TomcatConnectorFactory.java

  1. /*
  2.  * Copyright (C) 2020-2024 by Savoir-faire Linux
  3.  *
  4.  * This program is free software; you can redistribute it and/or modify
  5.  * it under the terms of the GNU General Public License as published by
  6.  * the Free Software Foundation; either version 3 of the License, or
  7.  * (at your option) any later version.
  8.  *
  9.  * This program is distributed in the hope that it will be useful,
  10.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  11.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  12.  * GNU General Public License for more details.
  13.  *
  14.  * You should have received a copy of the GNU General Public License
  15.  * along with this program.  If not, see <https://www.gnu.org/licenses/>.
  16.  */
  17. package net.jami.jams.server.core;

  19. import lombok.extern.slf4j.Slf4j;

  21. import org.apache.catalina.connector.Connector;
  22. import org.apache.tomcat.util.net.SSLHostConfig;
  23. import org.apache.tomcat.util.net.SSLHostConfigCertificate;

  25. import java.io.File;

  27. @Slf4j
  28. public class TomcatConnectorFactory {

  30.     public static Connector getSSLConnectorWithTrustStore(
  31.             String certificateFile, String keyFile, int port) {
  32.         log.info(System.getProperty("user.dir") + File.separator + "keystore.jks");
  33.         Connector connector = getSSLConnectorWithoutTrustStore(certificateFile, keyFile, port);
  34.         connector.findSslHostConfigs()[0].setTruststoreFile(
  35.                 System.getProperty("user.dir") + File.separator + "keystore.jks");
  36.         connector.findSslHostConfigs()[0].setTruststorePassword("changeit");
  37.         connector.findSslHostConfigs()[0].setCertificateVerification("optional");
  38.         return connector;
  39.     }

  41.     public static Connector getSSLConnectorWithoutTrustStore(
  42.             String certificateFile, String keyFile, int port) {
  43.         // Check if trust store exists or create it if necessary.
  44.         Connector connector = new Connector();
  45.         SSLHostConfig sslConfig = new SSLHostConfig();
  46.         SSLHostConfigCertificate sslHostConfigCertificate =
  47.                 new SSLHostConfigCertificate(sslConfig, SSLHostConfigCertificate.Type.RSA);
  48.         sslHostConfigCertificate.setCertificateChainFile(
  49.                 System.getProperty("user.dir") + File.separator + certificateFile);
  50.         sslHostConfigCertificate.setCertificateFile(
  51.                 System.getProperty("user.dir") + File.separator + certificateFile);
  52.         sslHostConfigCertificate.setCertificateKeyFile(
  53.                 System.getProperty("user.dir") + File.separator + keyFile);
  54.         sslConfig.addCertificate(sslHostConfigCertificate);
  55.         sslConfig.setProtocols("TLSv1,TLSv1.2,TLSv1.3");
  56.         connector.addSslHostConfig(sslConfig);
  57.         connector.setPort(port);
  58.         connector.setSecure(true);
  59.         connector.setScheme("https");
  60.         connector.setProperty("SSLEnabled", "true");
  61.         return connector;
  62.     }

  64.     public static Connector getNoSSLConnector(int port) {
  65.         Connector connector = new Connector();
  66.         connector.setPort(port);
  67.         connector.setScheme("http");
  68.         return connector;
  69.     }
  70. }
Created with JaCoCo 0.8.11.202310140853