com.ibm.wsspi.ssl

Class RetrieveSignersHelper

  • java.lang.Object
    • com.ibm.wsspi.ssl.RetrieveSignersHelper

  • public class RetrieveSignersHelper
extends java.lang.Object

    RetrieveSigners helper gives developers the ability to run the RetrieveSigners command programmatically to download signers needed for communications with the server in trusted environments. Care should taken using this command as you do not want to trust connections in environments that are not considered safe. This can help download signers for clients without intervention.

    Since:
    WAS 6.1
    Version:
    1.0

    • Method Summary

      Methods 
      Modifier and Type Method and Description
      void autoAcceptSignerAndStoreInTrustStore()
      Method called to programmatically trust the connection and store the signer for this connection only into the local trust store.
      void autoAcceptSignerForThisConnectionOnly()
      Method called to programmatically trust the connection without storing the signer into the local trust store.
      int callRetrieveSigners(java.lang.String[] args)
      Method called to programmatically retrieve signers to the client's truststore.
      static RetrieveSignersHelper getInstance() 
      static void main(java.lang.String[] args) 

      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

    • Method Detail

      • main

        public static void main(java.lang.String[] args)

      • callRetrieveSigners

        public int callRetrieveSigners(java.lang.String[] args)

        Method called to programmatically retrieve signers to the client's truststore. The parameters passed are the same as those from the command line version of RetrieveSigners.bat(sh).

        Usage: retrieveSigners [options] options: [-remoteAlias ] [-localAlias ] [-listRemoteKeyStoreNames] [-listLocalKeyStoreNames] [-autoAcceptBootstrapSigner] [-uploadSigners] [-host ] [-port ] [-conntype ] [-user ] [-password ] [-trace] [-logfile ] [-replacelog] [-quiet] [-help]

        Typical example of calling this programmatically is as follows. Other parameters may be required depending upon your environment.

        For calling to an ND environment:

        String[] args = new String[] {"CellDefaultTrustStore", "ClientDefaultTrustStore", "-autoAcceptBootstrapSigner"}; RetrieveSignersHelper.getInstance().callRetrieveSigners(args);

        For calling to an Base environment:

        String[] args = new String[] {"NodeDefaultTrustStore", "ClientDefaultTrustStore", "-autoAcceptBootstrapSigner"}; RetrieveSignersHelper.getInstance().callRetrieveSigners(args);

        Parameters:
        String[] - - The arguments for calling RetrieveSigners.

      • autoAcceptSignerForThisConnectionOnly

        public void autoAcceptSignerForThisConnectionOnly()

        Method called to programmatically trust the connection without storing the signer into the local trust store. This is typically used for one-time connections to specific servers where you do not need to store the signer for future use. This SPI must be called prior to the connection but on the same thread. It will get reset during the handshake by the WSX509TrustManager.

      • autoAcceptSignerAndStoreInTrustStore

        public void autoAcceptSignerAndStoreInTrustStore()

        Method called to programmatically trust the connection and store the signer for this connection only into the local trust store. This SPI must be called prior to the connection but on the same thread. It will get reset during the handshake by the WSX509TrustManager.

IBM WebSphere Application ServerTM
Release 8.5
  • Summary: 
  • Nested | 
  • Field | 
  • Constr | 
  • Method
  • Detail: 
  • Field | 
  • Constr | 
  • Method