org.mozilla.jss
public static final class CryptoManager.InitializationValues extends Object
Nested Class Summary | |
---|---|
static class | CryptoManager.InitializationValues.FIPSMode
This class enumerates the possible modes for FIPS compliance. |
Field Summary | |
---|---|
String | certPrefix |
String | configDir |
CryptoManager.InitializationValues.FIPSMode | fipsMode
The FIPS mode of the security library. |
boolean | initializeJavaOnly
If true, none of the underlying NSS components will
be initialized. |
boolean | installJSSProvider
Install the JSS crypto provider. |
String | keyPrefix |
int | LIBRARY_LENGTH
Library description must be this length exactly. |
int | MANUFACTURER_LENGTH
ManufacturerID must be this length exactly. |
boolean | ocspCheckingEnabled
To have NSS check the OCSP responder for when verifying
certificates, set this flags to true. |
String | ocspResponderCertNickname
The nickname of the cert to trust (expected) to
sign the OCSP responses.
|
String | ocspResponderURL
Specify the location and cert of the responder.
|
PasswordCallback | passwordCallback
The password callback to be used by JSS whenever a password
is needed. |
boolean | readOnly
To open the databases in read-only mode, set this flag to
true . |
boolean | removeSunProvider
Remove the Sun crypto provider. |
String | secmodName |
int | SLOT_LENGTH
Slot names must be this length exactly. |
int | TOKEN_LENGTH
Token names must be this length exactly. |
Constructor Summary | |
---|---|
protected | InitializationValues() |
InitializationValues(String configDir) | |
InitializationValues(String configDir, String certPrefix, String keyPrefix, String secmodName) |
Method Summary | |
---|---|
String | getFIPSKeyStorageSlotDescription()
Returns the description of the internal PKCS #11 FIPS
Key Storage slot.
|
String | getFIPSSlotDescription()
Returns the description of the internal PKCS #11 FIPS slot.
|
String | getInternalKeyStorageSlotDescription()
Returns the description of the internal PKCS #11 key storage slot.
|
String | getInternalKeyStorageTokenDescription()
Returns the description of the internal PKCS #11 key storage token.
|
String | getInternalSlotDescription()
Returns the description of the internal PKCS #11 slot.
|
String | getInternalTokenDescription()
Returns the description of the internal PKCS #11 token.
|
String | getLibraryDescription()
Returns the description of the internal PKCS #11 module.
|
String | getManufacturerID()
Returns the Manufacturer ID of the internal PKCS #11 module.
|
void | setFIPSKeyStorageSlotDescription(String s)
Sets the description of the internal PKCS #11 FIPS Key Storage slot.
|
void | setFIPSSlotDescription(String s)
Sets the description of the internal PKCS #11 FIPS slot.
|
void | setInternalKeyStorageSlotDescription(String s)
Sets the description of the internal PKCS #11 key storage slot.
|
void | setInternalKeyStorageTokenDescription(String s)
Sets the description of the internal PKCS #11 key storage token.
|
void | setInternalSlotDescription(String s)
Sets the description of the internal PKCS #11 slot.
|
void | setInternalTokenDescription(String s)
Sets the description of the internal PKCS #11 token.
|
void | setLibraryDescription(String s)
Sets the description of the internal PKCS #11 module.
|
void | setManufacturerID(String s)
Sets the Manufacturer ID of the internal PKCS #11 module.
|
FIPSMode.UNCHANGED
, since only
Admin Server is supposed to alter this value.
The default is FIPSMode.UNCHANGED
.
Specifically, the following components will not be configured by CryptoManager.initialize if this flag is set:
The default is false.
CryptoToken.login
.
The default is a ConsolePasswordCallback
.
true
. The default is false
, meaning
the databases are opened in read-write mode.The default is
"NSS FIPS 140-2 User Private Key Services"
.
The default is
"NSS FIPS 140-2 User Private Key Services"
.
The default is "NSS Internal Private Key and Certificate Storage "
.
The default is "Internal Key Storage Token "
.
The default is "NSS Internal Cryptographic Services "
.
The default is "Internal Crypto Services Token "
.
The default is "Internal Crypto Services "
.
The default is "mozilla.org "
.
SLOT_LENGTH
characters
long.Throws: InvalidLengthException If s.length()
is
not exactly SLOT_LENGTH
.
SLOT_LENGTH
characters
long.Throws: InvalidLengthException If s.length()
is
not exactly SLOT_LENGTH
.
SLOT_LENGTH
characters
long.Throws: InvalidLengthException If s.length()
is
not exactly SLOT_LENGTH
.
TOKEN_LENGTH
characters long.Throws: InvalidLengthException If s.length()
is
not exactly TOKEN_LENGTH
.
SLOT_LENGTH
characters
long.Throws: InvalidLengthException If s.length()
is
not exactly SLOT_LENGTH
.
TOKEN_LENGTH
characters long.Throws: InvalidLengthException If s.length()
is
not exactly TOKEN_LENGTH
.
LIBRARY_LENGTH
characters long.Throws: InvalidLengthException If s.length()
is
not exactly LIBRARY_LENGTH
.
MANUFACTURER_LENGTH
characters long.Throws: InvalidLengthException If s.length()
is not
exactly MANUFACTURER_LENGTH
.