Package com.sun.grid.ca
Class GridCAImpl
java.lang.Object
com.sun.grid.ca.GridCAImpl
- All Implemented Interfaces:
GridCA
Default implementation of the
GridCA
Uses the sge_ca script which is delivered with gridengine to perform
actions on the gridengine ca.-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionvoidcreateDaemon(String daemon, String user, String email) Create private key and certificate for a sdm daemon.createDaemonKeyStore(String daemon) Get the keystore for a daemon.createKeyStore(String username, char[] keystorePassword, char[] privateKeyPassword) Create a keystore which contains the private key and certificate of an user.protected ExpectcreateSGEDaemonKeyStore(String daemon, char[] keystorePassword, char[] privateKeyPassword) Get the keystore for a SGE daemon.voidcreateUser(String username, String email) Create private key and certificate for a user.voidcreateUser(String username, String gecos, String email) Deprecated.the gecos field is no longer used, use @{link #createUser(String,String)} insteadprotected voidprotected voidprotected FilegetCertFileForDaemon(String daemon) protected FilegetCertFileForUser(String username) getCertificate(String username) Get the X.509 certificate of a user.getDaemonCertificate(String daemon) Get the X.509 certificate of a daemon.protected FilegetLocalDaemonDir(String daemon) protected FilegetLocalUserDir(String username) voidinit(InitCAParameters params) Initialize the gridengine ca.voidrenewCaCertificate(int days) Renew the certificate of the certificate authorityrenewCertificate(String username, int days) Renew the certificate of a user.renewDaemonCertificate(String daemon, int days) Renew the certificate of a daemon.
-
Constructor Details
-
GridCAImpl
Create a new instance ofGridCAImp- Parameters:
config- the configuration- Throws:
GridCAException- if the configuration is not valid
-
-
Method Details
-
createProcess
-
init
Initialize the gridengine ca.- Specified by:
initin interfaceGridCA- Parameters:
params- parmeters for the CA- Throws:
GridCAException
-
getLocalUserDir
-
getCertFileForUser
-
getLocalDaemonDir
-
getCertFileForDaemon
-
execute
- Throws:
GridCAException
-
execute
- Throws:
GridCAException
-
createUser
Deprecated.the gecos field is no longer used, use @{link #createUser(String,String)} insteadCreate private key and certificate for a user.- Specified by:
createUserin interfaceGridCA- Parameters:
username- name of the usergecos- gecos field of the useremail- email address of the user- Throws:
GridCAException- if the creation of the private key or the certificate fails
-
createUser
Create private key and certificate for a user.- Specified by:
createUserin interfaceGridCA- Parameters:
username- name of the useremail- email address of the user- Throws:
GridCAException- if the creation of the private key or the certificate fails
-
createDaemon
Create private key and certificate for a sdm daemon.- Specified by:
createDaemonin interfaceGridCA- Parameters:
daemon- name of the daemonuser- username of the daemon (owner of the process)email- email address of the process owner- Throws:
GridCAException- if the create of the daemon failed
-
getCertificate
Get the X.509 certificate of a user.- Specified by:
getCertificatein interfaceGridCA- Parameters:
username- name of the user- Returns:
- X.509 certificate
- Throws:
GridCAException- if the certificate does not exist
-
getDaemonCertificate
Get the X.509 certificate of a daemon.- Specified by:
getDaemonCertificatein interfaceGridCA- Parameters:
daemon- name of the daemon- Returns:
- X.509 certificate
- Throws:
GridCAException- if the certificate does not exist
-
renewCertificate
Renew the certificate of a user.- Specified by:
renewCertificatein interfaceGridCA- Parameters:
username- name of the userdays- validity of the new certificate in days- Returns:
- the renewed certificate
- Throws:
GridCAException- if the certificate can not be renewed
-
renewDaemonCertificate
Renew the certificate of a daemon.- Specified by:
renewDaemonCertificatein interfaceGridCA- Parameters:
daemon- name of the daemondays- validity of the new certificate in days- Returns:
- the renewed certificate
- Throws:
GridCAException- if the certificate can not be renewed
-
renewCaCertificate
Description copied from interface:GridCARenew the certificate of the certificate authority- Specified by:
renewCaCertificatein interfaceGridCA- Parameters:
days- validity of the new certificate in days- Throws:
GridCAException- if the certificate can not be renewed
-
createKeyStore
public KeyStore createKeyStore(String username, char[] keystorePassword, char[] privateKeyPassword) throws GridCAException Create a keystore which contains the private key and certificate of an user.- Specified by:
createKeyStorein interfaceGridCA- Parameters:
username- name of the userkeystorePassword- password used for encrypt the keystoreprivateKeyPassword- password for the private key- Returns:
- the keystore
- Throws:
GridCAException- if the keystore could not be created
-
createDaemonKeyStore
Get the keystore for a daemon. This method can be used be the installation to create keystore for the daemon of a sdm system.- Specified by:
createDaemonKeyStorein interfaceGridCA- Parameters:
daemon- name of the daemon- Returns:
- the keystore of the daemon
- Throws:
GridCAException
-
createSGEDaemonKeyStore
public KeyStore createSGEDaemonKeyStore(String daemon, char[] keystorePassword, char[] privateKeyPassword) throws GridCAException Get the keystore for a SGE daemon. This method can be used be the installation to create keystore for the daemon of a sdm system.- Specified by:
createSGEDaemonKeyStorein interfaceGridCA- Parameters:
daemon- name of the daemonkeystorePassword- password used to encrypt the keystoreprivateKeyPassword- password used to encrypt the key- Returns:
- the keystore of the daemon
- Throws:
GridCAException
-