org.wso2.transport.http.netty.contractimpl.common.ssl

Class SSLHandlerFactory

java.lang.Object

org.wso2.transport.http.netty.contractimpl.common.ssl.SSLHandlerFactory

public class SSLHandlerFactory
extends Object

A class that encapsulates SSL Certificate Information.

Constructor Summary

Constructors

Constructor and Description
SSLHandlerFactory(SSLConfig sslConfig)

Method Summary

Modifier and Type	Method and Description
SSLEngine	addCommonConfigs(SSLEngine engine) Add common configs for both client and server ssl engines.
io.netty.handler.ssl.ReferenceCountedOpenSslContext	buildClientReferenceCountedOpenSslContext() This used to create the open ssl context when ocsp stapling is enabled for client.
SSLEngine	buildClientSSLEngine(String host, int port) Build ssl engine for client side.
SSLEngine	buildServerSSLEngine(SSLContext sslContext) Build the server ssl engine using the ssl context.
io.netty.handler.ssl.SslContext	createHttp2TLSContextForClient(boolean enableOcsp)
io.netty.handler.ssl.SslContext	createHttp2TLSContextForServer(SSLConfig sslConfig) This method will provide netty ssl context which supports HTTP2 over TLS using Application Layer Protocol Negotiation (ALPN)
io.netty.handler.ssl.SslContext	createHttpTLSContextForClient() This method will provide netty ssl context which supports HTTP over TLS using certificates and keys.
io.netty.handler.ssl.SslContext	createHttpTLSContextForServer() This method will provide netty ssl context which supports HTTP over TLS using.
SSLContext	createSSLContextFromKeystores(boolean isServer) This is uset to create the sslContext from keystores.
io.netty.handler.ssl.ReferenceCountedOpenSslContext	getServerReferenceCountedOpenSslContext(boolean enableOcsp) This used to create the open ssl context when ocsp stapling is enabled for server.
void	setHostNameVerfication(SSLEngine sslEngine)
void	setSNIServerNames(SSLEngine sslEngine, String peerHost)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

SSLHandlerFactory

public SSLHandlerFactory(SSLConfig sslConfig)

Method Detail

createSSLContextFromKeystores

public SSLContext createSSLContextFromKeystores(boolean isServer)

This is uset to create the sslContext from keystores.

Parameters:

isServer - identifies whether the server or the client has called this method.

Returns:

sslContext represents a secure socket protocol implementation

buildServerSSLEngine

public SSLEngine buildServerSSLEngine(SSLContext sslContext)

Build the server ssl engine using the ssl context.

Parameters:

sslContext - sslContext.

Returns:

SSLEngine.

getServerReferenceCountedOpenSslContext

public io.netty.handler.ssl.ReferenceCountedOpenSslContext getServerReferenceCountedOpenSslContext(boolean enableOcsp)
                                                                                            throws SSLException

This used to create the open ssl context when ocsp stapling is enabled for server.

Parameters:

enableOcsp - true/false for enabling ocsp stapling.

Returns:

ReferenceCountedOpenSslContext.

Throws:

SSLException - if any error occurs while creating the ReferenceCountedOpenSslContext.

buildClientReferenceCountedOpenSslContext

public io.netty.handler.ssl.ReferenceCountedOpenSslContext buildClientReferenceCountedOpenSslContext()
                                                                                              throws SSLException

This used to create the open ssl context when ocsp stapling is enabled for client.

Returns:

ReferenceCountedOpenSslContext.

Throws:

SSLException - if any error occurs while creating the ReferenceCountedOpenSslContext.

buildClientSSLEngine

public SSLEngine buildClientSSLEngine(String host,
                                      int port)

Build ssl engine for client side.

Parameters:

host - peer host

port - peer port

Returns:

client ssl engine

addCommonConfigs

public SSLEngine addCommonConfigs(SSLEngine engine)

Add common configs for both client and server ssl engines.

Parameters:

engine - client/server ssl engine.

Returns:

sslEngine

createHttp2TLSContextForServer

public io.netty.handler.ssl.SslContext createHttp2TLSContextForServer(SSLConfig sslConfig)
                                                               throws SSLException

This method will provide netty ssl context which supports HTTP2 over TLS using Application Layer Protocol Negotiation (ALPN)

Parameters:

sslConfig - ssl configurations

Returns:

instance of SslContext

Throws:

SSLException - if any error occurred during building SSL context.

createHttpTLSContextForServer

public io.netty.handler.ssl.SslContext createHttpTLSContextForServer()
                                                              throws SSLException

This method will provide netty ssl context which supports HTTP over TLS using.

Returns:

instance of SslContext

Throws:

SSLException - if any error occurred during building SSL context.

createHttpTLSContextForClient

public io.netty.handler.ssl.SslContext createHttpTLSContextForClient()
                                                              throws SSLException

This method will provide netty ssl context which supports HTTP over TLS using certificates and keys.

Returns:

instance of SslContext

Throws:

SSLException - if any error occurred during building SSL context.

createHttp2TLSContextForClient

public io.netty.handler.ssl.SslContext createHttp2TLSContextForClient(boolean enableOcsp)
                                                               throws SSLException

Throws:

SSLException

setSNIServerNames

public void setSNIServerNames(SSLEngine sslEngine,
                              String peerHost)

setHostNameVerfication

public void setHostNameVerfication(SSLEngine sslEngine)