All Classes and Interfaces
Class
Description
Implementation of
BaseCredentialConfiguration
.Abstract base class for credential monitoring events.
Abstract base class for
KeyPairGeneratorFactory
.Abstract implementation of the
PkiCredentialContainer
interface for implementations that rely on an
underlying Java KeyStore.Abstract base class for classes implementing the
PkiCredential
interface.Abstract implementation of the
PkiCredentialContainer
interface.Abstract base class for reloadable credentials.
Abstract base class for converters that convert a resource property value into an object.
Abstract base class for PKCS#11 configuration.
Base configuration interface for creating a
PkiCredential
.A basic implementation of the
PkiCredential
interface.Base interface for references to objects declared in a
CredentialBundles
.A
CredentialBundleRegistrar
implementation that registers credentials and key stores based on a configuration
object.An interface for loading configuration values that are "locations".
Autoconfiguration for converters used for configuring credentials.
Interface to be implemented for registering
KeyStore
and
PkiCredential
objects at a
CredentialBundleRegistry
.Interface for registering
PkiCredential
s and KeyStore
s.An interface for accessing registered credentials and key stores.
Configuration interface for bundles of credentials and key stores.
Configuration properties for bundles of credentials and key stores.
Interface for a credential monitor bean.
A
HealthIndicator
for monitoring credentials.Callbacks for credential monitoring signalling application events.
Monitor task for credentials.
A
Pkcs11Configuration
where a PKCS#11 each configuration setting is supplied.An implementation of
ConfigurationResourceLoader
that supports file:
, http:
, https:
and classpath:
prefixes.Default implementation of the
CredentialBundles
and CredentialBundleRegistry
interfaces.The default implementation of the
CredentialMonitorBean
interface.A default credential test function that tests a credential by getting a private key reference and signs test data
using this key.
Factory for elliptic curve key pair generators.
Various parameter specs for elliptic curves.
Event that is signalled when a credential has been reloaded with an error.
Event that is signalled when a credential has been tested and the test failed.
A
Pkcs11Configuration
where a PKCS#11 configuration file is supplied.Implements a
PkiCredentialContainer
based on an HSM.An in-memory implementation of the
PkiCredentialContainer
interface.Symbolic constants for storing JWK properties in a
PkiCredential.Metadata
object.A function that transforms a
PkiCredential
into an JWK
.Default implementation of the function that returns the JOSE algorithm (
alg
property).Default implementation of the function that returns the key id (JWT
kid
property).Default implementation of the function that returns a set of
KeyOperation
s for a credential.Default implementation of the function that returns the
KeyUse
for a credential.KeyConfiguration generation static constants and resources for use with the
PkiCredentialContainer
key generation
functions.Intarface for a factory for creating a
KeyPairGenerator
suitable for a specific key type.A registry for getting a
KeyPairGeneratorFactory
based on a key type (see KeyGenType
).A class implementing a builder pattern for setting up a
KeyStore
.Factory class for loading and unlocking a
KeyStore
.Factory bean for creating and unlocking a
KeyStore
.A
CredentialBundles
reference to a
KeyStore
.A
Converter
that accepts a string that is a reference to a registered KeyStore
and uses the system
CredentialBundles
bean to create a resolvable KeyStoreReference
.When a
KeyStoreCredential
is used with an underlying
PKCS#11 KeyStore
the implementation may want to reload the KeyStore
.Utility methods for handling public and private keys.
Internal class used for serialization across library classes.
A managed
PkiCredential
is used when a PkiCredentialContainer
returns credentials.For configuring scheduling of credential monitors.
Exception indicating that a
PkiCredential
was referenced
with an ID that does not match any registered credential.Exception indicating that a
KeyStore
was referenced with an ID that does not match any
registered key store.A credential that implements OpenSAML's
X509Credential
interface and wraps a
PkiCredential
.Function that transform a
PkiCredential
into an OpenSAML X509Credential
.Default implementation of the function getting the SAML entityID to assign.
Symbolic constants for storing OpenSAML specific properties in a
PkiCredential.Metadata
object.Configuration interface for creating a
PkiCredential
using
PEM-encoded certificate(s)/public keys and private keys.Configuration properties for creating a
PkiCredential
using PEM-encoded certificate(s) and private keys.A functional interface for getting a reference to a certificate chain residing on a PKCS#11 device.
Interface for a PKCS#11 configuration.
Exception class for reporting invalid PKCS#11 configuration or failures to instatiate a PKCS#11 provider.
A PKCS#11 credential implementation of the
PkiCredential
and ReloadablePkiCredential
interfaces.The default implementation of the
KeyStoreReloader
interface.A functional interface for getting a reference to an object residing on a PKCS#11 device.
A functional interface for getting a reference to a private key residing on a PKCS#11 device.
A representation of a PKI key pair that holds a private key and an X.509 certificate (or just a public key).
Metadata associated with a
PkiCredential
.Configuration interface for configuring a stand-alone
PkiCredential
.Configuration properties for configuring a stand-alone
PkiCredential
.Deprecated, for removal: This API element is subject to removal in a future version.
This interface defines the function of a multi credential container with keys that are contained and managed inside
the container for its entire lifetime.
General exception for errors when managing PkiCredentials in a PkiCredentialContainer.
Factory class for creating
PkiCredential
instances.Deprecated, for removal: This API element is subject to removal in a future version.
Use
PkiCredentialFactory
or
PkiCredentialFactoryBean
instead.A
FactoryBean
for creating PkiCredential
objects.A
CredentialBundles
reference to a
PkiCredential
.A
Converter
that accepts a string that is a reference to a registered PkiCredential
and uses the
system CredentialBundles
bean to create a resolvable PkiCredentialReference
.A
Converter
that gets the property value (e.g., classpath:signing.key
) and instantiates a
PrivateKey
object.A
Converter
that gets the property value (e.g., classpath:cert.crt
) and instantiates an
X509Certificate
object.An interface for credentials are "testable" and "reloadable".
Factory for RSA key pair generators.
Implements a
PkiCredentialContainer
based on a KeyStore
that is held in memory (i.e. not using an HSM
device for key storage).A Spring-implementation of the
ConfigurationResourceLoader
interface.Autoconfiguration class for setting up credential bundles.
Configuration properties for bundles of credentials and key stores.
For monitoring.
A
Pkcs11Configuration
where the SunPKCS11 provider is statically configured (see below).Configuration interface for creating a Java
KeyStore
.Additional configuration of PKCS11 keystores.
Custom PKCS#11 settings.
Configuration properties for creating a Java
KeyStore
.Additional configuration of PKCS11 keystores.
Custom PKCS#11 settings.
Configuration interface for creating a
PkiCredential
backed by a Java KeyStore
.Configuration interface for a key pair entry.
Configuration properties for creating a
PkiCredential
backed by a Java KeyStore
.Configuration properties for a key pair entry.
An event that is signalled when a credential has been reloaded successfully.
An event that is signalled when a credential has been tested and that test succeeded.
An implementation of the
Pkcs11CertificatesAccessor
interface for the SunPKCS11 security provider and other
providers that implement the Java KeyStoreSpi
.An implementation of the
Pkcs11PrivateKeyAccessor
interface for the SunPKCS11 security provider and other
providers that implement the Java KeyStoreSpi
.A factory bean for creating X.509 certificates read from a resource.
Utility methods for working with X.509 certificates.
se.swedenconnect.security.credential.config.properties.PkiCredentialConfigurationProperties
class instead.