|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
public interface IKeyRecoveryAuthority
An interface represents key recovery authority. The key recovery authority is responsibile for archiving and recovering user encryption private keys.
Field Summary | |
---|---|
static java.lang.String |
ID
|
static java.lang.String |
PROP_DBS
|
static java.lang.String |
PROP_HTTP
|
static java.lang.String |
PROP_KEYDB_INC
|
static java.lang.String |
PROP_LOGGING
|
static java.lang.String |
PROP_NAME
|
static java.lang.String |
PROP_NEW_NICKNAME
|
static java.lang.String |
PROP_NOTIFY_SUBSTORE
|
static java.lang.String |
PROP_POLICY
|
static java.lang.String |
PROP_PROTECTOR
|
static java.lang.String |
PROP_QUEUE_REQUESTS
|
static java.lang.String |
PROP_REQ_IN_Q_SUBSTORE
|
static java.lang.String |
PROP_SHARE
|
static java.lang.String |
PROP_STORAGE_KEY
|
static java.lang.String |
PROP_TOKEN
|
static java.lang.String |
PROP_TRANSPORT_KEY
|
Method Summary | |
---|---|
void |
addAutoRecovery(java.lang.String id,
Credential[] creds)
Adds credentials to the given authorizated recovery operation. |
void |
addEntropy(boolean logflag)
Adds entropy to the token used for supporting server-side keygen Parameters are set in the config file |
void |
createError(java.lang.String recoveryID,
java.lang.String error)
Creates error for a specific recovery operation. |
void |
createPk12(java.lang.String recoveryID,
byte[] pk12)
Creates PKCS12 package in memory. |
java.util.Hashtable |
createVolatileRequest(RequestId id)
Creates a request object to store attributes that will not be serialized. |
void |
destroyVolatileRequest(RequestId id)
Destroys the request object. |
java.util.Vector |
getAppAgents(java.lang.String recoveryID)
|
java.util.Enumeration |
getAutoRecoveryIDs()
Returns a list of recovery identifiers. |
boolean |
getAutoRecoveryState()
Returns the current auto recovery state. |
java.lang.String |
getError(java.lang.String recoveryID)
Retrieves error by recovery identifier. |
org.mozilla.jss.crypto.CryptoToken |
getKeygenToken()
Returns the token that generates user key pairs for supporting server-side keygen |
IKeyRepository |
getKeyRepository()
Retrieves the key repository. |
java.lang.String |
getNewNickName()
Returns the new nickname of the transport certifiate. |
java.lang.String |
getNickname()
Returns the nickname of the transport certificate. |
int |
getNoOfRequiredAgents()
Returns the number of required agents. |
byte[] |
getPk12(java.lang.String recoveryID)
Retrieves PKCS12 package by recovery identifier. |
IPolicyProcessor |
getPolicyProcessor()
Returns policy processor of the key recovery authority. |
java.lang.String |
getRecoveryID()
Returns the current recovery identifier. |
IReplicaIDRepository |
getReplicaRepository()
Retrieves the Replica ID repository. |
IRequestListener |
getRequestInQListener()
Returns the request listener that listens on the request completion event. |
IRequestQueue |
getRequestQueue()
Retrieves KRA request repository. |
IStorageKeyUnit |
getStorageKeyUnit()
Returns the storage key unit that manages the stoarge key. |
org.mozilla.jss.crypto.X509Certificate |
getTransportCert()
Retrieves the transport certificate. |
ITransportKeyUnit |
getTransportKeyUnit()
Returns the transport key unit that manages the transport key. |
java.util.Hashtable |
getVolatileRequest(RequestId id)
Retrieves the request object. |
netscape.security.x509.X500Name |
getX500Name()
Returns the name of this subsystem. |
void |
log(int level,
java.lang.String msg)
Logs event into key recovery authority logging. |
void |
removeAutoRecovery(java.lang.String id)
Removes a particular auto recovery operation. |
boolean |
setAutoRecoveryState(Credential[] cs,
boolean on)
Enables the auto recovery state. |
void |
setNewNickName(java.lang.String name)
Sets the new nickname of the transport certifiate. |
void |
setNickname(java.lang.String str)
Sets the nickname of the transport certificate. |
void |
setNoOfRequiredAgents(int number)
Sets the number of required recovery agents |
Methods inherited from interface com.netscape.certsrv.base.ISubsystem |
---|
getConfigStore, getId, init, setId, shutdown, startup |
Field Detail |
---|
static final java.lang.String ID
static final java.lang.String PROP_NAME
static final java.lang.String PROP_HTTP
static final java.lang.String PROP_POLICY
static final java.lang.String PROP_DBS
static final java.lang.String PROP_TOKEN
static final java.lang.String PROP_SHARE
static final java.lang.String PROP_PROTECTOR
static final java.lang.String PROP_LOGGING
static final java.lang.String PROP_QUEUE_REQUESTS
static final java.lang.String PROP_STORAGE_KEY
static final java.lang.String PROP_TRANSPORT_KEY
static final java.lang.String PROP_NEW_NICKNAME
static final java.lang.String PROP_KEYDB_INC
static final java.lang.String PROP_NOTIFY_SUBSTORE
static final java.lang.String PROP_REQ_IN_Q_SUBSTORE
Method Detail |
---|
netscape.security.x509.X500Name getX500Name()
IRequestQueue getRequestQueue()
IKeyRepository getKeyRepository()
IReplicaIDRepository getReplicaRepository()
boolean setAutoRecoveryState(Credential[] cs, boolean on)
cs
- list of agent credentialson
- true if auto recovery state is on
boolean getAutoRecoveryState()
void addAutoRecovery(java.lang.String id, Credential[] creds)
id
- authorization identifiercreds
- list of credentialsvoid removeAutoRecovery(java.lang.String id)
id
- authorization identifierint getNoOfRequiredAgents() throws EBaseException
EBaseException
void setNoOfRequiredAgents(int number) throws EBaseException
number
- number of agents
EBaseException
java.lang.String getRecoveryID()
java.util.Enumeration getAutoRecoveryIDs()
IStorageKeyUnit getStorageKeyUnit()
ITransportKeyUnit getTransportKeyUnit()
org.mozilla.jss.crypto.CryptoToken getKeygenToken()
void addEntropy(boolean logflag)
logflag
- create log messages at info level to report entropy shortageIRequestListener getRequestInQListener()
IPolicyProcessor getPolicyProcessor()
java.lang.String getNickname()
void setNickname(java.lang.String str)
str
- nicknamejava.lang.String getNewNickName() throws EBaseException
EBaseException
void setNewNickName(java.lang.String name)
name
- new nicknamevoid log(int level, java.lang.String msg)
level
- log levelmsg
- log messagejava.util.Hashtable createVolatileRequest(RequestId id)
id
- request id
java.util.Hashtable getVolatileRequest(RequestId id)
id
- request id
void destroyVolatileRequest(RequestId id)
id
- request idjava.util.Vector getAppAgents(java.lang.String recoveryID) throws EBaseException
EBaseException
void createError(java.lang.String recoveryID, java.lang.String error) throws EBaseException
recoveryID
- recovery iderror
- error
EBaseException
- failed to create errorjava.lang.String getError(java.lang.String recoveryID) throws EBaseException
recoveryID
- recovery id
EBaseException
byte[] getPk12(java.lang.String recoveryID) throws EBaseException
recoveryID
- recovery id
EBaseException
void createPk12(java.lang.String recoveryID, byte[] pk12) throws EBaseException
recoveryID
- recovery idpk12
- package in bytes
EBaseException
org.mozilla.jss.crypto.X509Certificate getTransportCert()
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |