ConfigurationUtils (pki-javadoc)

java.lang.Object
- com.netscape.cms.servlet.csadmin.ConfigurationUtils

```
public class ConfigurationUtils
extends java.lang.Object
```
Utility class for functions to be used by the RESTful installer.

Author:

alee

Field Summary

Fields
Modifier and Type	Field and Description
`static java.lang.String`	`AUTH_FAILURE`
`static java.math.BigInteger`	`BIG_ZERO`
`static ConfigCertApprovalCallback`	`certApprovalCallback`
`static java.lang.String`	`DBUSER`
`static java.lang.String`	`FAILURE`
`static java.lang.Long`	`MINUS_ONE`
`static java.lang.String`	`SUCCESS`

Constructor Summary

Constructors
Constructor and Description

ConfigurationUtils()

Constructors
Constructor and Description
`ConfigurationUtils()`

Method Summary

All Methods Static Methods Concrete Methods
Modifier and Type	Method and Description
`static byte[]`	`addCertBag(org.mozilla.jss.crypto.X509Certificate x509cert, java.lang.String nickname, org.mozilla.jss.asn1.SEQUENCE safeContents)`
`static void`	`addKeyBag(org.mozilla.jss.crypto.PrivateKey pkey, org.mozilla.jss.crypto.X509Certificate x509cert, org.mozilla.jss.util.Password pass, byte[] localKeyId, org.mozilla.jss.asn1.SEQUENCE safeContents)`
`static void`	`addProfilesToTPSUser(java.lang.String adminID)`
`static void`	`backupKeys(java.lang.String pwd, java.lang.String fname)`
`static void`	`configCert(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, org.apache.velocity.context.Context context, Cert certObj)`
`static void`	`createAdmin(java.lang.String uid, java.lang.String email, java.lang.String name, java.lang.String pwd)`
`static void`	`createAdminCertificate(java.lang.String certRequest, java.lang.String certRequestType, java.lang.String subject)`
`static org.mozilla.jss.asn1.SET`	`createBagAttrs(java.lang.String nickName, byte[] localKeyId)`
`static void`	`createChangeLog(netscape.ldap.LDAPConnection conn, java.lang.String dir)`
`static void`	`createECCKeyPair(java.lang.String token, java.lang.String curveName, IConfigStore config, java.lang.String ct)`
`static byte[]`	`createLocalKeyId(org.mozilla.jss.crypto.X509Certificate cert)`
`static void`	`createPKCS7(netscape.security.x509.X509CertImpl cert)`
`static void`	`createReplicationAgreement(java.lang.String replicadn, netscape.ldap.LDAPConnection conn, java.lang.String name, java.lang.String replicahost, int replicaport, java.lang.String replicapwd, java.lang.String basedn, java.lang.String bindUser, java.lang.String secure, java.lang.String replicationSecurity)`
`static void`	`createReplicationManager(netscape.ldap.LDAPConnection conn, java.lang.String bindUser, java.lang.String pwd)`
`static void`	`createRSAKeyPair(java.lang.String token, int keysize, IConfigStore config, java.lang.String ct)`
`static void`	`createSecurityDomain()`
`static void`	`deleteBootstrapServerCert()`
`static void`	`deleteCert(java.lang.String tokenname, java.lang.String nickname)`
`static boolean`	`deleteDir(java.io.File dir)`
`static void`	`deleteEntries(netscape.ldap.LDAPSearchResults res, netscape.ldap.LDAPConnection conn, java.lang.String[] excludedDNs)`
`static void`	`deleteEntry(netscape.ldap.LDAPConnection conn, java.lang.String dn, java.lang.String[] excludedDNs)`
`static void`	`deleteExistingCerts()`
`static void`	`deleteSubtree(netscape.ldap.LDAPConnection conn, java.lang.String dn)`
`static int`	`enableReplication(java.lang.String replicadn, netscape.ldap.LDAPConnection conn, java.lang.String bindUser, java.lang.String basedn, int id)`
`static void`	`enableUSNPlugin()`
`static void`	`exportTransportCert(java.net.URI secdomainURI, java.net.URI targetURI, java.lang.String transportCert)`
`static boolean`	`findBootstrapServerCert()`
`static boolean`	`findCertificate(java.lang.String tokenname, java.lang.String nickname)`
`static void`	`generateCertRequest(IConfigStore config, java.lang.String certTag, Cert cert)`
`static java.lang.String`	`get(java.lang.String hostname, int port, boolean secure, java.lang.String path, java.lang.String clientnickname, org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback)`
`static void`	`getConfigEntriesFromMaster()`
`static java.lang.String`	`getContentValue(java.lang.String body, java.lang.String header)`
`static java.lang.String`	`getDomainXML(java.lang.String hostname, int https_admin_port, boolean https)`
`static netscape.security.x509.X509Key`	`getECCX509Key(IConfigStore config, java.lang.String certTag)`
`static byte[]`	`getEncodedKey(org.mozilla.jss.crypto.PrivateKey pkey)`
`static java.lang.String`	`getInstallToken(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd)`
`static java.lang.String`	`getInstanceDir(netscape.ldap.LDAPConnection conn)`
`static java.util.ArrayList<java.lang.String>`	`getMasterCertKeyList()`
`static java.lang.String`	`getNickname(IConfigStore config, java.lang.String certTag)`
`static java.lang.String`	`getOldCookie(java.lang.String sdhost, int sdport, java.lang.String user, java.lang.String passwd)`
`static int`	`getPortFromSecurityDomain(java.lang.String domainXML, java.lang.String host, int port, java.lang.String csType, java.lang.String givenTag, java.lang.String wantedTag)`
`static org.mozilla.jss.crypto.PrivateKey.Type`	`getPrivateKeyType(java.security.PublicKey pubkey)`
`static netscape.security.x509.X509Key`	`getRSAX509Key(IConfigStore config, java.lang.String certTag)`
`static void`	`getSecurityDomainPorts(java.lang.String domainXML, java.lang.String host, int port)`
