Examples of KeyStoreManager

• com.adito.boot.KeyStoreManager

  Manages one or more keystores. Adito currently uses two keystores, one for the SSL server certificate and one for storing all of the client certificates.

  Before a keystore manager may be used, it must be registered using {@link #registerKeyStore(String,String,boolean,String,KeyStoreType)}

  To obtain a keystore, use {@link #getInstance(String)}, passing the keystore name. If the named keystore has not yet been initialised then it is created and initialised, otherwise the last used instance is returned.

  The key store files are held and manipulated in the conf directory. All key stores are also updated to the {@link com.adito.boot.Repository} which is loaded at start up,replacing all the files.

  @see com.adito.boot.Repository
• cybervillains.ca.KeyStoreManager
  This is the main entry point into the Cybervillains CA. This class handles generation, storage and the persistent mapping of input to duplicated certificates and mapped public keys. Default setting is to immediately persist changes to the store by writing out the keystore and mapping file every time a new certificate is added. This behavior can be disabled if desired, to enhance performance or allow temporary testing without modifying the certificate store. Copyright (c) 2007, Information Security Partners, LLC All rights reserved. In a special exception, Selenium/OpenQA is allowed to use this code under the Apache License 2.0. @author Brad Hill
• net.lightbody.bmp.proxy.selenium.KeyStoreManager
• org.apache.geronimo.management.geronimo.KeystoreManager
  Management interface for working with keystores. Mostly this is used to identify KeystoreInstances to work with individual keystores. @see KeystoreInstance @version $Rev: 615625 $ $Date: 2008-01-27 13:12:55 -0500 (Sun, 27 Jan 2008) $
• org.apache.karaf.jaas.config.KeystoreManager
  pache.org/repos/asf/geronimo/trunk/modules/management/ src/java/org/apache/geronimo/management/geronimo/KeystoreManager.java
• org.apache.manifoldcf.core.keystore.KeystoreManager
  This interface describes a class that manages keys and certificates in a secure manner. It's built on top of the JDK 1.4+ JSSE integration, and provides all the necessary logic to work well within the ManifoldCF java environment.
• org.apache.servicemix.jbi.security.keystore.KeystoreManager
  pache.org/repos/asf/geronimo/trunk/modules/management/ src/java/org/apache/geronimo/management/geronimo/KeystoreManager.java
• org.wso2.carbon.core.util.KeyStoreManager
  The purpose of this class is to centrally manage the key stores. Load key stores only once. Reloading them over and over result a in a performance penalty.

Examples of org.wso2.carbon.core.util.KeyStoreManager

    try {
      if (keyStoreName == null) {
        throw new SecurityConfigException("Key Store name can't be null");
      }

      KeyStoreManager keyMan = KeyStoreManager.getInstance((UserRegistry)registry);
      KeyStore ks = keyMan.getKeyStore(keyStoreName);

      byte[] bytes = Base64.decode(certData);
      CertificateFactory factory = CertificateFactory.getInstance("X.509");
      X509Certificate cert;
            try {
                cert = (X509Certificate) factory
                    .generateCertificate(new ByteArrayInputStream(bytes));
            } catch (CertificateException e) {
                log.error(e.getMessage(), e);
                throw new SecurityConfigException("Invalid format of the provided certificate file");
            }

      if (ks.getCertificateAlias(cert) != null) {
        // We already have this certificate in the key store - ignore
        // adding it twice
        return;
      }

      // String alias = this.getAlias(cert);
      ks.setCertificateEntry(fileName, cert);

      keyMan.updateKeyStore(keyStoreName, ks);

    } catch (SecurityConfigException e) {
      throw e;
    } catch (Exception e) {
      log.error(e.getMessage(), e);

Examples of org.wso2.carbon.core.util.KeyStoreManager

    try {
      if (keyStoreName == null) {
        throw new SecurityConfigException("Key Store name can't be null");
      }

      KeyStoreManager keyMan = KeyStoreManager.getInstance((UserRegistry)registry);
      KeyStore ks = keyMan.getKeyStore(keyStoreName);

      byte[] bytes = Base64.decode(certData);
      CertificateFactory factory = CertificateFactory.getInstance("X.509");
      X509Certificate cert;
            try {
                cert = (X509Certificate) factory
                    .generateCertificate(new ByteArrayInputStream(bytes));
            } catch (Exception e) {
                throw new SecurityConfigException("Invalid format of the provided certificate file");
            }

      if (ks.getCertificateAlias(cert) != null) {
        // We already have this certificate in the key store - ignore
        // adding it twice
        return null;
      }
      alias = cert.getSubjectDN().getName();
      // String alias = this.getAlias(cert);
      ks.setCertificateEntry(alias, cert);

      keyMan.updateKeyStore(keyStoreName, ks);

      return alias;

