Example usage for org.apache.commons.ssl KeyStoreBuilder build

List of usage examples for org.apache.commons.ssl KeyStoreBuilder build

  1. HOME
  2. Java
  3. org.apache.commons
  4. org.apache.commons.ssl.*
  5. KeyStoreBuilder
  6. build

Introduction

In this page you can find the example usage for org.apache.commons.ssl KeyStoreBuilder build.

Prototype

public static KeyStore build(byte[] jksOrCerts, byte[] privateKey, char[] password)
            throws IOException, CertificateException, KeyStoreException, NoSuchAlgorithmException,
            InvalidKeyException, NoSuchProviderException, ProbablyBadPasswordException, UnrecoverableKeyException

Source Link

Usage

From source file:org.sipfoundry.commons.sipkeystorebuilder.sipkeystorebuilder.java

public static void main(String[] args) throws Exception {
    if (args.length != 1) {
        System.out.println(/*from   ww  w . j a v  a2 s  . co m*/
                "sipkeystorebuilder:  creates '[sip or sip-web].keystore' (Java Key Store) and java truststore '[authority].jks");
        System.out.println("[alias] will be set to the first CN value of the X509 certificate.");
        System.out.println("-------------------------------------------------------------------");
        System.out.println("Usage: [sipX ssl directory]");
        System.out.println("-------------------------------------------------------------------");
        System.exit(1);
    }
    char[] password = "changeit".toCharArray();
    final String auth = "authorities";
    final String keySuffix = ".key";
    final String certSuffix = ".crt";
    final String keystoreSuffix = ".keystore";
    final String truststoreSuffix = ".jks";

    File ssldir = new File(args[0]);
    File authdir = new File(args[0] + "/" + auth);

    FilenameFilter keyFilter = new FilenameFilter() {
        public boolean accept(File dir, String name) {
            return name.endsWith(keySuffix);
        }
    };

    if (ssldir.isDirectory()) {
        // Valid directory specified.  Now scan for key and cert files to build the KeyStore.
        File[] keyfiles = ssldir.listFiles(keyFilter);
        for (int i = 0; i < keyfiles.length; i++) {
            // get the matching certificate file.
            String certPath = keyfiles[i].toString().replaceAll(keySuffix, certSuffix);
            File certFile = new File(certPath);
            if (certFile.exists()) {
                FileInputStream fin1 = new FileInputStream(keyfiles[i].toString());
                byte[] bytes1 = Util.streamToBytes(fin1);
                FileInputStream fin2 = new FileInputStream(certFile.toString());
                byte[] bytes2 = Util.streamToBytes(fin2);
                KeyStore SipXKeyStore = KeyStoreBuilder.build(bytes1, bytes2, password);
                File outks = new File(keyfiles[i].toString().replaceAll(keySuffix, keystoreSuffix));
                FileOutputStream fout = new FileOutputStream(outks);
                SipXKeyStore.store(fout, password);
                fout.flush();
                fout.close();
            }
        }
    }
    if (authdir.isDirectory()) {
        // Valid authority directory specified.  Now scan for cert files to build the TrustStore.
        File[] certFiles = authdir.listFiles();
        TrustChain trustChain = new TrustChain();
        for (int i = 0; i < certFiles.length; i++) {
            try {
                TrustMaterial trustCerts = new TrustMaterial(certFiles[i].toString());
                trustChain.addTrustMaterial(trustCerts);
            } catch (IOException ex) {
                // skip adding CA.
            } catch (KeyStoreException ex) {
                // skip adding CA.
            } catch (GeneralSecurityException ex) {
                // skip adding CA.
            }
        }
        File outts = new File(args[0] + "/" + auth + truststoreSuffix);
        FileOutputStream fout = new FileOutputStream(outts);
        KeyStore trustKeyStore = trustChain.getUnifiedKeyStore();
        trustKeyStore.store(fout, password);
        fout.flush();
        fout.close();
    }

    System.exit(0);
}