com.datastax.oss.driver.api.core.ssl

Class ProgrammaticSslEngineFactory

java.lang.Object

com.datastax.oss.driver.api.core.ssl.ProgrammaticSslEngineFactory

All Implemented Interfaces:

SslEngineFactory, AutoCloseable

public class ProgrammaticSslEngineFactory
extends Object
implements SslEngineFactory

An SSL engine factory that allows you to configure the driver programmatically, by passing your own SSLContext.

Note that this class will create SSL engines with advisory peer information (SSLContext.createSSLEngine(String, int)) whenever possible.

If those defaults do not work for you, it should be pretty straightforward to write your own implementation by extending or duplicating this class.

See Also:

SessionBuilder.withSslEngineFactory(SslEngineFactory), SessionBuilder.withSslContext(SSLContext)

Field Summary

Fields

Modifier and Type	Field and Description
protected String[]	cipherSuites
protected boolean	requireHostnameValidation
protected SSLContext	sslContext

Constructor Summary

Constructors

Constructor and Description
ProgrammaticSslEngineFactory(SSLContext sslContext) Creates an instance with the given SSLContext, default cipher suites and no host name validation.
ProgrammaticSslEngineFactory(SSLContext sslContext, String[] cipherSuites) Creates an instance with the given SSLContext and cipher suites, and no host name validation.
ProgrammaticSslEngineFactory(SSLContext sslContext, String[] cipherSuites, boolean requireHostnameValidation) Creates an instance with the given SSLContext, cipher suites and host name validation.

Method Summary

Modifier and Type	Method and Description
void	close()
SSLEngine	newSslEngine(EndPoint remoteEndpoint) Creates a new SSL engine each time a connection is established.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

sslContext

protected final SSLContext sslContext

cipherSuites

protected final String[] cipherSuites

requireHostnameValidation

protected final boolean requireHostnameValidation

Constructor Detail

ProgrammaticSslEngineFactory

public ProgrammaticSslEngineFactory(@NonNull
                                    SSLContext sslContext)

Creates an instance with the given SSLContext, default cipher suites and no host name validation.

Parameters:

sslContext - the SSLContext to use.

ProgrammaticSslEngineFactory

public ProgrammaticSslEngineFactory(@NonNull
                                    SSLContext sslContext,
                                    @Nullable
                                    String[] cipherSuites)

Creates an instance with the given SSLContext and cipher suites, and no host name validation.

Parameters:

sslContext - the SSLContext to use.

cipherSuites - the cipher suites to use, or null to use the default ones.

ProgrammaticSslEngineFactory

public ProgrammaticSslEngineFactory(@NonNull
                                    SSLContext sslContext,
                                    @Nullable
                                    String[] cipherSuites,
                                    boolean requireHostnameValidation)

Creates an instance with the given SSLContext, cipher suites and host name validation.

Parameters:

sslContext - the SSLContext to use.

cipherSuites - the cipher suites to use, or null to use the default ones.

requireHostnameValidation - whether to enable host name validation. If enabled, host name validation will be done using HTTPS algorithm.

Method Detail

newSslEngine

@NonNull
public SSLEngine newSslEngine(@NonNull
                                       EndPoint remoteEndpoint)

Description copied from interface: SslEngineFactory

Creates a new SSL engine each time a connection is established.

Specified by:

newSslEngine in interface SslEngineFactory

Parameters:

remoteEndpoint - the remote endpoint we are connecting to (the address of the Cassandra node).

close

public void close()

Specified by:

close in interface AutoCloseable