Ice Reference Documentation | ||
---|---|---|
<<< Previous | Slice Documentation | Next >>> |
local interface |
The interface for the SSL plug-in. This interface is typically used to perform programmatic configuration of the plug-in.
Add a trusted certificate to the plug-in's default certificate store.
Add a trusted certificate to the plug-in's default certificate store.
Configure the plug-in.
Retrieves an instance of the CertificateVerifier
that is
installed by default in all plug-in instances.
Returns an instance of a CertificateVerifier
that only accepts
a single certificate, that being the RSA certificate represented by
the binary DER encoding contained in the provided byte sequence.
Configure the plug-in for the given Context using the settings in the given configuration file.
Set the CertificateVerifier
used for the indicated ContextType
role.
Set the RSA keys to be used by the plug-in when operating in the context mode specified by ContextType.
Set the RSA keys to be used by the plug-in when operating in the context mode specified by ContextType.
void addTrustedCertificate(ContextType cType, ::Ice::ByteSeq certificate); |
Add a trusted certificate to the plug-in's default certificate store. The provided certificate (passed in binary DER format) is added to the trust list so that the certificate, and all certificates signed by its private key, are trusted. This method only affects new connections -- existing connections are left unchanged.
The Context(s) in which to add the trusted certificate.
The certificate, in binary DER format, to be trusted.
void addTrustedCertificateBase64(ContextType cType, string certificate); |
Add a trusted certificate to the plug-in's default certificate store. The provided certificate (passed in Base64-encoded binary DER format, as per the PEM format) is added to the trust list so that the certificate, and all certificates signed by its private key, are trusted. This method only affects new connections -- existing connections are left unchanged.
The Context(s) in which to add the trusted certificate.
The certificate to be trusted, in Base64-encoded binary DER format.
void configure(ContextType cType); |
Configure the plug-in. If the plug-in is left in an unconfigured state, it will load its configuration from the properties IceSSL.Server.Config or IceSSL.Client.Config, depending on the context type. Configuration property settings will also be loaded during this operation, with the property values overriding those of the configuration file.
The Context(s) to configure.
|
Retrieves an instance of the CertificateVerifier
that is
installed by default in all plug-in instances.
CertificateVerifier
|
Returns an instance of a CertificateVerifier
that only accepts
a single certificate, that being the RSA certificate represented by
the binary DER encoding contained in the provided byte sequence. This
is useful if you wish your application to accept connections from one
party.
![]() | Be sure to use the peer verifymode in your SSL configuration file. |
A DER encoded RSA certificate.
CertificateVerifier
void loadConfig(ContextType cType, string configFile, string certPath); |
Configure the plug-in for the given Context using the settings in the given configuration file. If the plug-in is left in an unconfigured state, it will load its configuration from the property IceSSL.Server.Config or IceSSL.Client.Config, depending on the context type. Configuration property settings will also be loaded as part of this operation, with the property values overriding those of the configuration file.
The Context to configure.
The file containing the SSL configuration information.
The path where certificates referenced in loadConfig may be found.
void setCertificateVerifier(ContextType cType,
|
Set the CertificateVerifier
used for the indicated ContextType
role. All plug-in Contexts are created with default
CertificateVerifier
objects installed. Replacement
CertificateVerifier
s can be specified using this operation.
This operation only affects new connections -- existing
connections are left unchanged.
The Context(s) in which to install the Certificate Verifier.
The CertificateVerifier
to install.
void setRSAKeys(ContextType cType, ::Ice::ByteSeq privateKey, ::Ice::ByteSeq publicKey); |
Set the RSA keys to be used by the plug-in when operating in the context mode specified by ContextType. This method only affects new connections -- existing connections are left unchanged.
The Context(s) in which to set/replace the RSA keys.
The RSA private key, in binary DER format.
The RSA public key, in binary DER format.
void setRSAKeysBase64(ContextType cType, string privateKey, string publicKey); |
Set the RSA keys to be used by the plug-in when operating in the context mode specified by ContextType. This method only affects new connections -- existing connections are left unchanged.
The Context(s) in which to set/replace the RSA keys.
The RSA private key, in Base64-encoded binary DER format.
The RSA public key, in Base64-encoded binary DER format.
<<< Previous | Home | Next >>> |
IceSSL::ContextType | Up | IceSSL::PrivateKeyException |