/** * Determine whether a given type of evidence is definitely verifiable, possibly verifiable (for some identities), * or definitely not verifiable. * * Evidence is {@link SupportLevel#SUPPORTED}, if it is supported by all realms of the domain. * Evidence is {@link SupportLevel#POSSIBLY_SUPPORTED} if it is supported or possibly supported by at least one realm of the domain. * Otherwise it is {@link SupportLevel#UNSUPPORTED}. * * @param evidenceType the type of evidence to be verified (must not be {@code null}) * @return the level of support for this evidence type */ public SupportLevel getEvidenceVerifySupport(Class<? extends Evidence> evidenceType) { return getEvidenceVerifySupport(evidenceType, null); }
@Override SupportLevel getEvidenceVerifySupport(final Class<? extends Evidence> evidenceType, final String algorithmName) throws RealmUnavailableException { return getSecurityDomain().getEvidenceVerifySupport(evidenceType, algorithmName); }
@Override SupportLevel getEvidenceVerifySupport(final Class<? extends Evidence> evidenceType, final String algorithmName) throws RealmUnavailableException { return getSecurityDomain().getEvidenceVerifySupport(evidenceType, algorithmName); }
/** * Set the security domain to use to authenticate clients. * * @param securityDomain the security domain to use to authenticate clients, or {@code null} to disable client * certificate authentication */ public SSLContextBuilder setSecurityDomain(final SecurityDomain securityDomain) { if (securityDomain != null && securityDomain.getEvidenceVerifySupport(X509PeerCertificateChainEvidence.class).isNotSupported()) { throw ElytronMessages.tls.securityDomainOfSSLContextDoesNotSupportX509(); } this.securityDomain = securityDomain; return this; }
if (AlgorithmEvidence.class.isAssignableFrom(evidenceType)) { for (String algorithmName : getSupportedEvidenceAlgorithmNames(evidenceType.asSubclass(AlgorithmEvidence.class), mechName)) { if ("*".equals(algorithmName) && securityDomain.getEvidenceVerifySupport(evidenceType).mayBeSupported() || securityDomain.getEvidenceVerifySupport(evidenceType, algorithmName).mayBeSupported()) { names.add(mechName); continue top; if (securityDomain.getEvidenceVerifySupport(evidenceType).mayBeSupported()) { names.add(mechName); continue top;
final boolean canAuthPeers = securityDomain != null && securityDomain.getEvidenceVerifySupport(X509PeerCertificateChainEvidence.class).mayBeSupported();
/** * Determine whether a given type of evidence is definitely verifiable, possibly verifiable (for some identities), * or definitely not verifiable. * * Evidence is {@link SupportLevel#SUPPORTED}, if it is supported by all realms of the domain. * Evidence is {@link SupportLevel#POSSIBLY_SUPPORTED} if it is supported or possibly supported by at least one realm of the domain. * Otherwise it is {@link SupportLevel#UNSUPPORTED}. * * @param evidenceType the type of evidence to be verified (must not be {@code null}) * @return the level of support for this evidence type */ public SupportLevel getEvidenceVerifySupport(Class<? extends Evidence> evidenceType) { return getEvidenceVerifySupport(evidenceType, null); }
/** * Determine whether a given type of evidence is definitely verifiable, possibly verifiable (for some identities), * or definitely not verifiable. * * Evidence is {@link SupportLevel#SUPPORTED}, if it is supported by all realms of the domain. * Evidence is {@link SupportLevel#POSSIBLY_SUPPORTED} if it is supported or possibly supported by at least one realm of the domain. * Otherwise it is {@link SupportLevel#UNSUPPORTED}. * * @param evidenceType the type of evidence to be verified (must not be {@code null}) * @return the level of support for this evidence type */ public SupportLevel getEvidenceVerifySupport(Class<? extends Evidence> evidenceType) { return getEvidenceVerifySupport(evidenceType, null); }
/** * Determine whether a given type of evidence is definitely verifiable, possibly verifiable (for some identities), * or definitely not verifiable. * * Evidence is {@link SupportLevel#SUPPORTED}, if it is supported by all realms of the domain. * Evidence is {@link SupportLevel#POSSIBLY_SUPPORTED} if it is supported or possibly supported by at least one realm of the domain. * Otherwise it is {@link SupportLevel#UNSUPPORTED}. * * @param evidenceType the type of evidence to be verified (must not be {@code null}) * @return the level of support for this evidence type */ public SupportLevel getEvidenceVerifySupport(Class<? extends Evidence> evidenceType) { return getEvidenceVerifySupport(evidenceType, null); }
