For excessively paranoid client authentication.
Organization & Common Name: Some human identifier for this server CA.
openssl genrsa -des3 -out ca.key 4096
openssl req -new -x509 -days 365 -key ca.key -out ca.crt
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| //Get file from resources folder | |
| ClassLoader classLoader = getClass().getClassLoader(); | |
| File file = new File(classLoader.getResource("certs/root/ca-key.pkcs8").getFile()); | |
| return readPrivateKey(file.getPath()); |
kasimok
/ gist:614dafef4be1f7ec3247ae68c51ccf37
Created
June 10, 2016 08:07
— forked from mtigas/gist:952344
Mini tutorial for configuring client-side SSL certificates.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /** | |
| * Extract the issuer cert's URI from cert. | |
| * @param var0 | |
| * @return | |
| */ | |
| private URI getIssuerCertURL(X509CertImpl var0) { | |
| AuthorityInfoAccessExtension var1 = var0.getAuthorityInfoAccessExtension(); | |
| if(var1 == null) { | |
| return null; | |
| } else { |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| RandomAccessFile raf = new RandomAccessFile("certs/client/client.cer.pem", "r"); | |
| byte[] buf = new byte[(int) raf.length()]; | |
| raf.readFully(buf); | |
| raf.close(); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /** | |
| * Read PEM certificate into javax.security.x509Certificate. | |
| * @param certText | |
| * @return | |
| */ | |
| private X509Certificate readPemCert(String certText) { | |
| CertificateFactory certificateFactory = null; | |
| try { | |
| certificateFactory = CertificateFactory.getInstance("X.509"); |
kasimok
/ TestPortListening.java
Created
June 6, 2016 08:49
Method to test port opening and listening
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| public static boolean available(int port) { | |
| if (port < MIN_PORT_NUMBER || port > MAX_PORT_NUMBER) { | |
| throw new IllegalArgumentException("Invalid start port: " + port); | |
| } | |
| ServerSocket ss = null; | |
| DatagramSocket ds = null; | |
| try { | |
| ss = new ServerSocket(port); | |
| ss.setReuseAddress(true); |
NewerOlder