`static void`	`getSharedSecret(java.lang.String tksHost, int tksPort, boolean importKey)`
`static java.lang.String`	`getSubsystemCert()`
`static java.lang.String`	`getSubsystemCert(java.lang.String host, int port, boolean https)`
`static int`	`getSubsystemCount(java.lang.String hostname, int https_admin_port, boolean https, java.lang.String type)`
`static java.lang.String`	`getTransportCert(java.net.URI secdomainURI, java.net.URI kraUri)`
`static java.util.Vector<java.lang.String>`	`getUrlListFromSecurityDomain(IConfigStore config, java.lang.String type, java.lang.String portType)`
`static byte[]`	`getX509Cert(java.lang.String nickname, java.util.Vector<java.util.Vector<java.lang.Object>> cert_collection)`
`static org.mozilla.jss.crypto.X509Certificate`	`getX509CertFromToken(byte[] cert)`
`static int`	`handleCerts(Cert cert)`
`static void`	`importAndSetCertPermissionsFromHSM()`
`static void`	`importCACertToOCSP()`
`static void`	`importCertChain(java.lang.String host, int port, java.lang.String serverPath, java.lang.String tag)`
`static void`	`importKeyCert(java.util.Vector<java.util.Vector<java.lang.Object>> pkeyinfo_collection, java.util.Vector<java.util.Vector<java.lang.Object>> cert_collection)`
`static void`	`importLDIFS(java.lang.String param, netscape.ldap.LDAPConnection conn)`
`static void`	`importLDIFS(java.lang.String param, netscape.ldap.LDAPConnection conn, boolean suppressErrors)`
`static void`	`initializeConsumer(java.lang.String replicadn, netscape.ldap.LDAPConnection conn, java.lang.String name)`
`static boolean`	`isAuditSigningCert(java.lang.String name)`
`static boolean`	`isCASigningCert(java.lang.String name)`
`static boolean`	`isSDHostDomainMaster(IConfigStore config)`
`static boolean`	`isValidCloneURI(java.lang.String domainXML, java.lang.String cloneHost, int clonePort)`
`static void`	`loadCert(IConfigStore config, Cert cert)`
`static void`	`loadCertRequest(IConfigStore config, java.lang.String tag, Cert cert)`
`static java.security.KeyPair`	`loadKeyPair(java.lang.String nickname, java.lang.String token)`
`static boolean`	`loginToken(org.mozilla.jss.crypto.CryptoToken token, java.lang.String tokPwd)`
`static void`	`populateDB()`
`static void`	`populateDBManager()`
`static void`	`populateVLVIndexes()`
`static java.lang.String`	`post(java.lang.String hostname, int port, boolean secure, java.lang.String path, javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> content, java.lang.String clientnickname, org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback)`
`static void`	`registerUser(java.net.URI secdomainURI, java.net.URI targetURI, java.lang.String targetType)`
`static void`	`reInitSubsystem(java.lang.String csType)`
`static void`	`releaseConnection(netscape.ldap.LDAPConnection conn)`
`static void`	`removeOldDBUsers(java.lang.String subjectDN)`
`static void`	`removePreopConfigEntries()` save variables needed for cloning and remove preops
`static boolean`	`replicationDone(java.lang.String replicadn, netscape.ldap.LDAPConnection conn, java.lang.String name)`
`static java.lang.String`	`replicationStatus(java.lang.String replicadn, netscape.ldap.LDAPConnection conn, java.lang.String name)`
`static void`	`restoreCertsFromP12(java.lang.String p12File, java.lang.String p12Pass)`
`static void`	`setCertPermissions(java.lang.String tag)`
`static void`	`setExternalCACert(java.lang.String certStr, java.lang.String subsystem, IConfigStore config, Cert certObj)`
`static void`	`setExternalCACertChain(java.lang.String certChainStr, java.lang.String subsystem, IConfigStore config, Cert certObj)`
`static void`	`setSigningAlgorithm(java.lang.String ct, java.lang.String keyAlgo, IConfigStore config)`
`static void`	`setupClientAuthUser()`
`static void`	`setupDBUser()`
`static void`	`setupReplication()`
`static void`	`storeKeyPair(IConfigStore config, java.lang.String tag, java.security.KeyPair pair)`
`static java.lang.String`	`submitAdminCertRequest(java.lang.String ca_hostname, int ca_port, java.lang.String profileId, java.lang.String certRequestType, java.lang.String certRequest, java.lang.String subjectDN)`
`static void`	`updateAuthdbInfo(java.lang.String basedn, java.lang.String host, java.lang.String port, java.lang.String secureConn)`
`static void`	`updateCloneConfig()`
`static void`	`updateConfig(IConfigStore config, java.lang.String certTag)`
`static boolean`	`updateConfigEntries(java.lang.String hostname, int port, boolean https, java.lang.String servlet, javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> content, IConfigStore config)`
`static void`	`updateConnectorInfo(java.lang.String host, int port, boolean https, javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> content)`
`static void`	`updateConnectorInfo(java.lang.String ownagenthost, java.lang.String ownagentsport)`
`static void`	`updateDomainXML(java.lang.String hostname, int port, boolean https, java.lang.String servlet, javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> content, boolean useClientAuth)`
`static void`	`updateNextRanges()`
`static void`	`updateNumberRange(java.lang.String hostname, int eePort, int adminPort, boolean https, javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> content, java.lang.String type)`
`static void`	`updateOCSPConfig()`
`static void`	`updateSecurityDomain()`
`static void`	`verifySystemCertificates()`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