@Override SupportLevel getEvidenceVerifySupport(final Class<? extends Evidence> evidenceType, final String algorithmName) throws RealmUnavailableException { return getSecurityDomain().getEvidenceVerifySupport(evidenceType, algorithmName); }
@Override SupportLevel getEvidenceVerifySupport(final Class<? extends Evidence> evidenceType, final String algorithmName) throws RealmUnavailableException { return getSecurityDomain().getEvidenceVerifySupport(evidenceType, algorithmName); }
@Override SupportLevel getEvidenceVerifySupport(final Class<? extends Evidence> evidenceType, final String algorithmName) throws RealmUnavailableException { return getSecurityDomain().getEvidenceVerifySupport(evidenceType, algorithmName); }
@Override SupportLevel getEvidenceVerifySupport(final Class<? extends Evidence> evidenceType, final String algorithmName) throws RealmUnavailableException { return getSecurityDomain().getEvidenceVerifySupport(evidenceType, algorithmName); }
@Override SupportLevel getEvidenceVerifySupport(final Class<? extends Evidence> evidenceType, final String algorithmName) throws RealmUnavailableException { return getSecurityDomain().getEvidenceVerifySupport(evidenceType, algorithmName); }
@Override SupportLevel getEvidenceVerifySupport(final Class<? extends Evidence> evidenceType, final String algorithmName) throws RealmUnavailableException { return getSecurityDomain().getEvidenceVerifySupport(evidenceType, algorithmName); }
/** * Set the security domain to use to authenticate clients. * * @param securityDomain the security domain to use to authenticate clients, or {@code null} to disable client * certificate authentication */ public SSLContextBuilder setSecurityDomain(final SecurityDomain securityDomain) { if (securityDomain != null && securityDomain.getEvidenceVerifySupport(X509PeerCertificateChainEvidence.class).isNotSupported()) { throw ElytronMessages.tls.securityDomainOfSSLContextDoesNotSupportX509(); } this.securityDomain = securityDomain; return this; }
/** * Set the security domain to use to authenticate clients. * * @param securityDomain the security domain to use to authenticate clients, or {@code null} to disable client * certificate authentication */ public SSLContextBuilder setSecurityDomain(final SecurityDomain securityDomain) { if (securityDomain != null && securityDomain.getEvidenceVerifySupport(X509PeerCertificateChainEvidence.class).isNotSupported()) { throw ElytronMessages.tls.securityDomainOfSSLContextDoesNotSupportX509(); } this.securityDomain = securityDomain; return this; }
/** * Set the security domain to use to authenticate clients. * * @param securityDomain the security domain to use to authenticate clients, or {@code null} to disable client * certificate authentication */ public SSLContextBuilder setSecurityDomain(final SecurityDomain securityDomain) { if (securityDomain != null && securityDomain.getEvidenceVerifySupport(X509PeerCertificateChainEvidence.class).isNotSupported()) { throw ElytronMessages.tls.securityDomainOfSSLContextDoesNotSupportX509(); } this.securityDomain = securityDomain; return this; }
if (AlgorithmEvidence.class.isAssignableFrom(evidenceType)) { for (String algorithmName : getSupportedEvidenceAlgorithmNames(evidenceType.asSubclass(AlgorithmEvidence.class), mechName)) { if ("*".equals(algorithmName) && securityDomain.getEvidenceVerifySupport(evidenceType).mayBeSupported() || securityDomain.getEvidenceVerifySupport(evidenceType, algorithmName).mayBeSupported()) { names.add(mechName); continue top; if (securityDomain.getEvidenceVerifySupport(evidenceType).mayBeSupported()) { names.add(mechName); continue top;
if (AlgorithmEvidence.class.isAssignableFrom(evidenceType)) { for (String algorithmName : getSupportedEvidenceAlgorithmNames(evidenceType.asSubclass(AlgorithmEvidence.class), mechName)) { if ("*".equals(algorithmName) && securityDomain.getEvidenceVerifySupport(evidenceType).mayBeSupported() || securityDomain.getEvidenceVerifySupport(evidenceType, algorithmName).mayBeSupported()) { names.add(mechName); continue top; if (securityDomain.getEvidenceVerifySupport(evidenceType).mayBeSupported()) { names.add(mechName); continue top;