Example 1 with ZeroSecurityTrustManager
use of org.infinispan.cli.util.ZeroSecurityTrustManager in project infinispan by infinispan.
the class CLI method exec.
@Override
public CommandResult exec(ContextAwareCommandInvocation invocation) {
if (help) {
invocation.println(invocation.getHelpInfo());
return CommandResult.SUCCESS;
}
if (version) {
invocation.printf("%s CLI %s\n", org.infinispan.commons.util.Version.getBrandName(), org.infinispan.commons.util.Version.getBrandVersion());
invocation.printf("Copyright (C) Red Hat Inc. and/or its affiliates and other contributors\n");
invocation.printf("License Apache License, v. 2.0. http://www.apache.org/licenses/LICENSE-2.0\n");
return CommandResult.SUCCESS;
}
context = invocation.getContext();
if (propertyMap != null) {
propertyMap.forEach(context.getProperties()::putIfAbsent);
}
if (properties != null) {
try (Reader r = Files.newBufferedReader(Paths.get(properties))) {
Properties loaded = new Properties();
loaded.load(r);
loaded.forEach(context.getProperties()::putIfAbsent);
} catch (IOException e) {
throw new IllegalArgumentException(e);
}
}
String sslTrustStore = truststore != null ? truststore.getAbsolutePath() : context.getProperty(Context.Property.TRUSTSTORE);
if (sslTrustStore != null) {
String sslTrustStorePassword = truststorePassword != null ? truststorePassword : context.getProperty(Context.Property.TRUSTSTORE_PASSWORD);
try (FileInputStream f = new FileInputStream(sslTrustStore)) {
KeyStore keyStore = KeyStoreUtil.loadKeyStore(ProviderUtil.INSTALLED_PROVIDERS, null, f, sslTrustStore, sslTrustStorePassword != null ? sslTrustStorePassword.toCharArray() : null);
TrustManagerFactory trustManagerFactory = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
trustManagerFactory.init(keyStore);
HostnameVerifier verifier = hostnameVerifier != null ? new RegexHostnameVerifier(hostnameVerifier) : null;
SSLContextSettings sslContext = SSLContextSettings.getInstance("TLS", null, trustManagerFactory.getTrustManagers(), null, verifier);
context.setSslContext(sslContext);
} catch (Exception e) {
invocation.getShell().writeln(MSG.keyStoreError(sslTrustStore, e));
return CommandResult.FAILURE;
}
} else if (trustAll || Boolean.parseBoolean(context.getProperty(Context.Property.TRUSTALL))) {
SSLContextSettings sslContext = SSLContextSettings.getInstance("TLS", null, new TrustManager[] { new ZeroSecurityTrustManager() }, null, new ZeroSecurityHostnameVerifier());
context.setSslContext(sslContext);
}
String connectionString = connect != null ? connect : context.getProperty(Context.Property.AUTOCONNECT_URL);
if (connectionString != null) {
context.connect(null, connectionString);
}
if (file != null) {
return batch(file.getAbsolutePath(), invocation.getShell());
} else {
if (context.getProperty(Context.Property.AUTOEXEC) != null) {
batch(context.getProperty(Context.Property.AUTOEXEC), invocation.getShell());
}
return interactive(invocation.getShell());
}
}
Also used :
Reader(java.io.Reader)
RegexHostnameVerifier(org.infinispan.cli.connection.RegexHostnameVerifier)
IOException(java.io.IOException)
ZeroSecurityTrustManager(org.infinispan.cli.util.ZeroSecurityTrustManager)
Properties(java.util.Properties)
KeyStore(java.security.KeyStore)
FileInputStream(java.io.FileInputStream)
CommandRegistryException(org.aesh.command.registry.CommandRegistryException)
IOException(java.io.IOException)
HostnameVerifier(javax.net.ssl.HostnameVerifier)
RegexHostnameVerifier(org.infinispan.cli.connection.RegexHostnameVerifier)
ZeroSecurityHostnameVerifier(org.infinispan.cli.util.ZeroSecurityHostnameVerifier)
TrustManager(javax.net.ssl.TrustManager)
ZeroSecurityTrustManager(org.infinispan.cli.util.ZeroSecurityTrustManager)
SSLContextSettings(org.infinispan.cli.impl.SSLContextSettings)
ZeroSecurityHostnameVerifier(org.infinispan.cli.util.ZeroSecurityHostnameVerifier)
TrustManagerFactory(javax.net.ssl.TrustManagerFactory)
Example 2 with ZeroSecurityTrustManager
use of org.infinispan.cli.util.ZeroSecurityTrustManager in project infinispan by infinispan.
the class RestConnectorTest method testUrlWithSSL.
@Test
public void testUrlWithSSL() throws NoSuchAlgorithmException {
RestConnector connector = new RestConnector();
RestConnection connection = (RestConnection) connector.getConnection("https://localhost", null);
RestClientConfigurationBuilder builder = connection.getBuilder();
builder.security().ssl().sslContext(SSLContext.getDefault()).trustManagers(new TrustManager[] { new ZeroSecurityTrustManager() });
RestClientConfiguration configuration = builder.build();
assertEquals(443, configuration.servers().get(0).port());
assertEquals("localhost", configuration.servers().get(0).host());
assertFalse(configuration.security().authentication().enabled());
assertTrue(configuration.security().ssl().enabled());
}
Also used :
RestClientConfiguration(org.infinispan.client.rest.configuration.RestClientConfiguration)
RestClientConfigurationBuilder(org.infinispan.client.rest.configuration.RestClientConfigurationBuilder)
ZeroSecurityTrustManager(org.infinispan.cli.util.ZeroSecurityTrustManager)
Test(org.junit.Test)
Aggregations
ZeroSecurityTrustManager (org.infinispan.cli.util.ZeroSecurityTrustManager)2
FileInputStream (java.io.FileInputStream)1
IOException (java.io.IOException)1
Reader (java.io.Reader)1
KeyStore (java.security.KeyStore)1
Properties (java.util.Properties)1
HostnameVerifier (javax.net.ssl.HostnameVerifier)1
TrustManager (javax.net.ssl.TrustManager)1
TrustManagerFactory (javax.net.ssl.TrustManagerFactory)1
CommandRegistryException (org.aesh.command.registry.CommandRegistryException)1
RegexHostnameVerifier (org.infinispan.cli.connection.RegexHostnameVerifier)1
SSLContextSettings (org.infinispan.cli.impl.SSLContextSettings)1
ZeroSecurityHostnameVerifier (org.infinispan.cli.util.ZeroSecurityHostnameVerifier)1
RestClientConfiguration (org.infinispan.client.rest.configuration.RestClientConfiguration)1
RestClientConfigurationBuilder (org.infinispan.client.rest.configuration.RestClientConfigurationBuilder)1
Test (org.junit.Test)1