SUCCESS
```
public static java.lang.String SUCCESS
```

FAILURE
```
public static java.lang.String FAILURE
```

AUTH_FAILURE

public static java.lang.String AUTH_FAILURE

BIG_ZERO

public static final java.math.BigInteger BIG_ZERO

MINUS_ONE

public static final java.lang.Long MINUS_ONE

DBUSER

public static final java.lang.String DBUSER

See Also:: Constant Field Values

certApprovalCallback

public static ConfigCertApprovalCallback certApprovalCallback

Constructor Detail
- ConfigurationUtils
```
public ConfigurationUtils()
```

Method Detail

loginToken

public static boolean loginToken(org.mozilla.jss.crypto.CryptoToken token,
                                 java.lang.String tokPwd)
                          throws org.mozilla.jss.crypto.TokenException,
                                 org.mozilla.jss.util.IncorrectPasswordException

Throws:: org.mozilla.jss.crypto.TokenException; org.mozilla.jss.util.IncorrectPasswordException

get

public static java.lang.String get(java.lang.String hostname,
                                   int port,
                                   boolean secure,
                                   java.lang.String path,
                                   java.lang.String clientnickname,
                                   org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback)
                            throws java.lang.Exception

Throws:: java.lang.Exception

post

public static java.lang.String post(java.lang.String hostname,
                                    int port,
                                    boolean secure,
                                    java.lang.String path,
                                    javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> content,
                                    java.lang.String clientnickname,
                                    org.mozilla.jss.ssl.SSLCertificateApprovalCallback certApprovalCallback)
                             throws java.lang.Exception

Throws:: java.lang.Exception

importCertChain

public static void importCertChain(java.lang.String host,
                                   int port,
                                   java.lang.String serverPath,
                                   java.lang.String tag)
                            throws java.lang.Exception

Throws:: java.lang.Exception

getInstallToken

public static java.lang.String getInstallToken(java.lang.String sdhost,
                                               int sdport,
                                               java.lang.String user,
                                               java.lang.String passwd)
                                        throws java.lang.Exception

Throws:: java.lang.Exception

getOldCookie

public static java.lang.String getOldCookie(java.lang.String sdhost,
                                            int sdport,
                                            java.lang.String user,
                                            java.lang.String passwd)
                                     throws java.lang.Exception

Throws:: java.lang.Exception

getContentValue

public static java.lang.String getContentValue(java.lang.String body,
                                               java.lang.String header)

getDomainXML

public static java.lang.String getDomainXML(java.lang.String hostname,
                                            int https_admin_port,
                                            boolean https)
                                     throws java.lang.Exception

Throws:: java.lang.Exception

getSecurityDomainPorts

public static void getSecurityDomainPorts(java.lang.String domainXML,
                                          java.lang.String host,
                                          int port)
                                   throws org.xml.sax.SAXException,
                                          java.io.IOException,
                                          javax.xml.parsers.ParserConfigurationException

Throws:: org.xml.sax.SAXException; java.io.IOException; javax.xml.parsers.ParserConfigurationException

getUrlListFromSecurityDomain

public static java.util.Vector<java.lang.String> getUrlListFromSecurityDomain(IConfigStore config,
                                                                              java.lang.String type,
                                                                              java.lang.String portType)
                                                                       throws java.lang.Exception

Throws:: java.lang.Exception

isValidCloneURI

public static boolean isValidCloneURI(java.lang.String domainXML,
                                      java.lang.String cloneHost,
                                      int clonePort)
                               throws EPropertyNotFound,
                                      EBaseException,
                                      org.xml.sax.SAXException,
                                      java.io.IOException,
                                      javax.xml.parsers.ParserConfigurationException

Throws:: EPropertyNotFound; EBaseException; org.xml.sax.SAXException; java.io.IOException; javax.xml.parsers.ParserConfigurationException

getConfigEntriesFromMaster

public static void getConfigEntriesFromMaster()
                                       throws java.lang.Exception

Throws:: java.lang.Exception

updateNumberRange

public static void updateNumberRange(java.lang.String hostname,
                                     int eePort,
                                     int adminPort,
                                     boolean https,
                                     javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> content,
                                     java.lang.String type)
                              throws java.lang.Exception

Throws:: java.lang.Exception

updateConfigEntries

public static boolean updateConfigEntries(java.lang.String hostname,
                                          int port,
                                          boolean https,
                                          java.lang.String servlet,
                                          javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> content,
                                          IConfigStore config)
                                   throws java.lang.Exception

Throws:: java.lang.Exception

restoreCertsFromP12

public static void restoreCertsFromP12(java.lang.String p12File,
                                       java.lang.String p12Pass)
                                throws EPropertyNotFound,
                                       EBaseException,
                                       java.security.InvalidKeyException,
                                       java.security.cert.CertificateException,
                                       java.security.NoSuchAlgorithmException,
                                       java.security.InvalidAlgorithmParameterException,
                                       java.lang.IllegalStateException,
                                       org.mozilla.jss.crypto.TokenException,
                                       org.mozilla.jss.crypto.IllegalBlockSizeException,
                                       org.mozilla.jss.crypto.BadPaddingException,
                                       org.mozilla.jss.CryptoManager.NotInitializedException,
                                       org.mozilla.jss.CryptoManager.NicknameConflictException,
                                       org.mozilla.jss.CryptoManager.UserCertConflictException,
                                       org.mozilla.jss.crypto.NoSuchItemOnTokenException,
                                       org.mozilla.jss.asn1.InvalidBERException,
                                       java.io.IOException

