WSS4J
  1. WSS4J
  2. WSS-47

LDAP Certificate Store Support for WSS4J

    Details

    • Type: New Feature New Feature
    • Status: Closed
    • Priority: Minor Minor
    • Resolution: Won't Fix
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:
      None
    • Environment:
      Java, LDAP

      Description

      The main focus of this isuue is to integrate LDAP certificate store support to current WSS4J implementation.

      1. WSS4J-LDAPCrypto.zip
        18 kB
        Milinda Lakmal Pathirage
      2. WSS4J-LDAPCrypto2.zip
        10 kB
        Milinda Lakmal Pathirage
      3. WSS4J-LDAPCrypto_19-07-06.tar.gz
        22 kB
        Milinda Lakmal Pathirage
      4. WSS4J-LDAPCrypto_20-07-06.tar.gz
        23 kB
        Milinda Lakmal Pathirage
      5. ldapcrypto.patch
        37 kB
        Milinda Lakmal Pathirage
      6. ldapcrypto_manual.zip
        5 kB
        Milinda Lakmal Pathirage

        Activity

        Hide
        Colm O hEigeartaigh added a comment -


        There doesn't seem to be any interest in this, so closing this issue.

        Show
        Colm O hEigeartaigh added a comment - There doesn't seem to be any interest in this, so closing this issue.
        Hide
        Milinda Lakmal Pathirage added a comment -

        Here is the manual for LDAPCrypto implementation.

        Show
        Milinda Lakmal Pathirage added a comment - Here is the manual for LDAPCrypto implementation.
        Hide
        Milinda Lakmal Pathirage added a comment -

        New features are added to get alias for given issure name and serial number and to validate certificate path.

        Show
        Milinda Lakmal Pathirage added a comment - New features are added to get alias for given issure name and serial number and to validate certificate path.
        Hide
        Milinda Lakmal Pathirage added a comment -

        Hi,
        Here I have corrected my errors. And now have only one class that implements Crypto Interface. But this is not the final version, I have to implement another 3 methods.

        Thank you
        Milinda Pathirage

        Show
        Milinda Lakmal Pathirage added a comment - Hi, Here I have corrected my errors. And now have only one class that implements Crypto Interface. But this is not the final version, I have to implement another 3 methods. Thank you Milinda Pathirage
        Hide
        Ruchith Udayanga Fernando added a comment -

        Hi Milinda,

        I had a look at the code ... and I found two classes :
        org.apache.ws.security.components.LDAPCrypto
        and
        org.apache.ws.security.components.LDAPCrypto_1

        Which one of these classes should we use?
        BTW I didn't see any classes that implements org.apache.ws.security.components.crypto.Crypto interface?

        Can please we move these into org.apache.ws.security.components.crypto package?

        Next time it will be great if you can send a patch (svn diff > pathc_file_name)

        Show
        Ruchith Udayanga Fernando added a comment - Hi Milinda, I had a look at the code ... and I found two classes : org.apache.ws.security.components.LDAPCrypto and org.apache.ws.security.components.LDAPCrypto_1 Which one of these classes should we use? BTW I didn't see any classes that implements org.apache.ws.security.components.crypto.Crypto interface? Can please we move these into org.apache.ws.security.components.crypto package? Next time it will be great if you can send a patch (svn diff > pathc_file_name)
        Hide
        Milinda Lakmal Pathirage added a comment -

        This implementation support most of the methods in Crypto Interface.
        Only things that has to be done are
        implement:
        public String getAliasForX509Cert(String issuer, BigInteger serialNumber) throws WSSecurityException;
        public String getAliasForX509Cert(String issuer) throws WSSecurityException;
        public PrivateKey getPrivateKey(String alias, String password) throws Exception;
        public String getDefaultX509Alias();
        public KeyStore getKeyStore();

        Show
        Milinda Lakmal Pathirage added a comment - This implementation support most of the methods in Crypto Interface. Only things that has to be done are implement: public String getAliasForX509Cert(String issuer, BigInteger serialNumber) throws WSSecurityException; public String getAliasForX509Cert(String issuer) throws WSSecurityException; public PrivateKey getPrivateKey(String alias, String password) throws Exception; public String getDefaultX509Alias(); public KeyStore getKeyStore();
        Hide
        Milinda Lakmal Pathirage added a comment -

        This Code have some bugs to fix.

        Show
        Milinda Lakmal Pathirage added a comment - This Code have some bugs to fix.
        Hide
        Milinda Lakmal Pathirage added a comment -

        This implementation use JNDI API for binding to LDAP server and use search method to find userCertificate:binary attributes for given alias.

        Show
        Milinda Lakmal Pathirage added a comment - This implementation use JNDI API for binding to LDAP server and use search method to find userCertificate:binary attributes for given alias.

          People

          • Assignee:
            Unassigned
            Reporter:
            Milinda Lakmal Pathirage
          • Votes:
            1 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development