Examples of StartTLSRequest

javax.naming.ldap.StartTlsRequest

etf.org/rfc/rfc2830.txt">Lightweight Directory Access Protocol (v3): Extension for Transport Layer Security The object identifier for StartTLS is 1.3.6.1.4.1.1466.20037 and no extended request value is defined.

StartTlsRequest/StartTlsResponse are used to establish a TLS connection over the existing LDAP connection associated with the JNDI context on which extendedOperation() is invoked. Typically, a JNDI program uses these classes as follows.

 import javax.naming.ldap.*; // Open an LDAP association LdapContext ctx = new InitialLdapContext(); // Perform a StartTLS extended operation StartTlsResponse tls = (StartTlsResponse) ctx.extendedOperation(new StartTlsRequest()); // Open a TLS connection (over the existing LDAP association) and get details // of the negotiated TLS session: cipher suite, peer certificate, etc. SSLSession session = tls.negotiate(); // ... use ctx to perform protected LDAP operations // Close the TLS connection (revert back to the underlying LDAP association) tls.close(); // ... use ctx to perform unprotected LDAP operations // Close the LDAP association ctx.close;

@since 1.4 @see StartTlsResponse @author Vincent Ryan

org.apache.james.imap.message.request.StartTLSRequest
Request for STARTTLS

Examples of javax.naming.ldap.StartTlsRequest

   * <p>Here we are testing if this method retrieves the StartTLS request's object identifier string.</p>
   * <p>The expected result is a string : "1.3.6.1.4.1.1466.20037".</p>
   */
  public void testGetID() {
        assertEquals("1.3.6.1.4.1.1466.20037", StartTlsRequest.OID);
        assertSame(StartTlsRequest.OID, new StartTlsRequest().getID());
    }

View Full Code Here

Examples of javax.naming.ldap.StartTlsRequest

   * <p>Test method for 'javax.naming.ldap.StartTlsRequest.getEncodedValue()'</p>
   * <p>Here we are testing if this method retrieves the StartTLS request's ASN.1 BER encoded value.</p>
   * <p>The expected result is a null value.</p>
   */
  public void testGetEncodedValue() {
        assertNull(new StartTlsRequest().getEncodedValue());
    }

View Full Code Here

Examples of javax.naming.ldap.StartTlsRequest

   * <p>Here we are testing if this method creates an extended response object that corresponds to the LDAP StartTLS extended request.
   * In this case we are testing the extended response with the argument ID=""</p>
   * <p>The expected result is an exception.</p>
   */
  public void testCreateExtendedResponse005() {
        StartTlsRequest str = new StartTlsRequest();
        try {
            str.createExtendedResponse("", null, 1, 2);
            fail("NamingException expected");
        } catch (NamingException e) {}
    }

View Full Code Here

Examples of javax.naming.ldap.StartTlsRequest

     * <p>Notice here that this package does not have a provider so an implementation does not exist, so this test must not fail with a provider 
     * and fail with no provider.</p>
     * <p>The expected result is a Tls response.</p>
     */
    public void testCreateExtendedResponse004() throws Exception {
        StartTlsRequest str = new StartTlsRequest();
        String ID = "1.3.6.1.4.1.1466.20037";
        int t1 = 210, t2 = 650;
        byte[] t0 = ID.getBytes();


        StartTlsResponse x = (StartTlsResponse) str.createExtendedResponse(ID,
                t0, t1, t2);
        assertEquals(MockStartTlsResponse.class, x.getClass());
    }

View Full Code Here

Examples of javax.naming.ldap.StartTlsRequest

   * Test for the class javax.naming.ldap.StartTlsRequest
   *
   */
  public void testStartTlsRequest(){
    
      StartTlsRequest str=new StartTlsRequest();
      StartTlsRequest str2=null;
    try{
      ByteArrayOutputStream buffer = new ByteArrayOutputStream();
      ObjectOutput out = new ObjectOutputStream(buffer); 
      out.writeObject(str); 
      out.close(); 
      ObjectInput in = new ObjectInputStream(new ByteArrayInputStream(buffer.toByteArray()));
      str2 = (StartTlsRequest) in.readObject(); 
      in.close(); 
      assertEquals(str.getID(),str2.getID());
    }catch (Exception e) {
      fail("Failed with:"+e);
    }
  }

View Full Code Here

Examples of javax.naming.ldap.StartTlsRequest

                    if ( useStartTLS )
                    {
                        try
                        {
                            StartTlsResponse tls = ( StartTlsResponse ) context
                                .extendedOperation( new StartTlsRequest() );
                            tls.setHostnameVerifier( new HostnameVerifier()
                            {
                                public boolean verify( String arg0, SSLSession arg1 )
                                {
                                    return true;

View Full Code Here

Examples of javax.naming.ldap.StartTlsRequest

        env.put( "java.naming.provider.url", "ldap://localhost:" + getLdapServer().getPort() );
        env.put( "java.naming.security.principal", "uid=admin,ou=system" );
        env.put( "java.naming.security.credentials", "secret" );
        env.put( "java.naming.security.authentication", "simple" );
        LdapContext ctx = new InitialLdapContext( env, null );
        StartTlsResponse tls = ( StartTlsResponse ) ctx.extendedOperation( new StartTlsRequest() );
        tls.setHostnameVerifier( new HostnameVerifier()
        {
            public boolean verify( String hostname, SSLSession session )
            {
                return true;
            }
        } );
        tls.negotiate( BogusSSLContextFactory.getInstance( false ).getSocketFactory() );