Throws:: EPropertyNotFound; EBaseException; java.security.InvalidKeyException; java.security.cert.CertificateException; java.security.NoSuchAlgorithmException; java.security.InvalidAlgorithmParameterException; java.lang.IllegalStateException; org.mozilla.jss.crypto.TokenException; org.mozilla.jss.crypto.IllegalBlockSizeException; org.mozilla.jss.crypto.BadPaddingException; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.CryptoManager.NicknameConflictException; org.mozilla.jss.CryptoManager.UserCertConflictException; org.mozilla.jss.crypto.NoSuchItemOnTokenException; org.mozilla.jss.asn1.InvalidBERException; java.io.IOException

verifySystemCertificates

public static void verifySystemCertificates()
                                     throws java.lang.Exception

Throws:: java.lang.Exception

importKeyCert

public static void importKeyCert(java.util.Vector<java.util.Vector<java.lang.Object>> pkeyinfo_collection,
                                 java.util.Vector<java.util.Vector<java.lang.Object>> cert_collection)
                          throws java.io.IOException,
                                 java.security.cert.CertificateException,
                                 org.mozilla.jss.crypto.TokenException,
                                 java.security.NoSuchAlgorithmException,
                                 java.security.InvalidKeyException,
                                 java.security.InvalidAlgorithmParameterException,
                                 java.lang.IllegalStateException,
                                 org.mozilla.jss.crypto.IllegalBlockSizeException,
                                 org.mozilla.jss.crypto.BadPaddingException,
                                 org.mozilla.jss.CryptoManager.NotInitializedException,
                                 org.mozilla.jss.CryptoManager.NicknameConflictException,
                                 org.mozilla.jss.CryptoManager.UserCertConflictException,
                                 org.mozilla.jss.crypto.NoSuchItemOnTokenException,
                                 EPropertyNotFound,
                                 EBaseException

Throws:: java.io.IOException; java.security.cert.CertificateException; org.mozilla.jss.crypto.TokenException; java.security.NoSuchAlgorithmException; java.security.InvalidKeyException; java.security.InvalidAlgorithmParameterException; java.lang.IllegalStateException; org.mozilla.jss.crypto.IllegalBlockSizeException; org.mozilla.jss.crypto.BadPaddingException; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.CryptoManager.NicknameConflictException; org.mozilla.jss.CryptoManager.UserCertConflictException; org.mozilla.jss.crypto.NoSuchItemOnTokenException; EPropertyNotFound; EBaseException

importAndSetCertPermissionsFromHSM

public static void importAndSetCertPermissionsFromHSM()
                                               throws EBaseException,
                                                      org.mozilla.jss.CryptoManager.NotInitializedException,
                                                      java.io.IOException,
                                                      java.security.cert.CertificateEncodingException,
                                                      org.mozilla.jss.CryptoManager.NicknameConflictException,
                                                      org.mozilla.jss.CryptoManager.UserCertConflictException,
                                                      org.mozilla.jss.crypto.NoSuchItemOnTokenException,
                                                      org.mozilla.jss.crypto.TokenException

Throws:: EBaseException; org.mozilla.jss.CryptoManager.NotInitializedException; java.io.IOException; java.security.cert.CertificateEncodingException; org.mozilla.jss.CryptoManager.NicknameConflictException; org.mozilla.jss.CryptoManager.UserCertConflictException; org.mozilla.jss.crypto.NoSuchItemOnTokenException; org.mozilla.jss.crypto.TokenException

getX509CertFromToken

public static org.mozilla.jss.crypto.X509Certificate getX509CertFromToken(byte[] cert)
                                                                   throws java.io.IOException,
                                                                          java.security.cert.CertificateException,
                                                                          org.mozilla.jss.CryptoManager.NotInitializedException

Throws:: java.io.IOException; java.security.cert.CertificateException; org.mozilla.jss.CryptoManager.NotInitializedException

getPrivateKeyType

public static org.mozilla.jss.crypto.PrivateKey.Type getPrivateKeyType(java.security.PublicKey pubkey)

isCASigningCert

public static boolean isCASigningCert(java.lang.String name)
                               throws EBaseException

Throws:: EBaseException

isAuditSigningCert

public static boolean isAuditSigningCert(java.lang.String name)
                                  throws EPropertyNotFound,
                                         EBaseException

Throws:: EPropertyNotFound; EBaseException

deleteExistingCerts

public static void deleteExistingCerts()
                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                       EBaseException,
                                       org.mozilla.jss.crypto.TokenException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; EBaseException; org.mozilla.jss.crypto.TokenException

getMasterCertKeyList

public static java.util.ArrayList<java.lang.String> getMasterCertKeyList()
                                                                  throws EBaseException

Throws:: EBaseException

getX509Cert

public static byte[] getX509Cert(java.lang.String nickname,
                                 java.util.Vector<java.util.Vector<java.lang.Object>> cert_collection)
                          throws java.security.cert.CertificateException

Throws:: java.security.cert.CertificateException

releaseConnection

public static void releaseConnection(netscape.ldap.LDAPConnection conn)

enableUSNPlugin

public static void enableUSNPlugin()
                            throws java.io.IOException,
                                   EBaseException

Throws:: java.io.IOException; EBaseException

populateDB

public static void populateDB()
                       throws java.io.IOException,
                              EBaseException

Throws:: java.io.IOException; EBaseException

importLDIFS

public static void importLDIFS(java.lang.String param,
                               netscape.ldap.LDAPConnection conn)
                        throws EPropertyNotFound,
                               java.io.IOException,
                               EBaseException

Throws:: EPropertyNotFound; java.io.IOException; EBaseException

importLDIFS

public static void importLDIFS(java.lang.String param,
                               netscape.ldap.LDAPConnection conn,
                               boolean suppressErrors)
                        throws java.io.IOException,
                               EPropertyNotFound,
                               EBaseException

