Class RetrieveSignersHelper
- java.lang.Object
-
- com.ibm.wsspi.ssl.RetrieveSignersHelper
-
public class RetrieveSignersHelper extends java.lang.Object
RetrieveSigners helper gives developers the ability to run the RetrieveSigners command programmatically to download signers needed for communications with the server in trusted environments. Care should taken using this command as you do not want to trust connections in environments that are not considered safe. This can help download signers for clients without intervention.
- Since:
- WAS 6.1
- Version:
- 1.0
-
-
Method Summary
Methods Modifier and Type Method and Description void
autoAcceptSignerAndStoreInTrustStore()
Method called to programmatically trust the connection and store the signer for this connection only into the local trust store.void
autoAcceptSignerForThisConnectionOnly()
Method called to programmatically trust the connection without storing the signer into the local trust store.int
callRetrieveSigners(java.lang.String[] args)
Method called to programmatically retrieve signers to the client's truststore.static RetrieveSignersHelper
getInstance()
static void
main(java.lang.String[] args)
-
-
-
Method Detail
-
main
public static void main(java.lang.String[] args)
-
getInstance
public static RetrieveSignersHelper getInstance()
-
callRetrieveSigners
public int callRetrieveSigners(java.lang.String[] args)
Method called to programmatically retrieve signers to the client's truststore. The parameters passed are the same as those from the command line version of RetrieveSigners.bat(sh).
Usage:
retrieveSigners
[options] options: [-remoteAlias ] [-localAlias ] [-listRemoteKeyStoreNames] [-listLocalKeyStoreNames] [-autoAcceptBootstrapSigner] [-uploadSigners] [-host ] [-port ] [-conntype ] [-user ] [-password ] [-trace] [-logfile ] [-replacelog] [-quiet] [-help] Typical example of calling this programmatically is as follows. Other parameters may be required depending upon your environment.
For calling to an ND environment:
String[] args = new String[] {"CellDefaultTrustStore", "ClientDefaultTrustStore", "-autoAcceptBootstrapSigner"}; RetrieveSignersHelper.getInstance().callRetrieveSigners(args);
For calling to an Base environment:
String[] args = new String[] {"NodeDefaultTrustStore", "ClientDefaultTrustStore", "-autoAcceptBootstrapSigner"}; RetrieveSignersHelper.getInstance().callRetrieveSigners(args);
- Parameters:
String[]
- - The arguments for calling RetrieveSigners.
-
autoAcceptSignerForThisConnectionOnly
public void autoAcceptSignerForThisConnectionOnly()
Method called to programmatically trust the connection without storing the signer into the local trust store. This is typically used for one-time connections to specific servers where you do not need to store the signer for future use. This SPI must be called prior to the connection but on the same thread. It will get reset during the handshake by the WSX509TrustManager.
-
autoAcceptSignerAndStoreInTrustStore
public void autoAcceptSignerAndStoreInTrustStore()
Method called to programmatically trust the connection and store the signer for this connection only into the local trust store. This SPI must be called prior to the connection but on the same thread. It will get reset during the handshake by the WSX509TrustManager.
-
-