Package com.unboundid.ldap.sdk.unboundidds.extensions

Class KeyStoreFileReplaceCertificateKeyStoreContent

java.lang.Object

com.unboundid.ldap.sdk.unboundidds.extensions.ReplaceCertificateKeyStoreContent

com.unboundid.ldap.sdk.unboundidds.extensions.KeyStoreFileReplaceCertificateKeyStoreContent

All Implemented Interfaces:

Serializable

@NotMutable
@ThreadSafety(level=COMPLETELY_THREADSAFE)
public final class KeyStoreFileReplaceCertificateKeyStoreContent
extends ReplaceCertificateKeyStoreContent

This class provides a ReplaceCertificateKeyStoreContent implementation to indicate that the server should use a certificate key store file contained on the server filesystem.

NOTE: This class, and other classes within the com.unboundid.ldap.sdk.unboundidds package structure, are only supported for use against Ping Identity, UnboundID, and Nokia/Alcatel-Lucent 8661 server products. These classes provide support for proprietary functionality or for external specifications that are not considered stable or mature enough to be guaranteed to work in an interoperable way with other types of LDAP servers.

See Also:

• Serialized Form

Constructor Summary

Constructors

Constructor	Description
KeyStoreFileReplaceCertificateKeyStoreContent(String keyStorePath, String keyStorePIN, String privateKeyPIN, String keyStoreType, String sourceCertificateAlias)	Creates a new instance of this key store content object with the provided information.

Method Summary

Modifier and Type	Method	Description
ASN1Element	encode()	Encodes this key store content object to an ASN.1 element suitable for inclusion in either a replace listener certificate or replace inter-server certificate request.
String	getKeyStorePath()	Retrieves the absolute path to the target key store on the server filesystem.
String	getKeyStorePIN()	Retrieves the PIN needed to access protected content in the key store.
String	getKeyStoreType()	Retrieves the key store type for the target key store, if available.
String	getPrivateKeyPIN()	Retrieves the PIN needed to access private key information in the key store, if available.
String	getSourceCertificateAlias()	Retrieves the alias of the private key entry in the key store that contains the new certificate chain to be used, if available.
void	toString(StringBuilder buffer)	Appends a string representation of this key store content object to the provided buffer.

Methods inherited from class com.unboundid.ldap.sdk.unboundidds.extensions.ReplaceCertificateKeyStoreContent

decode, toString

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Constructor Details

KeyStoreFileReplaceCertificateKeyStoreContent

public KeyStoreFileReplaceCertificateKeyStoreContent(@NotNull
 String keyStorePath,
 @NotNull
 String keyStorePIN,
 @Nullable
 String privateKeyPIN,
 @Nullable
 String keyStoreType,
 @Nullable
 String sourceCertificateAlias)

Creates a new instance of this key store content object with the provided information.

Parameters:

keyStorePath - The absolute path to the target key store on the server filesystem. It must not be null or empty.

keyStorePIN - The PIN needed to access protected content in the key store. It must not be null or empty.

privateKeyPIN - The PIN needed to access private key information in the key store. It may be null if the key store PIN should also be used as the private key PIN.

keyStoreType - The key store type for the target key store. If provided, its value will likely be one of JKS, PKCS12, or BCFKS. If this is null, then the server will attempt to automatically determine the appropriate key store type.

sourceCertificateAlias - The alias of the private key entry in the key store that contains the new certificate chain to be used. It may optionally be null if and only if the key store has only a single private key entry.

Method Details

getKeyStorePath

@NotNull
public String getKeyStorePath()

Retrieves the absolute path to the target key store on the server filesystem.

Returns:

The absolute path to the target key store on the server filesystem.

getKeyStorePIN

@NotNull
public String getKeyStorePIN()

Retrieves the PIN needed to access protected content in the key store.

Returns:

The PIN needed to access protected content in the key store.

getPrivateKeyPIN

@Nullable
public String getPrivateKeyPIN()

Retrieves the PIN needed to access private key information in the key store, if available.

Returns:

The PIN needed to access private key information in the key store, or null if the key store PIN should also be used as the private key PIN.

getKeyStoreType

@Nullable
public String getKeyStoreType()

Retrieves the key store type for the target key store, if available.

Returns:

The key store type for the target key store, or null if the key store type is not available and the server should attempt to automatically determine the appropriate key store type.

getSourceCertificateAlias

@Nullable
public String getSourceCertificateAlias()

Retrieves the alias of the private key entry in the key store that contains the new certificate chain to be used, if available.

Returns:

The alias of the private key entry in the key store that contains the new certificate chain to be used, or null if no source certificate alias was provided and the key store is expected to have only a single private key entry.

encode

@NotNull
public ASN1Element encode()

Encodes this key store content object to an ASN.1 element suitable for inclusion in either a replace listener certificate or replace inter-server certificate request.

Specified by:

encode in class ReplaceCertificateKeyStoreContent

Returns:

The ASN.1 element containing an encoded representation of this key store content object.

toString

public void toString(@NotNull
 StringBuilder buffer)

Appends a string representation of this key store content object to the provided buffer.

Specified by:

toString in class ReplaceCertificateKeyStoreContent

Parameters:

buffer - The buffer to which the encoded representation should be appended. It must not be null.