Package org.apache.nifi.bootstrap.property

Class SecurityApplicationPropertyHandler

java.lang.Object

org.apache.nifi.bootstrap.property.SecurityApplicationPropertyHandler

All Implemented Interfaces:

ApplicationPropertyHandler

public class SecurityApplicationPropertyHandler
extends Object
implements ApplicationPropertyHandler

Standard implementation for application security generates Key Pair and Certificate when not configured

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
protected static enum	SecurityApplicationPropertyHandler.SecurityProperty

Field Summary

Fields

Modifier and Type	Field	Description
protected static final X500Principal	CERTIFICATE_ISSUER
private static final Duration	CERTIFICATE_VALIDITY_PERIOD
private static final String	DIGEST_ALGORITHM
protected static final String	ENTRY_ALIAS
private static final int	HOST_GROUP
private static final Pattern	HOST_PORT_GROUP_SEPARATOR
private static final Pattern	HOST_PORT_PATTERN
private static final String	KEY_ALGORITHM
private static final int	KEY_SIZE
private static final String	LOCALHOST
private final org.slf4j.Logger	logger
private static final String	PROPERTY_SEPARATOR
private static final int	RANDOM_BYTE_LENGTH

Constructor Summary

Constructors

Constructor	Description
SecurityApplicationPropertyHandler(org.slf4j.Logger logger)

Method Summary

Modifier and Type	Method	Description
private KeyPair	generateKeyPair()
protected String	generatePassword()
private static String	getDigest(X509Certificate certificate)
private Set<String>	getHosts(String property)
private Collection<String>	getSubjectAlternativeNames(Properties applicationProperties)
void	handleProperties(Path applicationPropertiesLocation)	Handle Application Properties based on provided path location
private boolean	isBlank(String propertyValue)
private boolean	isCertificateGenerationRequired(Properties applicationProperties)
private Properties	loadProperties(Path applicationPropertiesLocation)
private KeyStore	newKeyStore(String storeType)
private void	processApplicationProperties(Properties applicationProperties)
private void	writeKeyStore(Properties applicationProperties, X509Certificate certificate, PrivateKey privateKey)
private void	writePasswordProperties(Properties applicationProperties, Path applicationPropertiesLocation)
private void	writeProperty(PrintWriter writer, SecurityApplicationPropertyHandler.SecurityProperty securityProperty, Properties applicationProperties)
private void	writeTrustStore(Properties applicationProperties, X509Certificate certificate)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

ENTRY_ALIAS

protected static final String ENTRY_ALIAS

See Also:

• Constant Field Values

CERTIFICATE_ISSUER

protected static final X500Principal CERTIFICATE_ISSUER

DIGEST_ALGORITHM

private static final String DIGEST_ALGORITHM

See Also:

• Constant Field Values

KEY_ALGORITHM

private static final String KEY_ALGORITHM

See Also:

• Constant Field Values

KEY_SIZE

private static final int KEY_SIZE

See Also:

• Constant Field Values

LOCALHOST

private static final String LOCALHOST

See Also:

• Constant Field Values

CERTIFICATE_VALIDITY_PERIOD

private static final Duration CERTIFICATE_VALIDITY_PERIOD

RANDOM_BYTE_LENGTH

private static final int RANDOM_BYTE_LENGTH

See Also:

• Constant Field Values

PROPERTY_SEPARATOR

private static final String PROPERTY_SEPARATOR

See Also:

• Constant Field Values

HOST_PORT_PATTERN

private static final Pattern HOST_PORT_PATTERN

HOST_GROUP

private static final int HOST_GROUP

See Also:

• Constant Field Values

HOST_PORT_GROUP_SEPARATOR

private static final Pattern HOST_PORT_GROUP_SEPARATOR

logger

private final org.slf4j.Logger logger

Constructor Details

SecurityApplicationPropertyHandler

public SecurityApplicationPropertyHandler(org.slf4j.Logger logger)

Method Details

handleProperties

public void handleProperties(Path applicationPropertiesLocation)

Description copied from interface: ApplicationPropertyHandler

Handle Application Properties based on provided path location

Specified by:

handleProperties in interface ApplicationPropertyHandler

Parameters:

applicationPropertiesLocation - Path to Application Properties

processApplicationProperties

private void processApplicationProperties(Properties applicationProperties)

writeTrustStore

private void writeTrustStore(Properties applicationProperties,
 X509Certificate certificate)

writeKeyStore

private void writeKeyStore(Properties applicationProperties,
 X509Certificate certificate,
 PrivateKey privateKey)

writePasswordProperties

private void writePasswordProperties(Properties applicationProperties,
 Path applicationPropertiesLocation)

writeProperty

private void writeProperty(PrintWriter writer,
 SecurityApplicationPropertyHandler.SecurityProperty securityProperty,
 Properties applicationProperties)

newKeyStore

private KeyStore newKeyStore(String storeType)

isCertificateGenerationRequired

private boolean isCertificateGenerationRequired(Properties applicationProperties)

getSubjectAlternativeNames

private Collection<String> getSubjectAlternativeNames(Properties applicationProperties)

generateKeyPair

private KeyPair generateKeyPair()

generatePassword

protected String generatePassword()

getDigest

private static String getDigest(X509Certificate certificate)

loadProperties

private Properties loadProperties(Path applicationPropertiesLocation)

getHosts

private Set<String> getHosts(String property)

isBlank

private boolean isBlank(String propertyValue)