Throws:: java.io.IOException; EPropertyNotFound; EBaseException

deleteSubtree

public static void deleteSubtree(netscape.ldap.LDAPConnection conn,
                                 java.lang.String dn)
                          throws EBaseException

Throws:: EBaseException

deleteEntries

public static void deleteEntries(netscape.ldap.LDAPSearchResults res,
                                 netscape.ldap.LDAPConnection conn,
                                 java.lang.String[] excludedDNs)
                          throws netscape.ldap.LDAPException

Throws:: netscape.ldap.LDAPException

deleteEntry

public static void deleteEntry(netscape.ldap.LDAPConnection conn,
                               java.lang.String dn,
                               java.lang.String[] excludedDNs)
                        throws netscape.ldap.LDAPException

Throws:: netscape.ldap.LDAPException

getInstanceDir

public static java.lang.String getInstanceDir(netscape.ldap.LDAPConnection conn)
                                       throws netscape.ldap.LDAPException

Throws:: netscape.ldap.LDAPException

deleteDir

public static boolean deleteDir(java.io.File dir)

populateDBManager

public static void populateDBManager()
                              throws java.lang.Exception

Throws:: java.lang.Exception

populateVLVIndexes

public static void populateVLVIndexes()
                               throws java.lang.Exception

Throws:: java.lang.Exception

setupReplication

public static void setupReplication()
                             throws EBaseException,
                                    java.io.IOException

Throws:: EBaseException; java.io.IOException

createReplicationManager

public static void createReplicationManager(netscape.ldap.LDAPConnection conn,
                                            java.lang.String bindUser,
                                            java.lang.String pwd)
                                     throws netscape.ldap.LDAPException

Throws:: netscape.ldap.LDAPException

createChangeLog

public static void createChangeLog(netscape.ldap.LDAPConnection conn,
                                   java.lang.String dir)
                            throws netscape.ldap.LDAPException

Throws:: netscape.ldap.LDAPException

enableReplication

public static int enableReplication(java.lang.String replicadn,
                                    netscape.ldap.LDAPConnection conn,
                                    java.lang.String bindUser,
                                    java.lang.String basedn,
                                    int id)
                             throws netscape.ldap.LDAPException

Throws:: netscape.ldap.LDAPException

createReplicationAgreement

public static void createReplicationAgreement(java.lang.String replicadn,
                                              netscape.ldap.LDAPConnection conn,
                                              java.lang.String name,
                                              java.lang.String replicahost,
                                              int replicaport,
                                              java.lang.String replicapwd,
                                              java.lang.String basedn,
                                              java.lang.String bindUser,
                                              java.lang.String secure,
                                              java.lang.String replicationSecurity)
                                       throws netscape.ldap.LDAPException

Throws:: netscape.ldap.LDAPException

initializeConsumer

public static void initializeConsumer(java.lang.String replicadn,
                                      netscape.ldap.LDAPConnection conn,
                                      java.lang.String name)
                               throws netscape.ldap.LDAPException

Throws:: netscape.ldap.LDAPException

replicationDone

public static boolean replicationDone(java.lang.String replicadn,
                                      netscape.ldap.LDAPConnection conn,
                                      java.lang.String name)
                               throws netscape.ldap.LDAPException,
                                      java.io.IOException

Throws:: netscape.ldap.LDAPException; java.io.IOException

replicationStatus

public static java.lang.String replicationStatus(java.lang.String replicadn,
                                                 netscape.ldap.LDAPConnection conn,
                                                 java.lang.String name)
                                          throws java.io.IOException,
                                                 netscape.ldap.LDAPException

Throws:: java.io.IOException; netscape.ldap.LDAPException

reInitSubsystem

public static void reInitSubsystem(java.lang.String csType)
                            throws EBaseException

Throws:: EBaseException

setExternalCACert

public static void setExternalCACert(java.lang.String certStr,
                                     java.lang.String subsystem,
                                     IConfigStore config,
                                     Cert certObj)
                              throws java.lang.Exception

Throws:: java.lang.Exception

setExternalCACertChain

public static void setExternalCACertChain(java.lang.String certChainStr,
                                          java.lang.String subsystem,
                                          IConfigStore config,
                                          Cert certObj)

loadKeyPair

public static java.security.KeyPair loadKeyPair(java.lang.String nickname,
                                                java.lang.String token)
                                         throws java.lang.Exception

Throws:: java.lang.Exception

storeKeyPair

public static void storeKeyPair(IConfigStore config,
                                java.lang.String tag,
                                java.security.KeyPair pair)
                         throws org.mozilla.jss.crypto.TokenException,
                                EBaseException

Throws:: org.mozilla.jss.crypto.TokenException; EBaseException

createECCKeyPair

public static void createECCKeyPair(java.lang.String token,
                                    java.lang.String curveName,
                                    IConfigStore config,
                                    java.lang.String ct)
                             throws java.security.NoSuchAlgorithmException,
                                    org.mozilla.jss.NoSuchTokenException,
                                    org.mozilla.jss.crypto.TokenException,
                                    org.mozilla.jss.CryptoManager.NotInitializedException,
                                    EPropertyNotFound,
                                    EBaseException

Throws:: java.security.NoSuchAlgorithmException; org.mozilla.jss.NoSuchTokenException; org.mozilla.jss.crypto.TokenException; org.mozilla.jss.CryptoManager.NotInitializedException; EPropertyNotFound; EBaseException

createRSAKeyPair

public static void createRSAKeyPair(java.lang.String token,
                                    int keysize,
                                    IConfigStore config,
                                    java.lang.String ct)
                             throws java.security.NoSuchAlgorithmException,
                                    org.mozilla.jss.NoSuchTokenException,
                                    org.mozilla.jss.crypto.TokenException,
                                    org.mozilla.jss.CryptoManager.NotInitializedException,
                                    EPropertyNotFound,
                                    EBaseException