    } catch (SecurityConfigException e) {
      throw e;

Examples of org.wso2.carbon.core.util.KeyStoreManager

    try {
      if (keyStoreName == null) {
        throw new SecurityConfigException("Key Store name can't be null");
      }

      KeyStoreManager keyMan = KeyStoreManager.getInstance((UserRegistry)registry);
      KeyStore ks = keyMan.getKeyStore(keyStoreName);

      if (ks.getCertificate(alias) == null) {
        return;
      }

      ks.deleteEntry(alias);
      keyMan.updateKeyStore(keyStoreName, ks);
    } catch (SecurityConfigException e) {
      throw e;
    } catch (Exception e) {
      log.error(e.getMessage(), e);
      throw new SecurityConfigException(e.getMessage(), e);

Examples of org.wso2.carbon.core.util.KeyStoreManager

    try {
      if (keyStoreName == null) {
        throw new Exception("keystore name cannot be null");
      }

      KeyStoreManager keyMan = KeyStoreManager.getInstance((UserRegistry)registry);
      KeyStore ks = keyMan.getKeyStore(keyStoreName);

      Enumeration<String> enm = ks.aliases();
      List<String> lst = new ArrayList<String>();
      while (enm.hasMoreElements()) {
        lst.add(enm.nextElement());

Examples of org.wso2.carbon.core.util.KeyStoreManager

      KeyStore keyStore;
      String keyStoreType;
      String privateKeyPassowrd;
      if (KeyStoreUtil.isPrimaryStore(keyStoreName)) {
        KeyStoreManager keyMan = KeyStoreManager.getInstance((UserRegistry)registry);
        keyStore = keyMan.getPrimaryKeyStore();
        ServerConfiguration serverConfig = ServerConfiguration.getInstance();
        keyStoreType = serverConfig
            .getFirstProperty(RegistryResources.SecurityManagement.SERVER_PRIMARY_KEYSTORE_TYPE);
        privateKeyPassowrd = serverConfig
            .getFirstProperty(RegistryResources.SecurityManagement.SERVER_PRIVATE_KEY_PASSWORD);
      } else {
        String path = SecurityConstants.KEY_STORES + "/" + keyStoreName;
        if (!registry.resourceExists(path)) {
          throw new SecurityConfigException("Key Store not found");
        }
        Resource resource = registry.get(path);
        KeyStoreManager manager = KeyStoreManager.getInstance((UserRegistry)registry);
        keyStore = manager.getKeyStore(keyStoreName);
        keyStoreType = resource.getProperty(SecurityConstants.PROP_TYPE);

        String encpass = resource.getProperty(SecurityConstants.PROP_PRIVATE_KEY_PASS);

        CryptoUtil util = CryptoUtil.getDefaultCryptoUtil();

Examples of org.wso2.carbon.core.util.KeyStoreManager

    try {

      for (int i = 0; i < keystores.length; i++) {
        if (KeyStoreUtil.isPrimaryStore(keystores[i].getKeyStoreName())) {
          KeyStoreManager keyMan = KeyStoreManager.getInstance((UserRegistry)registry);
          keyStore = keyMan.getPrimaryKeyStore();
          ServerConfiguration serverConfig = ServerConfiguration.getInstance();
          privateKeyPassowrd = serverConfig
              .getFirstProperty(RegistryResources.SecurityManagement.SERVER_PRIVATE_KEY_PASSWORD);
          return keyStore.getKey(alias, privateKeyPassowrd.toCharArray());
        }

Examples of org.wso2.carbon.core.util.KeyStoreManager

    private String generateKeyPair() throws Exception {

        String domainName = SAMLSSOUtil.getRealmService().getTenantManager().getDomain(registry.getTenantId());
        //load keystore
        X509V3CertificateGenerator v3CertGen = new X509V3CertificateGenerator();
        KeyStoreManager keyMan = KeyStoreManager.getInstance(null);
        KeyStore keyStore = keyMan.getKeyStore("userSSO.jks");