        // create a new certificate
        String newIssuerDN = "cn=new_issuer_dn";
        String newSubjectDN = "cn=new_subject_dn";
        Entry entry = getLdapServer().getDirectoryService().getAdminSession().lookup(
            new Dn( "uid=admin,ou=system" ) );
        TlsKeyGenerator.addKeyPair( entry, newIssuerDN, newSubjectDN, "RSA" );


        // now update the certificate (over the wire)
        ModificationItem[] mods = new ModificationItem[3];
        mods[0] = new ModificationItem( DirContext.REPLACE_ATTRIBUTE, new BasicAttribute(
            TlsKeyGenerator.PRIVATE_KEY_AT, entry.get( TlsKeyGenerator.PRIVATE_KEY_AT ).getBytes() ) );
        mods[1] = new ModificationItem( DirContext.REPLACE_ATTRIBUTE, new BasicAttribute(
            TlsKeyGenerator.PUBLIC_KEY_AT, entry.get( TlsKeyGenerator.PUBLIC_KEY_AT ).getBytes() ) );
        mods[2] = new ModificationItem( DirContext.REPLACE_ATTRIBUTE, new BasicAttribute(
            TlsKeyGenerator.USER_CERTIFICATE_AT, entry.get( TlsKeyGenerator.USER_CERTIFICATE_AT ).getBytes() ) );
        ctx.modifyAttributes( "uid=admin,ou=system", mods );
        ctx.close();


        getLdapServer().reloadSslContext();


        // create a new secure connection
        ctx = new InitialLdapContext( env, null );
        tls = ( StartTlsResponse ) ctx.extendedOperation( new StartTlsRequest() );
        tls.setHostnameVerifier( new HostnameVerifier()
        {
            public boolean verify( String hostname, SSLSession session )
            {
                return true;

View Full Code Here

Examples of javax.naming.ldap.StartTlsRequest

        LOG.debug( "About to get initial context" );
        LdapContext ctx = new InitialLdapContext( env, null );


        // Start TLS
        LOG.debug( "About send startTls extended operation" );
        StartTlsResponse tls = ( StartTlsResponse ) ctx.extendedOperation( new StartTlsRequest() );
        LOG.debug( "Extended operation issued" );
        tls.setHostnameVerifier( new HostnameVerifier()
        {
            public boolean verify( String hostname, SSLSession session )
            {

View Full Code Here

Examples of javax.naming.ldap.StartTlsRequest

            LOG.debug( "About to get initial context" );
            LdapContext ctx = new InitialLdapContext( env, null );


            // Start TLS
            LOG.debug( "About send startTls extended operation" );
            StartTlsResponse tls = ( StartTlsResponse ) ctx.extendedOperation( new StartTlsRequest() );
            LOG.debug( "Extended operation issued" );
            tls.setHostnameVerifier( new HostnameVerifier()
            {
                public boolean verify( String hostname, SSLSession session )
                {

View Full Code Here

Examples of javax.naming.ldap.StartTlsRequest

        env.put( "java.naming.provider.url", "ldap://localhost:" + getLdapServer().getPort() );
        env.put( "java.naming.security.principal", "uid=admin,ou=system" );
        env.put( "java.naming.security.credentials", "secret" );
        env.put( "java.naming.security.authentication", "simple" );
        LdapContext ctx = new InitialLdapContext( env, null );
        StartTlsResponse tls = ( StartTlsResponse ) ctx.extendedOperation( new StartTlsRequest() );
        tls.setHostnameVerifier( new HostnameVerifier() {
            public boolean verify( String hostname, SSLSession session )
            {
                return true;
            } 
        } );
        tls.negotiate( BogusSSLContextFactory.getInstance( false ).getSocketFactory() );


        // create a new certificate
        String newIssuerDN = "cn=new_issuer_dn";
        String newSubjectDN = "cn=new_subject_dn";
        Entry entry = getLdapServer().getDirectoryService().getAdminSession().lookup(
            new Dn( "uid=admin,ou=system" ) );
        TlsKeyGenerator.addKeyPair( entry, newIssuerDN, newSubjectDN, "RSA" );


        // now update the certificate (over the wire)
        ModificationItem[] mods = new ModificationItem[3];
        mods[0] = new ModificationItem( DirContext.REPLACE_ATTRIBUTE, new BasicAttribute(
            TlsKeyGenerator.PRIVATE_KEY_AT, entry.get( TlsKeyGenerator.PRIVATE_KEY_AT ).getBytes() ) );
        mods[1] = new ModificationItem( DirContext.REPLACE_ATTRIBUTE, new BasicAttribute(
            TlsKeyGenerator.PUBLIC_KEY_AT, entry.get( TlsKeyGenerator.PUBLIC_KEY_AT ).getBytes() ) );
        mods[2] = new ModificationItem( DirContext.REPLACE_ATTRIBUTE, new BasicAttribute(
            TlsKeyGenerator.USER_CERTIFICATE_AT, entry.get( TlsKeyGenerator.USER_CERTIFICATE_AT ).getBytes() ) );
        ctx.modifyAttributes( "uid=admin,ou=system", mods );
        ctx.close();


        getLdapServer().reloadSslContext();
        
        // create a new secure connection
        ctx = new InitialLdapContext( env, null );
        tls = ( StartTlsResponse ) ctx.extendedOperation( new StartTlsRequest() );
        tls.setHostnameVerifier( new HostnameVerifier() {
            public boolean verify( String hostname, SSLSession session )
            {
                return true;
            }

View Full Code Here

0 1 2 3 4

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.