Source code

001/*
002 * (C) Copyright 2010 Nuxeo SAS (http://nuxeo.com/) and contributors.
003 *
004 * All rights reserved. This program and the accompanying materials
005 * are made available under the terms of the GNU Lesser General Public License
006 * (LGPL) version 2.1 which accompanies this distribution, and is available at
007 * http://www.gnu.org/licenses/lgpl.html
008 *
009 * This library is distributed in the hope that it will be useful,
010 * but WITHOUT ANY WARRANTY; without even the implied warranty of
011 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
012 * Lesser General Public License for more details.
013 *
014 * Contributors:
015 *     Nuxeo - initial API and implementation
016 */
017package org.nuxeo.ecm.platform.oauth.keys;
018
019import java.io.Serializable;
020
021import org.nuxeo.common.xmap.annotation.XNode;
022import org.nuxeo.common.xmap.annotation.XObject;
023
024/**
025 * Xmap object used to represent the contribution to {@link OAuthServerKeyManager}. => contribute a simple RSA Key Pair.
026 *
027 * @author tiry
028 */
029@XObject("serverKeyPair")
030public class ServerKeyDescriptor implements Serializable {
031
032    private static final long serialVersionUID = 1L;
033
034    @XNode("privateKey")
035    protected String externalPrivateKey;
036
037    /**
038     * Most folks should not need to change this from the default value of nuxeo. It's unclear that there are many
039     * service providers that actually use this value.
040     */
041    @XNode("privateKeyName")
042    protected String externalPrivateKeyName;
043
044    /**
045     * This is here just for convenience of keeping everything together. This is the public key (really a certificate)
046     * that you need to give to external oauth provider to indicate that you have the private key above. Assuming you
047     * generated the key with the lines above, you should be able to simply paste the "certificate" portion of the
048     * testkey.pem file into this field. It is not used by nuxeo in any way, but <b>will</b> be needed when you
049     * configure an external provider.
050     * <p>
051     * Note that many providers accept the certificate then run a computation to extract the public key from it. This
052     * means that the value displayed when you look at the provider configuration may be different than the one you
053     * provided.
054     */
055    @XNode("publicCertificate")
056    protected String externalPublicCertificate;
057
058}