Throws:: java.security.NoSuchAlgorithmException; org.mozilla.jss.NoSuchTokenException; org.mozilla.jss.crypto.TokenException; org.mozilla.jss.CryptoManager.NotInitializedException; EPropertyNotFound; EBaseException

setSigningAlgorithm

public static void setSigningAlgorithm(java.lang.String ct,
                                       java.lang.String keyAlgo,
                                       IConfigStore config)
                                throws EPropertyNotFound,
                                       EBaseException

Throws:: EPropertyNotFound; EBaseException

getSubsystemCount

public static int getSubsystemCount(java.lang.String hostname,
                                    int https_admin_port,
                                    boolean https,
                                    java.lang.String type)
                             throws java.lang.Exception

Throws:: java.lang.Exception

configCert

public static void configCert(javax.servlet.http.HttpServletRequest request,
                              javax.servlet.http.HttpServletResponse response,
                              org.apache.velocity.context.Context context,
                              Cert certObj)
                       throws java.lang.Exception

Throws:: java.lang.Exception

updateConfig

public static void updateConfig(IConfigStore config,
                                java.lang.String certTag)
                         throws EBaseException,
                                java.io.IOException

Throws:: EBaseException; java.io.IOException

getNickname

public static java.lang.String getNickname(IConfigStore config,
                                           java.lang.String certTag)
                                    throws EBaseException

Throws:: EBaseException

getPortFromSecurityDomain

public static int getPortFromSecurityDomain(java.lang.String domainXML,
                                            java.lang.String host,
                                            int port,
                                            java.lang.String csType,
                                            java.lang.String givenTag,
                                            java.lang.String wantedTag)
                                     throws org.xml.sax.SAXException,
                                            java.io.IOException,
                                            javax.xml.parsers.ParserConfigurationException

Throws:: org.xml.sax.SAXException; java.io.IOException; javax.xml.parsers.ParserConfigurationException

updateCloneConfig

public static void updateCloneConfig()
                              throws EBaseException,
                                     java.io.IOException

Throws:: EBaseException; java.io.IOException

loadCertRequest

public static void loadCertRequest(IConfigStore config,
                                   java.lang.String tag,
                                   Cert cert)
                            throws java.lang.Exception

Throws:: java.lang.Exception

generateCertRequest

public static void generateCertRequest(IConfigStore config,
                                       java.lang.String certTag,
                                       Cert cert)
                                throws java.lang.Exception

Throws:: java.lang.Exception

getECCX509Key

public static netscape.security.x509.X509Key getECCX509Key(IConfigStore config,
                                                           java.lang.String certTag)
                                                    throws EPropertyNotFound,
                                                           EBaseException,
                                                           java.security.InvalidKeyException

Throws:: EPropertyNotFound; EBaseException; java.security.InvalidKeyException

getRSAX509Key

public static netscape.security.x509.X509Key getRSAX509Key(IConfigStore config,
                                                           java.lang.String certTag)
                                                    throws EPropertyNotFound,
                                                           EBaseException,
                                                           java.security.InvalidKeyException

Throws:: EPropertyNotFound; EBaseException; java.security.InvalidKeyException

loadCert

public static void loadCert(IConfigStore config,
                            Cert cert)
                     throws java.lang.Exception

Throws:: java.lang.Exception

handleCerts

public static int handleCerts(Cert cert)
                       throws java.lang.Exception

Throws:: java.lang.Exception

setCertPermissions

public static void setCertPermissions(java.lang.String tag)
                               throws EBaseException,
                                      org.mozilla.jss.CryptoManager.NotInitializedException,
                                      org.mozilla.jss.crypto.ObjectNotFoundException,
                                      org.mozilla.jss.crypto.TokenException

Throws:: EBaseException; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.ObjectNotFoundException; org.mozilla.jss.crypto.TokenException

findCertificate

public static boolean findCertificate(java.lang.String tokenname,
                                      java.lang.String nickname)
                               throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                      org.mozilla.jss.crypto.TokenException,
                                      java.io.IOException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException; java.io.IOException

findBootstrapServerCert

public static boolean findBootstrapServerCert()
                                       throws EBaseException,
                                              org.mozilla.jss.CryptoManager.NotInitializedException,
                                              org.mozilla.jss.crypto.TokenException

Throws:: EBaseException; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException

deleteBootstrapServerCert

public static void deleteBootstrapServerCert()
                                      throws EBaseException,
                                             org.mozilla.jss.CryptoManager.NotInitializedException,
                                             org.mozilla.jss.NoSuchTokenException,
                                             org.mozilla.jss.crypto.TokenException

Throws:: EBaseException; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; org.mozilla.jss.crypto.TokenException

deleteCert

public static void deleteCert(java.lang.String tokenname,
                              java.lang.String nickname)
                       throws org.mozilla.jss.CryptoManager.NotInitializedException,
                              org.mozilla.jss.NoSuchTokenException,
                              org.mozilla.jss.crypto.TokenException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; org.mozilla.jss.crypto.TokenException

backupKeys

public static void backupKeys(java.lang.String pwd,
                              java.lang.String fname)
                       throws java.lang.Exception

Throws:: java.lang.Exception

addKeyBag

public static void addKeyBag(org.mozilla.jss.crypto.PrivateKey pkey,
                             org.mozilla.jss.crypto.X509Certificate x509cert,
                             org.mozilla.jss.util.Password pass,
                             byte[] localKeyId,
                             org.mozilla.jss.asn1.SEQUENCE safeContents)
                      throws java.security.NoSuchAlgorithmException,
                             org.mozilla.jss.asn1.InvalidBERException,
                             java.security.InvalidKeyException,
                             java.security.InvalidAlgorithmParameterException,
                             org.mozilla.jss.CryptoManager.NotInitializedException,
                             org.mozilla.jss.crypto.TokenException,
                             java.lang.IllegalStateException,
                             org.mozilla.jss.crypto.IllegalBlockSizeException,
                             org.mozilla.jss.crypto.BadPaddingException,
                             java.io.CharConversionException

Throws:: java.security.NoSuchAlgorithmException; org.mozilla.jss.asn1.InvalidBERException; java.security.InvalidKeyException; java.security.InvalidAlgorithmParameterException; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException; java.lang.IllegalStateException; org.mozilla.jss.crypto.IllegalBlockSizeException; org.mozilla.jss.crypto.BadPaddingException; java.io.CharConversionException

addCertBag

public static byte[] addCertBag(org.mozilla.jss.crypto.X509Certificate x509cert,
                                java.lang.String nickname,
                                org.mozilla.jss.asn1.SEQUENCE safeContents)
                         throws java.security.cert.CertificateEncodingException,
                                java.security.NoSuchAlgorithmException,
                                java.io.CharConversionException

Throws:: java.security.cert.CertificateEncodingException; java.security.NoSuchAlgorithmException; java.io.CharConversionException

getEncodedKey

public static byte[] getEncodedKey(org.mozilla.jss.crypto.PrivateKey pkey)
                            throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                   java.security.NoSuchAlgorithmException,
                                   org.mozilla.jss.crypto.TokenException,
                                   java.lang.IllegalStateException,
                                   java.io.CharConversionException,
                                   java.security.InvalidKeyException,
                                   java.security.InvalidAlgorithmParameterException,
                                   org.mozilla.jss.crypto.IllegalBlockSizeException,
                                   org.mozilla.jss.crypto.BadPaddingException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException; java.lang.IllegalStateException; java.io.CharConversionException; java.security.InvalidKeyException; java.security.InvalidAlgorithmParameterException; org.mozilla.jss.crypto.IllegalBlockSizeException; org.mozilla.jss.crypto.BadPaddingException

createLocalKeyId

public static byte[] createLocalKeyId(org.mozilla.jss.crypto.X509Certificate cert)
                               throws java.security.NoSuchAlgorithmException,
                                      java.security.cert.CertificateEncodingException

Throws:: java.security.NoSuchAlgorithmException; java.security.cert.CertificateEncodingException

createBagAttrs

public static org.mozilla.jss.asn1.SET createBagAttrs(java.lang.String nickName,
                                                      byte[] localKeyId)
                                               throws java.io.CharConversionException

Throws:: java.io.CharConversionException

createAdminCertificate

public static void createAdminCertificate(java.lang.String certRequest,
                                          java.lang.String certRequestType,
                                          java.lang.String subject)
                                   throws java.lang.Exception

Throws:: java.lang.Exception

createPKCS7

public static void createPKCS7(netscape.security.x509.X509CertImpl cert)
                        throws java.io.IOException

Throws:: java.io.IOException

createAdmin

public static void createAdmin(java.lang.String uid,
                               java.lang.String email,
                               java.lang.String name,
                               java.lang.String pwd)
                        throws java.io.IOException,
                               EBaseException,
                               netscape.ldap.LDAPException

Throws:: java.io.IOException; EBaseException; netscape.ldap.LDAPException

submitAdminCertRequest

public static java.lang.String submitAdminCertRequest(java.lang.String ca_hostname,
                                                      int ca_port,
                                                      java.lang.String profileId,
                                                      java.lang.String certRequestType,
                                                      java.lang.String certRequest,
                                                      java.lang.String subjectDN)
                                               throws java.lang.Exception

Throws:: java.lang.Exception

createSecurityDomain

public static void createSecurityDomain()
                                 throws EBaseException,
                                        netscape.ldap.LDAPException,
                                        java.lang.NumberFormatException,
                                        java.io.IOException,
                                        org.xml.sax.SAXException,
                                        javax.xml.parsers.ParserConfigurationException

Throws:: EBaseException; netscape.ldap.LDAPException; java.lang.NumberFormatException; java.io.IOException; org.xml.sax.SAXException; javax.xml.parsers.ParserConfigurationException

updateSecurityDomain

public static void updateSecurityDomain()
                                 throws java.lang.Exception

Throws:: java.lang.Exception

isSDHostDomainMaster

public static boolean isSDHostDomainMaster(IConfigStore config)
                                    throws java.lang.Exception

Throws:: java.lang.Exception

updateDomainXML

public static void updateDomainXML(java.lang.String hostname,
                                   int port,
                                   boolean https,
                                   java.lang.String servlet,
                                   javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> content,
                                   boolean useClientAuth)
                            throws java.lang.Exception

Throws:: java.lang.Exception

updateConnectorInfo

public static void updateConnectorInfo(java.lang.String ownagenthost,
                                       java.lang.String ownagentsport)
                                throws java.lang.Exception

Throws:: java.lang.Exception

updateConnectorInfo

public static void updateConnectorInfo(java.lang.String host,
                                       int port,
                                       boolean https,
                                       javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> content)
                                throws java.lang.Exception

Throws:: java.lang.Exception

setupClientAuthUser

public static void setupClientAuthUser()
                                throws java.lang.Exception

Throws:: java.lang.Exception

getSubsystemCert

public static java.lang.String getSubsystemCert(java.lang.String host,
                                                int port,
                                                boolean https)
                                         throws java.lang.Exception

