PKCS11KeyManagerProvider (Wren:DS Server 4.0.0-M3 Documentation)

java.lang.Object
- org.opends.server.api.KeyManagerProvider<org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg>
- - org.opends.server.extensions.PKCS11KeyManagerProvider

All Implemented Interfaces:

org.forgerock.opendj.config.server.ConfigurationChangeListener<org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg>
```
public class PKCS11KeyManagerProvider
extends KeyManagerProvider<org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg>
implements org.forgerock.opendj.config.server.ConfigurationChangeListener<org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg>
```
This class defines a key manager provider that will access keys stored on a PKCS#11 device. It will use the Java PKCS#11 interface, which may need to be configured on the underlying system.

Constructor Summary

Constructors
Constructor and Description

PKCS11KeyManagerProvider()
Creates a new instance of this PKCS#11 key manager provider.

Constructors
Constructor and Description
`PKCS11KeyManagerProvider()` Creates a new instance of this PKCS#11 key manager provider.

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`org.forgerock.opendj.config.server.ConfigChangeResult`	`applyConfigurationChange(org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg configuration)`
`void`	`finalizeKeyManagerProvider()` Performs any finalization that may be necessary for this key manager provider.
`KeyManager[]`	`getKeyManagers()` Retrieves a set of `KeyManager` objects that may be used for interactions requiring access to a key manager.
`void`	`initializeKeyManagerProvider(org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg configuration)` Initializes this key manager provider based on the information in the provided key manager provider configuration.
`boolean`	`isConfigurationAcceptable(org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg configuration, List<org.forgerock.i18n.LocalizableMessage> unacceptableReasons)` Indicates whether the provided configuration is acceptable for this key manager provider.
`boolean`	`isConfigurationChangeAcceptable(org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg configuration, List<org.forgerock.i18n.LocalizableMessage> unacceptableReasons)`

Methods inherited from class org.opends.server.api.KeyManagerProvider
containsAtLeastOneKey, containsKeyWithAlias

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - PKCS11KeyManagerProvider
```
public PKCS11KeyManagerProvider()
```
    Creates a new instance of this PKCS#11 key manager provider. The initializeKeyManagerProvider method must be called on the resulting object before it may be used.
- Method Detail
  - initializeKeyManagerProvider
```
public void initializeKeyManagerProvider(org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg configuration)
                                  throws org.forgerock.opendj.config.server.ConfigException,
                                         InitializationException
```
    Description copied from class: KeyManagerProvider
    
    Initializes this key manager provider based on the information in the provided key manager provider configuration.
    
    Specified by:
    
    initializeKeyManagerProvider in class KeyManagerProvider<org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg>
    
    Parameters:
    
    configuration - The key manager provider configuration that contains the information to use to initialize this key manager provider.
    
    Throws:
    
    org.forgerock.opendj.config.server.ConfigException - If an unrecoverable problem arises in the process of performing the initialization as a result of the server configuration.
    
    InitializationException - If a problem occurs during initialization that is not related to the server configuration.
  - finalizeKeyManagerProvider
```
public void finalizeKeyManagerProvider()
```
    Description copied from class: KeyManagerProvider
    
    Performs any finalization that may be necessary for this key manager provider.
    
    Specified by:
    
    finalizeKeyManagerProvider in class KeyManagerProvider<org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg>
  - getKeyManagers
```
public KeyManager[] getKeyManagers()
                            throws DirectoryException
```
    Description copied from class: KeyManagerProvider
    
    Retrieves a set of KeyManager objects that may be used for interactions requiring access to a key manager.
    
    Specified by:
    
    getKeyManagers in class KeyManagerProvider<org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg>
    
    Returns:
    
    A set of KeyManager objects that may be used for interactions requiring access to a key manager.
    
    Throws:
    
    DirectoryException - If a problem occurs while attempting to obtain the set of key managers.
  - isConfigurationAcceptable
```
public boolean isConfigurationAcceptable(org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg configuration,
                                         List<org.forgerock.i18n.LocalizableMessage> unacceptableReasons)
```
    Description copied from class: KeyManagerProvider
    
    Indicates whether the provided configuration is acceptable for this key manager provider. It should be possible to call this method on an uninitialized key manager provider instance in order to determine whether the key manager provider would be able to use the provided configuration.
    
    Note that implementations which use a subclass of the provided configuration class will likely need to cast the configuration to the appropriate subclass type.
    
    Overrides:
    
    isConfigurationAcceptable in class KeyManagerProvider<org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg>
    
    Parameters:
    
    configuration - The key manager provider configuration for which to make the determination.
    
    unacceptableReasons - A list that may be used to hold the reasons that the provided configuration is not acceptable.
    
    Returns:
    
    true if the provided configuration is acceptable for this key manager provider, or false if not.
  - isConfigurationChangeAcceptable
```
public boolean isConfigurationChangeAcceptable(org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg configuration,
                                               List<org.forgerock.i18n.LocalizableMessage> unacceptableReasons)
```
    Specified by:
    
    isConfigurationChangeAcceptable in interface org.forgerock.opendj.config.server.ConfigurationChangeListener<org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg>
  - applyConfigurationChange
```
public org.forgerock.opendj.config.server.ConfigChangeResult applyConfigurationChange(org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg configuration)
```
    Specified by:
    
    applyConfigurationChange in interface org.forgerock.opendj.config.server.ConfigurationChangeListener<org.forgerock.opendj.server.config.server.PKCS11KeyManagerProviderCfg>

Class PKCS11KeyManagerProvider

Constructor Summary

Method Summary

Methods inherited from class org.opends.server.api.KeyManagerProvider

Methods inherited from class java.lang.Object

Constructor Detail

PKCS11KeyManagerProvider

Method Detail

initializeKeyManagerProvider

finalizeKeyManagerProvider

getKeyManagers

isConfigurationAcceptable

isConfigurationChangeAcceptable

applyConfigurationChange