        //generate keypair
        KeyPairGenerator keyPairGenerator = KeyPairGenerator.getInstance("RSA");
        keyPairGenerator.initialize(1024);
        KeyPair keyPair = keyPairGenerator.generateKeyPair();

        v3CertGen.setSerialNumber(BigInteger.valueOf(new SecureRandom().nextInt()));
        v3CertGen.setIssuerDN(new X509Principal("CN=" + domainName + ", OU=None, O=None L=None, C=None"));
        v3CertGen.setNotBefore(new Date(System.currentTimeMillis() - 1000L * 60 * 60 * 24 * 30));
        v3CertGen.setNotAfter(new Date(System.currentTimeMillis() + (1000L * 60 * 60 * 24 * 365 * 10)));
        v3CertGen.setSubjectDN(new X509Principal("CN=" + domainName + ", OU=None, O=None L=None, C=None"));
        v3CertGen.setPublicKey(keyPair.getPublic());
        v3CertGen.setSignatureAlgorithm("MD5WithRSAEncryption");
        X509Certificate PKCertificate = v3CertGen.generateX509Certificate(keyPair.getPrivate());

        //Generate the password
        SecureRandom random = new SecureRandom();
        String randString = new BigInteger(130, random).toString(12);
        String password = randString.substring(randString.length() - 10, randString.length());

        //add private key to KS
        keyStore.setKeyEntry(new Integer(registry.getTenantId()).toString(), keyPair.getPrivate(), password.toCharArray(),
                new java.security.cert.Certificate[]{PKCertificate});

        keyMan.updateKeyStore("userSSO.jks", keyStore);

        //save pub. key to a file
        String filePath = dumpPubCert(MessageContext.getCurrentMessageContext().getConfigurationContext()
                , PKCertificate.getEncoded(), null);

Examples of org.wso2.carbon.core.util.KeyStoreManager

      KeyStoreAdmin keyAdmin = new KeyStoreAdmin(IdentityTenantUtil.getRegistry(null, null));
      KeyStoreData[] keystores = keyAdmin.getKeyStores();
      if (keystores.length == 0 || keystores.length > 1) {
        throw new IdentityException("There should be only one keystore");
      }
      KeyStoreManager keyMan = KeyStoreManager.getInstance(null);
      KeyStore store = keyMan.getKeyStore(keystores[0].getKeyStoreName());
      Certificate[] certChain = store.getCertificateChain(alias);
      X509Certificate[] certs = new X509Certificate[certChain.length];
      for (int i = 0; i < certs.length; i++) {
        certs[i] = (X509Certificate) certChain[i];
      }

Examples of org.wso2.carbon.core.util.KeyStoreManager

      log.debug("Retreiving certificate to include in Mex for service " + serviceName);
    }

    try {
      KeyStoreData[] keystores = getServiceKeyStores(serviceName);
      KeyStoreManager keyMan = KeyStoreManager.getInstance(null);
      KeyStoreAdmin keyAdmin = new KeyStoreAdmin(IdentityTenantUtil.getRegistry(null, null));
      KeyStoreData privateStore = null;
      KeyStoreData keyStoreData = null;

      if (keystores != null && keystores.length > 0) {
        for (int i = 0; i < keystores.length; i++) {
          if (KeyStoreUtil.isPrimaryStore(keystores[i].getKeyStoreName())) {
            privateStore = keystores[i];
            break;
          }
        }
      }

      if (privateStore != null) {
        // policy has a private key store
        keyStoreData = keyAdmin.getKeystoreInfo(privateStore.getKeyStoreName());
        cert = getCertificate(privateStore.getKeyStoreName(), keyStoreData.getKey()
            .getAlias());
      } else {
        // this is for UT token policy
        ServerConfiguration config = ServerConfiguration.getInstance();
        String keyalias = config.getFirstProperty("Security.KeyStore.KeyAlias");
        KeyStore store = keyMan.getPrimaryKeyStore();
        cert = (X509Certificate) store.getCertificate(keyalias);
      }

    } catch (Exception e) {
      log.error("Error while retreiving certificate to include in Mex for service ", e);

Examples of org.wso2.carbon.core.util.KeyStoreManager

    if (log.isDebugEnabled()) {
      log.debug("Retreiving certificate for alias " + alias);
    }

    try {
      KeyStoreManager keyMan = KeyStoreManager.getInstance(null);
      KeyStore store = keyMan.getKeyStore(keyStoreName);
      return (X509Certificate) store.getCertificate(alias);
    } catch (Exception e) {
      log.error("Error while retreiving certificate for alias ", e);
      throw new IdentityException("Error while retreiving certificate for alias ", e);
    }