Interface ClientSecurityConfigurator
-
- All Superinterfaces:
SecurityConfigurator
- All Known Subinterfaces:
GrpcClientSecurityConfigurator<U,R>
,PartitionedHttpClientSecurityConfigurator<U,R>
,SingleAddressHttpClientSecurityConfigurator<U,R>
@Deprecated public interface ClientSecurityConfigurator extends SecurityConfigurator
Deprecated.ASecurityConfigurator
contract for clients.
-
-
Nested Class Summary
-
Nested classes/interfaces inherited from interface io.servicetalk.transport.api.SecurityConfigurator
SecurityConfigurator.SslProvider
-
-
Method Summary
All Methods Instance Methods Abstract Methods Deprecated Methods Modifier and Type Method Description ClientSecurityConfigurator
ciphers(java.lang.Iterable<java.lang.String> ciphers)
Deprecated.The cipher suites to enable, in the order of preference.ClientSecurityConfigurator
disableHostnameVerification()
Deprecated.Disable verification of the server identity.ClientSecurityConfigurator
hostnameVerification(java.lang.String hostNameVerificationHost)
Deprecated.Set the host name used to verify the server identity.ClientSecurityConfigurator
hostnameVerification(java.lang.String hostNameVerificationHost, int hostNameVerificationPort)
Deprecated.Set the host name and port used to verify the server identity.ClientSecurityConfigurator
hostnameVerification(java.lang.String hostNameVerificationAlgorithm, java.lang.String hostNameVerificationHost)
Deprecated.Determines what algorithm to use for hostname verification.ClientSecurityConfigurator
hostnameVerification(java.lang.String hostNameVerificationAlgorithm, java.lang.String hostNameVerificationHost, int hostNameVerificationPort)
Deprecated.Determines what algorithm to use for hostname verification.ClientSecurityConfigurator
hostnameVerificationAlgorithm(java.lang.String hostNameVerificationAlgorithm)
Deprecated.Determines what algorithm to use for hostname verification.ClientSecurityConfigurator
keyManager(java.util.function.Supplier<java.io.InputStream> keyCertChainSupplier, java.util.function.Supplier<java.io.InputStream> keySupplier)
Deprecated.Identifying certificate for this host.ClientSecurityConfigurator
keyManager(java.util.function.Supplier<java.io.InputStream> keyCertChainSupplier, java.util.function.Supplier<java.io.InputStream> keySupplier, java.lang.String keyPassword)
Deprecated.Identifying certificate for this host.ClientSecurityConfigurator
keyManager(javax.net.ssl.KeyManagerFactory keyManagerFactory)
Deprecated.Identifying certificate for this host.ClientSecurityConfigurator
protocols(java.lang.String... protocols)
Deprecated.The SSL protocols to enable, in the order of preference.ClientSecurityConfigurator
provider(SecurityConfigurator.SslProvider provider)
Deprecated.Sets theSecurityConfigurator.SslProvider
to use.ClientSecurityConfigurator
sessionCacheSize(long sessionCacheSize)
Deprecated.Set the size of the cache used for storing SSL session objects.ClientSecurityConfigurator
sessionTimeout(long sessionTimeout)
Deprecated.Set the timeout for the cached SSL session objects, in seconds.ClientSecurityConfigurator
sniHostname(java.lang.String sniHostname)
Deprecated.Set the SNI host name.ClientSecurityConfigurator
trustManager(java.util.function.Supplier<java.io.InputStream> trustCertChainSupplier)
Deprecated.Trusted certificates for verifying the remote endpoint's certificate.ClientSecurityConfigurator
trustManager(javax.net.ssl.TrustManagerFactory trustManagerFactory)
Deprecated.Trust manager for verifying the remote endpoint's certificate.
