[Sblim-commit] jsr48-client/src/org/sblim/cimclient WBEMConfigurationProperties.java, 1.17.2.32, 1.17.2.33

[Dave H. <hel...@us...>]

Update of /cvsroot/sblim/jsr48-client/src/org/sblim/cimclient
In directory vz-cvs-3.sog:/tmp/cvs-serv28266/src/org/sblim/cimclient

Modified Files:
      Tag: Experimental
	WBEMConfigurationProperties.java 
Log Message:
3536399 - Add client/listener peer authentication properties

Index: WBEMConfigurationProperties.java
===================================================================
RCS file: /cvsroot/sblim/jsr48-client/src/org/sblim/cimclient/WBEMConfigurationProperties.java,v
retrieving revision 1.17.2.32
retrieving revision 1.17.2.33
diff -u -d -r1.17.2.32 -r1.17.2.33
--- WBEMConfigurationProperties.java	6 Jun 2012 14:43:12 -0000	1.17.2.32
+++ WBEMConfigurationProperties.java	26 Aug 2012 02:27:28 -0000	1.17.2.33
@@ -40,6 +40,7 @@
  * 3492224    2012-02-23  blaschke-oss Need two different timeouts for Socket connections
  * 3521157    2012-05-10  blaschke-oss JSR48 1.0.0: PROP_ENABLE_*_LOGGING is Level, not 0/1
  * 3524050    2012-06-06  blaschke-oss Improve WWW-Authenticate in HTTPClient.java
+ * 3536399    2012-08-25  hellerda     Add client/listener peer authentication properties
  */
 package org.sblim.cimclient;
 
@@ -481,6 +482,52 @@
 	public static final String SSL_TRUSTMANAGER_ALGORITHM = "ssl.TrustManagerFactory.algorithm";
 
 	/**
+	 * Determines if a HTTPS client will attempt to authenticate the server
+	 * (i.e. CIMOM) by verifying the server certificate.<br />
+	 * <br />
+	 * If false, do not attempt verification. If true, the client will attempt
+	 * to verify the server certificate against the contents of the truststore;
+	 * in this case a valid path must be defined in "javax.net.ssl.trustStore"
+	 * or no connection will be permitted. <br />
+	 * <br />
+	 * Type: <code>Boolean</code><br />
+	 * Recognition: On initialization of a new client<br />
+	 * Default: <code>false</code><br />
+	 */
+	public static final String SSL_CLIENT_PEER_VERIFICATION = "sblim.wbem.sslClientPeerVerification";
+
+	/**
+	 * Determines how a HTTPS listener will handle authentication of a client
+	 * (i.e. indication sender):<br />
+	 * <ul>
+	 * <table border="1">
+	 * <tr>
+	 * <td>ignore</td>
+	 * <td>do not examine the client certificate</td>
+	 * </tr>
+	 * <tr>
+	 * <td>accept</td>
+	 * <td>examine client certificate if presented; do not fail if not presented
+	 * </td>
+	 * </tr>
+	 * <tr>
+	 * <td>require</td>
+	 * <td>examine client certificate; fail if not presented</td>
+	 * </tr>
+	 * </table>
+	 * </ul>
+	 * If set to "ignore", do not attempt verification. If set to "accept" or
+	 * "require", the listener will attempt to verify the sender against the
+	 * contents of the truststore; in this case a valid path must be defined in
+	 * "javax.net.ssl.trustStore" or no connection will be permitted. <br />
+	 * <br />
+	 * Type: <code>String</code><br />
+	 * Recognition: On next call to addListener()<br />
+	 * Default: <code>ignore</code><br />
+	 */
+	public static final String SSL_LISTENER_PEER_VERIFICATION = "sblim.wbem.sslListenerPeerVerification";
+
+	/**
 	 * Specifies the XML parser for parsing CIM-XML responses.<br />
 	 * The SAX parser is the default choice since it is fast, resource saving
 	 * and interoperable. The streaming algorithm of the PULL parser uses the