Update of /cvsroot/sblim/jsr48-client/src/org/sblim/cimclient
In directory vz-cvs-3.sog:/tmp/cvs-serv28266/src/org/sblim/cimclient
Modified Files:
Tag: Experimental
WBEMConfigurationProperties.java
Log Message:
3536399 - Add client/listener peer authentication properties
Index: WBEMConfigurationProperties.java
===================================================================
RCS file: /cvsroot/sblim/jsr48-client/src/org/sblim/cimclient/WBEMConfigurationProperties.java,v
retrieving revision 1.17.2.32
retrieving revision 1.17.2.33
diff -u -d -r1.17.2.32 -r1.17.2.33
--- WBEMConfigurationProperties.java 6 Jun 2012 14:43:12 -0000 1.17.2.32
+++ WBEMConfigurationProperties.java 26 Aug 2012 02:27:28 -0000 1.17.2.33
@@ -40,6 +40,7 @@
* 3492224 2012-02-23 blaschke-oss Need two different timeouts for Socket connections
* 3521157 2012-05-10 blaschke-oss JSR48 1.0.0: PROP_ENABLE_*_LOGGING is Level, not 0/1
* 3524050 2012-06-06 blaschke-oss Improve WWW-Authenticate in HTTPClient.java
+ * 3536399 2012-08-25 hellerda Add client/listener peer authentication properties
*/
package org.sblim.cimclient;
@@ -481,6 +482,52 @@
public static final String SSL_TRUSTMANAGER_ALGORITHM = "ssl.TrustManagerFactory.algorithm";
/**
+ * Determines if a HTTPS client will attempt to authenticate the server
+ * (i.e. CIMOM) by verifying the server certificate.<br />
+ * <br />
+ * If false, do not attempt verification. If true, the client will attempt
+ * to verify the server certificate against the contents of the truststore;
+ * in this case a valid path must be defined in "javax.net.ssl.trustStore"
+ * or no connection will be permitted. <br />
+ * <br />
+ * Type: <code>Boolean</code><br />
+ * Recognition: On initialization of a new client<br />
+ * Default: <code>false</code><br />
+ */
+ public static final String SSL_CLIENT_PEER_VERIFICATION = "sblim.wbem.sslClientPeerVerification";
+
+ /**
+ * Determines how a HTTPS listener will handle authentication of a client
+ * (i.e. indication sender):<br />
+ * <ul>
+ * <table border="1">
+ * <tr>
+ * <td>ignore</td>
+ * <td>do not examine the client certificate</td>
+ * </tr>
+ * <tr>
+ * <td>accept</td>
+ * <td>examine client certificate if presented; do not fail if not presented
+ * </td>
+ * </tr>
+ * <tr>
+ * <td>require</td>
+ * <td>examine client certificate; fail if not presented</td>
+ * </tr>
+ * </table>
+ * </ul>
+ * If set to "ignore", do not attempt verification. If set to "accept" or
+ * "require", the listener will attempt to verify the sender against the
+ * contents of the truststore; in this case a valid path must be defined in
+ * "javax.net.ssl.trustStore" or no connection will be permitted. <br />
+ * <br />
+ * Type: <code>String</code><br />
+ * Recognition: On next call to addListener()<br />
+ * Default: <code>ignore</code><br />
+ */
+ public static final String SSL_LISTENER_PEER_VERIFICATION = "sblim.wbem.sslListenerPeerVerification";
+
+ /**
* Specifies the XML parser for parsing CIM-XML responses.<br />
* The SAX parser is the default choice since it is fast, resource saving
* and interoperable. The streaming algorithm of the PULL parser uses the
|