-
-
-
Method Detail
-
trustManager
ClientSecurityConfigurator trustManager(java.util.function.Supplier<java.io.InputStream> trustCertChainSupplier)
Deprecated.Description copied from interface:SecurityConfigurator
Trusted certificates for verifying the remote endpoint's certificate. The input stream should contain anX.509
certificate chain inPEM
format.- Specified by:
trustManager
in interfaceSecurityConfigurator
- Parameters:
trustCertChainSupplier
- a supplier for the certificate chain input stream.The responsibility to call
InputStream.close()
is transferred to callers of the returnedSupplier
. If this is not the desired behavior then wrap theInputStream
and overrideInputStream.close()
.- Returns:
this
.
-
trustManager
ClientSecurityConfigurator trustManager(javax.net.ssl.TrustManagerFactory trustManagerFactory)
Deprecated.Description copied from interface:SecurityConfigurator
Trust manager for verifying the remote endpoint's certificate. TheTrustManagerFactory
which take preference over any configuredSupplier
.- Specified by:
trustManager
in interfaceSecurityConfigurator
- Parameters:
trustManagerFactory
- theTrustManagerFactory
to use.- Returns:
this
.
-
protocols
ClientSecurityConfigurator protocols(java.lang.String... protocols)
Deprecated.Description copied from interface:SecurityConfigurator
The SSL protocols to enable, in the order of preference.- Specified by:
protocols
in interfaceSecurityConfigurator
- Parameters:
protocols
- the protocols to use.- Returns:
this
.- See Also:
SSLEngine.setEnabledProtocols(String[])
-
ciphers
ClientSecurityConfigurator ciphers(java.lang.Iterable<java.lang.String> ciphers)
Deprecated.Description copied from interface:SecurityConfigurator
The cipher suites to enable, in the order of preference.- Specified by:
ciphers
in interfaceSecurityConfigurator
- Parameters:
ciphers
- the ciphers to use.- Returns:
this
.
-
sessionCacheSize
ClientSecurityConfigurator sessionCacheSize(long sessionCacheSize)
Deprecated.Description copied from interface:SecurityConfigurator
Set the size of the cache used for storing SSL session objects.- Specified by:
sessionCacheSize
in interfaceSecurityConfigurator
- Parameters:
sessionCacheSize
- the cache size.- Returns:
this
.
-
sessionTimeout
ClientSecurityConfigurator sessionTimeout(long sessionTimeout)
Deprecated.Description copied from interface:SecurityConfigurator
Set the timeout for the cached SSL session objects, in seconds.- Specified by:
sessionTimeout
in interfaceSecurityConfigurator
- Parameters:
sessionTimeout
- the session timeout.- Returns:
this
.
-
provider
ClientSecurityConfigurator provider(SecurityConfigurator.SslProvider provider)
Deprecated.Description copied from interface:SecurityConfigurator
Sets theSecurityConfigurator.SslProvider
to use.- Specified by:
provider
in interfaceSecurityConfigurator
- Parameters:
provider
- the provider.- Returns:
this
.
-
hostnameVerificationAlgorithm
ClientSecurityConfigurator hostnameVerificationAlgorithm(java.lang.String hostNameVerificationAlgorithm)
Deprecated.Determines what algorithm to use for hostname verification.- Parameters:
hostNameVerificationAlgorithm
- The algorithm to use when verifying the host name. See Supported algorithm names.- Returns:
this
.- See Also:
SSLParameters.setEndpointIdentificationAlgorithm(String)
-
hostnameVerification
ClientSecurityConfigurator hostnameVerification(java.lang.String hostNameVerificationAlgorithm, java.lang.String hostNameVerificationHost)
Deprecated.Determines what algorithm to use for hostname verification.- Parameters:
hostNameVerificationAlgorithm
- The algorithm to use when verifying the host name. See Supported algorithm names.hostNameVerificationHost
- the host name used to verify the server identity.- Returns:
this
.- See Also:
SSLParameters.setEndpointIdentificationAlgorithm(String)
-
hostnameVerification
ClientSecurityConfigurator hostnameVerification(java.lang.String hostNameVerificationAlgorithm, java.lang.String hostNameVerificationHost, int hostNameVerificationPort)
Deprecated.Determines what algorithm to use for hostname verification.- Parameters:
hostNameVerificationAlgorithm
- The algorithm to use when verifying the host name. See Supported algorithm names.hostNameVerificationHost
- the host name used to verify the server identity.hostNameVerificationPort
- The port which maybe used to verify the server identity.- Returns:
this
.- See Also:
SSLParameters.setEndpointIdentificationAlgorithm(String)
-
hostnameVerification
ClientSecurityConfigurator hostnameVerification(java.lang.String hostNameVerificationHost)
Deprecated.Set the host name used to verify the server identity.- Parameters:
hostNameVerificationHost
- the host name used to verify the server identity.- Returns:
this
.
