Package com.inductiveautomation.ignition.client.launch.util

Class CertificateUtilities

java.lang.Object

com.inductiveautomation.ignition.client.launch.util.CertificateUtilities

public class CertificateUtilities
extends Object

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static class	CertificateUtilities.TrustStoreTypeException

Field Summary

Fields

Modifier and Type	Field	Description
static final String	IGN_TRUSTSTORE_TYPE

Method Summary

Modifier and Type	Method	Description
static KeyStore	getLoadedKeyStore(String javaHome)	Returns a KeyStore that is loaded from the supplied java home.
static String	getSha256Fingerprint(X509Certificate certificate)	Returns the SHA-256 fingerprint of the certificate.
static TrustManager[]	getTrustManagers()
static void	injectDefaultSslContext()	Creates an SSLContext which is backed by a TrustManagerFactory whose Keystore contains the contents of the default keystore on disk as well as the certificates in the getCertificatesDirectory() and sets that SSLContext as the default.
static List<X509Certificate>	readPemBundleCertificates(File pemBundle)	Reads all the valid certificates which exist in the provided PEM bundle file.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

IGN_TRUSTSTORE_TYPE

public static final String IGN_TRUSTSTORE_TYPE

Method Details

readPemBundleCertificates

public static List<X509Certificate> readPemBundleCertificates(File pemBundle)

Reads all the valid certificates which exist in the provided PEM bundle file. If the file is null or doesn't exist an empty list is returned.

getSha256Fingerprint

public static String getSha256Fingerprint(X509Certificate certificate)
                                   throws Exception

Returns the SHA-256 fingerprint of the certificate.

Throws:

Exception

getTrustManagers

public static TrustManager[] getTrustManagers()
                                       throws NoSuchAlgorithmException,
KeyStoreException,
CertificateUtilities.TrustStoreTypeException

Returns:

the trust managers created from a trust manager factory initialized with the trust store loaded from java.home system property

Throws:

NoSuchAlgorithmException

KeyStoreException

CertificateUtilities.TrustStoreTypeException

See Also:

• getLoadedKeyStore(String)

injectDefaultSslContext

public static void injectDefaultSslContext()
                                    throws KeyStoreException,
NoSuchAlgorithmException,
KeyManagementException,
CertificateUtilities.TrustStoreTypeException

Creates an SSLContext which is backed by a TrustManagerFactory whose Keystore contains the contents of the default keystore on disk as well as the certificates in the getCertificatesDirectory() and sets that SSLContext as the default.

Throws:

KeyStoreException

NoSuchAlgorithmException

KeyManagementException

CertificateUtilities.TrustStoreTypeException

getLoadedKeyStore

public static KeyStore getLoadedKeyStore(String javaHome)

Returns a KeyStore that is loaded from the supplied java home. May be null if there was an issue loading the cacerts or default trust file file. If it has been previously loaded the existing KEY_STORE is returned.

The default trust store is retrieved via getDefaultTrustStore(String)

Parameters:

javaHome - The path to java home. This is usually just the System Property 'java.home'. Must not be null.