Package com.github.lucadruda.iotc.device

Class SSLContextBuilder

java.lang.Object

com.github.lucadruda.iotc.device.SSLContextBuilder

public class SSLContextBuilder
extends Object

Helper class that demonstrates how to build an SSLContext for x509 authentication from your public and private certificates, or how to build an SSLContext for SAS authentication from the default IoT Hub public certificates

Constructor Summary

Constructors

Constructor	Description
SSLContextBuilder()

Method Summary

Modifier and Type	Method	Description
static SSLContext	buildSSLContext()	Build the default SSLContext.
static SSLContext	buildSSLContext(String publicKeyCertificateString, String privateKeyString)	Create an SSLContext instance with the provided public and private keys that also trusts the base iot hub certificates
static RSAPrivateKey	parsePrivateKeyString(String privateKeyPEM)
static X509Certificate[]	parsePublicKeyCertificateString(String pemString)
static RSAPrivateKey	readPrivateKeyPKCS1PEM(String content)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

SSLContextBuilder

public SSLContextBuilder()

Method Details

buildSSLContext

public static SSLContext buildSSLContext(String publicKeyCertificateString,
 String privateKeyString)
                                  throws GeneralSecurityException,
IOException

Create an SSLContext instance with the provided public and private keys that also trusts the base iot hub certificates

Parameters:

publicKeyCertificateString - the public key to use for x509 authentication. Does not need to include the default Iot Hub trusted certificate as it will be added automatically

privateKeyString - The private key to use for x509 authentication

Returns:

The created SSLContext that uses the provided public key and private key

Throws:

GeneralSecurityException - If the certificate creation fails, or if the SSLContext creation using those certificates fails

IOException - If the certificates cannot be read

buildSSLContext

public static SSLContext buildSSLContext()
                                  throws NoSuchAlgorithmException,
KeyManagementException,
CertificateException,
KeyStoreException,
IOException

Build the default SSLContext. Trusts the iot hub base certificates, but can only be used for sas auth

Returns:

the default SSLContext

Throws:

NoSuchAlgorithmException - If the SSLContext cannot be created because of a missing algorithm

KeyManagementException - If the SSLContext cannot be initiated

CertificateException - If certificate creation fails

KeyStoreException - If the keystore operations fail

IOException - If the default certificate fails to be read

parsePrivateKeyString

public static RSAPrivateKey parsePrivateKeyString(String privateKeyPEM)
                                           throws IOException,
GeneralSecurityException

Throws:

IOException

GeneralSecurityException

readPrivateKeyPKCS1PEM

public static RSAPrivateKey readPrivateKeyPKCS1PEM(String content)
                                            throws IOException,
NoSuchAlgorithmException,
InvalidKeySpecException

Throws:

IOException

NoSuchAlgorithmException

InvalidKeySpecException

parsePublicKeyCertificateString

public static X509Certificate[] parsePublicKeyCertificateString(String pemString)
                                                         throws GeneralSecurityException

Throws:

GeneralSecurityException