-
hostnameVerification
ClientSecurityConfigurator hostnameVerification(java.lang.String hostNameVerificationHost, int hostNameVerificationPort)
Deprecated.Set the host name and port used to verify the server identity.- Parameters:
hostNameVerificationHost
- the host name used to verify the server identity.hostNameVerificationPort
- The port which maybe used to verify the server identity.- Returns:
this
.- See Also:
SSLParameters.setEndpointIdentificationAlgorithm(String)
-
sniHostname
ClientSecurityConfigurator sniHostname(java.lang.String sniHostname)
Deprecated.Set the SNI host name.- Parameters:
sniHostname
- The SNI host name.- Returns:
this
.
-
disableHostnameVerification
ClientSecurityConfigurator disableHostnameVerification()
Deprecated.Disable verification of the server identity.- Returns:
this
.
-
keyManager
ClientSecurityConfigurator keyManager(javax.net.ssl.KeyManagerFactory keyManagerFactory)
Deprecated.Identifying certificate for this host.keyManagerFactory
may benull
, which disables mutual authentication. TheKeyManagerFactory
which take preference over any configuredSupplier
.- Parameters:
keyManagerFactory
- anKeyManagerFactory
.- Returns:
this
.
-
keyManager
ClientSecurityConfigurator keyManager(java.util.function.Supplier<java.io.InputStream> keyCertChainSupplier, java.util.function.Supplier<java.io.InputStream> keySupplier)
Deprecated.Identifying certificate for this host.keyCertChainInputStream
andkeyInputStream
may benull
, which disables mutual authentication.- Parameters:
keyCertChainSupplier
- aSupplier
that will provide an input stream for aX.509
certificate chain inPEM
format.The responsibility to call
InputStream.close()
is transferred to callers of theSupplier
. If this is not the desired behavior then wrap theInputStream
and overrideInputStream.close()
.keySupplier
- anSupplier
that will provide an input stream for a KCS#8 private key in PEM format.The responsibility to call
InputStream.close()
is transferred to callers of theSupplier
. If this is not the desired behavior then wrap theInputStream
and overrideInputStream.close()
.- Returns:
this
.
-
keyManager
ClientSecurityConfigurator keyManager(java.util.function.Supplier<java.io.InputStream> keyCertChainSupplier, java.util.function.Supplier<java.io.InputStream> keySupplier, java.lang.String keyPassword)
Deprecated.Identifying certificate for this host.keyCertChainInputStream
andkeyInputStream
may benull
, which disables mutual authentication.- Parameters:
keyCertChainSupplier
- anSupplier
that will provide an input stream for aX.509
certificate chain inPEM
format.The responsibility to call
InputStream.close()
is transferred to callers of theSupplier
. If this is not the desired behavior then wrap theInputStream
and overrideInputStream.close()
.keySupplier
- anSupplier
that will provide an input stream for a KCS#8 private key in PEM format.The responsibility to call
InputStream.close()
is transferred to callers of theSupplier
. If this is not the desired behavior then wrap theInputStream
and overrideInputStream.close()
.keyPassword
- the password of thekeyInputStream
.- Returns:
this
.
-
-