 with CertificateConstraintsType

use of org.apache.cxf.configuration.security.CertificateConstraintsType in project cxf by apache.

the class HttpConduitConfigApplier method parseCertConstaints.

private void parseCertConstaints(TLSClientParameters p, String k, String v) {
    k = k.substring("certConstraints.".length());
    CertificateConstraintsType cct = p.getCertConstraints();
    if (cct == null) {
        cct = new CertificateConstraintsType();
        p.setCertConstraints(cct);
    }
    DNConstraintsType dnct = null;
    if (k.startsWith("SubjectDNConstraints.")) {
        dnct = cct.getSubjectDNConstraints();
        if (dnct == null) {
            dnct = new DNConstraintsType();
            cct.setSubjectDNConstraints(dnct);
        }
        k = k.substring("SubjectDNConstraints.".length());
    } else if (k.startsWith("IssuerDNConstraints.")) {
        dnct = cct.getIssuerDNConstraints();
        if (dnct == null) {
            dnct = new DNConstraintsType();
            cct.setIssuerDNConstraints(dnct);
        }
        k = k.substring("IssuerDNConstraints.".length());
    }
    if (dnct != null) {
        if ("combinator".equals(k)) {
            dnct.setCombinator(CombinatorType.fromValue(v));
        } else if ("RegularExpression".equals(k)) {
            dnct.getRegularExpression().add(k);
        }
    }
}

Example 3 with CertificateConstraintsType

use of org.apache.cxf.configuration.security.CertificateConstraintsType in project cxf by apache.

the class HTTPUndertowTransportActivator method configureCertConstraints.

private void configureCertConstraints(TLSServerParameters p, String k, String v) {
    k = k.substring("certConstraints.".length());
    CertificateConstraintsType cct = p.getCertConstraints();
    if (cct == null) {
        cct = new CertificateConstraintsType();
        p.setCertConstraints(cct);
    }
    DNConstraintsType dnct = null;
    if (k.startsWith("SubjectDNConstraints.")) {
        dnct = cct.getSubjectDNConstraints();
        if (dnct == null) {
            dnct = new DNConstraintsType();
            cct.setSubjectDNConstraints(dnct);
        }
        k = k.substring("SubjectDNConstraints.".length());
    } else if (k.startsWith("IssuerDNConstraints.")) {
        dnct = cct.getIssuerDNConstraints();
        if (dnct == null) {
            dnct = new DNConstraintsType();
            cct.setIssuerDNConstraints(dnct);
        }
        k = k.substring("IssuerDNConstraints.".length());
    }
    if (dnct != null) {
        if ("combinator".equals(k)) {
            dnct.setCombinator(CombinatorType.fromValue(v));
        } else if ("RegularExpression".equals(k)) {
            dnct.getRegularExpression().add(k);
        }
    }
}

Example 4 with CertificateConstraintsType

use of org.apache.cxf.configuration.security.CertificateConstraintsType in project cxf by apache.

the class JettyHTTPDestination method retrieveEngine.

/**
 * Post-configure retreival of server engine.
 */
protected void retrieveEngine() throws GeneralSecurityException, IOException {
    if (serverEngineFactory == null) {
        return;
    }
    engine = serverEngineFactory.retrieveJettyHTTPServerEngine(nurl.getPort());
    if (engine == null) {
        engine = serverEngineFactory.createJettyHTTPServerEngine(nurl.getHost(), nurl.getPort(), nurl.getProtocol());
    }
    assert engine != null;
    TLSServerParameters serverParameters = engine.getTlsServerParameters();
    if (serverParameters != null && serverParameters.getCertConstraints() != null) {
        CertificateConstraintsType constraints = serverParameters.getCertConstraints();
        if (constraints != null) {
            certConstraints = CertConstraintsJaxBUtils.createCertConstraints(constraints);
        }
    }
    // Spring configuration has configured the port for https.
    if (!nurl.getProtocol().equals(engine.getProtocol())) {
        throw new IllegalStateException("Port " + engine.getPort() + " is configured with wrong protocol \"" + engine.getProtocol() + "\" for \"" + nurl + "\"");
    }
}