Throws:: java.lang.Exception

getTransportCert

public static java.lang.String getTransportCert(java.net.URI secdomainURI,
                                                java.net.URI kraUri)
                                         throws java.lang.Exception

Throws:: java.lang.Exception

getSharedSecret

public static void getSharedSecret(java.lang.String tksHost,
                                   int tksPort,
                                   boolean importKey)
                            throws EPropertyNotFound,
                                   EBaseException,
                                   java.net.URISyntaxException,
                                   java.security.InvalidKeyException,
                                   java.security.NoSuchAlgorithmException,
                                   java.security.InvalidAlgorithmParameterException,
                                   org.mozilla.jss.CryptoManager.NotInitializedException,
                                   org.mozilla.jss.crypto.TokenException,
                                   org.mozilla.jss.crypto.ObjectNotFoundException,
                                   java.io.IOException

Throws:: EPropertyNotFound; EBaseException; java.net.URISyntaxException; java.security.InvalidKeyException; java.security.NoSuchAlgorithmException; java.security.InvalidAlgorithmParameterException; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException; org.mozilla.jss.crypto.ObjectNotFoundException; java.io.IOException

importCACertToOCSP

public static void importCACertToOCSP()
                               throws java.io.IOException,
                                      EBaseException,
                                      java.security.cert.CertificateEncodingException

Throws:: java.io.IOException; EBaseException; java.security.cert.CertificateEncodingException

updateOCSPConfig

public static void updateOCSPConfig()
                             throws java.lang.Exception

Throws:: java.lang.Exception

setupDBUser

public static void setupDBUser()
                        throws java.security.cert.CertificateException,
                               netscape.ldap.LDAPException,
                               EBaseException,
                               org.mozilla.jss.CryptoManager.NotInitializedException,
                               org.mozilla.jss.crypto.ObjectNotFoundException,
                               org.mozilla.jss.crypto.TokenException,
                               java.io.IOException

Throws:: java.security.cert.CertificateException; netscape.ldap.LDAPException; EBaseException; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.ObjectNotFoundException; org.mozilla.jss.crypto.TokenException; java.io.IOException

addProfilesToTPSUser

public static void addProfilesToTPSUser(java.lang.String adminID)
                                 throws EUsrGrpException,
                                        netscape.ldap.LDAPException

Throws:: EUsrGrpException; netscape.ldap.LDAPException

registerUser

public static void registerUser(java.net.URI secdomainURI,
                                java.net.URI targetURI,
                                java.lang.String targetType)
                         throws java.lang.Exception

Throws:: java.lang.Exception

exportTransportCert

public static void exportTransportCert(java.net.URI secdomainURI,
                                       java.net.URI targetURI,
                                       java.lang.String transportCert)
                                throws java.lang.Exception

Throws:: java.lang.Exception

removeOldDBUsers

public static void removeOldDBUsers(java.lang.String subjectDN)
                             throws EBaseException,
                                    netscape.ldap.LDAPException

Throws:: EBaseException; netscape.ldap.LDAPException

getSubsystemCert

public static java.lang.String getSubsystemCert()
                                         throws EBaseException,
                                                org.mozilla.jss.CryptoManager.NotInitializedException,
                                                org.mozilla.jss.crypto.ObjectNotFoundException,
                                                org.mozilla.jss.crypto.TokenException,
                                                java.security.cert.CertificateEncodingException,
                                                java.io.IOException

Throws:: EBaseException; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.ObjectNotFoundException; org.mozilla.jss.crypto.TokenException; java.security.cert.CertificateEncodingException; java.io.IOException

updateAuthdbInfo

public static void updateAuthdbInfo(java.lang.String basedn,
                                    java.lang.String host,
                                    java.lang.String port,
                                    java.lang.String secureConn)

updateNextRanges

public static void updateNextRanges()
                             throws EBaseException,
                                    netscape.ldap.LDAPException

Throws:: EBaseException; netscape.ldap.LDAPException

removePreopConfigEntries

public static void removePreopConfigEntries()
                                     throws EBaseException

save variables needed for cloning and remove preops

Throws:: EBaseException

Class ConfigurationUtils

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

SUCCESS

FAILURE

AUTH_FAILURE

BIG_ZERO

MINUS_ONE

DBUSER

certApprovalCallback

Constructor Detail

ConfigurationUtils

Method Detail

loginToken

get

post

importCertChain

getInstallToken

getOldCookie

getContentValue

getDomainXML

getSecurityDomainPorts

getUrlListFromSecurityDomain

isValidCloneURI

getConfigEntriesFromMaster

updateNumberRange

updateConfigEntries

restoreCertsFromP12

verifySystemCertificates

importKeyCert

importAndSetCertPermissionsFromHSM

getX509CertFromToken

getPrivateKeyType

isCASigningCert

isAuditSigningCert

deleteExistingCerts

getMasterCertKeyList

getX509Cert

releaseConnection

enableUSNPlugin

populateDB

importLDIFS

importLDIFS

deleteSubtree

deleteEntries

deleteEntry

getInstanceDir

deleteDir

populateDBManager

populateVLVIndexes

setupReplication

createReplicationManager

createChangeLog

enableReplication

createReplicationAgreement

initializeConsumer

replicationDone

replicationStatus

reInitSubsystem

setExternalCACert

setExternalCACertChain

loadKeyPair

storeKeyPair

createECCKeyPair

createRSAKeyPair

setSigningAlgorithm

getSubsystemCount

configCert

updateConfig

getNickname

getPortFromSecurityDomain

updateCloneConfig

loadCertRequest

generateCertRequest

getECCX509Key

getRSAX509Key

loadCert